API tools faq
paste
Advertisement
Guest User

TrueNAS

a guest
Feb 27th, 2023
63
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 28.99 KB | None | 0 0
raw download clone embed print report
  1. "type": "Authentication",
  2. "Authentication": {
  3. "version": {
  4. "major": 1,
  5. "minor": 2
  6. },
  7. "eventId": 4625,
  8. "logonId": "0",
  9. "logonType": 3,
  10. "status": "NT_STATUS_WRONG_PASSWORD",
  11. "localAddress": "ipv4:192.168.1.227:445",
  12. "remoteAddress": "ipv4:192.168.1.108:61341",
  13. "serviceDescription": "SMB2",
  14. "authDescription": null,
  15. "clientDomain": "DESKTOP-F9S3P6E",
  16. "clientAccount": "benjamin",
  17. "workstation": "DESKTOP-F9S3P6E",
  18. "becameAccount": null,
  19. "becameDomain": null,
  20. "becameSid": null,
  21. "mappedAccount": "benjamin",
  22. "mappedDomain": "DESKTOP-F9S3P6E",
  23. "netlogonComputer": null,
  24. "netlogonTrustAccount": null,
  25. "netlogonNegotiateFlags": "0x00000000",
  26. "netlogonSecureChannelType": 0,
  27. "netlogonTrustAccountSid": null,
  28. "passwordType": "NTLMv1",
  29. "duration": 2504
  30. },
  31. "timestamp_tval": {
  32. "tv_sec": 1677486054,
  33. "tv_usec": 225662
  34. }
  35. },
  36. {
  37. "timestamp": "2023-02-27T21:20:58.888990+1300",
  38. "type": "Authentication",
  39. "Authentication": {
  40. "version": {
  41. "major": 1,
  42. "minor": 2
  43. },
  44. "eventId": 4625,
  45. "logonId": "0",
  46. "logonType": 3,
  47. "status": "NT_STATUS_WRONG_PASSWORD",
  48. "localAddress": "ipv4:192.168.1.107:445",
  49. "remoteAddress": "ipv4:192.168.1.108:61343",
  50. "serviceDescription": "SMB2",
  51. "authDescription": null,
  52. "clientDomain": "DESKTOP-F9S3P6E",
  53. "clientAccount": "benjamin",
  54. "workstation": "DESKTOP-F9S3P6E",
  55. "becameAccount": null,
  56. "becameDomain": null,
  57. "becameSid": null,
  58. "mappedAccount": "benjamin",
  59. "mappedDomain": "DESKTOP-F9S3P6E",
  60. "netlogonComputer": null,
  61. "netlogonTrustAccount": null,
  62. "netlogonNegotiateFlags": "0x00000000",
  63. "netlogonSecureChannelType": 0,
  64. "netlogonTrustAccountSid": null,
  65. "passwordType": "NTLMv1",
  66. "duration": 2488
  67. },
  68. "timestamp_tval": {
  69. "tv_sec": 1677486058,
  70. "tv_usec": 888990
  71. }
  72. },
  73. {
  74. "timestamp": "2023-02-27T21:20:59.159031+1300",
  75. "type": "Authentication",
  76. "Authentication": {
  77. "version": {
  78. "major": 1,
  79. "minor": 2
  80. },
  81. "eventId": 4625,
  82. "logonId": "0",
  83. "logonType": 3,
  84. "status": "NT_STATUS_WRONG_PASSWORD",
  85. "localAddress": "ipv4:192.168.1.107:445",
  86. "remoteAddress": "ipv4:192.168.1.108:61344",
  87. "serviceDescription": "SMB2",
  88. "authDescription": null,
  89. "clientDomain": "DESKTOP-F9S3P6E",
  90. "clientAccount": "benjamin",
  91. "workstation": "DESKTOP-F9S3P6E",
  92. "becameAccount": null,
  93. "becameDomain": null,
  94. "becameSid": null,
  95. "mappedAccount": "benjamin",
  96. "mappedDomain": "DESKTOP-F9S3P6E",
  97. "netlogonComputer": null,
  98. "netlogonTrustAccount": null,
  99. "netlogonNegotiateFlags": "0x00000000",
  100. "netlogonSecureChannelType": 0,
  101. "netlogonTrustAccountSid": null,
  102. "passwordType": "NTLMv1",
  103. "duration": 3154
  104. },
  105. "timestamp_tval": {
  106. "tv_sec": 1677486059,
  107. "tv_usec": 159031
  108. }
  109. },
  110. {
  111. "timestamp": "2023-02-27T21:20:59.173609+1300",
  112. "type": "Authentication",
  113. "Authentication": {
  114. "version": {
  115. "major": 1,
  116. "minor": 2
  117. },
  118. "eventId": 4625,
  119. "logonId": "0",
  120. "logonType": 3,
  121. "status": "NT_STATUS_WRONG_PASSWORD",
  122. "localAddress": "ipv4:192.168.1.107:445",
  123. "remoteAddress": "ipv4:192.168.1.108:61346",
