Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




1888 posts

Uber Geek
+1 received by user: 316


Topic # 142724 21-Mar-2014 21:54
Send private message

So,

On Monday the 17th my HP DV7 was stolen along with my cousin's laptop from work.  An opportunist managed to somehow make his way in to the building in the exact 4 minutes nobody was around to see him.  We caught on to the operation about a minute after it happened, but things looked bleak.  I didn't have a serial number for my laptop at the time.  We didn't even have security footage of it happening.  To make things worse, I had just wiped my computer and re-installed everything and was enjoying the convenience of not having a password before anything important went on it.

It was gone with no leads.  This felt calculated.  To get to my laptop, you have to travel through two doors and weave between vehicles.  I thought it would be flicked off ASAP, but I was wrong.  While looking through neighbors security footage, Teamviewer came online, then off again.  It has come online at 2AM consistently though out the week and once in the middle of the day while I was at work.  This means he is using it, not selling it like everyone has told me.  Trouble is, I can't get an IP out of the logs until I make a connection.

Things I have done:

- Changed critical passwords for websites such as Geekzone, GMail, Yahoo, FTP...etc.
- Deliberately left Facebook wide open.  If he logs in to my Facebook, I get a text and an IP address.

We did ALL the investigative work for the police.  I found the box of the laptop I purchased 4 years ago under the house with the serial number on the box!  What a life saver.  It's in the system now at least!  We handed them a vehicle description (without a pate, because the neighbors cameras suck) but managed to get one for the police the very next day through various contacts. Police matched the vehicle to our description and pate and then backed off, called the burglary squad who are now awaiting a warrant.  On Wednesday they said they will hit the house Friday or Monday.  It really didn't make much sense.  We had them red handed on camera and had all the information handed to them on a silver platter, haha!

If the police fall through, I guess I still have Teamviewer to maybe mine some information watching his movements on the internet, if I can catch him that is...Trouble is, Teamviewer makes a massive noise about someone connecting.  I would need to black his screen and disable his input to get anything.  I feel as if an IP address is false hope.  Sure if it gets far up enough through the ISP chain, something might happen, but really it's not much to go on. :(

I know firewalls, routers and all kinds of carry on might prevent this...But is there any way at all I could possibly silently install an application through the internet to follow the laptop further.  Even a key logger perhaps?  At the moment, my best option seems to simply disable his ability to use it.  It's a case of blacking his screen long enough for me to password protect it before he pulls the battery.  I may be able to auto-log in to his Facebook page to get a full name of the person using it considering he has one at all.

Any ideas?  Something I may not have thought about?  Will I have to resort to social engineering?  I understand next to nothing can be done if behind CGNAT.  I'm really grasping at straws here.

TL;DR:  Laptop stolen, no password (which I think is my saving grace here) and few leads with little police help.  Have teamviewer installed which is online, but want to silent install software on to it while it's online.  Doubt it's possible.  Maybe others with further knowledge on the subject?

Cheers,
David





Sometimes what you don't get is a blessing in disguise!

View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2
17304 posts

Uber Geek
+1 received by user: 2088

Trusted

  Reply # 1010874 21-Mar-2014 22:30
Send private message

Can u recard it? It might show his name or his trademe username etc

2331 posts

Uber Geek
+1 received by user: 367

Trusted

  Reply # 1010877 21-Mar-2014 22:36
Send private message

Working at ISPs for years I have seen quite a few of these type of things. Normally an IP Address and time is all is needed from you.

When you get the IP Address/Time, report to the police, they will contact the ISP and ask them for details of who was using the IP Address and go over to the persons registered address .

This is all good as long as its not an internet cafe but a lot of them don't allow people to use their own devices and they have cameras/get ID from people who use their services.





 
 
 
 




1888 posts

Uber Geek
+1 received by user: 316


  Reply # 1010878 21-Mar-2014 22:38
Send private message

joker97: Can u recard it? It might show his name or his trademe username etc

I'd love to be able to tap in with Teamviewer and just record what he is doing...But Teamveiwer isn't exactly secretive with regards to someone logging in.  The free version also only allows a 5 minute connection or so.

Also, if the thief thinks something is up...He might ditch the goods!  That is not what I want.  :(
I think I'll keep my cool, wait for the police to do their thing.  If they fail, I might just have a go myself.





Sometimes what you don't get is a blessing in disguise!



1888 posts

Uber Geek
+1 received by user: 316


  Reply # 1010879 21-Mar-2014 22:41
Send private message

LennonNZ: Working at ISPs for years I have seen quite a few of these type of things. Normally an IP Address and time is all is needed from you.

When you get the IP Address/Time, report to the police, they will contact the ISP and ask them for details of who was using the IP Address and go over to the persons registered address .

This is all good as long as its not an internet cafe but a lot of them don't allow people to use their own devices and they have cameras/get ID from people who use their services.


Yea, I worked technical at an ISP, but the red tape police had to chomp through to get anywhere was pretty bad.  We couldn't just hand out billing addresses.  Even so, what if the physical address is the same as that of the plate registered on the car.   Then I'm back to square one. :(





Sometimes what you don't get is a blessing in disguise!

