Paste2.org - Viewing Paste znIGpGkp

root@zalupa:~# /usr/sbin/smbd -F -S --no-process-group -d 10 | ts '[%Y-%m-%d %H:%M:%.S]'
[2022-06-17 08:44:51.146317] INFO: Current debug levels:
[2022-06-17 08:44:51.147949] all: 10
[2022-06-17 08:44:51.153016] tdb: 10
[2022-06-17 08:44:51.154825] printdrivers: 10
[2022-06-17 08:44:51.156518] lanman: 10
[2022-06-17 08:44:51.158171] smb: 10
[2022-06-17 08:44:51.159792] rpc_parse: 10
[2022-06-17 08:44:51.173388] rpc_srv: 10
[2022-06-17 08:44:51.175088] rpc_cli: 10
[2022-06-17 08:44:51.176737] passdb: 10
[2022-06-17 08:44:51.178366] sam: 10
[2022-06-17 08:44:51.179971] auth: 10
[2022-06-17 08:44:51.181596] winbind: 10
[2022-06-17 08:44:51.183280] vfs: 10
[2022-06-17 08:44:51.184931] idmap: 10
[2022-06-17 08:44:51.186552] quota: 10
[2022-06-17 08:44:51.188168] acls: 10
[2022-06-17 08:44:51.189778] locking: 10
[2022-06-17 08:44:51.191400] msdfs: 10
[2022-06-17 08:44:51.193068] dmapi: 10
[2022-06-17 08:44:51.203499] registry: 10
[2022-06-17 08:44:51.205277] scavenger: 10
[2022-06-17 08:44:51.206944] dns: 10
[2022-06-17 08:44:51.208577] ldb: 10
[2022-06-17 08:44:51.210264] tevent: 10
[2022-06-17 08:44:51.211900] auth_audit: 10
[2022-06-17 08:44:51.213584] auth_json_audit: 10
[2022-06-17 08:44:51.215224] kerberos: 10
[2022-06-17 08:44:51.216841] drs_repl: 10
[2022-06-17 08:44:51.218454] smb2: 10
[2022-06-17 08:44:51.223532] smb2_credits: 10
[2022-06-17 08:44:51.225315] dsdb_audit: 10
[2022-06-17 08:44:51.226982] dsdb_json_audit: 10
[2022-06-17 08:44:51.228622] dsdb_password_audit: 10
[2022-06-17 08:44:51.233554] dsdb_password_json_audit: 10
[2022-06-17 08:44:51.235381] dsdb_transaction_audit: 10
[2022-06-17 08:44:51.237071] dsdb_transaction_json_audit: 10
[2022-06-17 08:44:51.243494] dsdb_group_audit: 10
[2022-06-17 08:44:51.245252] dsdb_group_json_audit: 10
[2022-06-17 08:44:51.246933] smbd version 4.14.12 started.
[2022-06-17 08:44:51.248595] Copyright Andrew Tridgell and the Samba Team 1992-2021
[2022-06-17 08:44:51.250256] uid=0 gid=0 euid=0 egid=0
[2022-06-17 08:44:51.263729]
[2022-06-17 08:44:51.265621] Paths:
[2022-06-17 08:44:51.267307] SBINDIR: /usr/sbin
[2022-06-17 08:44:51.268959] BINDIR: /usr/bin
[2022-06-17 08:44:51.270599] CONFIGFILE: /etc/samba/smb.conf
[2022-06-17 08:44:51.272264] LOGFILEBASE: /var/log
[2022-06-17 08:44:51.273974] LMHOSTSFILE: /etc/samba/lmhosts
[2022-06-17 08:44:51.275622] LIBDIR: /usr/lib
[2022-06-17 08:44:51.277239] DATADIR: /usr/share
[2022-06-17 08:44:51.278879] SAMBA_DATADIR: /usr/share/samba
[2022-06-17 08:44:51.280516] MODULESDIR: /usr/lib/samba
[2022-06-17 08:44:51.282151] SHLIBEXT: so
[2022-06-17 08:44:51.284492] LOCKDIR: /var/lock
[2022-06-17 08:44:51.288498] STATEDIR: /var/lib/samba
[2022-06-17 08:44:51.295200] CACHEDIR: /var/cache/samba
[2022-06-17 08:44:51.303622] PIDDIR: /var/run
[2022-06-17 08:44:51.305444] SMB_PASSWD_FILE: /etc/samba/smbpasswd
[2022-06-17 08:44:51.307140] PRIVATE_DIR: /etc/samba
[2022-06-17 08:44:51.308777] BINDDNS_DIR: /var/lib/samba/bind-dns
[2022-06-17 08:44:51.310424]
[2022-06-17 08:44:51.323617] System Headers:
[2022-06-17 08:44:51.325488] HAVE_SYS_ACL_H
[2022-06-17 08:44:51.327177] HAVE_SYS_AUXV_H
[2022-06-17 08:44:51.328803] HAVE_SYS_CAPABILITY_H
[2022-06-17 08:44:51.330431] HAVE_SYS_CDEFS_H
[2022-06-17 08:44:51.332069] HAVE_SYS_DIR_H
[2022-06-17 08:44:51.333756] HAVE_SYS_EPOLL_H
[2022-06-17 08:44:51.335408] HAVE_SYS_EVENTFD_H
[2022-06-17 08:44:51.337039] HAVE_SYS_FCNTL_H
[2022-06-17 08:44:51.338661] HAVE_SYS_FILE_H
[2022-06-17 08:44:51.340270] HAVE_SYS_INOTIFY_H
[2022-06-17 08:44:51.341881] HAVE_SYS_IOCTL_H
[2022-06-17 08:44:51.343540] HAVE_SYS_IPC_H
[2022-06-17 08:44:51.349519] HAVE_SYS_KERNEL_PROC_CORE_PATTERN
[2022-06-17 08:44:51.351435] HAVE_SYS_MMAN_H
[2022-06-17 08:44:51.360891] HAVE_SYS_MOUNT_H
[2022-06-17 08:44:51.373016] HAVE_SYS_PARAM_H
[2022-06-17 08:44:51.375021] HAVE_SYS_PRCTL_H
[2022-06-17 08:44:51.376745] HAVE_SYS_QUOTAS
[2022-06-17 08:44:51.378391] HAVE_SYS_QUOTA_H
[2022-06-17 08:44:51.380021] HAVE_SYS_RESOURCE_H
[2022-06-17 08:44:51.381646] HAVE_SYS_SELECT_H
[2022-06-17 08:44:51.392839] HAVE_SYS_SENDFILE_H
[2022-06-17 08:44:51.394899] HAVE_SYS_SHM_H
[2022-06-17 08:44:51.396610] HAVE_SYS_SOCKET_H
[2022-06-17 08:44:51.398276] HAVE_SYS_STATFS_H
[2022-06-17 08:44:51.399920] HAVE_SYS_STATVFS_H
[2022-06-17 08:44:51.401547] HAVE_SYS_STAT_H
[2022-06-17 08:44:51.403218] HAVE_SYS_STROPTS_H
[2022-06-17 08:44:51.404868] HAVE_SYS_SYSCALL_H
[2022-06-17 08:44:51.406489] HAVE_SYS_SYSLOG_H
[2022-06-17 08:44:51.413020] HAVE_SYS_SYSMACROS_H
[2022-06-17 08:44:51.414924] HAVE_SYS_TERMIOS_H
[2022-06-17 08:44:51.416625] HAVE_SYS_TIMEB_H
[2022-06-17 08:44:51.418436] HAVE_SYS_TIMES_H
[2022-06-17 08:44:51.423502] HAVE_SYS_TIME_H
[2022-06-17 08:44:51.426398] HAVE_SYS_TYPES_H
[2022-06-17 08:44:51.428167] HAVE_SYS_UCONTEXT_H
[2022-06-17 08:44:51.429845] HAVE_SYS_UIO_H
[2022-06-17 08:44:51.443695] HAVE_SYS_UN_H
[2022-06-17 08:44:51.445513] HAVE_SYS_UTSNAME_H
[2022-06-17 08:44:51.447198] HAVE_SYS_VFS_H
[2022-06-17 08:44:51.448830] HAVE_SYS_WAIT_H
[2022-06-17 08:44:51.450470] HAVE_SYS_XATTR_H
[2022-06-17 08:44:51.452108]
[2022-06-17 08:44:51.453778] Headers:
[2022-06-17 08:44:51.455404] HAVE_ACL_LIBACL_H
[2022-06-17 08:44:51.457037] HAVE_ALLOCA_H
[2022-06-17 08:44:51.458661] HAVE_ARPA_INET_H
[2022-06-17 08:44:51.460281] HAVE_ARPA_NAMESER_H
[2022-06-17 08:44:51.461775] HAVE_ASM_TYPES_H
[2022-06-17 08:44:51.463581] HAVE_ASM_UNISTD_H
[2022-06-17 08:44:51.473578] HAVE_ASSERT_H
[2022-06-17 08:44:51.475266] HAVE_ATTR_ATTRIBUTES_H
[2022-06-17 08:44:51.476787] HAVE_AVAHI_CLIENT_CLIENT_H
[2022-06-17 08:44:51.478599] HAVE_AVAHI_COMMON_WATCH_H
[2022-06-17 08:44:51.480251] HAVE_BSD_LIBUTIL_H
[2022-06-17 08:44:51.481876] HAVE_COM_ERR_H
[2022-06-17 08:44:51.483560] HAVE_CONFIG_H
[2022-06-17 08:44:51.485212] HAVE_CRYPT_H
[2022-06-17 08:44:51.486836] HAVE_CTYPE_H
[2022-06-17 08:44:51.493519] HAVE_CURSES_H
[2022-06-17 08:44:51.495165] HAVE_DIRENT_H
[2022-06-17 08:44:51.496679] HAVE_DLFCN_H
[2022-06-17 08:44:51.498161] HAVE_ENDIAN_H
[2022-06-17 08:44:51.499656] HAVE_ERRNO_H
[2022-06-17 08:44:51.501052] HAVE_ERR_H
[2022-06-17 08:44:51.513527] HAVE_FCNTL_H
[2022-06-17 08:44:51.515171] HAVE_FLOAT_H
[2022-06-17 08:44:51.516693] HAVE_FNMATCH_H
[2022-06-17 08:44:51.518363] HAVE_FTW_H
[2022-06-17 08:44:51.520098] HAVE_FUSE_FUSE_LOWLEVEL_H
[2022-06-17 08:44:51.521734] HAVE_GETOPT_H
[2022-06-17 08:44:51.523433] HAVE_GLIB_H
[2022-06-17 08:44:51.525069] HAVE_GLOB_H
[2022-06-17 08:44:51.526695] HAVE_GNUTLS_GNUTLS_H
[2022-06-17 08:44:51.528311] HAVE_GPFS_H
[2022-06-17 08:44:51.529917] HAVE_GRP_H
[2022-06-17 08:44:51.543534] HAVE_GSSAPI_GSSAPI_H
[2022-06-17 08:44:51.546367] HAVE_GSSAPI_GSSAPI_KRB5_H
[2022-06-17 08:44:51.548214] HAVE_GSSAPI_GSSAPI_SPNEGO_H
[2022-06-17 08:44:51.549770] HAVE_ICONV_H
[2022-06-17 08:44:51.551261] HAVE_IFADDRS_H
[2022-06-17 08:44:51.552738] HAVE_INTTYPES_H
[2022-06-17 08:44:51.554292] HAVE_KRB5_H
[2022-06-17 08:44:51.555771] HAVE_KRB5_LOCATE_PLUGIN_H
[2022-06-17 08:44:51.557266] HAVE_LANGINFO_H
[2022-06-17 08:44:51.564176] HAVE_LASTLOG_H
[2022-06-17 08:44:51.565878] HAVE_LIBGEN_H
[2022-06-17 08:44:51.567414] HAVE_LIBURING_H
[2022-06-17 08:44:51.568902] HAVE_LIMITS_H
[2022-06-17 08:44:51.571391] HAVE_LINUX_ETHTOOL_H
[2022-06-17 08:44:51.580261] HAVE_LINUX_FALLOC_H
[2022-06-17 08:44:51.581948] HAVE_LINUX_FCNTL_H
[2022-06-17 08:44:51.583559] HAVE_LINUX_FS_H
[2022-06-17 08:44:51.585072] HAVE_LINUX_IOCTL_H
[2022-06-17 08:44:51.586558] HAVE_LINUX_SOCKIOS_H
[2022-06-17 08:44:51.588043] HAVE_LINUX_TYPES_H
[2022-06-17 08:44:51.589515] HAVE_LOCALE_H
[2022-06-17 08:44:51.594142] HAVE_MALLOC_H
[2022-06-17 08:44:51.595770] HAVE_MEMORY_H
[2022-06-17 08:44:51.597287] HAVE_MNTENT_H
[2022-06-17 08:44:51.598775] HAVE_NETDB_H
[2022-06-17 08:44:51.600250] HAVE_NETINET_IN_H
[2022-06-17 08:44:51.601730] HAVE_NETINET_IN_SYSTM_H
[2022-06-17 08:44:51.603247] HAVE_NETINET_IP_H
[2022-06-17 08:44:51.604736] HAVE_NETINET_TCP_H
[2022-06-17 08:44:51.606217] HAVE_NET_IF_H
[2022-06-17 08:44:51.607904] HAVE_POLL_H
[2022-06-17 08:44:51.609406] HAVE_POPT_H
[2022-06-17 08:44:51.610890] HAVE_PTHREAD_H
[2022-06-17 08:44:51.612367] HAVE_PTY_H
[2022-06-17 08:44:51.613921] HAVE_PWD_H
[2022-06-17 08:44:51.615404] HAVE_READLINE_HISTORY_H
[2022-06-17 08:44:51.616871] HAVE_READLINE_READLINE_H
[2022-06-17 08:44:51.618346] HAVE_RESOLV_H
[2022-06-17 08:44:51.619815] HAVE_RPC_NETTYPE_H
[2022-06-17 08:44:51.621287] HAVE_RPC_RPC_H
[2022-06-17 08:44:51.623001] HAVE_RPC_XDR_H
[2022-06-17 08:44:51.624513] HAVE_SASL_SASL_H
[2022-06-17 08:44:51.626480] HAVE_SCHED_H
[2022-06-17 08:44:51.628058] HAVE_SECURITY_PAM_MODULES_H
[2022-06-17 08:44:51.629583] HAVE_SETJMP_H
[2022-06-17 08:44:51.631078] HAVE_SHADOW_H
[2022-06-17 08:44:51.632559] HAVE_SIGNAL_H
[2022-06-17 08:44:51.634124] HAVE_STDARG_H
[2022-06-17 08:44:51.635621] HAVE_STDATOMIC_H
[2022-06-17 08:44:51.637281] HAVE_STDBOOL_H
[2022-06-17 08:44:51.638783] HAVE_STDDEF_H
[2022-06-17 08:44:51.640262] HAVE_STDINT_H
[2022-06-17 08:44:51.641891] HAVE_STDIO_H
[2022-06-17 08:44:51.643466] HAVE_STDLIB_H
[2022-06-17 08:44:51.644980] HAVE_STRINGS_H
[2022-06-17 08:44:51.646634] HAVE_STRING_H
[2022-06-17 08:44:51.648138] HAVE_STROPTS_H
[2022-06-17 08:44:51.649630] HAVE_SYSCALL_H
[2022-06-17 08:44:51.651108] HAVE_SYSLOG_H
[2022-06-17 08:44:51.652767] HAVE_TERMCAP_H
[2022-06-17 08:44:51.654323] HAVE_TERMIOS_H
[2022-06-17 08:44:51.655823] HAVE_TERM_H
[2022-06-17 08:44:51.657311] HAVE_TIME_H
[2022-06-17 08:44:51.658782] HAVE_UNISTD_H
[2022-06-17 08:44:51.660256] HAVE_UTIME_H
[2022-06-17 08:44:51.661888] HAVE_ZLIB_H
[2022-06-17 08:44:51.663658]
[2022-06-17 08:44:51.665311] UTMP Options:
[2022-06-17 08:44:51.667340] HAVE_UTMPX_H
[2022-06-17 08:44:51.669083] HAVE_UTMP_H
[2022-06-17 08:44:51.670699]
[2022-06-17 08:44:51.672195] HAVE_* Defines:
[2022-06-17 08:44:51.673986] HAVE_ADDR_TYPE_IN_KRB5_ADDRESS
[2022-06-17 08:44:51.675647] HAVE_AP_OPTS_USE_SUBKEY
[2022-06-17 08:44:51.677129] HAVE_ASPRINTF
[2022-06-17 08:44:51.678877] HAVE_ATEXIT
[2022-06-17 08:44:51.680397] HAVE_ATOMIC_THREAD_FENCE
[2022-06-17 08:44:51.682023] HAVE_ATOMIC_THREAD_FENCE_SUPPORT
[2022-06-17 08:44:51.683708] HAVE_AVAHI_CLIENT_NEW
[2022-06-17 08:44:51.685343] HAVE_AVAHI_STRERROR
[2022-06-17 08:44:51.686952] HAVE_BASENAME
[2022-06-17 08:44:51.688644] HAVE_BLKCNT_T
[2022-06-17 08:44:51.690155] HAVE_BLKSIZE_T
[2022-06-17 08:44:51.691798] HAVE_BOOL
[2022-06-17 08:44:51.693460] HAVE_BSD_STRTOLL
[2022-06-17 08:44:51.695088] HAVE_BZERO
[2022-06-17 08:44:51.696686] HAVE_C99_VSNPRINTF
[2022-06-17 08:44:51.698309] HAVE_CAP_GET_PROC
[2022-06-17 08:44:51.699952] HAVE_CHARSET_CP850
[2022-06-17 08:44:51.701561] HAVE_CHARSET_UTF_8
[2022-06-17 08:44:51.703317] HAVE_CHECKSUM_IN_KRB5_CHECKSUM
[2022-06-17 08:44:51.704959] HAVE_CHMOD
[2022-06-17 08:44:51.706573] HAVE_CHOWN
[2022-06-17 08:44:51.708073] HAVE_CHROOT
[2022-06-17 08:44:51.709776] HAVE_CLEARENV
[2022-06-17 08:44:51.711375] HAVE_CLOCK_GETTIME
[2022-06-17 08:44:51.712910] HAVE_CLOCK_MONOTONIC
[2022-06-17 08:44:51.714556] HAVE_CLOCK_PROCESS_CPUTIME_ID
[2022-06-17 08:44:51.716199] HAVE_CLOCK_REALTIME
[2022-06-17 08:44:51.717808] HAVE_COMPILER_WILL_OPTIMIZE_OUT_FNS
[2022-06-17 08:44:51.719435] HAVE_CONNECT
[2022-06-17 08:44:51.721042] HAVE_CONSTRUCTOR_ATTRIBUTE
[2022-06-17 08:44:51.722657] HAVE_COPY_FILE_RANGE
[2022-06-17 08:44:51.724451] HAVE_CPPFUNCTION
[2022-06-17 08:44:51.725965] HAVE_CRYPT
[2022-06-17 08:44:51.727922] HAVE_CRYPT_R
[2022-06-17 08:44:51.729563] HAVE_DECL_ASPRINTF
[2022-06-17 08:44:51.731072] HAVE_DECL_DLOPEN
[2022-06-17 08:44:51.732683] HAVE_DECL_EWOULDBLOCK
[2022-06-17 08:44:51.734453] HAVE_DECL_FDATASYNC
[2022-06-17 08:44:51.736071] HAVE_DECL_FS_COMPR_FL
[2022-06-17 08:44:51.737573] HAVE_DECL_FS_IOC_GETFLAGS
[2022-06-17 08:44:51.739313] HAVE_DECL_GETTIMEOFDAY
[2022-06-17 08:44:51.740817] HAVE_DECL_H_ERRNO
[2022-06-17 08:44:51.742429] HAVE_DECL_KRB5_AUTH_CON_SET_REQ_CKSUMTYPE
[2022-06-17 08:44:51.744368] HAVE_DECL_KRB5_GET_CREDENTIALS_FOR_USER
[2022-06-17 08:44:51.745895] HAVE_DECL_MALLOC
[2022-06-17 08:44:51.747510] HAVE_DECL_MEMALIGN
[2022-06-17 08:44:51.749116] HAVE_DECL_PTHREAD_MUTEX_ROBUST
[2022-06-17 08:44:51.750858] HAVE_DECL_READAHEAD
[2022-06-17 08:44:51.752486] HAVE_DECL_RL_EVENT_HOOK
[2022-06-17 08:44:51.754055] HAVE_DECL_SNPRINTF
[2022-06-17 08:44:51.755791] HAVE_DECL_STRPTIME
[2022-06-17 08:44:51.757294] HAVE_DECL_VASPRINTF
[2022-06-17 08:44:51.759010] HAVE_DECL_VSNPRINTF
[2022-06-17 08:44:51.760616] HAVE_DECL__RES
[2022-06-17 08:44:51.762105] HAVE_DESTRUCTOR_ATTRIBUTE
[2022-06-17 08:44:51.763781] HAVE_DES_PCBC_ENCRYPT
[2022-06-17 08:44:51.765402] HAVE_DIRENT_D_OFF
[2022-06-17 08:44:51.767026] HAVE_DIRFD
[2022-06-17 08:44:51.768642] HAVE_DIRFD_DECL
[2022-06-17 08:44:51.770354] HAVE_DIRNAME
[2022-06-17 08:44:51.771853] HAVE_DISABLE_FAULT_HANDLING
[2022-06-17 08:44:51.773526] HAVE_DLCLOSE
[2022-06-17 08:44:51.775019] HAVE_DLERROR
[2022-06-17 08:44:51.776656] HAVE_DLOPEN
[2022-06-17 08:44:51.778398] HAVE_DLSYM
[2022-06-17 08:44:51.779893] HAVE_DN_EXPAND
[2022-06-17 08:44:51.781498] HAVE_DPRINTF
[2022-06-17 08:44:51.783156] HAVE_DUP2
[2022-06-17 08:44:51.784896] HAVE_ENCTYPE_AES128_CTS_HMAC_SHA1_96
[2022-06-17 08:44:51.786541] HAVE_ENCTYPE_AES256_CTS_HMAC_SHA1_96
[2022-06-17 08:44:51.788070] HAVE_ENCTYPE_ARCFOUR_HMAC
[2022-06-17 08:44:51.793602] HAVE_ENCTYPE_ARCFOUR_HMAC_MD5
[2022-06-17 08:44:51.796283] HAVE_ENCTYPE_ARCFOUR_HMAC_MD5_56
[2022-06-17 08:44:51.798000] HAVE_ENDHOSTENT
[2022-06-17 08:44:51.799649] HAVE_ENDMNTENT
[2022-06-17 08:44:51.801283] HAVE_ENVIRON_DECL
[2022-06-17 08:44:51.802945] HAVE_EPOLL
[2022-06-17 08:44:51.804577] HAVE_EPOLL_CREATE
[2022-06-17 08:44:51.806196] HAVE_ERR
[2022-06-17 08:44:51.807801] HAVE_ERRNO_DECL
[2022-06-17 08:44:51.809391] HAVE_ERRX
[2022-06-17 08:44:51.810993] HAVE_ETHTOOL
[2022-06-17 08:44:51.812595] HAVE_ETYPE_IN_ENCRYPTEDDATA
[2022-06-17 08:44:51.814392] HAVE_EVENTFD
[2022-06-17 08:44:51.815906] HAVE_EXECL
[2022-06-17 08:44:51.817525] HAVE_E_DATA_POINTER_IN_KRB5_ERROR
[2022-06-17 08:44:51.819158] HAVE_FALLOCATE
[2022-06-17 08:44:51.820758] HAVE_FALLOC_FL_PUNCH_HOLE
[2022-06-17 08:44:51.822480] HAVE_FALLTHROUGH_ATTRIBUTE
[2022-06-17 08:44:51.824062] HAVE_FCHMOD
[2022-06-17 08:44:51.825789] HAVE_FCHOWN
[2022-06-17 08:44:51.827304] HAVE_FCNTL_LOCK
[2022-06-17 08:44:51.829026] HAVE_FDATASYNC
[2022-06-17 08:44:51.830526] HAVE_FDOPENDIR
[2022-06-17 08:44:51.832141] HAVE_FLAGS_IN_KRB5_CREDS
[2022-06-17 08:44:51.833796] HAVE_FLOCK
[2022-06-17 08:44:51.835414] HAVE_FMEMOPEN
[2022-06-17 08:44:51.837128] HAVE_FREEADDRINFO
[2022-06-17 08:44:51.838730] HAVE_FREEIFADDRS
[2022-06-17 08:44:51.840240] HAVE_FREE_CHECKSUM
[2022-06-17 08:44:51.841868] HAVE_FRSIZE
[2022-06-17 08:44:51.843638] HAVE_FSEEKO
[2022-06-17 08:44:51.845250] HAVE_FSID_INT
[2022-06-17 08:44:51.846751] HAVE_FSTATAT
[2022-06-17 08:44:51.848457] HAVE_FSYNC
[2022-06-17 08:44:51.849951] HAVE_FTRUNCATE
[2022-06-17 08:44:51.851666] HAVE_FTRUNCATE_EXTEND
[2022-06-17 08:44:51.853225] HAVE_FUNCTION_MACRO
[2022-06-17 08:44:51.854982] HAVE_FUSE
[2022-06-17 08:44:51.856481] HAVE_FUSE_MOUNT
[2022-06-17 08:44:51.858089] HAVE_FUTIMENS
[2022-06-17 08:44:51.859694] HAVE_FUTIMES
[2022-06-17 08:44:51.861293] HAVE_F_OWNER_EX
[2022-06-17 08:44:51.862941] HAVE_F_SETLEASE_DECL
[2022-06-17 08:44:51.864680] HAVE_GAI_STRERROR
[2022-06-17 08:44:51.866281] HAVE_GCC_VOLATILE_MEMORY_PROTECTION
[2022-06-17 08:44:51.867907] HAVE_GETADDRINFO
[2022-06-17 08:44:51.869523] HAVE_GETAUXVAL
[2022-06-17 08:44:51.871011] HAVE_GETCWD
[2022-06-17 08:44:51.872716] HAVE_GETGRENT
[2022-06-17 08:44:51.874270] HAVE_GETGRGID_R
[2022-06-17 08:44:51.875896] HAVE_GETGRNAM
[2022-06-17 08:44:51.877510] HAVE_GETGRNAM_R
[2022-06-17 08:44:51.878993] HAVE_GETGROUPLIST
[2022-06-17 08:44:51.880448] HAVE_GETHOSTBYADDR
[2022-06-17 08:44:51.882036] HAVE_GETHOSTBYNAME
[2022-06-17 08:44:51.883701] HAVE_GETHOSTBYNAME_R
[2022-06-17 08:44:51.885346] HAVE_GETHOSTENT
[2022-06-17 08:44:51.886971] HAVE_GETHOSTNAME
[2022-06-17 08:44:51.888590] HAVE_GETIFADDRS
[2022-06-17 08:44:51.890206] HAVE_GETMNTENT
[2022-06-17 08:44:51.892087] HAVE_GETNAMEINFO
[2022-06-17 08:44:51.893799] HAVE_GETPAGESIZE
[2022-06-17 08:44:51.895327] HAVE_GETPGRP
[2022-06-17 08:44:51.897242] HAVE_GETPWNAM
[2022-06-17 08:44:51.898766] HAVE_GETPWNAM_R
[2022-06-17 08:44:51.900518] HAVE_GETPWUID_R
[2022-06-17 08:44:51.902035] HAVE_GETRLIMIT
[2022-06-17 08:44:51.903702] HAVE_GETSPNAM
[2022-06-17 08:44:51.905321] HAVE_GETTIMEOFDAY_TZ_VOID
[2022-06-17 08:44:51.907058] HAVE_GETXATTR
[2022-06-17 08:44:51.908555] HAVE_GET_CURRENT_DIR_NAME
[2022-06-17 08:44:51.910177] HAVE_GLIB
[2022-06-17 08:44:51.911857] HAVE_GLIB_2_0
[2022-06-17 08:44:51.913422] HAVE_GLOB
[2022-06-17 08:44:51.915050] HAVE_GNUTLS
[2022-06-17 08:44:51.916661] HAVE_GNUTLS_AEAD_CIPHER_ENCRYPTV2
[2022-06-17 08:44:51.918391] HAVE_GNUTLS_AES_CFB8
[2022-06-17 08:44:51.919886] HAVE_GNUTLS_AES_CMAC
[2022-06-17 08:44:51.921505] HAVE_GNUTLS_CRYPTO_POLICIES
[2022-06-17 08:44:51.923189] HAVE_GNUTLS_GET_SYSTEM_CONFIG_FILE
[2022-06-17 08:44:51.924942] HAVE_GNUTLS_PKCS7_GET_EMBEDDED_DATA_OID
[2022-06-17 08:44:51.926466] HAVE_GNUTLS_SET_DEFAULT_PRIORITY_APPEND
[2022-06-17 08:44:51.928102] HAVE_GPFS
[2022-06-17 08:44:51.929813] HAVE_GRANTPT
[2022-06-17 08:44:51.931411] HAVE_GSSAPI
[2022-06-17 08:44:51.932937] HAVE_GSSKRB5_EXTRACT_AUTHZ_DATA_FROM_SEC_CONTEXT
[2022-06-17 08:44:51.934593] HAVE_GSSKRB5_GET_SUBKEY
[2022-06-17 08:44:51.936217] HAVE_GSS_DISPLAY_STATUS
[2022-06-17 08:44:51.937841] HAVE_GSS_EXPORT_CRED
[2022-06-17 08:44:51.939453] HAVE_GSS_IMPORT_CRED
[2022-06-17 08:44:51.941062] HAVE_GSS_INQUIRE_SEC_CONTEXT_BY_OID
[2022-06-17 08:44:51.942787] HAVE_GSS_KRB5_CRED_NO_CI_FLAGS_X
[2022-06-17 08:44:51.944455] HAVE_GSS_KRB5_EXPORT_LUCID_SEC_CONTEXT
[2022-06-17 08:44:51.946087] HAVE_GSS_KRB5_IMPORT_CRED
[2022-06-17 08:44:51.947610] HAVE_GSS_OID_EQUAL
[2022-06-17 08:44:51.950481] HAVE_GSS_WRAP_IOV
[2022-06-17 08:44:51.952106] HAVE_HISTORY_LIST
[2022-06-17 08:44:51.953813] HAVE_HSTRERROR
[2022-06-17 08:44:51.955453] HAVE_H_ERRNO
[2022-06-17 08:44:51.957083] HAVE_ICONV_ERRNO_ILLEGAL_MULTIBYTE
[2022-06-17 08:44:51.958714] HAVE_ICONV_OPEN
[2022-06-17 08:44:51.960339] HAVE_IF_NAMETOINDEX
[2022-06-17 08:44:51.961959] HAVE_IMMEDIATE_STRUCTURES
[2022-06-17 08:44:51.964366] HAVE_INET_ATON
[2022-06-17 08:44:51.966776] HAVE_INET_NTOA
[2022-06-17 08:44:51.968439] HAVE_INET_NTOP
[2022-06-17 08:44:51.970062] HAVE_INET_PTON
[2022-06-17 08:44:51.971678] HAVE_INITGROUPS
[2022-06-17 08:44:51.973374] HAVE_INITIALIZE_KRB5_ERROR_TABLE
[2022-06-17 08:44:51.975033] HAVE_INOTIFY
[2022-06-17 08:44:51.976842] HAVE_INOTIFY_INIT
[2022-06-17 08:44:51.978508] HAVE_INO_T
[2022-06-17 08:44:51.980140] HAVE_INT16_T
[2022-06-17 08:44:51.981836] HAVE_INT32_T
[2022-06-17 08:44:51.983385] HAVE_INT64_T
[2022-06-17 08:44:51.985021] HAVE_INT8_T
[2022-06-17 08:44:51.986647] HAVE_INTPTR_T
[2022-06-17 08:44:51.988262] HAVE_IO_URING_RING_DONTFORK
[2022-06-17 08:44:51.991063] HAVE_IPV6
[2022-06-17 08:44:51.992781] HAVE_IPV6_V6ONLY
[2022-06-17 08:44:51.994389] HAVE_ISATTY
[2022-06-17 08:44:51.996123] HAVE_KERNEL_OPLOCKS_LINUX
[2022-06-17 08:44:51.997760] HAVE_KERNEL_SHARE_MODES
[2022-06-17 08:44:51.999375] HAVE_KRB5
[2022-06-17 08:44:52.000977] HAVE_KRB5_ADDRESSES
[2022-06-17 08:44:52.002482] HAVE_KRB5_AUTH_CON_SETKEY
[2022-06-17 08:44:52.005549] HAVE_KRB5_CC_COPY_CACHE
[2022-06-17 08:44:52.007422] HAVE_KRB5_CC_GET_LIFETIME
[2022-06-17 08:44:52.008972] HAVE_KRB5_CONFIG_GET_BOOL_DEFAULT
[2022-06-17 08:44:52.010721] HAVE_KRB5_CREATE_CHECKSUM
[2022-06-17 08:44:52.012361] HAVE_KRB5_CRYPTO
[2022-06-17 08:44:52.013955] HAVE_KRB5_CRYPTO_DESTROY
[2022-06-17 08:44:52.015608] HAVE_KRB5_CRYPTO_INIT
[2022-06-17 08:44:52.017233] HAVE_KRB5_C_VERIFY_CHECKSUM
[2022-06-17 08:44:52.018864] HAVE_KRB5_DATA_COPY
[2022-06-17 08:44:52.020467] HAVE_KRB5_ENCTYPE_TO_STRING
[2022-06-17 08:44:52.022197] HAVE_KRB5_ENCTYPE_TO_STRING_WITH_KRB5_CONTEXT_ARG
[2022-06-17 08:44:52.023755] HAVE_KRB5_FREE_ERROR_CONTENTS
[2022-06-17 08:44:52.025409] HAVE_KRB5_FREE_HOST_REALM
[2022-06-17 08:44:52.027010] HAVE_KRB5_FWD_TGT_CREDS
[2022-06-17 08:44:52.028725] HAVE_KRB5_GET_CREDS
[2022-06-17 08:44:52.030326] HAVE_KRB5_GET_CREDS_OPT_ALLOC
[2022-06-17 08:44:52.031845] HAVE_KRB5_GET_CREDS_OPT_SET_IMPERSONATE
[2022-06-17 08:44:52.033514] HAVE_KRB5_GET_DEFAULT_IN_TKT_ETYPES
[2022-06-17 08:44:52.035152] HAVE_KRB5_GET_HOST_REALM
[2022-06-17 08:44:52.036766] HAVE_KRB5_GET_INIT_CREDS_KEYBLOCK
[2022-06-17 08:44:52.038499] HAVE_KRB5_GET_INIT_CREDS_OPT_ALLOC
[2022-06-17 08:44:52.040022] HAVE_KRB5_GET_INIT_CREDS_OPT_FREE
[2022-06-17 08:44:52.052229] HAVE_KRB5_GET_INIT_CREDS_OPT_GET_ERROR
[2022-06-17 08:44:52.054276] HAVE_KRB5_GET_INIT_CREDS_OPT_SET_PAC_REQUEST
[2022-06-17 08:44:52.055850] HAVE_KRB5_GET_PW_SALT
[2022-06-17 08:44:52.057479] HAVE_KRB5_GET_RENEWED_CREDS
[2022-06-17 08:44:52.059125] HAVE_KRB5_KEYBLOCK_INIT
[2022-06-17 08:44:52.060764] HAVE_KRB5_KEYBLOCK_KEYVALUE
[2022-06-17 08:44:52.062499] HAVE_KRB5_KEYTAB_ENTRY_KEYBLOCK
[2022-06-17 08:44:52.064098] HAVE_KRB5_KRBHST_GET_ADDRINFO
[2022-06-17 08:44:52.065862] HAVE_KRB5_KRBHST_INIT
[2022-06-17 08:44:52.067359] HAVE_KRB5_KT_COMPARE
[2022-06-17 08:44:52.069080] HAVE_KRB5_KT_FREE_ENTRY
[2022-06-17 08:44:52.070677] HAVE_KRB5_KU_OTHER_CKSUM
[2022-06-17 08:44:52.072281] HAVE_KRB5_MAKE_PRINCIPAL
[2022-06-17 08:44:52.073999] HAVE_KRB5_MK_REQ_EXTENDED
[2022-06-17 08:44:52.075758] HAVE_KRB5_PDU_NONE_DECL
[2022-06-17 08:44:52.077266] HAVE_KRB5_PRINCIPAL_COMPARE_ANY_REALM
[2022-06-17 08:44:52.078943] HAVE_KRB5_PRINCIPAL_GET_COMP_STRING
[2022-06-17 08:44:52.080453] HAVE_KRB5_PRINCIPAL_GET_NUM_COMP
[2022-06-17 08:44:52.082186] HAVE_KRB5_PRINCIPAL_GET_REALM
[2022-06-17 08:44:52.083749] HAVE_KRB5_PRINCIPAL_GET_TYPE
[2022-06-17 08:44:52.085398] HAVE_KRB5_PRINCIPAL_SET_REALM
[2022-06-17 08:44:52.087038] HAVE_KRB5_PRINCIPAL_SET_TYPE
[2022-06-17 08:44:52.088769] HAVE_KRB5_PROMPT_TYPE
[2022-06-17 08:44:52.090262] HAVE_KRB5_REALM_TYPE
[2022-06-17 08:44:52.091877] HAVE_KRB5_SET_DEFAULT_IN_TKT_ETYPES
[2022-06-17 08:44:52.093558] HAVE_KRB5_SET_REAL_TIME
[2022-06-17 08:44:52.095208] HAVE_KRB5_STRING_TO_KEY
[2022-06-17 08:44:52.096827] HAVE_KRB5_STRING_TO_KEY_SALT
[2022-06-17 08:44:52.098454] HAVE_KRB5_WARNX
[2022-06-17 08:44:52.100161] HAVE_KRB_STRUCT_WINSIZE
[2022-06-17 08:44:52.101775] HAVE_LARGEFILE
[2022-06-17 08:44:52.103441] HAVE_LCHOWN
[2022-06-17 08:44:52.104961] HAVE_LDWRAP
[2022-06-17 08:44:52.112987] HAVE_LIBAVAHI_CLIENT
[2022-06-17 08:44:52.114722] HAVE_LIBAVAHI_COMMON
[2022-06-17 08:44:52.116430] HAVE_LIBCAP
[2022-06-17 08:44:52.118069] HAVE_LIBCRYPT
[2022-06-17 08:44:52.123593] HAVE_LIBCRYPTO
[2022-06-17 08:44:52.125218] HAVE_LIBFUSE
[2022-06-17 08:44:52.126873] HAVE_LIBGLIB_2_0
[2022-06-17 08:44:52.130208] HAVE_LIBKRB5
[2022-06-17 08:44:52.131753] HAVE_LIBNCURSES
[2022-06-17 08:44:52.133455] HAVE_LIBPAM
[2022-06-17 08:44:52.135102] HAVE_LIBPOPT
[2022-06-17 08:44:52.136724] HAVE_LIBREADLINE
[2022-06-17 08:44:52.138341] HAVE_LIBREPLACE
[2022-06-17 08:44:52.139943] HAVE_LIBRESOLV
[2022-06-17 08:44:52.141552] HAVE_LIBTASN1
[2022-06-17 08:44:52.143230] HAVE_LIBURING
[2022-06-17 08:44:52.144869] HAVE_LIBZ
[2022-06-17 08:44:52.146504] HAVE_LINK
[2022-06-17 08:44:52.148113] HAVE_LINUX_FALLOCATE
[2022-06-17 08:44:52.149732] HAVE_LINUX_INOTIFY
[2022-06-17 08:44:52.151337] HAVE_LINUX_IOCTL
[2022-06-17 08:44:52.152995] HAVE_LINUX_READAHEAD
[2022-06-17 08:44:52.154621] HAVE_LINUX_SPLICE
[2022-06-17 08:44:52.156249] HAVE_LINUX_THREAD_CREDENTIALS
[2022-06-17 08:44:52.158002] HAVE_LITTLE_ENDIAN
[2022-06-17 08:44:52.159618] HAVE_LONGJMP
[2022-06-17 08:44:52.161115] HAVE_LONG_LONG
[2022-06-17 08:44:52.162830] HAVE_LSTAT
[2022-06-17 08:44:52.164479] HAVE_LUTIMES
[2022-06-17 08:44:52.165988] HAVE_MAKEDEV
[2022-06-17 08:44:52.167716] HAVE_MEMALIGN
[2022-06-17 08:44:52.169230] HAVE_MEMCPY
[2022-06-17 08:44:52.170849] HAVE_MEMMEM
[2022-06-17 08:44:52.172461] HAVE_MEMMOVE
[2022-06-17 08:44:52.174158] HAVE_MEMSET
[2022-06-17 08:44:52.175784] HAVE_MKDIR_MODE
[2022-06-17 08:44:52.177498] HAVE_MKDTEMP
[2022-06-17 08:44:52.178998] HAVE_MKNOD
[2022-06-17 08:44:52.180611] HAVE_MKNODAT
[2022-06-17 08:44:52.182339] HAVE_MKTIME
[2022-06-17 08:44:52.183925] HAVE_MLOCK
[2022-06-17 08:44:52.185549] HAVE_MLOCKALL
[2022-06-17 08:44:52.187160] HAVE_MMAP
[2022-06-17 08:44:52.188774] HAVE_MREMAP
[2022-06-17 08:44:52.190382] HAVE_MUNLOCK
[2022-06-17 08:44:52.191998] HAVE_MUNLOCKALL
[2022-06-17 08:44:52.193664] HAVE_NATIVE_ICONV
[2022-06-17 08:44:52.195285] HAVE_NEW_LIBREADLINE
[2022-06-17 08:44:52.197002] HAVE_NFTW
[2022-06-17 08:44:52.198491] HAVE_OPENAT
[2022-06-17 08:44:52.200096] HAVE_OPENPTY
[2022-06-17 08:44:52.201815] HAVE_OPEN_O_DIRECT
[2022-06-17 08:44:52.203386] HAVE_PAM_START
[2022-06-17 08:44:52.205118] HAVE_PATHCONF
[2022-06-17 08:44:52.206725] HAVE_PEERCRED
[2022-06-17 08:44:52.208324] HAVE_PIPE
[2022-06-17 08:44:52.209820] HAVE_POLL
[2022-06-17 08:44:52.211428] HAVE_POPT
[2022-06-17 08:44:52.213079] HAVE_POPTGETCONTEXT
[2022-06-17 08:44:52.214705] HAVE_POSIX_CAPABILITIES
[2022-06-17 08:44:52.216448] HAVE_POSIX_FADVISE
[2022-06-17 08:44:52.217953] HAVE_POSIX_FALLOCATE
[2022-06-17 08:44:52.219566] HAVE_POSIX_MEMALIGN
[2022-06-17 08:44:52.221170] HAVE_POSIX_OPENPT
[2022-06-17 08:44:52.222910] HAVE_PRCTL
[2022-06-17 08:44:52.224414] HAVE_PREAD
[2022-06-17 08:44:52.226027] HAVE_PREAD_DECL
[2022-06-17 08:44:52.227640] HAVE_PRINTF
[2022-06-17 08:44:52.229362] HAVE_PROGRAM_INVOCATION_SHORT_NAME
[2022-06-17 08:44:52.230882] HAVE_PTHREAD
[2022-06-17 08:44:52.232483] HAVE_PTHREAD_ATTR_INIT
[2022-06-17 08:44:52.234265] HAVE_PTHREAD_CREATE
[2022-06-17 08:44:52.235779] HAVE_PTHREAD_MUTEXATTR_SETROBUST
[2022-06-17 08:44:52.237517] HAVE_PTHREAD_MUTEX_CONSISTENT
[2022-06-17 08:44:52.239143] HAVE_PTRDIFF_T
[2022-06-17 08:44:52.240752] HAVE_PUTENV
[2022-06-17 08:44:52.242352] HAVE_PWRITE
[2022-06-17 08:44:52.244040] HAVE_PWRITE_DECL
[2022-06-17 08:44:52.245550] HAVE_QUOTACTL_LINUX
[2022-06-17 08:44:52.247170] HAVE_RAND
[2022-06-17 08:44:52.248881] HAVE_RANDOM
[2022-06-17 08:44:52.250485] HAVE_READAHEAD_DECL
[2022-06-17 08:44:52.251982] HAVE_READLINK
[2022-06-17 08:44:52.253667] HAVE_READV
[2022-06-17 08:44:52.255291] HAVE_REALPATH
[2022-06-17 08:44:52.257016] HAVE_RENAME
[2022-06-17 08:44:52.258512] HAVE_RES_SEARCH
[2022-06-17 08:44:52.260121] HAVE_RL_COMPLETION_MATCHES
[2022-06-17 08:44:52.261734] HAVE_ROBUST_MUTEXES
[2022-06-17 08:44:52.263506] HAVE_SA_FAMILY_T
[2022-06-17 08:44:52.265020] HAVE_SA_SIGINFO_DECL
[2022-06-17 08:44:52.266642] HAVE_SECURE_MKSTEMP
[2022-06-17 08:44:52.268252] HAVE_SELECT
[2022-06-17 08:44:52.269865] HAVE_SENDFILE
[2022-06-17 08:44:52.271488] HAVE_SENDMSG
[2022-06-17 08:44:52.273142] HAVE_SETBUFFER
[2022-06-17 08:44:52.274779] HAVE_SETEGID
[2022-06-17 08:44:52.276491] HAVE_SETENV
[2022-06-17 08:44:52.277993] HAVE_SETENV_DECL
[2022-06-17 08:44:52.279601] HAVE_SETEUID
[2022-06-17 08:44:52.281204] HAVE_SETGID
[2022-06-17 08:44:52.282811] HAVE_SETGROUPS
[2022-06-17 08:44:52.284497] HAVE_SETHOSTENT
[2022-06-17 08:44:52.286112] HAVE_SETITIMER
[2022-06-17 08:44:52.287728] HAVE_SETLINEBUF
[2022-06-17 08:44:52.289347] HAVE_SETLOCALE
[2022-06-17 08:44:52.290948] HAVE_SETMNTENT
[2022-06-17 08:44:52.292548] HAVE_SETPGID
[2022-06-17 08:44:52.294317] HAVE_SETREGID
[2022-06-17 08:44:52.295825] HAVE_SETRESGID
[2022-06-17 08:44:52.297442] HAVE_SETRESGID_DECL
[2022-06-17 08:44:52.299075] HAVE_SETRESUID
[2022-06-17 08:44:52.300680] HAVE_SETRESUID_DECL
[2022-06-17 08:44:52.302406] HAVE_SETREUID
[2022-06-17 08:44:52.303978] HAVE_SETSID
[2022-06-17 08:44:52.305699] HAVE_SETUID
[2022-06-17 08:44:52.307201] HAVE_SHARED_MMAP
[2022-06-17 08:44:52.308816] HAVE_SIGACTION
[2022-06-17 08:44:52.310294] HAVE_SIGLONGJMP
[2022-06-17 08:44:52.311749] HAVE_SIGPROCMASK
[2022-06-17 08:44:52.313266] HAVE_SIGSET
[2022-06-17 08:44:52.314917] HAVE_SIG_ATOMIC_T_TYPE
[2022-06-17 08:44:52.316542] HAVE_SIMPLE_C_PROG
[2022-06-17 08:44:52.318027] HAVE_SIZE_T
[2022-06-17 08:44:52.319709] HAVE_SNPRINTF
[2022-06-17 08:44:52.321227] HAVE_SOCKET
[2022-06-17 08:44:52.322849] HAVE_SOCKETPAIR
[2022-06-17 08:44:52.324535] HAVE_SOCKLEN_T
[2022-06-17 08:44:52.326157] HAVE_SPLICE_DECL
[2022-06-17 08:44:52.327766] HAVE_SRAND
[2022-06-17 08:44:52.329491] HAVE_SRANDOM
[2022-06-17 08:44:52.330985] HAVE_SSIZE_T
[2022-06-17 08:44:52.332622] HAVE_SS_FAMILY
[2022-06-17 08:44:52.334296] HAVE_STATFS_F_FSID
[2022-06-17 08:44:52.335921] HAVE_STATVFS
[2022-06-17 08:44:52.337660] HAVE_STATVFS_F_FLAG
[2022-06-17 08:44:52.339164] HAVE_STAT_HIRES_TIMESTAMPS
[2022-06-17 08:44:52.340887] HAVE_STAT_ST_BLKSIZE
[2022-06-17 08:44:52.342383] HAVE_STAT_ST_BLOCKS
[2022-06-17 08:44:52.344050] HAVE_STRCASECMP
[2022-06-17 08:44:52.345760] HAVE_STRCASESTR
[2022-06-17 08:44:52.347272] HAVE_STRCHR
[2022-06-17 08:44:52.348888] HAVE_STRCPY
[2022-06-17 08:44:52.350496] HAVE_STRDUP
[2022-06-17 08:44:52.352098] HAVE_STRERROR
[2022-06-17 08:44:52.353859] HAVE_STRERROR_R
[2022-06-17 08:44:52.355360] HAVE_STRFTIME
[2022-06-17 08:44:52.356973] HAVE_STRLCAT
[2022-06-17 08:44:52.358590] HAVE_STRLCPY
[2022-06-17 08:44:52.360225] HAVE_STRNCASECMP
[2022-06-17 08:44:52.362080] HAVE_STRNCPY
[2022-06-17 08:44:52.363784] HAVE_STRNDUP
[2022-06-17 08:44:52.365313] HAVE_STRNLEN
[2022-06-17 08:44:52.366942] HAVE_STRPBRK
[2022-06-17 08:44:52.368676] HAVE_STRPTIME
[2022-06-17 08:44:52.370195] HAVE_STRSEP
[2022-06-17 08:44:52.371807] HAVE_STRSIGNAL
[2022-06-17 08:44:52.373476] HAVE_STRTOK_R
[2022-06-17 08:44:52.375100] HAVE_STRTOL
[2022-06-17 08:44:52.376715] HAVE_STRTOLL
[2022-06-17 08:44:52.378424] HAVE_STRTOULL
[2022-06-17 08:44:52.379916] HAVE_STRUCT_ADDRINFO
[2022-06-17 08:44:52.381536] HAVE_STRUCT_IFADDRS
[2022-06-17 08:44:52.383209] HAVE_STRUCT_MSGHDR_MSG_CONTROL
[2022-06-17 08:44:52.384971] HAVE_STRUCT_SIGEVENT
[2022-06-17 08:44:52.386479] HAVE_STRUCT_SIGEVENT_SIGEV_VALUE_SIVAL_PTR
[2022-06-17 08:44:52.388134] HAVE_STRUCT_SOCKADDR
[2022-06-17 08:44:52.390233] HAVE_STRUCT_SOCKADDR_IN6
[2022-06-17 08:44:52.391838] HAVE_STRUCT_SOCKADDR_STORAGE
[2022-06-17 08:44:52.393530] HAVE_STRUCT_STAT_ST_MTIM_TV_NSEC
[2022-06-17 08:44:52.395183] HAVE_STRUCT_STAT_ST_RDEV
[2022-06-17 08:44:52.396800] HAVE_STRUCT_TIMESPEC
[2022-06-17 08:44:52.398421] HAVE_STRUCT_WINSIZE
[2022-06-17 08:44:52.400036] HAVE_ST_RDEV
[2022-06-17 08:44:52.401635] HAVE_SWAB
[2022-06-17 08:44:52.403295] HAVE_SYMLINK
[2022-06-17 08:44:52.404925] HAVE_SYSCALL
[2022-06-17 08:44:52.406548] HAVE_SYSCONF
[2022-06-17 08:44:52.408156] HAVE_SYSLOG
[2022-06-17 08:44:52.409770] HAVE_TGETENT
[2022-06-17 08:44:52.411376] HAVE_TIMEGM
[2022-06-17 08:44:52.413041] HAVE_TIRPC
[2022-06-17 08:44:52.414673] HAVE_UCONTEXT_T
[2022-06-17 08:44:52.416286] HAVE_UINT16_T
[2022-06-17 08:44:52.417906] HAVE_UINT32_T
[2022-06-17 08:44:52.419526] HAVE_UINT64_T
[2022-06-17 08:44:52.421137] HAVE_UINT8_T
[2022-06-17 08:44:52.422736] HAVE_UINTPTR_T
[2022-06-17 08:44:52.424407] HAVE_UMASK
[2022-06-17 08:44:52.426014] HAVE_UNAME
[2022-06-17 08:44:52.427630] HAVE_UNIXSOCKET
[2022-06-17 08:44:52.429240] HAVE_UNSETENV
[2022-06-17 08:44:52.430847] HAVE_UNSHARE_CLONE_FS
[2022-06-17 08:44:52.432467] HAVE_URING
[2022-06-17 08:44:52.434166] HAVE_USLEEP
[2022-06-17 08:44:52.435795] HAVE_UTIMBUF
[2022-06-17 08:44:52.437412] HAVE_UTIME
[2022-06-17 08:44:52.439031] HAVE_UTIMENSAT
[2022-06-17 08:44:52.440651] HAVE_UTIMES
[2022-06-17 08:44:52.442266] HAVE_U_CHAR
[2022-06-17 08:44:52.443933] HAVE_U_INT32_T
[2022-06-17 08:44:52.445551] HAVE_VASPRINTF
[2022-06-17 08:44:52.447148] HAVE_VA_COPY
[2022-06-17 08:44:52.448755] HAVE_VDPRINTF
[2022-06-17 08:44:52.450359] HAVE_VISIBILITY_ATTR
[2022-06-17 08:44:52.451970] HAVE_VOLATILE
[2022-06-17 08:44:52.453654] HAVE_VSNPRINTF
[2022-06-17 08:44:52.455290] HAVE_VSYSLOG
[2022-06-17 08:44:52.456900] HAVE_WAIT4
[2022-06-17 08:44:52.458509] HAVE_WAITPID
[2022-06-17 08:44:52.460109] HAVE_WARN
[2022-06-17 08:44:52.461709] HAVE_WARNX
[2022-06-17 08:44:52.463358] HAVE_WNO_FORMAT_TRUNCATION
[2022-06-17 08:44:52.465011] HAVE_WNO_STRICT_OVERFLOW
[2022-06-17 08:44:52.466641] HAVE_WNO_UNUSED_FUNCTION
[2022-06-17 08:44:52.468269] HAVE_WRITEV
[2022-06-17 08:44:52.469890] HAVE_WS_XPIXEL
[2022-06-17 08:44:52.471504] HAVE_WS_YPIXEL
[2022-06-17 08:44:52.473174] HAVE_XATTR_SUPPORT
[2022-06-17 08:44:52.474799] HAVE_XATTR_XATTR
[2022-06-17 08:44:52.476405] HAVE_ZLIB
[2022-06-17 08:44:52.478029] HAVE__Bool
[2022-06-17 08:44:52.479642] HAVE__RES
[2022-06-17 08:44:52.481261] HAVE__VA_ARGS__MACRO
[2022-06-17 08:44:52.482907] HAVE___ATTRIBUTE__
[2022-06-17 08:44:52.484532] HAVE___SYNC_FETCH_AND_ADD
[2022-06-17 08:44:52.486153] HAVE___THREAD
[2022-06-17 08:44:52.487768]
[2022-06-17 08:44:52.489384] --with Options:
[2022-06-17 08:44:52.490999] WITH_AVAHI_SUPPORT
[2022-06-17 08:44:52.492490] WITH_PTHREADPOOL
[2022-06-17 08:44:52.494300] WITH_QUOTAS
[2022-06-17 08:44:52.495919] WITH_SYSLOG
[2022-06-17 08:44:52.497538] WITH_TEVENT_GLIB_GLUE
[2022-06-17 08:44:52.499138]
[2022-06-17 08:44:52.500743] Build Options:
[2022-06-17 08:44:52.502366] BOOL_DEFINED
[2022-06-17 08:44:52.504065] BROKEN_NISPLUS_INCLUDE_FILES
[2022-06-17 08:44:52.505692] COMPILER_SUPPORTS_LL
[2022-06-17 08:44:52.507312] CONFIG_H_IS_FROM_SAMBA
[2022-06-17 08:44:52.508920] DEFAULT_DOS_CHARSET
[2022-06-17 08:44:52.510410] DEFAULT_UNIX_CHARSET
[2022-06-17 08:44:52.511990] GETCWD_TAKES_NULL
[2022-06-17 08:44:52.513794] INLINE_MACRO
[2022-06-17 08:44:52.515421] KRB5_CREDS_OPT_FREE_REQUIRES_CONTEXT
[2022-06-17 08:44:52.517054] KRB5_PRINC_REALM_RETURNS_REALM
[2022-06-17 08:44:52.518675] LIBREPLACE_NETWORK_CHECKS
[2022-06-17 08:44:52.520286] LINUX
[2022-06-17 08:44:52.521888] LINUX_SENDFILE_API
[2022-06-17 08:44:52.523557] REALPATH_TAKES_NULL
[2022-06-17 08:44:52.525196] RETSIGTYPE
[2022-06-17 08:44:52.526819] SAMBA4_USES_HEIMDAL
[2022-06-17 08:44:52.528308] SEEKDIR_RETURNS_VOID
[2022-06-17 08:44:52.530034] SHLIBEXT
[2022-06-17 08:44:52.531647] SIZEOF_BLKCNT_T_8
[2022-06-17 08:44:52.533310] SIZEOF_BOOL
[2022-06-17 08:44:52.534936] SIZEOF_CHAR
[2022-06-17 08:44:52.536567] SIZEOF_DEV_T
[2022-06-17 08:44:52.538189] SIZEOF_INO_T
[2022-06-17 08:44:52.539791] SIZEOF_INT
[2022-06-17 08:44:52.541407] SIZEOF_INT16_T
[2022-06-17 08:44:52.543766] SIZEOF_INT32_T
[2022-06-17 08:44:52.546046] SIZEOF_INT64_T
[2022-06-17 08:44:52.548876] SIZEOF_INT8_T
[2022-06-17 08:44:52.551197] SIZEOF_LONG
[2022-06-17 08:44:52.553299] SIZEOF_LONG_LONG
[2022-06-17 08:44:52.554981] SIZEOF_OFF_T
[2022-06-17 08:44:52.556619] SIZEOF_SHORT
[2022-06-17 08:44:52.558242] SIZEOF_SIZE_T
[2022-06-17 08:44:52.559861] SIZEOF_SSIZE_T
[2022-06-17 08:44:52.561472] SIZEOF_TIME_T
[2022-06-17 08:44:52.563149] SIZEOF_UINT16_T
[2022-06-17 08:44:52.564793] SIZEOF_UINT32_T
[2022-06-17 08:44:52.566417] SIZEOF_UINT64_T
[2022-06-17 08:44:52.568038] SIZEOF_UINT8_T
[2022-06-17 08:44:52.569663] SIZEOF_VOID_P
[2022-06-17 08:44:52.571274] SRCDIR
[2022-06-17 08:44:52.572918] STAT_STATVFS
[2022-06-17 08:44:52.574538] STAT_ST_BLOCKSIZE
[2022-06-17 08:44:52.576160] STDC_HEADERS
[2022-06-17 08:44:52.577656] STRERROR_R_XSI_NOT_GNU
[2022-06-17 08:44:52.579373] STRING_SHARED_MODULES
[2022-06-17 08:44:52.580995] STRING_STATIC_MODULES
[2022-06-17 08:44:52.582618] SUMMARY_PASSES
[2022-06-17 08:44:52.584307] SYSCONF_SC_NGROUPS_MAX
[2022-06-17 08:44:52.585947] SYSCONF_SC_NPROCESSORS_ONLN
[2022-06-17 08:44:52.587591] SYSCONF_SC_PAGESIZE
[2022-06-17 08:44:52.589222] SYSTEM_UNAME_MACHINE
[2022-06-17 08:44:52.590842] SYSTEM_UNAME_RELEASE
[2022-06-17 08:44:52.592460] SYSTEM_UNAME_SYSNAME
[2022-06-17 08:44:52.594010] SYSTEM_UNAME_VERSION
[2022-06-17 08:44:52.595495] TALLOC_BUILD_VERSION_MAJOR
[2022-06-17 08:44:52.597204] TALLOC_BUILD_VERSION_MINOR
[2022-06-17 08:44:52.598841] TALLOC_BUILD_VERSION_RELEASE
[2022-06-17 08:44:52.600480] TEVENT_NUM_SIGNALS
[2022-06-17 08:44:52.602095] TIME_WITH_SYS_TIME
[2022-06-17 08:44:52.603775] USE_COPY_FILE_RANGE
[2022-06-17 08:44:52.605402] USE_LINUX_32BIT_SYSCALLS
[2022-06-17 08:44:52.607012] USE_TDB_MUTEX_LOCKING
[2022-06-17 08:44:52.608619] USING_SYSTEM_ASN1_COMPILE
[2022-06-17 08:44:52.610228] USING_SYSTEM_COMPILE_ET
[2022-06-17 08:44:52.611852] USING_SYSTEM_POPT
[2022-06-17 08:44:52.613533] VALUEOF_GNUTLS_CIPHER_AES_128_CFB8
[2022-06-17 08:44:52.615182] VALUEOF_GNUTLS_MAC_AES_CMAC_128
[2022-06-17 08:44:52.616813] VALUEOF_NSIG
[2022-06-17 08:44:52.618429] VALUEOF_SIGRTMAX
[2022-06-17 08:44:52.620023] VALUEOF_SIGRTMIN
[2022-06-17 08:44:52.621627] VALUEOF__NSIG
[2022-06-17 08:44:52.623330] VOID_RETSIGTYPE
[2022-06-17 08:44:52.624974] WINEXE_LDFLAGS
[2022-06-17 08:44:52.627152] _GNU_SOURCE
[2022-06-17 08:44:52.628847] _HAVE_SENDFILE
[2022-06-17 08:44:52.630483] _POSIX_FALLOCATE_CAPABLE_LIBC
[2022-06-17 08:44:52.632119] _SAMBA_BUILD_
[2022-06-17 08:44:52.633781] _XOPEN_SOURCE_EXTENDED
[2022-06-17 08:44:52.635412] auth_script_init
[2022-06-17 08:44:52.637032] loff_t
[2022-06-17 08:44:52.638663] offset_t
[2022-06-17 08:44:52.640268] static_decl_auth
[2022-06-17 08:44:52.641876] static_decl_charset
[2022-06-17 08:44:52.643507] static_decl_gpext
[2022-06-17 08:44:52.645119] static_decl_idmap
[2022-06-17 08:44:52.646717] static_decl_nss_info
[2022-06-17 08:44:52.648329] static_decl_pdb
[2022-06-17 08:44:52.649945] static_decl_perfcount
[2022-06-17 08:44:52.651563] static_decl_rpc
[2022-06-17 08:44:52.653238] static_decl_vfs
[2022-06-17 08:44:52.654857] static_init_auth
[2022-06-17 08:44:52.656476] static_init_charset
[2022-06-17 08:44:52.658096] static_init_gpext
[2022-06-17 08:44:52.659704] static_init_idmap
[2022-06-17 08:44:52.661323] static_init_nss_info
[2022-06-17 08:44:52.662819] static_init_pdb
[2022-06-17 08:44:52.664478] static_init_perfcount
[2022-06-17 08:44:52.666100] static_init_rpc
[2022-06-17 08:44:52.667721] static_init_vfs
[2022-06-17 08:44:52.669330] uint_t
[2022-06-17 08:44:52.670927] vfs_btrfs_init
[2022-06-17 08:44:52.672545] vfs_cap_init
[2022-06-17 08:44:52.674323] vfs_catia_init
[2022-06-17 08:44:52.675967] vfs_crossrename_init
[2022-06-17 08:44:52.677584] vfs_default_quota_init
[2022-06-17 08:44:52.679189] vfs_fake_perms_init
[2022-06-17 08:44:52.680791] vfs_fruit_init
[2022-06-17 08:44:52.682401] vfs_io_uring_init
[2022-06-17 08:44:52.684119] vfs_offline_init
[2022-06-17 08:44:52.685746] vfs_readonly_init
[2022-06-17 08:44:52.687358] vfs_recycle_init
[2022-06-17 08:44:52.688964] vfs_shadow_copy2_init
[2022-06-17 08:44:52.690579] vfs_streams_xattr_init
[2022-06-17 08:44:52.692188] vfs_widelinks_init
[2022-06-17 08:44:52.693839] vfs_xattr_tdb_init
[2022-06-17 08:44:52.695462]
[2022-06-17 08:44:52.697077] Cluster support features:
[2022-06-17 08:44:52.698696] NONE
[2022-06-17 08:44:52.700299]
[2022-06-17 08:44:52.701912] Type sizes:
[2022-06-17 08:44:52.703568] sizeof(char): 1
[2022-06-17 08:44:52.705187] sizeof(int): 4
[2022-06-17 08:44:52.706793] sizeof(long): 4
[2022-06-17 08:44:52.708419] sizeof(long long): 8
[2022-06-17 08:44:52.710046] sizeof(uint8_t): 1
[2022-06-17 08:44:52.711667] sizeof(uint16_t): 2
[2022-06-17 08:44:52.713316] sizeof(uint32_t): 4
[2022-06-17 08:44:52.714940] sizeof(short): 2
[2022-06-17 08:44:52.716556] sizeof(void*): 4
[2022-06-17 08:44:52.718167] sizeof(size_t): 4
[2022-06-17 08:44:52.719785] sizeof(off_t): 8
[2022-06-17 08:44:52.721401] sizeof(ino_t): 8
[2022-06-17 08:44:52.723074] sizeof(dev_t): 8
[2022-06-17 08:44:52.724585]
[2022-06-17 08:44:52.726288] Builtin modules:
[2022-06-17 08:44:52.728080] vfs_default vfs_not_implemented auth_builtin auth_sam auth_unix pdb_smbpasswd pdb_tdbsam
[2022-06-17 08:44:52.729624] lp_load_ex: refreshing parameters
[2022-06-17 08:44:52.731117] Initialising global parameters
[2022-06-17 08:44:52.732614] rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384)
[2022-06-17 08:44:52.734204] INFO: Current debug levels:
[2022-06-17 08:44:52.735694] all: 10
[2022-06-17 08:44:52.737162] tdb: 10
[2022-06-17 08:44:52.738625] printdrivers: 10
[2022-06-17 08:44:52.740088] lanman: 10
[2022-06-17 08:44:52.741913] smb: 10
[2022-06-17 08:44:52.743602] rpc_parse: 10
[2022-06-17 08:44:52.745237] rpc_srv: 10
[2022-06-17 08:44:52.746863] rpc_cli: 10
[2022-06-17 08:44:52.748479] passdb: 10
[2022-06-17 08:44:52.750094] sam: 10
[2022-06-17 08:44:52.751709] auth: 10
[2022-06-17 08:44:52.753370] winbind: 10
[2022-06-17 08:44:52.755018] vfs: 10
[2022-06-17 08:44:52.756642] idmap: 10
[2022-06-17 08:44:52.758136] quota: 10
[2022-06-17 08:44:52.759853] acls: 10
[2022-06-17 08:44:52.761480] locking: 10
[2022-06-17 08:44:52.763019] msdfs: 10
[2022-06-17 08:44:52.764756] dmapi: 10
[2022-06-17 08:44:52.766246] registry: 10
[2022-06-17 08:44:52.767961] scavenger: 10
[2022-06-17 08:44:52.769573] dns: 10
[2022-06-17 08:44:52.771188] ldb: 10
[2022-06-17 08:44:52.772788] tevent: 10
[2022-06-17 08:44:52.774464] auth_audit: 10
[2022-06-17 08:44:52.776077] auth_json_audit: 10
[2022-06-17 08:44:52.777569] kerberos: 10
[2022-06-17 08:44:52.779277] drs_repl: 10
[2022-06-17 08:44:52.780894] smb2: 10
[2022-06-17 08:44:52.782499] smb2_credits: 10
[2022-06-17 08:44:52.784311] dsdb_audit: 10
[2022-06-17 08:44:52.785932] dsdb_json_audit: 10
[2022-06-17 08:44:52.787547] dsdb_password_audit: 10
[2022-06-17 08:44:52.789167] dsdb_password_json_audit: 10
[2022-06-17 08:44:52.790798] dsdb_transaction_audit: 10
[2022-06-17 08:44:52.792435] dsdb_transaction_json_audit: 10
[2022-06-17 08:44:52.794035] dsdb_group_audit: 10
[2022-06-17 08:44:52.795744] dsdb_group_json_audit: 10
[2022-06-17 08:44:52.797363] Processing section "[global]"
[2022-06-17 08:44:52.798978] doing parameter netbios name = zalupa
[2022-06-17 08:44:52.810931] doing parameter interfaces = br-lan
[2022-06-17 08:44:52.812798] doing parameter server string = SASAm
[2022-06-17 08:44:52.814584] doing parameter unix charset = UTF-8
[2022-06-17 08:44:52.816249] doing parameter workgroup = WORKGROUP
[2022-06-17 08:44:52.817899] doing parameter log level = 2
[2022-06-17 08:44:52.819521] doing parameter bind interfaces only = yes
[2022-06-17 08:44:52.821152] doing parameter deadtime = 15
[2022-06-17 08:44:52.822785] doing parameter enable core files = no
[2022-06-17 08:44:52.824486] doing parameter security = user
[2022-06-17 08:44:52.826122] doing parameter debug timestamp = yes
[2022-06-17 08:44:52.827759] doing parameter invalid users = root
[2022-06-17 08:44:52.829403] doing parameter map to guest = Bad User
[2022-06-17 08:44:52.831031] doing parameter null passwords = yes
[2022-06-17 08:44:52.832542] lpcfg_do_global_parameter: WARNING: The "null passwords" option is deprecated
[2022-06-17 08:44:52.834251] doing parameter passdb backend = smbpasswd
[2022-06-17 08:44:52.835755] doing parameter socket options = IPTOS_LOWDELAY TCP_NODELAY
[2022-06-17 08:44:52.837257] doing parameter load printers = No
[2022-06-17 08:44:52.838752] doing parameter printcap name = /dev/null
[2022-06-17 08:44:52.840244] doing parameter disable spoolss = yes
[2022-06-17 08:44:52.841735] doing parameter printing = bsd
[2022-06-17 08:44:52.843269] doing parameter mdns name = mdns
[2022-06-17 08:44:52.845185] doing parameter veto files = /Thumbs.db/.DS_Store/._.DS_Store/.apdisk/
[2022-06-17 08:44:52.846833] doing parameter delete veto files = yes
[2022-06-17 08:44:52.848487] pm_process() returned Yes
[2022-06-17 08:44:52.850122] lp_servicenumber: couldn't find homes
[2022-06-17 08:44:52.851761] messaging_dgm_ref: messaging_dgm_init returned No error information
[2022-06-17 08:44:52.853460] messaging_dgm_ref: unique = 18173276210601493798
[2022-06-17 08:44:52.855110] Registering messaging pointer for type 2 - private_data=0
[2022-06-17 08:44:52.856762] Registered MSG_REQ_POOL_USAGE
[2022-06-17 08:44:52.858396] Registering messaging pointer for type 11 - private_data=0
[2022-06-17 08:44:52.860038] Registering messaging pointer for type 12 - private_data=0
[2022-06-17 08:44:52.861685] Registered MSG_REQ_DMALLOC_MARK and LOG_CHANGED
[2022-06-17 08:44:52.863423] Registering messaging pointer for type 1 - private_data=0
[2022-06-17 08:44:52.865095] Registering messaging pointer for type 5 - private_data=0
[2022-06-17 08:44:52.866745] Registering messaging pointer for type 51 - private_data=0
[2022-06-17 08:44:52.868382] messaging_init_internal: my id: 9557
[2022-06-17 08:44:52.870021] global_dcesrv_context: Initializing DCE/RPC server context
[2022-06-17 08:44:52.871642] INFO: Current debug levels:
[2022-06-17 08:44:52.873326] all: 10
[2022-06-17 08:44:52.874956] tdb: 10
[2022-06-17 08:44:52.876592] printdrivers: 10
[2022-06-17 08:44:52.878089] lanman: 10
[2022-06-17 08:44:52.879826] smb: 10
[2022-06-17 08:44:52.881430] rpc_parse: 10
[2022-06-17 08:44:52.883091] rpc_srv: 10
[2022-06-17 08:44:52.884723] rpc_cli: 10
[2022-06-17 08:44:52.886346] passdb: 10
[2022-06-17 08:44:52.887952] sam: 10
[2022-06-17 08:44:52.889559] auth: 10
[2022-06-17 08:44:52.891174] winbind: 10
[2022-06-17 08:44:52.892784] vfs: 10
[2022-06-17 08:44:52.894450] idmap: 10
[2022-06-17 08:44:52.896064] quota: 10
[2022-06-17 08:44:52.897670] acls: 10
[2022-06-17 08:44:52.899270] locking: 10
[2022-06-17 08:44:52.900886] msdfs: 10
[2022-06-17 08:44:52.902482] dmapi: 10
[2022-06-17 08:44:52.904158] registry: 10
[2022-06-17 08:44:52.905772] scavenger: 10
[2022-06-17 08:44:52.907381] dns: 10
[2022-06-17 08:44:52.908992] ldb: 10
[2022-06-17 08:44:52.910587] tevent: 10
[2022-06-17 08:44:52.912210] auth_audit: 10
[2022-06-17 08:44:52.913863] auth_json_audit: 10
[2022-06-17 08:44:52.915485] kerberos: 10
[2022-06-17 08:44:52.917103] drs_repl: 10
[2022-06-17 08:44:52.918722] smb2: 10
[2022-06-17 08:44:52.920333] smb2_credits: 10
[2022-06-17 08:44:52.921949] dsdb_audit: 10
[2022-06-17 08:44:52.923614] dsdb_json_audit: 10
[2022-06-17 08:44:52.925244] dsdb_password_audit: 10
[2022-06-17 08:44:52.926856] dsdb_password_json_audit: 10
[2022-06-17 08:44:52.928487] dsdb_transaction_audit: 10
[2022-06-17 08:44:52.930105] dsdb_transaction_json_audit: 10
[2022-06-17 08:44:52.931732] dsdb_group_audit: 10
[2022-06-17 08:44:52.933395] dsdb_group_json_audit: 10
[2022-06-17 08:44:52.935033] lp_load_ex: refreshing parameters
[2022-06-17 08:44:52.936669] Freeing parametrics:
[2022-06-17 08:44:52.938278] Initialising global parameters
[2022-06-17 08:44:52.939902] rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384)
[2022-06-17 08:44:52.941547] INFO: Current debug levels:
[2022-06-17 08:44:52.943223] all: 10
[2022-06-17 08:44:52.944742] tdb: 10
[2022-06-17 08:44:52.946226] printdrivers: 10
[2022-06-17 08:44:52.947697] lanman: 10
[2022-06-17 08:44:52.949165] smb: 10
[2022-06-17 08:44:52.950622] rpc_parse: 10
[2022-06-17 08:44:52.952409] rpc_srv: 10
[2022-06-17 08:44:52.954120] rpc_cli: 10
[2022-06-17 08:44:52.955727] passdb: 10
[2022-06-17 08:44:52.957341] sam: 10
[2022-06-17 08:44:52.958955] auth: 10
[2022-06-17 08:44:52.960451] winbind: 10
[2022-06-17 08:44:52.961916] vfs: 10
[2022-06-17 08:44:52.963427] idmap: 10
[2022-06-17 08:44:52.965167] quota: 10
[2022-06-17 08:44:52.966776] acls: 10
[2022-06-17 08:44:52.968406] locking: 10
[2022-06-17 08:44:52.970031] msdfs: 10
[2022-06-17 08:44:52.971645] dmapi: 10
[2022-06-17 08:44:52.973320] registry: 10
[2022-06-17 08:44:52.974942] scavenger: 10
[2022-06-17 08:44:52.976555] dns: 10
[2022-06-17 08:44:52.978041] ldb: 10
[2022-06-17 08:44:52.979782] tevent: 10
[2022-06-17 08:44:52.981402] auth_audit: 10
[2022-06-17 08:44:52.983075] auth_json_audit: 10
[2022-06-17 08:44:52.984710] kerberos: 10
[2022-06-17 08:44:52.986330] drs_repl: 10
[2022-06-17 08:44:52.988155] smb2: 10
[2022-06-17 08:44:52.989802] smb2_credits: 10
[2022-06-17 08:44:52.991303] dsdb_audit: 10
[2022-06-17 08:44:52.993096] dsdb_json_audit: 10
[2022-06-17 08:44:52.994738] dsdb_password_audit: 10
[2022-06-17 08:44:52.996367] dsdb_password_json_audit: 10
[2022-06-17 08:44:52.997994] dsdb_transaction_audit: 10
[2022-06-17 08:44:52.999621] dsdb_transaction_json_audit: 10
[2022-06-17 08:44:53.001250] dsdb_group_audit: 10
[2022-06-17 08:44:53.002898] dsdb_group_json_audit: 10
[2022-06-17 08:44:53.004545] Processing section "[global]"
[2022-06-17 08:44:53.006197] doing parameter netbios name = zalupa
[2022-06-17 08:44:53.007835] doing parameter interfaces = br-lan
[2022-06-17 08:44:53.009471] doing parameter server string = SASAm
[2022-06-17 08:44:53.011098] doing parameter unix charset = UTF-8
[2022-06-17 08:44:53.012732] doing parameter workgroup = WORKGROUP
[2022-06-17 08:44:53.014441] doing parameter log level = 2
[2022-06-17 08:44:53.016100] doing parameter bind interfaces only = yes
[2022-06-17 08:44:53.017742] doing parameter deadtime = 15
[2022-06-17 08:44:53.019363] doing parameter enable core files = no
[2022-06-17 08:44:53.020986] doing parameter security = user
[2022-06-17 08:44:53.022630] doing parameter debug timestamp = yes
[2022-06-17 08:44:53.024338] doing parameter invalid users = root
[2022-06-17 08:44:53.025989] doing parameter map to guest = Bad User
[2022-06-17 08:44:53.027622] doing parameter null passwords = yes
[2022-06-17 08:44:53.029263] lpcfg_do_global_parameter: WARNING: The "null passwords" option is deprecated
[2022-06-17 08:44:53.030924] doing parameter passdb backend = smbpasswd
[2022-06-17 08:44:53.032561] doing parameter socket options = IPTOS_LOWDELAY TCP_NODELAY
[2022-06-17 08:44:53.034278] doing parameter load printers = No
[2022-06-17 08:44:53.035919] doing parameter printcap name = /dev/null
[2022-06-17 08:44:53.037435] doing parameter disable spoolss = yes
[2022-06-17 08:44:53.038923] doing parameter printing = bsd
[2022-06-17 08:44:53.040709] doing parameter mdns name = mdns
[2022-06-17 08:44:53.042342] doing parameter veto files = /Thumbs.db/.DS_Store/._.DS_Store/.apdisk/
[2022-06-17 08:44:53.044070] doing parameter delete veto files = yes
[2022-06-17 08:44:53.053519] Processing section "[shr]"
[2022-06-17 08:44:53.055312] add_a_service: Creating snum = 0 for shr
[2022-06-17 08:44:53.057653] hash_a_service: creating servicehash
[2022-06-17 08:44:53.060039] hash_a_service: hashing index 0 for service name shr
[2022-06-17 08:44:53.061842] doing parameter path = /mnt/share/
[2022-06-17 08:44:53.066851] doing parameter create mask = 0666
[2022-06-17 08:44:53.072734] doing parameter directory mask = 0777
[2022-06-17 08:44:53.074617] doing parameter read only = no
[2022-06-17 08:44:53.076312] doing parameter guest ok = yes
[2022-06-17 08:44:53.079343] doing parameter vfs objects = io_uring
[2022-06-17 08:44:53.081654] pm_process() returned Yes
[2022-06-17 08:44:53.083306] lp_servicenumber: couldn't find homes
[2022-06-17 08:44:53.085162] add_a_service: Creating snum = 1 for IPC$
[2022-06-17 08:44:53.086828] hash_a_service: hashing index 1 for service name IPC$
[2022-06-17 08:44:53.088486] adding IPC service
[2022-06-17 08:44:53.090106] INFO: Current debug levels:
[2022-06-17 08:44:53.091722] all: 10
[2022-06-17 08:44:53.093400] tdb: 10
[2022-06-17 08:44:53.095026] printdrivers: 10
[2022-06-17 08:44:53.096652] lanman: 10
[2022-06-17 08:44:53.098281] smb: 10
[2022-06-17 08:44:53.099885] rpc_parse: 10
[2022-06-17 08:44:53.101482] rpc_srv: 10
[2022-06-17 08:44:53.103136] rpc_cli: 10
[2022-06-17 08:44:53.104770] passdb: 10
[2022-06-17 08:44:53.106384] sam: 10
[2022-06-17 08:44:53.107986] auth: 10
[2022-06-17 08:44:53.109594] winbind: 10
[2022-06-17 08:44:53.111223] vfs: 10
[2022-06-17 08:44:53.112836] idmap: 10
[2022-06-17 08:44:53.114502] quota: 10
[2022-06-17 08:44:53.116104] acls: 10
[2022-06-17 08:44:53.117707] locking: 10
[2022-06-17 08:44:53.119323] msdfs: 10
[2022-06-17 08:44:53.120932] dmapi: 10
[2022-06-17 08:44:53.122541] registry: 10
[2022-06-17 08:44:53.124245] scavenger: 10
[2022-06-17 08:44:53.125741] dns: 10
[2022-06-17 08:44:53.127339] ldb: 10
[2022-06-17 08:44:53.129034] tevent: 10
[2022-06-17 08:44:53.130653] auth_audit: 10
[2022-06-17 08:44:53.132285] auth_json_audit: 10
[2022-06-17 08:44:53.133967] kerberos: 10
[2022-06-17 08:44:53.135594] drs_repl: 10
[2022-06-17 08:44:53.137209] smb2: 10
[2022-06-17 08:44:53.138830] smb2_credits: 10
[2022-06-17 08:44:53.140441] dsdb_audit: 10
[2022-06-17 08:44:53.142024] dsdb_json_audit: 10
[2022-06-17 08:44:53.143694] dsdb_password_audit: 10
[2022-06-17 08:44:53.145333] dsdb_password_json_audit: 10
[2022-06-17 08:44:53.146983] dsdb_transaction_audit: 10
[2022-06-17 08:44:53.148619] dsdb_transaction_json_audit: 10
[2022-06-17 08:44:53.150247] dsdb_group_audit: 10
[2022-06-17 08:44:53.151861] dsdb_group_json_audit: 10
[2022-06-17 08:44:53.153573] lp_file_list_changed()
[2022-06-17 08:44:53.155214] file /etc/samba/smb.conf -> /etc/samba/smb.conf last mod_time: Fri Jun 17 08:38:04 2022
[2022-06-17 08:44:53.156884]
[2022-06-17 08:44:53.158508] INFO: Current debug levels:
[2022-06-17 08:44:53.160125] all: 10
[2022-06-17 08:44:53.161730] tdb: 10
[2022-06-17 08:44:53.163379] printdrivers: 10
[2022-06-17 08:44:53.165012] lanman: 10
[2022-06-17 08:44:53.166633] smb: 10
[2022-06-17 08:44:53.168257] rpc_parse: 10
[2022-06-17 08:44:53.169875] rpc_srv: 10
[2022-06-17 08:44:53.171492] rpc_cli: 10
[2022-06-17 08:44:53.173154] passdb: 10
[2022-06-17 08:44:53.174789] sam: 10
[2022-06-17 08:44:53.176400] auth: 10
[2022-06-17 08:44:53.177886] winbind: 10
[2022-06-17 08:44:53.179632] vfs: 10
[2022-06-17 08:44:53.181269] idmap: 10
[2022-06-17 08:44:53.182925] quota: 10
[2022-06-17 08:44:53.184558] acls: 10
[2022-06-17 08:44:53.186163] locking: 10
[2022-06-17 08:44:53.187755] msdfs: 10
[2022-06-17 08:44:53.189366] dmapi: 10
[2022-06-17 08:44:53.190981] registry: 10
[2022-06-17 08:44:53.192598] scavenger: 10
[2022-06-17 08:44:53.194313] dns: 10
[2022-06-17 08:44:53.195949] ldb: 10
[2022-06-17 08:44:53.197553] tevent: 10
[2022-06-17 08:44:53.199173] auth_audit: 10
[2022-06-17 08:44:53.200788] auth_json_audit: 10
[2022-06-17 08:44:53.202405] kerberos: 10
[2022-06-17 08:44:53.204117] drs_repl: 10
[2022-06-17 08:44:53.205741] smb2: 10
[2022-06-17 08:44:53.207350] smb2_credits: 10
[2022-06-17 08:44:53.208982] dsdb_audit: 10
[2022-06-17 08:44:53.210595] dsdb_json_audit: 10
[2022-06-17 08:44:53.212197] dsdb_password_audit: 10
[2022-06-17 08:44:53.213849] dsdb_password_json_audit: 10
[2022-06-17 08:44:53.215505] dsdb_transaction_audit: 10
[2022-06-17 08:44:53.217151] dsdb_transaction_json_audit: 10
[2022-06-17 08:44:53.218784] dsdb_group_audit: 10
[2022-06-17 08:44:53.220399] dsdb_group_json_audit: 10
[2022-06-17 08:44:53.222019] added interface br-lan ip=fd3f:ea31:1c91::1 bcast= netmask=ffff:ffff:ffff:fff0::
[2022-06-17 08:44:53.223737] added interface br-lan ip=192.168.1.250 bcast=192.168.255.255 netmask=255.255.0.0
[2022-06-17 08:44:53.225415] loaded services
[2022-06-17 08:44:53.227033] Netbios name list:-
[2022-06-17 08:44:53.228650] my_netbios_names[0]="ZALUPA"
[2022-06-17 08:44:53.230288] INFO: Profiling support unavailable in this build.
