Yes. Definately had a stong password for the SA account prior to the issue we're experiencing. We have anti-virus software with the latest definitions installed on this server (this was installed & maintained when the server before the server went live a couple of years ago).
The only software we installed after the issue surfaced was anti-spyware although running it has turned up nothing. From a virus/spyware standpoint, we should be pretty clean which is good but it makes the troubleshooting even more frustrating.
Thanks,
Brian