17304 posts

Uber Geek
+1 received by user: 2088

Trusted

  Reply # 1010881 21-Mar-2014 22:50
Send private message

Is the laptop online 24/7? If so maybe try 6 am or something get in do what u need

17304 posts

Uber Geek
+1 received by user: 2088

Trusted

  Reply # 1010882 21-Mar-2014 22:51
Send private message

If u get in stream from the webcam



1888 posts

Uber Geek
+1 received by user: 316


  Reply # 1010883 21-Mar-2014 22:53
Send private message

joker97: If u get in stream from the webcam

Wouldn't I need to be able to install an application in order to do that?





Sometimes what you don't get is a blessing in disguise!

17304 posts

Uber Geek
+1 received by user: 2088

Trusted

  Reply # 1010890 21-Mar-2014 23:15
Send private message

if he is online 24/7 he must sleep some time. 4-6am is a safe bet he's sleeping at that time

17304 posts

Uber Geek
+1 received by user: 2088

Trusted

  Reply # 1010891 21-Mar-2014 23:17
Send private message

useful: ip address, time, google map/GPS (not sure how accurate)

fun: stream his webcam with sound, find his name, email, password(s), trademe account, facebook, mobile number



1888 posts

Uber Geek
+1 received by user: 316


  Reply # 1010892 21-Mar-2014 23:23
Send private message

joker97: useful: ip address, time, google map/GPS (not sure how accurate)

fun: stream his webcam with sound, find his name, email, password(s), trademe account, facebook, mobile number

Yea, not on 24/7.

It's only a specific time.  Either 2AM in the morning or breifly in the afternoon.  He forgot to steal the power pack, so I am under the impression that it's probably run out of juice if he hasn't found a power pack by now.





Sometimes what you don't get is a blessing in disguise!

17304 posts

Uber Geek
+1 received by user: 2088

Trusted

  Reply # 1010899 21-Mar-2014 23:38
Send private message

don't worry he will get a powerpack. you might get lucky. track all his online time so that if/when he leaves it on longer than usual you could pounce. but if you be bothered. if for nothing else try the "fun" bit

17304 posts

Uber Geek
+1 received by user: 2088

Trusted

  Reply # 1010900 21-Mar-2014 23:40
Send private message

what does teamviewer display when you log on remotely? is it like a big banner saying you are connected or something?

see this

654 posts

Ultimate Geek
+1 received by user: 20

Trusted

  Reply # 1010914 22-Mar-2014 00:53

Can you seize access long enough to install Prey?

www.preyproject.com



1888 posts

Uber Geek
+1 received by user: 316


  Reply # 1010916 22-Mar-2014 01:40
Send private message

KevinL: Can you seize access long enough to install Prey?

www.preyproject.com



I considered this very long and hard.  I tested the blackout thingy on Teamviewer and estimate about a minute before he fore resets the machine.  I'm not sure how long it would take to download.





Sometimes what you don't get is a blessing in disguise!

3085 posts

Uber Geek
+1 received by user: 509

Trusted

  Reply # 1014150 27-Mar-2014 20:25
Send private message

Dravid
Give me a call / txt on 021-483-280

If you can
1) Get onto the machine
2) Blank the screen
3) Install our remote access software (1 megabyte download, takes only a few seconds install if java is already on there)
5) Open the task manager
4) Restart the computer so he thinks it was just a crash
5) Kill the teamviewer process after beginning the shutdown

I think i can send you a custom client that doesnt show any text in the popup bubble when we login to record his session.
All we need to do is watch them log into facebook or something so we can get their name.

Going through the customisation options now - it appears i can even get sound from the microphone on the laptop lol




Ray Taylor
Taylor Broadband (rural hawkes bay)
www.ruralkiwi.com

There is no place like localhost
For my general guide to extending your wireless network Click Here




 1 | 2
View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Vodafone TV — television in the cloud
Posted 17-Oct-2017 19:29


Nokia 8 review: Classy midrange pure Android phone
Posted 16-Oct-2017 07:27


Why carriers might want to embrace Commerce Commission study, MVNOs
Posted 13-Oct-2017 09:42


Fitbit launches Ionic, its health and fitness smartwatch
Posted 12-Oct-2017 15:52


Xero launches machine learning automation to improve coding accuracy for small businesses
Posted 12-Oct-2017 15:45


Bank of New Zealand uses Intel AI to detect financial crime
Posted 12-Oct-2017 15:39


Sony launches Xperia XZ1, a smartphone with real-time 3D capture
Posted 11-Oct-2017 10:26


Notes on Nokia’s phone comeback
Posted 10-Oct-2017 10:06


Air New Zealand begins Inflight Wi-Fi rollout
Posted 9-Oct-2017 20:16


The latest mobile phones in perspective
Posted 9-Oct-2017 18:34


Review: Acronis True Image 2018 — serious backup
Posted 8-Oct-2017 11:22


Lenovo launches ThinkPad Anniversary Edition 25
Posted 7-Oct-2017 23:16


Less fone, more tech as Vodafone gets brand make-over
Posted 6-Oct-2017 08:16


API Talent Achieves AWS MSP Partner Status
Posted 5-Oct-2017 21:20


Stellar Consulting Group now a Domo Partner
Posted 5-Oct-2017 21:03



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.