[2022-06-17 08:44:53.231933] Standard input is not a socket, assuming -D option
[2022-06-17 08:44:53.233630] Becoming a daemon.
[2022-06-17 08:44:53.235138] Process with PID=9526 does not exist.
[2022-06-17 08:44:53.236628] msg_dgm_ref_destructor: refs=0
[2022-06-17 08:44:53.238116] messaging_dgm_ref: messaging_dgm_init returned No error information
[2022-06-17 08:44:53.239630] messaging_dgm_ref: unique = 15217904554109505722
[2022-06-17 08:44:53.241134] Registered MSG_REQ_POOL_USAGE
[2022-06-17 08:44:53.242616] Attempting to register passdb backend smbpasswd
[2022-06-17 08:44:53.244185] Successfully added passdb backend 'smbpasswd'
[2022-06-17 08:44:53.245674] Attempting to register passdb backend tdbsam
[2022-06-17 08:44:53.247157] Successfully added passdb backend 'tdbsam'
[2022-06-17 08:44:53.248821] Attempting to find a passdb backend to match smbpasswd (smbpasswd)
[2022-06-17 08:44:53.250359] Found pdb backend smbpasswd
[2022-06-17 08:44:53.251841] pdb backend smbpasswd has a valid init
[2022-06-17 08:44:53.253382] dbwrap_lock_order_lock: check lock order 1 for /var/lock/smbXsrv_version_global.tdb
[2022-06-17 08:44:53.254902] lock order: 1:/var/lock/smbXsrv_version_global.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:44:53.256412] db_tdb_log_key: Locking key 736D62587372765F7665
[2022-06-17 08:44:53.257920] db_tdb_fetch_locked_internal: Allocated locked data 0xb56e5dc0
[2022-06-17 08:44:53.259427] db_tdb_log_key: Unlocking key 736D62587372765F7665
[2022-06-17 08:44:53.260920] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/smbXsrv_version_global.tdb
[2022-06-17 08:44:53.262434] smbXsrv_version_global_init
[2022-06-17 08:44:53.264190] &global_blob: struct smbXsrv_version_globalB
[2022-06-17 08:44:53.265729] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:44:53.267228] seqnum : 0x00000001 (1)
[2022-06-17 08:44:53.268726] info : union smbXsrv_version_globalU(case 0)
[2022-06-17 08:44:53.270225] info0 : *
[2022-06-17 08:44:53.271714] info0: struct smbXsrv_version_global0
[2022-06-17 08:44:53.273267] db_rec : NULL
[2022-06-17 08:44:53.274776] num_nodes : 0x00000001 (1)
[2022-06-17 08:44:53.276279] nodes: ARRAY(1)
[2022-06-17 08:44:53.277766] nodes: struct smbXsrv_version_node0
[2022-06-17 08:44:53.279485] server_id: struct server_id
[2022-06-17 08:44:53.280997] pid : 0x0000000000002555 (9557)
[2022-06-17 08:44:53.282507] task_id : 0x00000000 (0)
[2022-06-17 08:44:53.284096] vnn : 0xffffffff (4294967295)
[2022-06-17 08:44:53.293004] unique_id : 0xd330db90657f10ba (-3228839519600045894)
[2022-06-17 08:44:53.295015] min_version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:44:53.296604] max_version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:44:53.298131] current_version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:44:53.299638] pid_to_procid: messaging_dgm_get_unique failed: No such file or directory
[2022-06-17 08:44:53.304967] msg_dgm_ref_destructor: refs=0
[2022-06-17 08:44:53.306603] messaging_dgm_ref: messaging_dgm_init returned No error information
[2022-06-17 08:44:53.308711] messaging_dgm_ref: unique = 18289446604332582717
[2022-06-17 08:44:53.310436] Registered MSG_REQ_POOL_USAGE
[2022-06-17 08:44:53.312098] Attempting to find a passdb backend to match smbpasswd (smbpasswd)
[2022-06-17 08:44:53.313819] Found pdb backend smbpasswd
[2022-06-17 08:44:53.315476] pdb backend smbpasswd has a valid init
[2022-06-17 08:44:53.317115] INFO: Current debug levels:
[2022-06-17 08:44:53.318721] all: 10
[2022-06-17 08:44:53.320328] tdb: 10
[2022-06-17 08:44:53.321949] printdrivers: 10
[2022-06-17 08:44:53.323635] lanman: 10
[2022-06-17 08:44:53.325246] smb: 10
[2022-06-17 08:44:53.326846] rpc_parse: 10
[2022-06-17 08:44:53.328454] rpc_srv: 10
[2022-06-17 08:44:53.330064] rpc_cli: 10
[2022-06-17 08:44:53.331679] passdb: 10
[2022-06-17 08:44:53.333341] sam: 10
[2022-06-17 08:44:53.334965] auth: 10
[2022-06-17 08:44:53.336578] winbind: 10
[2022-06-17 08:44:53.338200] vfs: 10
[2022-06-17 08:44:53.339799] idmap: 10
[2022-06-17 08:44:53.341290] quota: 10
[2022-06-17 08:44:53.342758] acls: 10
[2022-06-17 08:44:53.344289] locking: 10
[2022-06-17 08:44:53.345768] msdfs: 10
[2022-06-17 08:44:53.347238] dmapi: 10
[2022-06-17 08:44:53.348689] registry: 10
[2022-06-17 08:44:53.350146] scavenger: 10
[2022-06-17 08:44:53.351607] dns: 10
[2022-06-17 08:44:53.353114] ldb: 10
[2022-06-17 08:44:53.354739] tevent: 10
[2022-06-17 08:44:53.356259] auth_audit: 10
[2022-06-17 08:44:53.357737] auth_json_audit: 10
[2022-06-17 08:44:53.359631] kerberos: 10
[2022-06-17 08:44:53.361118] drs_repl: 10
[2022-06-17 08:44:53.362587] smb2: 10
[2022-06-17 08:44:53.364131] smb2_credits: 10
[2022-06-17 08:44:53.365615] dsdb_audit: 10
[2022-06-17 08:44:53.367083] dsdb_json_audit: 10
[2022-06-17 08:44:53.368551] dsdb_password_audit: 10
[2022-06-17 08:44:53.370328] dsdb_password_json_audit: 10
[2022-06-17 08:44:53.371980] dsdb_transaction_audit: 10
[2022-06-17 08:44:53.373671] dsdb_transaction_json_audit: 10
[2022-06-17 08:44:53.375318] dsdb_group_audit: 10
[2022-06-17 08:44:53.376931] dsdb_group_json_audit: 10
[2022-06-17 08:44:53.378552] Registering messaging pointer for type 794 - private_data=0xb6840d70
[2022-06-17 08:44:53.380207] Registering messaging pointer for type 795 - private_data=0xb6840d70
[2022-06-17 08:44:53.381852] Registering messaging pointer for type 796 - private_data=0xb6840d70
[2022-06-17 08:44:53.383558] messaging_dgm_send: Sending message to 9557
[2022-06-17 08:44:53.385203] msg_dgm_ref_destructor: refs=0
[2022-06-17 08:44:53.386835] messaging_dgm_ref: messaging_dgm_init returned No error information
[2022-06-17 08:44:53.388485] messaging_dgm_ref: unique = 1643749833637346486
[2022-06-17 08:44:53.390136] Registered MSG_REQ_POOL_USAGE
[2022-06-17 08:44:53.391780] Attempting to find a passdb backend to match smbpasswd (smbpasswd)
[2022-06-17 08:44:53.393481] Found pdb backend smbpasswd
[2022-06-17 08:44:53.395101] pdb backend smbpasswd has a valid init
[2022-06-17 08:44:53.396724] Registering messaging pointer for type 13 - private_data=0xb6840c90
[2022-06-17 08:44:53.398389] Registering messaging pointer for type 788 - private_data=0xb6840c90
[2022-06-17 08:44:53.400032] cleanupd_init: Started cleanupd pid=9561
[2022-06-17 08:44:53.401671] Registering messaging pointer for type 789 - private_data=0xb5c53d90
[2022-06-17 08:44:53.403363] regdb_init: registry db openend. refcount reset (1)
[2022-06-17 08:44:53.405031] reghook_cache_init: new tree with default ops 0xb6ab32e8 for key []
[2022-06-17 08:44:53.406689] regdb_fetch_values: Looking for values of key [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Ports]
[2022-06-17 08:44:53.408359] regdb_unpack_values: value[0]: name[Samba Printer Port] len[2]
[2022-06-17 08:44:53.409992] regdb_fetch_values: Looking for values of key [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers]
[2022-06-17 08:44:53.411553] regdb_unpack_values: value[0]: name[DefaultSpoolDirectory] len[70]
[2022-06-17 08:44:53.413334] regdb_fetch_values: Looking for values of key [HKLM\SYSTEM\CurrentControlSet\Services\Eventlog]
[2022-06-17 08:44:53.415037] regdb_unpack_values: value[0]: name[DisplayName] len[20]
[2022-06-17 08:44:53.416691] regdb_unpack_values: value[1]: name[ErrorControl] len[4]
[2022-06-17 08:44:53.418338] regdb_fetch_values: Looking for values of key [HKLM\SYSTEM\CurrentControlSet\Services\Eventlog]
[2022-06-17 08:44:53.420000] regdb_unpack_values: value[0]: name[DisplayName] len[20]
[2022-06-17 08:44:53.421629] regdb_unpack_values: value[1]: name[ErrorControl] len[4]
[2022-06-17 08:44:53.423313] reghook_cache_add: Adding ops 0xb6f0d434 for key [\HKLM\SYSTEM\CurrentControlSet\Control\Print\Printers]
[2022-06-17 08:44:53.425001] pathtree_add: Enter
[2022-06-17 08:44:53.426641] pathtree_add: Successfully added node [HKLM\SYSTEM\CurrentControlSet\Control\Print\Printers] to tree
[2022-06-17 08:44:53.428324] pathtree_add: Exit
[2022-06-17 08:44:53.429948] reghook_cache_add: Adding ops 0xb6ab32e8 for key [\HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers]
[2022-06-17 08:44:53.431629] pathtree_add: Enter
[2022-06-17 08:44:53.433290] pathtree_add: Successfully added node [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers] to tree
[2022-06-17 08:44:53.434978] pathtree_add: Exit
[2022-06-17 08:44:53.436594] reghook_cache_add: Adding ops 0xb6ab32e8 for key [\HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Ports]
[2022-06-17 08:44:53.438267] pathtree_add: Enter
[2022-06-17 08:44:53.439903] pathtree_add: Successfully added node [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Ports] to tree
[2022-06-17 08:44:53.441581] pathtree_add: Exit
[2022-06-17 08:44:53.443255] reghook_cache_add: Adding ops 0xb6ab32e8 for key [\HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\PackageInstallation]
[2022-06-17 08:44:53.444959] pathtree_add: Enter
[2022-06-17 08:44:53.446584] pathtree_add: Successfully added node [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\PackageInstallation] to tree
[2022-06-17 08:44:53.448257] pathtree_add: Exit
[2022-06-17 08:44:53.449877] reghook_cache_add: Adding ops 0xb6f0d460 for key [\HKLM\SYSTEM\CurrentControlSet\Services\LanmanServer\Shares]
[2022-06-17 08:44:53.451564] pathtree_add: Enter
[2022-06-17 08:44:53.453232] pathtree_add: Successfully added node [HKLM\SYSTEM\CurrentControlSet\Services\LanmanServer\Shares] to tree
[2022-06-17 08:44:53.454933] pathtree_add: Exit
[2022-06-17 08:44:53.456549] reghook_cache_add: Adding ops 0xb6ab320c for key [\HKLM\SOFTWARE\Samba\smbconf]
[2022-06-17 08:44:53.458190] pathtree_add: Enter
[2022-06-17 08:44:53.459803] pathtree_add: Successfully added node [HKLM\SOFTWARE\Samba\smbconf] to tree
[2022-06-17 08:44:53.461330] pathtree_add: Exit
[2022-06-17 08:44:53.463130] reghook_cache_add: Adding ops 0xb6f0d48c for key [\HKLM\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters]
[2022-06-17 08:44:53.464826] pathtree_add: Enter
[2022-06-17 08:44:53.466451] pathtree_add: Successfully added node [HKLM\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters] to tree
[2022-06-17 08:44:53.468122] pathtree_add: Exit
[2022-06-17 08:44:53.469737] reghook_cache_add: Adding ops 0xb6f0d4b8 for key [\HKLM\SYSTEM\CurrentControlSet\Control\ProductOptions]
[2022-06-17 08:44:53.471398] pathtree_add: Enter
[2022-06-17 08:44:53.473053] pathtree_add: Successfully added node [HKLM\SYSTEM\CurrentControlSet\Control\ProductOptions] to tree
[2022-06-17 08:44:53.474734] pathtree_add: Exit
[2022-06-17 08:44:53.476364] reghook_cache_add: Adding ops 0xb6f0d4e4 for key [\HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters]
[2022-06-17 08:44:53.478032] pathtree_add: Enter
[2022-06-17 08:44:53.479651] pathtree_add: Successfully added node [HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters] to tree
[2022-06-17 08:44:53.481305] pathtree_add: Exit
[2022-06-17 08:44:53.482979] reghook_cache_add: Adding ops 0xb6f0d510 for key [\HKPT]
[2022-06-17 08:44:53.484643] pathtree_add: Enter
[2022-06-17 08:44:53.486270] pathtree_add: Successfully added node [HKPT] to tree
[2022-06-17 08:44:53.487932] pathtree_add: Exit
[2022-06-17 08:44:53.489544] reghook_cache_add: Adding ops 0xb6f0d53c for key [\HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion]
[2022-06-17 08:44:53.491213] pathtree_add: Enter
[2022-06-17 08:44:53.492832] pathtree_add: Successfully added node [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion] to tree
[2022-06-17 08:44:53.494556] pathtree_add: Exit
[2022-06-17 08:44:53.496185] reghook_cache_add: Adding ops 0xb6f0d568 for key [\HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Perflib]
[2022-06-17 08:44:53.497863] pathtree_add: Enter
[2022-06-17 08:44:53.499489] pathtree_add: Successfully added node [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Perflib] to tree
[2022-06-17 08:44:53.501153] pathtree_add: Exit
[2022-06-17 08:44:53.502777] regdb_close: decrementing refcount (1->0)
[2022-06-17 08:44:53.504461] Could not convert SID S-1-5-18 to gid, ignoring it
[2022-06-17 08:44:53.506088] Security token SIDs (1):
[2022-06-17 08:44:53.507694] SID[ 0]: S-1-5-18
[2022-06-17 08:44:53.509297] Privileges (0xFFFFFFFFFFFFFFFF):
[2022-06-17 08:44:53.510945] Privilege[ 0]: SeMachineAccountPrivilege
[2022-06-17 08:44:53.512584] Privilege[ 1]: SeTakeOwnershipPrivilege
[2022-06-17 08:44:53.514305] Privilege[ 2]: SeBackupPrivilege
[2022-06-17 08:44:53.515941] Privilege[ 3]: SeRestorePrivilege
[2022-06-17 08:44:53.517572] Privilege[ 4]: SeRemoteShutdownPrivilege
[2022-06-17 08:44:53.519193] Privilege[ 5]: SePrintOperatorPrivilege
[2022-06-17 08:44:53.520828] Privilege[ 6]: SeAddUsersPrivilege
[2022-06-17 08:44:53.522463] Privilege[ 7]: SeDiskOperatorPrivilege
[2022-06-17 08:44:53.524168] Privilege[ 8]: SeSecurityPrivilege
[2022-06-17 08:44:53.525801] Privilege[ 9]: SeSystemtimePrivilege
[2022-06-17 08:44:53.527431] Privilege[ 10]: SeShutdownPrivilege
[2022-06-17 08:44:53.529053] Privilege[ 11]: SeDebugPrivilege
[2022-06-17 08:44:53.530677] Privilege[ 12]: SeSystemEnvironmentPrivilege
[2022-06-17 08:44:53.532308] Privilege[ 13]: SeSystemProfilePrivilege
[2022-06-17 08:44:53.534024] Privilege[ 14]: SeProfileSingleProcessPrivilege
[2022-06-17 08:44:53.535682] Privilege[ 15]: SeIncreaseBasePriorityPrivilege
[2022-06-17 08:44:53.537327] Privilege[ 16]: SeLoadDriverPrivilege
[2022-06-17 08:44:53.538841] Privilege[ 17]: SeCreatePagefilePrivilege
[2022-06-17 08:44:53.540333] Privilege[ 18]: SeIncreaseQuotaPrivilege
[2022-06-17 08:44:53.541811] Privilege[ 19]: SeChangeNotifyPrivilege
[2022-06-17 08:44:53.543340] Privilege[ 20]: SeUndockPrivilege
[2022-06-17 08:44:53.545149] Privilege[ 21]: SeManageVolumePrivilege
[2022-06-17 08:44:53.547212] Privilege[ 22]: SeImpersonatePrivilege
[2022-06-17 08:44:53.549601] Privilege[ 23]: SeCreateGlobalPrivilege
[2022-06-17 08:44:53.552193] Privilege[ 24]: SeEnableDelegationPrivilege
[2022-06-17 08:44:53.554216] Rights (0x 0):
[2022-06-17 08:44:53.555896] UNIX token of user 0
[2022-06-17 08:44:53.557531] Primary group is 0 and contains 1 supplementary groups
[2022-06-17 08:44:53.559193] Group[ 0]: 0
[2022-06-17 08:44:53.560816] Finding user nobody
[2022-06-17 08:44:53.562440] Trying _Get_Pwnam(), username as lowercase is nobody
[2022-06-17 08:44:53.564172] Get_Pwnam_internals did find user [nobody]!
[2022-06-17 08:44:53.566158] Finding user nobody
[2022-06-17 08:44:53.567805] Trying _Get_Pwnam(), username as lowercase is nobody
[2022-06-17 08:44:53.569963] Get_Pwnam_internals did find user [nobody]!
[2022-06-17 08:44:53.572019] Create local NT token for nobody
[2022-06-17 08:44:53.573747] Finding user nobody
[2022-06-17 08:44:53.575404] Trying _Get_Pwnam(), username as lowercase is nobody
[2022-06-17 08:44:53.577069] Get_Pwnam_internals did find user [nobody]!
[2022-06-17 08:44:53.578952] sys_getgrouplist: user [nobody]
[2022-06-17 08:44:53.580821] Opening cache file at /var/lock/gencache.tdb
[2022-06-17 08:44:53.582485] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.584229] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:44:53.585880] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.587543] Security token: (NULL)
[2022-06-17 08:44:53.589184] UNIX token of user 0
[2022-06-17 08:44:53.590806] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:53.592452] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:44:53.594173] xid_to_sid: GID 65534 -> S-1-22-2-65534 fallback
[2022-06-17 08:44:53.595823] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.597455] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:44:53.599088] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.600727] Security token: (NULL)
[2022-06-17 08:44:53.612702] UNIX token of user 0
[2022-06-17 08:44:53.614473] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:53.616255] Failed to fetch domain sid for WORKGROUP
[2022-06-17 08:44:53.617788] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:44:53.619281] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.620770] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:44:53.622576] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.624327] Security token: (NULL)
[2022-06-17 08:44:53.625963] UNIX token of user 0
[2022-06-17 08:44:53.627457] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:53.629064] Could not find map for sid S-1-5-32-544
[2022-06-17 08:44:53.630701] create_builtin_administrators: Failed to create Administrators
[2022-06-17 08:44:53.632352] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:44:53.634077] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.635730] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:44:53.637350] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.638998] Security token: (NULL)
[2022-06-17 08:44:53.640613] UNIX token of user 0
[2022-06-17 08:44:53.642238] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:53.643906] Could not find map for sid S-1-5-32-545
[2022-06-17 08:44:53.645547] create_builtin_users: Failed to create Users
[2022-06-17 08:44:53.647199] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:44:53.648846] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.650488] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:44:53.652120] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.653798] Security token: (NULL)
[2022-06-17 08:44:53.655429] UNIX token of user 0
[2022-06-17 08:44:53.657045] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:53.658693] Could not find map for sid S-1-5-32-546
[2022-06-17 08:44:53.660336] create_builtin_guests: Failed to create Guests
[2022-06-17 08:44:53.661984] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:44:53.663681] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.665336] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:44:53.666978] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.668619] Security token: (NULL)
[2022-06-17 08:44:53.670244] UNIX token of user 0
[2022-06-17 08:44:53.671871] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:53.673567] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:44:53.675219] get_privileges: No privileges assigned to SID [S-1-5-21-3939785350-4027435424-1589595352-501]
[2022-06-17 08:44:53.677031] get_privileges: No privileges assigned to SID [S-1-5-21-3939785350-4027435424-1589595352-514]
[2022-06-17 08:44:53.678709] get_privileges: No privileges assigned to SID [S-1-22-2-65534]
[2022-06-17 08:44:53.680346] get_privileges_for_sids: sid = S-1-1-0
[2022-06-17 08:44:53.681977] Privilege set: 0x0
[2022-06-17 08:44:53.683654] get_privileges: No privileges assigned to SID [S-1-5-2]
[2022-06-17 08:44:53.685320] get_privileges: No privileges assigned to SID [S-1-5-32-546]
[2022-06-17 08:44:53.686973] Parsing value for key [IDMAP/SID2XID/S-1-5-21-3939785350-4027435424-1589595352-501]: value=[65534:U]
[2022-06-17 08:44:53.688637] Parsing value for key [IDMAP/SID2XID/S-1-5-21-3939785350-4027435424-1589595352-501]: id=[65534], endptr=[:U]
[2022-06-17 08:44:53.690317] wbcSidsToUnixIds returned WBC_ERR_WINBIND_NOT_AVAILABLE
[2022-06-17 08:44:53.691961] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.693649] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:44:53.695307] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.696954] Security token: (NULL)
[2022-06-17 08:44:53.698578] UNIX token of user 0
[2022-06-17 08:44:53.700184] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:53.701818] lookup_global_sam_rid: looking up RID 514.
[2022-06-17 08:44:53.703516] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
[2022-06-17 08:44:53.705169] push_conn_ctx(0) : conn_ctx_stack_ndx = 1
[2022-06-17 08:44:53.706815] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
[2022-06-17 08:44:53.708468] Security token: (NULL)
[2022-06-17 08:44:53.710091] UNIX token of user 0
[2022-06-17 08:44:53.711708] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:53.713397] smbpasswd_getsampwrid: search by sid: S-1-5-21-3939785350-4027435424-1589595352-514
[2022-06-17 08:44:53.715058] startsmbfilepwent_internal: opening file /etc/samba/smbpasswd
[2022-06-17 08:44:53.716706] getsmbfilepwent: skipping comment or blank line
[2022-06-17 08:44:53.718356] getsmbfilepwent: LM password for user nobody invalidated
[2022-06-17 08:44:53.720012] getsmbfilepwent: returning passwd entry for user nobody, uid 0
[2022-06-17 08:44:53.721657] getsmbfilepwent: LM password for user useruser invalidated
[2022-06-17 08:44:53.723369] getsmbfilepwent: returning passwd entry for user useruser, uid 65533
[2022-06-17 08:44:53.725027] getsmbfilepwent: end of file reached.
[2022-06-17 08:44:53.726663] endsmbfilepwent_internal: closed password file.
[2022-06-17 08:44:53.728301] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.729934] Can't find a unix id for an unmapped group
[2022-06-17 08:44:53.731577] SID S-1-5-21-3939785350-4027435424-1589595352-514 belongs to our domain, but there is no corresponding object in the database.
[2022-06-17 08:44:53.733325] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:44:53.734978] LEGACY: mapping failed for sid S-1-5-21-3939785350-4027435424-1589595352-514
[2022-06-17 08:44:53.736637] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.738269] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:44:53.739894] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.741526] Security token: (NULL)
[2022-06-17 08:44:53.743190] UNIX token of user 0
[2022-06-17 08:44:53.744831] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:53.746475] lookup_global_sam_rid: looking up RID 514.
[2022-06-17 08:44:53.748814] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
[2022-06-17 08:44:53.750455] push_conn_ctx(0) : conn_ctx_stack_ndx = 1
[2022-06-17 08:44:53.752091] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
[2022-06-17 08:44:53.753785] Security token: (NULL)
[2022-06-17 08:44:53.755418] UNIX token of user 0
[2022-06-17 08:44:53.757057] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:53.758704] smbpasswd_getsampwrid: search by sid: S-1-5-21-3939785350-4027435424-1589595352-514
[2022-06-17 08:44:53.760354] startsmbfilepwent_internal: opening file /etc/samba/smbpasswd
[2022-06-17 08:44:53.761988] getsmbfilepwent: skipping comment or blank line
[2022-06-17 08:44:53.763684] getsmbfilepwent: LM password for user nobody invalidated
[2022-06-17 08:44:53.765340] getsmbfilepwent: returning passwd entry for user nobody, uid 0
[2022-06-17 08:44:53.766991] getsmbfilepwent: LM password for user useruser invalidated
[2022-06-17 08:44:53.768635] getsmbfilepwent: returning passwd entry for user useruser, uid 65533
[2022-06-17 08:44:53.770290] getsmbfilepwent: end of file reached.
[2022-06-17 08:44:53.771929] endsmbfilepwent_internal: closed password file.
[2022-06-17 08:44:53.773610] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.775258] Can't find a unix id for an unmapped group
[2022-06-17 08:44:53.776887] SID S-1-5-21-3939785350-4027435424-1589595352-514 belongs to our domain, but there is no corresponding object in the database.
[2022-06-17 08:44:53.778558] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:44:53.780193] LEGACY: mapping failed for sid S-1-5-21-3939785350-4027435424-1589595352-514
[2022-06-17 08:44:53.781851] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.783545] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:44:53.785192] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.786841] Security token: (NULL)
[2022-06-17 08:44:53.788454] UNIX token of user 0
[2022-06-17 08:44:53.790083] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:53.791726] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:44:53.793427] LEGACY: mapping failed for sid S-1-1-0
[2022-06-17 08:44:53.794957] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.796459] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:44:53.797952] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.799595] Security token: (NULL)
[2022-06-17 08:44:53.801217] UNIX token of user 0
[2022-06-17 08:44:53.802829] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:53.804544] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:44:53.806193] LEGACY: mapping failed for sid S-1-1-0
[2022-06-17 08:44:53.807826] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.809457] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:44:53.811084] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.812721] Security token: (NULL)
[2022-06-17 08:44:53.814390] UNIX token of user 0
[2022-06-17 08:44:53.816024] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:53.817552] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:44:53.819049] LEGACY: mapping failed for sid S-1-5-2
[2022-06-17 08:44:53.820534] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.822023] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:44:53.823642] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.825155] Security token: (NULL)
[2022-06-17 08:44:53.826636] UNIX token of user 0
[2022-06-17 08:44:53.828556] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:53.830207] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:44:53.831720] LEGACY: mapping failed for sid S-1-5-2
[2022-06-17 08:44:53.833408] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.835182] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:44:53.836823] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.838431] Security token: (NULL)
[2022-06-17 08:44:53.839936] UNIX token of user 0
[2022-06-17 08:44:53.841683] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:53.843254] Could not find map for sid S-1-5-32-546
[2022-06-17 08:44:53.845026] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:44:53.846661] LEGACY: mapping failed for sid S-1-5-32-546
[2022-06-17 08:44:53.848283] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.849906] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:44:53.851546] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.853251] Security token: (NULL)
[2022-06-17 08:44:53.854907] UNIX token of user 0
[2022-06-17 08:44:53.856530] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:53.858158] Could not find map for sid S-1-5-32-546
[2022-06-17 08:44:53.859787] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:44:53.861423] LEGACY: mapping failed for sid S-1-5-32-546
[2022-06-17 08:44:53.863104] Could not convert SID S-1-5-21-3939785350-4027435424-1589595352-514 to gid, ignoring it
[2022-06-17 08:44:53.864774] Could not convert SID S-1-1-0 to gid, ignoring it
[2022-06-17 08:44:53.866419] Could not convert SID S-1-5-2 to gid, ignoring it
[2022-06-17 08:44:53.868067] Could not convert SID S-1-5-32-546 to gid, ignoring it
[2022-06-17 08:44:53.869716] Security token SIDs (7):
[2022-06-17 08:44:53.871335] SID[ 0]: S-1-5-21-3939785350-4027435424-1589595352-501
[2022-06-17 08:44:53.872997] SID[ 1]: S-1-5-21-3939785350-4027435424-1589595352-514
[2022-06-17 08:44:53.874649] SID[ 2]: S-1-22-2-65534
[2022-06-17 08:44:53.876268] SID[ 3]: S-1-1-0
[2022-06-17 08:44:53.877888] SID[ 4]: S-1-5-2
[2022-06-17 08:44:53.879513] SID[ 5]: S-1-5-32-546
[2022-06-17 08:44:53.881125] SID[ 6]: S-1-22-1-65534
[2022-06-17 08:44:53.882746] Privileges (0x 0):
[2022-06-17 08:44:53.884446] Rights (0x 0):
[2022-06-17 08:44:53.886074] UNIX token of user 65534
[2022-06-17 08:44:53.887699] Primary group is 65534 and contains 1 supplementary groups
[2022-06-17 08:44:53.889336] Group[ 0]: 65534
[2022-06-17 08:44:53.890951] Finding user nobody
[2022-06-17 08:44:53.892568] Trying _Get_Pwnam(), username as lowercase is nobody
[2022-06-17 08:44:53.894269] Get_Pwnam_internals did find user [nobody]!
[2022-06-17 08:44:53.895916] wbcSidsToUnixIds returned WBC_ERR_WINBIND_NOT_AVAILABLE
[2022-06-17 08:44:53.897555] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.899179] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:44:53.900823] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.902456] Security token: (NULL)
[2022-06-17 08:44:53.904161] UNIX token of user 0
[2022-06-17 08:44:53.905786] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:53.907425] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:44:53.908935] LEGACY: mapping failed for sid S-1-5-7
[2022-06-17 08:44:53.910646] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.912292] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:44:53.922989] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.924920] Security token: (NULL)
[2022-06-17 08:44:53.926613] UNIX token of user 0
[2022-06-17 08:44:53.928256] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:53.929901] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:44:53.931544] LEGACY: mapping failed for sid S-1-5-7
[2022-06-17 08:44:53.933243] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.937702] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:44:53.939473] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.941145] Security token: (NULL)
[2022-06-17 08:44:53.942779] UNIX token of user 0
[2022-06-17 08:44:53.944468] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:53.946122] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:44:53.947747] LEGACY: mapping failed for sid S-1-1-0
[2022-06-17 08:44:53.949385] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.951026] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:44:53.952666] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.954354] Security token: (NULL)
[2022-06-17 08:44:53.955983] UNIX token of user 0
[2022-06-17 08:44:53.957585] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:53.959227] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:44:53.960869] LEGACY: mapping failed for sid S-1-1-0
[2022-06-17 08:44:53.962503] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.964228] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:44:53.965875] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.967505] Security token: (NULL)
[2022-06-17 08:44:53.969118] UNIX token of user 0
[2022-06-17 08:44:53.970730] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:53.972361] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:44:53.974091] LEGACY: mapping failed for sid S-1-5-2
[2022-06-17 08:44:53.975735] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.977371] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:44:53.979019] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:53.980658] Security token: (NULL)
[2022-06-17 08:44:53.982266] UNIX token of user 0
[2022-06-17 08:44:53.983940] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:53.985603] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:44:53.987234] LEGACY: mapping failed for sid S-1-5-2
[2022-06-17 08:44:53.988872] Could not convert SID S-1-5-7 to gid, ignoring it
[2022-06-17 08:44:53.990514] Could not convert SID S-1-1-0 to gid, ignoring it
[2022-06-17 08:44:53.992148] Could not convert SID S-1-5-2 to gid, ignoring it
[2022-06-17 08:44:53.993710] sys_getgrouplist: user [nobody]
[2022-06-17 08:44:53.995348] Security token SIDs (5):
[2022-06-17 08:44:53.996986] SID[ 0]: S-1-5-7
[2022-06-17 08:44:53.998614] SID[ 1]: S-1-1-0
[2022-06-17 08:44:54.000398] SID[ 2]: S-1-5-2
[2022-06-17 08:44:54.002046] SID[ 3]: S-1-22-1-65534
[2022-06-17 08:44:54.003726] SID[ 4]: S-1-22-2-65534
[2022-06-17 08:44:54.005357] Privileges (0x 0):
[2022-06-17 08:44:54.006997] Rights (0x 0):
[2022-06-17 08:44:54.008641] UNIX token of user 65534
[2022-06-17 08:44:54.010256] Primary group is 65534 and contains 1 supplementary groups
[2022-06-17 08:44:54.011908] Group[ 0]: 65534
[2022-06-17 08:44:54.013574] dcesrv_init: Registering DCE/RPC endpoint servers
[2022-06-17 08:44:54.015228] DCERPC endpoint server 'winreg' registered
[2022-06-17 08:44:54.016849] DCERPC endpoint server 'srvsvc' registered
[2022-06-17 08:44:54.018485] DCERPC endpoint server 'lsarpc' registered
[2022-06-17 08:44:54.020117] DCERPC endpoint server 'samr' registered
[2022-06-17 08:44:54.021750] DCERPC endpoint server 'netdfs' registered
[2022-06-17 08:44:54.023443] DCERPC endpoint server 'dssetup' registered
[2022-06-17 08:44:54.025087] DCERPC endpoint server 'wkssvc' registered
[2022-06-17 08:44:54.026715] DCERPC endpoint server 'svcctl' registered
[2022-06-17 08:44:54.028219] DCERPC endpoint server 'ntsvcs' registered
[2022-06-17 08:44:54.029964] DCERPC endpoint server 'eventlog' registered
[2022-06-17 08:44:54.031601] DCERPC endpoint server 'initshutdown' registered
[2022-06-17 08:44:54.033286] dcesrv_init: Initializing DCE/RPC modules
[2022-06-17 08:44:54.034939] dcesrv_init: Initializing DCE/RPC registered endpoint servers
[2022-06-17 08:44:54.036586] dcesrv_interface_register: Interface 'winreg' registered on endpoint 'ncacn_np:[\pipe\winreg]' (single process required)
[2022-06-17 08:44:54.038258] winreg__check_register_in_endpoint: Interface 'winreg' not registered in endpoint 'winreg' as service is embedded
[2022-06-17 08:44:54.039928] dcesrv_interface_register: Interface 'winreg' registered on endpoint 'ncalrpc:' (single process required)
[2022-06-17 08:44:54.041597] dcesrv_interface_register: Interface 'srvsvc' registered on endpoint 'ncacn_np:[\pipe\srvsvc]' (single process required)
[2022-06-17 08:44:54.043314] srvsvc__check_register_in_endpoint: Interface 'srvsvc' not registered in endpoint 'srvsvc' as service is embedded
[2022-06-17 08:44:54.044899] dcesrv_interface_register: Interface 'srvsvc' registered on endpoint 'ncalrpc:' (single process required)
[2022-06-17 08:44:54.046704] dcesrv_interface_register: Interface 'lsarpc' registered on endpoint 'ncacn_np:[\pipe\netlogon]' (single process required)
[2022-06-17 08:44:54.048405] dcesrv_interface_register: Interface 'lsarpc' registered on endpoint 'ncacn_np:[\pipe\lsarpc]' (single process required)
[2022-06-17 08:44:54.050086] dcesrv_interface_register: Interface 'lsarpc' registered on endpoint 'ncacn_np:[\pipe\lsass]' (single process required)
[2022-06-17 08:44:54.051765] lsarpc__check_register_in_endpoint: Interface 'lsarpc' not registered in endpoint 'lsarpc' as service is embedded
[2022-06-17 08:44:54.053482] dcesrv_interface_register: Interface 'lsarpc' registered on endpoint 'ncalrpc:' (single process required)
[2022-06-17 08:44:54.055166] dcesrv_interface_register: Interface 'samr' registered on endpoint 'ncacn_np:[\pipe\samr]' (single process required)
[2022-06-17 08:44:54.056841] samr__check_register_in_endpoint: Interface 'samr' not registered in endpoint 'samr' as service is embedded
[2022-06-17 08:44:54.058532] dcesrv_interface_register: Interface 'samr' registered on endpoint 'ncalrpc:' (single process required)
[2022-06-17 08:44:54.060198] dcesrv_interface_register: Interface 'netdfs' registered on endpoint 'ncacn_np:[\pipe\netdfs]' (single process required)
[2022-06-17 08:44:54.061871] netdfs__check_register_in_endpoint: Interface 'netdfs' not registered in endpoint 'netdfs' as service is embedded
[2022-06-17 08:44:54.063729] dcesrv_interface_register: Interface 'netdfs' registered on endpoint 'ncalrpc:' (single process required)
[2022-06-17 08:44:54.065422] dcesrv_interface_register: Interface 'dssetup' registered on endpoint 'ncacn_np:[\pipe\lsarpc]' (single process required)
[2022-06-17 08:44:54.067099] dcesrv_interface_register: Interface 'dssetup' registered on endpoint 'ncacn_np:[\pipe\lsass]' (single process required)
[2022-06-17 08:44:54.068779] dssetup__check_register_in_endpoint: Interface 'dssetup' not registered in endpoint 'dssetup' as service is embedded
[2022-06-17 08:44:54.070454] dcesrv_interface_register: Interface 'dssetup' registered on endpoint 'ncalrpc:' (single process required)
[2022-06-17 08:44:54.072128] dcesrv_interface_register: Interface 'wkssvc' registered on endpoint 'ncacn_np:[\pipe\wkssvc]' (single process required)
[2022-06-17 08:44:54.073846] wkssvc__check_register_in_endpoint: Interface 'wkssvc' not registered in endpoint 'wkssvc' as service is embedded
[2022-06-17 08:44:54.075535] dcesrv_interface_register: Interface 'wkssvc' registered on endpoint 'ncalrpc:' (single process required)
[2022-06-17 08:44:54.077204] Initialise the svcctl registry keys if needed.
