user "microsoft" in administratrs group



Hello
In one of our 2003 servers, I find that there exists a user "microsoft"
which belongs to the Administrators group, and is running logon.scr (using
sysinternals process explorer). Is this normal or some kind of trojan? I've
never seen it before.
TIA


.