  124. "serviceDescription": "SMB2",
  125. "authDescription": null,
  126. "clientDomain": "DESKTOP-F9S3P6E",
  127. "clientAccount": "benjamin",
  128. "workstation": "DESKTOP-F9S3P6E",
  129. "becameAccount": null,
  130. "becameDomain": null,
  131. "becameSid": null,
  132. "mappedAccount": "benjamin",
  133. "mappedDomain": "DESKTOP-F9S3P6E",
  134. "netlogonComputer": null,
  135. "netlogonTrustAccount": null,
  136. "netlogonNegotiateFlags": "0x00000000",
  137. "netlogonSecureChannelType": 0,
  138. "netlogonTrustAccountSid": null,
  139. "passwordType": "NTLMv1",
  140. "duration": 2525
  141. },
  142. "timestamp_tval": {
  143. "tv_sec": 1677486059,
  144. "tv_usec": 173609
  145. }
  146. },
  147. {
  148. "timestamp": "2023-02-27T21:20:59.189053+1300",
  149. "type": "Authentication",
  150. "Authentication": {
  151. "version": {
  152. "major": 1,
  153. "minor": 2
  154. },
  155. "eventId": 4625,
  156. "logonId": "0",
  157. "logonType": 3,
  158. "status": "NT_STATUS_WRONG_PASSWORD",
  159. "localAddress": "ipv4:192.168.1.107:445",
  160. "remoteAddress": "ipv4:192.168.1.108:61347",
  161. "serviceDescription": "SMB2",
  162. "authDescription": null,
  163. "clientDomain": "DESKTOP-F9S3P6E",
  164. "clientAccount": "benjamin",
  165. "workstation": "DESKTOP-F9S3P6E",
  166. "becameAccount": null,
  167. "becameDomain": null,
  168. "becameSid": null,
  169. "mappedAccount": "benjamin",
  170. "mappedDomain": "DESKTOP-F9S3P6E",
  171. "netlogonComputer": null,
  172. "netlogonTrustAccount": null,
  173. "netlogonNegotiateFlags": "0x00000000",
  174. "netlogonSecureChannelType": 0,
  175. "netlogonTrustAccountSid": null,
  176. "passwordType": "NTLMv1",
  177. "duration": 2602
  178. },
  179. "timestamp_tval": {
  180. "tv_sec": 1677486059,
  181. "tv_usec": 189053
  182. }
  183. },
  184. {
  185. "timestamp": "2023-02-27T21:20:59.203769+1300",
  186. "type": "Authentication",
  187. "Authentication": {
  188. "version": {
  189. "major": 1,
  190. "minor": 2
  191. },
  192. "eventId": 4625,
  193. "logonId": "0",
  194. "logonType": 3,
  195. "status": "NT_STATUS_WRONG_PASSWORD",
  196. "localAddress": "ipv4:192.168.1.107:445",
  197. "remoteAddress": "ipv4:192.168.1.108:61348",
  198. "serviceDescription": "SMB2",
  199. "authDescription": null,
  200. "clientDomain": "DESKTOP-F9S3P6E",
  201. "clientAccount": "benjamin",
  202. "workstation": "DESKTOP-F9S3P6E",
  203. "becameAccount": null,
  204. "becameDomain": null,
  205. "becameSid": null,
  206. "mappedAccount": "benjamin",
  207. "mappedDomain": "DESKTOP-F9S3P6E",
  208. "netlogonComputer": null,
  209. "netlogonTrustAccount": null,
  210. "netlogonNegotiateFlags": "0x00000000",
  211. "netlogonSecureChannelType": 0,
  212. "netlogonTrustAccountSid": null,
  213. "passwordType": "NTLMv1",
  214. "duration": 2433
  215. },
  216. "timestamp_tval": {
  217. "tv_sec": 1677486059,
  218. "tv_usec": 203769
  219. }
  220. },
  221. {
  222. "timestamp": "2023-02-27T21:20:59.218550+1300",
  223. "type": "Authentication",
  224. "Authentication": {
  225. "version": {
  226. "major": 1,
  227. "minor": 2
  228. },
  229. "eventId": 4625,
  230. "logonId": "0",
  231. "logonType": 3,
  232. "status": "NT_STATUS_WRONG_PASSWORD",
  233. "localAddress": "ipv4:192.168.1.107:445",
  234. "remoteAddress": "ipv4:192.168.1.108:61349",
  235. "serviceDescription": "SMB2",
  236. "authDescription": null,
  237. "clientDomain": "DESKTOP-F9S3P6E",
  238. "clientAccount": "benjamin",
  239. "workstation": "DESKTOP-F9S3P6E",
  240. "becameAccount": null,
  241. "becameDomain": null,
  242. "becameSid": null,
  243. "mappedAccount": "benjamin",
  244. "mappedDomain": "DESKTOP-F9S3P6E",
  245. "netlogonComputer": null,
  246. "netlogonTrustAccount": null,
