I think what you want is to use an MVC authentication cookie, instead of checking your database for the time they logged in:
// sign in
FormsAuthentication.SetAuthCookie(username, false);
// sign out
FormsAuthentication.SignOut();
Ref. Custom Authentication and ASP.NET MVC
Ref. http://www.codeproject.com/Articles/578374/AplusBeginner-27splusTutorialplusonplusCustomplusF
Also, this is a good article on custom auth in MVC 4:
http://www.codeproject.com/Articles/601687/ASP-NET-MVC-4-Forms-Authentication-Customized