I have a really weired problem with one of my switches.
I have removed the "privilege level 15" line from my vty 0-4, saved the changes and exited the switch. When I try to login to the switch immediately after that, it logs me in in user exec mode (which is expected and desired), to my surprise logging in few hours later logs me in directly to the privileged mode. When I list the running configuration I can see that the "privilege level 15" line is back in the vty 0-4 configuration section. I am 100% sure that no one logs into this switch and changes the running configuration. Any idea what is happening here? I am about to start believing in smurfs :-)