?
Solved

Did I just get hacked into?

Posted on 2005-03-28
6
Medium Priority
?
217 Views
Last Modified: 2010-04-11
I my event log under security it lists this as a logon/logoff and gives this explanation below.
I was not here that day....so...was this a hack?

Successful Logon:
       User Name:      NETWORK SERVICE
       Domain:            NT AUTHORITY
       Logon ID:            (0x0,0x3E4)
       Logon Type:      5
       Logon Process:      Advapi  
       Authentication Package:      Negotiate
       Workstation Name:      
       Logon GUID:      {00000000-0000-0000-0000-000000000000}

For more information, see Help and Support Center at
0
Comment
Question by:SiliconDirect
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
6 Comments
 
LVL 38

Accepted Solution

by:
Rich Rumble earned 100 total points
ID: 13643760
0
 
LVL 6

Expert Comment

by:nrip
ID: 13645176
yeah its definitely a hack in the true sense of it...may not be a person logging in but a process on another PC logging onto your PC...
0
 

Author Comment

by:SiliconDirect
ID: 13645660
nrip, can you elaborate?

How would a program get in ?  The only ports that are open to my knowledge are the ones for remote desktop.
0
 
LVL 6

Assisted Solution

by:nrip
nrip earned 100 total points
ID: 13645782
That is because this looks like the resultant of a backdoor..and you are saying you have a port open for remote desktop ...thast not good news..well besides that a number of ports may be open...which the trojan will open on your PC....in that case the trojan will be allowing access to the human or program at some other location...right...check if ports 190 or 901 are open...

but I may be wrong...(  I hope I am:))
in case you havent patched your OS...it may be an old error showing itself...richrumble has listed this link above...
http://support.microsoft.com/?kbid=305822


0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Let's recap what we learned from yesterday's Skyport Systems webinar.
The well known Cerber ransomware continues to spread this summer through spear phishing email campaigns targeting enterprises. Learn how it easily bypasses traditional defenses - and what you can do to protect your data.
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Suggested Courses

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question