how can my teen get around my password on the computer

I have my computer password protected and somehow my teenager got access to it. I have administrator privilages and also set the screen saver to need a password. Can I find out if it haas been hacked and when?

Thanks in advance

 

just adding to what Laura said about passwords. If your password is actually a word, it isn't secure. random characters; numbers, letters uppercase and lower case, and symbols should be used for secure passwords. example: H5%6Gt( would generally be considered a secure password by most standards.
doesnt matter with keyloggers though.

 

Here is a handy little gadget to help create passwords with a short phrase to help you remember it.

http://www.goodpassword.com/

 

Restart it and hit F8 immediately (and repeatedly) until given an option to start in safe mode. You should see a user entry for Administrator. Choose this user and see if you are asked for a password. If not that may be the opening your teenager used.

 

You might be able to look in the event logs to see what time the last login occurred.

There is a possibility the teen could have used a linux based livecd to gain access.

 

I'll add my my 2 cents on what's already been said.
Unless you know what your doing and depending on how well your said teenager knows what s/he is doing it can be quite difficult to find out how they did it.

You already know it happened so the 'how' really isn't important unless your just curious.

The ways to access your account are -

They found out your passwrord because it was easy to guess, you left it lying around or they looked over your shoulder.
They installed a keylogger.
They cracked the sam file after accessing it with a live CD.
Or through an unsecured default admin account as mentioned in a post above.

If they have physical access the best you can do is create really strong passwords and make sure no keylogger is installed.

Strong passwords. 8-16 characters and a variety of numbers, letters and special characters. I usually use a long silly phrase and substitute letters for numbers/ special chars. ie One day I want to learn to fly and run with the bulls = Od!w2l2f&rwtb.

Put it on the admin account and your account (not really worth using seperate passwords here as it's a home PC and if they found out one that's all they need anyway.
A good pass makes it far too time consuming to brute force the sam file and hard to remember if they look over your shoulder. Only thing to worry about then is keyloggers so do a scan as advised above. Well obviously do the scan before changing your pass

 

Nice tip! I usually hate mnemonics but this might work for me. I never thought of it.

 

Could also change log in screen through control panel, users, so that you need to put in user name and a password. Change Administrator and guest account names as well, easy to do with XP Pro through Administrative Tools. I'd bet your teenager is a boy, just from past experience. This program had a thirty day trial when I used it, only had to remove task bar Icon to keep it hidden, although a scan with an Internet Security Suite showed it was there. To be young and foolish again...:-D
http://www.majorgeeks.com/Visage_PC_Surveillance_d1070.html

 

ok i have run all the scans and windows cleaners. I will attach the logs. I can only attach the hijack this log. the other ones exceed the level. Thanks everyone for the help.

 

If you suspect malware, such as keyloggers, you need to work through the Read and Run me link that LauraR posted in Post #2 of this thread. Once you have completed the instructions in that link you need to start a new thread in the Malware Forum and post up the logs requested in the R&R link.

The Malware Forum has dedicated Authorized Malware Fighters specifically trained in the removal of malware.

Please also read this link about posting HiJackThis logs http://forums.majorgeeks.com/showthread.php?t=38752