  247. "netlogonNegotiateFlags": "0x00000000",
  248. "netlogonSecureChannelType": 0,
  249. "netlogonTrustAccountSid": null,
  250. "passwordType": "NTLMv1",
  251. "duration": 3007
  252. },
  253. "timestamp_tval": {
  254. "tv_sec": 1677486059,
  255. "tv_usec": 218550
  256. }
  257. },
  258. {
  259. "timestamp": "2023-02-27T21:20:59.232563+1300",
  260. "type": "Authentication",
  261. "Authentication": {
  262. "version": {
  263. "major": 1,
  264. "minor": 2
  265. },
  266. "eventId": 4625,
  267. "logonId": "0",
  268. "logonType": 3,
  269. "status": "NT_STATUS_WRONG_PASSWORD",
  270. "localAddress": "ipv4:192.168.1.107:445",
  271. "remoteAddress": "ipv4:192.168.1.108:61350",
  272. "serviceDescription": "SMB2",
  273. "authDescription": null,
  274. "clientDomain": "DESKTOP-F9S3P6E",
  275. "clientAccount": "benjamin",
  276. "workstation": "DESKTOP-F9S3P6E",
  277. "becameAccount": null,
  278. "becameDomain": null,
  279. "becameSid": null,
  280. "mappedAccount": "benjamin",
  281. "mappedDomain": "DESKTOP-F9S3P6E",
  282. "netlogonComputer": null,
  283. "netlogonTrustAccount": null,
  284. "netlogonNegotiateFlags": "0x00000000",
  285. "netlogonSecureChannelType": 0,
  286. "netlogonTrustAccountSid": null,
  287. "passwordType": "NTLMv1",
  288. "duration": 2483
  289. },
  290. "timestamp_tval": {
  291. "tv_sec": 1677486059,
  292. "tv_usec": 232563
  293. }
  294. },
  295. {
  296. "timestamp": "2023-02-27T21:20:59.247485+1300",
  297. "type": "Authentication",
  298. "Authentication": {
  299. "version": {
  300. "major": 1,
  301. "minor": 2
  302. },
  303. "eventId": 4625,
  304. "logonId": "0",
  305. "logonType": 3,
  306. "status": "NT_STATUS_WRONG_PASSWORD",
  307. "localAddress": "ipv4:192.168.1.107:445",
  308. "remoteAddress": "ipv4:192.168.1.108:61351",
  309. "serviceDescription": "SMB2",
  310. "authDescription": null,
  311. "clientDomain": "DESKTOP-F9S3P6E",
  312. "clientAccount": "benjamin",
  313. "workstation": "DESKTOP-F9S3P6E",
  314. "becameAccount": null,
  315. "becameDomain": null,
  316. "becameSid": null,
  317. "mappedAccount": "benjamin",
  318. "mappedDomain": "DESKTOP-F9S3P6E",
  319. "netlogonComputer": null,
  320. "netlogonTrustAccount": null,
  321. "netlogonNegotiateFlags": "0x00000000",
  322. "netlogonSecureChannelType": 0,
  323. "netlogonTrustAccountSid": null,
  324. "passwordType": "NTLMv1",
  325. "duration": 2542
  326. },
  327. "timestamp_tval": {
  328. "tv_sec": 1677486059,
  329. "tv_usec": 247485
  330. }
  331. },
  332. {
  333. "timestamp": "2023-02-27T21:20:59.264144+1300",
  334. "type": "Authentication",
  335. "Authentication": {
  336. "version": {
  337. "major": 1,
  338. "minor": 2
  339. },
  340. "eventId": 4625,
  341. "logonId": "0",
  342. "logonType": 3,
  343. "status": "NT_STATUS_WRONG_PASSWORD",
  344. "localAddress": "ipv4:192.168.1.107:445",
  345. "remoteAddress": "ipv4:192.168.1.108:61352",
  346. "serviceDescription": "SMB2",
  347. "authDescription": null,
  348. "clientDomain": "DESKTOP-F9S3P6E",
  349. "clientAccount": "benjamin",
  350. "workstation": "DESKTOP-F9S3P6E",
  351. "becameAccount": null,
  352. "becameDomain": null,
  353. "becameSid": null,
  354. "mappedAccount": "benjamin",
  355. "mappedDomain": "DESKTOP-F9S3P6E",
  356. "netlogonComputer": null,
  357. "netlogonTrustAccount": null,
  358. "netlogonNegotiateFlags": "0x00000000",
  359. "netlogonSecureChannelType": 0,
  360. "netlogonTrustAccountSid": null,
  361. "passwordType": "NTLMv1",
  362. "duration": 2595
  363. },
  364. "timestamp_tval": {
  365. "tv_sec": 1677486059,
  366. "tv_usec": 264144
  367. }
  368. },
  369. {
  370. "timestamp": "2023-02-27T21:20:59.280137+1300",
  371. "type": "Authentication",
