Shows logon statistics for local logins on
remote computers with name, number of logons and bad password count |
Returns logon statistics for all local Windows logins, including invalid logons and successful logon from user login history. This free tool can be used to look at windows account login numbers, review accounts with too many invalid logon attempts, which could indicate attempt to hack into a local Windows accounts, such as attempt to login as Administrator by guessing passwords. You can even create alerts when too many invalid passwords are entered. The query lists user names, number of logons and bad password count.
Sign-up for Action1 Free Edition to receive real-time alerts and view instant data from your endpoints, such as alert on Logon Statistics created, deleted or modified or run live or scheduled queries with the ability to export to CSV or Excel. Action1 Endpoint Security Platform is entirely SaaS, with online web interface (no management tools to install) and it has zero cost for basic functionality. Running in the Cloud, Action1 discovers all of your endpoints in seconds and you can query your entire network in plain English.
Respond to Threatsin Real-Time
Ask questions in plain English such as "list of installed software" or "all running processes".
Get answers instantly from live systems or subscribe to real-time alerts.
Related Alerts and Reports:
Local User Accounts
Shows local user accounts with name, disabled/enabled state, lockout state, password expiration, password required and SID
Shows Windows local groups on remote computers with
domain, name, description and SID
Local Group Membership
Shows local group membership with group name and user name, listing all members of each group
Keywords: Windows login, Windows login as administrator, invalid logins, windows login log, user login history, windows account login, too many invalid password attempts, Win32_NetworkLoginProfile,Action1 Logon Statistics.
Find more information on Logon Statistics at Microsoft TechNet.