This is a question about Windows. I don't hang around any Windows forum, so I will ask my question right here. Please disregard if you're not interested.

I have a notebook running Linux and Windows on dual boot. Windows XP is there for professional reasons that are not at all relevant here and now. Suffice to say I never use it, but it's there just in case. I am afraid my notebook might get stolen, so I sometimes wonder if there is anything I can do/install that would help me recover my notebook in case of theft.

Then I ran into this Youtube video. Quick summary so you don't have to view it: hacker has Mac notebook stolen, thief does not wipe hard drive, uses existing user account (no password); hacker has monitoring tools installed in the notebook, so he manages to catch the thief.

That's another good reason for me to have Windows on dual boot: my Linux partitions are all encrypted, and let's be realistic: the chances of a thief being interested in tinkering with Linux are very, very thin. If the machine boots into Windows, however, I have a much better chance of making the thief walk into a trap.

My current Windows installation is password protected, but since I never use it and I keep no personal information in it, I have decided to remove the password, make Grub boot into Windows by default and turn that partition into a sort of honeypot.

My problem now is that I've been using Linux for so long that I have really become unfamiliar with Windows. I can use it, and that's about it. I know that many of you security experts are familiar with several OS, so please help me with these questions:

1) Is there an sshd server for Windows? What is it? Can it be made to run as a service, as invisibly as possible?

2) How do I make the machine phone home and let me know its current external IP address periodically or every time it connects to the Internet?

3) Can I make the machine send me information by email? What information should I include and how do I go about sending email stealthily from a Windows machine?

4) What is a good key logger for Windows?

5) Anything else I should know? Any other measures I should take?

Hi Lucmove,

1., This is the link for the openssh server: http://sshwindows.sourceforge.net/
It can run as a service(daemon) and it is not possible to see by the user(s) when it stars.
I used it before and it is really good.

2., This is the script for pinging an address: http://www.windowsitpro.com/article/...-machine-.aspx

3., To send email from windows try this one: http://www.searchmarked.com/windows/...ell-script.php

You need to install powershell on your Windows to get this script running.
There is a possibility that it wont run properly. Need a lot of patient to get the script runs on your windows.
It depends on the powershell/service pack/version/etc......

4., same thing just google: "free windows keylogger"

5., I would just use the "ping" script instead of the email sender script.
If something goes wrong with the email sender script the windows might asks the user what to do. Like: "Do you want to send the letter to this address?"
As well as if the thief finds out about the scipt he/she will know your email address. (You don't want that, do you?)
I would do a script that pings a public IP address every 5 sec or something (any address where you can examine the log files to find out the thief public IP) from the backgound. As well as the ping does not use any "big" traffic. I know the email does not either, but much less traffic than to send an email.

Laz.

As this is a Windoze question, off to General it goes.