  372. "Authentication": {
  373. "version": {
  374. "major": 1,
  375. "minor": 2
  376. },
  377. "eventId": 4625,
  378. "logonId": "0",
  379. "logonType": 3,
  380. "status": "NT_STATUS_WRONG_PASSWORD",
  381. "localAddress": "ipv4:192.168.1.107:445",
  382. "remoteAddress": "ipv4:192.168.1.108:61353",
  383. "serviceDescription": "SMB2",
  384. "authDescription": null,
  385. "clientDomain": "DESKTOP-F9S3P6E",
  386. "clientAccount": "benjamin",
  387. "workstation": "DESKTOP-F9S3P6E",
  388. "becameAccount": null,
  389. "becameDomain": null,
  390. "becameSid": null,
  391. "mappedAccount": "benjamin",
  392. "mappedDomain": "DESKTOP-F9S3P6E",
  393. "netlogonComputer": null,
  394. "netlogonTrustAccount": null,
  395. "netlogonNegotiateFlags": "0x00000000",
  396. "netlogonSecureChannelType": 0,
  397. "netlogonTrustAccountSid": null,
  398. "passwordType": "NTLMv1",
  399. "duration": 2626
  400. },
  401. "timestamp_tval": {
  402. "tv_sec": 1677486059,
  403. "tv_usec": 280137
  404. }
  405. },
  406. {
  407. "timestamp": "2023-02-27T21:20:59.295686+1300",
  408. "type": "Authentication",
  409. "Authentication": {
  410. "version": {
  411. "major": 1,
  412. "minor": 2
  413. },
  414. "eventId": 4625,
  415. "logonId": "0",
  416. "logonType": 3,
  417. "status": "NT_STATUS_WRONG_PASSWORD",
  418. "localAddress": "ipv4:192.168.1.107:445",
  419. "remoteAddress": "ipv4:192.168.1.108:61354",
  420. "serviceDescription": "SMB2",
  421. "authDescription": null,
  422. "clientDomain": "DESKTOP-F9S3P6E",
  423. "clientAccount": "benjamin",
  424. "workstation": "DESKTOP-F9S3P6E",
  425. "becameAccount": null,
  426. "becameDomain": null,
  427. "becameSid": null,
  428. "mappedAccount": "benjamin",
  429. "mappedDomain": "DESKTOP-F9S3P6E",
  430. "netlogonComputer": null,
  431. "netlogonTrustAccount": null,
  432. "netlogonNegotiateFlags": "0x00000000",
  433. "netlogonSecureChannelType": 0,
  434. "netlogonTrustAccountSid": null,
  435. "passwordType": "NTLMv1",
  436. "duration": 2574
  437. },
  438. "timestamp_tval": {
  439. "tv_sec": 1677486059,
  440. "tv_usec": 295686
  441. }
  442. },
  443. {
  444. "timestamp": "2023-02-27T21:21:05.165740+1300",
  445. "type": "Authentication",
  446. "Authentication": {
  447. "version": {
  448. "major": 1,
  449. "minor": 2
  450. },
  451. "eventId": 4625,
  452. "logonId": "0",
  453. "logonType": 3,
  454. "status": "NT_STATUS_WRONG_PASSWORD",
  455. "localAddress": "ipv4:192.168.1.107:445",
  456. "remoteAddress": "ipv4:192.168.1.108:61357",
  457. "serviceDescription": "SMB2",
  458. "authDescription": null,
  459. "clientDomain": "DESKTOP-F9S3P6E",
  460. "clientAccount": "benjamin",
  461. "workstation": "DESKTOP-F9S3P6E",
  462. "becameAccount": null,
  463. "becameDomain": null,
  464. "becameSid": null,
  465. "mappedAccount": "benjamin",
  466. "mappedDomain": "DESKTOP-F9S3P6E",
  467. "netlogonComputer": null,
  468. "netlogonTrustAccount": null,
  469. "netlogonNegotiateFlags": "0x00000000",
  470. "netlogonSecureChannelType": 0,
  471. "netlogonTrustAccountSid": null,
  472. "passwordType": "NTLMv1",
  473. "duration": 2499
  474. },
  475. "timestamp_tval": {
  476. "tv_sec": 1677486065,
  477. "tv_usec": 165740
  478. }
  479. },
  480. {
  481. "timestamp": "2023-02-27T21:21:05.180698+1300",
  482. "type": "Authentication",
  483. "Authentication": {
  484. "version": {
  485. "major": 1,
  486. "minor": 2
  487. },
  488. "eventId": 4625,
  489. "logonId": "0",
  490. "logonType": 3,
  491. "status": "NT_STATUS_WRONG_PASSWORD",
  492. "localAddress": "ipv4:192.168.1.107:445",
  493. "remoteAddress": "ipv4:192.168.1.108:61358",
  494. "serviceDescription": "SMB2",
  495. "authDescription": null,
  496. "clientDomain": "DESKTOP-F9S3P6E",
