Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

Question

How to find who used my machine via Remote Desktop Cntn

by Aug 8, 2011 1:07AM PDT

Hi i need to know , how to find the person's ip address who used my machine via remote desktop connection. I am annoyed by this repeat access and i couldn't find who is making use of my system. When they access it the person closes all the window's that are active. I haven't done anything to anyone like this and its disturbing me a lot. Kindly let me know if there are any ways to find it out. Thank you.

Discussion is locked

8 Posts
- Collapse + Expand Details
- Collapse -
Answer
Tried Turning Off Remote Desktop Access??
by Forum moderator Aug 8, 2011 3:56AM PDT
- Collapse -
Tried Turning Off Remote Desktop Access??
by ThiyaguSundaram Aug 8, 2011 3:22PM PDT

The problem is i can't disable it , coz i need to access my machine anytime when i am away from the machine. I will check out the second option by creating a log. Thank you very much.

- Collapse -
Answer
All the windows that are active close
by Aug 8, 2011 2:56PM PDT

Is it possible it's caused by your browser crashing? What makes you think it's someone doing this remotely, what else do they do on your computer? If it's someone messing with your computer remotely there would be windows opening and you would see a cursor moving around.


Rose

- Collapse -
All the windows that are active close
by ThiyaguSundaram Aug 8, 2011 3:24PM PDT

It is not because of the browser crashing, as i am working in my machine it logs off and tells me This computer is used by another person. And once i login again everything is closed. I am damn sure someone is playing with my machine.

- Collapse -
Answer
Long story short
by Aug 8, 2011 10:45PM PDT

Long story short, even if you find the address of this alleged person, what good will it do you? None. You could try passing it along to various law enforcement agencies, but odds are it'd quickly find its way to the bottom of the list of case priorities. So far all that has happened is something obnoxious, not malicious.

I'll go out on a limb here, and say that based on the level of technical skill you've demonstrated in your three posts here, even if you had a log, you wouldn't know how to make any real use of it. So if it's THAT important you be able to access your system remotely, it'd probably be worth the time, effort, and money to get yourself a VPN connection. Otherwise, you're just going to have to accept the fact that someone knows how to access your computer, and apparently likes to do so often. Remote Desktop is a very insecure system that was intended for use behind the DMZ of a LAN not the Internet.

- Collapse -
Answer
This'll work . . .
by Aug 8, 2011 11:05PM PDT

Install a router, a new model. My D-link DIR-655 has inbound filtering that will block specific inbound IP addresses. I use this when I see in the router logs someone slamming my web site. I block their IP address. In your case you can set the router to only accept inbound traffic from your specific IP address.

- Collapse -
Answer
Since you are at the machine, why not disable it when
by Forum moderator Aug 9, 2011 2:05AM PDT

Why not disable it when you are at your machine?

Also, isn't it time to use something more secure? Or at least change the passwords. I've lost count of how many machines you turn on and they boot to the WIndows desktop. That's not a machine you want exposed to the internet!
Bob

- Collapse -
Answer
Check the security log
by May 21, 2013 10:29PM PDT

It's a little hard to decipher, but if you look at the logon/logoff events in security log in event-viewer, one of the events will give you the IP address of the pc connecting to your machine.

And for everyone else. There can be situations where it's entirely valid to have your office computer be accessible through remote desktop, but where someone is just being an idiot and "cleaning up" after themselves.

Back to Windows Legacy OS forum

CNET Forums

Operating Systems
Software
Electronics & Gadgets
Hardware
Tablets & Mobile Devices
General Help
Brand Forums
Roadshow Autos
Off Topic

Other Forums

Forum Info