War with Windows!

Okay, Here is the situation. I have a co-worker (we work at a IT company doing network support) and he is a windows genius. He has taken my computer hostage. I have admin rights, and I am a member of the admin group. My computer is a member of a domain. He can remotelly get into my computer, reboot, restart, log me off, lock the computer, etc. I know this is through the use of RPC, and the shutdown -? feature in the DOS window. I got a windows administrator password recovery disk, got my local computer admin back up, changed the password, and removed everyone but me from the administrators group, and every other group is disabled.

Today I come in, and my password expires every 10 days, and its annoying as hell.

My ?'s are these: Does he have admin right on the domain, even though he says he does not?

Is there anything that I can do back to his machine without admin right's?

I have added myself to his admin group once when he was not at the computer, and I still can't seem to do much.

Also: Don't tell me the crap about reporting this to the boss, blah, blah, its fun, he is a friend, its Windows War, and I am losing, and I need some majorgeeks to help me out.

The next step for me, if to mirror a port on the switch with the port that I am on, sniff the network and get all the passwords. =)

-Ice

 

you know how to connect to another computer through computer management?

 

What OS are you guys running? If it's XP, I have a neat little trick that he may not know about, and therefore is vulnerable to. Ever played with null connections much? heheheheh.

 

Ya needthe OS. got a little comand line comand to shut down a pc remotely you have admin rightso n...

 

Yes I know how to connect to another computer through computer management, but I can't connect to him, says access denied, and yes, I know the command line thing, that what he is doing to me, but I don't know how he is getting into my machine, when I can't get to his, and I have the same rights on the domain as he does.

What is the null connection thing?

 

try turning off netbios on your machine.. he'll have to use your IP address to get to you.

 

what if his network is netbeui =D

 

Okay, but sometimes we use "net send Iceburg Message" to send alerts for lunch, and interoffice stuff. What else?

 

You guys can't help me? I have a whole team, he has just him...

 

lol sounds like this guy is pretty good. I'll send you some text files you can read over and do some homework on. I'm not at home right now, or I'd attach 'em to this post in a .zip file. I'll help ya out best I can... I love hacking games ... for fun, that is.