  497. "clientAccount": "benjamin",
  498. "workstation": "DESKTOP-F9S3P6E",
  499. "becameAccount": null,
  500. "becameDomain": null,
  501. "becameSid": null,
  502. "mappedAccount": "benjamin",
  503. "mappedDomain": "DESKTOP-F9S3P6E",
  504. "netlogonComputer": null,
  505. "netlogonTrustAccount": null,
  506. "netlogonNegotiateFlags": "0x00000000",
  507. "netlogonSecureChannelType": 0,
  508. "netlogonTrustAccountSid": null,
  509. "passwordType": "NTLMv1",
  510. "duration": 2585
  511. },
  512. "timestamp_tval": {
  513. "tv_sec": 1677486065,
  514. "tv_usec": 180698
  515. }
  516. },
  517. {
  518. "timestamp": "2023-02-27T21:22:24.623958+1300",
  519. "type": "Authentication",
  520. "Authentication": {
  521. "version": {
  522. "major": 1,
  523. "minor": 2
  524. },
  525. "eventId": 4625,
  526. "logonId": "0",
  527. "logonType": 3,
  528. "status": "NT_STATUS_WRONG_PASSWORD",
  529. "localAddress": "ipv4:192.168.1.107:445",
  530. "remoteAddress": "ipv4:192.168.1.108:61433",
  531. "serviceDescription": "SMB2",
  532. "authDescription": null,
  533. "clientDomain": "DESKTOP-F9S3P6E",
  534. "clientAccount": "benjamin",
  535. "workstation": "DESKTOP-F9S3P6E",
  536. "becameAccount": null,
  537. "becameDomain": null,
  538. "becameSid": null,
  539. "mappedAccount": "benjamin",
  540. "mappedDomain": "DESKTOP-F9S3P6E",
  541. "netlogonComputer": null,
  542. "netlogonTrustAccount": null,
  543. "netlogonNegotiateFlags": "0x00000000",
  544. "netlogonSecureChannelType": 0,
  545. "netlogonTrustAccountSid": null,
  546. "passwordType": "NTLMv1",
  547. "duration": 6375
  548. },
  549. "timestamp_tval": {
  550. "tv_sec": 1677486144,
  551. "tv_usec": 623958
  552. }
  553. },
  554. {
  555. "timestamp": "2023-02-27T21:22:25.320251+1300",
  556. "type": "Authentication",
  557. "Authentication": {
  558. "version": {
  559. "major": 1,
  560. "minor": 2
  561. },
  562. "eventId": 4625,
  563. "logonId": "0",
  564. "logonType": 3,
  565. "status": "NT_STATUS_WRONG_PASSWORD",
  566. "localAddress": "ipv4:192.168.1.107:445",
  567. "remoteAddress": "ipv4:192.168.1.108:61435",
  568. "serviceDescription": "SMB2",
  569. "authDescription": null,
  570. "clientDomain": "DESKTOP-F9S3P6E",
  571. "clientAccount": "benjamin",
  572. "workstation": "DESKTOP-F9S3P6E",
  573. "becameAccount": null,
  574. "becameDomain": null,
  575. "becameSid": null,
  576. "mappedAccount": "benjamin",
  577. "mappedDomain": "DESKTOP-F9S3P6E",
  578. "netlogonComputer": null,
  579. "netlogonTrustAccount": null,
  580. "netlogonNegotiateFlags": "0x00000000",
  581. "netlogonSecureChannelType": 0,
  582. "netlogonTrustAccountSid": null,
  583. "passwordType": "NTLMv1",
  584. "duration": 3170
  585. },
  586. "timestamp_tval": {
  587. "tv_sec": 1677486145,
  588. "tv_usec": 320251
  589. }
  590. },
  591. {
  592. "timestamp": "2023-02-27T21:22:25.338300+1300",
  593. "type": "Authentication",
  594. "Authentication": {
  595. "version": {
  596. "major": 1,
  597. "minor": 2
  598. },
  599. "eventId": 4625,
  600. "logonId": "0",
  601. "logonType": 3,
  602. "status": "NT_STATUS_WRONG_PASSWORD",
  603. "localAddress": "ipv4:192.168.1.107:445",
  604. "remoteAddress": "ipv4:192.168.1.108:61436",
  605. "serviceDescription": "SMB2",
  606. "authDescription": null,
  607. "clientDomain": "DESKTOP-F9S3P6E",
  608. "clientAccount": "benjamin",
  609. "workstation": "DESKTOP-F9S3P6E",
  610. "becameAccount": null,
  611. "becameDomain": null,
  612. "becameSid": null,
  613. "mappedAccount": "benjamin",
  614. "mappedDomain": "DESKTOP-F9S3P6E",
  615. "netlogonComputer": null,
  616. "netlogonTrustAccount": null,
  617. "netlogonNegotiateFlags": "0x00000000",
  618. "netlogonSecureChannelType": 0,
  619. "netlogonTrustAccountSid": null,