[2022-06-17 08:44:54.078852] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:44:54.080474] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:44:54.082105] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:44:54.083809] Security token: (NULL)
[2022-06-17 08:44:54.085450] UNIX token of user 0
[2022-06-17 08:44:54.087067] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:44:54.088704] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:44:54.090349] regdb_open: registry db opened. refcount reset (1)
[2022-06-17 08:44:54.091991] make_internal_ncacn_conn: Create pipe requested winreg
[2022-06-17 08:44:54.093718] Created internal pipe winreg
[2022-06-17 08:44:54.095380] winreg_OpenHKLM: struct winreg_OpenHKLM
[2022-06-17 08:44:54.097018] in: struct winreg_OpenHKLM
[2022-06-17 08:44:54.098649] system_name : NULL
[2022-06-17 08:44:54.100275] access_mask : 0x02000000 (33554432)
[2022-06-17 08:44:54.101799] 0: KEY_QUERY_VALUE
[2022-06-17 08:44:54.103339] 0: KEY_SET_VALUE
[2022-06-17 08:44:54.105043] 0: KEY_CREATE_SUB_KEY
[2022-06-17 08:44:54.106692] 0: KEY_ENUMERATE_SUB_KEYS
[2022-06-17 08:44:54.108337] 0: KEY_NOTIFY
[2022-06-17 08:44:54.109977] 0: KEY_CREATE_LINK
[2022-06-17 08:44:54.111617] 0: KEY_WOW64_64KEY
[2022-06-17 08:44:54.113297] 0: KEY_WOW64_32KEY
[2022-06-17 08:44:54.114945] regkey_open_onelevel: name = [HKLM]
[2022-06-17 08:44:54.116579] regdb_open: incrementing refcount (1->2)
[2022-06-17 08:44:54.118215] reghook_cache_find: Searching for keyname [\HKLM]
[2022-06-17 08:44:54.119878] pathtree_find: Enter [\HKLM]
[2022-06-17 08:44:54.121513] pathtree_find: Exit
[2022-06-17 08:44:54.123171] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM]
[2022-06-17 08:44:54.124717] winreg_OpenHKLM: struct winreg_OpenHKLM
[2022-06-17 08:44:54.126208] out: struct winreg_OpenHKLM
[2022-06-17 08:44:54.127699] handle : *
[2022-06-17 08:44:54.129186] handle: struct policy_handle
[2022-06-17 08:44:54.130956] handle_type : 0x00000001 (1)
[2022-06-17 08:44:54.132600] uuid : 3564441c-52f4-47de-a43c-e15155f8a4c8
[2022-06-17 08:44:54.134342] result : WERR_OK
[2022-06-17 08:44:54.135980] winreg_OpenKey: struct winreg_OpenKey
[2022-06-17 08:44:54.137625] in: struct winreg_OpenKey
[2022-06-17 08:44:54.139264] parent_handle : *
[2022-06-17 08:44:54.140886] parent_handle: struct policy_handle
[2022-06-17 08:44:54.142515] handle_type : 0x00000001 (1)
[2022-06-17 08:44:54.144280] uuid : 3564441c-52f4-47de-a43c-e15155f8a4c8
[2022-06-17 08:44:54.145830] keyname: struct winreg_String
[2022-06-17 08:44:54.147604] name_len : 0x0044 (68)
[2022-06-17 08:44:54.149234] name_size : 0x0044 (68)
[2022-06-17 08:44:54.150873] name : *
[2022-06-17 08:44:54.152510] name : 'SYSTEM\CurrentControlSet\Services'
[2022-06-17 08:44:54.154254] options : 0x00000000 (0)
[2022-06-17 08:44:54.155899] 0: REG_OPTION_VOLATILE
[2022-06-17 08:44:54.157550] 0: REG_OPTION_CREATE_LINK
[2022-06-17 08:44:54.159194] 0: REG_OPTION_BACKUP_RESTORE
[2022-06-17 08:44:54.160821] 0: REG_OPTION_OPEN_LINK
[2022-06-17 08:44:54.162452] access_mask : 0x02000000 (33554432)
[2022-06-17 08:44:54.164179] 0: KEY_QUERY_VALUE
[2022-06-17 08:44:54.165825] 0: KEY_SET_VALUE
[2022-06-17 08:44:54.167474] 0: KEY_CREATE_SUB_KEY
[2022-06-17 08:44:54.169104] 0: KEY_ENUMERATE_SUB_KEYS
[2022-06-17 08:44:54.170739] 0: KEY_NOTIFY
[2022-06-17 08:44:54.172366] 0: KEY_CREATE_LINK
[2022-06-17 08:44:54.174084] 0: KEY_WOW64_64KEY
[2022-06-17 08:44:54.182977] 0: KEY_WOW64_32KEY
[2022-06-17 08:44:54.184846] regkey_open_onelevel: name = [SYSTEM]
[2022-06-17 08:44:54.186552] regdb_open: incrementing refcount (2->3)
[2022-06-17 08:44:54.188093] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM]
[2022-06-17 08:44:54.189868] pathtree_find: Enter [\HKLM\SYSTEM]
[2022-06-17 08:44:54.195554] pathtree_find: Exit
[2022-06-17 08:44:54.197313] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM]
[2022-06-17 08:44:54.198997] regkey_open_onelevel: name = [CurrentControlSet]
[2022-06-17 08:44:54.200651] regdb_open: incrementing refcount (3->4)
[2022-06-17 08:44:54.202301] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:54.204057] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:54.205724] pathtree_find: Exit
[2022-06-17 08:44:54.207334] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:54.208995] regkey_open_onelevel: name = [Services]
[2022-06-17 08:44:54.210630] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:54.212258] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:54.213966] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:54.215630] pathtree_find: Exit
[2022-06-17 08:44:54.217259] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:54.218927] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:54.220565] regdb_close: decrementing refcount (4->3)
[2022-06-17 08:44:54.222190] winreg_OpenKey: struct winreg_OpenKey
[2022-06-17 08:44:54.223866] out: struct winreg_OpenKey
[2022-06-17 08:44:54.225493] handle : *
[2022-06-17 08:44:54.227128] handle: struct policy_handle
[2022-06-17 08:44:54.228779] handle_type : 0x00000001 (1)
[2022-06-17 08:44:54.230417] uuid : 2db84861-daa1-4392-93ae-d86a8560d69c
[2022-06-17 08:44:54.232073] result : WERR_OK
[2022-06-17 08:44:54.233759] winreg_QueryInfoKey: struct winreg_QueryInfoKey
[2022-06-17 08:44:54.235411] in: struct winreg_QueryInfoKey
[2022-06-17 08:44:54.237043] handle : *
[2022-06-17 08:44:54.238680] handle: struct policy_handle
[2022-06-17 08:44:54.240329] handle_type : 0x00000001 (1)
[2022-06-17 08:44:54.241977] uuid : 2db84861-daa1-4392-93ae-d86a8560d69c
[2022-06-17 08:44:54.243685] classname : *
[2022-06-17 08:44:54.245320] classname: struct winreg_String
[2022-06-17 08:44:54.246971] name_len : 0x0000 (0)
[2022-06-17 08:44:54.248621] name_size : 0x0000 (0)
[2022-06-17 08:44:54.250137] name : NULL
[2022-06-17 08:44:54.251634] fetch_reg_values called for key 'HKLM\SYSTEM\CurrentControlSet\Services' (ops 0xb6ab32e8)
[2022-06-17 08:44:54.253188] regdb_fetch_values: Looking for values of key [HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:54.254966] regdb_get_secdesc: Getting secdesc of key [HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:54.256637] winreg_QueryInfoKey: struct winreg_QueryInfoKey
[2022-06-17 08:44:54.258283] out: struct winreg_QueryInfoKey
[2022-06-17 08:44:54.259919] classname : *
[2022-06-17 08:44:54.261428] classname: struct winreg_String
[2022-06-17 08:44:54.263267] name_len : 0x0000 (0)
[2022-06-17 08:44:54.264946] name_size : 0x0000 (0)
[2022-06-17 08:44:54.266596] name : NULL
[2022-06-17 08:44:54.268231] num_subkeys : *
[2022-06-17 08:44:54.269857] num_subkeys : 0x00000007 (7)
[2022-06-17 08:44:54.271496] max_subkeylen : *
[2022-06-17 08:44:54.273174] max_subkeylen : 0x0000001c (28)
[2022-06-17 08:44:54.274838] max_classlen : *
[2022-06-17 08:44:54.276479] max_classlen : 0x00000000 (0)
[2022-06-17 08:44:54.278134] num_values : *
[2022-06-17 08:44:54.279762] num_values : 0x00000000 (0)
[2022-06-17 08:44:54.281401] max_valnamelen : *
[2022-06-17 08:44:54.283072] max_valnamelen : 0x00000002 (2)
[2022-06-17 08:44:54.284721] max_valbufsize : *
[2022-06-17 08:44:54.286232] max_valbufsize : 0x00000000 (0)
[2022-06-17 08:44:54.287742] secdescsize : *
[2022-06-17 08:44:54.289237] secdescsize : 0x00000078 (120)
[2022-06-17 08:44:54.291010] last_changed_time : *
[2022-06-17 08:44:54.292646] last_changed_time : NTTIME(0)
[2022-06-17 08:44:54.294375] result : WERR_OK
[2022-06-17 08:44:54.296011] winreg_EnumKey: struct winreg_EnumKey
[2022-06-17 08:44:54.297642] in: struct winreg_EnumKey
[2022-06-17 08:44:54.299289] handle : *
[2022-06-17 08:44:54.300800] handle: struct policy_handle
[2022-06-17 08:44:54.302296] handle_type : 0x00000001 (1)
[2022-06-17 08:44:54.303997] uuid : 2db84861-daa1-4392-93ae-d86a8560d69c
[2022-06-17 08:44:54.305659] enum_index : 0x00000000 (0)
[2022-06-17 08:44:54.307307] name : *
[2022-06-17 08:44:54.308939] name: struct winreg_StringBuf
[2022-06-17 08:44:54.310580] length : 0x0000 (0)
[2022-06-17 08:44:54.312244] size : 0x001e (30)
[2022-06-17 08:44:54.313954] name : *
[2022-06-17 08:44:54.315600] name : ''
[2022-06-17 08:44:54.317248] keyclass : *
[2022-06-17 08:44:54.318874] keyclass: struct winreg_StringBuf
[2022-06-17 08:44:54.320514] length : 0x0000 (0)
[2022-06-17 08:44:54.322156] size : 0x0002 (2)
[2022-06-17 08:44:54.323852] name : *
[2022-06-17 08:44:54.325519] name : ''
[2022-06-17 08:44:54.327172] last_changed_time : *
[2022-06-17 08:44:54.328797] last_changed_time : NTTIME(0)
[2022-06-17 08:44:54.330425] _winreg_EnumKey: enumerating key [HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:54.332067] winreg_EnumKey: struct winreg_EnumKey
[2022-06-17 08:44:54.333761] out: struct winreg_EnumKey
[2022-06-17 08:44:54.335403] name : *
[2022-06-17 08:44:54.337041] name: struct winreg_StringBuf
[2022-06-17 08:44:54.338684] length : 0x001a (26)
[2022-06-17 08:44:54.340327] size : 0x001e (30)
[2022-06-17 08:44:54.341962] name : *
[2022-06-17 08:44:54.343655] name : 'LanmanServer'
[2022-06-17 08:44:54.345303] keyclass : *
[2022-06-17 08:44:54.346946] keyclass: struct winreg_StringBuf
[2022-06-17 08:44:54.348589] length : 0x0000 (0)
[2022-06-17 08:44:54.350229] size : 0x0002 (2)
[2022-06-17 08:44:54.351869] name : *
[2022-06-17 08:44:54.353589] name : ''
[2022-06-17 08:44:54.355247] last_changed_time : *
[2022-06-17 08:44:54.356882] last_changed_time : NTTIME(0)
[2022-06-17 08:44:54.358523] result : WERR_OK
[2022-06-17 08:44:54.360175] winreg_EnumKey: struct winreg_EnumKey
[2022-06-17 08:44:54.361799] in: struct winreg_EnumKey
[2022-06-17 08:44:54.363469] handle : *
[2022-06-17 08:44:54.365101] handle: struct policy_handle
[2022-06-17 08:44:54.366716] handle_type : 0x00000001 (1)
[2022-06-17 08:44:54.368372] uuid : 2db84861-daa1-4392-93ae-d86a8560d69c
[2022-06-17 08:44:54.370025] enum_index : 0x00000001 (1)
[2022-06-17 08:44:54.371672] name : *
[2022-06-17 08:44:54.373354] name: struct winreg_StringBuf
[2022-06-17 08:44:54.375007] length : 0x0000 (0)
[2022-06-17 08:44:54.376646] size : 0x001e (30)
[2022-06-17 08:44:54.378283] name : *
[2022-06-17 08:44:54.379911] name : ''
[2022-06-17 08:44:54.381553] keyclass : *
[2022-06-17 08:44:54.383244] keyclass: struct winreg_StringBuf
[2022-06-17 08:44:54.384908] length : 0x0000 (0)
[2022-06-17 08:44:54.386562] size : 0x0002 (2)
[2022-06-17 08:44:54.388205] name : *
[2022-06-17 08:44:54.389845] name : ''
[2022-06-17 08:44:54.391477] last_changed_time : *
[2022-06-17 08:44:54.393164] last_changed_time : NTTIME(0)
[2022-06-17 08:44:54.394821] _winreg_EnumKey: enumerating key [HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:54.396498] winreg_EnumKey: struct winreg_EnumKey
[2022-06-17 08:44:54.398134] out: struct winreg_EnumKey
[2022-06-17 08:44:54.399775] name : *
[2022-06-17 08:44:54.401400] name: struct winreg_StringBuf
[2022-06-17 08:44:54.403077] length : 0x0012 (18)
[2022-06-17 08:44:54.404741] size : 0x001e (30)
[2022-06-17 08:44:54.406388] name : *
[2022-06-17 08:44:54.408025] name : 'Eventlog'
[2022-06-17 08:44:54.409675] keyclass : *
[2022-06-17 08:44:54.411311] keyclass: struct winreg_StringBuf
[2022-06-17 08:44:54.412998] length : 0x0000 (0)
[2022-06-17 08:44:54.414656] size : 0x0002 (2)
[2022-06-17 08:44:54.416295] name : *
[2022-06-17 08:44:54.417921] name : ''
[2022-06-17 08:44:54.419565] last_changed_time : *
[2022-06-17 08:44:54.421207] last_changed_time : NTTIME(0)
[2022-06-17 08:44:54.422852] result : WERR_OK
[2022-06-17 08:44:54.424556] winreg_EnumKey: struct winreg_EnumKey
[2022-06-17 08:44:54.426192] in: struct winreg_EnumKey
[2022-06-17 08:44:54.427820] handle : *
[2022-06-17 08:44:54.429453] handle: struct policy_handle
[2022-06-17 08:44:54.431099] handle_type : 0x00000001 (1)
[2022-06-17 08:44:54.432754] uuid : 2db84861-daa1-4392-93ae-d86a8560d69c
[2022-06-17 08:44:54.434372] enum_index : 0x00000002 (2)
[2022-06-17 08:44:54.435877] name : *
[2022-06-17 08:44:54.437638] name: struct winreg_StringBuf
[2022-06-17 08:44:54.439286] length : 0x0000 (0)
[2022-06-17 08:44:54.440924] size : 0x001e (30)
[2022-06-17 08:44:54.442560] name : *
[2022-06-17 08:44:54.444287] name : ''
[2022-06-17 08:44:54.445938] keyclass : *
[2022-06-17 08:44:54.447578] keyclass: struct winreg_StringBuf
[2022-06-17 08:44:54.452954] length : 0x0000 (0)
[2022-06-17 08:44:54.460887] size : 0x0002 (2)
[2022-06-17 08:44:54.462571] name : *
[2022-06-17 08:44:54.464306] name : ''
[2022-06-17 08:44:54.465967] last_changed_time : *
[2022-06-17 08:44:54.467604] last_changed_time : NTTIME(0)
[2022-06-17 08:44:54.469247] _winreg_EnumKey: enumerating key [HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:54.470880] winreg_EnumKey: struct winreg_EnumKey
[2022-06-17 08:44:54.472505] out: struct winreg_EnumKey
[2022-06-17 08:44:54.474212] name : *
[2022-06-17 08:44:54.475846] name: struct winreg_StringBuf
[2022-06-17 08:44:54.477495] length : 0x000c (12)
[2022-06-17 08:44:54.479142] size : 0x001e (30)
[2022-06-17 08:44:54.480775] name : *
[2022-06-17 08:44:54.482420] name : 'Tcpip'
[2022-06-17 08:44:54.484135] keyclass : *
[2022-06-17 08:44:54.485766] keyclass: struct winreg_StringBuf
[2022-06-17 08:44:54.487406] length : 0x0000 (0)
[2022-06-17 08:44:54.489034] size : 0x0002 (2)
[2022-06-17 08:44:54.490671] name : *
[2022-06-17 08:44:54.492330] name : ''
[2022-06-17 08:44:54.493935] last_changed_time : *
[2022-06-17 08:44:54.495434] last_changed_time : NTTIME(0)
[2022-06-17 08:44:54.496924] result : WERR_OK
[2022-06-17 08:44:54.498407] winreg_EnumKey: struct winreg_EnumKey
[2022-06-17 08:44:54.499889] in: struct winreg_EnumKey
[2022-06-17 08:44:54.501377] handle : *
[2022-06-17 08:44:54.502908] handle: struct policy_handle
[2022-06-17 08:44:54.504421] handle_type : 0x00000001 (1)
[2022-06-17 08:44:54.505932] uuid : 2db84861-daa1-4392-93ae-d86a8560d69c
[2022-06-17 08:44:54.507607] enum_index : 0x00000003 (3)
[2022-06-17 08:44:54.509138] name : *
[2022-06-17 08:44:54.510638] name: struct winreg_StringBuf
[2022-06-17 08:44:54.512133] length : 0x0000 (0)
[2022-06-17 08:44:54.513689] size : 0x001e (30)
[2022-06-17 08:44:54.515202] name : *
[2022-06-17 08:44:54.516707] name : ''
[2022-06-17 08:44:54.518204] keyclass : *
[2022-06-17 08:44:54.519687] keyclass: struct winreg_StringBuf
[2022-06-17 08:44:54.521167] length : 0x0000 (0)
[2022-06-17 08:44:54.522829] size : 0x0002 (2)
[2022-06-17 08:44:54.524419] name : *
[2022-06-17 08:44:54.525933] name : ''
[2022-06-17 08:44:54.527444] last_changed_time : *
[2022-06-17 08:44:54.528935] last_changed_time : NTTIME(0)
[2022-06-17 08:44:54.530418] _winreg_EnumKey: enumerating key [HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:54.531916] winreg_EnumKey: struct winreg_EnumKey
[2022-06-17 08:44:54.533452] out: struct winreg_EnumKey
[2022-06-17 08:44:54.534958] name : *
[2022-06-17 08:44:54.536453] name: struct winreg_StringBuf
[2022-06-17 08:44:54.537947] length : 0x0012 (18)
[2022-06-17 08:44:54.539447] size : 0x001e (30)
[2022-06-17 08:44:54.540947] name : *
[2022-06-17 08:44:54.542451] name : 'Netlogon'
[2022-06-17 08:44:54.544019] keyclass : *
[2022-06-17 08:44:54.545522] keyclass: struct winreg_StringBuf
[2022-06-17 08:44:54.547025] length : 0x0000 (0)
[2022-06-17 08:44:54.548515] size : 0x0002 (2)
[2022-06-17 08:44:54.550015] name : *
[2022-06-17 08:44:54.551620] name : ''
[2022-06-17 08:44:54.553334] last_changed_time : *
[2022-06-17 08:44:54.554875] last_changed_time : NTTIME(0)
[2022-06-17 08:44:54.556392] result : WERR_OK
[2022-06-17 08:44:54.557905] winreg_EnumKey: struct winreg_EnumKey
[2022-06-17 08:44:54.559408] in: struct winreg_EnumKey
[2022-06-17 08:44:54.560909] handle : *
[2022-06-17 08:44:54.562393] handle: struct policy_handle
[2022-06-17 08:44:54.563966] handle_type : 0x00000001 (1)
[2022-06-17 08:44:54.565486] uuid : 2db84861-daa1-4392-93ae-d86a8560d69c
[2022-06-17 08:44:54.567003] enum_index : 0x00000004 (4)
[2022-06-17 08:44:54.568682] name : *
[2022-06-17 08:44:54.570208] name: struct winreg_StringBuf
[2022-06-17 08:44:54.571712] length : 0x0000 (0)
[2022-06-17 08:44:54.573267] size : 0x001e (30)
[2022-06-17 08:44:54.574790] name : *
[2022-06-17 08:44:54.576289] name : ''
[2022-06-17 08:44:54.577782] keyclass : *
[2022-06-17 08:44:54.579271] keyclass: struct winreg_StringBuf
[2022-06-17 08:44:54.580779] length : 0x0000 (0)
[2022-06-17 08:44:54.582284] size : 0x0002 (2)
[2022-06-17 08:44:54.584026] name : *
[2022-06-17 08:44:54.585557] name : ''
[2022-06-17 08:44:54.587065] last_changed_time : *
[2022-06-17 08:44:54.588561] last_changed_time : NTTIME(0)
[2022-06-17 08:44:54.590054] _winreg_EnumKey: enumerating key [HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:54.591564] winreg_EnumKey: struct winreg_EnumKey
[2022-06-17 08:44:54.593111] out: struct winreg_EnumKey
[2022-06-17 08:44:54.594631] name : *
[2022-06-17 08:44:54.596126] name: struct winreg_StringBuf
[2022-06-17 08:44:54.597620] length : 0x0010 (16)
[2022-06-17 08:44:54.599328] size : 0x001e (30)
[2022-06-17 08:44:54.600840] name : *
[2022-06-17 08:44:54.602345] name : 'Spooler'
[2022-06-17 08:44:54.603957] keyclass : *
[2022-06-17 08:44:54.605474] keyclass: struct winreg_StringBuf
[2022-06-17 08:44:54.606973] length : 0x0000 (0)
[2022-06-17 08:44:54.608480] size : 0x0002 (2)
[2022-06-17 08:44:54.609985] name : *
[2022-06-17 08:44:54.611479] name : ''
[2022-06-17 08:44:54.613201] last_changed_time : *
[2022-06-17 08:44:54.614760] last_changed_time : NTTIME(0)
[2022-06-17 08:44:54.616276] result : WERR_OK
[2022-06-17 08:44:54.618374] winreg_EnumKey: struct winreg_EnumKey
[2022-06-17 08:44:54.620742] in: struct winreg_EnumKey
[2022-06-17 08:44:54.622401] handle : *
[2022-06-17 08:44:54.624183] handle: struct policy_handle
[2022-06-17 08:44:54.625859] handle_type : 0x00000001 (1)
[2022-06-17 08:44:54.627518] uuid : 2db84861-daa1-4392-93ae-d86a8560d69c
[2022-06-17 08:44:54.629170] enum_index : 0x00000005 (5)
[2022-06-17 08:44:54.630818] name : *
[2022-06-17 08:44:54.632452] name: struct winreg_StringBuf
[2022-06-17 08:44:54.634290] length : 0x0000 (0)
[2022-06-17 08:44:54.635936] size : 0x001e (30)
[2022-06-17 08:44:54.637565] name : *
[2022-06-17 08:44:54.639212] name : ''
[2022-06-17 08:44:54.640877] keyclass : *
[2022-06-17 08:44:54.642511] keyclass: struct winreg_StringBuf
[2022-06-17 08:44:54.644115] length : 0x0000 (0)
[2022-06-17 08:44:54.645735] size : 0x0002 (2)
[2022-06-17 08:44:54.647376] name : *
[2022-06-17 08:44:54.649019] name : ''
[2022-06-17 08:44:54.650665] last_changed_time : *
[2022-06-17 08:44:54.652306] last_changed_time : NTTIME(0)
[2022-06-17 08:44:54.654031] _winreg_EnumKey: enumerating key [HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:54.655702] winreg_EnumKey: struct winreg_EnumKey
[2022-06-17 08:44:54.657343] out: struct winreg_EnumKey
[2022-06-17 08:44:54.658972] name : *
[2022-06-17 08:44:54.660596] name: struct winreg_StringBuf
[2022-06-17 08:44:54.662238] length : 0x001e (30)
[2022-06-17 08:44:54.663919] size : 0x001e (30)
[2022-06-17 08:44:54.665583] name : *
[2022-06-17 08:44:54.667233] name : 'RemoteRegistry'
[2022-06-17 08:44:54.668881] keyclass : *
[2022-06-17 08:44:54.670523] keyclass: struct winreg_StringBuf
[2022-06-17 08:44:54.672157] length : 0x0000 (0)
[2022-06-17 08:44:54.673854] size : 0x0002 (2)
[2022-06-17 08:44:54.675512] name : *
[2022-06-17 08:44:54.677252] name : ''
[2022-06-17 08:44:54.678914] last_changed_time : *
[2022-06-17 08:44:54.680558] last_changed_time : NTTIME(0)
[2022-06-17 08:44:54.682181] result : WERR_OK
[2022-06-17 08:44:54.683864] winreg_EnumKey: struct winreg_EnumKey
[2022-06-17 08:44:54.685510] in: struct winreg_EnumKey
[2022-06-17 08:44:54.687157] handle : *
[2022-06-17 08:44:54.688802] handle: struct policy_handle
[2022-06-17 08:44:54.690436] handle_type : 0x00000001 (1)
[2022-06-17 08:44:54.692090] uuid : 2db84861-daa1-4392-93ae-d86a8560d69c
[2022-06-17 08:44:54.693791] enum_index : 0x00000006 (6)
[2022-06-17 08:44:54.695441] name : *
[2022-06-17 08:44:54.697078] name: struct winreg_StringBuf
[2022-06-17 08:44:54.698722] length : 0x0000 (0)
[2022-06-17 08:44:54.700369] size : 0x001e (30)
[2022-06-17 08:44:54.702012] name : *
[2022-06-17 08:44:54.703713] name : ''
[2022-06-17 08:44:54.705372] keyclass : *
[2022-06-17 08:44:54.707008] keyclass: struct winreg_StringBuf
[2022-06-17 08:44:54.708641] length : 0x0000 (0)
[2022-06-17 08:44:54.710273] size : 0x0002 (2)
[2022-06-17 08:44:54.711918] name : *
[2022-06-17 08:44:54.713621] name : ''
[2022-06-17 08:44:54.715276] last_changed_time : *
[2022-06-17 08:44:54.722985] last_changed_time : NTTIME(0)
[2022-06-17 08:44:54.724869] _winreg_EnumKey: enumerating key [HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:54.726588] winreg_EnumKey: struct winreg_EnumKey
[2022-06-17 08:44:54.732997] out: struct winreg_EnumKey
[2022-06-17 08:44:54.734881] name : *
[2022-06-17 08:44:54.736595] name: struct winreg_StringBuf
[2022-06-17 08:44:54.738278] length : 0x000a (10)
[2022-06-17 08:44:54.739942] size : 0x001e (30)
[2022-06-17 08:44:54.742423] name : *
[2022-06-17 08:44:54.744201] name : 'WINS'
[2022-06-17 08:44:54.745868] keyclass : *
[2022-06-17 08:44:54.747507] keyclass: struct winreg_StringBuf
[2022-06-17 08:44:54.749152] length : 0x0000 (0)
[2022-06-17 08:44:54.750803] size : 0x0002 (2)
[2022-06-17 08:44:54.752454] name : *
[2022-06-17 08:44:54.754060] name : ''
[2022-06-17 08:44:54.755566] last_changed_time : *
[2022-06-17 08:44:54.757052] last_changed_time : NTTIME(0)
[2022-06-17 08:44:54.758826] result : WERR_OK
[2022-06-17 08:44:54.760468] winreg_CreateKey: struct winreg_CreateKey
[2022-06-17 08:44:54.762110] in: struct winreg_CreateKey
[2022-06-17 08:44:54.763812] handle : *
[2022-06-17 08:44:54.765456] handle: struct policy_handle
[2022-06-17 08:44:54.767090] handle_type : 0x00000001 (1)
[2022-06-17 08:44:54.768608] uuid : 3564441c-52f4-47de-a43c-e15155f8a4c8
[2022-06-17 08:44:54.770125] name: struct winreg_String
[2022-06-17 08:44:54.771613] name_len : 0x0054 (84)
[2022-06-17 08:44:54.773169] name_size : 0x0054 (84)
[2022-06-17 08:44:54.774679] name : *
[2022-06-17 08:44:54.776174] name : 'SYSTEM\CurrentControlSet\Services\Spooler'
[2022-06-17 08:44:54.777670] keyclass: struct winreg_String
[2022-06-17 08:44:54.779159] name_len : 0x0002 (2)
[2022-06-17 08:44:54.780645] name_size : 0x0002 (2)
[2022-06-17 08:44:54.782315] name : *
[2022-06-17 08:44:54.783939] name : ''
[2022-06-17 08:44:54.785458] options : 0x00000000 (0)
[2022-06-17 08:44:54.786960] 0: REG_OPTION_VOLATILE
[2022-06-17 08:44:54.788449] 0: REG_OPTION_CREATE_LINK
[2022-06-17 08:44:54.789927] 0: REG_OPTION_BACKUP_RESTORE
[2022-06-17 08:44:54.791408] 0: REG_OPTION_OPEN_LINK
[2022-06-17 08:44:54.792931] access_mask : 0x02000000 (33554432)
[2022-06-17 08:44:54.794457] 0: KEY_QUERY_VALUE
[2022-06-17 08:44:54.795958] 0: KEY_SET_VALUE
[2022-06-17 08:44:54.797654] 0: KEY_CREATE_SUB_KEY
[2022-06-17 08:44:54.799187] 0: KEY_ENUMERATE_SUB_KEYS
[2022-06-17 08:44:54.800692] 0: KEY_NOTIFY
[2022-06-17 08:44:54.802190] 0: KEY_CREATE_LINK
[2022-06-17 08:44:54.803734] 0: KEY_WOW64_64KEY
[2022-06-17 08:44:54.805240] 0: KEY_WOW64_32KEY
[2022-06-17 08:44:54.806745] secdesc : NULL
[2022-06-17 08:44:54.808232] action_taken : *
[2022-06-17 08:44:54.809724] action_taken : REG_ACTION_NONE (0)
[2022-06-17 08:44:54.811215] _winreg_CreateKey called with parent key 'HKLM' and subkey name 'SYSTEM\CurrentControlSet\Services\Spooler'
[2022-06-17 08:44:54.813501] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:54.815182] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:54.816705] regkey_open_onelevel: name = [SYSTEM]
[2022-06-17 08:44:54.818391] regdb_open: incrementing refcount (3->4)
[2022-06-17 08:44:54.820036] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM]
[2022-06-17 08:44:54.822350] pathtree_find: Enter [\HKLM\SYSTEM]
[2022-06-17 08:44:54.823977] pathtree_find: Exit
[2022-06-17 08:44:54.825611] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM]
[2022-06-17 08:44:54.827382] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:54.829020] regkey_open_onelevel: name = [CurrentControlSet]
[2022-06-17 08:44:54.830663] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:54.832190] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:54.834025] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:54.835560] pathtree_find: Exit
[2022-06-17 08:44:54.837178] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:54.838830] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:54.840467] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:54.842110] regkey_open_onelevel: name = [Services]
[2022-06-17 08:44:54.843802] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:54.845305] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:54.847087] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:54.848733] pathtree_find: Exit
[2022-06-17 08:44:54.850235] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:54.851877] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:54.853565] regkey_open_onelevel: name = [Spooler]
[2022-06-17 08:44:54.855240] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:54.857005] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services\Spooler]
[2022-06-17 08:44:54.858547] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services\Spooler]
[2022-06-17 08:44:54.860194] pathtree_find: Exit
[2022-06-17 08:44:54.861809] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services\Spooler]
[2022-06-17 08:44:54.863615] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:54.865391] winreg_CreateKey: struct winreg_CreateKey
[2022-06-17 08:44:54.866925] out: struct winreg_CreateKey
[2022-06-17 08:44:54.868571] new_handle : *
[2022-06-17 08:44:54.870323] new_handle: struct policy_handle
[2022-06-17 08:44:54.871857] handle_type : 0x00000001 (1)
[2022-06-17 08:44:54.873560] uuid : 6ba549c9-3717-479f-bc41-450a66b25f4b
[2022-06-17 08:44:54.875217] action_taken : *
[2022-06-17 08:44:54.876953] action_taken : REG_OPENED_EXISTING_KEY (2)
[2022-06-17 08:44:54.878593] result : WERR_OK
[2022-06-17 08:44:54.880133] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:54.881771] in: struct winreg_SetValue
[2022-06-17 08:44:54.883451] handle : *
[2022-06-17 08:44:54.885104] handle: struct policy_handle
[2022-06-17 08:44:54.886853] handle_type : 0x00000001 (1)
[2022-06-17 08:44:54.888484] uuid : 6ba549c9-3717-479f-bc41-450a66b25f4b
[2022-06-17 08:44:54.890024] name: struct winreg_String
[2022-06-17 08:44:54.891666] name_len : 0x000c (12)
[2022-06-17 08:44:54.893364] name_size : 0x000c (12)
[2022-06-17 08:44:54.895027] name : *
[2022-06-17 08:44:54.896664] name : 'Start'
[2022-06-17 08:44:54.898304] type : REG_DWORD (4)
[2022-06-17 08:44:54.900051] data : *
[2022-06-17 08:44:54.901576] data: ARRAY(4)
[2022-06-17 08:44:54.903256] [0] : 0x02 (2)
[2022-06-17 08:44:54.904912] [1] : 0x00 (0)
[2022-06-17 08:44:54.906637] [2] : 0x00 (0)
[2022-06-17 08:44:54.908172] [3] : 0x00 (0)
[2022-06-17 08:44:54.909886] size : 0x00000004 (4)
[2022-06-17 08:44:54.911406] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\Spooler:Start]
[2022-06-17 08:44:54.913137] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:54.914813] fetch_reg_values called for key 'HKLM\SYSTEM\CurrentControlSet\Services\Spooler' (ops 0xb6ab32e8)
[2022-06-17 08:44:54.916501] regdb_fetch_values: Looking for values of key [HKLM\SYSTEM\CurrentControlSet\Services\Spooler]
[2022-06-17 08:44:54.918180] regdb_unpack_values: value[0]: name[Start] len[4]
[2022-06-17 08:44:54.919823] regdb_unpack_values: value[1]: name[Type] len[4]
[2022-06-17 08:44:54.921443] regdb_unpack_values: value[2]: name[ErrorControl] len[4]
[2022-06-17 08:44:54.923153] regdb_unpack_values: value[3]: name[ObjectName] len[24]
[2022-06-17 08:44:54.924803] regdb_unpack_values: value[4]: name[DisplayName] len[28]
[2022-06-17 08:44:54.926554] regdb_unpack_values: value[5]: name[ImagePath] len[54]
[2022-06-17 08:44:54.928088] regdb_unpack_values: value[6]: name[Description] len[106]
[2022-06-17 08:44:54.929734] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:54.931373] out: struct winreg_SetValue
[2022-06-17 08:44:54.933041] result : WERR_OK
[2022-06-17 08:44:54.934794] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:54.936434] in: struct winreg_SetValue
[2022-06-17 08:44:54.938053] handle : *
[2022-06-17 08:44:54.939568] handle: struct policy_handle
[2022-06-17 08:44:54.941228] handle_type : 0x00000001 (1)
[2022-06-17 08:44:54.943013] uuid : 6ba549c9-3717-479f-bc41-450a66b25f4b
[2022-06-17 08:44:54.944578] name: struct winreg_String
[2022-06-17 08:44:54.946319] name_len : 0x000a (10)
[2022-06-17 08:44:54.947841] name_size : 0x000a (10)
[2022-06-17 08:44:54.949476] name : *
[2022-06-17 08:44:54.951205] name : 'Type'
[2022-06-17 08:44:54.952740] type : REG_DWORD (4)
[2022-06-17 08:44:54.954549] data : *
[2022-06-17 08:44:54.956079] data: ARRAY(4)
[2022-06-17 08:44:54.957698] [0] : 0x10 (16)
[2022-06-17 08:44:54.959328] [1] : 0x00 (0)
[2022-06-17 08:44:54.961065] [2] : 0x00 (0)
[2022-06-17 08:44:54.962587] [3] : 0x00 (0)
[2022-06-17 08:44:54.964290] size : 0x00000004 (4)
[2022-06-17 08:44:54.965950] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\Spooler:Type]
[2022-06-17 08:44:54.967604] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:54.969371] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:54.970897] out: struct winreg_SetValue
[2022-06-17 08:44:54.972527] result : WERR_OK
[2022-06-17 08:44:54.974235] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:54.975875] in: struct winreg_SetValue
[2022-06-17 08:44:54.977517] handle : *
[2022-06-17 08:44:54.979141] handle: struct policy_handle
[2022-06-17 08:44:54.991108] handle_type : 0x00000001 (1)
[2022-06-17 08:44:54.993026] uuid : 6ba549c9-3717-479f-bc41-450a66b25f4b
[2022-06-17 08:44:54.994643] name: struct winreg_String
[2022-06-17 08:44:54.996314] name_len : 0x001a (26)
[2022-06-17 08:44:54.998077] name_size : 0x001a (26)
[2022-06-17 08:44:54.999629] name : *
[2022-06-17 08:44:55.001372] name : 'ErrorControl'
[2022-06-17 08:44:55.003055] type : REG_DWORD (4)
[2022-06-17 08:44:55.004594] data : *
[2022-06-17 08:44:55.006232] data: ARRAY(4)
[2022-06-17 08:44:55.007879] [0] : 0x01 (1)
[2022-06-17 08:44:55.009512] [1] : 0x00 (0)
[2022-06-17 08:44:55.011160] [2] : 0x00 (0)
[2022-06-17 08:44:55.012797] [3] : 0x00 (0)
[2022-06-17 08:44:55.014784] size : 0x00000004 (4)
[2022-06-17 08:44:55.016462] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\Spooler:ErrorControl]
[2022-06-17 08:44:55.018030] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:55.019688] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:55.021401] out: struct winreg_SetValue
[2022-06-17 08:44:55.023086] result : WERR_OK
[2022-06-17 08:44:55.024634] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:55.026280] in: struct winreg_SetValue
[2022-06-17 08:44:55.027914] handle : *
[2022-06-17 08:44:55.029540] handle: struct policy_handle
[2022-06-17 08:44:55.031177] handle_type : 0x00000001 (1)
[2022-06-17 08:44:55.032966] uuid : 6ba549c9-3717-479f-bc41-450a66b25f4b
[2022-06-17 08:44:55.034641] name: struct winreg_String
[2022-06-17 08:44:55.036183] name_len : 0x0016 (22)
[2022-06-17 08:44:55.037819] name_size : 0x0016 (22)
[2022-06-17 08:44:55.039456] name : *
[2022-06-17 08:44:55.041083] name : 'ObjectName'
[2022-06-17 08:44:55.042720] type : REG_SZ (1)
[2022-06-17 08:44:55.044512] data : *
[2022-06-17 08:44:55.046036] data: ARRAY(24)
[2022-06-17 08:44:55.047679] [0] : 0x4c (76)
[2022-06-17 08:44:55.054263] [1] : 0x00 (0)
[2022-06-17 08:44:55.062983] [2] : 0x6f (111)
[2022-06-17 08:44:55.064904] [3] : 0x00 (0)
[2022-06-17 08:44:55.066499] [4] : 0x63 (99)
[2022-06-17 08:44:55.068165] [5] : 0x00 (0)
[2022-06-17 08:44:55.069821] [6] : 0x61 (97)
[2022-06-17 08:44:55.071471] [7] : 0x00 (0)
[2022-06-17 08:44:55.073293] [8] : 0x6c (108)
[2022-06-17 08:44:55.074852] [9] : 0x00 (0)
[2022-06-17 08:44:55.078643] [10] : 0x53 (83)
[2022-06-17 08:44:55.080359] [11] : 0x00 (0)
[2022-06-17 08:44:55.082020] [12] : 0x79 (121)
[2022-06-17 08:44:55.083726] [13] : 0x00 (0)
[2022-06-17 08:44:55.085412] [14] : 0x73 (115)
[2022-06-17 08:44:55.087064] [15] : 0x00 (0)
[2022-06-17 08:44:55.088706] [16] : 0x74 (116)
[2022-06-17 08:44:55.090353] [17] : 0x00 (0)
[2022-06-17 08:44:55.091993] [18] : 0x65 (101)
[2022-06-17 08:44:55.093681] [19] : 0x00 (0)
[2022-06-17 08:44:55.095433] [20] : 0x6d (109)
[2022-06-17 08:44:55.096966] [21] : 0x00 (0)
[2022-06-17 08:44:55.098742] [22] : 0x00 (0)
[2022-06-17 08:44:55.100281] [23] : 0x00 (0)
[2022-06-17 08:44:55.102027] size : 0x00000018 (24)
[2022-06-17 08:44:55.103713] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\Spooler:ObjectName]
[2022-06-17 08:44:55.105369] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:55.106904] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:55.108542] out: struct winreg_SetValue
[2022-06-17 08:44:55.110185] result : WERR_OK
[2022-06-17 08:44:55.111826] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:55.113550] in: struct winreg_SetValue
[2022-06-17 08:44:55.115199] handle : *
[2022-06-17 08:44:55.116837] handle: struct policy_handle
[2022-06-17 08:44:55.118577] handle_type : 0x00000001 (1)
[2022-06-17 08:44:55.120116] uuid : 6ba549c9-3717-479f-bc41-450a66b25f4b
[2022-06-17 08:44:55.121765] name: struct winreg_String
[2022-06-17 08:44:55.123457] name_len : 0x0018 (24)
[2022-06-17 08:44:55.125112] name_size : 0x0018 (24)
[2022-06-17 08:44:55.126760] name : *
[2022-06-17 08:44:55.128513] name : 'DisplayName'
[2022-06-17 08:44:55.130044] type : REG_SZ (1)
[2022-06-17 08:44:55.131680] data : *
[2022-06-17 08:44:55.133361] data: ARRAY(28)
[2022-06-17 08:44:55.135006] [0] : 0x50 (80)
[2022-06-17 08:44:55.136658] [1] : 0x00 (0)
[2022-06-17 08:44:55.138293] [2] : 0x72 (114)
[2022-06-17 08:44:55.139920] [3] : 0x00 (0)
[2022-06-17 08:44:55.141551] [4] : 0x69 (105)
[2022-06-17 08:44:55.143366] [5] : 0x00 (0)
[2022-06-17 08:44:55.145015] [6] : 0x6e (110)
[2022-06-17 08:44:55.146560] [7] : 0x00 (0)
[2022-06-17 08:44:55.148196] [8] : 0x74 (116)
[2022-06-17 08:44:55.149846] [9] : 0x00 (0)
[2022-06-17 08:44:55.151480] [10] : 0x20 (32)
[2022-06-17 08:44:55.153262] [11] : 0x00 (0)
[2022-06-17 08:44:55.154810] [12] : 0x53 (83)
[2022-06-17 08:44:55.156473] [13] : 0x00 (0)
[2022-06-17 08:44:55.158112] [14] : 0x70 (112)
[2022-06-17 08:44:55.159757] [15] : 0x00 (0)
[2022-06-17 08:44:55.161393] [16] : 0x6f (111)
[2022-06-17 08:44:55.163072] [17] : 0x00 (0)
[2022-06-17 08:44:55.164727] [18] : 0x6f (111)
[2022-06-17 08:44:55.166356] [19] : 0x00 (0)
[2022-06-17 08:44:55.167984] [20] : 0x6c (108)
[2022-06-17 08:44:55.169634] [21] : 0x00 (0)
[2022-06-17 08:44:55.171281] [22] : 0x65 (101)
[2022-06-17 08:44:55.173061] [23] : 0x00 (0)
[2022-06-17 08:44:55.174716] [24] : 0x72 (114)
[2022-06-17 08:44:55.176243] [25] : 0x00 (0)
[2022-06-17 08:44:55.177983] [26] : 0x00 (0)
[2022-06-17 08:44:55.179513] [27] : 0x00 (0)
[2022-06-17 08:44:55.181150] size : 0x0000001c (28)
[2022-06-17 08:44:55.182790] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\Spooler:DisplayName]
[2022-06-17 08:44:55.184556] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:55.186213] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:55.187850] out: struct winreg_SetValue
[2022-06-17 08:44:55.189478] result : WERR_OK
[2022-06-17 08:44:55.191203] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:55.192723] in: struct winreg_SetValue
[2022-06-17 08:44:55.194508] handle : *
[2022-06-17 08:44:55.196035] handle: struct policy_handle
[2022-06-17 08:44:55.197681] handle_type : 0x00000001 (1)
[2022-06-17 08:44:55.199336] uuid : 6ba549c9-3717-479f-bc41-450a66b25f4b
[2022-06-17 08:44:55.201073] name: struct winreg_String
[2022-06-17 08:44:55.202587] name_len : 0x0014 (20)
[2022-06-17 08:44:55.204262] name_size : 0x0014 (20)
[2022-06-17 08:44:55.206005] name : *
[2022-06-17 08:44:55.207538] name : 'ImagePath'
[2022-06-17 08:44:55.209190] type : REG_SZ (1)
[2022-06-17 08:44:55.210940] data : *
[2022-06-17 08:44:55.212467] data: ARRAY(54)
[2022-06-17 08:44:55.214155] [0] : 0x2f (47)
[2022-06-17 08:44:55.215798] [1] : 0x00 (0)
[2022-06-17 08:44:55.217435] [2] : 0x75 (117)
[2022-06-17 08:44:55.219067] [3] : 0x00 (0)
[2022-06-17 08:44:55.220901] [4] : 0x73 (115)
[2022-06-17 08:44:55.222665] [5] : 0x00 (0)
[2022-06-17 08:44:55.224260] [6] : 0x72 (114)
[2022-06-17 08:44:55.226016] [7] : 0x00 (0)
[2022-06-17 08:44:55.227673] [8] : 0x2f (47)
[2022-06-17 08:44:55.229426] [9] : 0x00 (0)
[2022-06-17 08:44:55.230962] [10] : 0x6c (108)
[2022-06-17 08:44:55.232715] [11] : 0x00 (0)
[2022-06-17 08:44:55.234314] [12] : 0x69 (105)
[2022-06-17 08:44:55.235969] [13] : 0x00 (0)
[2022-06-17 08:44:55.237597] [14] : 0x62 (98)
[2022-06-17 08:44:55.239237] [15] : 0x00 (0)
[2022-06-17 08:44:55.240969] [16] : 0x2f (47)
[2022-06-17 08:44:55.242603] [17] : 0x00 (0)
[2022-06-17 08:44:55.244316] [18] : 0x73 (115)
[2022-06-17 08:44:55.245860] [19] : 0x00 (0)
[2022-06-17 08:44:55.247504] [20] : 0x61 (97)
[2022-06-17 08:44:55.249256] [21] : 0x00 (0)
[2022-06-17 08:44:55.250781] [22] : 0x6d (109)
[2022-06-17 08:44:55.252514] [23] : 0x00 (0)
[2022-06-17 08:44:55.254122] [24] : 0x62 (98)
[2022-06-17 08:44:55.263380] [25] : 0x00 (0)
[2022-06-17 08:44:55.265154] [26] : 0x61 (97)
[2022-06-17 08:44:55.266910] [27] : 0x00 (0)
[2022-06-17 08:44:55.269123] [28] : 0x2f (47)
[2022-06-17 08:44:55.274832] [29] : 0x00 (0)
[2022-06-17 08:44:55.276485] [30] : 0x73 (115)
[2022-06-17 08:44:55.278020] [31] : 0x00 (0)
[2022-06-17 08:44:55.279694] [32] : 0x76 (118)
[2022-06-17 08:44:55.281473] [33] : 0x00 (0)
[2022-06-17 08:44:55.283058] [34] : 0x63 (99)
[2022-06-17 08:44:55.284710] [35] : 0x00 (0)
[2022-06-17 08:44:55.286352] [36] : 0x63 (99)
[2022-06-17 08:44:55.287993] [37] : 0x00 (0)
[2022-06-17 08:44:55.289753] [38] : 0x74 (116)
[2022-06-17 08:44:55.291278] [39] : 0x00 (0)
[2022-06-17 08:44:55.292773] [40] : 0x6c (108)
[2022-06-17 08:44:55.294609] [41] : 0x00 (0)
[2022-06-17 08:44:55.296248] [42] : 0x2f (47)
[2022-06-17 08:44:55.297779] [43] : 0x00 (0)
[2022-06-17 08:44:55.299411] [44] : 0x73 (115)
[2022-06-17 08:44:55.301038] [45] : 0x00 (0)
[2022-06-17 08:44:55.302664] [46] : 0x6d (109)
[2022-06-17 08:44:55.304474] [47] : 0x00 (0)
[2022-06-17 08:44:55.306118] [48] : 0x62 (98)
[2022-06-17 08:44:55.307658] [49] : 0x00 (0)
[2022-06-17 08:44:55.309294] [50] : 0x64 (100)
[2022-06-17 08:44:55.310930] [51] : 0x00 (0)
[2022-06-17 08:44:55.312560] [52] : 0x00 (0)
[2022-06-17 08:44:55.314253] [53] : 0x00 (0)
[2022-06-17 08:44:55.316013] size : 0x00000036 (54)
[2022-06-17 08:44:55.317559] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\Spooler:ImagePath]
[2022-06-17 08:44:55.319342] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:55.320980] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:55.322601] out: struct winreg_SetValue
[2022-06-17 08:44:55.324312] result : WERR_OK
[2022-06-17 08:44:55.325957] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:55.327478] in: struct winreg_SetValue
[2022-06-17 08:44:55.329198] handle : *
[2022-06-17 08:44:55.330723] handle: struct policy_handle
[2022-06-17 08:44:55.332371] handle_type : 0x00000001 (1)
[2022-06-17 08:44:55.334094] uuid : 6ba549c9-3717-479f-bc41-450a66b25f4b
[2022-06-17 08:44:55.335764] name: struct winreg_String
[2022-06-17 08:44:55.337500] name_len : 0x0018 (24)
[2022-06-17 08:44:55.339028] name_size : 0x0018 (24)
[2022-06-17 08:44:55.340677] name : *
[2022-06-17 08:44:55.342322] name : 'Description'
[2022-06-17 08:44:55.344078] type : REG_SZ (1)
[2022-06-17 08:44:55.345589] data : *
[2022-06-17 08:44:55.347078] data: ARRAY(106)
[2022-06-17 08:44:55.348670] [0] : 0x49 (73)
[2022-06-17 08:44:55.350424] [1] : 0x00 (0)
[2022-06-17 08:44:55.351957] [2] : 0x6e (110)
[2022-06-17 08:44:55.353660] [3] : 0x00 (0)
[2022-06-17 08:44:55.355333] [4] : 0x74 (116)
[2022-06-17 08:44:55.356978] [5] : 0x00 (0)
[2022-06-17 08:44:55.358714] [6] : 0x65 (101)
[2022-06-17 08:44:55.360247] [7] : 0x00 (0)
[2022-06-17 08:44:55.361888] [8] : 0x72 (114)
[2022-06-17 08:44:55.363690] [9] : 0x00 (0)
[2022-06-17 08:44:55.365342] [10] : 0x6e (110)
[2022-06-17 08:44:55.366980] [11] : 0x00 (0)
[2022-06-17 08:44:55.368518] [12] : 0x61 (97)
[2022-06-17 08:44:55.370156] [13] : 0x00 (0)
[2022-06-17 08:44:55.371789] [14] : 0x6c (108)
[2022-06-17 08:44:55.373478] [15] : 0x00 (0)
[2022-06-17 08:44:55.375233] [16] : 0x20 (32)
[2022-06-17 08:44:55.376769] [17] : 0x00 (0)
[2022-06-17 08:44:55.378528] [18] : 0x73 (115)
[2022-06-17 08:44:55.380066] [19] : 0x00 (0)
[2022-06-17 08:44:55.381716] [20] : 0x65 (101)
[2022-06-17 08:44:55.383261] [21] : 0x00 (0)
[2022-06-17 08:44:55.384969] [22] : 0x72 (114)
[2022-06-17 08:44:55.386619] [23] : 0x00 (0)
[2022-06-17 08:44:55.388146] [24] : 0x76 (118)
[2022-06-17 08:44:55.389798] [25] : 0x00 (0)
[2022-06-17 08:44:55.391534] [26] : 0x69 (105)
[2022-06-17 08:44:55.393118] [27] : 0x00 (0)
[2022-06-17 08:44:55.394787] [28] : 0x63 (99)
[2022-06-17 08:44:55.396537] [29] : 0x00 (0)
[2022-06-17 08:44:55.398062] [30] : 0x65 (101)
[2022-06-17 08:44:55.399702] [31] : 0x00 (0)
[2022-06-17 08:44:55.401450] [32] : 0x20 (32)
[2022-06-17 08:44:55.403132] [33] : 0x00 (0)
[2022-06-17 08:44:55.404684] [34] : 0x66 (102)
[2022-06-17 08:44:55.406325] [35] : 0x00 (0)
[2022-06-17 08:44:55.407975] [36] : 0x6f (111)
[2022-06-17 08:44:55.409620] [37] : 0x00 (0)
[2022-06-17 08:44:55.411250] [38] : 0x72 (114)
[2022-06-17 08:44:55.413022] [39] : 0x00 (0)
[2022-06-17 08:44:55.414671] [40] : 0x20 (32)
[2022-06-17 08:44:55.416197] [41] : 0x00 (0)
[2022-06-17 08:44:55.417833] [42] : 0x73 (115)
[2022-06-17 08:44:55.419472] [43] : 0x00 (0)
[2022-06-17 08:44:55.421101] [44] : 0x70 (112)
[2022-06-17 08:44:55.422757] [45] : 0x00 (0)
[2022-06-17 08:44:55.424547] [46] : 0x6f (111)
[2022-06-17 08:44:55.426188] [47] : 0x00 (0)
[2022-06-17 08:44:55.427724] [48] : 0x6f (111)
[2022-06-17 08:44:55.429368] [49] : 0x00 (0)
[2022-06-17 08:44:55.431012] [50] : 0x6c (108)
[2022-06-17 08:44:55.432739] [51] : 0x00 (0)
[2022-06-17 08:44:55.434427] [52] : 0x69 (105)
[2022-06-17 08:44:55.435967] [53] : 0x00 (0)
[2022-06-17 08:44:55.437612] [54] : 0x6e (110)
[2022-06-17 08:44:55.439253] [55] : 0x00 (0)
[2022-06-17 08:44:55.440998] [56] : 0x67 (103)
[2022-06-17 08:44:55.442518] [57] : 0x00 (0)
[2022-06-17 08:44:55.444232] [58] : 0x20 (32)
[2022-06-17 08:44:55.445976] [59] : 0x00 (0)
[2022-06-17 08:44:55.447498] [60] : 0x66 (102)
[2022-06-17 08:44:55.449137] [61] : 0x00 (0)
[2022-06-17 08:44:55.450897] [62] : 0x69 (105)
[2022-06-17 08:44:55.452520] [63] : 0x00 (0)
[2022-06-17 08:44:55.454132] [64] : 0x6c (108)
[2022-06-17 08:44:55.455897] [65] : 0x00 (0)
[2022-06-17 08:44:55.457519] [66] : 0x65 (101)
[2022-06-17 08:44:55.459049] [67] : 0x00 (0)
[2022-06-17 08:44:55.460685] [68] : 0x73 (115)
[2022-06-17 08:44:55.462325] [69] : 0x00 (0)
[2022-06-17 08:44:55.464055] [70] : 0x20 (32)
[2022-06-17 08:44:55.465708] [71] : 0x00 (0)
[2022-06-17 08:44:55.467339] [72] : 0x74 (116)
[2022-06-17 08:44:55.469074] [73] : 0x00 (0)
[2022-06-17 08:44:55.470592] [74] : 0x6f (111)
[2022-06-17 08:44:55.472232] [75] : 0x00 (0)
[2022-06-17 08:44:55.474061] [76] : 0x20 (32)
[2022-06-17 08:44:55.475601] [77] : 0x00 (0)
[2022-06-17 08:44:55.477243] [78] : 0x70 (112)
[2022-06-17 08:44:55.478986] [79] : 0x00 (0)
[2022-06-17 08:44:55.480512] [80] : 0x72 (114)
[2022-06-17 08:44:55.482148] [81] : 0x00 (0)
[2022-06-17 08:44:55.483943] [82] : 0x69 (105)
[2022-06-17 08:44:55.485487] [83] : 0x00 (0)
[2022-06-17 08:44:55.487135] [84] : 0x6e (110)
[2022-06-17 08:44:55.488788] [85] : 0x00 (0)
[2022-06-17 08:44:55.490529] [86] : 0x74 (116)
[2022-06-17 08:44:55.492065] [87] : 0x00 (0)
[2022-06-17 08:44:55.493747] [88] : 0x20 (32)
[2022-06-17 08:44:55.495257] [89] : 0x00 (0)
[2022-06-17 08:44:55.496921] [90] : 0x64 (100)
[2022-06-17 08:44:55.498580] [91] : 0x00 (0)
[2022-06-17 08:44:55.500219] [92] : 0x65 (101)
[2022-06-17 08:44:55.501853] [93] : 0x00 (0)
[2022-06-17 08:44:55.503551] [94] : 0x76 (118)
[2022-06-17 08:44:55.505194] [95] : 0x00 (0)
[2022-06-17 08:44:55.512985] [96] : 0x69 (105)
[2022-06-17 08:44:55.514711] [97] : 0x00 (0)
[2022-06-17 08:44:55.516561] [98] : 0x63 (99)
[2022-06-17 08:44:55.522985] [99] : 0x00 (0)
[2022-06-17 08:44:55.524808] [100] : 0x65 (101)
[2022-06-17 08:44:55.526402] [101] : 0x00 (0)
[2022-06-17 08:44:55.528056] [102] : 0x73 (115)
[2022-06-17 08:44:55.529821] [103] : 0x00 (0)
[2022-06-17 08:44:55.531772] [104] : 0x00 (0)
[2022-06-17 08:44:55.533503] [105] : 0x00 (0)
[2022-06-17 08:44:55.535181] size : 0x0000006a (106)
[2022-06-17 08:44:55.536721] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\Spooler:Description]
[2022-06-17 08:44:55.538402] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:55.540048] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:55.541678] out: struct winreg_SetValue
[2022-06-17 08:44:55.543371] result : WERR_OK
[2022-06-17 08:44:55.544881] winreg_CloseKey: struct winreg_CloseKey
[2022-06-17 08:44:55.546391] in: struct winreg_CloseKey
[2022-06-17 08:44:55.548037] handle : *
[2022-06-17 08:44:55.550197] handle: struct policy_handle
[2022-06-17 08:44:55.552365] handle_type : 0x00000001 (1)
[2022-06-17 08:44:55.554673] uuid : 6ba549c9-3717-479f-bc41-450a66b25f4b
[2022-06-17 08:44:55.556257] regdb_close: decrementing refcount (4->3)
[2022-06-17 08:44:55.558284] winreg_CloseKey: struct winreg_CloseKey
[2022-06-17 08:44:55.560971] out: struct winreg_CloseKey
[2022-06-17 08:44:55.563103] handle : *
[2022-06-17 08:44:55.565015] handle: struct policy_handle
[2022-06-17 08:44:55.566706] handle_type : 0x00000000 (0)
[2022-06-17 08:44:55.568487] uuid : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:44:55.570032] result : WERR_OK
[2022-06-17 08:44:55.571675] winreg_CreateKey: struct winreg_CreateKey
[2022-06-17 08:44:55.573467] in: struct winreg_CreateKey
[2022-06-17 08:44:55.575011] handle : *
[2022-06-17 08:44:55.576656] handle: struct policy_handle
[2022-06-17 08:44:55.579016] handle_type : 0x00000001 (1)
[2022-06-17 08:44:55.580597] uuid : 3564441c-52f4-47de-a43c-e15155f8a4c8
[2022-06-17 08:44:55.582266] name: struct winreg_String
[2022-06-17 08:44:55.583990] name_len : 0x0066 (102)
[2022-06-17 08:44:55.585651] name_size : 0x0066 (102)
[2022-06-17 08:44:55.587311] name : *
[2022-06-17 08:44:55.589057] name : 'SYSTEM\CurrentControlSet\Services\Spooler\Security'
[2022-06-17 08:44:55.590720] keyclass: struct winreg_String
[2022-06-17 08:44:55.592236] name_len : 0x0002 (2)
[2022-06-17 08:44:55.594054] name_size : 0x0002 (2)
[2022-06-17 08:44:55.595701] name : *
[2022-06-17 08:44:55.597244] name : ''
[2022-06-17 08:44:55.598992] options : 0x00000000 (0)
[2022-06-17 08:44:55.600522] 0: REG_OPTION_VOLATILE
[2022-06-17 08:44:55.602169] 0: REG_OPTION_CREATE_LINK
[2022-06-17 08:44:55.603871] 0: REG_OPTION_BACKUP_RESTORE
[2022-06-17 08:44:55.605516] 0: REG_OPTION_OPEN_LINK
[2022-06-17 08:44:55.607253] access_mask : 0x02000000 (33554432)
[2022-06-17 08:44:55.608898] 0: KEY_QUERY_VALUE
[2022-06-17 08:44:55.610534] 0: KEY_SET_VALUE
[2022-06-17 08:44:55.612178] 0: KEY_CREATE_SUB_KEY
[2022-06-17 08:44:55.613863] 0: KEY_ENUMERATE_SUB_KEYS
[2022-06-17 08:44:55.615508] 0: KEY_NOTIFY
[2022-06-17 08:44:55.617037] 0: KEY_CREATE_LINK
[2022-06-17 08:44:55.618669] 0: KEY_WOW64_64KEY
[2022-06-17 08:44:55.620313] 0: KEY_WOW64_32KEY
[2022-06-17 08:44:55.622050] secdesc : NULL
[2022-06-17 08:44:55.623661] action_taken : *
[2022-06-17 08:44:55.625333] action_taken : REG_OPENED_EXISTING_KEY (2)
[2022-06-17 08:44:55.627099] _winreg_CreateKey called with parent key 'HKLM' and subkey name 'SYSTEM\CurrentControlSet\Services\Spooler\Security'
[2022-06-17 08:44:55.628656] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:55.630300] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:55.631951] regkey_open_onelevel: name = [SYSTEM]
[2022-06-17 08:44:55.633650] regdb_open: incrementing refcount (3->4)
[2022-06-17 08:44:55.635310] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM]
[2022-06-17 08:44:55.637067] pathtree_find: Enter [\HKLM\SYSTEM]
[2022-06-17 08:44:55.638703] pathtree_find: Exit
[2022-06-17 08:44:55.640219] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM]
[2022-06-17 08:44:55.641856] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:55.643546] regkey_open_onelevel: name = [CurrentControlSet]
[2022-06-17 08:44:55.645288] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:55.646930] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:55.648473] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:55.650120] pathtree_find: Exit
[2022-06-17 08:44:55.651731] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:55.653438] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:55.655182] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:55.656718] regkey_open_onelevel: name = [Services]
[2022-06-17 08:44:55.658369] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:55.660004] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:55.661665] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:55.663357] pathtree_find: Exit
[2022-06-17 08:44:55.665085] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:55.666746] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:55.668278] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:55.670027] regkey_open_onelevel: name = [Spooler]
[2022-06-17 08:44:55.671552] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:55.673246] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services\Spooler]
[2022-06-17 08:44:55.674921] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services\Spooler]
[2022-06-17 08:44:55.676574] pathtree_find: Exit
[2022-06-17 08:44:55.678273] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services\Spooler]
[2022-06-17 08:44:55.679823] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:55.681312] regkey_open_onelevel: name = [Security]
[2022-06-17 08:44:55.682808] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:55.684365] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services\Spooler\Security]
[2022-06-17 08:44:55.685889] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services\Spooler\Security]
[2022-06-17 08:44:55.687613] pathtree_find: Exit
[2022-06-17 08:44:55.689103] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services\Spooler\Security]
[2022-06-17 08:44:55.690625] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:55.692374] winreg_CreateKey: struct winreg_CreateKey
[2022-06-17 08:44:55.694088] out: struct winreg_CreateKey
[2022-06-17 08:44:55.695624] new_handle : *
[2022-06-17 08:44:55.697255] new_handle: struct policy_handle
[2022-06-17 08:44:55.698894] handle_type : 0x00000001 (1)
[2022-06-17 08:44:55.700541] uuid : 7ed948d4-fcd0-4fb7-8f39-cb4d83b52b26
[2022-06-17 08:44:55.702192] action_taken : *
[2022-06-17 08:44:55.703908] action_taken : REG_OPENED_EXISTING_KEY (2)
[2022-06-17 08:44:55.705559] result : WERR_OK
[2022-06-17 08:44:55.707337] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:55.708971] in: struct winreg_SetValue
[2022-06-17 08:44:55.710493] handle : *
[2022-06-17 08:44:55.711983] handle: struct policy_handle
[2022-06-17 08:44:55.713703] handle_type : 0x00000001 (1)
[2022-06-17 08:44:55.715343] uuid : 7ed948d4-fcd0-4fb7-8f39-cb4d83b52b26
[2022-06-17 08:44:55.716883] name: struct winreg_String
[2022-06-17 08:44:55.718518] name_len : 0x0012 (18)
[2022-06-17 08:44:55.720169] name_size : 0x0012 (18)
[2022-06-17 08:44:55.721815] name : *
[2022-06-17 08:44:55.723615] name : 'Security'
[2022-06-17 08:44:55.725152] type : REG_BINARY (3)
[2022-06-17 08:44:55.726794] data : *
[2022-06-17 08:44:55.728285] data: ARRAY(120)
[2022-06-17 08:44:55.729909] [0] : 0x01 (1)
[2022-06-17 08:44:55.731661] [1] : 0x00 (0)
[2022-06-17 08:44:55.733249] [2] : 0x04 (4)
[2022-06-17 08:44:55.734917] [3] : 0x80 (128)
[2022-06-17 08:44:55.736555] [4] : 0x00 (0)
[2022-06-17 08:44:55.738210] [5] : 0x00 (0)
[2022-06-17 08:44:55.739842] [6] : 0x00 (0)
[2022-06-17 08:44:55.741580] [7] : 0x00 (0)
[2022-06-17 08:44:55.743164] [8] : 0x00 (0)
[2022-06-17 08:44:55.744935] [9] : 0x00 (0)
[2022-06-17 08:44:55.746476] [10] : 0x00 (0)
[2022-06-17 08:44:55.748219] [11] : 0x00 (0)
[2022-06-17 08:44:55.749848] [12] : 0x00 (0)
[2022-06-17 08:44:55.751375] [13] : 0x00 (0)
[2022-06-17 08:44:55.753054] [14] : 0x00 (0)
[2022-06-17 08:44:55.754706] [15] : 0x00 (0)
[2022-06-17 08:44:55.756357] [16] : 0x14 (20)
[2022-06-17 08:44:55.758004] [17] : 0x00 (0)
[2022-06-17 08:44:55.759637] [18] : 0x00 (0)
[2022-06-17 08:44:55.761281] [19] : 0x00 (0)
[2022-06-17 08:44:55.763058] [20] : 0x02 (2)
[2022-06-17 08:44:55.764598] [21] : 0x00 (0)
[2022-06-17 08:44:55.766260] [22] : 0x64 (100)
[2022-06-17 08:44:55.767911] [23] : 0x00 (0)
[2022-06-17 08:44:55.769546] [24] : 0x04 (4)
[2022-06-17 08:44:55.781500] [25] : 0x00 (0)
[2022-06-17 08:44:55.783364] [26] : 0x00 (0)
[2022-06-17 08:44:55.785043] [27] : 0x00 (0)
[2022-06-17 08:44:55.786699] [28] : 0x00 (0)
[2022-06-17 08:44:55.788232] [29] : 0x00 (0)
[2022-06-17 08:44:55.789891] [30] : 0x14 (20)
[2022-06-17 08:44:55.791533] [31] : 0x00 (0)
