I have SIEM setup and I noticed that one of the windows server is both source and destination ip
and it generated these ID 4672, ID 4735 however the username for the events were random number and letters something like this A938342-9F39281...etc
Could someone please explain to me why is the username like that ?