Who is tring to get into my computerLocked
I have several NT computers in my department that logon to NT Domain and Novell servers. I have changed Administrator account name and I?m auditing logons. I noticed that I was getting a lot of logon failures from computers. I contacted IS department about this and they told me that they were computers that had viruses and needed to be shut down cleaned of virus. I then noticed that they are trying to logon to the actual name I changed the administrator account to; this account has never been used to access the computer over network and was only know to me. Some of these computers are computers located over routed network overseas and do not show up in network neighborhood. My questions are 1. Could these be virus that can be getting actual user accounts names? 2. Can this possibly be some normal Nt service? 3. Is it possible that this could be unintentional computer user or someone intentionally trying to hack into computer and would this most likely be the person who uses computer or has their computer been hacked into and used. If this intentional I am going after them but my concerns need to be valid. This is not one or two times but, forty or sixty a week from four or five computers.