[2022-06-17 08:44:55.793222] [32] : 0x8d (141)
[2022-06-17 08:44:55.794733] [33] : 0x01 (1)
[2022-06-17 08:44:55.796462] [34] : 0x02 (2)
[2022-06-17 08:44:55.798087] [35] : 0x00 (0)
[2022-06-17 08:44:55.799608] [36] : 0x01 (1)
[2022-06-17 08:44:55.801248] [37] : 0x01 (1)
[2022-06-17 08:44:55.803037] [38] : 0x00 (0)
[2022-06-17 08:44:55.804585] [39] : 0x00 (0)
[2022-06-17 08:44:55.806239] [40] : 0x00 (0)
[2022-06-17 08:44:55.807883] [41] : 0x00 (0)
[2022-06-17 08:44:55.809516] [42] : 0x00 (0)
[2022-06-17 08:44:55.811806] [43] : 0x01 (1)
[2022-06-17 08:44:55.813623] [44] : 0x00 (0)
[2022-06-17 08:44:55.815308] [45] : 0x00 (0)
[2022-06-17 08:44:55.816958] [46] : 0x00 (0)
[2022-06-17 08:44:55.818602] [47] : 0x00 (0)
[2022-06-17 08:44:55.820235] [48] : 0x00 (0)
[2022-06-17 08:44:55.821869] [49] : 0x00 (0)
[2022-06-17 08:44:55.823547] [50] : 0x18 (24)
[2022-06-17 08:44:55.825191] [51] : 0x00 (0)
[2022-06-17 08:44:55.826838] [52] : 0xfd (253)
[2022-06-17 08:44:55.828480] [53] : 0x01 (1)
[2022-06-17 08:44:55.830129] [54] : 0x02 (2)
[2022-06-17 08:44:55.831762] [55] : 0x00 (0)
[2022-06-17 08:44:55.833455] [56] : 0x01 (1)
[2022-06-17 08:44:55.835105] [57] : 0x02 (2)
[2022-06-17 08:44:55.836748] [58] : 0x00 (0)
[2022-06-17 08:44:55.838380] [59] : 0x00 (0)
[2022-06-17 08:44:55.840014] [60] : 0x00 (0)
[2022-06-17 08:44:55.841648] [61] : 0x00 (0)
[2022-06-17 08:44:55.843360] [62] : 0x00 (0)
[2022-06-17 08:44:55.845007] [63] : 0x05 (5)
[2022-06-17 08:44:55.846639] [64] : 0x20 (32)
[2022-06-17 08:44:55.848280] [65] : 0x00 (0)
[2022-06-17 08:44:55.849920] [66] : 0x00 (0)
[2022-06-17 08:44:55.851569] [67] : 0x00 (0)
[2022-06-17 08:44:55.853267] [68] : 0x23 (35)
[2022-06-17 08:44:55.854931] [69] : 0x02 (2)
[2022-06-17 08:44:55.856555] [70] : 0x00 (0)
[2022-06-17 08:44:55.858196] [71] : 0x00 (0)
[2022-06-17 08:44:55.859833] [72] : 0x00 (0)
[2022-06-17 08:44:55.861473] [73] : 0x00 (0)
[2022-06-17 08:44:55.863167] [74] : 0x18 (24)
[2022-06-17 08:44:55.864825] [75] : 0x00 (0)
[2022-06-17 08:44:55.866473] [76] : 0xff (255)
[2022-06-17 08:44:55.868106] [77] : 0x01 (1)
[2022-06-17 08:44:55.869738] [78] : 0x0f (15)
[2022-06-17 08:44:55.871386] [79] : 0x00 (0)
[2022-06-17 08:44:55.873062] [80] : 0x01 (1)
[2022-06-17 08:44:55.874722] [81] : 0x02 (2)
[2022-06-17 08:44:55.876368] [82] : 0x00 (0)
[2022-06-17 08:44:55.878009] [83] : 0x00 (0)
[2022-06-17 08:44:55.879657] [84] : 0x00 (0)
[2022-06-17 08:44:55.881297] [85] : 0x00 (0)
[2022-06-17 08:44:55.882974] [86] : 0x00 (0)
[2022-06-17 08:44:55.884629] [87] : 0x05 (5)
[2022-06-17 08:44:55.886282] [88] : 0x20 (32)
[2022-06-17 08:44:55.887937] [89] : 0x00 (0)
[2022-06-17 08:44:55.889570] [90] : 0x00 (0)
[2022-06-17 08:44:55.891200] [91] : 0x00 (0)
[2022-06-17 08:44:55.892832] [92] : 0x25 (37)
[2022-06-17 08:44:55.894523] [93] : 0x02 (2)
[2022-06-17 08:44:55.896162] [94] : 0x00 (0)
[2022-06-17 08:44:55.897792] [95] : 0x00 (0)
[2022-06-17 08:44:55.899437] [96] : 0x00 (0)
[2022-06-17 08:44:55.901081] [97] : 0x00 (0)
[2022-06-17 08:44:55.902716] [98] : 0x18 (24)
[2022-06-17 08:44:55.904554] [99] : 0x00 (0)
[2022-06-17 08:44:55.906207] [100] : 0xff (255)
[2022-06-17 08:44:55.907842] [101] : 0x01 (1)
[2022-06-17 08:44:55.909480] [102] : 0x0f (15)
[2022-06-17 08:44:55.911115] [103] : 0x00 (0)
[2022-06-17 08:44:55.912764] [104] : 0x01 (1)
[2022-06-17 08:44:55.914484] [105] : 0x02 (2)
[2022-06-17 08:44:55.916133] [106] : 0x00 (0)
[2022-06-17 08:44:55.917764] [107] : 0x00 (0)
[2022-06-17 08:44:55.919400] [108] : 0x00 (0)
[2022-06-17 08:44:55.921041] [109] : 0x00 (0)
[2022-06-17 08:44:55.922680] [110] : 0x00 (0)
[2022-06-17 08:44:55.924381] [111] : 0x05 (5)
[2022-06-17 08:44:55.926019] [112] : 0x20 (32)
[2022-06-17 08:44:55.927663] [113] : 0x00 (0)
[2022-06-17 08:44:55.929300] [114] : 0x00 (0)
[2022-06-17 08:44:55.930932] [115] : 0x00 (0)
[2022-06-17 08:44:55.932580] [116] : 0x20 (32)
[2022-06-17 08:44:55.934310] [117] : 0x02 (2)
[2022-06-17 08:44:55.935961] [118] : 0x00 (0)
[2022-06-17 08:44:55.937594] [119] : 0x00 (0)
[2022-06-17 08:44:55.939111] size : 0x00000078 (120)
[2022-06-17 08:44:55.940613] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\Spooler\Security:Security]
[2022-06-17 08:44:55.942355] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:55.943958] fetch_reg_values called for key 'HKLM\SYSTEM\CurrentControlSet\Services\Spooler\Security' (ops 0xb6ab32e8)
[2022-06-17 08:44:55.945717] regdb_fetch_values: Looking for values of key [HKLM\SYSTEM\CurrentControlSet\Services\Spooler\Security]
[2022-06-17 08:44:55.947405] regdb_unpack_values: value[0]: name[Security] len[120]
[2022-06-17 08:44:55.949068] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:55.950711] out: struct winreg_SetValue
[2022-06-17 08:44:55.952336] result : WERR_OK
[2022-06-17 08:44:55.954063] winreg_CloseKey: struct winreg_CloseKey
[2022-06-17 08:44:55.955701] in: struct winreg_CloseKey
[2022-06-17 08:44:55.957334] handle : *
[2022-06-17 08:44:55.958968] handle: struct policy_handle
[2022-06-17 08:44:55.960607] handle_type : 0x00000001 (1)
[2022-06-17 08:44:55.962248] uuid : 7ed948d4-fcd0-4fb7-8f39-cb4d83b52b26
[2022-06-17 08:44:55.963946] regdb_close: decrementing refcount (4->3)
[2022-06-17 08:44:55.965575] winreg_CloseKey: struct winreg_CloseKey
[2022-06-17 08:44:55.967217] out: struct winreg_CloseKey
[2022-06-17 08:44:55.968843] handle : *
[2022-06-17 08:44:55.970468] handle: struct policy_handle
[2022-06-17 08:44:55.972115] handle_type : 0x00000000 (0)
[2022-06-17 08:44:55.973809] uuid : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:44:55.975470] result : WERR_OK
[2022-06-17 08:44:55.977108] winreg_CreateKey: struct winreg_CreateKey
[2022-06-17 08:44:55.978729] in: struct winreg_CreateKey
[2022-06-17 08:44:55.980360] handle : *
[2022-06-17 08:44:55.981967] handle: struct policy_handle
[2022-06-17 08:44:55.983672] handle_type : 0x00000001 (1)
[2022-06-17 08:44:55.985346] uuid : 3564441c-52f4-47de-a43c-e15155f8a4c8
[2022-06-17 08:44:55.987012] name: struct winreg_String
[2022-06-17 08:44:55.988526] name_len : 0x0056 (86)
[2022-06-17 08:44:55.990283] name_size : 0x0056 (86)
[2022-06-17 08:44:55.991911] name : *
[2022-06-17 08:44:55.993619] name : 'SYSTEM\CurrentControlSet\Services\NETLOGON'
[2022-06-17 08:44:55.995163] keyclass: struct winreg_String
[2022-06-17 08:44:55.996931] name_len : 0x0002 (2)
[2022-06-17 08:44:55.998549] name_size : 0x0002 (2)
[2022-06-17 08:44:56.000201] name : *
[2022-06-17 08:44:56.001834] name : ''
[2022-06-17 08:44:56.003522] options : 0x00000000 (0)
[2022-06-17 08:44:56.005172] 0: REG_OPTION_VOLATILE
[2022-06-17 08:44:56.006805] 0: REG_OPTION_CREATE_LINK
[2022-06-17 08:44:56.008449] 0: REG_OPTION_BACKUP_RESTORE
[2022-06-17 08:44:56.010084] 0: REG_OPTION_OPEN_LINK
[2022-06-17 08:44:56.011728] access_mask : 0x02000000 (33554432)
[2022-06-17 08:44:56.013415] 0: KEY_QUERY_VALUE
[2022-06-17 08:44:56.015063] 0: KEY_SET_VALUE
[2022-06-17 08:44:56.016703] 0: KEY_CREATE_SUB_KEY
[2022-06-17 08:44:56.018325] 0: KEY_ENUMERATE_SUB_KEYS
[2022-06-17 08:44:56.019961] 0: KEY_NOTIFY
[2022-06-17 08:44:56.021605] 0: KEY_CREATE_LINK
[2022-06-17 08:44:56.023471] 0: KEY_WOW64_64KEY
[2022-06-17 08:44:56.025165] 0: KEY_WOW64_32KEY
[2022-06-17 08:44:56.032980] secdesc : NULL
[2022-06-17 08:44:56.034865] action_taken : *
[2022-06-17 08:44:56.036555] action_taken : REG_ACTION_NONE (0)
[2022-06-17 08:44:56.038229] _winreg_CreateKey called with parent key 'HKLM' and subkey name 'SYSTEM\CurrentControlSet\Services\NETLOGON'
[2022-06-17 08:44:56.043517] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:56.045295] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:56.046990] regkey_open_onelevel: name = [SYSTEM]
[2022-06-17 08:44:56.050049] regdb_open: incrementing refcount (3->4)
[2022-06-17 08:44:56.051839] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM]
[2022-06-17 08:44:56.053586] pathtree_find: Enter [\HKLM\SYSTEM]
[2022-06-17 08:44:56.055244] pathtree_find: Exit
[2022-06-17 08:44:56.056873] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM]
[2022-06-17 08:44:56.058530] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:56.060180] regkey_open_onelevel: name = [CurrentControlSet]
[2022-06-17 08:44:56.061844] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:56.063532] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:56.065190] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:56.066844] pathtree_find: Exit
[2022-06-17 08:44:56.068476] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:56.070190] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:56.071843] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:56.073545] regkey_open_onelevel: name = [Services]
[2022-06-17 08:44:56.075183] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:56.076814] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:56.078470] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:56.080111] pathtree_find: Exit
[2022-06-17 08:44:56.081737] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:56.083430] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:56.085081] regkey_open_onelevel: name = [NETLOGON]
[2022-06-17 08:44:56.086714] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:56.088342] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services\NETLOGON]
[2022-06-17 08:44:56.089987] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services\NETLOGON]
[2022-06-17 08:44:56.091642] pathtree_find: Exit
[2022-06-17 08:44:56.093342] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services\NETLOGON]
[2022-06-17 08:44:56.095031] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:56.096672] winreg_CreateKey: struct winreg_CreateKey
[2022-06-17 08:44:56.098304] out: struct winreg_CreateKey
[2022-06-17 08:44:56.099925] new_handle : *
[2022-06-17 08:44:56.101552] new_handle: struct policy_handle
[2022-06-17 08:44:56.103221] handle_type : 0x00000001 (1)
[2022-06-17 08:44:56.104881] uuid : 45963cf1-0923-4e0f-a4fa-e9dbe2adbe37
[2022-06-17 08:44:56.106553] action_taken : *
[2022-06-17 08:44:56.108195] action_taken : REG_OPENED_EXISTING_KEY (2)
[2022-06-17 08:44:56.109844] result : WERR_OK
[2022-06-17 08:44:56.111365] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:56.113136] in: struct winreg_SetValue
[2022-06-17 08:44:56.114790] handle : *
[2022-06-17 08:44:56.116423] handle: struct policy_handle
[2022-06-17 08:44:56.118072] handle_type : 0x00000001 (1)
[2022-06-17 08:44:56.119718] uuid : 45963cf1-0923-4e0f-a4fa-e9dbe2adbe37
[2022-06-17 08:44:56.121387] name: struct winreg_String
[2022-06-17 08:44:56.123054] name_len : 0x000c (12)
[2022-06-17 08:44:56.124715] name_size : 0x000c (12)
[2022-06-17 08:44:56.126358] name : *
[2022-06-17 08:44:56.127881] name : 'Start'
[2022-06-17 08:44:56.129386] type : REG_DWORD (4)
[2022-06-17 08:44:56.131115] data : *
[2022-06-17 08:44:56.132763] data: ARRAY(4)
[2022-06-17 08:44:56.134491] [0] : 0x02 (2)
[2022-06-17 08:44:56.136138] [1] : 0x00 (0)
[2022-06-17 08:44:56.137780] [2] : 0x00 (0)
[2022-06-17 08:44:56.139414] [3] : 0x00 (0)
[2022-06-17 08:44:56.141051] size : 0x00000004 (4)
[2022-06-17 08:44:56.142695] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\NETLOGON:Start]
[2022-06-17 08:44:56.144415] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:56.146073] fetch_reg_values called for key 'HKLM\SYSTEM\CurrentControlSet\Services\NETLOGON' (ops 0xb6ab32e8)
[2022-06-17 08:44:56.147751] regdb_fetch_values: Looking for values of key [HKLM\SYSTEM\CurrentControlSet\Services\NETLOGON]
[2022-06-17 08:44:56.149401] regdb_unpack_values: value[0]: name[Start] len[4]
[2022-06-17 08:44:56.151057] regdb_unpack_values: value[1]: name[Type] len[4]
[2022-06-17 08:44:56.152692] regdb_unpack_values: value[2]: name[ErrorControl] len[4]
[2022-06-17 08:44:56.154408] regdb_unpack_values: value[3]: name[ObjectName] len[24]
[2022-06-17 08:44:56.156063] regdb_unpack_values: value[4]: name[DisplayName] len[20]
[2022-06-17 08:44:56.157715] regdb_unpack_values: value[5]: name[ImagePath] len[54]
[2022-06-17 08:44:56.159349] regdb_unpack_values: value[6]: name[Description] len[164]
[2022-06-17 08:44:56.160962] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:56.162609] out: struct winreg_SetValue
[2022-06-17 08:44:56.164323] result : WERR_OK
[2022-06-17 08:44:56.165979] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:56.167617] in: struct winreg_SetValue
[2022-06-17 08:44:56.169254] handle : *
[2022-06-17 08:44:56.170882] handle: struct policy_handle
[2022-06-17 08:44:56.172518] handle_type : 0x00000001 (1)
[2022-06-17 08:44:56.174261] uuid : 45963cf1-0923-4e0f-a4fa-e9dbe2adbe37
[2022-06-17 08:44:56.175917] name: struct winreg_String
[2022-06-17 08:44:56.177554] name_len : 0x000a (10)
[2022-06-17 08:44:56.179202] name_size : 0x000a (10)
[2022-06-17 08:44:56.180861] name : *
[2022-06-17 08:44:56.182491] name : 'Type'
[2022-06-17 08:44:56.184203] type : REG_DWORD (4)
[2022-06-17 08:44:56.185830] data : *
[2022-06-17 08:44:56.187461] data: ARRAY(4)
[2022-06-17 08:44:56.189084] [0] : 0x10 (16)
[2022-06-17 08:44:56.190743] [1] : 0x00 (0)
[2022-06-17 08:44:56.192388] [2] : 0x00 (0)
[2022-06-17 08:44:56.194111] [3] : 0x00 (0)
[2022-06-17 08:44:56.195747] size : 0x00000004 (4)
[2022-06-17 08:44:56.197383] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\NETLOGON:Type]
[2022-06-17 08:44:56.199024] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:56.200659] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:56.202298] out: struct winreg_SetValue
[2022-06-17 08:44:56.204002] result : WERR_OK
[2022-06-17 08:44:56.205651] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:56.207290] in: struct winreg_SetValue
[2022-06-17 08:44:56.208919] handle : *
[2022-06-17 08:44:56.210547] handle: struct policy_handle
[2022-06-17 08:44:56.212173] handle_type : 0x00000001 (1)
[2022-06-17 08:44:56.213858] uuid : 45963cf1-0923-4e0f-a4fa-e9dbe2adbe37
[2022-06-17 08:44:56.215516] name: struct winreg_String
[2022-06-17 08:44:56.217162] name_len : 0x001a (26)
[2022-06-17 08:44:56.218797] name_size : 0x001a (26)
[2022-06-17 08:44:56.220439] name : *
[2022-06-17 08:44:56.222072] name : 'ErrorControl'
[2022-06-17 08:44:56.223762] type : REG_DWORD (4)
[2022-06-17 08:44:56.225421] data : *
[2022-06-17 08:44:56.227063] data: ARRAY(4)
[2022-06-17 08:44:56.228686] [0] : 0x01 (1)
[2022-06-17 08:44:56.230338] [1] : 0x00 (0)
[2022-06-17 08:44:56.231972] [2] : 0x00 (0)
[2022-06-17 08:44:56.233671] [3] : 0x00 (0)
[2022-06-17 08:44:56.235347] size : 0x00000004 (4)
[2022-06-17 08:44:56.237001] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\NETLOGON:ErrorControl]
[2022-06-17 08:44:56.238667] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:56.240314] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:56.241950] out: struct winreg_SetValue
[2022-06-17 08:44:56.243626] result : WERR_OK
[2022-06-17 08:44:56.245274] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:56.246906] in: struct winreg_SetValue
[2022-06-17 08:44:56.248538] handle : *
[2022-06-17 08:44:56.250178] handle: struct policy_handle
[2022-06-17 08:44:56.251819] handle_type : 0x00000001 (1)
[2022-06-17 08:44:56.253516] uuid : 45963cf1-0923-4e0f-a4fa-e9dbe2adbe37
[2022-06-17 08:44:56.255058] name: struct winreg_String
[2022-06-17 08:44:56.256686] name_len : 0x0016 (22)
[2022-06-17 08:44:56.258322] name_size : 0x0016 (22)
[2022-06-17 08:44:56.259977] name : *
[2022-06-17 08:44:56.261618] name : 'ObjectName'
[2022-06-17 08:44:56.263307] type : REG_SZ (1)
[2022-06-17 08:44:56.264973] data : *
[2022-06-17 08:44:56.266728] data: ARRAY(24)
[2022-06-17 08:44:56.268381] [0] : 0x4c (76)
[2022-06-17 08:44:56.270007] [1] : 0x00 (0)
[2022-06-17 08:44:56.271649] [2] : 0x6f (111)
[2022-06-17 08:44:56.273321] [3] : 0x00 (0)
[2022-06-17 08:44:56.274988] [4] : 0x63 (99)
[2022-06-17 08:44:56.276648] [5] : 0x00 (0)
[2022-06-17 08:44:56.278296] [6] : 0x61 (97)
[2022-06-17 08:44:56.279934] [7] : 0x00 (0)
[2022-06-17 08:44:56.281565] [8] : 0x6c (108)
[2022-06-17 08:44:56.283249] [9] : 0x00 (0)
[2022-06-17 08:44:56.284895] [10] : 0x53 (83)
[2022-06-17 08:44:56.286539] [11] : 0x00 (0)
[2022-06-17 08:44:56.288180] [12] : 0x79 (121)
[2022-06-17 08:44:56.292952] [13] : 0x00 (0)
[2022-06-17 08:44:56.302126] [14] : 0x73 (115)
[2022-06-17 08:44:56.303808] [15] : 0x00 (0)
[2022-06-17 08:44:56.305505] [16] : 0x74 (116)
[2022-06-17 08:44:56.307191] [17] : 0x00 (0)
[2022-06-17 08:44:56.308839] [18] : 0x65 (101)
[2022-06-17 08:44:56.310499] [19] : 0x00 (0)
[2022-06-17 08:44:56.312139] [20] : 0x6d (109)
[2022-06-17 08:44:56.313840] [21] : 0x00 (0)
[2022-06-17 08:44:56.315487] [22] : 0x00 (0)
[2022-06-17 08:44:56.317132] [23] : 0x00 (0)
[2022-06-17 08:44:56.318765] size : 0x00000018 (24)
[2022-06-17 08:44:56.320397] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\NETLOGON:ObjectName]
[2022-06-17 08:44:56.322070] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:56.323789] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:56.325441] out: struct winreg_SetValue
[2022-06-17 08:44:56.327054] result : WERR_OK
[2022-06-17 08:44:56.328691] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:56.330322] in: struct winreg_SetValue
[2022-06-17 08:44:56.331962] handle : *
[2022-06-17 08:44:56.333653] handle: struct policy_handle
[2022-06-17 08:44:56.335313] handle_type : 0x00000001 (1)
[2022-06-17 08:44:56.336964] uuid : 45963cf1-0923-4e0f-a4fa-e9dbe2adbe37
[2022-06-17 08:44:56.338608] name: struct winreg_String
[2022-06-17 08:44:56.340239] name_len : 0x0018 (24)
[2022-06-17 08:44:56.341875] name_size : 0x0018 (24)
[2022-06-17 08:44:56.343557] name : *
[2022-06-17 08:44:56.345203] name : 'DisplayName'
[2022-06-17 08:44:56.346867] type : REG_SZ (1)
[2022-06-17 08:44:56.348509] data : *
[2022-06-17 08:44:56.350151] data: ARRAY(20)
[2022-06-17 08:44:56.351778] [0] : 0x4e (78)
[2022-06-17 08:44:56.353467] [1] : 0x00 (0)
[2022-06-17 08:44:56.355118] [2] : 0x65 (101)
[2022-06-17 08:44:56.356759] [3] : 0x00 (0)
[2022-06-17 08:44:56.358394] [4] : 0x74 (116)
[2022-06-17 08:44:56.360050] [5] : 0x00 (0)
[2022-06-17 08:44:56.361702] [6] : 0x20 (32)
[2022-06-17 08:44:56.363380] [7] : 0x00 (0)
[2022-06-17 08:44:56.365022] [8] : 0x4c (76)
[2022-06-17 08:44:56.366661] [9] : 0x00 (0)
[2022-06-17 08:44:56.368288] [10] : 0x6f (111)
[2022-06-17 08:44:56.369939] [11] : 0x00 (0)
[2022-06-17 08:44:56.371589] [12] : 0x67 (103)
[2022-06-17 08:44:56.373272] [13] : 0x00 (0)
[2022-06-17 08:44:56.374927] [14] : 0x6f (111)
[2022-06-17 08:44:56.376547] [15] : 0x00 (0)
[2022-06-17 08:44:56.378172] [16] : 0x6e (110)
[2022-06-17 08:44:56.379814] [17] : 0x00 (0)
[2022-06-17 08:44:56.381440] [18] : 0x00 (0)
[2022-06-17 08:44:56.383132] [19] : 0x00 (0)
[2022-06-17 08:44:56.384782] size : 0x00000014 (20)
[2022-06-17 08:44:56.386426] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\NETLOGON:DisplayName]
[2022-06-17 08:44:56.388097] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:56.389737] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:56.391379] out: struct winreg_SetValue
[2022-06-17 08:44:56.393072] result : WERR_OK
[2022-06-17 08:44:56.394731] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:56.396378] in: struct winreg_SetValue
[2022-06-17 08:44:56.398011] handle : *
[2022-06-17 08:44:56.399636] handle: struct policy_handle
[2022-06-17 08:44:56.401271] handle_type : 0x00000001 (1)
[2022-06-17 08:44:56.402951] uuid : 45963cf1-0923-4e0f-a4fa-e9dbe2adbe37
[2022-06-17 08:44:56.404630] name: struct winreg_String
[2022-06-17 08:44:56.406283] name_len : 0x0014 (20)
[2022-06-17 08:44:56.407936] name_size : 0x0014 (20)
[2022-06-17 08:44:56.409577] name : *
[2022-06-17 08:44:56.411216] name : 'ImagePath'
[2022-06-17 08:44:56.412902] type : REG_SZ (1)
[2022-06-17 08:44:56.414554] data : *
[2022-06-17 08:44:56.416191] data: ARRAY(54)
[2022-06-17 08:44:56.417834] [0] : 0x2f (47)
[2022-06-17 08:44:56.419475] [1] : 0x00 (0)
[2022-06-17 08:44:56.421123] [2] : 0x75 (117)
[2022-06-17 08:44:56.422761] [3] : 0x00 (0)
[2022-06-17 08:44:56.424459] [4] : 0x73 (115)
[2022-06-17 08:44:56.426105] [5] : 0x00 (0)
[2022-06-17 08:44:56.427741] [6] : 0x72 (114)
[2022-06-17 08:44:56.429387] [7] : 0x00 (0)
[2022-06-17 08:44:56.431036] [8] : 0x2f (47)
[2022-06-17 08:44:56.432674] [9] : 0x00 (0)
[2022-06-17 08:44:56.434367] [10] : 0x6c (108)
[2022-06-17 08:44:56.436014] [11] : 0x00 (0)
[2022-06-17 08:44:56.437647] [12] : 0x69 (105)
[2022-06-17 08:44:56.439162] [13] : 0x00 (0)
[2022-06-17 08:44:56.440647] [14] : 0x62 (98)
[2022-06-17 08:44:56.442133] [15] : 0x00 (0)
[2022-06-17 08:44:56.443928] [16] : 0x2f (47)
[2022-06-17 08:44:56.445584] [17] : 0x00 (0)
[2022-06-17 08:44:56.447233] [18] : 0x73 (115)
[2022-06-17 08:44:56.448872] [19] : 0x00 (0)
[2022-06-17 08:44:56.450497] [20] : 0x61 (97)
[2022-06-17 08:44:56.452135] [21] : 0x00 (0)
[2022-06-17 08:44:56.453822] [22] : 0x6d (109)
[2022-06-17 08:44:56.455479] [23] : 0x00 (0)
[2022-06-17 08:44:56.457130] [24] : 0x62 (98)
[2022-06-17 08:44:56.458779] [25] : 0x00 (0)
[2022-06-17 08:44:56.460412] [26] : 0x61 (97)
[2022-06-17 08:44:56.462043] [27] : 0x00 (0)
[2022-06-17 08:44:56.463816] [28] : 0x2f (47)
[2022-06-17 08:44:56.465492] [29] : 0x00 (0)
[2022-06-17 08:44:56.467142] [30] : 0x73 (115)
[2022-06-17 08:44:56.468784] [31] : 0x00 (0)
[2022-06-17 08:44:56.470300] [32] : 0x76 (118)
[2022-06-17 08:44:56.471797] [33] : 0x00 (0)
[2022-06-17 08:44:56.473453] [34] : 0x63 (99)
[2022-06-17 08:44:56.475107] [35] : 0x00 (0)
[2022-06-17 08:44:56.476737] [36] : 0x63 (99)
[2022-06-17 08:44:56.478386] [37] : 0x00 (0)
[2022-06-17 08:44:56.480039] [38] : 0x74 (116)
[2022-06-17 08:44:56.481677] [39] : 0x00 (0)
[2022-06-17 08:44:56.483362] [40] : 0x6c (108)
[2022-06-17 08:44:56.485014] [41] : 0x00 (0)
[2022-06-17 08:44:56.486652] [42] : 0x2f (47)
[2022-06-17 08:44:56.488279] [43] : 0x00 (0)
[2022-06-17 08:44:56.489910] [44] : 0x73 (115)
[2022-06-17 08:44:56.491566] [45] : 0x00 (0)
[2022-06-17 08:44:56.493263] [46] : 0x6d (109)
[2022-06-17 08:44:56.494926] [47] : 0x00 (0)
[2022-06-17 08:44:56.496553] [48] : 0x62 (98)
[2022-06-17 08:44:56.498198] [49] : 0x00 (0)
[2022-06-17 08:44:56.499830] [50] : 0x64 (100)
[2022-06-17 08:44:56.501468] [51] : 0x00 (0)
[2022-06-17 08:44:56.503121] [52] : 0x00 (0)
[2022-06-17 08:44:56.504785] [53] : 0x00 (0)
[2022-06-17 08:44:56.506446] size : 0x00000036 (54)
[2022-06-17 08:44:56.508091] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\NETLOGON:ImagePath]
[2022-06-17 08:44:56.509753] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:56.511396] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:56.513078] out: struct winreg_SetValue
[2022-06-17 08:44:56.514609] result : WERR_OK
[2022-06-17 08:44:56.516112] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:56.517609] in: struct winreg_SetValue
[2022-06-17 08:44:56.519100] handle : *
[2022-06-17 08:44:56.520578] handle: struct policy_handle
[2022-06-17 08:44:56.522052] handle_type : 0x00000001 (1)
[2022-06-17 08:44:56.523600] uuid : 45963cf1-0923-4e0f-a4fa-e9dbe2adbe37
[2022-06-17 08:44:56.525122] name: struct winreg_String
[2022-06-17 08:44:56.526618] name_len : 0x0018 (24)
[2022-06-17 08:44:56.528110] name_size : 0x0018 (24)
[2022-06-17 08:44:56.529778] name : *
[2022-06-17 08:44:56.531303] name : 'Description'
[2022-06-17 08:44:56.532808] type : REG_SZ (1)
[2022-06-17 08:44:56.534368] data : *
[2022-06-17 08:44:56.535871] data: ARRAY(164)
[2022-06-17 08:44:56.537361] [0] : 0x46 (70)
[2022-06-17 08:44:56.539295] [1] : 0x00 (0)
[2022-06-17 08:44:56.540959] [2] : 0x69 (105)
[2022-06-17 08:44:56.542604] [3] : 0x00 (0)
[2022-06-17 08:44:56.544346] [4] : 0x6c (108)
[2022-06-17 08:44:56.553044] [5] : 0x00 (0)
[2022-06-17 08:44:56.554957] [6] : 0x65 (101)
[2022-06-17 08:44:56.556681] [7] : 0x00 (0)
[2022-06-17 08:44:56.558356] [8] : 0x20 (32)
[2022-06-17 08:44:56.560034] [9] : 0x00 (0)
[2022-06-17 08:44:56.565539] [10] : 0x73 (115)
[2022-06-17 08:44:56.567316] [11] : 0x00 (0)
[2022-06-17 08:44:56.568998] [12] : 0x65 (101)
[2022-06-17 08:44:56.570657] [13] : 0x00 (0)
[2022-06-17 08:44:56.572305] [14] : 0x72 (114)
[2022-06-17 08:44:56.574016] [15] : 0x00 (0)
[2022-06-17 08:44:56.575656] [16] : 0x76 (118)
[2022-06-17 08:44:56.577309] [17] : 0x00 (0)
[2022-06-17 08:44:56.578960] [18] : 0x69 (105)
[2022-06-17 08:44:56.580594] [19] : 0x00 (0)
[2022-06-17 08:44:56.582227] [20] : 0x63 (99)
[2022-06-17 08:44:56.583909] [21] : 0x00 (0)
[2022-06-17 08:44:56.585749] [22] : 0x65 (101)
[2022-06-17 08:44:56.587483] [23] : 0x00 (0)
[2022-06-17 08:44:56.589149] [24] : 0x20 (32)
[2022-06-17 08:44:56.590809] [25] : 0x00 (0)
[2022-06-17 08:44:56.592461] [26] : 0x70 (112)
[2022-06-17 08:44:56.594173] [27] : 0x00 (0)
[2022-06-17 08:44:56.595820] [28] : 0x72 (114)
[2022-06-17 08:44:56.597465] [29] : 0x00 (0)
[2022-06-17 08:44:56.599120] [30] : 0x6f (111)
[2022-06-17 08:44:56.600761] [31] : 0x00 (0)
[2022-06-17 08:44:56.602389] [32] : 0x76 (118)
[2022-06-17 08:44:56.604105] [33] : 0x00 (0)
[2022-06-17 08:44:56.605756] [34] : 0x69 (105)
[2022-06-17 08:44:56.607285] [35] : 0x00 (0)
[2022-06-17 08:44:56.608785] [36] : 0x64 (100)
[2022-06-17 08:44:56.610281] [37] : 0x00 (0)
[2022-06-17 08:44:56.611776] [38] : 0x69 (105)
[2022-06-17 08:44:56.613326] [39] : 0x00 (0)
[2022-06-17 08:44:56.614829] [40] : 0x6e (110)
[2022-06-17 08:44:56.616326] [41] : 0x00 (0)
[2022-06-17 08:44:56.617813] [42] : 0x67 (103)
[2022-06-17 08:44:56.619295] [43] : 0x00 (0)
[2022-06-17 08:44:56.620792] [44] : 0x20 (32)
[2022-06-17 08:44:56.622459] [45] : 0x00 (0)
[2022-06-17 08:44:56.624111] [46] : 0x61 (97)
[2022-06-17 08:44:56.625631] [47] : 0x00 (0)
[2022-06-17 08:44:56.627122] [48] : 0x63 (99)
[2022-06-17 08:44:56.628611] [49] : 0x00 (0)
[2022-06-17 08:44:56.630101] [50] : 0x63 (99)
[2022-06-17 08:44:56.631607] [51] : 0x00 (0)
[2022-06-17 08:44:56.633162] [52] : 0x65 (101)
[2022-06-17 08:44:56.634693] [53] : 0x00 (0)
[2022-06-17 08:44:56.636197] [54] : 0x73 (115)
[2022-06-17 08:44:56.637921] [55] : 0x00 (0)
[2022-06-17 08:44:56.639439] [56] : 0x73 (115)
[2022-06-17 08:44:56.640941] [57] : 0x00 (0)
[2022-06-17 08:44:56.642439] [58] : 0x20 (32)
[2022-06-17 08:44:56.644062] [59] : 0x00 (0)
[2022-06-17 08:44:56.645577] [60] : 0x74 (116)
[2022-06-17 08:44:56.647077] [61] : 0x00 (0)
[2022-06-17 08:44:56.648571] [62] : 0x6f (111)
[2022-06-17 08:44:56.650058] [63] : 0x00 (0)
[2022-06-17 08:44:56.651687] [64] : 0x20 (32)
[2022-06-17 08:44:56.653270] [65] : 0x00 (0)
[2022-06-17 08:44:56.654799] [66] : 0x70 (112)
[2022-06-17 08:44:56.656316] [67] : 0x00 (0)
[2022-06-17 08:44:56.657817] [68] : 0x6f (111)
[2022-06-17 08:44:56.659310] [69] : 0x00 (0)
[2022-06-17 08:44:56.660789] [70] : 0x6c (108)
[2022-06-17 08:44:56.662289] [71] : 0x00 (0)
[2022-06-17 08:44:56.663843] [72] : 0x69 (105)
[2022-06-17 08:44:56.665360] [73] : 0x00 (0)
[2022-06-17 08:44:56.667041] [74] : 0x63 (99)
[2022-06-17 08:44:56.668589] [75] : 0x00 (0)
[2022-06-17 08:44:56.670098] [76] : 0x79 (121)
[2022-06-17 08:44:56.671596] [77] : 0x00 (0)
[2022-06-17 08:44:56.673142] [78] : 0x20 (32)
[2022-06-17 08:44:56.674662] [79] : 0x00 (0)
[2022-06-17 08:44:56.676164] [80] : 0x61 (97)
[2022-06-17 08:44:56.677661] [81] : 0x00 (0)
[2022-06-17 08:44:56.679158] [82] : 0x6e (110)
[2022-06-17 08:44:56.680790] [83] : 0x00 (0)
[2022-06-17 08:44:56.682467] [84] : 0x64 (100)
[2022-06-17 08:44:56.684062] [85] : 0x00 (0)
[2022-06-17 08:44:56.685569] [86] : 0x20 (32)
[2022-06-17 08:44:56.687074] [87] : 0x00 (0)
[2022-06-17 08:44:56.688582] [88] : 0x70 (112)
[2022-06-17 08:44:56.690090] [89] : 0x00 (0)
[2022-06-17 08:44:56.691597] [90] : 0x72 (114)
[2022-06-17 08:44:56.693134] [91] : 0x00 (0)
[2022-06-17 08:44:56.694635] [92] : 0x6f (111)
[2022-06-17 08:44:56.696124] [93] : 0x00 (0)
[2022-06-17 08:44:56.697844] [94] : 0x66 (102)
[2022-06-17 08:44:56.699361] [95] : 0x00 (0)
[2022-06-17 08:44:56.700862] [96] : 0x69 (105)
[2022-06-17 08:44:56.702355] [97] : 0x00 (0)
[2022-06-17 08:44:56.703933] [98] : 0x6c (108)
[2022-06-17 08:44:56.705460] [99] : 0x00 (0)
[2022-06-17 08:44:56.706967] [100] : 0x65 (101)
[2022-06-17 08:44:56.708461] [101] : 0x00 (0)
[2022-06-17 08:44:56.709951] [102] : 0x20 (32)
[2022-06-17 08:44:56.711842] [103] : 0x00 (0)
[2022-06-17 08:44:56.714392] [104] : 0x64 (100)
[2022-06-17 08:44:56.716095] [105] : 0x00 (0)
[2022-06-17 08:44:56.717727] [106] : 0x61 (97)
[2022-06-17 08:44:56.719367] [107] : 0x00 (0)
[2022-06-17 08:44:56.721010] [108] : 0x74 (116)
[2022-06-17 08:44:56.722649] [109] : 0x00 (0)
[2022-06-17 08:44:56.724371] [110] : 0x61 (97)
[2022-06-17 08:44:56.726013] [111] : 0x00 (0)
[2022-06-17 08:44:56.727665] [112] : 0x20 (32)
[2022-06-17 08:44:56.729187] [113] : 0x00 (0)
[2022-06-17 08:44:56.730677] [114] : 0x28 (40)
[2022-06-17 08:44:56.732169] [115] : 0x00 (0)
[2022-06-17 08:44:56.733928] [116] : 0x6e (110)
[2022-06-17 08:44:56.735590] [117] : 0x00 (0)
[2022-06-17 08:44:56.737232] [118] : 0x6f (111)
[2022-06-17 08:44:56.738875] [119] : 0x00 (0)
[2022-06-17 08:44:56.740513] [120] : 0x74 (116)
[2022-06-17 08:44:56.742135] [121] : 0x00 (0)
[2022-06-17 08:44:56.743818] [122] : 0x72 (114)
[2022-06-17 08:44:56.745480] [123] : 0x00 (0)
[2022-06-17 08:44:56.747111] [124] : 0x65 (101)
[2022-06-17 08:44:56.748759] [125] : 0x00 (0)
[2022-06-17 08:44:56.750396] [126] : 0x6d (109)
[2022-06-17 08:44:56.752034] [127] : 0x00 (0)
[2022-06-17 08:44:56.753743] [128] : 0x6f (111)
[2022-06-17 08:44:56.755394] [129] : 0x00 (0)
[2022-06-17 08:44:56.757027] [130] : 0x74 (116)
[2022-06-17 08:44:56.758682] [131] : 0x00 (0)
[2022-06-17 08:44:56.760328] [132] : 0x65 (101)
[2022-06-17 08:44:56.761976] [133] : 0x00 (0)
[2022-06-17 08:44:56.763658] [134] : 0x6c (108)
[2022-06-17 08:44:56.765303] [135] : 0x00 (0)
[2022-06-17 08:44:56.766943] [136] : 0x79 (121)
[2022-06-17 08:44:56.768580] [137] : 0x00 (0)
[2022-06-17 08:44:56.770210] [138] : 0x20 (32)
[2022-06-17 08:44:56.771854] [139] : 0x00 (0)
[2022-06-17 08:44:56.773543] [140] : 0x6d (109)
[2022-06-17 08:44:56.775204] [141] : 0x00 (0)
[2022-06-17 08:44:56.776842] [142] : 0x61 (97)
[2022-06-17 08:44:56.778471] [143] : 0x00 (0)
[2022-06-17 08:44:56.780106] [144] : 0x6e (110)
[2022-06-17 08:44:56.781739] [145] : 0x00 (0)
[2022-06-17 08:44:56.783420] [146] : 0x61 (97)
[2022-06-17 08:44:56.785078] [147] : 0x00 (0)
[2022-06-17 08:44:56.786732] [148] : 0x67 (103)
[2022-06-17 08:44:56.793567] [149] : 0x00 (0)
[2022-06-17 08:44:56.795233] [150] : 0x65 (101)
[2022-06-17 08:44:56.803486] [151] : 0x00 (0)
[2022-06-17 08:44:56.805265] [152] : 0x61 (97)
[2022-06-17 08:44:56.806951] [153] : 0x00 (0)
[2022-06-17 08:44:56.808627] [154] : 0x62 (98)
[2022-06-17 08:44:56.810280] [155] : 0x00 (0)
[2022-06-17 08:44:56.811920] [156] : 0x6c (108)
[2022-06-17 08:44:56.813616] [157] : 0x00 (0)
[2022-06-17 08:44:56.815604] [158] : 0x65 (101)
[2022-06-17 08:44:56.817261] [159] : 0x00 (0)
[2022-06-17 08:44:56.818903] [160] : 0x29 (41)
[2022-06-17 08:44:56.820534] [161] : 0x00 (0)
[2022-06-17 08:44:56.822186] [162] : 0x00 (0)
[2022-06-17 08:44:56.823885] [163] : 0x00 (0)
[2022-06-17 08:44:56.825538] size : 0x000000a4 (164)
[2022-06-17 08:44:56.827053] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\NETLOGON:Description]
[2022-06-17 08:44:56.828578] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:56.830220] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:56.831868] out: struct winreg_SetValue
[2022-06-17 08:44:56.833595] result : WERR_OK
[2022-06-17 08:44:56.835259] winreg_CloseKey: struct winreg_CloseKey
[2022-06-17 08:44:56.836909] in: struct winreg_CloseKey
[2022-06-17 08:44:56.838539] handle : *
[2022-06-17 08:44:56.840181] handle: struct policy_handle
[2022-06-17 08:44:56.841825] handle_type : 0x00000001 (1)
[2022-06-17 08:44:56.843531] uuid : 45963cf1-0923-4e0f-a4fa-e9dbe2adbe37
[2022-06-17 08:44:56.845203] regdb_close: decrementing refcount (4->3)
[2022-06-17 08:44:56.846847] winreg_CloseKey: struct winreg_CloseKey
[2022-06-17 08:44:56.848488] out: struct winreg_CloseKey
[2022-06-17 08:44:56.849996] handle : *
[2022-06-17 08:44:56.851483] handle: struct policy_handle
[2022-06-17 08:44:56.853007] handle_type : 0x00000000 (0)
[2022-06-17 08:44:56.854522] uuid : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:44:56.856044] result : WERR_OK
[2022-06-17 08:44:56.857549] winreg_CreateKey: struct winreg_CreateKey
[2022-06-17 08:44:56.859044] in: struct winreg_CreateKey
[2022-06-17 08:44:56.860525] handle : *
[2022-06-17 08:44:56.862008] handle: struct policy_handle
[2022-06-17 08:44:56.863556] handle_type : 0x00000001 (1)
[2022-06-17 08:44:56.865249] uuid : 3564441c-52f4-47de-a43c-e15155f8a4c8
[2022-06-17 08:44:56.866802] name: struct winreg_String
[2022-06-17 08:44:56.868315] name_len : 0x0068 (104)
[2022-06-17 08:44:56.869805] name_size : 0x0068 (104)
[2022-06-17 08:44:56.871303] name : *
[2022-06-17 08:44:56.872783] name : 'SYSTEM\CurrentControlSet\Services\NETLOGON\Security'
[2022-06-17 08:44:56.874373] keyclass: struct winreg_String
[2022-06-17 08:44:56.875871] name_len : 0x0002 (2)
[2022-06-17 08:44:56.877355] name_size : 0x0002 (2)
[2022-06-17 08:44:56.878851] name : *
[2022-06-17 08:44:56.880514] name : ''
[2022-06-17 08:44:56.882047] options : 0x00000000 (0)
[2022-06-17 08:44:56.883591] 0: REG_OPTION_VOLATILE
[2022-06-17 08:44:56.885090] 0: REG_OPTION_CREATE_LINK
[2022-06-17 08:44:56.886585] 0: REG_OPTION_BACKUP_RESTORE
[2022-06-17 08:44:56.888074] 0: REG_OPTION_OPEN_LINK
[2022-06-17 08:44:56.889579] access_mask : 0x02000000 (33554432)
[2022-06-17 08:44:56.891091] 0: KEY_QUERY_VALUE
[2022-06-17 08:44:56.892584] 0: KEY_SET_VALUE
[2022-06-17 08:44:56.894137] 0: KEY_CREATE_SUB_KEY
[2022-06-17 08:44:56.895838] 0: KEY_ENUMERATE_SUB_KEYS
[2022-06-17 08:44:56.897345] 0: KEY_NOTIFY
[2022-06-17 08:44:56.898853] 0: KEY_CREATE_LINK
[2022-06-17 08:44:56.900349] 0: KEY_WOW64_64KEY
[2022-06-17 08:44:56.901860] 0: KEY_WOW64_32KEY
[2022-06-17 08:44:56.903412] secdesc : NULL
[2022-06-17 08:44:56.904923] action_taken : *
[2022-06-17 08:44:56.906418] action_taken : REG_OPENED_EXISTING_KEY (2)
[2022-06-17 08:44:56.907930] _winreg_CreateKey called with parent key 'HKLM' and subkey name 'SYSTEM\CurrentControlSet\Services\NETLOGON\Security'
[2022-06-17 08:44:56.909452] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:56.911680] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:56.913277] regkey_open_onelevel: name = [SYSTEM]
[2022-06-17 08:44:56.914789] regdb_open: incrementing refcount (3->4)
[2022-06-17 08:44:56.916289] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM]
[2022-06-17 08:44:56.917777] pathtree_find: Enter [\HKLM\SYSTEM]
[2022-06-17 08:44:56.919261] pathtree_find: Exit
[2022-06-17 08:44:56.920726] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM]
[2022-06-17 08:44:56.922211] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:56.923748] regkey_open_onelevel: name = [CurrentControlSet]
[2022-06-17 08:44:56.925649] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:56.927309] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:56.928970] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:56.930620] pathtree_find: Exit
[2022-06-17 08:44:56.932234] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:56.933926] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:56.935575] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:56.937236] regkey_open_onelevel: name = [Services]
[2022-06-17 08:44:56.938883] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:56.940525] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:56.942173] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:56.943964] pathtree_find: Exit
[2022-06-17 08:44:56.945609] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:56.947265] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:56.948909] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:56.950570] regkey_open_onelevel: name = [NETLOGON]
[2022-06-17 08:44:56.952216] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:56.953896] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services\NETLOGON]
[2022-06-17 08:44:56.955548] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services\NETLOGON]
[2022-06-17 08:44:56.957192] pathtree_find: Exit
[2022-06-17 08:44:56.958811] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services\NETLOGON]
[2022-06-17 08:44:56.960479] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:56.962119] regkey_open_onelevel: name = [Security]
[2022-06-17 08:44:56.963800] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:56.965445] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services\NETLOGON\Security]
[2022-06-17 08:44:56.967127] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services\NETLOGON\Security]
[2022-06-17 08:44:56.968784] pathtree_find: Exit
[2022-06-17 08:44:56.970410] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services\NETLOGON\Security]
[2022-06-17 08:44:56.972082] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:56.973785] winreg_CreateKey: struct winreg_CreateKey
[2022-06-17 08:44:56.975437] out: struct winreg_CreateKey
[2022-06-17 08:44:56.977079] new_handle : *
[2022-06-17 08:44:56.978711] new_handle: struct policy_handle
[2022-06-17 08:44:56.980348] handle_type : 0x00000001 (1)
[2022-06-17 08:44:56.982004] uuid : f40758ff-aad3-43fe-8a49-680faf22de43
[2022-06-17 08:44:56.983711] action_taken : *
[2022-06-17 08:44:56.985360] action_taken : REG_OPENED_EXISTING_KEY (2)
[2022-06-17 08:44:56.987017] result : WERR_OK
[2022-06-17 08:44:56.988659] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:56.990289] in: struct winreg_SetValue
[2022-06-17 08:44:56.991922] handle : *
[2022-06-17 08:44:56.993601] handle: struct policy_handle
[2022-06-17 08:44:56.995252] handle_type : 0x00000001 (1)
[2022-06-17 08:44:56.996917] uuid : f40758ff-aad3-43fe-8a49-680faf22de43
[2022-06-17 08:44:56.998577] name: struct winreg_String
[2022-06-17 08:44:57.000214] name_len : 0x0012 (18)
[2022-06-17 08:44:57.001847] name_size : 0x0012 (18)
[2022-06-17 08:44:57.003555] name : *
[2022-06-17 08:44:57.005213] name : 'Security'
[2022-06-17 08:44:57.006852] type : REG_BINARY (3)
[2022-06-17 08:44:57.008489] data : *
[2022-06-17 08:44:57.010135] data: ARRAY(120)
[2022-06-17 08:44:57.011761] [0] : 0x01 (1)
[2022-06-17 08:44:57.013456] [1] : 0x00 (0)
[2022-06-17 08:44:57.015100] [2] : 0x04 (4)
[2022-06-17 08:44:57.016732] [3] : 0x80 (128)
[2022-06-17 08:44:57.018365] [4] : 0x00 (0)
[2022-06-17 08:44:57.019996] [5] : 0x00 (0)
[2022-06-17 08:44:57.021642] [6] : 0x00 (0)
[2022-06-17 08:44:57.023353] [7] : 0x00 (0)
[2022-06-17 08:44:57.025008] [8] : 0x00 (0)
[2022-06-17 08:44:57.026644] [9] : 0x00 (0)
[2022-06-17 08:44:57.028281] [10] : 0x00 (0)
[2022-06-17 08:44:57.029916] [11] : 0x00 (0)
[2022-06-17 08:44:57.031806] [12] : 0x00 (0)
[2022-06-17 08:44:57.033512] [13] : 0x00 (0)
[2022-06-17 08:44:57.035179] [14] : 0x00 (0)
[2022-06-17 08:44:57.036836] [15] : 0x00 (0)
[2022-06-17 08:44:57.038490] [16] : 0x14 (20)
[2022-06-17 08:44:57.040138] [17] : 0x00 (0)
[2022-06-17 08:44:57.041772] [18] : 0x00 (0)
[2022-06-17 08:44:57.043472] [19] : 0x00 (0)
[2022-06-17 08:44:57.052978] [20] : 0x02 (2)
[2022-06-17 08:44:57.054833] [21] : 0x00 (0)
[2022-06-17 08:44:57.056550] [22] : 0x64 (100)
[2022-06-17 08:44:57.058232] [23] : 0x00 (0)
[2022-06-17 08:44:57.059884] [24] : 0x04 (4)
[2022-06-17 08:44:57.061584] [25] : 0x00 (0)
[2022-06-17 08:44:57.066011] [26] : 0x00 (0)
[2022-06-17 08:44:57.067695] [27] : 0x00 (0)
[2022-06-17 08:44:57.069349] [28] : 0x00 (0)
[2022-06-17 08:44:57.071001] [29] : 0x00 (0)
[2022-06-17 08:44:57.072647] [30] : 0x14 (20)
[2022-06-17 08:44:57.074366] [31] : 0x00 (0)
[2022-06-17 08:44:57.076015] [32] : 0x8d (141)
[2022-06-17 08:44:57.077536] [33] : 0x01 (1)
[2022-06-17 08:44:57.079039] [34] : 0x02 (2)
[2022-06-17 08:44:57.080540] [35] : 0x00 (0)
[2022-06-17 08:44:57.082039] [36] : 0x01 (1)
[2022-06-17 08:44:57.083606] [37] : 0x01 (1)
[2022-06-17 08:44:57.085116] [38] : 0x00 (0)
[2022-06-17 08:44:57.086608] [39] : 0x00 (0)
[2022-06-17 08:44:57.088092] [40] : 0x00 (0)
[2022-06-17 08:44:57.089573] [41] : 0x00 (0)
[2022-06-17 08:44:57.091069] [42] : 0x00 (0)
[2022-06-17 08:44:57.093124] [43] : 0x01 (1)
[2022-06-17 08:44:57.094802] [44] : 0x00 (0)
[2022-06-17 08:44:57.096449] [45] : 0x00 (0)
[2022-06-17 08:44:57.098092] [46] : 0x00 (0)
[2022-06-17 08:44:57.099734] [47] : 0x00 (0)
[2022-06-17 08:44:57.101376] [48] : 0x00 (0)
[2022-06-17 08:44:57.103060] [49] : 0x00 (0)
[2022-06-17 08:44:57.104723] [50] : 0x18 (24)
[2022-06-17 08:44:57.106366] [51] : 0x00 (0)
[2022-06-17 08:44:57.107998] [52] : 0xfd (253)
[2022-06-17 08:44:57.109629] [53] : 0x01 (1)
[2022-06-17 08:44:57.111267] [54] : 0x02 (2)
[2022-06-17 08:44:57.112951] [55] : 0x00 (0)
[2022-06-17 08:44:57.114595] [56] : 0x01 (1)
[2022-06-17 08:44:57.116253] [57] : 0x02 (2)
[2022-06-17 08:44:57.117904] [58] : 0x00 (0)
[2022-06-17 08:44:57.119545] [59] : 0x00 (0)
[2022-06-17 08:44:57.121178] [60] : 0x00 (0)
[2022-06-17 08:44:57.122811] [61] : 0x00 (0)
[2022-06-17 08:44:57.124507] [62] : 0x00 (0)
[2022-06-17 08:44:57.126168] [63] : 0x05 (5)
[2022-06-17 08:44:57.127697] [64] : 0x20 (32)
[2022-06-17 08:44:57.129479] [65] : 0x00 (0)
[2022-06-17 08:44:57.131124] [66] : 0x00 (0)
[2022-06-17 08:44:57.132759] [67] : 0x00 (0)
[2022-06-17 08:44:57.134449] [68] : 0x23 (35)
[2022-06-17 08:44:57.136097] [69] : 0x02 (2)
[2022-06-17 08:44:57.137741] [70] : 0x00 (0)
[2022-06-17 08:44:57.139379] [71] : 0x00 (0)
[2022-06-17 08:44:57.141028] [72] : 0x00 (0)
[2022-06-17 08:44:57.142661] [73] : 0x00 (0)
[2022-06-17 08:44:57.144365] [74] : 0x18 (24)
[2022-06-17 08:44:57.146018] [75] : 0x00 (0)
[2022-06-17 08:44:57.147662] [76] : 0xff (255)
[2022-06-17 08:44:57.149295] [77] : 0x01 (1)
[2022-06-17 08:44:57.150938] [78] : 0x0f (15)
[2022-06-17 08:44:57.152580] [79] : 0x00 (0)
[2022-06-17 08:44:57.154357] [80] : 0x01 (1)
[2022-06-17 08:44:57.156012] [81] : 0x02 (2)
[2022-06-17 08:44:57.157649] [82] : 0x00 (0)
[2022-06-17 08:44:57.159289] [83] : 0x00 (0)
[2022-06-17 08:44:57.160915] [84] : 0x00 (0)
[2022-06-17 08:44:57.162553] [85] : 0x00 (0)
[2022-06-17 08:44:57.164295] [86] : 0x00 (0)
[2022-06-17 08:44:57.165950] [87] : 0x05 (5)
[2022-06-17 08:44:57.167593] [88] : 0x20 (32)
[2022-06-17 08:44:57.169227] [89] : 0x00 (0)
[2022-06-17 08:44:57.170863] [90] : 0x00 (0)
[2022-06-17 08:44:57.172506] [91] : 0x00 (0)
[2022-06-17 08:44:57.174229] [92] : 0x25 (37)
[2022-06-17 08:44:57.175870] [93] : 0x02 (2)
[2022-06-17 08:44:57.177509] [94] : 0x00 (0)
[2022-06-17 08:44:57.179147] [95] : 0x00 (0)
[2022-06-17 08:44:57.180784] [96] : 0x00 (0)
[2022-06-17 08:44:57.182424] [97] : 0x00 (0)
[2022-06-17 08:44:57.184145] [98] : 0x18 (24)
[2022-06-17 08:44:57.185799] [99] : 0x00 (0)
[2022-06-17 08:44:57.187443] [100] : 0xff (255)
[2022-06-17 08:44:57.189087] [101] : 0x01 (1)
[2022-06-17 08:44:57.190733] [102] : 0x0f (15)
[2022-06-17 08:44:57.192366] [103] : 0x00 (0)
[2022-06-17 08:44:57.194086] [104] : 0x01 (1)
[2022-06-17 08:44:57.195727] [105] : 0x02 (2)
[2022-06-17 08:44:57.197368] [106] : 0x00 (0)
[2022-06-17 08:44:57.199008] [107] : 0x00 (0)
[2022-06-17 08:44:57.200646] [108] : 0x00 (0)
[2022-06-17 08:44:57.202287] [109] : 0x00 (0)
[2022-06-17 08:44:57.204001] [110] : 0x00 (0)
[2022-06-17 08:44:57.205661] [111] : 0x05 (5)
[2022-06-17 08:44:57.207291] [112] : 0x20 (32)
[2022-06-17 08:44:57.208924] [113] : 0x00 (0)
[2022-06-17 08:44:57.210569] [114] : 0x00 (0)
[2022-06-17 08:44:57.212205] [115] : 0x00 (0)
[2022-06-17 08:44:57.213889] [116] : 0x20 (32)
[2022-06-17 08:44:57.215550] [117] : 0x02 (2)
[2022-06-17 08:44:57.217198] [118] : 0x00 (0)
[2022-06-17 08:44:57.218841] [119] : 0x00 (0)
[2022-06-17 08:44:57.220477] size : 0x00000078 (120)
[2022-06-17 08:44:57.222109] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\NETLOGON\Security:Security]
[2022-06-17 08:44:57.223835] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:57.225509] fetch_reg_values called for key 'HKLM\SYSTEM\CurrentControlSet\Services\NETLOGON\Security' (ops 0xb6ab32e8)
[2022-06-17 08:44:57.227197] regdb_fetch_values: Looking for values of key [HKLM\SYSTEM\CurrentControlSet\Services\NETLOGON\Security]
[2022-06-17 08:44:57.228869] regdb_unpack_values: value[0]: name[Security] len[120]
[2022-06-17 08:44:57.230501] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:57.232137] out: struct winreg_SetValue
[2022-06-17 08:44:57.233813] result : WERR_OK
[2022-06-17 08:44:57.235469] winreg_CloseKey: struct winreg_CloseKey
[2022-06-17 08:44:57.237116] in: struct winreg_CloseKey
[2022-06-17 08:44:57.238763] handle : *
[2022-06-17 08:44:57.240390] handle: struct policy_handle
[2022-06-17 08:44:57.242024] handle_type : 0x00000001 (1)
[2022-06-17 08:44:57.243723] uuid : f40758ff-aad3-43fe-8a49-680faf22de43
[2022-06-17 08:44:57.245383] regdb_close: decrementing refcount (4->3)
[2022-06-17 08:44:57.247016] winreg_CloseKey: struct winreg_CloseKey
[2022-06-17 08:44:57.248648] out: struct winreg_CloseKey
[2022-06-17 08:44:57.250284] handle : *
[2022-06-17 08:44:57.251941] handle: struct policy_handle
[2022-06-17 08:44:57.253635] handle_type : 0x00000000 (0)
[2022-06-17 08:44:57.255285] uuid : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:44:57.256923] result : WERR_OK
[2022-06-17 08:44:57.258567] winreg_CreateKey: struct winreg_CreateKey
[2022-06-17 08:44:57.260201] in: struct winreg_CreateKey
[2022-06-17 08:44:57.261831] handle : *
[2022-06-17 08:44:57.263511] handle: struct policy_handle
[2022-06-17 08:44:57.265169] handle_type : 0x00000001 (1)
[2022-06-17 08:44:57.266825] uuid : 3564441c-52f4-47de-a43c-e15155f8a4c8
[2022-06-17 08:44:57.268485] name: struct winreg_String
[2022-06-17 08:44:57.270119] name_len : 0x0062 (98)
[2022-06-17 08:44:57.271756] name_size : 0x0062 (98)
[2022-06-17 08:44:57.273444] name : *
[2022-06-17 08:44:57.275101] name : 'SYSTEM\CurrentControlSet\Services\RemoteRegistry'
[2022-06-17 08:44:57.276776] keyclass: struct winreg_String
[2022-06-17 08:44:57.278413] name_len : 0x0002 (2)
[2022-06-17 08:44:57.280050] name_size : 0x0002 (2)
[2022-06-17 08:44:57.281689] name : *
[2022-06-17 08:44:57.283370] name : ''
[2022-06-17 08:44:57.285027] options : 0x00000000 (0)
[2022-06-17 08:44:57.286667] 0: REG_OPTION_VOLATILE
[2022-06-17 08:44:57.288310] 0: REG_OPTION_CREATE_LINK
[2022-06-17 08:44:57.289949] 0: REG_OPTION_BACKUP_RESTORE
[2022-06-17 08:44:57.291574] 0: REG_OPTION_OPEN_LINK
[2022-06-17 08:44:57.293258] access_mask : 0x02000000 (33554432)
[2022-06-17 08:44:57.294922] 0: KEY_QUERY_VALUE
[2022-06-17 08:44:57.302957] 0: KEY_SET_VALUE
[2022-06-17 08:44:57.304682] 0: KEY_CREATE_SUB_KEY
[2022-06-17 08:44:57.306365] 0: KEY_ENUMERATE_SUB_KEYS
[2022-06-17 08:44:57.308020] 0: KEY_NOTIFY
[2022-06-17 08:44:57.313528] 0: KEY_CREATE_LINK
[2022-06-17 08:44:57.315340] 0: KEY_WOW64_64KEY
[2022-06-17 08:44:57.317030] 0: KEY_WOW64_32KEY
[2022-06-17 08:44:57.318698] secdesc : NULL
[2022-06-17 08:44:57.321174] action_taken : *
[2022-06-17 08:44:57.322849] action_taken : REG_ACTION_NONE (0)
[2022-06-17 08:44:57.324454] _winreg_CreateKey called with parent key 'HKLM' and subkey name 'SYSTEM\CurrentControlSet\Services\RemoteRegistry'
[2022-06-17 08:44:57.326005] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:57.327794] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:57.329447] regkey_open_onelevel: name = [SYSTEM]
[2022-06-17 08:44:57.331082] regdb_open: incrementing refcount (3->4)
[2022-06-17 08:44:57.332706] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM]
[2022-06-17 08:44:57.334411] pathtree_find: Enter [\HKLM\SYSTEM]
[2022-06-17 08:44:57.336075] pathtree_find: Exit
[2022-06-17 08:44:57.337586] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM]
[2022-06-17 08:44:57.339253] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:57.340902] regkey_open_onelevel: name = [CurrentControlSet]
[2022-06-17 08:44:57.342542] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:57.344267] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:57.345936] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:57.347587] pathtree_find: Exit
[2022-06-17 08:44:57.349215] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:57.350864] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:57.352496] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:57.354212] regkey_open_onelevel: name = [Services]
[2022-06-17 08:44:57.355840] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:57.357470] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:57.359137] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:57.360788] pathtree_find: Exit
[2022-06-17 08:44:57.362411] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:57.364161] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:57.365804] regkey_open_onelevel: name = [RemoteRegistry]
[2022-06-17 08:44:57.367446] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:57.369079] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services\RemoteRegistry]
[2022-06-17 08:44:57.370749] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services\RemoteRegistry]
[2022-06-17 08:44:57.372411] pathtree_find: Exit
[2022-06-17 08:44:57.374112] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services\RemoteRegistry]
[2022-06-17 08:44:57.375783] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:57.377419] winreg_CreateKey: struct winreg_CreateKey
[2022-06-17 08:44:57.379052] out: struct winreg_CreateKey
[2022-06-17 08:44:57.380674] new_handle : *
[2022-06-17 08:44:57.382305] new_handle: struct policy_handle
[2022-06-17 08:44:57.384041] handle_type : 0x00000001 (1)
[2022-06-17 08:44:57.385700] uuid : 1a3e1e5e-fd26-4094-9542-6003d1e4aeb8
[2022-06-17 08:44:57.387358] action_taken : *
[2022-06-17 08:44:57.388991] action_taken : REG_OPENED_EXISTING_KEY (2)
[2022-06-17 08:44:57.390616] result : WERR_OK
[2022-06-17 08:44:57.392250] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:57.393823] in: struct winreg_SetValue
[2022-06-17 08:44:57.395607] handle : *
[2022-06-17 08:44:57.397252] handle: struct policy_handle
[2022-06-17 08:44:57.398892] handle_type : 0x00000001 (1)
[2022-06-17 08:44:57.400520] uuid : 1a3e1e5e-fd26-4094-9542-6003d1e4aeb8
[2022-06-17 08:44:57.402159] name: struct winreg_String
[2022-06-17 08:44:57.403852] name_len : 0x000c (12)
[2022-06-17 08:44:57.405505] name_size : 0x000c (12)
[2022-06-17 08:44:57.407155] name : *
[2022-06-17 08:44:57.408803] name : 'Start'
[2022-06-17 08:44:57.410324] type : REG_DWORD (4)
[2022-06-17 08:44:57.411829] data : *
[2022-06-17 08:44:57.413600] data: ARRAY(4)
[2022-06-17 08:44:57.415244] [0] : 0x02 (2)
[2022-06-17 08:44:57.416879] [1] : 0x00 (0)
[2022-06-17 08:44:57.418520] [2] : 0x00 (0)
[2022-06-17 08:44:57.420165] [3] : 0x00 (0)
[2022-06-17 08:44:57.421820] size : 0x00000004 (4)
[2022-06-17 08:44:57.423523] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\RemoteRegistry:Start]
[2022-06-17 08:44:57.425198] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:57.426844] fetch_reg_values called for key 'HKLM\SYSTEM\CurrentControlSet\Services\RemoteRegistry' (ops 0xb6ab32e8)
[2022-06-17 08:44:57.428512] regdb_fetch_values: Looking for values of key [HKLM\SYSTEM\CurrentControlSet\Services\RemoteRegistry]
[2022-06-17 08:44:57.430183] regdb_unpack_values: value[0]: name[Start] len[4]
[2022-06-17 08:44:57.431830] regdb_unpack_values: value[1]: name[Type] len[4]
[2022-06-17 08:44:57.433525] regdb_unpack_values: value[2]: name[ErrorControl] len[4]
[2022-06-17 08:44:57.435193] regdb_unpack_values: value[3]: name[ObjectName] len[24]
[2022-06-17 08:44:57.436826] regdb_unpack_values: value[4]: name[DisplayName] len[48]
[2022-06-17 08:44:57.438464] regdb_unpack_values: value[5]: name[ImagePath] len[54]
[2022-06-17 08:44:57.440100] regdb_unpack_values: value[6]: name[Description] len[126]
[2022-06-17 08:44:57.441733] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:57.443417] out: struct winreg_SetValue
[2022-06-17 08:44:57.445057] result : WERR_OK
[2022-06-17 08:44:57.446702] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:57.448338] in: struct winreg_SetValue
[2022-06-17 08:44:57.449964] handle : *
[2022-06-17 08:44:57.451590] handle: struct policy_handle
[2022-06-17 08:44:57.453271] handle_type : 0x00000001 (1)
[2022-06-17 08:44:57.454931] uuid : 1a3e1e5e-fd26-4094-9542-6003d1e4aeb8
[2022-06-17 08:44:57.456592] name: struct winreg_String
[2022-06-17 08:44:57.458228] name_len : 0x000a (10)
[2022-06-17 08:44:57.459865] name_size : 0x000a (10)
[2022-06-17 08:44:57.461494] name : *
[2022-06-17 08:44:57.463047] name : 'Type'
[2022-06-17 08:44:57.464843] type : REG_DWORD (4)
[2022-06-17 08:44:57.466487] data : *
[2022-06-17 08:44:57.468125] data: ARRAY(4)
[2022-06-17 08:44:57.469750] [0] : 0x10 (16)
[2022-06-17 08:44:57.471383] [1] : 0x00 (0)
[2022-06-17 08:44:57.473058] [2] : 0x00 (0)
[2022-06-17 08:44:57.474717] [3] : 0x00 (0)
[2022-06-17 08:44:57.476354] size : 0x00000004 (4)
[2022-06-17 08:44:57.478004] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\RemoteRegistry:Type]
[2022-06-17 08:44:57.479669] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:57.481314] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:57.482993] out: struct winreg_SetValue