  620. "passwordType": "NTLMv1",
  621. "duration": 3393
  622. },
  623. "timestamp_tval": {
  624. "tv_sec": 1677486145,
  625. "tv_usec": 338300
  626. }
  627. },
  628. {
  629. "timestamp": "2023-02-27T21:22:25.819222+1300",
  630. "type": "Authentication",
  631. "Authentication": {
  632. "version": {
  633. "major": 1,
  634. "minor": 2
  635. },
  636. "eventId": 4625,
  637. "logonId": "0",
  638. "logonType": 3,
  639. "status": "NT_STATUS_WRONG_PASSWORD",
  640. "localAddress": "ipv4:192.168.1.107:445",
  641. "remoteAddress": "ipv4:192.168.1.108:61437",
  642. "serviceDescription": "SMB2",
  643. "authDescription": null,
  644. "clientDomain": "DESKTOP-F9S3P6E",
  645. "clientAccount": "benjamin",
  646. "workstation": "DESKTOP-F9S3P6E",
  647. "becameAccount": null,
  648. "becameDomain": null,
  649. "becameSid": null,
  650. "mappedAccount": "benjamin",
  651. "mappedDomain": "DESKTOP-F9S3P6E",
  652. "netlogonComputer": null,
  653. "netlogonTrustAccount": null,
  654. "netlogonNegotiateFlags": "0x00000000",
  655. "netlogonSecureChannelType": 0,
  656. "netlogonTrustAccountSid": null,
  657. "passwordType": "NTLMv1",
  658. "duration": 3192
  659. },
  660. "timestamp_tval": {
  661. "tv_sec": 1677486145,
  662. "tv_usec": 819222
  663. }
  664. },
  665. {
  666. "timestamp": "2023-02-27T21:22:25.837756+1300",
  667. "type": "Authentication",
  668. "Authentication": {
  669. "version": {
  670. "major": 1,
  671. "minor": 2
  672. },
  673. "eventId": 4625,
  674. "logonId": "0",
  675. "logonType": 3,
  676. "status": "NT_STATUS_WRONG_PASSWORD",
  677. "localAddress": "ipv4:192.168.1.107:445",
  678. "remoteAddress": "ipv4:192.168.1.108:61438",
  679. "serviceDescription": "SMB2",
  680. "authDescription": null,
  681. "clientDomain": "DESKTOP-F9S3P6E",
  682. "clientAccount": "benjamin",
  683. "workstation": "DESKTOP-F9S3P6E",
  684. "becameAccount": null,
  685. "becameDomain": null,
  686. "becameSid": null,
  687. "mappedAccount": "benjamin",
  688. "mappedDomain": "DESKTOP-F9S3P6E",
  689. "netlogonComputer": null,
  690. "netlogonTrustAccount": null,
  691. "netlogonNegotiateFlags": "0x00000000",
  692. "netlogonSecureChannelType": 0,
  693. "netlogonTrustAccountSid": null,
  694. "passwordType": "NTLMv1",
  695. "duration": 3474
  696. },
  697. "timestamp_tval": {
  698. "tv_sec": 1677486145,
  699. "tv_usec": 837756
  700. }
  701. },
  702. {
  703. "timestamp": "2023-02-27T21:22:26.266598+1300",
  704. "type": "Authentication",
  705. "Authentication": {
  706. "version": {
  707. "major": 1,
  708. "minor": 2
  709. },
  710. "eventId": 4625,
  711. "logonId": "0",
  712. "logonType": 3,
  713. "status": "NT_STATUS_WRONG_PASSWORD",
  714. "localAddress": "ipv4:192.168.1.107:445",
  715. "remoteAddress": "ipv4:192.168.1.108:61439",
  716. "serviceDescription": "SMB2",
  717. "authDescription": null,
  718. "clientDomain": "DESKTOP-F9S3P6E",
  719. "clientAccount": "benjamin",
  720. "workstation": "DESKTOP-F9S3P6E",
  721. "becameAccount": null,
  722. "becameDomain": null,
  723. "becameSid": null,
  724. "mappedAccount": "benjamin",
  725. "mappedDomain": "DESKTOP-F9S3P6E",
  726. "netlogonComputer": null,
  727. "netlogonTrustAccount": null,
  728. "netlogonNegotiateFlags": "0x00000000",
  729. "netlogonSecureChannelType": 0,
  730. "netlogonTrustAccountSid": null,
  731. "passwordType": "NTLMv1",
  732. "duration": 2415
  733. },
  734. "timestamp_tval": {
  735. "tv_sec": 1677486146,
  736. "tv_usec": 266598
  737. }
  738. },
  739. {
  740. "timestamp": "2023-02-27T21:22:26.281681+1300",
  741. "type": "Authentication",
  742. "Authentication": {
  743. "version": {
  744. "major": 1,
  745. "minor": 2
  746. },
  747. "eventId": 4625,
  748. "logonId": "0",
