Internet site set on the NT4.0/IIS4.0 platform. We doubt that the site is attacked by hackers. Event log shows someone use the iusr_sysname account to log on and get into the iis process. The web service is stopped by him. How can we prevent this?