[2022-06-17 08:44:57.484643] result : WERR_OK
[2022-06-17 08:44:57.486164] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:57.487652] in: struct winreg_SetValue
[2022-06-17 08:44:57.489140] handle : *
[2022-06-17 08:44:57.490919] handle: struct policy_handle
[2022-06-17 08:44:57.492568] handle_type : 0x00000001 (1)
[2022-06-17 08:44:57.494314] uuid : 1a3e1e5e-fd26-4094-9542-6003d1e4aeb8
[2022-06-17 08:44:57.495972] name: struct winreg_String
[2022-06-17 08:44:57.497603] name_len : 0x001a (26)
[2022-06-17 08:44:57.499251] name_size : 0x001a (26)
[2022-06-17 08:44:57.500897] name : *
[2022-06-17 08:44:57.502535] name : 'ErrorControl'
[2022-06-17 08:44:57.504273] type : REG_DWORD (4)
[2022-06-17 08:44:57.505919] data : *
[2022-06-17 08:44:57.507548] data: ARRAY(4)
[2022-06-17 08:44:57.509190] [0] : 0x01 (1)
[2022-06-17 08:44:57.510837] [1] : 0x00 (0)
[2022-06-17 08:44:57.512461] [2] : 0x00 (0)
[2022-06-17 08:44:57.514162] [3] : 0x00 (0)
[2022-06-17 08:44:57.515804] size : 0x00000004 (4)
[2022-06-17 08:44:57.517454] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\RemoteRegistry:ErrorControl]
[2022-06-17 08:44:57.519133] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:57.520777] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:57.522289] out: struct winreg_SetValue
[2022-06-17 08:44:57.524108] result : WERR_OK
[2022-06-17 08:44:57.525755] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:57.527407] in: struct winreg_SetValue
[2022-06-17 08:44:57.529046] handle : *
[2022-06-17 08:44:57.530673] handle: struct policy_handle
[2022-06-17 08:44:57.532321] handle_type : 0x00000001 (1)
[2022-06-17 08:44:57.534049] uuid : 1a3e1e5e-fd26-4094-9542-6003d1e4aeb8
[2022-06-17 08:44:57.535702] name: struct winreg_String
[2022-06-17 08:44:57.537344] name_len : 0x0016 (22)
[2022-06-17 08:44:57.538979] name_size : 0x0016 (22)
[2022-06-17 08:44:57.540622] name : *
[2022-06-17 08:44:57.542254] name : 'ObjectName'
[2022-06-17 08:44:57.543957] type : REG_SZ (1)
[2022-06-17 08:44:57.545604] data : *
[2022-06-17 08:44:57.547235] data: ARRAY(24)
[2022-06-17 08:44:57.548856] [0] : 0x4c (76)
[2022-06-17 08:44:57.550487] [1] : 0x00 (0)
[2022-06-17 08:44:57.552129] [2] : 0x6f (111)
[2022-06-17 08:44:57.553826] [3] : 0x00 (0)
[2022-06-17 08:44:57.555597] [4] : 0x63 (99)
[2022-06-17 08:44:57.557239] [5] : 0x00 (0)
[2022-06-17 08:44:57.562974] [6] : 0x61 (97)
[2022-06-17 08:44:57.571272] [7] : 0x00 (0)
[2022-06-17 08:44:57.573173] [8] : 0x6c (108)
[2022-06-17 08:44:57.574901] [9] : 0x00 (0)
[2022-06-17 08:44:57.576586] [10] : 0x53 (83)
[2022-06-17 08:44:57.578244] [11] : 0x00 (0)
[2022-06-17 08:44:57.579886] [12] : 0x79 (121)
[2022-06-17 08:44:57.581521] [13] : 0x00 (0)
[2022-06-17 08:44:57.583210] [14] : 0x73 (115)
[2022-06-17 08:44:57.584865] [15] : 0x00 (0)
[2022-06-17 08:44:57.586504] [16] : 0x74 (116)
[2022-06-17 08:44:57.588142] [17] : 0x00 (0)
[2022-06-17 08:44:57.589787] [18] : 0x65 (101)
[2022-06-17 08:44:57.591434] [19] : 0x00 (0)
[2022-06-17 08:44:57.593121] [20] : 0x6d (109)
[2022-06-17 08:44:57.594779] [21] : 0x00 (0)
[2022-06-17 08:44:57.596424] [22] : 0x00 (0)
[2022-06-17 08:44:57.598065] [23] : 0x00 (0)
[2022-06-17 08:44:57.599715] size : 0x00000018 (24)
[2022-06-17 08:44:57.601358] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\RemoteRegistry:ObjectName]
[2022-06-17 08:44:57.603084] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:57.604760] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:57.606403] out: struct winreg_SetValue
[2022-06-17 08:44:57.608032] result : WERR_OK
[2022-06-17 08:44:57.609674] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:57.611196] in: struct winreg_SetValue
[2022-06-17 08:44:57.612983] handle : *
[2022-06-17 08:44:57.614617] handle: struct policy_handle
[2022-06-17 08:44:57.616266] handle_type : 0x00000001 (1)
[2022-06-17 08:44:57.617924] uuid : 1a3e1e5e-fd26-4094-9542-6003d1e4aeb8
[2022-06-17 08:44:57.619572] name: struct winreg_String
[2022-06-17 08:44:57.621200] name_len : 0x0018 (24)
[2022-06-17 08:44:57.622844] name_size : 0x0018 (24)
[2022-06-17 08:44:57.624552] name : *
[2022-06-17 08:44:57.626206] name : 'DisplayName'
[2022-06-17 08:44:57.627853] type : REG_SZ (1)
[2022-06-17 08:44:57.629481] data : *
[2022-06-17 08:44:57.631102] data: ARRAY(48)
[2022-06-17 08:44:57.632731] [0] : 0x52 (82)
[2022-06-17 08:44:57.634440] [1] : 0x00 (0)
[2022-06-17 08:44:57.636088] [2] : 0x65 (101)
[2022-06-17 08:44:57.637729] [3] : 0x00 (0)
[2022-06-17 08:44:57.639365] [4] : 0x6d (109)
[2022-06-17 08:44:57.640997] [5] : 0x00 (0)
[2022-06-17 08:44:57.642638] [6] : 0x6f (111)
[2022-06-17 08:44:57.644352] [7] : 0x00 (0)
[2022-06-17 08:44:57.645995] [8] : 0x74 (116)
[2022-06-17 08:44:57.647642] [9] : 0x00 (0)
[2022-06-17 08:44:57.649165] [10] : 0x65 (101)
[2022-06-17 08:44:57.650668] [11] : 0x00 (0)
[2022-06-17 08:44:57.652164] [12] : 0x20 (32)
[2022-06-17 08:44:57.653708] [13] : 0x00 (0)
[2022-06-17 08:44:57.655206] [14] : 0x52 (82)
[2022-06-17 08:44:57.656705] [15] : 0x00 (0)
[2022-06-17 08:44:57.658196] [16] : 0x65 (101)
[2022-06-17 08:44:57.659698] [17] : 0x00 (0)
[2022-06-17 08:44:57.661198] [18] : 0x67 (103)
[2022-06-17 08:44:57.662689] [19] : 0x00 (0)
[2022-06-17 08:44:57.664501] [20] : 0x69 (105)
[2022-06-17 08:44:57.666027] [21] : 0x00 (0)
[2022-06-17 08:44:57.667524] [22] : 0x73 (115)
[2022-06-17 08:44:57.669022] [23] : 0x00 (0)
[2022-06-17 08:44:57.670524] [24] : 0x74 (116)
[2022-06-17 08:44:57.672029] [25] : 0x00 (0)
[2022-06-17 08:44:57.673579] [26] : 0x72 (114)
[2022-06-17 08:44:57.675084] [27] : 0x00 (0)
[2022-06-17 08:44:57.676579] [28] : 0x79 (121)
[2022-06-17 08:44:57.678080] [29] : 0x00 (0)
[2022-06-17 08:44:57.679777] [30] : 0x20 (32)
[2022-06-17 08:44:57.681434] [31] : 0x00 (0)
[2022-06-17 08:44:57.682991] [32] : 0x53 (83)
[2022-06-17 08:44:57.684507] [33] : 0x00 (0)
[2022-06-17 08:44:57.686011] [34] : 0x65 (101)
[2022-06-17 08:44:57.687507] [35] : 0x00 (0)
[2022-06-17 08:44:57.688992] [36] : 0x72 (114)
[2022-06-17 08:44:57.690485] [37] : 0x00 (0)
[2022-06-17 08:44:57.691976] [38] : 0x76 (118)
[2022-06-17 08:44:57.693712] [39] : 0x00 (0)
[2022-06-17 08:44:57.695254] [40] : 0x69 (105)
[2022-06-17 08:44:57.696761] [41] : 0x00 (0)
[2022-06-17 08:44:57.698247] [42] : 0x63 (99)
[2022-06-17 08:44:57.699742] [43] : 0x00 (0)
[2022-06-17 08:44:57.701231] [44] : 0x65 (101)
[2022-06-17 08:44:57.702721] [45] : 0x00 (0)
[2022-06-17 08:44:57.704423] [46] : 0x00 (0)
[2022-06-17 08:44:57.706512] [47] : 0x00 (0)
[2022-06-17 08:44:57.708168] size : 0x00000030 (48)
[2022-06-17 08:44:57.709816] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\RemoteRegistry:DisplayName]
[2022-06-17 08:44:57.711492] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:57.713196] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:57.714840] out: struct winreg_SetValue
[2022-06-17 08:44:57.716485] result : WERR_OK
[2022-06-17 08:44:57.718141] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:57.719787] in: struct winreg_SetValue
[2022-06-17 08:44:57.721416] handle : *
[2022-06-17 08:44:57.723096] handle: struct policy_handle
[2022-06-17 08:44:57.724741] handle_type : 0x00000001 (1)
[2022-06-17 08:44:57.726387] uuid : 1a3e1e5e-fd26-4094-9542-6003d1e4aeb8
[2022-06-17 08:44:57.728050] name: struct winreg_String
[2022-06-17 08:44:57.729699] name_len : 0x0014 (20)
[2022-06-17 08:44:57.731351] name_size : 0x0014 (20)
[2022-06-17 08:44:57.733032] name : *
[2022-06-17 08:44:57.734684] name : 'ImagePath'
[2022-06-17 08:44:57.736332] type : REG_SZ (1)
[2022-06-17 08:44:57.737966] data : *
[2022-06-17 08:44:57.739598] data: ARRAY(54)
[2022-06-17 08:44:57.741232] [0] : 0x2f (47)
[2022-06-17 08:44:57.742922] [1] : 0x00 (0)
[2022-06-17 08:44:57.744591] [2] : 0x75 (117)
[2022-06-17 08:44:57.746245] [3] : 0x00 (0)
[2022-06-17 08:44:57.747883] [4] : 0x73 (115)
[2022-06-17 08:44:57.749520] [5] : 0x00 (0)
[2022-06-17 08:44:57.751152] [6] : 0x72 (114)
[2022-06-17 08:44:57.752794] [7] : 0x00 (0)
[2022-06-17 08:44:57.754503] [8] : 0x2f (47)
[2022-06-17 08:44:57.756146] [9] : 0x00 (0)
[2022-06-17 08:44:57.757791] [10] : 0x6c (108)
[2022-06-17 08:44:57.759445] [11] : 0x00 (0)
[2022-06-17 08:44:57.760953] [12] : 0x69 (105)
[2022-06-17 08:44:57.762455] [13] : 0x00 (0)
[2022-06-17 08:44:57.764292] [14] : 0x62 (98)
[2022-06-17 08:44:57.765947] [15] : 0x00 (0)
[2022-06-17 08:44:57.767582] [16] : 0x2f (47)
[2022-06-17 08:44:57.769229] [17] : 0x00 (0)
[2022-06-17 08:44:57.770857] [18] : 0x73 (115)
[2022-06-17 08:44:57.772494] [19] : 0x00 (0)
[2022-06-17 08:44:57.774200] [20] : 0x61 (97)
[2022-06-17 08:44:57.775851] [21] : 0x00 (0)
[2022-06-17 08:44:57.777378] [22] : 0x6d (109)
[2022-06-17 08:44:57.779023] [23] : 0x00 (0)
[2022-06-17 08:44:57.780676] [24] : 0x62 (98)
[2022-06-17 08:44:57.782318] [25] : 0x00 (0)
[2022-06-17 08:44:57.784734] [26] : 0x61 (97)
[2022-06-17 08:44:57.786389] [27] : 0x00 (0)
[2022-06-17 08:44:57.788038] [28] : 0x2f (47)
[2022-06-17 08:44:57.789690] [29] : 0x00 (0)
[2022-06-17 08:44:57.791348] [30] : 0x73 (115)
[2022-06-17 08:44:57.793032] [31] : 0x00 (0)
[2022-06-17 08:44:57.794560] [32] : 0x76 (118)
[2022-06-17 08:44:57.796061] [33] : 0x00 (0)
[2022-06-17 08:44:57.797791] [34] : 0x63 (99)
[2022-06-17 08:44:57.799440] [35] : 0x00 (0)
[2022-06-17 08:44:57.801080] [36] : 0x63 (99)
[2022-06-17 08:44:57.802731] [37] : 0x00 (0)
[2022-06-17 08:44:57.804443] [38] : 0x74 (116)
[2022-06-17 08:44:57.806093] [39] : 0x00 (0)
[2022-06-17 08:44:57.807729] [40] : 0x6c (108)
[2022-06-17 08:44:57.809371] [41] : 0x00 (0)
[2022-06-17 08:44:57.823029] [42] : 0x2f (47)
[2022-06-17 08:44:57.824997] [43] : 0x00 (0)
[2022-06-17 08:44:57.826741] [44] : 0x73 (115)
[2022-06-17 08:44:57.828305] [45] : 0x00 (0)
[2022-06-17 08:44:57.830085] [46] : 0x6d (109)
[2022-06-17 08:44:57.831740] [47] : 0x00 (0)
[2022-06-17 08:44:57.833433] [48] : 0x62 (98)
[2022-06-17 08:44:57.835093] [49] : 0x00 (0)
[2022-06-17 08:44:57.836742] [50] : 0x64 (100)
[2022-06-17 08:44:57.838399] [51] : 0x00 (0)
[2022-06-17 08:44:57.841039] [52] : 0x00 (0)
[2022-06-17 08:44:57.842705] [53] : 0x00 (0)
[2022-06-17 08:44:57.844418] size : 0x00000036 (54)
[2022-06-17 08:44:57.846070] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\RemoteRegistry:ImagePath]
[2022-06-17 08:44:57.847734] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:57.849387] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:57.851026] out: struct winreg_SetValue
[2022-06-17 08:44:57.852678] result : WERR_OK
[2022-06-17 08:44:57.854378] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:57.856040] in: struct winreg_SetValue
[2022-06-17 08:44:57.857676] handle : *
[2022-06-17 08:44:57.859315] handle: struct policy_handle
[2022-06-17 08:44:57.860945] handle_type : 0x00000001 (1)
[2022-06-17 08:44:57.862586] uuid : 1a3e1e5e-fd26-4094-9542-6003d1e4aeb8
[2022-06-17 08:44:57.864336] name: struct winreg_String
[2022-06-17 08:44:57.865982] name_len : 0x0018 (24)
[2022-06-17 08:44:57.867629] name_size : 0x0018 (24)
[2022-06-17 08:44:57.869264] name : *
[2022-06-17 08:44:57.870907] name : 'Description'
[2022-06-17 08:44:57.872541] type : REG_SZ (1)
[2022-06-17 08:44:57.874269] data : *
[2022-06-17 08:44:57.875922] data: ARRAY(126)
[2022-06-17 08:44:57.877567] [0] : 0x49 (73)
[2022-06-17 08:44:57.879215] [1] : 0x00 (0)
[2022-06-17 08:44:57.880856] [2] : 0x6e (110)
[2022-06-17 08:44:57.882487] [3] : 0x00 (0)
[2022-06-17 08:44:57.884186] [4] : 0x74 (116)
[2022-06-17 08:44:57.885828] [5] : 0x00 (0)
[2022-06-17 08:44:57.887481] [6] : 0x65 (101)
[2022-06-17 08:44:57.889126] [7] : 0x00 (0)
[2022-06-17 08:44:57.890770] [8] : 0x72 (114)
[2022-06-17 08:44:57.892417] [9] : 0x00 (0)
[2022-06-17 08:44:57.894135] [10] : 0x6e (110)
[2022-06-17 08:44:57.895653] [11] : 0x00 (0)
[2022-06-17 08:44:57.897144] [12] : 0x61 (97)
[2022-06-17 08:44:57.898775] [13] : 0x00 (0)
[2022-06-17 08:44:57.900431] [14] : 0x6c (108)
[2022-06-17 08:44:57.902075] [15] : 0x00 (0)
[2022-06-17 08:44:57.903784] [16] : 0x20 (32)
[2022-06-17 08:44:57.905438] [17] : 0x00 (0)
[2022-06-17 08:44:57.907069] [18] : 0x73 (115)
[2022-06-17 08:44:57.908710] [19] : 0x00 (0)
[2022-06-17 08:44:57.910343] [20] : 0x65 (101)
[2022-06-17 08:44:57.911988] [21] : 0x00 (0)
[2022-06-17 08:44:57.913677] [22] : 0x72 (114)
[2022-06-17 08:44:57.915329] [23] : 0x00 (0)
[2022-06-17 08:44:57.916966] [24] : 0x76 (118)
[2022-06-17 08:44:57.918620] [25] : 0x00 (0)
[2022-06-17 08:44:57.920254] [26] : 0x69 (105)
[2022-06-17 08:44:57.921898] [27] : 0x00 (0)
[2022-06-17 08:44:57.923584] [28] : 0x63 (99)
[2022-06-17 08:44:57.925240] [29] : 0x00 (0)
[2022-06-17 08:44:57.926883] [30] : 0x65 (101)
[2022-06-17 08:44:57.928519] [31] : 0x00 (0)
[2022-06-17 08:44:57.930146] [32] : 0x20 (32)
[2022-06-17 08:44:57.931784] [33] : 0x00 (0)
[2022-06-17 08:44:57.933474] [34] : 0x70 (112)
[2022-06-17 08:44:57.935125] [35] : 0x00 (0)
[2022-06-17 08:44:57.936776] [36] : 0x72 (114)
[2022-06-17 08:44:57.938418] [37] : 0x00 (0)
[2022-06-17 08:44:57.940059] [38] : 0x6f (111)
[2022-06-17 08:44:57.941691] [39] : 0x00 (0)
[2022-06-17 08:44:57.943400] [40] : 0x76 (118)
[2022-06-17 08:44:57.945069] [41] : 0x00 (0)
[2022-06-17 08:44:57.946719] [42] : 0x69 (105)
[2022-06-17 08:44:57.948363] [43] : 0x00 (0)
[2022-06-17 08:44:57.950004] [44] : 0x64 (100)
[2022-06-17 08:44:57.951649] [45] : 0x00 (0)
[2022-06-17 08:44:57.953328] [46] : 0x69 (105)
[2022-06-17 08:44:57.954976] [47] : 0x00 (0)
[2022-06-17 08:44:57.956605] [48] : 0x6e (110)
[2022-06-17 08:44:57.958240] [49] : 0x00 (0)
[2022-06-17 08:44:57.959871] [50] : 0x67 (103)
[2022-06-17 08:44:57.961526] [51] : 0x00 (0)
[2022-06-17 08:44:57.963213] [52] : 0x20 (32)
[2022-06-17 08:44:57.964866] [53] : 0x00 (0)
[2022-06-17 08:44:57.966497] [54] : 0x72 (114)
[2022-06-17 08:44:57.968140] [55] : 0x00 (0)
[2022-06-17 08:44:57.969791] [56] : 0x65 (101)
[2022-06-17 08:44:57.971433] [57] : 0x00 (0)
[2022-06-17 08:44:57.973121] [58] : 0x6d (109)
[2022-06-17 08:44:57.974800] [59] : 0x00 (0)
[2022-06-17 08:44:57.976442] [60] : 0x6f (111)
[2022-06-17 08:44:57.978074] [61] : 0x00 (0)
[2022-06-17 08:44:57.979704] [62] : 0x74 (116)
[2022-06-17 08:44:57.981338] [63] : 0x00 (0)
[2022-06-17 08:44:57.983076] [64] : 0x65 (101)
[2022-06-17 08:44:57.984781] [65] : 0x00 (0)
[2022-06-17 08:44:57.986438] [66] : 0x20 (32)
[2022-06-17 08:44:57.988085] [67] : 0x00 (0)
[2022-06-17 08:44:57.989732] [68] : 0x61 (97)
[2022-06-17 08:44:57.991370] [69] : 0x00 (0)
[2022-06-17 08:44:57.993042] [70] : 0x63 (99)
[2022-06-17 08:44:57.994689] [71] : 0x00 (0)
[2022-06-17 08:44:57.996330] [72] : 0x63 (99)
[2022-06-17 08:44:57.997978] [73] : 0x00 (0)
[2022-06-17 08:44:57.999620] [74] : 0x65 (101)
[2022-06-17 08:44:58.001254] [75] : 0x00 (0)
[2022-06-17 08:44:58.002940] [76] : 0x73 (115)
[2022-06-17 08:44:58.004597] [77] : 0x00 (0)
[2022-06-17 08:44:58.006241] [78] : 0x73 (115)
[2022-06-17 08:44:58.007881] [79] : 0x00 (0)
[2022-06-17 08:44:58.009653] [80] : 0x20 (32)
[2022-06-17 08:44:58.011311] [81] : 0x00 (0)
[2022-06-17 08:44:58.012993] [82] : 0x74 (116)
[2022-06-17 08:44:58.014655] [83] : 0x00 (0)
[2022-06-17 08:44:58.016306] [84] : 0x6f (111)
[2022-06-17 08:44:58.017935] [85] : 0x00 (0)
[2022-06-17 08:44:58.019560] [86] : 0x20 (32)
[2022-06-17 08:44:58.021195] [87] : 0x00 (0)
[2022-06-17 08:44:58.022838] [88] : 0x74 (116)
[2022-06-17 08:44:58.024563] [89] : 0x00 (0)
[2022-06-17 08:44:58.026206] [90] : 0x68 (104)
[2022-06-17 08:44:58.027834] [91] : 0x00 (0)
[2022-06-17 08:44:58.029472] [92] : 0x65 (101)
[2022-06-17 08:44:58.031107] [93] : 0x00 (0)
[2022-06-17 08:44:58.032742] [94] : 0x20 (32)
[2022-06-17 08:44:58.034461] [95] : 0x00 (0)
[2022-06-17 08:44:58.036109] [96] : 0x53 (83)
[2022-06-17 08:44:58.037757] [97] : 0x00 (0)
[2022-06-17 08:44:58.039388] [98] : 0x61 (97)
[2022-06-17 08:44:58.041027] [99] : 0x00 (0)
[2022-06-17 08:44:58.042667] [100] : 0x6d (109)
[2022-06-17 08:44:58.044363] [101] : 0x00 (0)
[2022-06-17 08:44:58.046014] [102] : 0x62 (98)
[2022-06-17 08:44:58.047855] [103] : 0x00 (0)
[2022-06-17 08:44:58.049536] [104] : 0x61 (97)
[2022-06-17 08:44:58.051192] [105] : 0x00 (0)
[2022-06-17 08:44:58.052831] [106] : 0x20 (32)
[2022-06-17 08:44:58.054531] [107] : 0x00 (0)
[2022-06-17 08:44:58.056177] [108] : 0x72 (114)
[2022-06-17 08:44:58.057828] [109] : 0x00 (0)
[2022-06-17 08:44:58.059474] [110] : 0x65 (101)
[2022-06-17 08:44:58.061118] [111] : 0x00 (0)
[2022-06-17 08:44:58.062747] [112] : 0x67 (103)
[2022-06-17 08:44:58.064513] [113] : 0x00 (0)
[2022-06-17 08:44:58.072993] [114] : 0x69 (105)
[2022-06-17 08:44:58.074921] [115] : 0x00 (0)
[2022-06-17 08:44:58.076654] [116] : 0x73 (115)
[2022-06-17 08:44:58.078330] [117] : 0x00 (0)
[2022-06-17 08:44:58.089382] [118] : 0x74 (116)
[2022-06-17 08:44:58.091299] [119] : 0x00 (0)
[2022-06-17 08:44:58.093067] [120] : 0x72 (114)
[2022-06-17 08:44:58.094762] [121] : 0x00 (0)
[2022-06-17 08:44:58.096408] [122] : 0x79 (121)
[2022-06-17 08:44:58.098064] [123] : 0x00 (0)
[2022-06-17 08:44:58.099721] [124] : 0x00 (0)
[2022-06-17 08:44:58.101362] [125] : 0x00 (0)
[2022-06-17 08:44:58.103055] size : 0x0000007e (126)
[2022-06-17 08:44:58.104716] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\RemoteRegistry:Description]
[2022-06-17 08:44:58.106376] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:58.108016] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:58.109650] out: struct winreg_SetValue
[2022-06-17 08:44:58.111287] result : WERR_OK
[2022-06-17 08:44:58.112979] winreg_CloseKey: struct winreg_CloseKey
[2022-06-17 08:44:58.114635] in: struct winreg_CloseKey
[2022-06-17 08:44:58.116281] handle : *
[2022-06-17 08:44:58.117798] handle: struct policy_handle
[2022-06-17 08:44:58.119543] handle_type : 0x00000001 (1)
[2022-06-17 08:44:58.121182] uuid : 1a3e1e5e-fd26-4094-9542-6003d1e4aeb8
[2022-06-17 08:44:58.122842] regdb_close: decrementing refcount (4->3)
[2022-06-17 08:44:58.124543] winreg_CloseKey: struct winreg_CloseKey
[2022-06-17 08:44:58.126191] out: struct winreg_CloseKey
[2022-06-17 08:44:58.127698] handle : *
[2022-06-17 08:44:58.129355] handle: struct policy_handle
[2022-06-17 08:44:58.131023] handle_type : 0x00000000 (0)
[2022-06-17 08:44:58.132784] uuid : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:44:58.134504] result : WERR_OK
[2022-06-17 08:44:58.136160] winreg_CreateKey: struct winreg_CreateKey
[2022-06-17 08:44:58.137804] in: struct winreg_CreateKey
[2022-06-17 08:44:58.139437] handle : *
[2022-06-17 08:44:58.141071] handle: struct policy_handle
[2022-06-17 08:44:58.142683] handle_type : 0x00000001 (1)
[2022-06-17 08:44:58.144265] uuid : 3564441c-52f4-47de-a43c-e15155f8a4c8
[2022-06-17 08:44:58.146027] name: struct winreg_String
[2022-06-17 08:44:58.147677] name_len : 0x0074 (116)
[2022-06-17 08:44:58.149328] name_size : 0x0074 (116)
[2022-06-17 08:44:58.150976] name : *
[2022-06-17 08:44:58.152616] name : 'SYSTEM\CurrentControlSet\Services\RemoteRegistry\Security'
[2022-06-17 08:44:58.154380] keyclass: struct winreg_String
[2022-06-17 08:44:58.156031] name_len : 0x0002 (2)
[2022-06-17 08:44:58.157675] name_size : 0x0002 (2)
[2022-06-17 08:44:58.159311] name : *
[2022-06-17 08:44:58.160948] name : ''
[2022-06-17 08:44:58.162578] options : 0x00000000 (0)
[2022-06-17 08:44:58.164310] 0: REG_OPTION_VOLATILE
[2022-06-17 08:44:58.165955] 0: REG_OPTION_CREATE_LINK
[2022-06-17 08:44:58.167578] 0: REG_OPTION_BACKUP_RESTORE
[2022-06-17 08:44:58.169212] 0: REG_OPTION_OPEN_LINK
[2022-06-17 08:44:58.170833] access_mask : 0x02000000 (33554432)
[2022-06-17 08:44:58.172479] 0: KEY_QUERY_VALUE
[2022-06-17 08:44:58.174231] 0: KEY_SET_VALUE
[2022-06-17 08:44:58.175874] 0: KEY_CREATE_SUB_KEY
[2022-06-17 08:44:58.177506] 0: KEY_ENUMERATE_SUB_KEYS
[2022-06-17 08:44:58.179137] 0: KEY_NOTIFY
[2022-06-17 08:44:58.180776] 0: KEY_CREATE_LINK
[2022-06-17 08:44:58.182413] 0: KEY_WOW64_64KEY
[2022-06-17 08:44:58.184170] 0: KEY_WOW64_32KEY
[2022-06-17 08:44:58.185831] secdesc : NULL
[2022-06-17 08:44:58.187464] action_taken : *
[2022-06-17 08:44:58.189088] action_taken : REG_OPENED_EXISTING_KEY (2)
[2022-06-17 08:44:58.190730] _winreg_CreateKey called with parent key 'HKLM' and subkey name 'SYSTEM\CurrentControlSet\Services\RemoteRegistry\Security'
[2022-06-17 08:44:58.192389] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:58.194099] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:58.195751] regkey_open_onelevel: name = [SYSTEM]
[2022-06-17 08:44:58.197393] regdb_open: incrementing refcount (3->4)
[2022-06-17 08:44:58.199038] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM]
[2022-06-17 08:44:58.200677] pathtree_find: Enter [\HKLM\SYSTEM]
[2022-06-17 08:44:58.202308] pathtree_find: Exit
[2022-06-17 08:44:58.203990] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM]
[2022-06-17 08:44:58.205639] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:58.207289] regkey_open_onelevel: name = [CurrentControlSet]
[2022-06-17 08:44:58.208934] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:58.210567] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:58.212227] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:58.213905] pathtree_find: Exit
[2022-06-17 08:44:58.215529] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:58.217189] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:58.218819] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:58.220469] regkey_open_onelevel: name = [Services]
[2022-06-17 08:44:58.222105] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:58.223823] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:58.225488] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:58.227030] pathtree_find: Exit
[2022-06-17 08:44:58.228630] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:58.230290] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:58.231919] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:58.233625] regkey_open_onelevel: name = [RemoteRegistry]
[2022-06-17 08:44:58.235288] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:58.236928] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services\RemoteRegistry]
[2022-06-17 08:44:58.238589] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services\RemoteRegistry]
[2022-06-17 08:44:58.240239] pathtree_find: Exit
[2022-06-17 08:44:58.241858] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services\RemoteRegistry]
[2022-06-17 08:44:58.243581] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:58.245233] regkey_open_onelevel: name = [Security]
[2022-06-17 08:44:58.246880] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:58.248506] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services\RemoteRegistry\Security]
[2022-06-17 08:44:58.250171] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services\RemoteRegistry\Security]
[2022-06-17 08:44:58.251813] pathtree_find: Exit
[2022-06-17 08:44:58.253479] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services\RemoteRegistry\Security]
[2022-06-17 08:44:58.255169] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:58.256812] winreg_CreateKey: struct winreg_CreateKey
[2022-06-17 08:44:58.258457] out: struct winreg_CreateKey
[2022-06-17 08:44:58.260095] new_handle : *
[2022-06-17 08:44:58.261731] new_handle: struct policy_handle
[2022-06-17 08:44:58.263437] handle_type : 0x00000001 (1)
[2022-06-17 08:44:58.265754] uuid : ffd8734b-5dee-4869-b02a-395d21f08529
[2022-06-17 08:44:58.268233] action_taken : *
[2022-06-17 08:44:58.269936] action_taken : REG_OPENED_EXISTING_KEY (2)
[2022-06-17 08:44:58.272718] result : WERR_OK
[2022-06-17 08:44:58.274608] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:58.276314] in: struct winreg_SetValue
[2022-06-17 08:44:58.277972] handle : *
[2022-06-17 08:44:58.279609] handle: struct policy_handle
[2022-06-17 08:44:58.281254] handle_type : 0x00000001 (1)
[2022-06-17 08:44:58.282946] uuid : ffd8734b-5dee-4869-b02a-395d21f08529
[2022-06-17 08:44:58.284626] name: struct winreg_String
[2022-06-17 08:44:58.286265] name_len : 0x0012 (18)
[2022-06-17 08:44:58.287929] name_size : 0x0012 (18)
[2022-06-17 08:44:58.289580] name : *
[2022-06-17 08:44:58.291203] name : 'Security'
[2022-06-17 08:44:58.292840] type : REG_BINARY (3)
[2022-06-17 08:44:58.294551] data : *
[2022-06-17 08:44:58.296194] data: ARRAY(120)
[2022-06-17 08:44:58.297835] [0] : 0x01 (1)
[2022-06-17 08:44:58.299489] [1] : 0x00 (0)
[2022-06-17 08:44:58.301134] [2] : 0x04 (4)
[2022-06-17 08:44:58.302767] [3] : 0x80 (128)
[2022-06-17 08:44:58.304456] [4] : 0x00 (0)
[2022-06-17 08:44:58.306096] [5] : 0x00 (0)
[2022-06-17 08:44:58.307744] [6] : 0x00 (0)
[2022-06-17 08:44:58.309395] [7] : 0x00 (0)
[2022-06-17 08:44:58.311041] [8] : 0x00 (0)
[2022-06-17 08:44:58.312687] [9] : 0x00 (0)
[2022-06-17 08:44:58.314372] [10] : 0x00 (0)
[2022-06-17 08:44:58.316021] [11] : 0x00 (0)
[2022-06-17 08:44:58.317660] [12] : 0x00 (0)
[2022-06-17 08:44:58.319292] [13] : 0x00 (0)
[2022-06-17 08:44:58.320936] [14] : 0x00 (0)
[2022-06-17 08:44:58.322587] [15] : 0x00 (0)
[2022-06-17 08:44:58.324315] [16] : 0x14 (20)
[2022-06-17 08:44:58.325971] [17] : 0x00 (0)
[2022-06-17 08:44:58.327612] [18] : 0x00 (0)
[2022-06-17 08:44:58.329124] [19] : 0x00 (0)
[2022-06-17 08:44:58.330619] [20] : 0x02 (2)
[2022-06-17 08:44:58.339863] [21] : 0x00 (0)
[2022-06-17 08:44:58.341802] [22] : 0x64 (100)
[2022-06-17 08:44:58.343602] [23] : 0x00 (0)
[2022-06-17 08:44:58.345178] [24] : 0x04 (4)
[2022-06-17 08:44:58.346938] [25] : 0x00 (0)
[2022-06-17 08:44:58.349624] [26] : 0x00 (0)
[2022-06-17 08:44:58.356967] [27] : 0x00 (0)
[2022-06-17 08:44:58.360624] [28] : 0x00 (0)
[2022-06-17 08:44:58.364217] [29] : 0x00 (0)
[2022-06-17 08:44:58.369527] [30] : 0x14 (20)
[2022-06-17 08:44:58.373661] [31] : 0x00 (0)
[2022-06-17 08:44:58.376792] [32] : 0x8d (141)
[2022-06-17 08:44:58.380702] [33] : 0x01 (1)
[2022-06-17 08:44:58.384953] [34] : 0x02 (2)
[2022-06-17 08:44:58.389902] [35] : 0x00 (0)
[2022-06-17 08:44:58.395208] [36] : 0x01 (1)
[2022-06-17 08:44:58.399580] [37] : 0x01 (1)
[2022-06-17 08:44:58.404155] [38] : 0x00 (0)
[2022-06-17 08:44:58.408643] [39] : 0x00 (0)
[2022-06-17 08:44:58.410551] [40] : 0x00 (0)
[2022-06-17 08:44:58.412264] [41] : 0x00 (0)
[2022-06-17 08:44:58.414007] [42] : 0x00 (0)
[2022-06-17 08:44:58.415682] [43] : 0x01 (1)
[2022-06-17 08:44:58.417350] [44] : 0x00 (0)
[2022-06-17 08:44:58.418997] [45] : 0x00 (0)
[2022-06-17 08:44:58.420646] [46] : 0x00 (0)
[2022-06-17 08:44:58.422282] [47] : 0x00 (0)
[2022-06-17 08:44:58.424000] [48] : 0x00 (0)
[2022-06-17 08:44:58.425676] [49] : 0x00 (0)
[2022-06-17 08:44:58.427214] [50] : 0x18 (24)
[2022-06-17 08:44:58.428992] [51] : 0x00 (0)
[2022-06-17 08:44:58.430640] [52] : 0xfd (253)
[2022-06-17 08:44:58.432281] [53] : 0x01 (1)
[2022-06-17 08:44:58.433996] [54] : 0x02 (2)
[2022-06-17 08:44:58.435649] [55] : 0x00 (0)
[2022-06-17 08:44:58.437293] [56] : 0x01 (1)
[2022-06-17 08:44:58.438940] [57] : 0x02 (2)
[2022-06-17 08:44:58.440594] [58] : 0x00 (0)
[2022-06-17 08:44:58.442246] [59] : 0x00 (0)
[2022-06-17 08:44:58.443908] [60] : 0x00 (0)
[2022-06-17 08:44:58.445573] [61] : 0x00 (0)
[2022-06-17 08:44:58.447216] [62] : 0x00 (0)
[2022-06-17 08:44:58.448846] [63] : 0x05 (5)
[2022-06-17 08:44:58.450486] [64] : 0x20 (32)
[2022-06-17 08:44:58.452129] [65] : 0x00 (0)
[2022-06-17 08:44:58.453844] [66] : 0x00 (0)
[2022-06-17 08:44:58.455502] [67] : 0x00 (0)
[2022-06-17 08:44:58.457143] [68] : 0x23 (35)
[2022-06-17 08:44:58.458782] [69] : 0x02 (2)
[2022-06-17 08:44:58.460425] [70] : 0x00 (0)
[2022-06-17 08:44:58.462081] [71] : 0x00 (0)
[2022-06-17 08:44:58.463768] [72] : 0x00 (0)
[2022-06-17 08:44:58.465434] [73] : 0x00 (0)
[2022-06-17 08:44:58.467090] [74] : 0x18 (24)
[2022-06-17 08:44:58.468730] [75] : 0x00 (0)
[2022-06-17 08:44:58.470375] [76] : 0xff (255)
[2022-06-17 08:44:58.472018] [77] : 0x01 (1)
[2022-06-17 08:44:58.473701] [78] : 0x0f (15)
[2022-06-17 08:44:58.475354] [79] : 0x00 (0)
[2022-06-17 08:44:58.476875] [80] : 0x01 (1)
[2022-06-17 08:44:58.478549] [81] : 0x02 (2)
[2022-06-17 08:44:58.480206] [82] : 0x00 (0)
[2022-06-17 08:44:58.481853] [83] : 0x00 (0)
[2022-06-17 08:44:58.483554] [84] : 0x00 (0)
[2022-06-17 08:44:58.485213] [85] : 0x00 (0)
[2022-06-17 08:44:58.486858] [86] : 0x00 (0)
[2022-06-17 08:44:58.488494] [87] : 0x05 (5)
[2022-06-17 08:44:58.490153] [88] : 0x20 (32)
[2022-06-17 08:44:58.491796] [89] : 0x00 (0)
[2022-06-17 08:44:58.493478] [90] : 0x00 (0)
[2022-06-17 08:44:58.495019] [91] : 0x00 (0)
[2022-06-17 08:44:58.496785] [92] : 0x25 (37)
[2022-06-17 08:44:58.498424] [93] : 0x02 (2)
[2022-06-17 08:44:58.500069] [94] : 0x00 (0)
[2022-06-17 08:44:58.501719] [95] : 0x00 (0)
[2022-06-17 08:44:58.503394] [96] : 0x00 (0)
[2022-06-17 08:44:58.505040] [97] : 0x00 (0)
[2022-06-17 08:44:58.506672] [98] : 0x18 (24)
[2022-06-17 08:44:58.508301] [99] : 0x00 (0)
[2022-06-17 08:44:58.509954] [100] : 0xff (255)
[2022-06-17 08:44:58.511467] [101] : 0x01 (1)
[2022-06-17 08:44:58.513229] [102] : 0x0f (15)
[2022-06-17 08:44:58.514894] [103] : 0x00 (0)
[2022-06-17 08:44:58.516549] [104] : 0x01 (1)
[2022-06-17 08:44:58.518183] [105] : 0x02 (2)
[2022-06-17 08:44:58.519813] [106] : 0x00 (0)
[2022-06-17 08:44:58.521439] [107] : 0x00 (0)
[2022-06-17 08:44:58.523127] [108] : 0x00 (0)
[2022-06-17 08:44:58.524796] [109] : 0x00 (0)
[2022-06-17 08:44:58.526448] [110] : 0x00 (0)
[2022-06-17 08:44:58.527972] [111] : 0x05 (5)
[2022-06-17 08:44:58.529709] [112] : 0x20 (32)
[2022-06-17 08:44:58.531359] [113] : 0x00 (0)
[2022-06-17 08:44:58.533034] [114] : 0x00 (0)
[2022-06-17 08:44:58.534690] [115] : 0x00 (0)
[2022-06-17 08:44:58.536326] [116] : 0x20 (32)
[2022-06-17 08:44:58.537973] [117] : 0x02 (2)
[2022-06-17 08:44:58.539619] [118] : 0x00 (0)
[2022-06-17 08:44:58.541263] [119] : 0x00 (0)
[2022-06-17 08:44:58.542930] size : 0x00000078 (120)
[2022-06-17 08:44:58.544464] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\RemoteRegistry\Security:Security]
[2022-06-17 08:44:58.546135] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:58.547780] fetch_reg_values called for key 'HKLM\SYSTEM\CurrentControlSet\Services\RemoteRegistry\Security' (ops 0xb6ab32e8)
[2022-06-17 08:44:58.549468] regdb_fetch_values: Looking for values of key [HKLM\SYSTEM\CurrentControlSet\Services\RemoteRegistry\Security]
[2022-06-17 08:44:58.551144] regdb_unpack_values: value[0]: name[Security] len[120]
[2022-06-17 08:44:58.552794] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:58.554496] out: struct winreg_SetValue
[2022-06-17 08:44:58.556279] result : WERR_OK
[2022-06-17 08:44:58.557916] winreg_CloseKey: struct winreg_CloseKey
[2022-06-17 08:44:58.559553] in: struct winreg_CloseKey
[2022-06-17 08:44:58.561195] handle : *
[2022-06-17 08:44:58.562834] handle: struct policy_handle
[2022-06-17 08:44:58.564530] handle_type : 0x00000001 (1)
[2022-06-17 08:44:58.566176] uuid : ffd8734b-5dee-4869-b02a-395d21f08529
[2022-06-17 08:44:58.567844] regdb_close: decrementing refcount (4->3)
[2022-06-17 08:44:58.569363] winreg_CloseKey: struct winreg_CloseKey
[2022-06-17 08:44:58.570859] out: struct winreg_CloseKey
[2022-06-17 08:44:58.572341] handle : *
[2022-06-17 08:44:58.573931] handle: struct policy_handle
[2022-06-17 08:44:58.575448] handle_type : 0x00000000 (0)
[2022-06-17 08:44:58.576949] uuid : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:44:58.578454] result : WERR_OK
[2022-06-17 08:44:58.579953] winreg_CreateKey: struct winreg_CreateKey
[2022-06-17 08:44:58.581444] in: struct winreg_CreateKey
[2022-06-17 08:44:58.582979] handle : *
[2022-06-17 08:44:58.584692] handle: struct policy_handle
[2022-06-17 08:44:58.586229] handle_type : 0x00000001 (1)
[2022-06-17 08:44:58.587754] uuid : 3564441c-52f4-47de-a43c-e15155f8a4c8
[2022-06-17 08:44:58.590442] name: struct winreg_String
[2022-06-17 08:44:58.591966] name_len : 0x004e (78)
[2022-06-17 08:44:58.593536] name_size : 0x004e (78)
[2022-06-17 08:44:58.595058] name : *
[2022-06-17 08:44:58.596556] name : 'SYSTEM\CurrentControlSet\Services\WINS'
[2022-06-17 08:44:58.598076] keyclass: struct winreg_String
[2022-06-17 08:44:58.599793] name_len : 0x0002 (2)
[2022-06-17 08:44:58.601323] name_size : 0x0002 (2)
[2022-06-17 08:44:58.602836] name : *
[2022-06-17 08:44:58.604401] name : ''
[2022-06-17 08:44:58.605903] options : 0x00000000 (0)
[2022-06-17 08:44:58.607410] 0: REG_OPTION_VOLATILE
[2022-06-17 08:44:58.608919] 0: REG_OPTION_CREATE_LINK
[2022-06-17 08:44:58.610410] 0: REG_OPTION_BACKUP_RESTORE
[2022-06-17 08:44:58.611915] 0: REG_OPTION_OPEN_LINK
[2022-06-17 08:44:58.613461] access_mask : 0x02000000 (33554432)
[2022-06-17 08:44:58.615178] 0: KEY_QUERY_VALUE
[2022-06-17 08:44:58.616695] 0: KEY_SET_VALUE
[2022-06-17 08:44:58.618195] 0: KEY_CREATE_SUB_KEY
[2022-06-17 08:44:58.619784] 0: KEY_ENUMERATE_SUB_KEYS
[2022-06-17 08:44:58.621324] 0: KEY_NOTIFY
[2022-06-17 08:44:58.622836] 0: KEY_CREATE_LINK
[2022-06-17 08:44:58.624431] 0: KEY_WOW64_64KEY
[2022-06-17 08:44:58.625935] 0: KEY_WOW64_32KEY
[2022-06-17 08:44:58.627442] secdesc : NULL
[2022-06-17 08:44:58.629093] action_taken : *
[2022-06-17 08:44:58.630632] action_taken : REG_ACTION_NONE (0)
[2022-06-17 08:44:58.632156] _winreg_CreateKey called with parent key 'HKLM' and subkey name 'SYSTEM\CurrentControlSet\Services\WINS'
[2022-06-17 08:44:58.633733] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:58.635259] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:58.636772] regkey_open_onelevel: name = [SYSTEM]
[2022-06-17 08:44:58.638265] regdb_open: incrementing refcount (3->4)
[2022-06-17 08:44:58.643863] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM]
[2022-06-17 08:44:58.646770] pathtree_find: Enter [\HKLM\SYSTEM]
[2022-06-17 08:44:58.648538] pathtree_find: Exit
[2022-06-17 08:44:58.650080] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM]
[2022-06-17 08:44:58.651608] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:58.653162] regkey_open_onelevel: name = [CurrentControlSet]
[2022-06-17 08:44:58.654982] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:58.656641] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:58.658303] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:58.659955] pathtree_find: Exit
[2022-06-17 08:44:58.661458] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:58.663285] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:58.664945] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:58.666598] regkey_open_onelevel: name = [Services]
[2022-06-17 08:44:58.668236] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:58.669862] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:58.671535] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:58.673243] pathtree_find: Exit
[2022-06-17 08:44:58.674903] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:58.676557] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:58.678188] regkey_open_onelevel: name = [WINS]
[2022-06-17 08:44:58.679818] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:58.681537] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services\WINS]
[2022-06-17 08:44:58.683314] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services\WINS]
[2022-06-17 08:44:58.685024] pathtree_find: Exit
[2022-06-17 08:44:58.686677] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services\WINS]
[2022-06-17 08:44:58.688351] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:58.689987] winreg_CreateKey: struct winreg_CreateKey
[2022-06-17 08:44:58.691635] out: struct winreg_CreateKey
[2022-06-17 08:44:58.693319] new_handle : *
[2022-06-17 08:44:58.694855] new_handle: struct policy_handle
[2022-06-17 08:44:58.696366] handle_type : 0x00000001 (1)
[2022-06-17 08:44:58.697873] uuid : 70909e2a-31dd-4270-8e39-1d9498055cc2
[2022-06-17 08:44:58.699393] action_taken : *
[2022-06-17 08:44:58.701020] action_taken : REG_OPENED_EXISTING_KEY (2)
[2022-06-17 08:44:58.702792] result : WERR_OK
[2022-06-17 08:44:58.704511] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:58.706037] in: struct winreg_SetValue
[2022-06-17 08:44:58.707770] handle : *
[2022-06-17 08:44:58.709411] handle: struct policy_handle
[2022-06-17 08:44:58.711056] handle_type : 0x00000001 (1)
[2022-06-17 08:44:58.712695] uuid : 70909e2a-31dd-4270-8e39-1d9498055cc2
[2022-06-17 08:44:58.714412] name: struct winreg_String
[2022-06-17 08:44:58.716044] name_len : 0x000c (12)
[2022-06-17 08:44:58.717702] name_size : 0x000c (12)
[2022-06-17 08:44:58.719356] name : *
[2022-06-17 08:44:58.721018] name : 'Start'
[2022-06-17 08:44:58.722666] type : REG_DWORD (4)
[2022-06-17 08:44:58.724442] data : *
[2022-06-17 08:44:58.726098] data: ARRAY(4)
[2022-06-17 08:44:58.727738] [0] : 0x02 (2)
[2022-06-17 08:44:58.729385] [1] : 0x00 (0)
[2022-06-17 08:44:58.731020] [2] : 0x00 (0)
[2022-06-17 08:44:58.732672] [3] : 0x00 (0)
[2022-06-17 08:44:58.734379] size : 0x00000004 (4)
[2022-06-17 08:44:58.736017] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\WINS:Start]
[2022-06-17 08:44:58.737670] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:58.739314] fetch_reg_values called for key 'HKLM\SYSTEM\CurrentControlSet\Services\WINS' (ops 0xb6ab32e8)
[2022-06-17 08:44:58.740972] regdb_fetch_values: Looking for values of key [HKLM\SYSTEM\CurrentControlSet\Services\WINS]
[2022-06-17 08:44:58.742833] regdb_unpack_values: value[0]: name[Start] len[4]
[2022-06-17 08:44:58.744591] regdb_unpack_values: value[1]: name[Type] len[4]
[2022-06-17 08:44:58.746587] regdb_unpack_values: value[2]: name[ErrorControl] len[4]
[2022-06-17 08:44:58.748272] regdb_unpack_values: value[3]: name[ObjectName] len[24]
[2022-06-17 08:44:58.749937] regdb_unpack_values: value[4]: name[DisplayName] len[74]
[2022-06-17 08:44:58.751579] regdb_unpack_values: value[5]: name[ImagePath] len[54]
[2022-06-17 08:44:58.753260] regdb_unpack_values: value[6]: name[Description] len[178]
[2022-06-17 08:44:58.754921] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:58.756564] out: struct winreg_SetValue
[2022-06-17 08:44:58.758201] result : WERR_OK
[2022-06-17 08:44:58.759851] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:58.761499] in: struct winreg_SetValue
[2022-06-17 08:44:58.763179] handle : *
[2022-06-17 08:44:58.764828] handle: struct policy_handle
[2022-06-17 08:44:58.766465] handle_type : 0x00000001 (1)
[2022-06-17 08:44:58.768118] uuid : 70909e2a-31dd-4270-8e39-1d9498055cc2
[2022-06-17 08:44:58.769784] name: struct winreg_String
[2022-06-17 08:44:58.771416] name_len : 0x000a (10)
[2022-06-17 08:44:58.773095] name_size : 0x000a (10)
[2022-06-17 08:44:58.774765] name : *
[2022-06-17 08:44:58.776408] name : 'Type'
[2022-06-17 08:44:58.778034] type : REG_DWORD (4)
[2022-06-17 08:44:58.779671] data : *
[2022-06-17 08:44:58.781303] data: ARRAY(4)
[2022-06-17 08:44:58.783002] [0] : 0x10 (16)
[2022-06-17 08:44:58.784680] [1] : 0x00 (0)
[2022-06-17 08:44:58.786332] [2] : 0x00 (0)
[2022-06-17 08:44:58.787986] [3] : 0x00 (0)
[2022-06-17 08:44:58.789615] size : 0x00000004 (4)
[2022-06-17 08:44:58.792235] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\WINS:Type]
[2022-06-17 08:44:58.793990] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:58.795674] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:58.797322] out: struct winreg_SetValue
[2022-06-17 08:44:58.798950] result : WERR_OK
[2022-06-17 08:44:58.800588] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:58.802221] in: struct winreg_SetValue
[2022-06-17 08:44:58.803901] handle : *
[2022-06-17 08:44:58.805547] handle: struct policy_handle
[2022-06-17 08:44:58.807192] handle_type : 0x00000001 (1)
[2022-06-17 08:44:58.808840] uuid : 70909e2a-31dd-4270-8e39-1d9498055cc2
[2022-06-17 08:44:58.810500] name: struct winreg_String
[2022-06-17 08:44:58.812127] name_len : 0x001a (26)
[2022-06-17 08:44:58.813817] name_size : 0x001a (26)
[2022-06-17 08:44:58.815479] name : *
[2022-06-17 08:44:58.817129] name : 'ErrorControl'
[2022-06-17 08:44:58.818762] type : REG_DWORD (4)
[2022-06-17 08:44:58.820416] data : *
[2022-06-17 08:44:58.822752] data: ARRAY(4)
[2022-06-17 08:44:58.824460] [0] : 0x01 (1)
[2022-06-17 08:44:58.826113] [1] : 0x00 (0)
[2022-06-17 08:44:58.827757] [2] : 0x00 (0)
[2022-06-17 08:44:58.829414] [3] : 0x00 (0)
[2022-06-17 08:44:58.831064] size : 0x00000004 (4)
[2022-06-17 08:44:58.832708] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\WINS:ErrorControl]
[2022-06-17 08:44:58.834436] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:58.836110] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:58.837750] out: struct winreg_SetValue
[2022-06-17 08:44:58.840566] result : WERR_OK
[2022-06-17 08:44:58.842227] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:58.843930] in: struct winreg_SetValue
[2022-06-17 08:44:58.845603] handle : *
[2022-06-17 08:44:58.847241] handle: struct policy_handle
[2022-06-17 08:44:58.848878] handle_type : 0x00000001 (1)
[2022-06-17 08:44:58.850528] uuid : 70909e2a-31dd-4270-8e39-1d9498055cc2
[2022-06-17 08:44:58.852171] name: struct winreg_String
[2022-06-17 08:44:58.853860] name_len : 0x0016 (22)
[2022-06-17 08:44:58.855522] name_size : 0x0016 (22)
[2022-06-17 08:44:58.857170] name : *
[2022-06-17 08:44:58.858823] name : 'ObjectName'
[2022-06-17 08:44:58.860361] type : REG_SZ (1)
[2022-06-17 08:44:58.862131] data : *
[2022-06-17 08:44:58.863858] data: ARRAY(24)
[2022-06-17 08:44:58.865508] [0] : 0x4c (76)
[2022-06-17 08:44:58.867150] [1] : 0x00 (0)
[2022-06-17 08:44:58.868782] [2] : 0x6f (111)
[2022-06-17 08:44:58.870432] [3] : 0x00 (0)
[2022-06-17 08:44:58.872085] [4] : 0x63 (99)
[2022-06-17 08:44:58.873788] [5] : 0x00 (0)
[2022-06-17 08:44:58.875434] [6] : 0x61 (97)
[2022-06-17 08:44:58.877068] [7] : 0x00 (0)
[2022-06-17 08:44:58.878698] [8] : 0x6c (108)
[2022-06-17 08:44:58.880418] [9] : 0x00 (0)
[2022-06-17 08:44:58.882096] [10] : 0x53 (83)
[2022-06-17 08:44:58.883819] [11] : 0x00 (0)
[2022-06-17 08:44:58.885483] [12] : 0x79 (121)
[2022-06-17 08:44:58.887136] [13] : 0x00 (0)
[2022-06-17 08:44:58.888785] [14] : 0x73 (115)
[2022-06-17 08:44:58.894742] [15] : 0x00 (0)
[2022-06-17 08:44:58.896498] [16] : 0x74 (116)
[2022-06-17 08:44:58.898192] [17] : 0x00 (0)
[2022-06-17 08:44:58.899858] [18] : 0x65 (101)
[2022-06-17 08:44:58.901510] [19] : 0x00 (0)
[2022-06-17 08:44:58.903212] [20] : 0x6d (109)
[2022-06-17 08:44:58.904891] [21] : 0x00 (0)
[2022-06-17 08:44:58.906550] [22] : 0x00 (0)
[2022-06-17 08:44:58.908187] [23] : 0x00 (0)
[2022-06-17 08:44:58.909825] size : 0x00000018 (24)
[2022-06-17 08:44:58.911467] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\WINS:ObjectName]
[2022-06-17 08:44:58.913197] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:58.914873] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:58.916508] out: struct winreg_SetValue
[2022-06-17 08:44:58.918139] result : WERR_OK
[2022-06-17 08:44:58.919794] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:58.921431] in: struct winreg_SetValue
[2022-06-17 08:44:58.923121] handle : *
[2022-06-17 08:44:58.924782] handle: struct policy_handle
[2022-06-17 08:44:58.926429] handle_type : 0x00000001 (1)
[2022-06-17 08:44:58.928074] uuid : 70909e2a-31dd-4270-8e39-1d9498055cc2
[2022-06-17 08:44:58.929732] name: struct winreg_String
[2022-06-17 08:44:58.931365] name_len : 0x0018 (24)
[2022-06-17 08:44:58.933056] name_size : 0x0018 (24)
[2022-06-17 08:44:58.934723] name : *
[2022-06-17 08:44:58.936372] name : 'DisplayName'
[2022-06-17 08:44:58.938032] type : REG_SZ (1)
[2022-06-17 08:44:58.939563] data : *
[2022-06-17 08:44:58.941053] data: ARRAY(74)
[2022-06-17 08:44:58.942541] [0] : 0x57 (87)
[2022-06-17 08:44:58.944407] [1] : 0x00 (0)
[2022-06-17 08:44:58.946070] [2] : 0x69 (105)
[2022-06-17 08:44:58.947732] [3] : 0x00 (0)
[2022-06-17 08:44:58.949378] [4] : 0x6e (110)
[2022-06-17 08:44:58.951031] [5] : 0x00 (0)
[2022-06-17 08:44:58.952671] [6] : 0x64 (100)
[2022-06-17 08:44:58.954377] [7] : 0x00 (0)
[2022-06-17 08:44:58.956038] [8] : 0x6f (111)
[2022-06-17 08:44:58.957684] [9] : 0x00 (0)
[2022-06-17 08:44:58.959338] [10] : 0x77 (119)
[2022-06-17 08:44:58.960988] [11] : 0x00 (0)
[2022-06-17 08:44:58.962634] [12] : 0x73 (115)
[2022-06-17 08:44:58.964358] [13] : 0x00 (0)
[2022-06-17 08:44:58.966008] [14] : 0x20 (32)
[2022-06-17 08:44:58.967648] [15] : 0x00 (0)
[2022-06-17 08:44:58.969282] [16] : 0x49 (73)
[2022-06-17 08:44:58.970811] [17] : 0x00 (0)
[2022-06-17 08:44:58.972321] [18] : 0x6e (110)
[2022-06-17 08:44:58.973908] [19] : 0x00 (0)
[2022-06-17 08:44:58.975693] [20] : 0x74 (116)
[2022-06-17 08:44:58.977220] [21] : 0x00 (0)
[2022-06-17 08:44:58.978716] [22] : 0x65 (101)
[2022-06-17 08:44:58.980208] [23] : 0x00 (0)
[2022-06-17 08:44:58.981709] [24] : 0x72 (114)
[2022-06-17 08:44:58.983272] [25] : 0x00 (0)
[2022-06-17 08:44:58.985035] [26] : 0x6e (110)
[2022-06-17 08:44:58.986670] [27] : 0x00 (0)
[2022-06-17 08:44:58.988330] [28] : 0x65 (101)
[2022-06-17 08:44:58.989977] [29] : 0x00 (0)
[2022-06-17 08:44:58.991626] [30] : 0x74 (116)
[2022-06-17 08:44:58.993759] [31] : 0x00 (0)
[2022-06-17 08:44:58.995461] [32] : 0x20 (32)
[2022-06-17 08:44:58.997126] [33] : 0x00 (0)
[2022-06-17 08:44:58.998781] [34] : 0x4e (78)
[2022-06-17 08:44:59.000423] [35] : 0x00 (0)
[2022-06-17 08:44:59.002075] [36] : 0x61 (97)
[2022-06-17 08:44:59.003780] [37] : 0x00 (0)
[2022-06-17 08:44:59.005429] [38] : 0x6d (109)
[2022-06-17 08:44:59.007087] [39] : 0x00 (0)
[2022-06-17 08:44:59.008740] [40] : 0x65 (101)
[2022-06-17 08:44:59.010384] [41] : 0x00 (0)
[2022-06-17 08:44:59.012029] [42] : 0x20 (32)
[2022-06-17 08:44:59.013729] [43] : 0x00 (0)
[2022-06-17 08:44:59.015371] [44] : 0x53 (83)
[2022-06-17 08:44:59.017040] [45] : 0x00 (0)
[2022-06-17 08:44:59.018698] [46] : 0x65 (101)
[2022-06-17 08:44:59.020354] [47] : 0x00 (0)
[2022-06-17 08:44:59.022007] [48] : 0x72 (114)
[2022-06-17 08:44:59.023805] [49] : 0x00 (0)
[2022-06-17 08:44:59.025465] [50] : 0x76 (118)
[2022-06-17 08:44:59.027122] [51] : 0x00 (0)
[2022-06-17 08:44:59.028771] [52] : 0x69 (105)
[2022-06-17 08:44:59.030419] [53] : 0x00 (0)
[2022-06-17 08:44:59.032074] [54] : 0x63 (99)
[2022-06-17 08:44:59.033786] [55] : 0x00 (0)
[2022-06-17 08:44:59.035453] [56] : 0x65 (101)
[2022-06-17 08:44:59.037103] [57] : 0x00 (0)
[2022-06-17 08:44:59.038735] [58] : 0x20 (32)
[2022-06-17 08:44:59.040964] [59] : 0x00 (0)
[2022-06-17 08:44:59.042989] [60] : 0x28 (40)
[2022-06-17 08:44:59.044700] [61] : 0x00 (0)
[2022-06-17 08:44:59.046396] [62] : 0x57 (87)
[2022-06-17 08:44:59.048050] [63] : 0x00 (0)
[2022-06-17 08:44:59.054323] [64] : 0x49 (73)
[2022-06-17 08:44:59.063614] [65] : 0x00 (0)
[2022-06-17 08:44:59.065430] [66] : 0x4e (78)
[2022-06-17 08:44:59.067308] [67] : 0x00 (0)
[2022-06-17 08:44:59.068978] [68] : 0x53 (83)
[2022-06-17 08:44:59.070638] [69] : 0x00 (0)
[2022-06-17 08:44:59.072270] [70] : 0x29 (41)
[2022-06-17 08:44:59.074004] [71] : 0x00 (0)
[2022-06-17 08:44:59.075657] [72] : 0x00 (0)
[2022-06-17 08:44:59.079384] [73] : 0x00 (0)
[2022-06-17 08:44:59.081136] size : 0x0000004a (74)
[2022-06-17 08:44:59.082802] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\WINS:DisplayName]
[2022-06-17 08:44:59.084553] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:59.086227] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:59.087889] out: struct winreg_SetValue
[2022-06-17 08:44:59.090626] result : WERR_OK
[2022-06-17 08:44:59.092319] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:59.093949] in: struct winreg_SetValue
[2022-06-17 08:44:59.095589] handle : *
[2022-06-17 08:44:59.097247] handle: struct policy_handle
[2022-06-17 08:44:59.098913] handle_type : 0x00000001 (1)
[2022-06-17 08:44:59.100566] uuid : 70909e2a-31dd-4270-8e39-1d9498055cc2
[2022-06-17 08:44:59.102222] name: struct winreg_String
[2022-06-17 08:44:59.103908] name_len : 0x0014 (20)
[2022-06-17 08:44:59.105558] name_size : 0x0014 (20)
[2022-06-17 08:44:59.107193] name : *
[2022-06-17 08:44:59.108840] name : 'ImagePath'
[2022-06-17 08:44:59.110369] type : REG_SZ (1)
[2022-06-17 08:44:59.112121] data : *
[2022-06-17 08:44:59.113820] data: ARRAY(54)
[2022-06-17 08:44:59.115485] [0] : 0x2f (47)
[2022-06-17 08:44:59.117123] [1] : 0x00 (0)
[2022-06-17 08:44:59.118766] [2] : 0x75 (117)
[2022-06-17 08:44:59.120403] [3] : 0x00 (0)
[2022-06-17 08:44:59.122051] [4] : 0x73 (115)
[2022-06-17 08:44:59.123756] [5] : 0x00 (0)
[2022-06-17 08:44:59.125420] [6] : 0x72 (114)
[2022-06-17 08:44:59.126940] [7] : 0x00 (0)
[2022-06-17 08:44:59.128436] [8] : 0x2f (47)
[2022-06-17 08:44:59.130203] [9] : 0x00 (0)
[2022-06-17 08:44:59.131844] [10] : 0x6c (108)
[2022-06-17 08:44:59.133532] [11] : 0x00 (0)
[2022-06-17 08:44:59.135193] [12] : 0x69 (105)
[2022-06-17 08:44:59.136855] [13] : 0x00 (0)
[2022-06-17 08:44:59.138507] [14] : 0x62 (98)
[2022-06-17 08:44:59.140153] [15] : 0x00 (0)
[2022-06-17 08:44:59.146101] [16] : 0x2f (47)
[2022-06-17 08:44:59.147858] [17] : 0x00 (0)
[2022-06-17 08:44:59.149544] [18] : 0x73 (115)
[2022-06-17 08:44:59.151292] [19] : 0x00 (0)
[2022-06-17 08:44:59.153009] [20] : 0x61 (97)
[2022-06-17 08:44:59.154690] [21] : 0x00 (0)
[2022-06-17 08:44:59.156210] [22] : 0x6d (109)
[2022-06-17 08:44:59.157703] [23] : 0x00 (0)
[2022-06-17 08:44:59.159197] [24] : 0x62 (98)
[2022-06-17 08:44:59.160694] [25] : 0x00 (0)
[2022-06-17 08:44:59.162191] [26] : 0x61 (97)
[2022-06-17 08:44:59.163992] [27] : 0x00 (0)
[2022-06-17 08:44:59.165670] [28] : 0x2f (47)
[2022-06-17 08:44:59.167318] [29] : 0x00 (0)
[2022-06-17 08:44:59.168960] [30] : 0x73 (115)
[2022-06-17 08:44:59.170600] [31] : 0x00 (0)
[2022-06-17 08:44:59.172239] [32] : 0x76 (118)
[2022-06-17 08:44:59.173964] [33] : 0x00 (0)
[2022-06-17 08:44:59.175504] [34] : 0x63 (99)
[2022-06-17 08:44:59.177143] [35] : 0x00 (0)
[2022-06-17 08:44:59.178807] [36] : 0x63 (99)
[2022-06-17 08:44:59.180446] [37] : 0x00 (0)
[2022-06-17 08:44:59.182096] [38] : 0x74 (116)
[2022-06-17 08:44:59.183804] [39] : 0x00 (0)
[2022-06-17 08:44:59.185457] [40] : 0x6c (108)
[2022-06-17 08:44:59.187109] [41] : 0x00 (0)
[2022-06-17 08:44:59.188642] [42] : 0x2f (47)
[2022-06-17 08:44:59.190146] [43] : 0x00 (0)
[2022-06-17 08:44:59.191631] [44] : 0x6e (110)
[2022-06-17 08:44:59.193208] [45] : 0x00 (0)
[2022-06-17 08:44:59.195017] [46] : 0x6d (109)
[2022-06-17 08:44:59.196671] [47] : 0x00 (0)
[2022-06-17 08:44:59.198340] [48] : 0x62 (98)
[2022-06-17 08:44:59.199989] [49] : 0x00 (0)
[2022-06-17 08:44:59.201626] [50] : 0x64 (100)
[2022-06-17 08:44:59.203308] [51] : 0x00 (0)
[2022-06-17 08:44:59.204964] [52] : 0x00 (0)
[2022-06-17 08:44:59.206598] [53] : 0x00 (0)
[2022-06-17 08:44:59.208248] size : 0x00000036 (54)
[2022-06-17 08:44:59.209779] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\WINS:ImagePath]
[2022-06-17 08:44:59.211448] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:59.213147] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:59.214906] out: struct winreg_SetValue
[2022-06-17 08:44:59.216550] result : WERR_OK
[2022-06-17 08:44:59.218194] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:59.219831] in: struct winreg_SetValue
[2022-06-17 08:44:59.221342] handle : *
[2022-06-17 08:44:59.222850] handle: struct policy_handle
[2022-06-17 08:44:59.224634] handle_type : 0x00000001 (1)
[2022-06-17 08:44:59.226298] uuid : 70909e2a-31dd-4270-8e39-1d9498055cc2
[2022-06-17 08:44:59.227951] name: struct winreg_String
[2022-06-17 08:44:59.229580] name_len : 0x0018 (24)
[2022-06-17 08:44:59.231221] name_size : 0x0018 (24)
[2022-06-17 08:44:59.232902] name : *
[2022-06-17 08:44:59.234568] name : 'Description'
[2022-06-17 08:44:59.236227] type : REG_SZ (1)
[2022-06-17 08:44:59.237883] data : *
[2022-06-17 08:44:59.239513] data: ARRAY(178)
[2022-06-17 08:44:59.241149] [0] : 0x49 (73)
[2022-06-17 08:44:59.242784] [1] : 0x00 (0)
[2022-06-17 08:44:59.244887] [2] : 0x6e (110)
[2022-06-17 08:44:59.246795] [3] : 0x00 (0)
[2022-06-17 08:44:59.248466] [4] : 0x74 (116)
[2022-06-17 08:44:59.250124] [5] : 0x00 (0)
[2022-06-17 08:44:59.251778] [6] : 0x65 (101)
[2022-06-17 08:44:59.253482] [7] : 0x00 (0)
[2022-06-17 08:44:59.255129] [8] : 0x72 (114)
[2022-06-17 08:44:59.256771] [9] : 0x00 (0)
[2022-06-17 08:44:59.258300] [10] : 0x6e (110)
[2022-06-17 08:44:59.259821] [11] : 0x00 (0)
[2022-06-17 08:44:59.261594] [12] : 0x61 (97)
[2022-06-17 08:44:59.263291] [13] : 0x00 (0)
[2022-06-17 08:44:59.264946] [14] : 0x6c (108)
[2022-06-17 08:44:59.266594] [15] : 0x00 (0)
[2022-06-17 08:44:59.268234] [16] : 0x20 (32)
[2022-06-17 08:44:59.269880] [17] : 0x00 (0)
[2022-06-17 08:44:59.271536] [18] : 0x73 (115)
[2022-06-17 08:44:59.273229] [19] : 0x00 (0)
[2022-06-17 08:44:59.274769] [20] : 0x65 (101)
[2022-06-17 08:44:59.276559] [21] : 0x00 (0)
[2022-06-17 08:44:59.278208] [22] : 0x72 (114)
[2022-06-17 08:44:59.279854] [23] : 0x00 (0)
[2022-06-17 08:44:59.281489] [24] : 0x76 (118)
[2022-06-17 08:44:59.283181] [25] : 0x00 (0)
[2022-06-17 08:44:59.284852] [26] : 0x69 (105)
[2022-06-17 08:44:59.286505] [27] : 0x00 (0)
[2022-06-17 08:44:59.288152] [28] : 0x63 (99)
[2022-06-17 08:44:59.289788] [29] : 0x00 (0)
[2022-06-17 08:44:59.291423] [30] : 0x65 (101)
[2022-06-17 08:44:59.293962] [31] : 0x00 (0)
[2022-06-17 08:44:59.295788] [32] : 0x20 (32)
[2022-06-17 08:44:59.297449] [33] : 0x00 (0)
