G
Guest
Guest
Archived from groups: microsoft.public.windowsxp.security_admin (More info?)
One day when I browse security event logs on one of my user's computer ,I
found some abnormal thing :
Event Properties
Date: 5/9/2005 source: Security
time: 5:45:27 AM Category:Logon/Logoff
type: Failure Audit event ID:531
user:NT AUTHORITY\SYSTEM
computer:BSGQ
Logon Failure:
Reason: Account currently disabled
User Name: IUSR_BSGQ
Domain: BSGQ
Logon Type: 3
Logon Process:IIS
Authentication Package:MICROSOFT_AUTHENTICATION_PACKAGE_V1_0
Workstation Name:BSGQ
Enviorment: The computer's operation system is WindowsXP English sp2.
The computer belongs to a Domain.
The computer user only has Domain Users privilege .
The computer has never installed IIS.(I check this on the
computer.)
Why? What happened?
One day when I browse security event logs on one of my user's computer ,I
found some abnormal thing :
Event Properties
Date: 5/9/2005 source: Security
time: 5:45:27 AM Category:Logon/Logoff
type: Failure Audit event ID:531
user:NT AUTHORITY\SYSTEM
computer:BSGQ
Logon Failure:
Reason: Account currently disabled
User Name: IUSR_BSGQ
Domain: BSGQ
Logon Type: 3
Logon Process:IIS
Authentication Package:MICROSOFT_AUTHENTICATION_PACKAGE_V1_0
Workstation Name:BSGQ
Enviorment: The computer's operation system is WindowsXP English sp2.
The computer belongs to a Domain.
The computer user only has Domain Users privilege .
The computer has never installed IIS.(I check this on the
computer.)
Why? What happened?