  749. "logonType": 3,
  750. "status": "NT_STATUS_WRONG_PASSWORD",
  751. "localAddress": "ipv4:192.168.1.107:445",
  752. "remoteAddress": "ipv4:192.168.1.108:61440",
  753. "serviceDescription": "SMB2",
  754. "authDescription": null,
  755. "clientDomain": "DESKTOP-F9S3P6E",
  756. "clientAccount": "benjamin",
  757. "workstation": "DESKTOP-F9S3P6E",
  758. "becameAccount": null,
  759. "becameDomain": null,
  760. "becameSid": null,
  761. "mappedAccount": "benjamin",
  762. "mappedDomain": "DESKTOP-F9S3P6E",
  763. "netlogonComputer": null,
  764. "netlogonTrustAccount": null,
  765. "netlogonNegotiateFlags": "0x00000000",
  766. "netlogonSecureChannelType": 0,
  767. "netlogonTrustAccountSid": null,
  768. "passwordType": "NTLMv1",
  769. "duration": 2542
  770. },
  771. "timestamp_tval": {
  772. "tv_sec": 1677486146,
  773. "tv_usec": 281681
  774. }
  775. },
  776. {
  777. "timestamp": "2023-02-27T21:22:28.998109+1300",
  778. "type": "Authentication",
  779. "Authentication": {
  780. "version": {
  781. "major": 1,
  782. "minor": 2
  783. },
  784. "eventId": 4625,
  785. "logonId": "0",
  786. "logonType": 3,
  787. "status": "NT_STATUS_WRONG_PASSWORD",
  788. "localAddress": "ipv4:192.168.1.107:445",
  789. "remoteAddress": "ipv4:192.168.1.108:61442",
  790. "serviceDescription": "SMB2",
  791. "authDescription": null,
  792. "clientDomain": "DESKTOP-F9S3P6E",
  793. "clientAccount": "benjamin",
  794. "workstation": "DESKTOP-F9S3P6E",
  795. "becameAccount": null,
  796. "becameDomain": null,
  797. "becameSid": null,
  798. "mappedAccount": "benjamin",
  799. "mappedDomain": "DESKTOP-F9S3P6E",
  800. "netlogonComputer": null,
  801. "netlogonTrustAccount": null,
  802. "netlogonNegotiateFlags": "0x00000000",
  803. "netlogonSecureChannelType": 0,
  804. "netlogonTrustAccountSid": null,
  805. "passwordType": "NTLMv1",
  806. "duration": 3070
  807. },
  808. "timestamp_tval": {
  809. "tv_sec": 1677486148,
  810. "tv_usec": 998109
  811. }
  812. },
  813. {
  814. "timestamp": "2023-02-27T21:22:29.015125+1300",
  815. "type": "Authentication",
  816. "Authentication": {
  817. "version": {
  818. "major": 1,
  819. "minor": 2
  820. },
  821. "eventId": 4625,
  822. "logonId": "0",
  823. "logonType": 3,
  824. "status": "NT_STATUS_WRONG_PASSWORD",
  825. "localAddress": "ipv4:192.168.1.107:445",
  826. "remoteAddress": "ipv4:192.168.1.108:61443",
  827. "serviceDescription": "SMB2",
  828. "authDescription": null,
  829. "clientDomain": "DESKTOP-F9S3P6E",
  830. "clientAccount": "benjamin",
  831. "workstation": "DESKTOP-F9S3P6E",
  832. "becameAccount": null,
  833. "becameDomain": null,
  834. "becameSid": null,
  835. "mappedAccount": "benjamin",
  836. "mappedDomain": "DESKTOP-F9S3P6E",
  837. "netlogonComputer": null,
  838. "netlogonTrustAccount": null,
  839. "netlogonNegotiateFlags": "0x00000000",
  840. "netlogonSecureChannelType": 0,
  841. "netlogonTrustAccountSid": null,
  842. "passwordType": "NTLMv1",
  843. "duration": 3208
  844. },
  845. "timestamp_tval": {
  846. "tv_sec": 1677486149,
  847. "tv_usec": 15125
  848. }
  849. },
  850. {
  851. "timestamp": "2023-02-27T21:22:29.902449+1300",
  852. "type": "Authentication",
  853. "Authentication": {
  854. "version": {
  855. "major": 1,
  856. "minor": 2
  857. },
  858. "eventId": 4625,
  859. "logonId": "0",
  860. "logonType": 3,
  861. "status": "NT_STATUS_WRONG_PASSWORD",
  862. "localAddress": "ipv4:192.168.1.107:445",
  863. "remoteAddress": "ipv4:192.168.1.108:61444",
  864. "serviceDescription": "SMB2",
  865. "authDescription": null,
  866. "clientDomain": "DESKTOP-F9S3P6E",
  867. "clientAccount": "benjamin",
  868. "workstation": "DESKTOP-F9S3P6E",
  869. "becameAccount": null,
  870. "becameDomain": null,