[2022-06-17 08:44:59.299103] [34] : 0x70 (112)
[2022-06-17 08:44:59.300755] [35] : 0x00 (0)
[2022-06-17 08:44:59.302388] [36] : 0x72 (114)
[2022-06-17 08:44:59.304103] [37] : 0x00 (0)
[2022-06-17 08:44:59.305758] [38] : 0x6f (111)
[2022-06-17 08:44:59.307405] [39] : 0x00 (0)
[2022-06-17 08:44:59.309047] [40] : 0x76 (118)
[2022-06-17 08:44:59.310694] [41] : 0x00 (0)
[2022-06-17 08:44:59.312341] [42] : 0x69 (105)
[2022-06-17 08:44:59.314085] [43] : 0x00 (0)
[2022-06-17 08:44:59.315725] [44] : 0x64 (100)
[2022-06-17 08:44:59.317370] [45] : 0x00 (0)
[2022-06-17 08:44:59.319012] [46] : 0x69 (105)
[2022-06-17 08:44:59.320658] [47] : 0x00 (0)
[2022-06-17 08:44:59.322313] [48] : 0x6e (110)
[2022-06-17 08:44:59.324038] [49] : 0x00 (0)
[2022-06-17 08:44:59.325683] [50] : 0x67 (103)
[2022-06-17 08:44:59.327203] [51] : 0x00 (0)
[2022-06-17 08:44:59.328914] [52] : 0x20 (32)
[2022-06-17 08:44:59.330556] [53] : 0x00 (0)
[2022-06-17 08:44:59.332216] [54] : 0x61 (97)
[2022-06-17 08:44:59.333913] [55] : 0x00 (0)
[2022-06-17 08:44:59.335562] [56] : 0x20 (32)
[2022-06-17 08:44:59.337213] [57] : 0x00 (0)
[2022-06-17 08:44:59.338849] [58] : 0x4e (78)
[2022-06-17 08:44:59.340480] [59] : 0x00 (0)
[2022-06-17 08:44:59.354873] [60] : 0x65 (101)
[2022-06-17 08:44:59.356627] [61] : 0x00 (0)
[2022-06-17 08:44:59.358314] [62] : 0x74 (116)
[2022-06-17 08:44:59.359989] [63] : 0x00 (0)
[2022-06-17 08:44:59.361653] [64] : 0x42 (66)
[2022-06-17 08:44:59.363365] [65] : 0x00 (0)
[2022-06-17 08:44:59.365027] [66] : 0x49 (73)
[2022-06-17 08:44:59.366684] [67] : 0x00 (0)
[2022-06-17 08:44:59.369780] [68] : 0x4f (79)
[2022-06-17 08:44:59.371528] [69] : 0x00 (0)
[2022-06-17 08:44:59.373269] [70] : 0x53 (83)
[2022-06-17 08:44:59.374962] [71] : 0x00 (0)
[2022-06-17 08:44:59.376624] [72] : 0x20 (32)
[2022-06-17 08:44:59.378282] [73] : 0x00 (0)
[2022-06-17 08:44:59.379915] [74] : 0x70 (112)
[2022-06-17 08:44:59.381570] [75] : 0x00 (0)
[2022-06-17 08:44:59.383262] [76] : 0x6f (111)
[2022-06-17 08:44:59.384914] [77] : 0x00 (0)
[2022-06-17 08:44:59.386559] [78] : 0x69 (105)
[2022-06-17 08:44:59.388212] [79] : 0x00 (0)
[2022-06-17 08:44:59.389967] [80] : 0x6e (110)
[2022-06-17 08:44:59.391630] [81] : 0x00 (0)
[2022-06-17 08:44:59.393324] [82] : 0x74 (116)
[2022-06-17 08:44:59.394983] [83] : 0x00 (0)
[2022-06-17 08:44:59.396633] [84] : 0x2d (45)
[2022-06-17 08:44:59.398291] [85] : 0x00 (0)
[2022-06-17 08:44:59.399930] [86] : 0x74 (116)
[2022-06-17 08:44:59.401589] [87] : 0x00 (0)
[2022-06-17 08:44:59.403275] [88] : 0x6f (111)
[2022-06-17 08:44:59.404935] [89] : 0x00 (0)
[2022-06-17 08:44:59.406589] [90] : 0x2d (45)
[2022-06-17 08:44:59.408625] [91] : 0x00 (0)
[2022-06-17 08:44:59.410370] [92] : 0x70 (112)
[2022-06-17 08:44:59.411920] [93] : 0x00 (0)
[2022-06-17 08:44:59.413481] [94] : 0x6f (111)
[2022-06-17 08:44:59.414990] [95] : 0x00 (0)
[2022-06-17 08:44:59.416680] [96] : 0x69 (105)
[2022-06-17 08:44:59.418202] [97] : 0x00 (0)
[2022-06-17 08:44:59.419691] [98] : 0x6e (110)
[2022-06-17 08:44:59.421199] [99] : 0x00 (0)
[2022-06-17 08:44:59.422687] [100] : 0x74 (116)
[2022-06-17 08:44:59.424253] [101] : 0x00 (0)
[2022-06-17 08:44:59.425752] [102] : 0x20 (32)
[2022-06-17 08:44:59.427250] [103] : 0x00 (0)
[2022-06-17 08:44:59.429048] [104] : 0x6e (110)
[2022-06-17 08:44:59.430726] [105] : 0x00 (0)
[2022-06-17 08:44:59.432385] [106] : 0x61 (97)
[2022-06-17 08:44:59.434130] [107] : 0x00 (0)
[2022-06-17 08:44:59.435785] [108] : 0x6d (109)
[2022-06-17 08:44:59.437427] [109] : 0x00 (0)
[2022-06-17 08:44:59.439074] [110] : 0x65 (101)
[2022-06-17 08:44:59.440593] [111] : 0x00 (0)
[2022-06-17 08:44:59.442088] [112] : 0x20 (32)
[2022-06-17 08:44:59.443924] [113] : 0x00 (0)
[2022-06-17 08:44:59.445594] [114] : 0x73 (115)
[2022-06-17 08:44:59.447243] [115] : 0x00 (0)
[2022-06-17 08:44:59.448879] [116] : 0x65 (101)
[2022-06-17 08:44:59.450520] [117] : 0x00 (0)
[2022-06-17 08:44:59.452171] [118] : 0x72 (114)
[2022-06-17 08:44:59.453869] [119] : 0x00 (0)
[2022-06-17 08:44:59.455521] [120] : 0x76 (118)
[2022-06-17 08:44:59.457188] [121] : 0x00 (0)
[2022-06-17 08:44:59.458842] [122] : 0x65 (101)
[2022-06-17 08:44:59.460498] [123] : 0x00 (0)
[2022-06-17 08:44:59.462132] [124] : 0x72 (114)
[2022-06-17 08:44:59.463834] [125] : 0x00 (0)
[2022-06-17 08:44:59.465483] [126] : 0x28 (40)
[2022-06-17 08:44:59.467240] [127] : 0x00 (0)
[2022-06-17 08:44:59.468905] [128] : 0x6e (110)
[2022-06-17 08:44:59.470574] [129] : 0x00 (0)
[2022-06-17 08:44:59.472227] [130] : 0x6f (111)
[2022-06-17 08:44:59.473914] [131] : 0x00 (0)
[2022-06-17 08:44:59.475551] [132] : 0x74 (116)
[2022-06-17 08:44:59.477204] [133] : 0x00 (0)
[2022-06-17 08:44:59.478853] [134] : 0x20 (32)
[2022-06-17 08:44:59.480496] [135] : 0x00 (0)
[2022-06-17 08:44:59.482143] [136] : 0x72 (114)
[2022-06-17 08:44:59.483859] [137] : 0x00 (0)
[2022-06-17 08:44:59.485524] [138] : 0x65 (101)
[2022-06-17 08:44:59.487173] [139] : 0x00 (0)
[2022-06-17 08:44:59.488816] [140] : 0x6d (109)
[2022-06-17 08:44:59.490339] [141] : 0x00 (0)
[2022-06-17 08:44:59.492064] [142] : 0x6f (111)
[2022-06-17 08:44:59.493780] [143] : 0x00 (0)
[2022-06-17 08:44:59.495313] [144] : 0x74 (116)
[2022-06-17 08:44:59.496821] [145] : 0x00 (0)
[2022-06-17 08:44:59.498309] [146] : 0x65 (101)
[2022-06-17 08:44:59.499797] [147] : 0x00 (0)
[2022-06-17 08:44:59.501501] [148] : 0x6c (108)
[2022-06-17 08:44:59.503216] [149] : 0x00 (0)
[2022-06-17 08:44:59.504897] [150] : 0x79 (121)
[2022-06-17 08:44:59.506555] [151] : 0x00 (0)
[2022-06-17 08:44:59.508201] [152] : 0x20 (32)
[2022-06-17 08:44:59.509832] [153] : 0x00 (0)
[2022-06-17 08:44:59.511476] [154] : 0x6d (109)
[2022-06-17 08:44:59.513168] [155] : 0x00 (0)
[2022-06-17 08:44:59.514818] [156] : 0x61 (97)
[2022-06-17 08:44:59.516477] [157] : 0x00 (0)
[2022-06-17 08:44:59.518126] [158] : 0x6e (110)
[2022-06-17 08:44:59.519762] [159] : 0x00 (0)
[2022-06-17 08:44:59.521405] [160] : 0x61 (97)
[2022-06-17 08:44:59.523087] [161] : 0x00 (0)
[2022-06-17 08:44:59.524730] [162] : 0x67 (103)
[2022-06-17 08:44:59.526382] [163] : 0x00 (0)
[2022-06-17 08:44:59.527902] [164] : 0x65 (101)
[2022-06-17 08:44:59.529697] [165] : 0x00 (0)
[2022-06-17 08:44:59.531369] [166] : 0x61 (97)
[2022-06-17 08:44:59.533065] [167] : 0x00 (0)
[2022-06-17 08:44:59.534720] [168] : 0x62 (98)
[2022-06-17 08:44:59.536371] [169] : 0x00 (0)
[2022-06-17 08:44:59.538013] [170] : 0x6c (108)
[2022-06-17 08:44:59.539655] [171] : 0x00 (0)
[2022-06-17 08:44:59.541304] [172] : 0x65 (101)
[2022-06-17 08:44:59.542993] [173] : 0x00 (0)
[2022-06-17 08:44:59.544646] [174] : 0x29 (41)
[2022-06-17 08:44:59.546295] [175] : 0x00 (0)
[2022-06-17 08:44:59.547941] [176] : 0x00 (0)
[2022-06-17 08:44:59.549575] [177] : 0x00 (0)
[2022-06-17 08:44:59.552250] size : 0x000000b2 (178)
[2022-06-17 08:44:59.554339] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\WINS:Description]
[2022-06-17 08:44:59.556141] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:59.558078] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:59.560426] out: struct winreg_SetValue
[2022-06-17 08:44:59.562543] result : WERR_OK
[2022-06-17 08:44:59.564401] winreg_CloseKey: struct winreg_CloseKey
[2022-06-17 08:44:59.565922] in: struct winreg_CloseKey
[2022-06-17 08:44:59.567427] handle : *
[2022-06-17 08:44:59.568945] handle: struct policy_handle
[2022-06-17 08:44:59.570678] handle_type : 0x00000001 (1)
[2022-06-17 08:44:59.572202] uuid : 70909e2a-31dd-4270-8e39-1d9498055cc2
[2022-06-17 08:44:59.573753] regdb_close: decrementing refcount (4->3)
[2022-06-17 08:44:59.575258] winreg_CloseKey: struct winreg_CloseKey
[2022-06-17 08:44:59.576752] out: struct winreg_CloseKey
[2022-06-17 08:44:59.578237] handle : *
[2022-06-17 08:44:59.580370] handle: struct policy_handle
[2022-06-17 08:44:59.581919] handle_type : 0x00000000 (0)
[2022-06-17 08:44:59.583499] uuid : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:44:59.585193] result : WERR_OK
[2022-06-17 08:44:59.586727] winreg_CreateKey: struct winreg_CreateKey
[2022-06-17 08:44:59.588242] in: struct winreg_CreateKey
[2022-06-17 08:44:59.589724] handle : *
[2022-06-17 08:44:59.591214] handle: struct policy_handle
[2022-06-17 08:44:59.592724] handle_type : 0x00000001 (1)
[2022-06-17 08:44:59.594304] uuid : 3564441c-52f4-47de-a43c-e15155f8a4c8
[2022-06-17 08:44:59.595827] name: struct winreg_String
[2022-06-17 08:44:59.597319] name_len : 0x0060 (96)
[2022-06-17 08:44:59.598828] name_size : 0x0060 (96)
[2022-06-17 08:44:59.600549] name : *
[2022-06-17 08:44:59.602072] name : 'SYSTEM\CurrentControlSet\Services\WINS\Security'
[2022-06-17 08:44:59.603665] keyclass: struct winreg_String
[2022-06-17 08:44:59.605181] name_len : 0x0002 (2)
[2022-06-17 08:44:59.606687] name_size : 0x0002 (2)
[2022-06-17 08:44:59.608180] name : *
[2022-06-17 08:44:59.609674] name : ''
[2022-06-17 08:44:59.611166] options : 0x00000000 (0)
[2022-06-17 08:44:59.612668] 0: REG_OPTION_VOLATILE
[2022-06-17 08:44:59.614379] 0: REG_OPTION_CREATE_LINK
[2022-06-17 08:44:59.615935] 0: REG_OPTION_BACKUP_RESTORE
[2022-06-17 08:44:59.617450] 0: REG_OPTION_OPEN_LINK
[2022-06-17 08:44:59.618945] access_mask : 0x02000000 (33554432)
[2022-06-17 08:44:59.620441] 0: KEY_QUERY_VALUE
[2022-06-17 08:44:59.621945] 0: KEY_SET_VALUE
[2022-06-17 08:44:59.623486] 0: KEY_CREATE_SUB_KEY
[2022-06-17 08:44:59.625011] 0: KEY_ENUMERATE_SUB_KEYS
[2022-06-17 08:44:59.626515] 0: KEY_NOTIFY
[2022-06-17 08:44:59.628015] 0: KEY_CREATE_LINK
[2022-06-17 08:44:59.629691] 0: KEY_WOW64_64KEY
[2022-06-17 08:44:59.631226] 0: KEY_WOW64_32KEY
[2022-06-17 08:44:59.632725] secdesc : NULL
[2022-06-17 08:44:59.634390] action_taken : *
[2022-06-17 08:44:59.635901] action_taken : REG_OPENED_EXISTING_KEY (2)
[2022-06-17 08:44:59.637426] _winreg_CreateKey called with parent key 'HKLM' and subkey name 'SYSTEM\CurrentControlSet\Services\WINS\Security'
[2022-06-17 08:44:59.638970] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:59.640472] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:59.641974] regkey_open_onelevel: name = [SYSTEM]
[2022-06-17 08:44:59.643519] regdb_open: incrementing refcount (3->4)
[2022-06-17 08:44:59.645832] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM]
[2022-06-17 08:44:59.647384] pathtree_find: Enter [\HKLM\SYSTEM]
[2022-06-17 08:44:59.648896] pathtree_find: Exit
[2022-06-17 08:44:59.650384] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM]
[2022-06-17 08:44:59.652138] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:59.654015] regkey_open_onelevel: name = [CurrentControlSet]
[2022-06-17 08:44:59.655683] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:59.657324] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:59.658977] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:59.660631] pathtree_find: Exit
[2022-06-17 08:44:59.662264] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:44:59.664008] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:59.665661] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:59.667308] regkey_open_onelevel: name = [Services]
[2022-06-17 08:44:59.668936] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:59.670575] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:59.672229] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:59.673923] pathtree_find: Exit
[2022-06-17 08:44:59.675563] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:44:59.677239] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:59.678874] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 2
[2022-06-17 08:44:59.680524] regkey_open_onelevel: name = [WINS]
[2022-06-17 08:44:59.682157] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:59.683984] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services\WINS]
[2022-06-17 08:44:59.685657] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services\WINS]
[2022-06-17 08:44:59.687306] pathtree_find: Exit
[2022-06-17 08:44:59.688938] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services\WINS]
[2022-06-17 08:44:59.690603] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:59.692239] regkey_open_onelevel: name = [Security]
[2022-06-17 08:44:59.693795] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:44:59.695301] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services\WINS\Security]
[2022-06-17 08:44:59.697120] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services\WINS\Security]
[2022-06-17 08:44:59.698794] pathtree_find: Exit
[2022-06-17 08:44:59.700414] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services\WINS\Security]
[2022-06-17 08:44:59.702097] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:44:59.703832] winreg_CreateKey: struct winreg_CreateKey
[2022-06-17 08:44:59.705487] out: struct winreg_CreateKey
[2022-06-17 08:44:59.707124] new_handle : *
[2022-06-17 08:44:59.708771] new_handle: struct policy_handle
[2022-06-17 08:44:59.710426] handle_type : 0x00000001 (1)
[2022-06-17 08:44:59.712064] uuid : d50d4dd8-c0d3-48d7-9646-9ee598d8b132
[2022-06-17 08:44:59.713778] action_taken : *
[2022-06-17 08:44:59.715425] action_taken : REG_OPENED_EXISTING_KEY (2)
[2022-06-17 08:44:59.717077] result : WERR_OK
[2022-06-17 08:44:59.718713] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:59.720342] in: struct winreg_SetValue
[2022-06-17 08:44:59.721870] handle : *
[2022-06-17 08:44:59.723423] handle: struct policy_handle
[2022-06-17 08:44:59.725151] handle_type : 0x00000001 (1)
[2022-06-17 08:44:59.726785] uuid : d50d4dd8-c0d3-48d7-9646-9ee598d8b132
[2022-06-17 08:44:59.728446] name: struct winreg_String
[2022-06-17 08:44:59.730089] name_len : 0x0012 (18)
[2022-06-17 08:44:59.731725] name_size : 0x0012 (18)
[2022-06-17 08:44:59.733428] name : *
[2022-06-17 08:44:59.735098] name : 'Security'
[2022-06-17 08:44:59.736747] type : REG_BINARY (3)
[2022-06-17 08:44:59.738387] data : *
[2022-06-17 08:44:59.740019] data: ARRAY(120)
[2022-06-17 08:44:59.741648] [0] : 0x01 (1)
[2022-06-17 08:44:59.743349] [1] : 0x00 (0)
[2022-06-17 08:44:59.745005] [2] : 0x04 (4)
[2022-06-17 08:44:59.746655] [3] : 0x80 (128)
[2022-06-17 08:44:59.748316] [4] : 0x00 (0)
[2022-06-17 08:44:59.749968] [5] : 0x00 (0)
[2022-06-17 08:44:59.751611] [6] : 0x00 (0)
[2022-06-17 08:44:59.753298] [7] : 0x00 (0)
[2022-06-17 08:44:59.754949] [8] : 0x00 (0)
[2022-06-17 08:44:59.756590] [9] : 0x00 (0)
[2022-06-17 08:44:59.758238] [10] : 0x00 (0)
[2022-06-17 08:44:59.759888] [11] : 0x00 (0)
[2022-06-17 08:44:59.761536] [12] : 0x00 (0)
[2022-06-17 08:44:59.763228] [13] : 0x00 (0)
[2022-06-17 08:44:59.764879] [14] : 0x00 (0)
[2022-06-17 08:44:59.766398] [15] : 0x00 (0)
[2022-06-17 08:44:59.767906] [16] : 0x14 (20)
[2022-06-17 08:44:59.769409] [17] : 0x00 (0)
[2022-06-17 08:44:59.771154] [18] : 0x00 (0)
[2022-06-17 08:44:59.772802] [19] : 0x00 (0)
[2022-06-17 08:44:59.774509] [20] : 0x02 (2)
[2022-06-17 08:44:59.776035] [21] : 0x00 (0)
[2022-06-17 08:44:59.777768] [22] : 0x64 (100)
[2022-06-17 08:44:59.779413] [23] : 0x00 (0)
[2022-06-17 08:44:59.780938] [24] : 0x04 (4)
[2022-06-17 08:44:59.782457] [25] : 0x00 (0)
[2022-06-17 08:44:59.784042] [26] : 0x00 (0)
[2022-06-17 08:44:59.785551] [27] : 0x00 (0)
[2022-06-17 08:44:59.787043] [28] : 0x00 (0)
[2022-06-17 08:44:59.788538] [29] : 0x00 (0)
[2022-06-17 08:44:59.790017] [30] : 0x14 (20)
[2022-06-17 08:44:59.791512] [31] : 0x00 (0)
[2022-06-17 08:44:59.793456] [32] : 0x8d (141)
[2022-06-17 08:44:59.795152] [33] : 0x01 (1)
[2022-06-17 08:44:59.796814] [34] : 0x02 (2)
[2022-06-17 08:44:59.798445] [35] : 0x00 (0)
[2022-06-17 08:44:59.800079] [36] : 0x01 (1)
[2022-06-17 08:44:59.801716] [37] : 0x01 (1)
[2022-06-17 08:44:59.803412] [38] : 0x00 (0)
[2022-06-17 08:44:59.805070] [39] : 0x00 (0)
[2022-06-17 08:44:59.806732] [40] : 0x00 (0)
[2022-06-17 08:44:59.808398] [41] : 0x00 (0)
[2022-06-17 08:44:59.810041] [42] : 0x00 (0)
[2022-06-17 08:44:59.811684] [43] : 0x01 (1)
[2022-06-17 08:44:59.813253] [44] : 0x00 (0)
[2022-06-17 08:44:59.814982] [45] : 0x00 (0)
[2022-06-17 08:44:59.816626] [46] : 0x00 (0)
[2022-06-17 08:44:59.818271] [47] : 0x00 (0)
[2022-06-17 08:44:59.819928] [48] : 0x00 (0)
[2022-06-17 08:44:59.822190] [49] : 0x00 (0)
[2022-06-17 08:44:59.823939] [50] : 0x18 (24)
[2022-06-17 08:44:59.825697] [51] : 0x00 (0)
[2022-06-17 08:44:59.827329] [52] : 0xfd (253)
[2022-06-17 08:44:59.828983] [53] : 0x01 (1)
[2022-06-17 08:44:59.830633] [54] : 0x02 (2)
[2022-06-17 08:44:59.832282] [55] : 0x00 (0)
[2022-06-17 08:44:59.833998] [56] : 0x01 (1)
[2022-06-17 08:44:59.835653] [57] : 0x02 (2)
[2022-06-17 08:44:59.837303] [58] : 0x00 (0)
[2022-06-17 08:44:59.838954] [59] : 0x00 (0)
[2022-06-17 08:44:59.840594] [60] : 0x00 (0)
[2022-06-17 08:44:59.842241] [61] : 0x00 (0)
[2022-06-17 08:44:59.843930] [62] : 0x00 (0)
[2022-06-17 08:44:59.845601] [63] : 0x05 (5)
[2022-06-17 08:44:59.847250] [64] : 0x20 (32)
[2022-06-17 08:44:59.849459] [65] : 0x00 (0)
[2022-06-17 08:44:59.851623] [66] : 0x00 (0)
[2022-06-17 08:44:59.853797] [67] : 0x00 (0)
[2022-06-17 08:44:59.855630] [68] : 0x23 (35)
[2022-06-17 08:44:59.857306] [69] : 0x02 (2)
[2022-06-17 08:44:59.858957] [70] : 0x00 (0)
[2022-06-17 08:44:59.860605] [71] : 0x00 (0)
[2022-06-17 08:44:59.862253] [72] : 0x00 (0)
[2022-06-17 08:44:59.863971] [73] : 0x00 (0)
[2022-06-17 08:44:59.865631] [74] : 0x18 (24)
[2022-06-17 08:44:59.867278] [75] : 0x00 (0)
[2022-06-17 08:44:59.868915] [76] : 0xff (255)
[2022-06-17 08:44:59.871216] [77] : 0x01 (1)
[2022-06-17 08:44:59.872930] [78] : 0x0f (15)
[2022-06-17 08:44:59.874597] [79] : 0x00 (0)
[2022-06-17 08:44:59.876268] [80] : 0x01 (1)
[2022-06-17 08:44:59.877925] [81] : 0x02 (2)
[2022-06-17 08:44:59.879556] [82] : 0x00 (0)
[2022-06-17 08:44:59.881194] [83] : 0x00 (0)
[2022-06-17 08:44:59.882844] [84] : 0x00 (0)
[2022-06-17 08:44:59.884551] [85] : 0x00 (0)
[2022-06-17 08:44:59.886203] [86] : 0x00 (0)
[2022-06-17 08:44:59.887840] [87] : 0x05 (5)
[2022-06-17 08:44:59.889481] [88] : 0x20 (32)
[2022-06-17 08:44:59.891138] [89] : 0x00 (0)
[2022-06-17 08:44:59.892781] [90] : 0x00 (0)
[2022-06-17 08:44:59.894493] [91] : 0x00 (0)
[2022-06-17 08:44:59.896143] [92] : 0x25 (37)
[2022-06-17 08:44:59.897791] [93] : 0x02 (2)
[2022-06-17 08:44:59.899382] [94] : 0x00 (0)
[2022-06-17 08:44:59.900918] [95] : 0x00 (0)
[2022-06-17 08:44:59.902428] [96] : 0x00 (0)
[2022-06-17 08:44:59.904317] [97] : 0x00 (0)
[2022-06-17 08:44:59.905982] [98] : 0x18 (24)
[2022-06-17 08:44:59.907637] [99] : 0x00 (0)
[2022-06-17 08:44:59.909296] [100] : 0xff (255)
[2022-06-17 08:44:59.910822] [101] : 0x01 (1)
[2022-06-17 08:44:59.912315] [102] : 0x0f (15)
[2022-06-17 08:44:59.913887] [103] : 0x00 (0)
[2022-06-17 08:44:59.915673] [104] : 0x01 (1)
[2022-06-17 08:44:59.917335] [105] : 0x02 (2)
[2022-06-17 08:44:59.918986] [106] : 0x00 (0)
[2022-06-17 08:44:59.920625] [107] : 0x00 (0)
[2022-06-17 08:44:59.922277] [108] : 0x00 (0)
[2022-06-17 08:44:59.923999] [109] : 0x00 (0)
[2022-06-17 08:44:59.925649] [110] : 0x00 (0)
[2022-06-17 08:44:59.927171] [111] : 0x05 (5)
[2022-06-17 08:44:59.928883] [112] : 0x20 (32)
[2022-06-17 08:44:59.930533] [113] : 0x00 (0)
[2022-06-17 08:44:59.932177] [114] : 0x00 (0)
[2022-06-17 08:44:59.933870] [115] : 0x00 (0)
[2022-06-17 08:44:59.935514] [116] : 0x20 (32)
[2022-06-17 08:44:59.937162] [117] : 0x02 (2)
[2022-06-17 08:44:59.938817] [118] : 0x00 (0)
[2022-06-17 08:44:59.940458] [119] : 0x00 (0)
[2022-06-17 08:44:59.942097] size : 0x00000078 (120)
[2022-06-17 08:44:59.943801] _winreg_SetValue: Setting value for [HKLM\SYSTEM\CurrentControlSet\Services\WINS\Security:Security]
[2022-06-17 08:44:59.945492] tdb(/var/lib/samba/registry.tdb): tdb_transaction_start: nesting 1
[2022-06-17 08:44:59.947143] fetch_reg_values called for key 'HKLM\SYSTEM\CurrentControlSet\Services\WINS\Security' (ops 0xb6ab32e8)
[2022-06-17 08:44:59.948808] regdb_fetch_values: Looking for values of key [HKLM\SYSTEM\CurrentControlSet\Services\WINS\Security]
[2022-06-17 08:44:59.950470] regdb_unpack_values: value[0]: name[Security] len[120]
[2022-06-17 08:44:59.952125] winreg_SetValue: struct winreg_SetValue
[2022-06-17 08:44:59.953822] out: struct winreg_SetValue
[2022-06-17 08:44:59.955491] result : WERR_OK
[2022-06-17 08:44:59.957137] winreg_CloseKey: struct winreg_CloseKey
[2022-06-17 08:44:59.958785] in: struct winreg_CloseKey
[2022-06-17 08:44:59.960411] handle : *
[2022-06-17 08:44:59.962034] handle: struct policy_handle
[2022-06-17 08:44:59.963738] handle_type : 0x00000001 (1)
[2022-06-17 08:44:59.965394] uuid : d50d4dd8-c0d3-48d7-9646-9ee598d8b132
[2022-06-17 08:44:59.967074] regdb_close: decrementing refcount (4->3)
[2022-06-17 08:44:59.968709] winreg_CloseKey: struct winreg_CloseKey
[2022-06-17 08:44:59.970368] out: struct winreg_CloseKey
[2022-06-17 08:44:59.972001] handle : *
[2022-06-17 08:44:59.973692] handle: struct policy_handle
[2022-06-17 08:44:59.975339] handle_type : 0x00000000 (0)
[2022-06-17 08:44:59.976867] uuid : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:44:59.978650] result : WERR_OK
[2022-06-17 08:44:59.980295] winreg_CloseKey: struct winreg_CloseKey
[2022-06-17 08:44:59.981943] in: struct winreg_CloseKey
[2022-06-17 08:44:59.983643] handle : *
[2022-06-17 08:44:59.985288] handle: struct policy_handle
[2022-06-17 08:44:59.986916] handle_type : 0x00000001 (1)
[2022-06-17 08:44:59.988562] uuid : 2db84861-daa1-4392-93ae-d86a8560d69c
[2022-06-17 08:44:59.990227] regdb_close: decrementing refcount (3->2)
[2022-06-17 08:44:59.991878] winreg_CloseKey: struct winreg_CloseKey
[2022-06-17 08:44:59.993570] out: struct winreg_CloseKey
[2022-06-17 08:44:59.995233] handle : *
[2022-06-17 08:44:59.996888] handle: struct policy_handle
[2022-06-17 08:44:59.998538] handle_type : 0x00000000 (0)
[2022-06-17 08:45:00.000189] uuid : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:45:00.001849] result : WERR_OK
[2022-06-17 08:45:00.003561] regdb_close: decrementing refcount (2->1)
[2022-06-17 08:45:00.005100] regdb_close: decrementing refcount (1->0)
[2022-06-17 08:45:00.006828] dcesrv_interface_register: Interface 'svcctl' registered on endpoint 'ncacn_np:[\pipe\svcctl]' (single process required)
[2022-06-17 08:45:00.008519] dcesrv_interface_register: Interface 'svcctl' registered on endpoint 'ncalrpc:' (single process required)
[2022-06-17 08:45:00.010191] dcesrv_interface_register: Interface 'ntsvcs' registered on endpoint 'ncacn_np:[\pipe\ntsvcs]' (single process required)
[2022-06-17 08:45:00.011869] dcesrv_interface_register: Interface 'ntsvcs' registered on endpoint 'ncacn_np:[\pipe\plugplay]' (single process required)
[2022-06-17 08:45:00.013577] Initialise the eventlog registry keys if needed.
[2022-06-17 08:45:00.015235] make_internal_ncacn_conn: Create pipe requested winreg
[2022-06-17 08:45:00.016897] Created internal pipe winreg
[2022-06-17 08:45:00.018513] winreg_OpenHKLM: struct winreg_OpenHKLM
[2022-06-17 08:45:00.020780] in: struct winreg_OpenHKLM
[2022-06-17 08:45:00.022460] system_name : NULL
[2022-06-17 08:45:00.025422] access_mask : 0x02000000 (33554432)
[2022-06-17 08:45:00.033642] 0: KEY_QUERY_VALUE
[2022-06-17 08:45:00.035506] 0: KEY_SET_VALUE
[2022-06-17 08:45:00.037233] 0: KEY_CREATE_SUB_KEY
[2022-06-17 08:45:00.038910] 0: KEY_ENUMERATE_SUB_KEYS
[2022-06-17 08:45:00.040442] 0: KEY_NOTIFY
[2022-06-17 08:45:00.041946] 0: KEY_CREATE_LINK
[2022-06-17 08:45:00.043495] 0: KEY_WOW64_64KEY
[2022-06-17 08:45:00.046978] 0: KEY_WOW64_32KEY
[2022-06-17 08:45:00.048650] regkey_open_onelevel: name = [HKLM]
[2022-06-17 08:45:00.052137] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:00.053979] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:00.056204] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:00.059795] Security token: (NULL)
[2022-06-17 08:45:00.061582] UNIX token of user 0
[2022-06-17 08:45:00.065348] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:00.067178] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:00.073204] regdb_open: registry db opened. refcount reset (1)
[2022-06-17 08:45:00.075067] reghook_cache_find: Searching for keyname [\HKLM]
[2022-06-17 08:45:00.076783] pathtree_find: Enter [\HKLM]
[2022-06-17 08:45:00.078464] pathtree_find: Exit
[2022-06-17 08:45:00.080187] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM]
[2022-06-17 08:45:00.083613] winreg_OpenHKLM: struct winreg_OpenHKLM
[2022-06-17 08:45:00.087146] out: struct winreg_OpenHKLM
[2022-06-17 08:45:00.088958] handle : *
[2022-06-17 08:45:00.094806] handle: struct policy_handle
[2022-06-17 08:45:00.096736] handle_type : 0x00000001 (1)
[2022-06-17 08:45:00.098467] uuid : f67da3e6-6b71-4d9b-a5a0-05a0ca660933
[2022-06-17 08:45:00.100152] result : WERR_OK
[2022-06-17 08:45:00.101796] winreg_OpenKey: struct winreg_OpenKey
[2022-06-17 08:45:00.103493] in: struct winreg_OpenKey
[2022-06-17 08:45:00.105148] parent_handle : *
[2022-06-17 08:45:00.106921] parent_handle: struct policy_handle
[2022-06-17 08:45:00.108600] handle_type : 0x00000001 (1)
[2022-06-17 08:45:00.110250] uuid : f67da3e6-6b71-4d9b-a5a0-05a0ca660933
[2022-06-17 08:45:00.111896] keyname: struct winreg_String
[2022-06-17 08:45:00.113588] name_len : 0x0056 (86)
[2022-06-17 08:45:00.115240] name_size : 0x0056 (86)
[2022-06-17 08:45:00.116881] name : *
[2022-06-17 08:45:00.118538] name : 'SYSTEM\CurrentControlSet\Services\Eventlog'
[2022-06-17 08:45:00.120201] options : 0x00000000 (0)
[2022-06-17 08:45:00.121843] 0: REG_OPTION_VOLATILE
[2022-06-17 08:45:00.123535] 0: REG_OPTION_CREATE_LINK
[2022-06-17 08:45:00.125190] 0: REG_OPTION_BACKUP_RESTORE
[2022-06-17 08:45:00.126812] 0: REG_OPTION_OPEN_LINK
[2022-06-17 08:45:00.128463] access_mask : 0x02000000 (33554432)
[2022-06-17 08:45:00.130111] 0: KEY_QUERY_VALUE
[2022-06-17 08:45:00.131759] 0: KEY_SET_VALUE
[2022-06-17 08:45:00.133478] 0: KEY_CREATE_SUB_KEY
[2022-06-17 08:45:00.135142] 0: KEY_ENUMERATE_SUB_KEYS
[2022-06-17 08:45:00.136786] 0: KEY_NOTIFY
[2022-06-17 08:45:00.138418] 0: KEY_CREATE_LINK
[2022-06-17 08:45:00.140050] 0: KEY_WOW64_64KEY
[2022-06-17 08:45:00.141694] 0: KEY_WOW64_32KEY
[2022-06-17 08:45:00.143388] regkey_open_onelevel: name = [SYSTEM]
[2022-06-17 08:45:00.145039] regdb_open: incrementing refcount (1->2)
[2022-06-17 08:45:00.146678] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM]
[2022-06-17 08:45:00.148307] pathtree_find: Enter [\HKLM\SYSTEM]
[2022-06-17 08:45:00.149926] pathtree_find: Exit
[2022-06-17 08:45:00.151551] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM]
[2022-06-17 08:45:00.153238] regkey_open_onelevel: name = [CurrentControlSet]
[2022-06-17 08:45:00.154910] regdb_open: incrementing refcount (2->3)
[2022-06-17 08:45:00.156550] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:45:00.158185] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:45:00.159824] pathtree_find: Exit
[2022-06-17 08:45:00.161437] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet]
[2022-06-17 08:45:00.163140] regkey_open_onelevel: name = [Services]
[2022-06-17 08:45:00.164795] regdb_open: incrementing refcount (3->4)
[2022-06-17 08:45:00.166428] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:45:00.168097] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:45:00.169756] pathtree_find: Exit
[2022-06-17 08:45:00.171378] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services]
[2022-06-17 08:45:00.173074] regkey_open_onelevel: name = [Eventlog]
[2022-06-17 08:45:00.174713] regdb_open: incrementing refcount (4->5)
[2022-06-17 08:45:00.176354] reghook_cache_find: Searching for keyname [\HKLM\SYSTEM\CurrentControlSet\Services\Eventlog]
[2022-06-17 08:45:00.178020] pathtree_find: Enter [\HKLM\SYSTEM\CurrentControlSet\Services\Eventlog]
[2022-06-17 08:45:00.179671] pathtree_find: Exit
[2022-06-17 08:45:00.181389] reghook_cache_find: found ops 0xb6ab32e8 for key [\HKLM\SYSTEM\CurrentControlSet\Services\Eventlog]
[2022-06-17 08:45:00.183175] regdb_close: decrementing refcount (5->4)
[2022-06-17 08:45:00.184853] regdb_close: decrementing refcount (4->3)
[2022-06-17 08:45:00.186497] regdb_close: decrementing refcount (3->2)
[2022-06-17 08:45:00.188121] winreg_OpenKey: struct winreg_OpenKey
[2022-06-17 08:45:00.189757] out: struct winreg_OpenKey
[2022-06-17 08:45:00.191386] handle : *
[2022-06-17 08:45:00.193069] handle: struct policy_handle
[2022-06-17 08:45:00.194723] handle_type : 0x00000001 (1)
[2022-06-17 08:45:00.196370] uuid : d3a7ffb5-076b-4a8c-9b97-30015f6cce9b
[2022-06-17 08:45:00.198039] result : WERR_OK
[2022-06-17 08:45:00.199674] winreg_QueryInfoKey: struct winreg_QueryInfoKey
[2022-06-17 08:45:00.201302] in: struct winreg_QueryInfoKey
[2022-06-17 08:45:00.202977] handle : *
[2022-06-17 08:45:00.204624] handle: struct policy_handle
[2022-06-17 08:45:00.206151] handle_type : 0x00000001 (1)
[2022-06-17 08:45:00.207662] uuid : d3a7ffb5-076b-4a8c-9b97-30015f6cce9b
[2022-06-17 08:45:00.209414] classname : *
[2022-06-17 08:45:00.211039] classname: struct winreg_String
[2022-06-17 08:45:00.212680] name_len : 0x0000 (0)
[2022-06-17 08:45:00.214424] name_size : 0x0000 (0)
[2022-06-17 08:45:00.216066] name : NULL
[2022-06-17 08:45:00.217716] fetch_reg_values called for key 'HKLM\SYSTEM\CurrentControlSet\Services\Eventlog' (ops 0xb6ab32e8)
[2022-06-17 08:45:00.219394] regdb_fetch_values: Looking for values of key [HKLM\SYSTEM\CurrentControlSet\Services\Eventlog]
[2022-06-17 08:45:00.220934] regdb_unpack_values: value[0]: name[DisplayName] len[20]
[2022-06-17 08:45:00.222434] regdb_unpack_values: value[1]: name[ErrorControl] len[4]
[2022-06-17 08:45:00.224257] regdb_get_secdesc: Getting secdesc of key [HKLM\SYSTEM\CurrentControlSet\Services\Eventlog]
[2022-06-17 08:45:00.225923] winreg_QueryInfoKey: struct winreg_QueryInfoKey
[2022-06-17 08:45:00.227457] out: struct winreg_QueryInfoKey
[2022-06-17 08:45:00.228959] classname : *
[2022-06-17 08:45:00.230617] classname: struct winreg_String
[2022-06-17 08:45:00.232114] name_len : 0x0000 (0)
[2022-06-17 08:45:00.233656] name_size : 0x0000 (0)
[2022-06-17 08:45:00.235160] name : NULL
[2022-06-17 08:45:00.236653] num_subkeys : *
[2022-06-17 08:45:00.238144] num_subkeys : 0x00000000 (0)
[2022-06-17 08:45:00.239636] max_subkeylen : *
[2022-06-17 08:45:00.241126] max_subkeylen : 0x00000000 (0)
[2022-06-17 08:45:00.242616] max_classlen : *
[2022-06-17 08:45:00.244330] max_classlen : 0x00000000 (0)
[2022-06-17 08:45:00.245879] num_values : *
[2022-06-17 08:45:00.247388] num_values : 0x00000002 (2)
[2022-06-17 08:45:00.248888] max_valnamelen : *
[2022-06-17 08:45:00.250383] max_valnamelen : 0x0000001a (26)
[2022-06-17 08:45:00.252243] max_valbufsize : *
[2022-06-17 08:45:00.253980] max_valbufsize : 0x00000014 (20)
[2022-06-17 08:45:00.255743] secdescsize : *
[2022-06-17 08:45:00.257262] secdescsize : 0x00000078 (120)
[2022-06-17 08:45:00.258977] last_changed_time : *
[2022-06-17 08:45:00.260489] last_changed_time : NTTIME(0)
[2022-06-17 08:45:00.262154] result : WERR_OK
[2022-06-17 08:45:00.263734] winreg_CloseKey: struct winreg_CloseKey
[2022-06-17 08:45:00.265258] in: struct winreg_CloseKey
[2022-06-17 08:45:00.266740] handle : *
[2022-06-17 08:45:00.268522] handle: struct policy_handle
[2022-06-17 08:45:00.270154] handle_type : 0x00000001 (1)
[2022-06-17 08:45:00.271786] uuid : d3a7ffb5-076b-4a8c-9b97-30015f6cce9b
[2022-06-17 08:45:00.273377] regdb_close: decrementing refcount (2->1)
[2022-06-17 08:45:00.274899] winreg_CloseKey: struct winreg_CloseKey
[2022-06-17 08:45:00.276661] out: struct winreg_CloseKey
[2022-06-17 08:45:00.278297] handle : *
[2022-06-17 08:45:00.279952] handle: struct policy_handle
[2022-06-17 08:45:00.281586] handle_type : 0x00000000 (0)
[2022-06-17 08:45:00.283165] uuid : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:45:00.284704] result : WERR_OK
[2022-06-17 08:45:00.286348] regdb_close: decrementing refcount (1->0)
[2022-06-17 08:45:00.288117] dcesrv_interface_register: Interface 'eventlog' registered on endpoint 'ncacn_np:[\pipe\eventlog]' (single process required)
[2022-06-17 08:45:00.289800] dcesrv_interface_register: Interface 'initshutdown' registered on endpoint 'ncacn_np:[\pipe\InitShutdown]' (single process required)
[2022-06-17 08:45:00.291491] dcesrv_init: Initializing DCE/RPC connection endpoints
[2022-06-17 08:45:00.293173] dcesrv_setup_endpoint_sockets: Setting up endpoint 'ncacn_np:[\pipe\InitShutdown]'
[2022-06-17 08:45:00.294860] dcesrv_create_ncacn_np_socket: Opened pipe socket fd 25 for initshutdown
[2022-06-17 08:45:00.296508] dcesrv_setup_endpoint_sockets: Successfully listening on 'ncacn_np:[\pipe\InitShutdown]' for 'initshutdown' 'mgmt'
[2022-06-17 08:45:00.298190] dcesrv_setup_endpoint_sockets: Setting up endpoint 'ncacn_np:[\pipe\eventlog]'
[2022-06-17 08:45:00.299850] dcesrv_create_ncacn_np_socket: Opened pipe socket fd 26 for eventlog
[2022-06-17 08:45:00.301387] dcesrv_setup_endpoint_sockets: Successfully listening on 'ncacn_np:[\pipe\eventlog]' for 'eventlog' 'mgmt'
[2022-06-17 08:45:00.303221] dcesrv_setup_endpoint_sockets: Setting up endpoint 'ncacn_np:[\pipe\plugplay]'
[2022-06-17 08:45:00.304888] dcesrv_create_ncacn_np_socket: Opened pipe socket fd 27 for plugplay
[2022-06-17 08:45:00.306538] dcesrv_setup_endpoint_sockets: Successfully listening on 'ncacn_np:[\pipe\plugplay]' for 'ntsvcs' 'mgmt'
[2022-06-17 08:45:00.308216] dcesrv_setup_endpoint_sockets: Setting up endpoint 'ncacn_np:[\pipe\ntsvcs]'
[2022-06-17 08:45:00.309887] dcesrv_create_ncacn_np_socket: Opened pipe socket fd 28 for ntsvcs
[2022-06-17 08:45:00.311539] dcesrv_setup_endpoint_sockets: Successfully listening on 'ncacn_np:[\pipe\ntsvcs]' for 'ntsvcs' 'mgmt'
[2022-06-17 08:45:00.313259] dcesrv_setup_endpoint_sockets: Setting up endpoint 'ncacn_np:[\pipe\svcctl]'
[2022-06-17 08:45:00.314926] dcesrv_create_ncacn_np_socket: Opened pipe socket fd 29 for svcctl
[2022-06-17 08:45:00.316578] dcesrv_setup_endpoint_sockets: Successfully listening on 'ncacn_np:[\pipe\svcctl]' for 'svcctl' 'mgmt'
[2022-06-17 08:45:00.318250] dcesrv_setup_endpoint_sockets: Setting up endpoint 'ncacn_np:[\pipe\wkssvc]'
[2022-06-17 08:45:00.319905] dcesrv_create_ncacn_np_socket: Opened pipe socket fd 30 for wkssvc
[2022-06-17 08:45:00.321555] dcesrv_setup_endpoint_sockets: Successfully listening on 'ncacn_np:[\pipe\wkssvc]' for 'wkssvc' 'mgmt'
[2022-06-17 08:45:00.323287] dcesrv_setup_endpoint_sockets: Setting up endpoint 'ncacn_np:[\pipe\netdfs]'
[2022-06-17 08:45:00.324965] dcesrv_create_ncacn_np_socket: Opened pipe socket fd 31 for netdfs
[2022-06-17 08:45:00.326626] dcesrv_setup_endpoint_sockets: Successfully listening on 'ncacn_np:[\pipe\netdfs]' for 'netdfs' 'mgmt'
[2022-06-17 08:45:00.328305] dcesrv_setup_endpoint_sockets: Setting up endpoint 'ncacn_np:[\pipe\samr]'
[2022-06-17 08:45:00.329956] dcesrv_create_ncacn_np_socket: Opened pipe socket fd 32 for samr
[2022-06-17 08:45:00.331610] dcesrv_setup_endpoint_sockets: Successfully listening on 'ncacn_np:[\pipe\samr]' for 'samr' 'mgmt'
[2022-06-17 08:45:00.333325] dcesrv_setup_endpoint_sockets: Setting up endpoint 'ncacn_np:[\pipe\lsass]'
[2022-06-17 08:45:00.334972] dcesrv_create_ncacn_np_socket: Opened pipe socket fd 33 for lsass
[2022-06-17 08:45:00.336642] dcesrv_setup_endpoint_sockets: Successfully listening on 'ncacn_np:[\pipe\lsass]' for 'dssetup' 'lsarpc' 'mgmt'
[2022-06-17 08:45:00.338337] dcesrv_setup_endpoint_sockets: Setting up endpoint 'ncacn_np:[\pipe\lsarpc]'
[2022-06-17 08:45:00.340002] dcesrv_create_ncacn_np_socket: Opened pipe socket fd 34 for lsarpc
[2022-06-17 08:45:00.341641] dcesrv_setup_endpoint_sockets: Successfully listening on 'ncacn_np:[\pipe\lsarpc]' for 'dssetup' 'lsarpc' 'mgmt'
[2022-06-17 08:45:00.343356] dcesrv_setup_endpoint_sockets: Setting up endpoint 'ncacn_np:[\pipe\netlogon]'
[2022-06-17 08:45:00.344910] dcesrv_create_ncacn_np_socket: Opened pipe socket fd 35 for netlogon
[2022-06-17 08:45:00.346430] dcesrv_setup_endpoint_sockets: Successfully listening on 'ncacn_np:[\pipe\netlogon]' for 'lsarpc' 'mgmt'
[2022-06-17 08:45:00.347960] dcesrv_setup_endpoint_sockets: Setting up endpoint 'ncacn_np:[\pipe\srvsvc]'
[2022-06-17 08:45:00.349709] dcesrv_create_ncacn_np_socket: Opened pipe socket fd 36 for srvsvc
[2022-06-17 08:45:00.351353] dcesrv_setup_endpoint_sockets: Successfully listening on 'ncacn_np:[\pipe\srvsvc]' for 'srvsvc' 'mgmt'
[2022-06-17 08:45:00.353074] dcesrv_setup_endpoint_sockets: Setting up endpoint 'ncalrpc:'
[2022-06-17 08:45:00.354736] dcesrv_create_ncalrpc_socket: Opened ncalrpc socket fd '37' for '/var/run/samba/ncalrpc/DEFAULT'
[2022-06-17 08:45:00.356290] dcesrv_setup_endpoint_sockets: Successfully listening on 'ncalrpc:[DEFAULT]' for 'svcctl' 'wkssvc' 'dssetup' 'netdfs' 'samr' 'lsarpc' 'srvsvc' 'winreg' 'mgmt'
[2022-06-17 08:45:00.358006] dcesrv_setup_endpoint_sockets: Setting up endpoint 'ncacn_np:[\pipe\winreg]'
[2022-06-17 08:45:00.359664] dcesrv_create_ncacn_np_socket: Opened pipe socket fd 38 for winreg
[2022-06-17 08:45:00.361305] dcesrv_setup_endpoint_sockets: Successfully listening on 'ncacn_np:[\pipe\winreg]' for 'winreg' 'mgmt'
[2022-06-17 08:45:00.362914] daemon_ready: daemon 'smbd' finished starting up and ready to serve connections
[2022-06-17 08:45:00.364446] bind succeeded on port 445
[2022-06-17 08:45:00.366098] Socket options:
[2022-06-17 08:45:00.367573] SO_KEEPALIVE = 1
[2022-06-17 08:45:00.369037] SO_REUSEADDR = 1
[2022-06-17 08:45:00.370518] SO_BROADCAST = 0
[2022-06-17 08:45:00.372186] TCP_NODELAY = 0
[2022-06-17 08:45:00.373720] TCP_KEEPCNT = 9
[2022-06-17 08:45:00.375195] TCP_KEEPIDLE = 120
[2022-06-17 08:45:00.376902] TCP_KEEPINTVL = 75
[2022-06-17 08:45:00.378517] IPTOS_LOWDELAY = 0
[2022-06-17 08:45:00.380015] IPTOS_THROUGHPUT = 0
[2022-06-17 08:45:00.381609] SO_REUSEPORT = 1
[2022-06-17 08:45:00.383291] SO_SNDBUF = 16384
[2022-06-17 08:45:00.384935] SO_RCVBUF = 131072
[2022-06-17 08:45:00.386554] SO_SNDLOWAT = 1
[2022-06-17 08:45:00.388176] SO_RCVLOWAT = 1
[2022-06-17 08:45:00.389793] SO_SNDTIMEO = 0
[2022-06-17 08:45:00.391408] SO_RCVTIMEO = 0
[2022-06-17 08:45:00.393183] TCP_QUICKACK = 1
[2022-06-17 08:45:00.394837] TCP_DEFER_ACCEPT = 0
[2022-06-17 08:45:00.396467] TCP_USER_TIMEOUT = 0
[2022-06-17 08:45:00.398090] Socket options:
[2022-06-17 08:45:00.399704] SO_KEEPALIVE = 1
[2022-06-17 08:45:00.401314] SO_REUSEADDR = 1
[2022-06-17 08:45:00.402960] SO_BROADCAST = 0
[2022-06-17 08:45:00.404590] TCP_NODELAY = 1
[2022-06-17 08:45:00.406214] TCP_KEEPCNT = 9
[2022-06-17 08:45:00.407847] TCP_KEEPIDLE = 120
[2022-06-17 08:45:00.409456] TCP_KEEPINTVL = 75
[2022-06-17 08:45:00.411060] IPTOS_LOWDELAY = 16
[2022-06-17 08:45:00.412671] IPTOS_THROUGHPUT = 16
[2022-06-17 08:45:00.414351] SO_REUSEPORT = 1
[2022-06-17 08:45:00.415958] SO_SNDBUF = 16384
[2022-06-17 08:45:00.417578] SO_RCVBUF = 131072
[2022-06-17 08:45:00.419195] SO_SNDLOWAT = 1
[2022-06-17 08:45:00.420830] SO_RCVLOWAT = 1
[2022-06-17 08:45:00.422449] SO_SNDTIMEO = 0
[2022-06-17 08:45:00.424161] SO_RCVTIMEO = 0
[2022-06-17 08:45:00.425779] TCP_QUICKACK = 1
[2022-06-17 08:45:00.427409] TCP_DEFER_ACCEPT = 0
[2022-06-17 08:45:00.429016] TCP_USER_TIMEOUT = 0
[2022-06-17 08:45:00.430704] bind succeeded on port 139
[2022-06-17 08:45:00.432348] Socket options:
[2022-06-17 08:45:00.434052] SO_KEEPALIVE = 1
[2022-06-17 08:45:00.435554] SO_REUSEADDR = 1
[2022-06-17 08:45:00.437243] SO_BROADCAST = 0
[2022-06-17 08:45:00.438737] TCP_NODELAY = 0
[2022-06-17 08:45:00.440486] TCP_KEEPCNT = 9
[2022-06-17 08:45:00.441988] TCP_KEEPIDLE = 120
[2022-06-17 08:45:00.443660] TCP_KEEPINTVL = 75
[2022-06-17 08:45:00.445303] IPTOS_LOWDELAY = 0
[2022-06-17 08:45:00.446920] IPTOS_THROUGHPUT = 0
[2022-06-17 08:45:00.448526] SO_REUSEPORT = 1
[2022-06-17 08:45:00.450143] SO_SNDBUF = 16384
[2022-06-17 08:45:00.451750] SO_RCVBUF = 131072
[2022-06-17 08:45:00.453298] SO_SNDLOWAT = 1
[2022-06-17 08:45:00.455014] SO_RCVLOWAT = 1
[2022-06-17 08:45:00.456640] SO_SNDTIMEO = 0
[2022-06-17 08:45:00.458260] SO_RCVTIMEO = 0
[2022-06-17 08:45:00.459881] TCP_QUICKACK = 1
[2022-06-17 08:45:00.461486] TCP_DEFER_ACCEPT = 0
[2022-06-17 08:45:00.463156] TCP_USER_TIMEOUT = 0
[2022-06-17 08:45:00.464799] Socket options:
[2022-06-17 08:45:00.466427] SO_KEEPALIVE = 1
[2022-06-17 08:45:00.468035] SO_REUSEADDR = 1
[2022-06-17 08:45:00.469648] SO_BROADCAST = 0
[2022-06-17 08:45:00.471249] TCP_NODELAY = 1
[2022-06-17 08:45:00.472899] TCP_KEEPCNT = 9
[2022-06-17 08:45:00.474524] TCP_KEEPIDLE = 120
[2022-06-17 08:45:00.476148] TCP_KEEPINTVL = 75
[2022-06-17 08:45:00.477779] IPTOS_LOWDELAY = 16
[2022-06-17 08:45:00.479414] IPTOS_THROUGHPUT = 16
[2022-06-17 08:45:00.481031] SO_REUSEPORT = 1
[2022-06-17 08:45:00.482640] SO_SNDBUF = 16384
[2022-06-17 08:45:00.484332] SO_RCVBUF = 131072
[2022-06-17 08:45:00.485954] SO_SNDLOWAT = 1
[2022-06-17 08:45:00.487566] SO_RCVLOWAT = 1
[2022-06-17 08:45:00.489197] SO_SNDTIMEO = 0
[2022-06-17 08:45:00.490822] SO_RCVTIMEO = 0
[2022-06-17 08:45:00.492461] TCP_QUICKACK = 1
[2022-06-17 08:45:00.494176] TCP_DEFER_ACCEPT = 0
[2022-06-17 08:45:00.495803] TCP_USER_TIMEOUT = 0
[2022-06-17 08:45:00.497432] bind succeeded on port 445
[2022-06-17 08:45:00.499052] Socket options:
[2022-06-17 08:45:00.500673] SO_KEEPALIVE = 1
[2022-06-17 08:45:00.502302] SO_REUSEADDR = 1
[2022-06-17 08:45:00.503999] SO_BROADCAST = 0
[2022-06-17 08:45:00.505630] TCP_NODELAY = 0
[2022-06-17 08:45:00.507351] TCP_KEEPCNT = 9
[2022-06-17 08:45:00.508980] TCP_KEEPIDLE = 120
[2022-06-17 08:45:00.510602] TCP_KEEPINTVL = 75
[2022-06-17 08:45:00.512232] IPTOS_LOWDELAY = 0
[2022-06-17 08:45:00.513884] IPTOS_THROUGHPUT = 0
[2022-06-17 08:45:00.515506] SO_REUSEPORT = 1
[2022-06-17 08:45:00.517135] SO_SNDBUF = 16384
[2022-06-17 08:45:00.518764] SO_RCVBUF = 131072
[2022-06-17 08:45:00.520380] SO_SNDLOWAT = 1
[2022-06-17 08:45:00.521994] SO_RCVLOWAT = 1
[2022-06-17 08:45:00.523659] SO_SNDTIMEO = 0
[2022-06-17 08:45:00.525297] SO_RCVTIMEO = 0
[2022-06-17 08:45:00.526926] TCP_QUICKACK = 1
[2022-06-17 08:45:00.533004] TCP_DEFER_ACCEPT = 0
[2022-06-17 08:45:00.534860] TCP_USER_TIMEOUT = 0
[2022-06-17 08:45:00.543528] Socket options:
[2022-06-17 08:45:00.545337] SO_KEEPALIVE = 1
[2022-06-17 08:45:00.547022] SO_REUSEADDR = 1
[2022-06-17 08:45:00.548659] SO_BROADCAST = 0
[2022-06-17 08:45:00.550286] TCP_NODELAY = 1
[2022-06-17 08:45:00.551911] TCP_KEEPCNT = 9
[2022-06-17 08:45:00.553590] TCP_KEEPIDLE = 120
[2022-06-17 08:45:00.557225] TCP_KEEPINTVL = 75
[2022-06-17 08:45:00.558988] IPTOS_LOWDELAY = 16
[2022-06-17 08:45:00.560651] IPTOS_THROUGHPUT = 16
[2022-06-17 08:45:00.562545] SO_REUSEPORT = 1
[2022-06-17 08:45:00.564170] SO_SNDBUF = 16384
[2022-06-17 08:45:00.565941] SO_RCVBUF = 131072
[2022-06-17 08:45:00.567578] SO_SNDLOWAT = 1
[2022-06-17 08:45:00.569169] SO_RCVLOWAT = 1
[2022-06-17 08:45:00.570778] SO_SNDTIMEO = 0
[2022-06-17 08:45:00.572270] SO_RCVTIMEO = 0
[2022-06-17 08:45:00.573794] TCP_QUICKACK = 1
[2022-06-17 08:45:00.575298] TCP_DEFER_ACCEPT = 0
[2022-06-17 08:45:00.576920] TCP_USER_TIMEOUT = 0
[2022-06-17 08:45:00.578564] bind succeeded on port 139
[2022-06-17 08:45:00.580184] Socket options:
[2022-06-17 08:45:00.581791] SO_KEEPALIVE = 1
[2022-06-17 08:45:00.583451] SO_REUSEADDR = 1
[2022-06-17 08:45:00.585080] SO_BROADCAST = 0
[2022-06-17 08:45:00.586690] TCP_NODELAY = 0
[2022-06-17 08:45:00.588310] TCP_KEEPCNT = 9
[2022-06-17 08:45:00.589922] TCP_KEEPIDLE = 120
[2022-06-17 08:45:00.591537] TCP_KEEPINTVL = 75
[2022-06-17 08:45:00.593198] IPTOS_LOWDELAY = 0
[2022-06-17 08:45:00.594835] IPTOS_THROUGHPUT = 0
[2022-06-17 08:45:00.596434] SO_REUSEPORT = 1
[2022-06-17 08:45:00.598045] SO_SNDBUF = 16384
[2022-06-17 08:45:00.599548] SO_RCVBUF = 131072
[2022-06-17 08:45:00.601028] SO_SNDLOWAT = 1
[2022-06-17 08:45:00.602492] SO_RCVLOWAT = 1
[2022-06-17 08:45:00.604032] SO_SNDTIMEO = 0
[2022-06-17 08:45:00.605497] SO_RCVTIMEO = 0
[2022-06-17 08:45:00.606961] TCP_QUICKACK = 1
[2022-06-17 08:45:00.608422] TCP_DEFER_ACCEPT = 0
[2022-06-17 08:45:00.610250] TCP_USER_TIMEOUT = 0
[2022-06-17 08:45:00.611889] Socket options:
[2022-06-17 08:45:00.613567] SO_KEEPALIVE = 1
[2022-06-17 08:45:00.615197] SO_REUSEADDR = 1
[2022-06-17 08:45:00.616824] SO_BROADCAST = 0
[2022-06-17 08:45:00.618430] TCP_NODELAY = 1
[2022-06-17 08:45:00.620049] TCP_KEEPCNT = 9
[2022-06-17 08:45:00.621653] TCP_KEEPIDLE = 120
[2022-06-17 08:45:00.623373] TCP_KEEPINTVL = 75
[2022-06-17 08:45:00.625017] IPTOS_LOWDELAY = 16
[2022-06-17 08:45:00.626637] IPTOS_THROUGHPUT = 16
[2022-06-17 08:45:00.628262] SO_REUSEPORT = 1
[2022-06-17 08:45:00.629863] SO_SNDBUF = 16384
[2022-06-17 08:45:00.631464] SO_RCVBUF = 131072
[2022-06-17 08:45:00.633120] SO_SNDLOWAT = 1
[2022-06-17 08:45:00.634751] SO_RCVLOWAT = 1
[2022-06-17 08:45:00.636384] SO_SNDTIMEO = 0
[2022-06-17 08:45:00.638006] SO_RCVTIMEO = 0
[2022-06-17 08:45:00.639607] TCP_QUICKACK = 1
[2022-06-17 08:45:00.641212] TCP_DEFER_ACCEPT = 0
[2022-06-17 08:45:00.642826] TCP_USER_TIMEOUT = 0
[2022-06-17 08:45:00.644494] Registering messaging pointer for type 13 - private_data=0
[2022-06-17 08:45:00.646145] Registering messaging pointer for type 33 - private_data=0xb5bd9ef0
[2022-06-17 08:45:00.647797] Registering messaging pointer for type 783 - private_data=0
[2022-06-17 08:45:00.649443] Registering messaging pointer for type 1 - private_data=0
[2022-06-17 08:45:00.651070] Overriding messaging pointer for type 1 - private_data=0
[2022-06-17 08:45:00.652708] Registering messaging pointer for type 770 - private_data=0
[2022-06-17 08:45:00.654417] Registering messaging pointer for type 801 - private_data=0
[2022-06-17 08:45:00.656076] Registering messaging pointer for type 790 - private_data=0
[2022-06-17 08:45:00.657709] Registering messaging pointer for type 791 - private_data=0
[2022-06-17 08:45:00.659356] Registering messaging pointer for type 15 - private_data=0
[2022-06-17 08:45:00.660997] Registering messaging pointer for type 16 - private_data=0
[2022-06-17 08:45:00.662640] Registering messaging pointer for type 799 - private_data=0
[2022-06-17 08:45:00.664360] avahi_client_callback: AVAHI_CLIENT_S_RUNNING
[2022-06-17 08:45:00.665998] avahi_entry_group_callback: AVAHI_ENTRY_GROUP_UNCOMMITED
[2022-06-17 08:45:00.667628] waiting for connections
[2022-06-17 08:45:00.669242] avahi_entry_group_callback: AVAHI_ENTRY_GROUP_REGISTERING
[2022-06-17 08:45:00.670892] messaging_recv_cb: Received message 0x31f len 0 (num_fds:0) from 9560
[2022-06-17 08:45:00.672543] messaging_dgm_send: Sending message to 9561
[2022-06-17 08:45:00.674256] messaging_recv_cb: Received message 0x31f len 0 (num_fds:0) from 9557
[2022-06-17 08:45:00.675902] messaging_dgm_send: Sending message to 9560
[2022-06-17 08:45:00.677401] messaging_recv_cb: Received message 0x31f len 0 (num_fds:0) from 9557
[2022-06-17 08:45:00.679027] avahi_entry_group_callback: AVAHI_ENTRY_GROUP_ESTABLISHED
[2022-06-17 08:45:05.038048] msg_dgm_ref_destructor: refs=0
[2022-06-17 08:45:05.041005] messaging_dgm_ref: messaging_dgm_init returned No error information
[2022-06-17 08:45:05.042806] messaging_dgm_ref: unique = 2241766024559059093
[2022-06-17 08:45:05.044913] Registered MSG_REQ_POOL_USAGE
[2022-06-17 08:45:05.047066] Attempting to find a passdb backend to match smbpasswd (smbpasswd)
[2022-06-17 08:45:05.053008] Found pdb backend smbpasswd
[2022-06-17 08:45:05.054843] pdb backend smbpasswd has a valid init
[2022-06-17 08:45:05.056433] smbXsrv_client_create: client_guid[00000000-0000-0000-0000-000000000000] created
[2022-06-17 08:45:05.058127] &client_blob: struct smbXsrv_clientB
[2022-06-17 08:45:05.059795] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:05.073807] reserved : 0x00000000 (0)
[2022-06-17 08:45:05.075572] info : union smbXsrv_clientU(case 0)
[2022-06-17 08:45:05.077281] info0 : *
[2022-06-17 08:45:05.078938] info0: struct smbXsrv_client
[2022-06-17 08:45:05.080683] table : *
[2022-06-17 08:45:05.082215] raw_ev_ctx : *
[2022-06-17 08:45:05.083973] msg_ctx : *
[2022-06-17 08:45:05.085634] global : *
[2022-06-17 08:45:05.087383] global: struct smbXsrv_client_global0
[2022-06-17 08:45:05.089013] db_rec : NULL
[2022-06-17 08:45:05.090534] server_id: struct server_id
[2022-06-17 08:45:05.092171] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:05.095824] task_id : 0x00000000 (0)
[2022-06-17 08:45:05.097763] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:05.103704] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:05.105396] local_address : NULL
[2022-06-17 08:45:05.107083] remote_address : NULL
[2022-06-17 08:45:05.108742] remote_name : NULL
[2022-06-17 08:45:05.123703] initial_connect_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:05.125401] client_guid : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:45:05.126956] stored : 0x00 (0)
[2022-06-17 08:45:05.128474] sconn : NULL
[2022-06-17 08:45:05.129988] session_table : NULL
[2022-06-17 08:45:05.131492] tcon_table : NULL
[2022-06-17 08:45:05.132784] open_table : NULL
[2022-06-17 08:45:05.134098] connections : NULL
[2022-06-17 08:45:05.135342] server_multi_channel_enabled: 0x00 (0)
[2022-06-17 08:45:05.136574] next_channel_id : 0x0000000000000000 (0)
[2022-06-17 08:45:05.137821] connection_pass_subreq : NULL
[2022-06-17 08:45:05.139056] pending_breaks : NULL
[2022-06-17 08:45:05.140277] Socket options:
[2022-06-17 08:45:05.142033] SO_KEEPALIVE = 1
[2022-06-17 08:45:05.143697] SO_REUSEADDR = 1
[2022-06-17 08:45:05.153508] SO_BROADCAST = 0
[2022-06-17 08:45:05.155271] TCP_NODELAY = 1
[2022-06-17 08:45:05.157120] TCP_KEEPCNT = 9
[2022-06-17 08:45:05.158802] TCP_KEEPIDLE = 120
[2022-06-17 08:45:05.160451] TCP_KEEPINTVL = 75
[2022-06-17 08:45:05.162083] IPTOS_LOWDELAY = 16
[2022-06-17 08:45:05.163866] IPTOS_THROUGHPUT = 16
[2022-06-17 08:45:05.165544] SO_REUSEPORT = 1
[2022-06-17 08:45:05.173516] SO_SNDBUF = 44800
[2022-06-17 08:45:05.175216] SO_RCVBUF = 131072
[2022-06-17 08:45:05.176897] SO_SNDLOWAT = 1
[2022-06-17 08:45:05.178530] SO_RCVLOWAT = 1
[2022-06-17 08:45:05.180161] SO_SNDTIMEO = 0
[2022-06-17 08:45:05.181786] SO_RCVTIMEO = 0
[2022-06-17 08:45:05.183453] TCP_QUICKACK = 1
[2022-06-17 08:45:05.187361] TCP_DEFER_ACCEPT = 0
[2022-06-17 08:45:05.189302] TCP_USER_TIMEOUT = 0
[2022-06-17 08:45:05.203530] Socket options:
[2022-06-17 08:45:05.205284] SO_KEEPALIVE = 1
[2022-06-17 08:45:05.206960] SO_REUSEADDR = 1
[2022-06-17 08:45:05.208595] SO_BROADCAST = 0
[2022-06-17 08:45:05.210200] TCP_NODELAY = 1
[2022-06-17 08:45:05.211835] TCP_KEEPCNT = 9
[2022-06-17 08:45:05.213508] TCP_KEEPIDLE = 120
[2022-06-17 08:45:05.215152] TCP_KEEPINTVL = 75
[2022-06-17 08:45:05.216788] IPTOS_LOWDELAY = 16
[2022-06-17 08:45:05.218414] IPTOS_THROUGHPUT = 16
[2022-06-17 08:45:05.220040] SO_REUSEPORT = 1
[2022-06-17 08:45:05.221651] SO_SNDBUF = 44800
[2022-06-17 08:45:05.223328] SO_RCVBUF = 131072
[2022-06-17 08:45:05.224962] SO_SNDLOWAT = 1
[2022-06-17 08:45:05.233469] SO_RCVLOWAT = 1
[2022-06-17 08:45:05.235028] SO_SNDTIMEO = 0
[2022-06-17 08:45:05.236530] SO_RCVTIMEO = 0
[2022-06-17 08:45:05.238026] TCP_QUICKACK = 1
[2022-06-17 08:45:05.239498] TCP_DEFER_ACCEPT = 0
[2022-06-17 08:45:05.240969] TCP_USER_TIMEOUT = 0
[2022-06-17 08:45:05.242444] Allowed connection from 192.168.1.10 (192.168.1.10)
[2022-06-17 08:45:05.244035] Connection allowed from ipv4:192.168.1.10:33730 to ipv4:192.168.1.250:445
[2022-06-17 08:45:05.253566] INFO: Current debug levels:
[2022-06-17 08:45:05.255176] all: 10
[2022-06-17 08:45:05.256688] tdb: 10
[2022-06-17 08:45:05.258163] printdrivers: 10
[2022-06-17 08:45:05.259629] lanman: 10
[2022-06-17 08:45:05.261094] smb: 10
[2022-06-17 08:45:05.262726] rpc_parse: 10
[2022-06-17 08:45:05.264452] rpc_srv: 10
[2022-06-17 08:45:05.265955] rpc_cli: 10
[2022-06-17 08:45:05.273708] passdb: 10
[2022-06-17 08:45:05.275423] sam: 10
[2022-06-17 08:45:05.277052] auth: 10
[2022-06-17 08:45:05.278672] winbind: 10
[2022-06-17 08:45:05.280296] vfs: 10
[2022-06-17 08:45:05.281915] idmap: 10
[2022-06-17 08:45:05.283604] quota: 10
[2022-06-17 08:45:05.293566] acls: 10
[2022-06-17 08:45:05.295352] locking: 10
[2022-06-17 08:45:05.297012] msdfs: 10
[2022-06-17 08:45:05.298645] dmapi: 10
[2022-06-17 08:45:05.300267] registry: 10
[2022-06-17 08:45:05.301888] scavenger: 10
[2022-06-17 08:45:05.303580] dns: 10
[2022-06-17 08:45:05.305204] ldb: 10
[2022-06-17 08:45:05.306832] tevent: 10
[2022-06-17 08:45:05.313617] auth_audit: 10
[2022-06-17 08:45:05.315411] auth_json_audit: 10
[2022-06-17 08:45:05.317079] kerberos: 10
[2022-06-17 08:45:05.318696] drs_repl: 10
[2022-06-17 08:45:05.320326] smb2: 10
[2022-06-17 08:45:05.333622] smb2_credits: 10
[2022-06-17 08:45:05.335473] dsdb_audit: 10
[2022-06-17 08:45:05.337162] dsdb_json_audit: 10
[2022-06-17 08:45:05.338806] dsdb_password_audit: 10
[2022-06-17 08:45:05.340433] dsdb_password_json_audit: 10
[2022-06-17 08:45:05.342071] dsdb_transaction_audit: 10
[2022-06-17 08:45:05.343777] dsdb_transaction_json_audit: 10
[2022-06-17 08:45:05.345321] dsdb_group_audit: 10
[2022-06-17 08:45:05.346805] dsdb_group_json_audit: 10
[2022-06-17 08:45:05.348285] lp_file_list_changed()
[2022-06-17 08:45:05.350051] file /etc/samba/smb.conf -> /etc/samba/smb.conf last mod_time: Fri Jun 17 08:38:04 2022
[2022-06-17 08:45:05.351721]
[2022-06-17 08:45:05.357297] init_oplocks: initializing messages.
