I use the virus protection program Eset and there's the function of a phantom account, i.e. You create a local user account on the PC without a password and when someone logs in you get a notification by email. This is there so that if the PC is stolen, it can be tracked. But now to my question: I only use my laptop at home and every day I get at least 5 emails that a log-in was recognized on the account, but I use my standard account and not the phantom account to work. So is it possible that I have captured software that logs into the user account in the background? Is that possible?
Probably not, keep your hands off an anti-virus program if you have Windows 10, Linux or MacOS. This is usually very, very unwise.
Here is a video about it:
Do you know the sentence:
"Stop the thief?"…
Of course, it is possible to program software that logs into Windows user accounts and does something there. To do this, however, she must know the passwords.
But whether you have caught any software that does something like that, I can't say. This is possible, but maybe there are also Windows mechanisms that do something in all user accounts and then trigger this email. "Captured" may also not be the correct word. Perhaps some software you "want" to do something with the user accounts.
It is quite possible. What name was used to log in? And at what times? Ask the event viewer (Cortana finds). Perhaps it is also the virus software itself that does a check.