Finding out where the Administrator Account is used on the network
Is there a tool or any way to find out where the AD administrator Built-in account is being used on the network to authenticate?
It's been used heavily up until recently for several apps as a way of gaining say WMI access or sending mail via the SMTP server.
I'm keen to change the password but don't want to break everything.