[2022-06-17 08:45:05.359145] Registering messaging pointer for type 774 - private_data=0xb5829e80
[2022-06-17 08:45:05.360866] Registering messaging pointer for type 778 - private_data=0xb5829e80
[2022-06-17 08:45:05.362544] Registering messaging pointer for type 770 - private_data=0xb5829e80
[2022-06-17 08:45:05.364288] Registering messaging pointer for type 801 - private_data=0xb5829e80
[2022-06-17 08:45:05.365952] Registering messaging pointer for type 787 - private_data=0xb5829e80
[2022-06-17 08:45:05.367595] Registering messaging pointer for type 779 - private_data=0xb5829e80
[2022-06-17 08:45:05.369240] Registering messaging pointer for type 15 - private_data=0
[2022-06-17 08:45:05.370888] Overriding messaging pointer for type 15 - private_data=0
[2022-06-17 08:45:05.372530] Deregistering messaging pointer for type 16 - private_data=0
[2022-06-17 08:45:05.374273] Registering messaging pointer for type 16 - private_data=0xb5829e80
[2022-06-17 08:45:05.375924] Deregistering messaging pointer for type 33 - private_data=0xb5bd9ef0
[2022-06-17 08:45:05.377447] Registering messaging pointer for type 33 - private_data=0xb5829e80
[2022-06-17 08:45:05.379181] Deregistering messaging pointer for type 790 - private_data=0
[2022-06-17 08:45:05.380844] Registering messaging pointer for type 790 - private_data=0xb5829e80
[2022-06-17 08:45:05.382497] Deregistering messaging pointer for type 791 - private_data=0
[2022-06-17 08:45:05.384230] Deregistering messaging pointer for type 1 - private_data=0
[2022-06-17 08:45:05.385894] Registering messaging pointer for type 1 - private_data=0
[2022-06-17 08:45:05.387533] event_add_idle: idle_evt(keepalive) 0xb62c0c70
[2022-06-17 08:45:05.389183] event_add_idle: idle_evt(deadtime) 0xb62c0ce0
[2022-06-17 08:45:05.390818] event_add_idle: idle_evt(housekeeping) 0xb62c0d50
[2022-06-17 08:45:05.392449] got smb length of 166
[2022-06-17 08:45:05.394027] got message type 0x0 of len 0xa6
[2022-06-17 08:45:05.395792] Transaction 0 of length 170 (0 toread)
[2022-06-17 08:45:05.397437] smbd_smb2_first_negprot: packet length 166
[2022-06-17 08:45:05.399101] smb2_validate_sequence_number: smb2_validate_sequence_number: clearing id 0 (position 0) from bitmap
[2022-06-17 08:45:05.400772] smbd_smb2_request_dispatch: opcode[SMB2_OP_NEGPROT] mid = 0
[2022-06-17 08:45:05.402412] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:05.404136] Security token: (NULL)
[2022-06-17 08:45:05.405758] UNIX token of user 0
[2022-06-17 08:45:05.407374] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:05.409007] change_to_root_user: now uid=(0,0) gid=(0,0)
[2022-06-17 08:45:05.410650] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:05.412295] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:05.414027] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:05.415680] Security token: (NULL)
[2022-06-17 08:45:05.417301] UNIX token of user 0
[2022-06-17 08:45:05.418911] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:05.420551] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:05.422187] set_remote_arch: Client arch is 'Vista'
[2022-06-17 08:45:05.423860] INFO: Current debug levels:
[2022-06-17 08:45:05.425492] all: 10
[2022-06-17 08:45:05.426973] tdb: 10
[2022-06-17 08:45:05.428579] printdrivers: 10
[2022-06-17 08:45:05.430193] lanman: 10
[2022-06-17 08:45:05.431815] smb: 10
[2022-06-17 08:45:05.433484] rpc_parse: 10
[2022-06-17 08:45:05.435117] rpc_srv: 10
[2022-06-17 08:45:05.436726] rpc_cli: 10
[2022-06-17 08:45:05.438329] passdb: 10
[2022-06-17 08:45:05.439944] sam: 10
[2022-06-17 08:45:05.441544] auth: 10
[2022-06-17 08:45:05.443195] winbind: 10
[2022-06-17 08:45:05.444824] vfs: 10
[2022-06-17 08:45:05.446318] idmap: 10
[2022-06-17 08:45:05.447796] quota: 10
[2022-06-17 08:45:05.449268] acls: 10
[2022-06-17 08:45:05.450729] locking: 10
[2022-06-17 08:45:05.452197] msdfs: 10
[2022-06-17 08:45:05.453700] dmapi: 10
[2022-06-17 08:45:05.455176] registry: 10
[2022-06-17 08:45:05.456665] scavenger: 10
[2022-06-17 08:45:05.458138] dns: 10
[2022-06-17 08:45:05.459599] ldb: 10
[2022-06-17 08:45:05.462056] tevent: 10
[2022-06-17 08:45:05.463768] auth_audit: 10
[2022-06-17 08:45:05.465401] auth_json_audit: 10
[2022-06-17 08:45:05.467022] kerberos: 10
[2022-06-17 08:45:05.468647] drs_repl: 10
[2022-06-17 08:45:05.470275] smb2: 10
[2022-06-17 08:45:05.471884] smb2_credits: 10
[2022-06-17 08:45:05.473551] dsdb_audit: 10
[2022-06-17 08:45:05.475185] dsdb_json_audit: 10
[2022-06-17 08:45:05.476805] dsdb_password_audit: 10
[2022-06-17 08:45:05.478422] dsdb_password_json_audit: 10
[2022-06-17 08:45:05.480056] dsdb_transaction_audit: 10
[2022-06-17 08:45:05.481692] dsdb_transaction_json_audit: 10
[2022-06-17 08:45:05.483375] dsdb_group_audit: 10
[2022-06-17 08:45:05.485006] dsdb_group_json_audit: 10
[2022-06-17 08:45:05.486623] lp_file_list_changed()
[2022-06-17 08:45:05.488233] file /etc/samba/smb.conf -> /etc/samba/smb.conf last mod_time: Fri Jun 17 08:38:04 2022
[2022-06-17 08:45:05.489898]
[2022-06-17 08:45:05.491508] Selected protocol SMB3_11
[2022-06-17 08:45:05.493183] make_auth3_context_for_ntlm: Making default auth method list for server role = 'standalone server', encrypt passwords = yes
[2022-06-17 08:45:05.494885] Attempting to register auth backend anonymous
[2022-06-17 08:45:05.496533] Successfully added auth method 'anonymous'
[2022-06-17 08:45:05.498159] Attempting to register auth backend sam
[2022-06-17 08:45:05.499781] Successfully added auth method 'sam'
[2022-06-17 08:45:05.501405] Attempting to register auth backend sam_ignoredomain
[2022-06-17 08:45:05.503114] Successfully added auth method 'sam_ignoredomain'
[2022-06-17 08:45:05.504787] Attempting to register auth backend sam_netlogon3
[2022-06-17 08:45:05.506447] Successfully added auth method 'sam_netlogon3'
[2022-06-17 08:45:05.508090] Attempting to register auth backend unix
[2022-06-17 08:45:05.509726] Successfully added auth method 'unix'
[2022-06-17 08:45:05.511364] load_auth_module: Attempting to find an auth method to match anonymous
[2022-06-17 08:45:05.513055] load_auth_module: auth method anonymous has a valid init
[2022-06-17 08:45:05.514711] load_auth_module: Attempting to find an auth method to match sam_ignoredomain
[2022-06-17 08:45:05.516372] load_auth_module: auth method sam_ignoredomain has a valid init
[2022-06-17 08:45:05.518048] GENSEC backend 'gssapi_spnego' registered
[2022-06-17 08:45:05.519692] GENSEC backend 'gssapi_krb5' registered
[2022-06-17 08:45:05.521336] GENSEC backend 'gssapi_krb5_sasl' registered
[2022-06-17 08:45:05.523025] GENSEC backend 'spnego' registered
[2022-06-17 08:45:05.524676] GENSEC backend 'schannel' registered
[2022-06-17 08:45:05.526313] GENSEC backend 'naclrpc_as_system' registered
[2022-06-17 08:45:05.527950] GENSEC backend 'sasl-EXTERNAL' registered
[2022-06-17 08:45:05.529601] GENSEC backend 'ntlmssp' registered
[2022-06-17 08:45:05.531238] GENSEC backend 'ntlmssp_resume_ccache' registered
[2022-06-17 08:45:05.532911] GENSEC backend 'http_basic' registered
[2022-06-17 08:45:05.534546] GENSEC backend 'http_ntlm' registered
[2022-06-17 08:45:05.536177] GENSEC backend 'http_negotiate' registered
[2022-06-17 08:45:05.537688] Starting GENSEC mechanism spnego
[2022-06-17 08:45:05.539403] Starting GENSEC submechanism ntlmssp
[2022-06-17 08:45:05.541043] gensec_update_send: spnego[0xb5161e70]: subreq: 0xb68523a0
[2022-06-17 08:45:05.542680] gensec_update_done: spnego[0xb5161e70]: NT_STATUS_MORE_PROCESSING_REQUIRED tevent_req[0xb68523a0/../../auth/gensec/spnego.c:1632]: state[2] error[0 (0x0)] state[struct gensec_spnego_update_state (0xb6852480)] timer[0] finish[../../auth/gensec/spnego.c:2116]
[2022-06-17 08:45:05.544502] smbd_smb2_request_done_ex: mid [0] idx[1] status[NT_STATUS_OK] body[64] dyn[yes:140] at ../../source3/smbd/smb2_negprot.c:667
[2022-06-17 08:45:05.546202] smb2_set_operation_credit: smb2_set_operation_credit: requested 31, charge 1, granted 1, current possible/max 8192/8192, total granted/max/low/range 1/8192/1/1
[2022-06-17 08:45:05.547917] smbd_smb2_request idx[1] of 5 vectors
[2022-06-17 08:45:05.549555] smb2_validate_sequence_number: smb2_validate_sequence_number: clearing id 1 (position 1) from bitmap
[2022-06-17 08:45:05.551225] smbd_smb2_request_dispatch: opcode[SMB2_OP_SESSSETUP] mid = 1
[2022-06-17 08:45:05.552911] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:05.554577] Security token: (NULL)
[2022-06-17 08:45:05.556201] UNIX token of user 0
[2022-06-17 08:45:05.557819] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:05.559463] change_to_root_user: now uid=(0,0) gid=(0,0)
[2022-06-17 08:45:05.561095] dbwrap_lock_order_lock: check lock order 1 for /var/lock/smbXsrv_session_global.tdb
[2022-06-17 08:45:05.562847] lock order: 1:/var/lock/smbXsrv_session_global.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:45:05.564571] db_tdb_log_key: Locking key 6F1A4B46
[2022-06-17 08:45:05.566235] db_tdb_fetch_locked_internal: Allocated locked data 0xb5bd9e70
[2022-06-17 08:45:05.567883] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:45:05.569521] smbXsrv_session_global_store: key '6F1A4B46' stored
[2022-06-17 08:45:05.571158] &global_blob: struct smbXsrv_session_globalB
[2022-06-17 08:45:05.572798] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:05.574506] seqnum : 0x00000001 (1)
[2022-06-17 08:45:05.576161] info : union smbXsrv_session_globalU(case 0)
[2022-06-17 08:45:05.577693] info0 : *
[2022-06-17 08:45:05.579380] info0: struct smbXsrv_session_global0
[2022-06-17 08:45:05.581028] db_rec : *
[2022-06-17 08:45:05.582662] session_global_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:05.584389] session_wire_id : 0x000000006f1a4b46 (1863994182)
[2022-06-17 08:45:05.586049] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:05.587709] expiration_time : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:05.589374] auth_time : NTTIME(0)
[2022-06-17 08:45:05.591019] auth_session_info_seqnum : 0x00000000 (0)
[2022-06-17 08:45:05.592678] auth_session_info : NULL
[2022-06-17 08:45:05.594247] connection_dialect : 0x0311 (785)
[2022-06-17 08:45:05.595758] signing_flags : 0x00 (0)
[2022-06-17 08:45:05.597516] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:05.599172] 0: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:05.600808] 0: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:05.612806] encryption_flags : 0x00 (0)
[2022-06-17 08:45:05.614822] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:05.616422] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:05.617951] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:05.619467] 0: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:05.620970] signing_key : NULL
[2022-06-17 08:45:05.622460] encryption_key : NULL
[2022-06-17 08:45:05.624057] decryption_key : NULL
[2022-06-17 08:45:05.625570] num_channels : 0x00000001 (1)
[2022-06-17 08:45:05.627374] channels: ARRAY(1)
[2022-06-17 08:45:05.629018] channels: struct smbXsrv_channel_global0
[2022-06-17 08:45:05.630683] server_id: struct server_id
[2022-06-17 08:45:05.632326] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:05.634053] task_id : 0x00000000 (0)
[2022-06-17 08:45:05.635727] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:05.637402] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:05.639079] channel_id : 0x0000000000000000 (0)
[2022-06-17 08:45:05.640720] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:05.642369] local_address : 'ipv4:192.168.1.250:445'
[2022-06-17 08:45:05.644106] remote_address : 'ipv4:192.168.1.10:33730'
[2022-06-17 08:45:05.645773] remote_name : '192.168.1.10'
[2022-06-17 08:45:05.647308] signing_key : NULL
[2022-06-17 08:45:05.649070] auth_session_info_seqnum : 0x00000000 (0)
[2022-06-17 08:45:05.650719] connection : *
[2022-06-17 08:45:05.652238] encryption_cipher : 0x0000 (0)
[2022-06-17 08:45:05.654091] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/smbXsrv_session_global.tdb
[2022-06-17 08:45:05.655735] db_tdb_log_key: Unlocking key 6F1A4B46
[2022-06-17 08:45:05.657369] smbXsrv_session_create: global_id (0x6f1a4b46) stored
[2022-06-17 08:45:05.659001] &session_blob: struct smbXsrv_sessionB
[2022-06-17 08:45:05.660616] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:05.662157] reserved : 0x00000000 (0)
[2022-06-17 08:45:05.663720] info : union smbXsrv_sessionU(case 0)
[2022-06-17 08:45:05.665242] info0 : *
[2022-06-17 08:45:05.666725] info0: struct smbXsrv_session
[2022-06-17 08:45:05.668202] table : *
[2022-06-17 08:45:05.669690] db_rec : NULL
[2022-06-17 08:45:05.671194] client : *
[2022-06-17 08:45:05.672685] local_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:05.674245] global : *
[2022-06-17 08:45:05.675755] global: struct smbXsrv_session_global0
[2022-06-17 08:45:05.677475] db_rec : NULL
[2022-06-17 08:45:05.678994] session_global_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:05.680513] session_wire_id : 0x000000006f1a4b46 (1863994182)
[2022-06-17 08:45:05.682028] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:05.683603] expiration_time : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:05.685120] auth_time : NTTIME(0)
[2022-06-17 08:45:05.686631] auth_session_info_seqnum : 0x00000000 (0)
[2022-06-17 08:45:05.688221] auth_session_info : NULL
[2022-06-17 08:45:05.689746] connection_dialect : 0x0311 (785)
[2022-06-17 08:45:05.691402] signing_flags : 0x00 (0)
[2022-06-17 08:45:05.692986] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:05.694522] 0: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:05.696044] 0: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:05.697543] encryption_flags : 0x00 (0)
[2022-06-17 08:45:05.699040] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:05.700538] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:05.702665] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:05.704389] 0: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:05.706062] signing_key : NULL
[2022-06-17 08:45:05.707721] encryption_key : NULL
[2022-06-17 08:45:05.709369] decryption_key : NULL
[2022-06-17 08:45:05.711005] num_channels : 0x00000001 (1)
[2022-06-17 08:45:05.712651] channels: ARRAY(1)
[2022-06-17 08:45:05.714360] channels: struct smbXsrv_channel_global0
[2022-06-17 08:45:05.716014] server_id: struct server_id
[2022-06-17 08:45:05.717646] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:05.719311] task_id : 0x00000000 (0)
[2022-06-17 08:45:05.720970] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:05.722631] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:05.724381] channel_id : 0x0000000000000000 (0)
[2022-06-17 08:45:05.726041] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:05.727691] local_address : 'ipv4:192.168.1.250:445'
[2022-06-17 08:45:05.729343] remote_address : 'ipv4:192.168.1.10:33730'
[2022-06-17 08:45:05.731005] remote_name : '192.168.1.10'
[2022-06-17 08:45:05.732668] signing_key : NULL
[2022-06-17 08:45:05.734378] auth_session_info_seqnum : 0x00000000 (0)
[2022-06-17 08:45:05.736044] connection : *
[2022-06-17 08:45:05.737692] encryption_cipher : 0x0000 (0)
[2022-06-17 08:45:05.739355] status : NT_STATUS_MORE_PROCESSING_REQUIRED
[2022-06-17 08:45:05.741008] idle_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:05.742653] nonce_high_random : 0x0000000000000000 (0)
[2022-06-17 08:45:05.744376] nonce_high_max : 0x0000000000000000 (0)
[2022-06-17 08:45:05.746042] nonce_high : 0x0000000000000000 (0)
[2022-06-17 08:45:05.747688] nonce_low : 0x0000000000000000 (0)
[2022-06-17 08:45:05.749347] tcon_table : *
[2022-06-17 08:45:05.750972] homes_snum : 0xffffffff (4294967295)
[2022-06-17 08:45:05.752622] pending_auth : NULL
[2022-06-17 08:45:05.754333] make_auth3_context_for_ntlm: Making default auth method list for server role = 'standalone server', encrypt passwords = yes
[2022-06-17 08:45:05.756019] load_auth_module: Attempting to find an auth method to match anonymous
[2022-06-17 08:45:05.757660] load_auth_module: auth method anonymous has a valid init
[2022-06-17 08:45:05.759310] load_auth_module: Attempting to find an auth method to match sam_ignoredomain
[2022-06-17 08:45:05.760957] load_auth_module: auth method sam_ignoredomain has a valid init
[2022-06-17 08:45:05.762600] Starting GENSEC mechanism spnego
[2022-06-17 08:45:05.764319] dbwrap_lock_order_lock: check lock order 1 for /var/lock/smbXsrv_session_global.tdb
[2022-06-17 08:45:05.765981] lock order: 1:/var/lock/smbXsrv_session_global.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:45:05.767641] db_tdb_log_key: Locking key 6F1A4B46
[2022-06-17 08:45:05.769279] db_tdb_fetch_locked_internal: Allocated locked data 0xb5896c70
[2022-06-17 08:45:05.770926] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:45:05.772567] smbXsrv_session_global_store: key '6F1A4B46' stored
[2022-06-17 08:45:05.774267] &global_blob: struct smbXsrv_session_globalB
[2022-06-17 08:45:05.775910] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:05.777557] seqnum : 0x00000002 (2)
[2022-06-17 08:45:05.779203] info : union smbXsrv_session_globalU(case 0)
[2022-06-17 08:45:05.780858] info0 : *
[2022-06-17 08:45:05.782493] info0: struct smbXsrv_session_global0
[2022-06-17 08:45:05.784244] db_rec : *
[2022-06-17 08:45:05.785884] session_global_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:05.787531] session_wire_id : 0x000000006f1a4b46 (1863994182)
[2022-06-17 08:45:05.789180] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:05.790817] expiration_time : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:05.792488] auth_time : NTTIME(0)
[2022-06-17 08:45:05.794081] auth_session_info_seqnum : 0x00000000 (0)
[2022-06-17 08:45:05.795581] auth_session_info : NULL
[2022-06-17 08:45:05.797358] connection_dialect : 0x0311 (785)
[2022-06-17 08:45:05.799013] signing_flags : 0x00 (0)
[2022-06-17 08:45:05.800647] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:05.802287] 0: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:05.803998] 0: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:05.805648] encryption_flags : 0x00 (0)
[2022-06-17 08:45:05.807307] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:05.808951] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:05.810462] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:05.812202] 0: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:05.813886] signing_key : NULL
[2022-06-17 08:45:05.815542] encryption_key : NULL
[2022-06-17 08:45:05.817195] decryption_key : NULL
[2022-06-17 08:45:05.818834] num_channels : 0x00000001 (1)
[2022-06-17 08:45:05.820462] channels: ARRAY(1)
[2022-06-17 08:45:05.822110] channels: struct smbXsrv_channel_global0
[2022-06-17 08:45:05.823842] server_id: struct server_id
[2022-06-17 08:45:05.825496] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:05.833028] task_id : 0x00000000 (0)
[2022-06-17 08:45:05.834896] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:05.836639] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:05.843622] channel_id : 0x0000000000000000 (0)
[2022-06-17 08:45:05.845430] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:05.847141] local_address : 'ipv4:192.168.1.250:445'
[2022-06-17 08:45:05.848819] remote_address : 'ipv4:192.168.1.10:33730'
[2022-06-17 08:45:05.850493] remote_name : '192.168.1.10'
[2022-06-17 08:45:05.852149] signing_key : NULL
[2022-06-17 08:45:05.855278] auth_session_info_seqnum : 0x00000000 (0)
[2022-06-17 08:45:05.857031] connection : *
[2022-06-17 08:45:05.858701] encryption_cipher : 0x0000 (0)
[2022-06-17 08:45:05.860366] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/smbXsrv_session_global.tdb
[2022-06-17 08:45:05.862034] db_tdb_log_key: Unlocking key 6F1A4B46
[2022-06-17 08:45:05.863755] smbXsrv_session_update: global_id (0x6f1a4b46) stored
[2022-06-17 08:45:05.865420] &session_blob: struct smbXsrv_sessionB
[2022-06-17 08:45:05.867086] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:05.868737] reserved : 0x00000000 (0)
[2022-06-17 08:45:05.870365] info : union smbXsrv_sessionU(case 0)
[2022-06-17 08:45:05.872007] info0 : *
[2022-06-17 08:45:05.873708] info0: struct smbXsrv_session
[2022-06-17 08:45:05.875357] table : *
[2022-06-17 08:45:05.877008] db_rec : NULL
[2022-06-17 08:45:05.878660] client : *
[2022-06-17 08:45:05.880301] local_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:05.881955] global : *
[2022-06-17 08:45:05.883643] global: struct smbXsrv_session_global0
[2022-06-17 08:45:05.885296] db_rec : NULL
[2022-06-17 08:45:05.886952] session_global_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:05.888602] session_wire_id : 0x000000006f1a4b46 (1863994182)
[2022-06-17 08:45:05.890264] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:05.891932] expiration_time : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:05.893648] auth_time : NTTIME(0)
[2022-06-17 08:45:05.895308] auth_session_info_seqnum : 0x00000000 (0)
[2022-06-17 08:45:05.896954] auth_session_info : NULL
[2022-06-17 08:45:05.898590] connection_dialect : 0x0311 (785)
[2022-06-17 08:45:05.900229] signing_flags : 0x00 (0)
[2022-06-17 08:45:05.901886] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:05.903581] 0: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:05.905249] 0: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:05.906899] encryption_flags : 0x00 (0)
[2022-06-17 08:45:05.908530] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:05.910169] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:05.911812] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:05.913503] 0: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:05.915169] signing_key : NULL
[2022-06-17 08:45:05.916814] encryption_key : NULL
[2022-06-17 08:45:05.918452] decryption_key : NULL
[2022-06-17 08:45:05.920100] num_channels : 0x00000001 (1)
[2022-06-17 08:45:05.921753] channels: ARRAY(1)
[2022-06-17 08:45:05.923424] channels: struct smbXsrv_channel_global0
[2022-06-17 08:45:05.925083] server_id: struct server_id
[2022-06-17 08:45:05.926723] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:05.928385] task_id : 0x00000000 (0)
[2022-06-17 08:45:05.930043] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:05.931691] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:05.933409] channel_id : 0x0000000000000000 (0)
[2022-06-17 08:45:05.935075] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:05.936737] local_address : 'ipv4:192.168.1.250:445'
[2022-06-17 08:45:05.938406] remote_address : 'ipv4:192.168.1.10:33730'
[2022-06-17 08:45:05.940075] remote_name : '192.168.1.10'
[2022-06-17 08:45:05.941720] signing_key : NULL
[2022-06-17 08:45:05.943427] auth_session_info_seqnum : 0x00000000 (0)
[2022-06-17 08:45:05.945088] connection : *
[2022-06-17 08:45:05.946725] encryption_cipher : 0x0000 (0)
[2022-06-17 08:45:05.948389] status : NT_STATUS_MORE_PROCESSING_REQUIRED
[2022-06-17 08:45:05.950044] idle_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:05.951693] nonce_high_random : 0x0000000000000000 (0)
[2022-06-17 08:45:05.953384] nonce_high_max : 0x0000000000000000 (0)
[2022-06-17 08:45:05.955045] nonce_high : 0x0000000000000000 (0)
[2022-06-17 08:45:05.956698] nonce_low : 0x0000000000000000 (0)
[2022-06-17 08:45:05.958343] tcon_table : *
[2022-06-17 08:45:05.959856] homes_snum : 0xffffffff (4294967295)
[2022-06-17 08:45:05.961357] pending_auth : *
[2022-06-17 08:45:05.962899] pending_auth: struct smbXsrv_session_auth0
[2022-06-17 08:45:05.964432] prev : *
[2022-06-17 08:45:05.965945] next : NULL
[2022-06-17 08:45:05.967433] session : *
[2022-06-17 08:45:05.968914] connection : *
[2022-06-17 08:45:05.970403] gensec : *
[2022-06-17 08:45:05.972066] preauth : *
[2022-06-17 08:45:05.973665] in_flags : 0x00 (0)
[2022-06-17 08:45:05.975196] in_security_mode : 0x01 (1)
[2022-06-17 08:45:05.976698] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:05.978213] idle_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:05.979718] channel_id : 0x0000000000000000 (0)
[2022-06-17 08:45:05.981230] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:05.982716] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:05.984259] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:05.985771] Security token: (NULL)
[2022-06-17 08:45:05.987470] UNIX token of user 0
[2022-06-17 08:45:05.988979] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:05.990480] Starting GENSEC submechanism ntlmssp
[2022-06-17 08:45:05.991969] Got NTLMSSP neg_flags=0x62088215
[2022-06-17 08:45:05.993500] NTLMSSP_NEGOTIATE_UNICODE
[2022-06-17 08:45:05.994992] NTLMSSP_REQUEST_TARGET
[2022-06-17 08:45:05.996480] NTLMSSP_NEGOTIATE_SIGN
[2022-06-17 08:45:05.997959] NTLMSSP_NEGOTIATE_NTLM
[2022-06-17 08:45:05.999433] NTLMSSP_NEGOTIATE_ALWAYS_SIGN
[2022-06-17 08:45:06.000919] NTLMSSP_NEGOTIATE_EXTENDED_SESSIONSECURITY
[2022-06-17 08:45:06.002609] NTLMSSP_NEGOTIATE_VERSION
[2022-06-17 08:45:06.004190] NTLMSSP_NEGOTIATE_128
[2022-06-17 08:45:06.005676] NTLMSSP_NEGOTIATE_KEY_EXCH
[2022-06-17 08:45:06.007607] negotiate: struct NEGOTIATE_MESSAGE
[2022-06-17 08:45:06.009280] Signature : 'NTLMSSP'
[2022-06-17 08:45:06.010938] MessageType : NtLmNegotiate (1)
[2022-06-17 08:45:06.012568] NegotiateFlags : 0x62088215 (1644724757)
[2022-06-17 08:45:06.014304] 1: NTLMSSP_NEGOTIATE_UNICODE
[2022-06-17 08:45:06.015952] 0: NTLMSSP_NEGOTIATE_OEM
[2022-06-17 08:45:06.017583] 1: NTLMSSP_REQUEST_TARGET
[2022-06-17 08:45:06.019213] 1: NTLMSSP_NEGOTIATE_SIGN
[2022-06-17 08:45:06.020860] 0: NTLMSSP_NEGOTIATE_SEAL
[2022-06-17 08:45:06.022492] 0: NTLMSSP_NEGOTIATE_DATAGRAM
[2022-06-17 08:45:06.024224] 0: NTLMSSP_NEGOTIATE_LM_KEY
[2022-06-17 08:45:06.025870] 0: NTLMSSP_NEGOTIATE_NETWARE
[2022-06-17 08:45:06.027373] 1: NTLMSSP_NEGOTIATE_NTLM
[2022-06-17 08:45:06.029130] 0: NTLMSSP_NEGOTIATE_NT_ONLY
[2022-06-17 08:45:06.030772] 0: NTLMSSP_ANONYMOUS
[2022-06-17 08:45:06.032410] 0: NTLMSSP_NEGOTIATE_OEM_DOMAIN_SUPPLIED
[2022-06-17 08:45:06.034152] 0: NTLMSSP_NEGOTIATE_OEM_WORKSTATION_SUPPLIED
[2022-06-17 08:45:06.035814] 0: NTLMSSP_NEGOTIATE_THIS_IS_LOCAL_CALL
[2022-06-17 08:45:06.037452] 1: NTLMSSP_NEGOTIATE_ALWAYS_SIGN
[2022-06-17 08:45:06.039083] 0: NTLMSSP_TARGET_TYPE_DOMAIN
[2022-06-17 08:45:06.040719] 0: NTLMSSP_TARGET_TYPE_SERVER
[2022-06-17 08:45:06.042361] 0: NTLMSSP_TARGET_TYPE_SHARE
[2022-06-17 08:45:06.044097] 1: NTLMSSP_NEGOTIATE_EXTENDED_SESSIONSECURITY
[2022-06-17 08:45:06.045761] 0: NTLMSSP_NEGOTIATE_IDENTIFY
[2022-06-17 08:45:06.047390] 0: NTLMSSP_REQUEST_NON_NT_SESSION_KEY
[2022-06-17 08:45:06.049027] 0: NTLMSSP_NEGOTIATE_TARGET_INFO
[2022-06-17 08:45:06.050661] 1: NTLMSSP_NEGOTIATE_VERSION
[2022-06-17 08:45:06.052280] 1: NTLMSSP_NEGOTIATE_128
[2022-06-17 08:45:06.053971] 1: NTLMSSP_NEGOTIATE_KEY_EXCH
[2022-06-17 08:45:06.055624] 0: NTLMSSP_NEGOTIATE_56
[2022-06-17 08:45:06.057273] DomainNameLen : 0x0000 (0)
[2022-06-17 08:45:06.058911] DomainNameMaxLen : 0x0000 (0)
[2022-06-17 08:45:06.060551] DomainName : *
[2022-06-17 08:45:06.062316] DomainName : ''
[2022-06-17 08:45:06.064052] WorkstationLen : 0x0000 (0)
[2022-06-17 08:45:06.065704] WorkstationMaxLen : 0x0000 (0)
[2022-06-17 08:45:06.067370] Workstation : *
[2022-06-17 08:45:06.069017] Workstation : ''
[2022-06-17 08:45:06.070660] Version: struct ntlmssp_VERSION
[2022-06-17 08:45:06.072289] ProductMajorVersion : NTLMSSP_WINDOWS_MAJOR_VERSION_6 (6)
[2022-06-17 08:45:06.074008] ProductMinorVersion : NTLMSSP_WINDOWS_MINOR_VERSION_1 (1)
[2022-06-17 08:45:06.075668] ProductBuild : 0x0000 (0)
[2022-06-17 08:45:06.077297] Reserved: ARRAY(3)
[2022-06-17 08:45:06.078805] [0] : 0x00 (0)
[2022-06-17 08:45:06.091316] [1] : 0x00 (0)
[2022-06-17 08:45:06.093149] [2] : 0x00 (0)
[2022-06-17 08:45:06.094871] NTLMRevisionCurrent : NTLMSSP_REVISION_W2K3 (15)
[2022-06-17 08:45:06.096541] short string '', sent with NULL termination despite NOTERM flag in IDL
[2022-06-17 08:45:06.098190] challenge: struct CHALLENGE_MESSAGE
[2022-06-17 08:45:06.099819] Signature : 'NTLMSSP'
[2022-06-17 08:45:06.101451] MessageType : NtLmChallenge (0x2)
[2022-06-17 08:45:06.103141] TargetNameLen : 0x000c (12)
[2022-06-17 08:45:06.104808] TargetNameMaxLen : 0x000c (12)
[2022-06-17 08:45:06.106469] TargetName : *
[2022-06-17 08:45:06.108127] TargetName : 'ZALUPA'
[2022-06-17 08:45:06.109768] NegotiateFlags : 0x628a8215 (1653244437)
[2022-06-17 08:45:06.111407] 1: NTLMSSP_NEGOTIATE_UNICODE
[2022-06-17 08:45:06.113078] 0: NTLMSSP_NEGOTIATE_OEM
[2022-06-17 08:45:06.114730] 1: NTLMSSP_REQUEST_TARGET
[2022-06-17 08:45:06.116376] 1: NTLMSSP_NEGOTIATE_SIGN
[2022-06-17 08:45:06.118008] 0: NTLMSSP_NEGOTIATE_SEAL
[2022-06-17 08:45:06.119637] 0: NTLMSSP_NEGOTIATE_DATAGRAM
[2022-06-17 08:45:06.121278] 0: NTLMSSP_NEGOTIATE_LM_KEY
[2022-06-17 08:45:06.122947] 0: NTLMSSP_NEGOTIATE_NETWARE
[2022-06-17 08:45:06.124582] 1: NTLMSSP_NEGOTIATE_NTLM
[2022-06-17 08:45:06.126205] 0: NTLMSSP_NEGOTIATE_NT_ONLY
[2022-06-17 08:45:06.127845] 0: NTLMSSP_ANONYMOUS
[2022-06-17 08:45:06.129489] 0: NTLMSSP_NEGOTIATE_OEM_DOMAIN_SUPPLIED
[2022-06-17 08:45:06.131131] 0: NTLMSSP_NEGOTIATE_OEM_WORKSTATION_SUPPLIED
[2022-06-17 08:45:06.132772] 0: NTLMSSP_NEGOTIATE_THIS_IS_LOCAL_CALL
[2022-06-17 08:45:06.134478] 1: NTLMSSP_NEGOTIATE_ALWAYS_SIGN
[2022-06-17 08:45:06.136135] 0: NTLMSSP_TARGET_TYPE_DOMAIN
[2022-06-17 08:45:06.137773] 1: NTLMSSP_TARGET_TYPE_SERVER
[2022-06-17 08:45:06.139404] 0: NTLMSSP_TARGET_TYPE_SHARE
[2022-06-17 08:45:06.141050] 1: NTLMSSP_NEGOTIATE_EXTENDED_SESSIONSECURITY
[2022-06-17 08:45:06.142693] 0: NTLMSSP_NEGOTIATE_IDENTIFY
[2022-06-17 08:45:06.144394] 0: NTLMSSP_REQUEST_NON_NT_SESSION_KEY
[2022-06-17 08:45:06.146027] 1: NTLMSSP_NEGOTIATE_TARGET_INFO
[2022-06-17 08:45:06.147672] 1: NTLMSSP_NEGOTIATE_VERSION
[2022-06-17 08:45:06.149316] 1: NTLMSSP_NEGOTIATE_128
[2022-06-17 08:45:06.150949] 1: NTLMSSP_NEGOTIATE_KEY_EXCH
[2022-06-17 08:45:06.152587] 0: NTLMSSP_NEGOTIATE_56
[2022-06-17 08:45:06.154304] ServerChallenge : 35249412ce6fc318
[2022-06-17 08:45:06.155951] Reserved : 0000000000000000
[2022-06-17 08:45:06.157583] TargetInfoLen : 0x004c (76)
[2022-06-17 08:45:06.159225] TargetInfoMaxLen : 0x004c (76)
[2022-06-17 08:45:06.160867] TargetInfo : *
[2022-06-17 08:45:06.162491] TargetInfo: struct AV_PAIR_LIST
[2022-06-17 08:45:06.164204] count : 0x00000006 (6)
[2022-06-17 08:45:06.165870] pair: ARRAY(6)
[2022-06-17 08:45:06.167504] pair: struct AV_PAIR
[2022-06-17 08:45:06.169366] AvId : MsvAvNbDomainName (0x2)
[2022-06-17 08:45:06.171020] AvLen : 0x000c (12)
[2022-06-17 08:45:06.172658] Value : union ntlmssp_AvValue(case 0x2)
[2022-06-17 08:45:06.174385] AvNbDomainName : 'ZALUPA'
[2022-06-17 08:45:06.176036] pair: struct AV_PAIR
[2022-06-17 08:45:06.177689] AvId : MsvAvNbComputerName (0x1)
[2022-06-17 08:45:06.179339] AvLen : 0x000c (12)
[2022-06-17 08:45:06.180987] Value : union ntlmssp_AvValue(case 0x1)
[2022-06-17 08:45:06.182632] AvNbComputerName : 'ZALUPA'
[2022-06-17 08:45:06.184361] pair: struct AV_PAIR
[2022-06-17 08:45:06.186002] AvId : MsvAvDnsDomainName (0x4)
[2022-06-17 08:45:06.187658] AvLen : 0x0002 (2)
[2022-06-17 08:45:06.189304] Value : union ntlmssp_AvValue(case 0x4)
[2022-06-17 08:45:06.190974] AvDnsDomainName : ''
[2022-06-17 08:45:06.192617] pair: struct AV_PAIR
[2022-06-17 08:45:06.194330] AvId : MsvAvDnsComputerName (0x3)
[2022-06-17 08:45:06.195992] AvLen : 0x0012 (18)
[2022-06-17 08:45:06.197632] Value : union ntlmssp_AvValue(case 0x3)
[2022-06-17 08:45:06.199273] AvDnsComputerName : 'localhost'
[2022-06-17 08:45:06.200916] pair: struct AV_PAIR
[2022-06-17 08:45:06.202550] AvId : MsvAvTimestamp (0x7)
[2022-06-17 08:45:06.204289] AvLen : 0x0008 (8)
[2022-06-17 08:45:06.205947] Value : union ntlmssp_AvValue(case 0x7)
[2022-06-17 08:45:06.207607] AvTimestamp : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:06.209250] pair: struct AV_PAIR
[2022-06-17 08:45:06.210889] AvId : MsvAvEOL (0x0)
[2022-06-17 08:45:06.212539] AvLen : 0x0000 (0)
[2022-06-17 08:45:06.214271] Value : union ntlmssp_AvValue(case 0x0)
[2022-06-17 08:45:06.215936] Version: struct ntlmssp_VERSION
[2022-06-17 08:45:06.217568] ProductMajorVersion : NTLMSSP_WINDOWS_MAJOR_VERSION_6 (0x6)
[2022-06-17 08:45:06.219226] ProductMinorVersion : NTLMSSP_WINDOWS_MINOR_VERSION_1 (0x1)
[2022-06-17 08:45:06.220879] ProductBuild : 0x0000 (0)
[2022-06-17 08:45:06.222515] Reserved : 000000
[2022-06-17 08:45:06.224247] NTLMRevisionCurrent : NTLMSSP_REVISION_W2K3 (0xF)
[2022-06-17 08:45:06.225911] gensec_update_send: ntlmssp[0xb516aac0]: subreq: 0xb649fc70
[2022-06-17 08:45:06.227433] gensec_update_send: spnego[0xb516a940]: subreq: 0xb5c2b380
[2022-06-17 08:45:06.229110] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:06.230753] gensec_update_done: ntlmssp[0xb516aac0]: NT_STATUS_MORE_PROCESSING_REQUIRED tevent_req[0xb649fc70/../../auth/ntlmssp/ntlmssp.c:181]: state[2] error[0 (0x0)] state[struct gensec_ntlmssp_update_state (0xb649fd50)] timer[0] finish[../../auth/ntlmssp/ntlmssp.c:215]
[2022-06-17 08:45:06.232504] gensec_update_done: spnego[0xb516a940]: NT_STATUS_MORE_PROCESSING_REQUIRED tevent_req[0xb5c2b380/../../auth/gensec/spnego.c:1632]: state[2] error[0 (0x0)] state[struct gensec_spnego_update_state (0xb5c2b460)] timer[0] finish[../../auth/gensec/spnego.c:2116]
[2022-06-17 08:45:06.234336] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:06.235988] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:06.237633] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:06.239273] Security token: (NULL)
[2022-06-17 08:45:06.240884] UNIX token of user 0
[2022-06-17 08:45:06.242499] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:06.244212] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:06.245856] smbd_smb2_request_done_ex: mid [1] idx[1] status[NT_STATUS_MORE_PROCESSING_REQUIRED] body[8] dyn[yes:175] at ../../source3/smbd/smb2_sesssetup.c:183
[2022-06-17 08:45:06.247559] smb2_set_operation_credit: smb2_set_operation_credit: requested 8192, charge 1, granted 1, current possible/max 8192/8192, total granted/max/low/range 1/8192/2/1
[2022-06-17 08:45:06.249276] smbd_smb2_request idx[1] of 5 vectors
[2022-06-17 08:45:06.250927] smb2_validate_sequence_number: smb2_validate_sequence_number: clearing id 2 (position 2) from bitmap
[2022-06-17 08:45:06.252599] smbd_smb2_request_dispatch: opcode[SMB2_OP_SESSSETUP] mid = 2
[2022-06-17 08:45:06.254330] dbwrap_lock_order_lock: check lock order 1 for /var/lock/smbXsrv_session_global.tdb
[2022-06-17 08:45:06.255987] lock order: 1:/var/lock/smbXsrv_session_global.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:45:06.257638] db_tdb_log_key: Locking key 6F1A4B46
[2022-06-17 08:45:06.259269] db_tdb_fetch_locked_internal: Allocated locked data 0xb59d0cb0
[2022-06-17 08:45:06.260891] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:45:06.262539] smbXsrv_session_global_store: key '6F1A4B46' stored
[2022-06-17 08:45:06.264283] &global_blob: struct smbXsrv_session_globalB
[2022-06-17 08:45:06.265938] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:06.267583] seqnum : 0x00000003 (3)
[2022-06-17 08:45:06.269207] info : union smbXsrv_session_globalU(case 0)
[2022-06-17 08:45:06.270851] info0 : *
[2022-06-17 08:45:06.272475] info0: struct smbXsrv_session_global0
[2022-06-17 08:45:06.274191] db_rec : *
[2022-06-17 08:45:06.275865] session_global_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:06.277515] session_wire_id : 0x000000006f1a4b46 (1863994182)
[2022-06-17 08:45:06.279155] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:06.280807] expiration_time : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:06.282446] auth_time : NTTIME(0)
[2022-06-17 08:45:06.284179] auth_session_info_seqnum : 0x00000000 (0)
[2022-06-17 08:45:06.285821] auth_session_info : NULL
[2022-06-17 08:45:06.287472] connection_dialect : 0x0311 (785)
[2022-06-17 08:45:06.289107] signing_flags : 0x04 (4)
[2022-06-17 08:45:06.290750] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:06.292271] 0: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:06.293810] 1: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:06.295319] encryption_flags : 0x08 (8)
[2022-06-17 08:45:06.296806] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:06.298307] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:06.299814] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:06.301314] 1: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:06.302803] signing_key : NULL
[2022-06-17 08:45:06.304481] encryption_key : NULL
[2022-06-17 08:45:06.306123] decryption_key : NULL
[2022-06-17 08:45:06.307662] num_channels : 0x00000001 (1)
[2022-06-17 08:45:06.309178] channels: ARRAY(1)
[2022-06-17 08:45:06.310685] channels: struct smbXsrv_channel_global0
[2022-06-17 08:45:06.312184] server_id: struct server_id
[2022-06-17 08:45:06.313735] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:06.315257] task_id : 0x00000000 (0)
[2022-06-17 08:45:06.322970] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:06.324621] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:06.326196] channel_id : 0x0000000000000000 (0)
[2022-06-17 08:45:06.327721] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:06.333009] local_address : 'ipv4:192.168.1.250:445'
[2022-06-17 08:45:06.334575] remote_address : 'ipv4:192.168.1.10:33730'
[2022-06-17 08:45:06.336095] remote_name : '192.168.1.10'
[2022-06-17 08:45:06.337828] signing_key : NULL
[2022-06-17 08:45:06.339347] auth_session_info_seqnum : 0x00000000 (0)
[2022-06-17 08:45:06.340851] connection : *
[2022-06-17 08:45:06.342356] encryption_cipher : 0x0000 (0)
[2022-06-17 08:45:06.343945] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/smbXsrv_session_global.tdb
[2022-06-17 08:45:06.345467] db_tdb_log_key: Unlocking key 6F1A4B46
[2022-06-17 08:45:06.346957] smbXsrv_session_update: global_id (0x6f1a4b46) stored
[2022-06-17 08:45:06.348439] &session_blob: struct smbXsrv_sessionB
[2022-06-17 08:45:06.349926] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:06.351572] reserved : 0x00000000 (0)
[2022-06-17 08:45:06.353187] info : union smbXsrv_sessionU(case 0)
[2022-06-17 08:45:06.354734] info0 : *
[2022-06-17 08:45:06.356236] info0: struct smbXsrv_session
[2022-06-17 08:45:06.357722] table : *
[2022-06-17 08:45:06.359223] db_rec : NULL
[2022-06-17 08:45:06.360715] client : *
[2022-06-17 08:45:06.362204] local_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:06.363758] global : *
[2022-06-17 08:45:06.365272] global: struct smbXsrv_session_global0
[2022-06-17 08:45:06.367492] db_rec : NULL
[2022-06-17 08:45:06.369071] session_global_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:06.370828] session_wire_id : 0x000000006f1a4b46 (1863994182)
[2022-06-17 08:45:06.372485] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:06.374101] expiration_time : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:06.375777] auth_time : NTTIME(0)
[2022-06-17 08:45:06.377437] auth_session_info_seqnum : 0x00000000 (0)
[2022-06-17 08:45:06.379086] auth_session_info : NULL
[2022-06-17 08:45:06.380734] connection_dialect : 0x0311 (785)
[2022-06-17 08:45:06.382378] signing_flags : 0x04 (4)
[2022-06-17 08:45:06.384080] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:06.385827] 0: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:06.387464] 1: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:06.388993] encryption_flags : 0x08 (8)
[2022-06-17 08:45:06.390648] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:06.392396] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:06.394010] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:06.395665] 1: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:06.397313] signing_key : NULL
[2022-06-17 08:45:06.398954] encryption_key : NULL
[2022-06-17 08:45:06.400695] decryption_key : NULL
[2022-06-17 08:45:06.402230] num_channels : 0x00000001 (1)
[2022-06-17 08:45:06.403975] channels: ARRAY(1)
[2022-06-17 08:45:06.405623] channels: struct smbXsrv_channel_global0
[2022-06-17 08:45:06.407375] server_id: struct server_id
[2022-06-17 08:45:06.409004] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:06.410548] task_id : 0x00000000 (0)
[2022-06-17 08:45:06.412204] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:06.414799] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:06.416505] channel_id : 0x0000000000000000 (0)
[2022-06-17 08:45:06.418167] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:06.419831] local_address : 'ipv4:192.168.1.250:445'
[2022-06-17 08:45:06.421482] remote_address : 'ipv4:192.168.1.10:33730'
[2022-06-17 08:45:06.423195] remote_name : '192.168.1.10'
[2022-06-17 08:45:06.424853] signing_key : NULL
[2022-06-17 08:45:06.426517] auth_session_info_seqnum : 0x00000000 (0)
[2022-06-17 08:45:06.428049] connection : *
[2022-06-17 08:45:06.429839] encryption_cipher : 0x0000 (0)
[2022-06-17 08:45:06.431491] status : NT_STATUS_MORE_PROCESSING_REQUIRED
[2022-06-17 08:45:06.433200] idle_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:06.434855] nonce_high_random : 0x0000000000000000 (0)
[2022-06-17 08:45:06.436508] nonce_high_max : 0x0000000000000000 (0)
[2022-06-17 08:45:06.438148] nonce_high : 0x0000000000000000 (0)
[2022-06-17 08:45:06.439800] nonce_low : 0x0000000000000000 (0)
[2022-06-17 08:45:06.441453] tcon_table : *
[2022-06-17 08:45:06.443157] homes_snum : 0xffffffff (4294967295)
[2022-06-17 08:45:06.444810] pending_auth : *
[2022-06-17 08:45:06.446458] pending_auth: struct smbXsrv_session_auth0
[2022-06-17 08:45:06.448113] prev : *
[2022-06-17 08:45:06.449757] next : NULL
[2022-06-17 08:45:06.451411] session : *
[2022-06-17 08:45:06.453111] connection : *
[2022-06-17 08:45:06.454765] gensec : *
[2022-06-17 08:45:06.456414] preauth : *
[2022-06-17 08:45:06.458054] in_flags : 0x00 (0)
[2022-06-17 08:45:06.459683] in_security_mode : 0x01 (1)
[2022-06-17 08:45:06.461311] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:06.463011] idle_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:06.464697] channel_id : 0x0000000000000000 (0)
[2022-06-17 08:45:06.466367] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:06.468005] Security token: (NULL)
[2022-06-17 08:45:06.469619] UNIX token of user 0
[2022-06-17 08:45:06.471239] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:06.472920] change_to_root_user: now uid=(0,0) gid=(0,0)
[2022-06-17 08:45:06.474579] dbwrap_lock_order_lock: check lock order 1 for /var/lock/smbXsrv_session_global.tdb
[2022-06-17 08:45:06.476250] lock order: 1:/var/lock/smbXsrv_session_global.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:45:06.477899] db_tdb_log_key: Locking key 6F1A4B46
[2022-06-17 08:45:06.479531] db_tdb_fetch_locked_internal: Allocated locked data 0xb62aecf0
[2022-06-17 08:45:06.481169] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:45:06.482807] smbXsrv_session_global_store: key '6F1A4B46' stored
[2022-06-17 08:45:06.484503] &global_blob: struct smbXsrv_session_globalB
[2022-06-17 08:45:06.486145] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:06.487792] seqnum : 0x00000004 (4)
[2022-06-17 08:45:06.489438] info : union smbXsrv_session_globalU(case 0)
[2022-06-17 08:45:06.491082] info0 : *
[2022-06-17 08:45:06.492704] info0: struct smbXsrv_session_global0
[2022-06-17 08:45:06.494390] db_rec : *
[2022-06-17 08:45:06.496031] session_global_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:06.497673] session_wire_id : 0x000000006f1a4b46 (1863994182)
[2022-06-17 08:45:06.499352] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:06.501017] expiration_time : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:06.502673] auth_time : NTTIME(0)
[2022-06-17 08:45:06.504370] auth_session_info_seqnum : 0x00000000 (0)
[2022-06-17 08:45:06.506023] auth_session_info : NULL
[2022-06-17 08:45:06.507659] connection_dialect : 0x0311 (785)
[2022-06-17 08:45:06.509305] signing_flags : 0x04 (4)
[2022-06-17 08:45:06.510955] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:06.512615] 0: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:06.514346] 1: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:06.516004] encryption_flags : 0x08 (8)
[2022-06-17 08:45:06.517647] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:06.519286] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:06.520921] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:06.522557] 1: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:06.524293] signing_key : NULL
[2022-06-17 08:45:06.525944] encryption_key : NULL
[2022-06-17 08:45:06.527606] decryption_key : NULL
[2022-06-17 08:45:06.529256] num_channels : 0x00000001 (1)
[2022-06-17 08:45:06.530897] channels: ARRAY(1)
[2022-06-17 08:45:06.532523] channels: struct smbXsrv_channel_global0
[2022-06-17 08:45:06.534245] server_id: struct server_id
[2022-06-17 08:45:06.535896] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:06.537564] task_id : 0x00000000 (0)
[2022-06-17 08:45:06.539213] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:06.540874] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:06.542543] channel_id : 0x0000000000000000 (0)
[2022-06-17 08:45:06.552245] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:06.554013] local_address : 'ipv4:192.168.1.250:445'
[2022-06-17 08:45:06.556080] remote_address : 'ipv4:192.168.1.10:33730'
[2022-06-17 08:45:06.557769] remote_name : '192.168.1.10'
[2022-06-17 08:45:06.559430] signing_key : NULL
[2022-06-17 08:45:06.563581] auth_session_info_seqnum : 0x00000000 (0)
[2022-06-17 08:45:06.565365] connection : *
[2022-06-17 08:45:06.567049] encryption_cipher : 0x0000 (0)
[2022-06-17 08:45:06.570085] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/smbXsrv_session_global.tdb
[2022-06-17 08:45:06.571776] db_tdb_log_key: Unlocking key 6F1A4B46
[2022-06-17 08:45:06.573485] smbXsrv_session_update: global_id (0x6f1a4b46) stored
[2022-06-17 08:45:06.575156] &session_blob: struct smbXsrv_sessionB
[2022-06-17 08:45:06.576809] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:06.578453] reserved : 0x00000000 (0)
[2022-06-17 08:45:06.580092] info : union smbXsrv_sessionU(case 0)
[2022-06-17 08:45:06.581739] info0 : *
[2022-06-17 08:45:06.583430] info0: struct smbXsrv_session
[2022-06-17 08:45:06.585099] table : *
[2022-06-17 08:45:06.586747] db_rec : NULL
[2022-06-17 08:45:06.588396] client : *
[2022-06-17 08:45:06.590029] local_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:06.591672] global : *
[2022-06-17 08:45:06.593350] global: struct smbXsrv_session_global0
[2022-06-17 08:45:06.595019] db_rec : NULL
[2022-06-17 08:45:06.596658] session_global_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:06.598314] session_wire_id : 0x000000006f1a4b46 (1863994182)
[2022-06-17 08:45:06.599974] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:06.601635] expiration_time : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:06.603330] auth_time : NTTIME(0)
[2022-06-17 08:45:06.604985] auth_session_info_seqnum : 0x00000000 (0)
[2022-06-17 08:45:06.606630] auth_session_info : NULL
[2022-06-17 08:45:06.608279] connection_dialect : 0x0311 (785)
[2022-06-17 08:45:06.609935] signing_flags : 0x04 (4)
[2022-06-17 08:45:06.611463] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:06.613020] 0: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:06.614534] 1: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:06.616044] encryption_flags : 0x08 (8)
[2022-06-17 08:45:06.617534] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:06.619026] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:06.620527] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:06.622029] 1: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:06.623644] signing_key : NULL
[2022-06-17 08:45:06.625160] encryption_key : NULL
[2022-06-17 08:45:06.626842] decryption_key : NULL
[2022-06-17 08:45:06.628364] num_channels : 0x00000001 (1)
[2022-06-17 08:45:06.630161] channels: ARRAY(1)
[2022-06-17 08:45:06.631812] channels: struct smbXsrv_channel_global0
[2022-06-17 08:45:06.633518] server_id: struct server_id
[2022-06-17 08:45:06.635172] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:06.636840] task_id : 0x00000000 (0)
[2022-06-17 08:45:06.638491] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:06.640141] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:06.641806] channel_id : 0x0000000000000000 (0)
[2022-06-17 08:45:06.643505] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:06.645192] local_address : 'ipv4:192.168.1.250:445'
[2022-06-17 08:45:06.646843] remote_address : 'ipv4:192.168.1.10:33730'
[2022-06-17 08:45:06.648499] remote_name : '192.168.1.10'
[2022-06-17 08:45:06.650145] signing_key : NULL
[2022-06-17 08:45:06.651776] auth_session_info_seqnum : 0x00000000 (0)
[2022-06-17 08:45:06.653473] connection : *
[2022-06-17 08:45:06.655128] encryption_cipher : 0x0000 (0)
[2022-06-17 08:45:06.656776] status : NT_STATUS_MORE_PROCESSING_REQUIRED
[2022-06-17 08:45:06.658428] idle_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:06.660066] nonce_high_random : 0x0000000000000000 (0)
[2022-06-17 08:45:06.661709] nonce_high_max : 0x0000000000000000 (0)
[2022-06-17 08:45:06.663398] nonce_high : 0x0000000000000000 (0)
[2022-06-17 08:45:06.665060] nonce_low : 0x0000000000000000 (0)
[2022-06-17 08:45:06.666701] tcon_table : *
[2022-06-17 08:45:06.668338] homes_snum : 0xffffffff (4294967295)
[2022-06-17 08:45:06.669983] pending_auth : *
[2022-06-17 08:45:06.671624] pending_auth: struct smbXsrv_session_auth0
[2022-06-17 08:45:06.673297] prev : *
[2022-06-17 08:45:06.674948] next : NULL
[2022-06-17 08:45:06.676472] session : *
[2022-06-17 08:45:06.677974] connection : *
[2022-06-17 08:45:06.679468] gensec : *
[2022-06-17 08:45:06.680965] preauth : *
[2022-06-17 08:45:06.682456] in_flags : 0x00 (0)
[2022-06-17 08:45:06.684040] in_security_mode : 0x01 (1)
[2022-06-17 08:45:06.685968] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:06.687629] idle_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:06.689370] channel_id : 0x0000000000000000 (0)
[2022-06-17 08:45:06.690917] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:06.692412] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:06.694107] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:06.695645] Security token: (NULL)
[2022-06-17 08:45:06.697232] UNIX token of user 0
[2022-06-17 08:45:06.698856] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:06.700492] short string '', sent with NULL termination despite NOTERM flag in IDL
[2022-06-17 08:45:06.702131] authenticate: struct AUTHENTICATE_MESSAGE
[2022-06-17 08:45:06.703854] Signature : 'NTLMSSP'
[2022-06-17 08:45:06.705519] MessageType : NtLmAuthenticate (3)
[2022-06-17 08:45:06.707171] LmChallengeResponseLen : 0x0018 (24)
[2022-06-17 08:45:06.708814] LmChallengeResponseMaxLen: 0x0018 (24)
[2022-06-17 08:45:06.710509] LmChallengeResponse : *
[2022-06-17 08:45:06.712168] LmChallengeResponse : union ntlmssp_LM_RESPONSE_with_len(case 24)
[2022-06-17 08:45:06.713875] v1: struct LM_RESPONSE
[2022-06-17 08:45:06.715529] Response : 000000000000000000000000000000000000000000000000
[2022-06-17 08:45:06.717189] NtChallengeResponseLen : 0x00f0 (240)
[2022-06-17 08:45:06.718830] NtChallengeResponseMaxLen: 0x00f0 (240)
[2022-06-17 08:45:06.720475] NtChallengeResponse : *
[2022-06-17 08:45:06.722109] NtChallengeResponse : union ntlmssp_NTLM_RESPONSE_with_len(case 240)
[2022-06-17 08:45:06.723817] v2: struct NTLMv2_RESPONSE
[2022-06-17 08:45:06.725473] Response : 0305ee37d2c7dc4bf00f4b46a92ed7e5
[2022-06-17 08:45:06.727117] Challenge: struct NTLMv2_CLIENT_CHALLENGE
[2022-06-17 08:45:06.728767] RespType : 0x01 (1)
[2022-06-17 08:45:06.730432] HiRespType : 0x01 (1)
[2022-06-17 08:45:06.732079] Reserved1 : 0x0000 (0)
[2022-06-17 08:45:06.733775] Reserved2 : 0x00000000 (0)
[2022-06-17 08:45:06.735446] TimeStamp : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:06.737085] ChallengeFromClient : 019d29316206947a
[2022-06-17 08:45:06.738732] Reserved3 : 0x00000000 (0)
[2022-06-17 08:45:06.740385] AvPairs: struct AV_PAIR_LIST
[2022-06-17 08:45:06.741901] count : 0x0000000a (10)
[2022-06-17 08:45:06.743598] pair: ARRAY(10)
[2022-06-17 08:45:06.745241] pair: struct AV_PAIR
[2022-06-17 08:45:06.746758] AvId : MsvAvNbDomainName (0x2)
[2022-06-17 08:45:06.748498] AvLen : 0x000c (12)
[2022-06-17 08:45:06.750156] Value : union ntlmssp_AvValue(case 0x2)
[2022-06-17 08:45:06.751686] AvNbDomainName : 'ZALUPA'
[2022-06-17 08:45:06.753497] pair: struct AV_PAIR
[2022-06-17 08:45:06.755039] AvId : MsvAvNbComputerName (0x1)
[2022-06-17 08:45:06.756828] AvLen : 0x000c (12)
[2022-06-17 08:45:06.758485] Value : union ntlmssp_AvValue(case 0x1)
[2022-06-17 08:45:06.760155] AvNbComputerName : 'ZALUPA'
[2022-06-17 08:45:06.761795] pair: struct AV_PAIR
[2022-06-17 08:45:06.763367] AvId : MsvAvDnsDomainName (0x4)
[2022-06-17 08:45:06.765144] AvLen : 0x0002 (2)
[2022-06-17 08:45:06.766811] Value : union ntlmssp_AvValue(case 0x4)
[2022-06-17 08:45:06.768477] AvDnsDomainName : ''
[2022-06-17 08:45:06.770120] pair: struct AV_PAIR
[2022-06-17 08:45:06.781706] AvId : MsvAvDnsComputerName (0x3)
[2022-06-17 08:45:06.783516] AvLen : 0x0012 (18)
[2022-06-17 08:45:06.785233] Value : union ntlmssp_AvValue(case 0x3)
[2022-06-17 08:45:06.786794] AvDnsComputerName : 'localhost'
[2022-06-17 08:45:06.788589] pair: struct AV_PAIR
[2022-06-17 08:45:06.790234] AvId : MsvAvTimestamp (0x7)
[2022-06-17 08:45:06.791895] AvLen : 0x0008 (8)
[2022-06-17 08:45:06.793466] Value : union ntlmssp_AvValue(case 0x7)
[2022-06-17 08:45:06.795220] AvTimestamp : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:06.796888] pair: struct AV_PAIR
[2022-06-17 08:45:06.798548] AvId : MsvAvFlags (0x6)
[2022-06-17 08:45:06.800210] AvLen : 0x0004 (4)
[2022-06-17 08:45:06.801864] Value : union ntlmssp_AvValue(case 0x6)
[2022-06-17 08:45:06.803570] AvFlags : 0x00000002 (2)
[2022-06-17 08:45:06.805230] 0: NTLMSSP_AVFLAG_CONSTRAINTED_ACCOUNT
[2022-06-17 08:45:06.806884] 1: NTLMSSP_AVFLAG_MIC_IN_AUTHENTICATE_MESSAGE
[2022-06-17 08:45:06.808531] 0: NTLMSSP_AVFLAG_TARGET_SPN_FROM_UNTRUSTED_SOURCE
[2022-06-17 08:45:06.810183] pair: struct AV_PAIR
[2022-06-17 08:45:06.811838] AvId : MsvAvSingleHost (0x8)
[2022-06-17 08:45:06.813424] AvLen : 0x0030 (48)
[2022-06-17 08:45:06.814954] Value : union ntlmssp_AvValue(case 0x8)
[2022-06-17 08:45:06.816460] AvSingleHost: struct ntlmssp_SingleHostData
[2022-06-17 08:45:06.818220] Size : 0x00000030 (48)
[2022-06-17 08:45:06.819875] Z4 : 0x00000000 (0)
[2022-06-17 08:45:06.821535] token_info: struct LSAP_TOKEN_INFO_INTEGRITY
[2022-06-17 08:45:06.823242] Flags : 0x00000000 (0)
[2022-06-17 08:45:06.824928] TokenIL : 0x00000000 (0)
[2022-06-17 08:45:06.826583] MachineId : 0c18bd46c901a766bdee49fb89a32fb6e464fb01c742a218764a8d4d50d4f398
[2022-06-17 08:45:06.828264] remaining : DATA_BLOB length=0
[2022-06-17 08:45:06.829942] pair: struct AV_PAIR
[2022-06-17 08:45:06.831590] AvId : MsvChannelBindings (0xA)
[2022-06-17 08:45:06.833301] AvLen : 0x0010 (16)
[2022-06-17 08:45:06.834957] Value : union ntlmssp_AvValue(case 0xA)
[2022-06-17 08:45:06.836617] ChannelBindings : 00000000000000000000000000000000
[2022-06-17 08:45:06.838278] pair: struct AV_PAIR
[2022-06-17 08:45:06.839922] AvId : MsvAvTargetName (0x9)
[2022-06-17 08:45:06.841573] AvLen : 0x0024 (36)
[2022-06-17 08:45:06.843296] Value : union ntlmssp_AvValue(case 0x9)
[2022-06-17 08:45:06.844982] AvTargetName : 'cifs/192.168.1.250'
[2022-06-17 08:45:06.846631] pair: struct AV_PAIR
[2022-06-17 08:45:06.848276] AvId : MsvAvEOL (0x0)
[2022-06-17 08:45:06.849929] AvLen : 0x0000 (0)
[2022-06-17 08:45:06.851587] Value : union ntlmssp_AvValue(case 0x0)
[2022-06-17 08:45:06.853279] DomainNameLen : 0x0012 (18)
[2022-06-17 08:45:06.854925] DomainNameMaxLen : 0x0012 (18)
[2022-06-17 08:45:06.856561] DomainName : *
[2022-06-17 08:45:06.858216] DomainName : 'WORKGROUP'
[2022-06-17 08:45:06.859864] UserNameLen : 0x0010 (16)
[2022-06-17 08:45:06.861505] UserNameMaxLen : 0x0010 (16)
[2022-06-17 08:45:06.863200] UserName : *
[2022-06-17 08:45:06.864845] UserName : 'useruser'
[2022-06-17 08:45:06.866495] WorkstationLen : 0x000c (12)
[2022-06-17 08:45:06.868139] WorkstationMaxLen : 0x000c (12)
[2022-06-17 08:45:06.869783] Workstation : *
[2022-06-17 08:45:06.871412] Workstation : 'LINUPS'
[2022-06-17 08:45:06.873094] EncryptedRandomSessionKeyLen: 0x0010 (16)
[2022-06-17 08:45:06.874776] EncryptedRandomSessionKeyMaxLen: 0x0010 (16)
[2022-06-17 08:45:06.876430] EncryptedRandomSessionKey: *
[2022-06-17 08:45:06.878064] EncryptedRandomSessionKey: DATA_BLOB length=16
[2022-06-17 08:45:06.879690] [0000] 83 1C E2 0E E1 3A DB C1 DB D0 CE A2 F9 70 23 09 .....:.. .....p#.