  871. "becameSid": null,
  872. "mappedAccount": "benjamin",
  873. "mappedDomain": "DESKTOP-F9S3P6E",
  874. "netlogonComputer": null,
  875. "netlogonTrustAccount": null,
  876. "netlogonNegotiateFlags": "0x00000000",
  877. "netlogonSecureChannelType": 0,
  878. "netlogonTrustAccountSid": null,
  879. "passwordType": "NTLMv1",
  880. "duration": 2560
  881. },
  882. "timestamp_tval": {
  883. "tv_sec": 1677486149,
  884. "tv_usec": 902449
  885. }
  886. },
  887. {
  888. "timestamp": "2023-02-27T21:22:29.917892+1300",
  889. "type": "Authentication",
  890. "Authentication": {
  891. "version": {
  892. "major": 1,
  893. "minor": 2
  894. },
  895. "eventId": 4625,
  896. "logonId": "0",
  897. "logonType": 3,
  898. "status": "NT_STATUS_WRONG_PASSWORD",
  899. "localAddress": "ipv4:192.168.1.107:445",
  900. "remoteAddress": "ipv4:192.168.1.108:61445",
  901. "serviceDescription": "SMB2",
  902. "authDescription": null,
  903. "clientDomain": "DESKTOP-F9S3P6E",
  904. "clientAccount": "benjamin",
  905. "workstation": "DESKTOP-F9S3P6E",
  906. "becameAccount": null,
  907. "becameDomain": null,
  908. "becameSid": null,
  909. "mappedAccount": "benjamin",
  910. "mappedDomain": "DESKTOP-F9S3P6E",
  911. "netlogonComputer": null,
  912. "netlogonTrustAccount": null,
  913. "netlogonNegotiateFlags": "0x00000000",
  914. "netlogonSecureChannelType": 0,
  915. "netlogonTrustAccountSid": null,
  916. "passwordType": "NTLMv1",
  917. "duration": 2661
  918. },
  919. "timestamp_tval": {
  920. "tv_sec": 1677486149,
  921. "tv_usec": 917892
  922. }
  923. },
  924. {
  925. "timestamp": "2023-02-27T21:22:30.699997+1300",
  926. "type": "Authentication",
  927. "Authentication": {
  928. "version": {
  929. "major": 1,
  930. "minor": 2
  931. },
  932. "eventId": 4625,
  933. "logonId": "0",
  934. "logonType": 3,
  935. "status": "NT_STATUS_WRONG_PASSWORD",
  936. "localAddress": "ipv4:192.168.1.107:445",
  937. "remoteAddress": "ipv4:192.168.1.108:61446",
  938. "serviceDescription": "SMB2",
  939. "authDescription": null,
  940. "clientDomain": "DESKTOP-F9S3P6E",
  941. "clientAccount": "benjamin",
  942. "workstation": "DESKTOP-F9S3P6E",
  943. "becameAccount": null,
  944. "becameDomain": null,
  945. "becameSid": null,
  946. "mappedAccount": "benjamin",
  947. "mappedDomain": "DESKTOP-F9S3P6E",
  948. "netlogonComputer": null,
  949. "netlogonTrustAccount": null,
  950. "netlogonNegotiateFlags": "0x00000000",
  951. "netlogonSecureChannelType": 0,
  952. "netlogonTrustAccountSid": null,
  953. "passwordType": "NTLMv1",
  954. "duration": 2505
  955. },
  956. "timestamp_tval": {
  957. "tv_sec": 1677486150,
  958. "tv_usec": 699997
  959. }
  960. },
  961. {
  962. "timestamp": "2023-02-27T21:22:30.716630+1300",
  963. "type": "Authentication",
  964. "Authentication": {
  965. "version": {
  966. "major": 1,
  967. "minor": 2
  968. },
  969. "eventId": 4625,
  970. "logonId": "0",
  971. "logonType": 3,
  972. "status": "NT_STATUS_WRONG_PASSWORD",
  973. "localAddress": "ipv4:192.168.1.107:445",
  974. "remoteAddress": "ipv4:192.168.1.108:61447",
  975. "serviceDescription": "SMB2",
  976. "authDescription": null,
  977. "clientDomain": "DESKTOP-F9S3P6E",
  978. "clientAccount": "benjamin",
  979. "workstation": "DESKTOP-F9S3P6E",
  980. "becameAccount": null,
  981. "becameDomain": null,
  982. "becameSid": null,
  983. "mappedAccount": "benjamin",
  984. "mappedDomain": "DESKTOP-F9S3P6E",
  985. "netlogonComputer": null,
  986. "netlogonTrustAccount": null,
  987. "netlogonNegotiateFlags": "0x00000000",
  988. "netlogonSecureChannelType": 0,
  989. "netlogonTrustAccountSid": null,
  990. "passwordType": "NTLMv1",
  991. "duration": 2630
  992. },
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!