G
Guest
Guest
Archived from groups: microsoft.public.win2000.security (More info?)
I saw a ton of these, all early this morning, during a short period of time,
before most users are even in the office.
is there any way I can find out where this is coming from? what
workstation or if it is over the internet?
Event Type: Failure Audit
Event Source: Security
Event Category: Logon/Logoff
Event ID: 529
Date: 4/26/2005
Time: 6:44:06 AM
User: NT AUTHORITY\SYSTEM
Computer: myserver
Description:
Logon Failure:
Reason: Unknown user name or bad password
User Name: connect
Domain:
Logon Type: 3
Logon Process: Advapi
Authentication Package:
MICROSOFT_AUTHENTICATION_PACKAGE_V1_0
Workstation Name: myserver
I saw a ton of these, all early this morning, during a short period of time,
before most users are even in the office.
is there any way I can find out where this is coming from? what
workstation or if it is over the internet?
Event Type: Failure Audit
Event Source: Security
Event Category: Logon/Logoff
Event ID: 529
Date: 4/26/2005
Time: 6:44:06 AM
User: NT AUTHORITY\SYSTEM
Computer: myserver
Description:
Logon Failure:
Reason: Unknown user name or bad password
User Name: connect
Domain:
Logon Type: 3
Logon Process: Advapi
Authentication Package:
MICROSOFT_AUTHENTICATION_PACKAGE_V1_0
Workstation Name: myserver