Data Doctors
Recycle your Computers & Technology with us.

Windows NT Security Log problem

Posted By : Christopher of Katharine Gibbs School - New York on December 5, 2004

Follow us on Facebook   Follow us on Twitter   Follow us on LinkedIn

Let Data Doctors be your personal IT department today

Book an Appointment

Okay, bare with me because I have limited computer knowledge. I am the "computer administrator" (I use the term loosely!) at my work, and we outsource our more complicated work to another person. To make a long story short, today the computer guy was at my work and asked me who has been logging onto the server. I am the only one with the password, and I haven't logged on in two months. I asked if it could have been someone using VNC Viewer, or PC Anywhere, but he said no. The log clearly shows someone physically logging on to the server every day for the past six weeks.

Here's the thing - our server is in a closet in the back of our dispatch office. That office is NEVER unattended, so anyone going into the closet to log onto the server would have to be seen. The latest log on was at 12:35 pm today. At that time, there were five people in that office. It's really not even possible that someone was logged on to the server at that time.

When I say logged on, I don't mean logging onto a computer that has ACCESS to the server. He says that the desktop is up when he comes in, and the file shows that someone has accessed the computer directly.

Is it possible that someone is using some type of remote access that is recorded as a direct log on?

Thanks

This question was answered on December 5, 2004. Much of the information contained herein may have changed since posting.

Check to see if the program called DameWare is installed on your server and look for any other software that may have been "added".

I had a webserver that was hacked and the hacker installed DameWare Utilities for Nt on the machine and was remoting controlling it, changing permissions and installing software on it like ServU FTP and email server software and was stealing our bandwidth.

I had to re-install it and set up stronger security to keep the hacker from getting back in.

About the author

Posted by Christopher of Katharine Gibbs School - New York on December 5, 2004

Need Help with this Issue?

We help people with technology! It's what we do.
Contact or Schedule an Appointment with a location for help!

Free Help

Articles & Advice

Video News

Newsletter

Approved Software

Ask a Question
Call the Repair Hotline at

855-328-2362

Newsletter

Sign up for our newsletter and get free tips and tricks to keep your computer running great!

Start by entering your
Videos In the Press
Videos In the Press
Radio Tech Tips
Radio Tech Tips

For non-tech people, find tips from us on a station nearby!

Categories
Windows NT

Data Doctors
Newsletter

Subscribe Today

Customer Support Customer Support

Our customers are the most important part of our business and we empower our friendly, trained staff to spoil you. In addition, we have a dedicated Customer Support team standing by to help when needed.

If you're not satisfied, we're not done! We guarantee satisfaction.

365 Day Warranty 365 Day Warranty

We provide a 1 year warranty on new parts and computers we sell. We'll quickly diagnose and replace defective parts used during the original repair. Please keep in mind that this warranty does not cover damage you cause (such as broken screens) or water damage done to your device after the initial repair. Refurbished parts generally carry a 90 day warranty.

Satisfaction Guarantee Satisfaction Guarantee

We've been helping people with technology for nearly 30 years. We were fixing computers when break dancing was cool! We spend time with you at check-out to make sure it's exactly the way you want. Data Doctors sets the gold standard when it comes to customer satisfaction. That's why we've received more awards for customer service and satisfaction than anyone else in the business.

Book Appointment