Computer access via Event Viewer question
Posted on 2004-10-08
There has been some strange activity lately on a network that I work on. Upon looking at the security log in the Event Viewer, I have been noticing successful logon access from a couple of users to my machine even though they do not have the correct permissions to do so (this is set for admins only). I looked at other machines in my workcenter and for some strange reason they have been accessed as well by the same users at the same date and time! Is there a known trojan or spyware that would be doing something like this? I contacted the two users in question and ran spysweeper on their machines and found nothing out of the norm other than the regular alexa, adclick, etc. Anybody with a similar experience, please post. Thanks!