[2022-06-17 08:45:06.881339] NegotiateFlags : 0x62088215 (1644724757)
[2022-06-17 08:45:06.883009] 1: NTLMSSP_NEGOTIATE_UNICODE
[2022-06-17 08:45:06.884658] 0: NTLMSSP_NEGOTIATE_OEM
[2022-06-17 08:45:06.886320] 1: NTLMSSP_REQUEST_TARGET
[2022-06-17 08:45:06.887973] 1: NTLMSSP_NEGOTIATE_SIGN
[2022-06-17 08:45:06.889607] 0: NTLMSSP_NEGOTIATE_SEAL
[2022-06-17 08:45:06.891239] 0: NTLMSSP_NEGOTIATE_DATAGRAM
[2022-06-17 08:45:06.892910] 0: NTLMSSP_NEGOTIATE_LM_KEY
[2022-06-17 08:45:06.894570] 0: NTLMSSP_NEGOTIATE_NETWARE
[2022-06-17 08:45:06.896205] 1: NTLMSSP_NEGOTIATE_NTLM
[2022-06-17 08:45:06.897853] 0: NTLMSSP_NEGOTIATE_NT_ONLY
[2022-06-17 08:45:06.899493] 0: NTLMSSP_ANONYMOUS
[2022-06-17 08:45:06.901136] 0: NTLMSSP_NEGOTIATE_OEM_DOMAIN_SUPPLIED
[2022-06-17 08:45:06.902785] 0: NTLMSSP_NEGOTIATE_OEM_WORKSTATION_SUPPLIED
[2022-06-17 08:45:06.904512] 0: NTLMSSP_NEGOTIATE_THIS_IS_LOCAL_CALL
[2022-06-17 08:45:06.906160] 1: NTLMSSP_NEGOTIATE_ALWAYS_SIGN
[2022-06-17 08:45:06.907798] 0: NTLMSSP_TARGET_TYPE_DOMAIN
[2022-06-17 08:45:06.909444] 0: NTLMSSP_TARGET_TYPE_SERVER
[2022-06-17 08:45:06.911094] 0: NTLMSSP_TARGET_TYPE_SHARE
[2022-06-17 08:45:06.912733] 1: NTLMSSP_NEGOTIATE_EXTENDED_SESSIONSECURITY
[2022-06-17 08:45:06.914446] 0: NTLMSSP_NEGOTIATE_IDENTIFY
[2022-06-17 08:45:06.916080] 0: NTLMSSP_REQUEST_NON_NT_SESSION_KEY
[2022-06-17 08:45:06.917717] 0: NTLMSSP_NEGOTIATE_TARGET_INFO
[2022-06-17 08:45:06.919359] 1: NTLMSSP_NEGOTIATE_VERSION
[2022-06-17 08:45:06.921000] 1: NTLMSSP_NEGOTIATE_128
[2022-06-17 08:45:06.922642] 1: NTLMSSP_NEGOTIATE_KEY_EXCH
[2022-06-17 08:45:06.924368] 0: NTLMSSP_NEGOTIATE_56
[2022-06-17 08:45:06.925997] Version: struct ntlmssp_VERSION
[2022-06-17 08:45:06.927642] ProductMajorVersion : NTLMSSP_WINDOWS_MAJOR_VERSION_6 (6)
[2022-06-17 08:45:06.929291] ProductMinorVersion : NTLMSSP_WINDOWS_MINOR_VERSION_1 (1)
[2022-06-17 08:45:06.930948] ProductBuild : 0x0000 (0)
[2022-06-17 08:45:06.932588] Reserved: ARRAY(3)
[2022-06-17 08:45:06.934314] [0] : 0x00 (0)
[2022-06-17 08:45:06.935955] [1] : 0x00 (0)
[2022-06-17 08:45:06.937595] [2] : 0x00 (0)
[2022-06-17 08:45:06.939229] NTLMRevisionCurrent : NTLMSSP_REVISION_W2K3 (15)
[2022-06-17 08:45:06.940858] Got user=[useruser] domain=[WORKGROUP] workstation=[LINUPS] len1=24 len2=240
[2022-06-17 08:45:06.942519] short string '', sent with NULL termination despite NOTERM flag in IDL
[2022-06-17 08:45:06.944260] &v2_resp: struct NTLMv2_RESPONSE
[2022-06-17 08:45:06.945915] Response : 0305ee37d2c7dc4bf00f4b46a92ed7e5
[2022-06-17 08:45:06.947568] Challenge: struct NTLMv2_CLIENT_CHALLENGE
[2022-06-17 08:45:06.949206] RespType : 0x01 (1)
[2022-06-17 08:45:06.950832] HiRespType : 0x01 (1)
[2022-06-17 08:45:06.952471] Reserved1 : 0x0000 (0)
[2022-06-17 08:45:06.954188] Reserved2 : 0x00000000 (0)
[2022-06-17 08:45:06.955840] TimeStamp : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:06.957498] ChallengeFromClient : 019d29316206947a
[2022-06-17 08:45:06.959137] Reserved3 : 0x00000000 (0)
[2022-06-17 08:45:06.960772] AvPairs: struct AV_PAIR_LIST
[2022-06-17 08:45:06.962398] count : 0x0000000a (10)
[2022-06-17 08:45:06.964121] pair: ARRAY(10)
[2022-06-17 08:45:06.965756] pair: struct AV_PAIR
[2022-06-17 08:45:06.967384] AvId : MsvAvNbDomainName (0x2)
[2022-06-17 08:45:06.969026] AvLen : 0x000c (12)
[2022-06-17 08:45:06.970703] Value : union ntlmssp_AvValue(case 0x2)
[2022-06-17 08:45:06.972361] AvNbDomainName : 'ZALUPA'
[2022-06-17 08:45:06.974089] pair: struct AV_PAIR
[2022-06-17 08:45:06.975718] AvId : MsvAvNbComputerName (0x1)
[2022-06-17 08:45:06.977373] AvLen : 0x000c (12)
[2022-06-17 08:45:06.979008] Value : union ntlmssp_AvValue(case 0x1)
[2022-06-17 08:45:06.980659] AvNbComputerName : 'ZALUPA'
[2022-06-17 08:45:06.982306] pair: struct AV_PAIR
[2022-06-17 08:45:06.984057] AvId : MsvAvDnsDomainName (0x4)
[2022-06-17 08:45:06.985722] AvLen : 0x0002 (2)
[2022-06-17 08:45:06.987365] Value : union ntlmssp_AvValue(case 0x4)
[2022-06-17 08:45:06.989019] AvDnsDomainName : ''
[2022-06-17 08:45:06.990650] pair: struct AV_PAIR
[2022-06-17 08:45:06.992281] AvId : MsvAvDnsComputerName (0x3)
[2022-06-17 08:45:06.994002] AvLen : 0x0012 (18)
[2022-06-17 08:45:06.995668] Value : union ntlmssp_AvValue(case 0x3)
[2022-06-17 08:45:06.997332] AvDnsComputerName : 'localhost'
[2022-06-17 08:45:06.998990] pair: struct AV_PAIR
[2022-06-17 08:45:07.000622] AvId : MsvAvTimestamp (0x7)
[2022-06-17 08:45:07.002259] AvLen : 0x0008 (8)
[2022-06-17 08:45:07.012980] Value : union ntlmssp_AvValue(case 0x7)
[2022-06-17 08:45:07.014722] AvTimestamp : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:07.016423] pair: struct AV_PAIR
[2022-06-17 08:45:07.018076] AvId : MsvAvFlags (0x6)
[2022-06-17 08:45:07.019732] AvLen : 0x0004 (4)
[2022-06-17 08:45:07.021386] Value : union ntlmssp_AvValue(case 0x6)
[2022-06-17 08:45:07.023095] AvFlags : 0x00000002 (2)
[2022-06-17 08:45:07.026320] 0: NTLMSSP_AVFLAG_CONSTRAINTED_ACCOUNT
[2022-06-17 08:45:07.028002] 1: NTLMSSP_AVFLAG_MIC_IN_AUTHENTICATE_MESSAGE
[2022-06-17 08:45:07.029669] 0: NTLMSSP_AVFLAG_TARGET_SPN_FROM_UNTRUSTED_SOURCE
[2022-06-17 08:45:07.031333] pair: struct AV_PAIR
[2022-06-17 08:45:07.033017] AvId : MsvAvSingleHost (0x8)
[2022-06-17 08:45:07.034694] AvLen : 0x0030 (48)
[2022-06-17 08:45:07.036351] Value : union ntlmssp_AvValue(case 0x8)
[2022-06-17 08:45:07.038020] AvSingleHost: struct ntlmssp_SingleHostData
[2022-06-17 08:45:07.039653] Size : 0x00000030 (48)
[2022-06-17 08:45:07.041304] Z4 : 0x00000000 (0)
[2022-06-17 08:45:07.042992] token_info: struct LSAP_TOKEN_INFO_INTEGRITY
[2022-06-17 08:45:07.044657] Flags : 0x00000000 (0)
[2022-06-17 08:45:07.046314] TokenIL : 0x00000000 (0)
[2022-06-17 08:45:07.047951] MachineId : 0c18bd46c901a766bdee49fb89a32fb6e464fb01c742a218764a8d4d50d4f398
[2022-06-17 08:45:07.049617] remaining : DATA_BLOB length=0
[2022-06-17 08:45:07.051277] pair: struct AV_PAIR
[2022-06-17 08:45:07.052949] AvId : MsvChannelBindings (0xA)
[2022-06-17 08:45:07.054635] AvLen : 0x0010 (16)
[2022-06-17 08:45:07.062990] Value : union ntlmssp_AvValue(case 0xA)
[2022-06-17 08:45:07.064870] ChannelBindings : 00000000000000000000000000000000
[2022-06-17 08:45:07.066587] pair: struct AV_PAIR
[2022-06-17 08:45:07.068244] AvId : MsvAvTargetName (0x9)
[2022-06-17 08:45:07.073497] AvLen : 0x0024 (36)
[2022-06-17 08:45:07.075333] Value : union ntlmssp_AvValue(case 0x9)
[2022-06-17 08:45:07.077120] AvTargetName : 'cifs/192.168.1.250'
[2022-06-17 08:45:07.078810] pair: struct AV_PAIR
[2022-06-17 08:45:07.083444] AvId : MsvAvEOL (0x0)
[2022-06-17 08:45:07.085178] AvLen : 0x0000 (0)
[2022-06-17 08:45:07.086880] Value : union ntlmssp_AvValue(case 0x0)
[2022-06-17 08:45:07.089335] Mapping user [WORKGROUP]\[useruser] from workstation [LINUPS]
[2022-06-17 08:45:07.091042] attempting to make a user_info for useruser (useruser)
[2022-06-17 08:45:07.092718] making strings for useruser's user_info struct
[2022-06-17 08:45:07.094326] making blobs for useruser's user_info struct
[2022-06-17 08:45:07.096066] made a user_info for useruser (useruser)
[2022-06-17 08:45:07.097706] check_ntlm_password: Checking password for unmapped user [WORKGROUP]\[useruser]@[LINUPS] with the new password interface
[2022-06-17 08:45:07.099379] check_ntlm_password: mapped user is: [WORKGROUP]\[useruser]@[LINUPS]
[2022-06-17 08:45:07.101020] check_ntlm_password: auth_context challenge created by random
[2022-06-17 08:45:07.102681] challenge is:
[2022-06-17 08:45:07.104379] [0000] 35 24 94 12 CE 6F C3 18 5$...o..
[2022-06-17 08:45:07.106044] Check auth for: [useruser]
[2022-06-17 08:45:07.107675] auth_check_ntlm_password: anonymous had nothing to say
[2022-06-17 08:45:07.109305] auth_sam_ignoredomain_auth: Check auth for: [WORKGROUP]\[useruser]
[2022-06-17 08:45:07.110822] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
[2022-06-17 08:45:07.112313] push_conn_ctx(0) : conn_ctx_stack_ndx = 1
[2022-06-17 08:45:07.113876] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
[2022-06-17 08:45:07.115375] Security token: (NULL)
[2022-06-17 08:45:07.116848] UNIX token of user 0
[2022-06-17 08:45:07.118823] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.120587] getsampwnam (smbpasswd): search by name: useruser
[2022-06-17 08:45:07.122247] startsmbfilepwent_internal: opening file /etc/samba/smbpasswd
[2022-06-17 08:45:07.123937] getsmbfilepwent: skipping comment or blank line
[2022-06-17 08:45:07.125583] getsmbfilepwent: LM password for user nobody invalidated
[2022-06-17 08:45:07.127228] getsmbfilepwent: returning passwd entry for user nobody, uid 0
[2022-06-17 08:45:07.128878] getsmbfilepwent: LM password for user useruser invalidated
[2022-06-17 08:45:07.130531] getsmbfilepwent: returning passwd entry for user useruser, uid 65533
[2022-06-17 08:45:07.132192] endsmbfilepwent_internal: closed password file.
[2022-06-17 08:45:07.133880] getsampwnam (smbpasswd): found by name: useruser
[2022-06-17 08:45:07.135533] Finding user useruser
[2022-06-17 08:45:07.137145] Trying _Get_Pwnam(), username as lowercase is useruser
[2022-06-17 08:45:07.138790] Get_Pwnam_internals did find user [useruser]!
[2022-06-17 08:45:07.140423] pdb_set_username: setting username useruser, was
[2022-06-17 08:45:07.142068] pdb_set_full_name: setting full name nobody, was
[2022-06-17 08:45:07.143770] pdb_set_domain: setting domain ZALUPA, was
[2022-06-17 08:45:07.145428] Home server: ZALUPA
[2022-06-17 08:45:07.147043] pdb_set_profile_path: setting profile path \\ZALUPA\useruser\profile, was
[2022-06-17 08:45:07.148684] Home server: ZALUPA
[2022-06-17 08:45:07.150293] pdb_set_homedir: setting home dir \\ZALUPA\useruser, was
[2022-06-17 08:45:07.151926] pdb_set_dir_drive: setting dir drive , was NULL
[2022-06-17 08:45:07.153621] pdb_set_logon_script: setting logon script , was
[2022-06-17 08:45:07.155277] pdb_set_user_sid: setting user sid S-1-5-21-3939785350-4027435424-1589595352-132066
[2022-06-17 08:45:07.156936] pdb_set_user_sid_from_rid:
[2022-06-17 08:45:07.158551] setting user sid S-1-5-21-3939785350-4027435424-1589595352-132066 from rid 132066
[2022-06-17 08:45:07.160210] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 3
[2022-06-17 08:45:07.161844] push_conn_ctx(0) : conn_ctx_stack_ndx = 2
[2022-06-17 08:45:07.163516] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 3
[2022-06-17 08:45:07.165173] Security token: (NULL)
[2022-06-17 08:45:07.166802] UNIX token of user 0
[2022-06-17 08:45:07.168420] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.170059] account_policy_get: name: maximum password age, val: -1
[2022-06-17 08:45:07.171704] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 2
[2022-06-17 08:45:07.173402] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 3
[2022-06-17 08:45:07.175061] push_conn_ctx(0) : conn_ctx_stack_ndx = 2
[2022-06-17 08:45:07.176714] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 3
[2022-06-17 08:45:07.178241] Security token: (NULL)
[2022-06-17 08:45:07.180160] UNIX token of user 0
[2022-06-17 08:45:07.181809] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.183509] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 2
[2022-06-17 08:45:07.185152] xid_to_sid: GID 65534 -> S-1-22-2-65534 fallback
[2022-06-17 08:45:07.186808] Forcing Primary Group to 'Domain Users' for useruser
[2022-06-17 08:45:07.188452] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 3
[2022-06-17 08:45:07.190081] push_conn_ctx(0) : conn_ctx_stack_ndx = 2
[2022-06-17 08:45:07.191716] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 3
[2022-06-17 08:45:07.193406] Security token: (NULL)
[2022-06-17 08:45:07.195021] UNIX token of user 0
[2022-06-17 08:45:07.196634] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.198261] account_policy_get: name: password history, val: 0
[2022-06-17 08:45:07.199895] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 2
[2022-06-17 08:45:07.201537] pdb_set_username: setting username useruser, was
[2022-06-17 08:45:07.203230] pdb_set_domain: setting domain ZALUPA, was
[2022-06-17 08:45:07.204871] pdb_set_nt_username: setting nt username , was
[2022-06-17 08:45:07.206514] pdb_set_full_name: setting full name nobody, was
[2022-06-17 08:45:07.208154] Home server: ZALUPA
[2022-06-17 08:45:07.209763] pdb_set_homedir: setting home dir \\ZALUPA\useruser, was
[2022-06-17 08:45:07.211384] pdb_set_dir_drive: setting dir drive , was NULL
[2022-06-17 08:45:07.213063] pdb_set_logon_script: setting logon script , was
[2022-06-17 08:45:07.214739] Home server: ZALUPA
[2022-06-17 08:45:07.216359] pdb_set_profile_path: setting profile path \\ZALUPA\useruser\profile, was
[2022-06-17 08:45:07.218009] pdb_set_workstations: setting workstations , was
[2022-06-17 08:45:07.219659] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 3
[2022-06-17 08:45:07.221292] push_conn_ctx(0) : conn_ctx_stack_ndx = 2
[2022-06-17 08:45:07.222953] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 3
[2022-06-17 08:45:07.224587] Security token: (NULL)
[2022-06-17 08:45:07.226210] UNIX token of user 0
[2022-06-17 08:45:07.227839] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.229474] account_policy_get: name: password history, val: 0
[2022-06-17 08:45:07.231104] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 2
[2022-06-17 08:45:07.232717] pdb_set_user_sid: setting user sid S-1-5-21-3939785350-4027435424-1589595352-132066
[2022-06-17 08:45:07.234432] pdb_set_user_sid_from_rid:
[2022-06-17 08:45:07.236056] setting user sid S-1-5-21-3939785350-4027435424-1589595352-132066 from rid 132066
[2022-06-17 08:45:07.237718] pdb_set_group_sid: setting group sid S-1-5-21-3939785350-4027435424-1589595352-513
[2022-06-17 08:45:07.239375] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.241016] ntlm_password_check: Checking NTLMv2 password with domain [WORKGROUP]
[2022-06-17 08:45:07.242662] sam_account_ok: Checking SMB password for user useruser
[2022-06-17 08:45:07.244362] logon_hours_ok: user useruser allowed to logon at this time (Fri Jun 17 08:45:05 2022
[2022-06-17 08:45:07.246022] )
[2022-06-17 08:45:07.247638] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
[2022-06-17 08:45:07.249279] push_conn_ctx(0) : conn_ctx_stack_ndx = 1
[2022-06-17 08:45:07.250914] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
[2022-06-17 08:45:07.252553] Security token: (NULL)
[2022-06-17 08:45:07.254266] UNIX token of user 0
[2022-06-17 08:45:07.255894] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.257532] account_policy_get: name: maximum password age, val: -1
[2022-06-17 08:45:07.259172] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.260686] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
[2022-06-17 08:45:07.262412] push_conn_ctx(0) : conn_ctx_stack_ndx = 1
[2022-06-17 08:45:07.264152] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
[2022-06-17 08:45:07.265808] Security token: (NULL)
[2022-06-17 08:45:07.267419] UNIX token of user 0
[2022-06-17 08:45:07.269040] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.270692] Finding user useruser
[2022-06-17 08:45:07.272312] Trying _Get_Pwnam(), username as lowercase is useruser
[2022-06-17 08:45:07.274045] Get_Pwnam_internals did find user [useruser]!
[2022-06-17 08:45:07.275695] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 3
[2022-06-17 08:45:07.277332] push_conn_ctx(0) : conn_ctx_stack_ndx = 2
[2022-06-17 08:45:07.278969] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 3
[2022-06-17 08:45:07.280615] Security token: (NULL)
[2022-06-17 08:45:07.282223] UNIX token of user 0
[2022-06-17 08:45:07.283892] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.285541] account_policy_get: name: minimum password age, val: 0
[2022-06-17 08:45:07.287178] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 2
[2022-06-17 08:45:07.288823] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 3
[2022-06-17 08:45:07.300917] push_conn_ctx(0) : conn_ctx_stack_ndx = 2
[2022-06-17 08:45:07.302779] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 3
[2022-06-17 08:45:07.304567] Security token: (NULL)
[2022-06-17 08:45:07.306213] UNIX token of user 0
[2022-06-17 08:45:07.307840] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.309512] account_policy_get: name: maximum password age, val: -1
[2022-06-17 08:45:07.311046] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 2
[2022-06-17 08:45:07.312548] Finding user useruser
[2022-06-17 08:45:07.314356] Trying _Get_Pwnam(), username as lowercase is useruser
[2022-06-17 08:45:07.316006] Get_Pwnam_internals did find user [useruser]!
[2022-06-17 08:45:07.317653] sys_getgrouplist: user [useruser]
[2022-06-17 08:45:07.319270] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 3
[2022-06-17 08:45:07.320892] push_conn_ctx(0) : conn_ctx_stack_ndx = 2
[2022-06-17 08:45:07.322529] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 3
[2022-06-17 08:45:07.324281] Security token: (NULL)
[2022-06-17 08:45:07.325921] UNIX token of user 0
[2022-06-17 08:45:07.327420] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.329174] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 2
[2022-06-17 08:45:07.330806] xid_to_sid: GID 65534 -> S-1-22-2-65534 fallback
[2022-06-17 08:45:07.332449] make_server_info_sam: made server info for user useruser -> useruser
[2022-06-17 08:45:07.334172] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.335824] auth_check_ntlm_password: sam_ignoredomain authentication for user [useruser] succeeded
[2022-06-17 08:45:07.337486] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
[2022-06-17 08:45:07.339128] push_conn_ctx(0) : conn_ctx_stack_ndx = 1
[2022-06-17 08:45:07.340750] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
[2022-06-17 08:45:07.342379] Security token: (NULL)
[2022-06-17 08:45:07.344199] UNIX token of user 0
[2022-06-17 08:45:07.345839] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.347485] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.349121] check_ntlm_password: PAM Account for user [useruser] succeeded
[2022-06-17 08:45:07.350765] Auth: [SMB2,(null)] user [WORKGROUP]\[useruser] at [Fri, 17 Jun 2022 08:45:05.322039 UTC] with [NTLMv2] status [NT_STATUS_OK] workstation [LINUPS] remote host [ipv4:192.168.1.10:33730] became [ZALUPA]\[useruser] [S-1-5-21-3939785350-4027435424-1589595352-132066]. local host [ipv4:192.168.1.250:445]
[2022-06-17 08:45:07.352541] log_no_json: JSON auth logs not available unless compiled with jansson
[2022-06-17 08:45:07.354327] check_ntlm_password: authentication for user [useruser] -> [useruser] -> [useruser] succeeded
[2022-06-17 08:45:07.356007] lp_load_ex: refreshing parameters
[2022-06-17 08:45:07.357650] Freeing parametrics:
[2022-06-17 08:45:07.359275] Initialising global parameters
[2022-06-17 08:45:07.360918] INFO: Current debug levels:
[2022-06-17 08:45:07.362535] all: 10
[2022-06-17 08:45:07.364246] tdb: 10
[2022-06-17 08:45:07.365862] printdrivers: 10
[2022-06-17 08:45:07.367490] lanman: 10
[2022-06-17 08:45:07.369105] smb: 10
[2022-06-17 08:45:07.370716] rpc_parse: 10
[2022-06-17 08:45:07.372329] rpc_srv: 10
[2022-06-17 08:45:07.374026] rpc_cli: 10
[2022-06-17 08:45:07.375637] passdb: 10
[2022-06-17 08:45:07.377240] sam: 10
[2022-06-17 08:45:07.378850] auth: 10
[2022-06-17 08:45:07.380459] winbind: 10
[2022-06-17 08:45:07.382071] vfs: 10
[2022-06-17 08:45:07.383744] idmap: 10
[2022-06-17 08:45:07.385354] quota: 10
[2022-06-17 08:45:07.386967] acls: 10
[2022-06-17 08:45:07.388568] locking: 10
[2022-06-17 08:45:07.390181] msdfs: 10
[2022-06-17 08:45:07.391777] dmapi: 10
[2022-06-17 08:45:07.393452] registry: 10
[2022-06-17 08:45:07.395093] scavenger: 10
[2022-06-17 08:45:07.396732] dns: 10
[2022-06-17 08:45:07.398348] ldb: 10
[2022-06-17 08:45:07.399950] tevent: 10
[2022-06-17 08:45:07.401545] auth_audit: 10
[2022-06-17 08:45:07.403208] auth_json_audit: 10
[2022-06-17 08:45:07.404839] kerberos: 10
[2022-06-17 08:45:07.406468] drs_repl: 10
[2022-06-17 08:45:07.408090] smb2: 10
[2022-06-17 08:45:07.409697] smb2_credits: 10
[2022-06-17 08:45:07.411292] dsdb_audit: 10
[2022-06-17 08:45:07.412934] dsdb_json_audit: 10
[2022-06-17 08:45:07.414575] dsdb_password_audit: 10
[2022-06-17 08:45:07.416190] dsdb_password_json_audit: 10
[2022-06-17 08:45:07.417821] dsdb_transaction_audit: 10
[2022-06-17 08:45:07.419459] dsdb_transaction_json_audit: 10
[2022-06-17 08:45:07.421093] dsdb_group_audit: 10
[2022-06-17 08:45:07.423450] dsdb_group_json_audit: 10
[2022-06-17 08:45:07.425090] Processing section "[global]"
[2022-06-17 08:45:07.426610] doing parameter netbios name = zalupa
[2022-06-17 08:45:07.428244] doing parameter interfaces = br-lan
[2022-06-17 08:45:07.429885] doing parameter server string = SASAm
[2022-06-17 08:45:07.431522] doing parameter unix charset = UTF-8
[2022-06-17 08:45:07.433216] doing parameter workgroup = WORKGROUP
[2022-06-17 08:45:07.434973] doing parameter log level = 2
[2022-06-17 08:45:07.436492] doing parameter bind interfaces only = yes
[2022-06-17 08:45:07.438121] doing parameter deadtime = 15
[2022-06-17 08:45:07.439850] doing parameter enable core files = no
[2022-06-17 08:45:07.441375] doing parameter security = user
[2022-06-17 08:45:07.443158] doing parameter debug timestamp = yes
[2022-06-17 08:45:07.444693] doing parameter invalid users = root
[2022-06-17 08:45:07.446322] doing parameter map to guest = Bad User
[2022-06-17 08:45:07.448056] doing parameter null passwords = yes
[2022-06-17 08:45:07.449577] lpcfg_do_global_parameter: WARNING: The "null passwords" option is deprecated
[2022-06-17 08:45:07.451227] doing parameter passdb backend = smbpasswd
[2022-06-17 08:45:07.452985] doing parameter socket options = IPTOS_LOWDELAY TCP_NODELAY
[2022-06-17 08:45:07.454534] doing parameter load printers = No
[2022-06-17 08:45:07.456287] doing parameter printcap name = /dev/null
[2022-06-17 08:45:07.457818] doing parameter disable spoolss = yes
[2022-06-17 08:45:07.459448] doing parameter printing = bsd
[2022-06-17 08:45:07.461068] doing parameter mdns name = mdns
[2022-06-17 08:45:07.462693] doing parameter veto files = /Thumbs.db/.DS_Store/._.DS_Store/.apdisk/
[2022-06-17 08:45:07.464496] doing parameter delete veto files = yes
[2022-06-17 08:45:07.466142] Processing section "[shr]"
[2022-06-17 08:45:07.467654] doing parameter path = /mnt/share/
[2022-06-17 08:45:07.469286] doing parameter create mask = 0666
[2022-06-17 08:45:07.470912] doing parameter directory mask = 0777
[2022-06-17 08:45:07.472632] doing parameter read only = no
[2022-06-17 08:45:07.474227] doing parameter guest ok = yes
[2022-06-17 08:45:07.475989] doing parameter vfs objects = io_uring
[2022-06-17 08:45:07.477624] pm_process() returned Yes
[2022-06-17 08:45:07.479250] lp_servicenumber: couldn't find homes
[2022-06-17 08:45:07.480773] adding IPC service
[2022-06-17 08:45:07.482406] auth3_check_password_send: Got NT session key of length 16
[2022-06-17 08:45:07.484124] auth3_check_password_send: Got LM session key of length 8
[2022-06-17 08:45:07.485768] gensec_update_send: ntlmssp[0xb516aac0]: subreq: 0xb5c2bc80
[2022-06-17 08:45:07.487415] gensec_update_send: spnego[0xb516a940]: subreq: 0xb5bf11e0
[2022-06-17 08:45:07.489057] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:07.490715] Create local NT token for useruser
[2022-06-17 08:45:07.492355] Parsing value for key [IDMAP/SID2XID/S-1-5-21-3939785350-4027435424-1589595352-132066]: value=[65533:U]
[2022-06-17 08:45:07.494097] Parsing value for key [IDMAP/SID2XID/S-1-5-21-3939785350-4027435424-1589595352-132066]: id=[65533], endptr=[:U]
[2022-06-17 08:45:07.495775] sid S-1-5-21-3939785350-4027435424-1589595352-132066 -> uid 65533
[2022-06-17 08:45:07.497520] sys_getgrouplist: user [useruser]
[2022-06-17 08:45:07.499149] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.500667] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:07.502311] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.504163] Security token: (NULL)
[2022-06-17 08:45:07.505788] UNIX token of user 0
[2022-06-17 08:45:07.507397] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.508930] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:07.510561] xid_to_sid: GID 65534 -> S-1-22-2-65534 fallback
[2022-06-17 08:45:07.512196] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.514020] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:07.515554] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.517205] Security token: (NULL)
[2022-06-17 08:45:07.518922] UNIX token of user 0
[2022-06-17 08:45:07.520433] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.522077] Failed to fetch domain sid for WORKGROUP
[2022-06-17 08:45:07.523747] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:07.525393] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.527145] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:07.528677] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.530323] Security token: (NULL)
[2022-06-17 08:45:07.531948] UNIX token of user 0
[2022-06-17 08:45:07.533621] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.535282] Could not find map for sid S-1-5-32-544
[2022-06-17 08:45:07.536919] create_builtin_administrators: Failed to create Administrators
[2022-06-17 08:45:07.538598] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:07.540333] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.541858] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:07.543655] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.545309] Security token: (NULL)
[2022-06-17 08:45:07.546925] UNIX token of user 0
[2022-06-17 08:45:07.548430] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.550064] Could not find map for sid S-1-5-32-545
[2022-06-17 08:45:07.551799] create_builtin_users: Failed to create Users
[2022-06-17 08:45:07.553379] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:07.555030] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.556671] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:07.559021] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.561127] Security token: (NULL)
[2022-06-17 08:45:07.563665] UNIX token of user 0
[2022-06-17 08:45:07.565254] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.566941] Could not find map for sid S-1-5-32-546
[2022-06-17 08:45:07.568588] create_builtin_guests: Failed to create Guests
[2022-06-17 08:45:07.570222] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:07.572948] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.574532] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:07.576194] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.577857] Security token: (NULL)
[2022-06-17 08:45:07.579598] UNIX token of user 0
[2022-06-17 08:45:07.581699] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.583775] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:07.585357] get_privileges: No privileges assigned to SID [S-1-5-21-3939785350-4027435424-1589595352-132066]
[2022-06-17 08:45:07.587035] get_privileges: No privileges assigned to SID [S-1-5-21-3939785350-4027435424-1589595352-513]
[2022-06-17 08:45:07.588712] get_privileges: No privileges assigned to SID [S-1-22-2-65534]
[2022-06-17 08:45:07.590679] get_privileges_for_sids: sid = S-1-1-0
[2022-06-17 08:45:07.592467] Privilege set: 0x0
[2022-06-17 08:45:07.594060] get_privileges: No privileges assigned to SID [S-1-5-2]
[2022-06-17 08:45:07.595578] get_privileges: No privileges assigned to SID [S-1-5-11]
[2022-06-17 08:45:07.597074] Parsing value for key [IDMAP/SID2XID/S-1-5-21-3939785350-4027435424-1589595352-132066]: value=[65533:U]
[2022-06-17 08:45:07.598722] Parsing value for key [IDMAP/SID2XID/S-1-5-21-3939785350-4027435424-1589595352-132066]: id=[65533], endptr=[:U]
[2022-06-17 08:45:07.600510] wbcSidsToUnixIds returned WBC_ERR_WINBIND_NOT_AVAILABLE
[2022-06-17 08:45:07.602151] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.603744] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:07.605496] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.607139] Security token: (NULL)
[2022-06-17 08:45:07.608746] UNIX token of user 0
[2022-06-17 08:45:07.610259] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.612011] lookup_global_sam_rid: looking up RID 513.
[2022-06-17 08:45:07.613596] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
[2022-06-17 08:45:07.615253] push_conn_ctx(0) : conn_ctx_stack_ndx = 1
[2022-06-17 08:45:07.616995] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
[2022-06-17 08:45:07.618533] Security token: (NULL)
[2022-06-17 08:45:07.620152] UNIX token of user 0
[2022-06-17 08:45:07.621781] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.623580] smbpasswd_getsampwrid: search by sid: S-1-5-21-3939785350-4027435424-1589595352-513
[2022-06-17 08:45:07.625138] startsmbfilepwent_internal: opening file /etc/samba/smbpasswd
[2022-06-17 08:45:07.626866] getsmbfilepwent: skipping comment or blank line
[2022-06-17 08:45:07.628414] getsmbfilepwent: LM password for user nobody invalidated
[2022-06-17 08:45:07.630060] getsmbfilepwent: returning passwd entry for user nobody, uid 0
[2022-06-17 08:45:07.631813] getsmbfilepwent: LM password for user useruser invalidated
[2022-06-17 08:45:07.633386] getsmbfilepwent: returning passwd entry for user useruser, uid 65533
[2022-06-17 08:45:07.635033] getsmbfilepwent: end of file reached.
[2022-06-17 08:45:07.636668] endsmbfilepwent_internal: closed password file.
[2022-06-17 08:45:07.643050] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.644827] Can't find a unix id for an unmapped group
[2022-06-17 08:45:07.653473] SID S-1-5-21-3939785350-4027435424-1589595352-513 belongs to our domain, but there is no corresponding object in the database.
[2022-06-17 08:45:07.655311] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:07.657000] LEGACY: mapping failed for sid S-1-5-21-3939785350-4027435424-1589595352-513
[2022-06-17 08:45:07.658559] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.660203] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:07.661980] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.663585] Security token: (NULL)
[2022-06-17 08:45:07.665231] UNIX token of user 0
[2022-06-17 08:45:07.666967] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.668503] lookup_global_sam_rid: looking up RID 513.
[2022-06-17 08:45:07.670236] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
[2022-06-17 08:45:07.671842] push_conn_ctx(0) : conn_ctx_stack_ndx = 1
[2022-06-17 08:45:07.673530] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
[2022-06-17 08:45:07.675082] Security token: (NULL)
[2022-06-17 08:45:07.676829] UNIX token of user 0
[2022-06-17 08:45:07.678336] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.680086] smbpasswd_getsampwrid: search by sid: S-1-5-21-3939785350-4027435424-1589595352-513
[2022-06-17 08:45:07.681731] startsmbfilepwent_internal: opening file /etc/samba/smbpasswd
[2022-06-17 08:45:07.683314] getsmbfilepwent: skipping comment or blank line
[2022-06-17 08:45:07.684954] getsmbfilepwent: LM password for user nobody invalidated
[2022-06-17 08:45:07.686627] getsmbfilepwent: returning passwd entry for user nobody, uid 0
[2022-06-17 08:45:07.688278] getsmbfilepwent: LM password for user useruser invalidated
[2022-06-17 08:45:07.690030] getsmbfilepwent: returning passwd entry for user useruser, uid 65533
[2022-06-17 08:45:07.691714] getsmbfilepwent: end of file reached.
[2022-06-17 08:45:07.693407] endsmbfilepwent_internal: closed password file.
[2022-06-17 08:45:07.695070] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.696725] Can't find a unix id for an unmapped group
[2022-06-17 08:45:07.698352] SID S-1-5-21-3939785350-4027435424-1589595352-513 belongs to our domain, but there is no corresponding object in the database.
[2022-06-17 08:45:07.700039] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:07.701685] LEGACY: mapping failed for sid S-1-5-21-3939785350-4027435424-1589595352-513
[2022-06-17 08:45:07.703509] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.705045] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:07.706684] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.708439] Security token: (NULL)
[2022-06-17 08:45:07.709943] UNIX token of user 0
[2022-06-17 08:45:07.711425] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.713203] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:07.714747] LEGACY: mapping failed for sid S-1-1-0
[2022-06-17 08:45:07.716386] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.718008] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:07.719638] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.721293] Security token: (NULL)
[2022-06-17 08:45:07.723064] UNIX token of user 0
[2022-06-17 08:45:07.724598] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.726340] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:07.727968] LEGACY: mapping failed for sid S-1-1-0
[2022-06-17 08:45:07.729491] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.731113] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:07.732736] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.734425] Security token: (NULL)
[2022-06-17 08:45:07.736051] UNIX token of user 0
[2022-06-17 08:45:07.737789] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.739419] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:07.740937] LEGACY: mapping failed for sid S-1-5-2
[2022-06-17 08:45:07.742584] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.744283] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:07.745920] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.747577] Security token: (NULL)
[2022-06-17 08:45:07.749222] UNIX token of user 0
[2022-06-17 08:45:07.750838] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.752574] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:07.754168] LEGACY: mapping failed for sid S-1-5-2
[2022-06-17 08:45:07.755802] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.757434] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:07.759162] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.760682] Security token: (NULL)
[2022-06-17 08:45:07.762310] UNIX token of user 0
[2022-06-17 08:45:07.764020] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.765661] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:07.767301] LEGACY: mapping failed for sid S-1-5-11
[2022-06-17 08:45:07.768927] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.770548] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:07.772187] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.774018] Security token: (NULL)
[2022-06-17 08:45:07.775650] UNIX token of user 0
[2022-06-17 08:45:07.777166] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.778665] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:07.780414] LEGACY: mapping failed for sid S-1-5-11
[2022-06-17 08:45:07.781938] Could not convert SID S-1-5-21-3939785350-4027435424-1589595352-513 to gid, ignoring it
[2022-06-17 08:45:07.783756] Could not convert SID S-1-1-0 to gid, ignoring it
[2022-06-17 08:45:07.785303] Could not convert SID S-1-5-2 to gid, ignoring it
[2022-06-17 08:45:07.786951] Could not convert SID S-1-5-11 to gid, ignoring it
[2022-06-17 08:45:07.788596] Security token SIDs (7):
[2022-06-17 08:45:07.790212] SID[ 0]: S-1-5-21-3939785350-4027435424-1589595352-132066
[2022-06-17 08:45:07.791965] SID[ 1]: S-1-5-21-3939785350-4027435424-1589595352-513
[2022-06-17 08:45:07.793650] SID[ 2]: S-1-22-2-65534
[2022-06-17 08:45:07.795167] SID[ 3]: S-1-1-0
[2022-06-17 08:45:07.796783] SID[ 4]: S-1-5-2
[2022-06-17 08:45:07.798409] SID[ 5]: S-1-5-11
[2022-06-17 08:45:07.800131] SID[ 6]: S-1-22-1-65533
[2022-06-17 08:45:07.801627] Privileges (0x 0):
[2022-06-17 08:45:07.803298] Rights (0x 0):
[2022-06-17 08:45:07.805052] UNIX token of user 65533
[2022-06-17 08:45:07.806569] Primary group is 65534 and contains 1 supplementary groups
[2022-06-17 08:45:07.808219] Group[ 0]: 65534
[2022-06-17 08:45:07.809701] ntlmssp_server_auth: Using unmodified nt session key.
[2022-06-17 08:45:07.811452] NTLMSSP Sign/Seal - Initialising with flags:
[2022-06-17 08:45:07.813022] Got NTLMSSP neg_flags=0x62088215
[2022-06-17 08:45:07.814675] NTLMSSP_NEGOTIATE_UNICODE
[2022-06-17 08:45:07.816294] NTLMSSP_REQUEST_TARGET
[2022-06-17 08:45:07.817902] NTLMSSP_NEGOTIATE_SIGN
[2022-06-17 08:45:07.819633] NTLMSSP_NEGOTIATE_NTLM
[2022-06-17 08:45:07.821147] NTLMSSP_NEGOTIATE_ALWAYS_SIGN
[2022-06-17 08:45:07.822774] NTLMSSP_NEGOTIATE_EXTENDED_SESSIONSECURITY
[2022-06-17 08:45:07.824499] NTLMSSP_NEGOTIATE_VERSION
[2022-06-17 08:45:07.826126] NTLMSSP_NEGOTIATE_128
[2022-06-17 08:45:07.827760] NTLMSSP_NEGOTIATE_KEY_EXCH
[2022-06-17 08:45:07.829370] dump_arc4_state: NTLMSSP send seal arc4 state:
[2022-06-17 08:45:07.830988]
[2022-06-17 08:45:07.832611] dump_arc4_state: NTLMSSP recv seal arc4 state:
[2022-06-17 08:45:07.834355]
[2022-06-17 08:45:07.836087] gensec_update_done: ntlmssp[0xb516aac0]: NT_STATUS_OK tevent_req[0xb5c2bc80/../../auth/ntlmssp/ntlmssp.c:181]: state[2] error[0 (0x0)] state[struct gensec_ntlmssp_update_state (0xb5c2bd60)] timer[0] finish[../../auth/ntlmssp/ntlmssp.c:244]
[2022-06-17 08:45:07.837722] ntlmssp_check_packet: NTLMSSP signature OK !
[2022-06-17 08:45:07.839457] NTLMSSP Sign/Seal - Initialising with flags:
[2022-06-17 08:45:07.840985] Got NTLMSSP neg_flags=0x62088215
[2022-06-17 08:45:07.842634] NTLMSSP_NEGOTIATE_UNICODE
[2022-06-17 08:45:07.844325] NTLMSSP_REQUEST_TARGET
[2022-06-17 08:45:07.845975] NTLMSSP_NEGOTIATE_SIGN
[2022-06-17 08:45:07.847588] NTLMSSP_NEGOTIATE_NTLM
[2022-06-17 08:45:07.849218] NTLMSSP_NEGOTIATE_ALWAYS_SIGN
[2022-06-17 08:45:07.850958] NTLMSSP_NEGOTIATE_EXTENDED_SESSIONSECURITY
[2022-06-17 08:45:07.852488] NTLMSSP_NEGOTIATE_VERSION
[2022-06-17 08:45:07.854177] NTLMSSP_NEGOTIATE_128
[2022-06-17 08:45:07.855784] NTLMSSP_NEGOTIATE_KEY_EXCH
[2022-06-17 08:45:07.857551] dump_arc4_state: NTLMSSP send seal arc4 state:
[2022-06-17 08:45:07.859088]
[2022-06-17 08:45:07.860701] dump_arc4_state: NTLMSSP recv seal arc4 state:
[2022-06-17 08:45:07.862333]
[2022-06-17 08:45:07.864171] gensec_update_done: spnego[0xb516a940]: NT_STATUS_OK tevent_req[0xb5bf11e0/../../auth/gensec/spnego.c:1632]: state[2] error[0 (0x0)] state[struct gensec_spnego_update_state (0xb5bf12c0)] timer[0] finish[../../auth/gensec/spnego.c:2116]
[2022-06-17 08:45:07.865808] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.867451] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:07.869090] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.870748] Security token: (NULL)
[2022-06-17 08:45:07.872477] UNIX token of user 0
[2022-06-17 08:45:07.874141] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.875671] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:07.877324] Create local NT token for useruser
[2022-06-17 08:45:07.878958] Parsing value for key [IDMAP/SID2XID/S-1-5-21-3939785350-4027435424-1589595352-132066]: value=[65533:U]
[2022-06-17 08:45:07.880487] Parsing value for key [IDMAP/SID2XID/S-1-5-21-3939785350-4027435424-1589595352-132066]: id=[65533], endptr=[:U]
[2022-06-17 08:45:07.882205] sid S-1-5-21-3939785350-4027435424-1589595352-132066 -> uid 65533
[2022-06-17 08:45:07.883789] sys_getgrouplist: user [useruser]
[2022-06-17 08:45:07.885431] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.887074] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:07.888702] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.890333] Security token: (NULL)
[2022-06-17 08:45:07.891943] UNIX token of user 0
[2022-06-17 08:45:07.893639] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.895292] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:07.897030] xid_to_sid: GID 65534 -> S-1-22-2-65534 fallback
[2022-06-17 08:45:07.898549] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.900179] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:07.901808] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.903589] Security token: (NULL)
[2022-06-17 08:45:07.905105] UNIX token of user 0
[2022-06-17 08:45:07.906737] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.908484] Failed to fetch domain sid for WORKGROUP
[2022-06-17 08:45:07.909998] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:07.911490] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.913165] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:07.914912] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.916455] Security token: (NULL)
[2022-06-17 08:45:07.918078] UNIX token of user 0
[2022-06-17 08:45:07.919703] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.921339] Could not find map for sid S-1-5-32-544
[2022-06-17 08:45:07.923027] create_builtin_administrators: Failed to create Administrators
[2022-06-17 08:45:07.924693] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:07.926337] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.927949] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:07.929694] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.931224] Security token: (NULL)
[2022-06-17 08:45:07.932841] UNIX token of user 0
[2022-06-17 08:45:07.934504] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.936145] Could not find map for sid S-1-5-32-545
[2022-06-17 08:45:07.937879] create_builtin_users: Failed to create Users
[2022-06-17 08:45:07.939513] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:07.941136] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.942666] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:07.944476] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.946009] Security token: (NULL)
[2022-06-17 08:45:07.947628] UNIX token of user 0
[2022-06-17 08:45:07.949255] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.950904] Could not find map for sid S-1-5-32-546
[2022-06-17 08:45:07.952544] create_builtin_guests: Failed to create Guests
[2022-06-17 08:45:07.954241] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:07.955879] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.957513] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:07.959146] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.960776] Security token: (NULL)
[2022-06-17 08:45:07.965598] UNIX token of user 0
[2022-06-17 08:45:07.973541] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:07.975367] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:07.977045] get_privileges: No privileges assigned to SID [S-1-5-21-3939785350-4027435424-1589595352-132066]
[2022-06-17 08:45:07.978731] get_privileges: No privileges assigned to SID [S-1-5-21-3939785350-4027435424-1589595352-513]
[2022-06-17 08:45:07.980500] get_privileges: No privileges assigned to SID [S-1-22-2-65534]
[2022-06-17 08:45:07.984305] get_privileges_for_sids: sid = S-1-1-0
[2022-06-17 08:45:07.986079] Privilege set: 0x0
[2022-06-17 08:45:07.987794] get_privileges: No privileges assigned to SID [S-1-5-2]
[2022-06-17 08:45:07.989590] get_privileges: No privileges assigned to SID [S-1-5-11]
[2022-06-17 08:45:07.991148] Parsing value for key [IDMAP/SID2XID/S-1-5-21-3939785350-4027435424-1589595352-132066]: value=[65533:U]
[2022-06-17 08:45:07.992984] Parsing value for key [IDMAP/SID2XID/S-1-5-21-3939785350-4027435424-1589595352-132066]: id=[65533], endptr=[:U]
[2022-06-17 08:45:07.994575] wbcSidsToUnixIds returned WBC_ERR_WINBIND_NOT_AVAILABLE
[2022-06-17 08:45:07.996228] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:07.997866] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:07.999605] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:08.001133] Security token: (NULL)
[2022-06-17 08:45:08.002754] UNIX token of user 0
[2022-06-17 08:45:08.004442] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:08.006089] lookup_global_sam_rid: looking up RID 513.
[2022-06-17 08:45:08.007814] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
[2022-06-17 08:45:08.009327] push_conn_ctx(0) : conn_ctx_stack_ndx = 1
[2022-06-17 08:45:08.011069] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
[2022-06-17 08:45:08.012597] Security token: (NULL)
[2022-06-17 08:45:08.014299] UNIX token of user 0
[2022-06-17 08:45:08.016063] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:08.017609] smbpasswd_getsampwrid: search by sid: S-1-5-21-3939785350-4027435424-1589595352-513
[2022-06-17 08:45:08.019368] startsmbfilepwent_internal: opening file /etc/samba/smbpasswd
[2022-06-17 08:45:08.021005] getsmbfilepwent: skipping comment or blank line
[2022-06-17 08:45:08.022525] getsmbfilepwent: LM password for user nobody invalidated
[2022-06-17 08:45:08.024340] getsmbfilepwent: returning passwd entry for user nobody, uid 0
[2022-06-17 08:45:08.025884] getsmbfilepwent: LM password for user useruser invalidated
[2022-06-17 08:45:08.027526] getsmbfilepwent: returning passwd entry for user useruser, uid 65533
[2022-06-17 08:45:08.029184] getsmbfilepwent: end of file reached.
[2022-06-17 08:45:08.030924] endsmbfilepwent_internal: closed password file.
[2022-06-17 08:45:08.032455] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:08.034269] Can't find a unix id for an unmapped group
[2022-06-17 08:45:08.035793] SID S-1-5-21-3939785350-4027435424-1589595352-513 belongs to our domain, but there is no corresponding object in the database.
[2022-06-17 08:45:08.037483] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:08.039225] LEGACY: mapping failed for sid S-1-5-21-3939785350-4027435424-1589595352-513
[2022-06-17 08:45:08.040771] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:08.042405] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:08.044137] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:08.045897] Security token: (NULL)
[2022-06-17 08:45:08.047501] UNIX token of user 0
[2022-06-17 08:45:08.049005] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:08.050644] lookup_global_sam_rid: looking up RID 513.
[2022-06-17 08:45:08.052277] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
[2022-06-17 08:45:08.053978] push_conn_ctx(0) : conn_ctx_stack_ndx = 1
[2022-06-17 08:45:08.055628] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
[2022-06-17 08:45:08.057276] Security token: (NULL)
[2022-06-17 08:45:08.058888] UNIX token of user 0
[2022-06-17 08:45:08.060490] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:08.062114] smbpasswd_getsampwrid: search by sid: S-1-5-21-3939785350-4027435424-1589595352-513
[2022-06-17 08:45:08.063809] startsmbfilepwent_internal: opening file /etc/samba/smbpasswd
[2022-06-17 08:45:08.065581] getsmbfilepwent: skipping comment or blank line
[2022-06-17 08:45:08.067109] getsmbfilepwent: LM password for user nobody invalidated
[2022-06-17 08:45:08.068744] getsmbfilepwent: returning passwd entry for user nobody, uid 0
[2022-06-17 08:45:08.070575] getsmbfilepwent: LM password for user useruser invalidated
[2022-06-17 08:45:08.072121] getsmbfilepwent: returning passwd entry for user useruser, uid 65533
[2022-06-17 08:45:08.073811] getsmbfilepwent: end of file reached.
[2022-06-17 08:45:08.075561] endsmbfilepwent_internal: closed password file.
[2022-06-17 08:45:08.077093] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:08.078833] Can't find a unix id for an unmapped group
[2022-06-17 08:45:08.080449] SID S-1-5-21-3939785350-4027435424-1589595352-513 belongs to our domain, but there is no corresponding object in the database.
[2022-06-17 08:45:08.082115] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:08.083701] LEGACY: mapping failed for sid S-1-5-21-3939785350-4027435424-1589595352-513
[2022-06-17 08:45:08.085371] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:08.086887] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:08.088382] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:08.089883] Security token: (NULL)
[2022-06-17 08:45:08.091350] UNIX token of user 0
[2022-06-17 08:45:08.092819] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:08.094388] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:08.095876] LEGACY: mapping failed for sid S-1-1-0
[2022-06-17 08:45:08.097716] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:08.099261] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:08.101017] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:08.102652] Security token: (NULL)
[2022-06-17 08:45:08.104228] UNIX token of user 0
[2022-06-17 08:45:08.105956] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:08.107598] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:08.109130] LEGACY: mapping failed for sid S-1-1-0
[2022-06-17 08:45:08.110772] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:08.112411] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:08.114216] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:08.115757] Security token: (NULL)
[2022-06-17 08:45:08.117375] UNIX token of user 0
[2022-06-17 08:45:08.118993] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:08.120638] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:08.122388] LEGACY: mapping failed for sid S-1-5-2
[2022-06-17 08:45:08.124004] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:08.125756] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:08.127287] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:08.128923] Security token: (NULL)
[2022-06-17 08:45:08.130541] UNIX token of user 0
[2022-06-17 08:45:08.132146] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:08.133713] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:08.135494] LEGACY: mapping failed for sid S-1-5-2
[2022-06-17 08:45:08.137039] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:08.138676] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:08.140403] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:08.141934] Security token: (NULL)
[2022-06-17 08:45:08.143606] UNIX token of user 0
[2022-06-17 08:45:08.145355] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:08.147007] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:08.148534] LEGACY: mapping failed for sid S-1-5-11
[2022-06-17 08:45:08.150170] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:08.151921] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:08.153613] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:08.155150] Security token: (NULL)
[2022-06-17 08:45:08.156774] UNIX token of user 0
[2022-06-17 08:45:08.158397] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:08.160041] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:08.161545] LEGACY: mapping failed for sid S-1-5-11
[2022-06-17 08:45:08.163239] Could not convert SID S-1-5-21-3939785350-4027435424-1589595352-513 to gid, ignoring it
[2022-06-17 08:45:08.165019] Could not convert SID S-1-1-0 to gid, ignoring it
[2022-06-17 08:45:08.166560] Could not convert SID S-1-5-2 to gid, ignoring it
[2022-06-17 08:45:08.168204] Could not convert SID S-1-5-11 to gid, ignoring it
[2022-06-17 08:45:08.169861] Security token SIDs (7):
[2022-06-17 08:45:08.171497] SID[ 0]: S-1-5-21-3939785350-4027435424-1589595352-132066
[2022-06-17 08:45:08.173188] SID[ 1]: S-1-5-21-3939785350-4027435424-1589595352-513
[2022-06-17 08:45:08.174949] SID[ 2]: S-1-22-2-65534
[2022-06-17 08:45:08.176457] SID[ 3]: S-1-1-0
[2022-06-17 08:45:08.178059] SID[ 4]: S-1-5-2
[2022-06-17 08:45:08.179773] SID[ 5]: S-1-5-11
[2022-06-17 08:45:08.181280] SID[ 6]: S-1-22-1-65533
[2022-06-17 08:45:08.183039] Privileges (0x 0):
[2022-06-17 08:45:08.184573] Rights (0x 0):
[2022-06-17 08:45:08.186212] UNIX token of user 65533
[2022-06-17 08:45:08.187936] Primary group is 65534 and contains 1 supplementary groups
[2022-06-17 08:45:08.189450] Group[ 0]: 65534
[2022-06-17 08:45:08.191061] Successful AuthZ: [SMB2,NTLMSSP] user [ZALUPA]\[useruser] [S-1-5-21-3939785350-4027435424-1589595352-132066] at [Fri, 17 Jun 2022 08:45:05.840234 UTC] Remote host [ipv4:192.168.1.10:33730] local host [ipv4:192.168.1.250:445]
[2022-06-17 08:45:08.192803] lp_servicenumber: couldn't find useruser
[2022-06-17 08:45:08.194738] Finding user useruser
[2022-06-17 08:45:08.196264] Trying _Get_Pwnam(), username as lowercase is useruser
[2022-06-17 08:45:08.197782] Get_Pwnam_internals did find user [useruser]!
[2022-06-17 08:45:08.199273] Adding homes service for user 'useruser' using home directory: '/var'
[2022-06-17 08:45:08.200775] lp_servicenumber: couldn't find homes
[2022-06-17 08:45:08.202260] INFO: Current debug levels:
[2022-06-17 08:45:08.203775] all: 10
[2022-06-17 08:45:08.205258] tdb: 10
[2022-06-17 08:45:08.206730] printdrivers: 10
[2022-06-17 08:45:08.208204] lanman: 10
[2022-06-17 08:45:08.209878] smb: 10
[2022-06-17 08:45:08.211366] rpc_parse: 10
[2022-06-17 08:45:08.212840] rpc_srv: 10
[2022-06-17 08:45:08.214367] rpc_cli: 10
[2022-06-17 08:45:08.215851] passdb: 10
[2022-06-17 08:45:08.217345] sam: 10
[2022-06-17 08:45:08.218825] auth: 10
[2022-06-17 08:45:08.220295] winbind: 10
[2022-06-17 08:45:08.221768] vfs: 10
[2022-06-17 08:45:08.223278] idmap: 10
[2022-06-17 08:45:08.224981] quota: 10
[2022-06-17 08:45:08.226480] acls: 10
[2022-06-17 08:45:08.227960] locking: 10
[2022-06-17 08:45:08.229436] msdfs: 10
[2022-06-17 08:45:08.230893] dmapi: 10
[2022-06-17 08:45:08.232355] registry: 10
[2022-06-17 08:45:08.233907] scavenger: 10
[2022-06-17 08:45:08.235379] dns: 10
[2022-06-17 08:45:08.236851] ldb: 10
[2022-06-17 08:45:08.238324] tevent: 10
[2022-06-17 08:45:08.239979] auth_audit: 10
[2022-06-17 08:45:08.241473] auth_json_audit: 10
[2022-06-17 08:45:08.242983] kerberos: 10
[2022-06-17 08:45:08.244477] drs_repl: 10
[2022-06-17 08:45:08.245955] smb2: 10
[2022-06-17 08:45:08.247421] smb2_credits: 10
[2022-06-17 08:45:08.248893] dsdb_audit: 10
[2022-06-17 08:45:08.251056] dsdb_json_audit: 10
[2022-06-17 08:45:08.252606] dsdb_password_audit: 10
[2022-06-17 08:45:08.254310] dsdb_password_json_audit: 10
[2022-06-17 08:45:08.256053] dsdb_transaction_audit: 10
[2022-06-17 08:45:08.257574] dsdb_transaction_json_audit: 10
[2022-06-17 08:45:08.259190] dsdb_group_audit: 10
[2022-06-17 08:45:08.260920] dsdb_group_json_audit: 10
[2022-06-17 08:45:08.262435] lp_file_list_changed()
[2022-06-17 08:45:08.264128] file /etc/samba/smb.conf -> /etc/samba/smb.conf last mod_time: Fri Jun 17 08:38:04 2022
[2022-06-17 08:45:08.265901]
[2022-06-17 08:45:08.267501] dbwrap_lock_order_lock: check lock order 1 for /var/lock/smbXsrv_session_global.tdb
[2022-06-17 08:45:08.269041] lock order: 1:/var/lock/smbXsrv_session_global.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:45:08.270544] db_tdb_log_key: Locking key 6F1A4B46
[2022-06-17 08:45:08.272034] db_tdb_fetch_locked_internal: Allocated locked data 0xb5ef4cc0
[2022-06-17 08:45:08.273590] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:45:08.275105] smbXsrv_session_global_store: key '6F1A4B46' stored
[2022-06-17 08:45:08.276604] &global_blob: struct smbXsrv_session_globalB
[2022-06-17 08:45:08.278098] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:08.279596] seqnum : 0x00000005 (5)
[2022-06-17 08:45:08.281083] info : union smbXsrv_session_globalU(case 0)
[2022-06-17 08:45:08.282575] info0 : *
[2022-06-17 08:45:08.284480] info0: struct smbXsrv_session_global0
[2022-06-17 08:45:08.286146] db_rec : *
[2022-06-17 08:45:08.287912] session_global_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:08.289560] session_wire_id : 0x000000006f1a4b46 (1863994182)
[2022-06-17 08:45:08.294248] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:08.303732] expiration_time : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:08.305434] auth_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:08.307140] auth_session_info_seqnum : 0x00000001 (1)
[2022-06-17 08:45:08.308934] auth_session_info : *
[2022-06-17 08:45:08.310484] auth_session_info: struct auth_session_info
[2022-06-17 08:45:08.312240] security_token : *
[2022-06-17 08:45:08.315048] security_token: struct security_token
[2022-06-17 08:45:08.316697] num_sids : 0x00000007 (7)
[2022-06-17 08:45:08.318389] sids: ARRAY(7)
[2022-06-17 08:45:08.320132] sids : S-1-5-21-3939785350-4027435424-1589595352-132066
[2022-06-17 08:45:08.321815] sids : S-1-5-21-3939785350-4027435424-1589595352-513
[2022-06-17 08:45:08.323547] sids : S-1-22-2-65534
[2022-06-17 08:45:08.325104] sids : S-1-1-0
[2022-06-17 08:45:08.326762] sids : S-1-5-2
[2022-06-17 08:45:08.328512] sids : S-1-5-11
[2022-06-17 08:45:08.330139] sids : S-1-22-1-65533
[2022-06-17 08:45:08.331674] privilege_mask : 0x0000000000000000 (0)
[2022-06-17 08:45:08.333396] 0: SEC_PRIV_MACHINE_ACCOUNT_BIT
[2022-06-17 08:45:08.335065] 0: SEC_PRIV_PRINT_OPERATOR_BIT
[2022-06-17 08:45:08.336838] 0: SEC_PRIV_ADD_USERS_BIT
[2022-06-17 08:45:08.338380] 0: SEC_PRIV_DISK_OPERATOR_BIT
[2022-06-17 08:45:08.340043] 0: SEC_PRIV_REMOTE_SHUTDOWN_BIT
[2022-06-17 08:45:08.341681] 0: SEC_PRIV_BACKUP_BIT
[2022-06-17 08:45:08.343378] 0: SEC_PRIV_RESTORE_BIT
[2022-06-17 08:45:08.345052] 0: SEC_PRIV_TAKE_OWNERSHIP_BIT
[2022-06-17 08:45:08.346720] 0: SEC_PRIV_INCREASE_QUOTA_BIT
[2022-06-17 08:45:08.348464] 0: SEC_PRIV_SECURITY_BIT
[2022-06-17 08:45:08.349991] 0: SEC_PRIV_LOAD_DRIVER_BIT
[2022-06-17 08:45:08.351641] 0: SEC_PRIV_SYSTEM_PROFILE_BIT
[2022-06-17 08:45:08.353440] 0: SEC_PRIV_SYSTEMTIME_BIT
[2022-06-17 08:45:08.354989] 0: SEC_PRIV_PROFILE_SINGLE_PROCESS_BIT
[2022-06-17 08:45:08.356645] 0: SEC_PRIV_INCREASE_BASE_PRIORITY_BIT
[2022-06-17 08:45:08.358304] 0: SEC_PRIV_CREATE_PAGEFILE_BIT
[2022-06-17 08:45:08.359965] 0: SEC_PRIV_SHUTDOWN_BIT
[2022-06-17 08:45:08.361622] 0: SEC_PRIV_DEBUG_BIT
[2022-06-17 08:45:08.363309] 0: SEC_PRIV_SYSTEM_ENVIRONMENT_BIT
[2022-06-17 08:45:08.364964] 0: SEC_PRIV_CHANGE_NOTIFY_BIT
[2022-06-17 08:45:08.366620] 0: SEC_PRIV_UNDOCK_BIT
[2022-06-17 08:45:08.368265] 0: SEC_PRIV_ENABLE_DELEGATION_BIT
[2022-06-17 08:45:08.369931] 0: SEC_PRIV_MANAGE_VOLUME_BIT
[2022-06-17 08:45:08.371585] 0: SEC_PRIV_IMPERSONATE_BIT
[2022-06-17 08:45:08.373322] 0: SEC_PRIV_CREATE_GLOBAL_BIT
[2022-06-17 08:45:08.374992] rights_mask : 0x00000000 (0)
[2022-06-17 08:45:08.376757] 0: LSA_POLICY_MODE_INTERACTIVE
[2022-06-17 08:45:08.378404] 0: LSA_POLICY_MODE_NETWORK
[2022-06-17 08:45:08.379945] 0: LSA_POLICY_MODE_BATCH
[2022-06-17 08:45:08.381583] 0: LSA_POLICY_MODE_SERVICE
[2022-06-17 08:45:08.383344] 0: LSA_POLICY_MODE_PROXY
[2022-06-17 08:45:08.385055] 0: LSA_POLICY_MODE_DENY_INTERACTIVE
[2022-06-17 08:45:08.386719] 0: LSA_POLICY_MODE_DENY_NETWORK
[2022-06-17 08:45:08.388382] 0: LSA_POLICY_MODE_DENY_BATCH
[2022-06-17 08:45:08.390022] 0: LSA_POLICY_MODE_DENY_SERVICE
[2022-06-17 08:45:08.391667] 0: LSA_POLICY_MODE_REMOTE_INTERACTIVE
[2022-06-17 08:45:08.393364] 0: LSA_POLICY_MODE_DENY_REMOTE_INTERACTIVE
[2022-06-17 08:45:08.395154] 0x00: LSA_POLICY_MODE_ALL (0)
[2022-06-17 08:45:08.396703] 0x00: LSA_POLICY_MODE_ALL_NT4 (0)
[2022-06-17 08:45:08.398462] unix_token : *
[2022-06-17 08:45:08.400087] unix_token: struct security_unix_token
[2022-06-17 08:45:08.401621] uid : 0x000000000000fffd (65533)
[2022-06-17 08:45:08.403310] gid : 0x000000000000fffe (65534)
[2022-06-17 08:45:08.404976] ngroups : 0x00000001 (1)
[2022-06-17 08:45:08.406651] groups: ARRAY(1)
[2022-06-17 08:45:08.408416] groups : 0x000000000000fffe (65534)
[2022-06-17 08:45:08.409971] info : *
[2022-06-17 08:45:08.411472] info: struct auth_user_info
[2022-06-17 08:45:08.413016] account_name : *
[2022-06-17 08:45:08.414539] account_name : 'useruser'
[2022-06-17 08:45:08.416043] user_principal_name : NULL
[2022-06-17 08:45:08.417546] user_principal_constructed: 0x00 (0)
[2022-06-17 08:45:08.419049] domain_name : *
[2022-06-17 08:45:08.420541] domain_name : 'ZALUPA'
[2022-06-17 08:45:08.422047] dns_domain_name : NULL
[2022-06-17 08:45:08.423591] full_name : *
[2022-06-17 08:45:08.425300] full_name : 'nobody'
[2022-06-17 08:45:08.426823] logon_script : *
[2022-06-17 08:45:08.428318] logon_script : ''
[2022-06-17 08:45:08.429826] profile_path : *
[2022-06-17 08:45:08.431638] profile_path : '\\ZALUPA\useruser\profile'
[2022-06-17 08:45:08.433366] home_directory : *
[2022-06-17 08:45:08.435021] home_directory : '\\ZALUPA\useruser'
[2022-06-17 08:45:08.436675] home_drive : *
[2022-06-17 08:45:08.438332] home_drive : ''
[2022-06-17 08:45:08.440083] logon_server : *
[2022-06-17 08:45:08.441622] logon_server : 'ZALUPA'
[2022-06-17 08:45:08.443327] last_logon : NTTIME(0)
[2022-06-17 08:45:08.444851] last_logoff : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:08.446539] acct_expiry : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:08.448199] last_password_change : Thu Jun 16 22:30:51 2022 UTC
[2022-06-17 08:45:08.449851] allow_password_change : Thu Jun 16 22:30:51 2022 UTC
[2022-06-17 08:45:08.451509] force_password_change : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:08.453327] logon_count : 0x0000 (0)
[2022-06-17 08:45:08.454989] bad_password_count : 0x0000 (0)
[2022-06-17 08:45:08.456535] acct_flags : 0x00000010 (16)
[2022-06-17 08:45:08.458194] authenticated : 0x01 (1)
[2022-06-17 08:45:08.459841] unix_info : *
[2022-06-17 08:45:08.461475] unix_info: struct auth_user_info_unix
[2022-06-17 08:45:08.463417] unix_name : *
[2022-06-17 08:45:08.465013] unix_name : 'useruser'
[2022-06-17 08:45:08.466699] sanitized_username : *
[2022-06-17 08:45:08.468480] sanitized_username : 'useruser'
[2022-06-17 08:45:08.470128] torture : NULL
[2022-06-17 08:45:08.471660] credentials : NULL
[2022-06-17 08:45:08.473452] unique_session_token : 948521e3-7864-4f36-8058-4ed4b9d327d1
[2022-06-17 08:45:08.475009] connection_dialect : 0x0311 (785)
[2022-06-17 08:45:08.476757] signing_flags : 0x04 (4)
[2022-06-17 08:45:08.478290] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:08.479940] 0: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:08.481594] 1: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:08.483289] encryption_flags : 0x08 (8)
[2022-06-17 08:45:08.485059] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:08.486591] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:08.488232] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:08.489870] 1: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:08.491524] signing_key : *
[2022-06-17 08:45:08.493225] encryption_key : *
[2022-06-17 08:45:08.494875] decryption_key : *
[2022-06-17 08:45:08.496516] num_channels : 0x00000001 (1)
[2022-06-17 08:45:08.498152] channels: ARRAY(1)
[2022-06-17 08:45:08.500565] channels: struct smbXsrv_channel_global0
[2022-06-17 08:45:08.510223] server_id: struct server_id
[2022-06-17 08:45:08.512265] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:08.514161] task_id : 0x00000000 (0)
[2022-06-17 08:45:08.515865] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:08.517539] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:08.519371] channel_id : 0x0000000000000000 (0)
[2022-06-17 08:45:08.521086] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:08.522762] local_address : 'ipv4:192.168.1.250:445'
[2022-06-17 08:45:08.532956] remote_address : 'ipv4:192.168.1.10:33730'
[2022-06-17 08:45:08.534811] remote_name : '192.168.1.10'
[2022-06-17 08:45:08.536540] signing_key : *
[2022-06-17 08:45:08.538221] auth_session_info_seqnum : 0x00000001 (1)
[2022-06-17 08:45:08.539874] connection : *
[2022-06-17 08:45:08.541514] encryption_cipher : 0x0002 (2)
[2022-06-17 08:45:08.543215] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/smbXsrv_session_global.tdb
[2022-06-17 08:45:08.544769] db_tdb_log_key: Unlocking key 6F1A4B46
[2022-06-17 08:45:08.546458] smbXsrv_session_update: global_id (0x6f1a4b46) stored
[2022-06-17 08:45:08.548199] &session_blob: struct smbXsrv_sessionB
[2022-06-17 08:45:08.549851] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:08.551495] reserved : 0x00000000 (0)
[2022-06-17 08:45:08.553187] info : union smbXsrv_sessionU(case 0)
[2022-06-17 08:45:08.554848] info0 : *
[2022-06-17 08:45:08.556486] info0: struct smbXsrv_session
[2022-06-17 08:45:08.558133] table : *
[2022-06-17 08:45:08.559782] db_rec : NULL
[2022-06-17 08:45:08.561402] client : *
[2022-06-17 08:45:08.563078] local_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:08.564828] global : *
[2022-06-17 08:45:08.566507] global: struct smbXsrv_session_global0
[2022-06-17 08:45:08.568161] db_rec : NULL
[2022-06-17 08:45:08.569809] session_global_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:08.571466] session_wire_id : 0x000000006f1a4b46 (1863994182)
[2022-06-17 08:45:08.573176] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:08.574853] expiration_time : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:08.576504] auth_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:08.578154] auth_session_info_seqnum : 0x00000001 (1)
[2022-06-17 08:45:08.579808] auth_session_info : *
[2022-06-17 08:45:08.581446] auth_session_info: struct auth_session_info
[2022-06-17 08:45:08.583145] security_token : *
[2022-06-17 08:45:08.584810] security_token: struct security_token
[2022-06-17 08:45:08.586466] num_sids : 0x00000007 (7)
[2022-06-17 08:45:08.588116] sids: ARRAY(7)
[2022-06-17 08:45:08.589758] sids : S-1-5-21-3939785350-4027435424-1589595352-132066
[2022-06-17 08:45:08.591432] sids : S-1-5-21-3939785350-4027435424-1589595352-513
[2022-06-17 08:45:08.593152] sids : S-1-22-2-65534
[2022-06-17 08:45:08.594696] sids : S-1-1-0
[2022-06-17 08:45:08.596508] sids : S-1-5-2
[2022-06-17 08:45:08.598169] sids : S-1-5-11
[2022-06-17 08:45:08.599825] sids : S-1-22-1-65533
[2022-06-17 08:45:08.601488] privilege_mask : 0x0000000000000000 (0)
[2022-06-17 08:45:08.603203] 0: SEC_PRIV_MACHINE_ACCOUNT_BIT
[2022-06-17 08:45:08.604874] 0: SEC_PRIV_PRINT_OPERATOR_BIT
[2022-06-17 08:45:08.606542] 0: SEC_PRIV_ADD_USERS_BIT
[2022-06-17 08:45:08.608212] 0: SEC_PRIV_DISK_OPERATOR_BIT
[2022-06-17 08:45:08.609886] 0: SEC_PRIV_REMOTE_SHUTDOWN_BIT
[2022-06-17 08:45:08.611548] 0: SEC_PRIV_BACKUP_BIT
[2022-06-17 08:45:08.613251] 0: SEC_PRIV_RESTORE_BIT
[2022-06-17 08:45:08.614911] 0: SEC_PRIV_TAKE_OWNERSHIP_BIT
[2022-06-17 08:45:08.616571] 0: SEC_PRIV_INCREASE_QUOTA_BIT
[2022-06-17 08:45:08.618236] 0: SEC_PRIV_SECURITY_BIT
[2022-06-17 08:45:08.619898] 0: SEC_PRIV_LOAD_DRIVER_BIT
[2022-06-17 08:45:08.621548] 0: SEC_PRIV_SYSTEM_PROFILE_BIT
[2022-06-17 08:45:08.623166] 0: SEC_PRIV_SYSTEMTIME_BIT
[2022-06-17 08:45:08.624700] 0: SEC_PRIV_PROFILE_SINGLE_PROCESS_BIT
[2022-06-17 08:45:08.626214] 0: SEC_PRIV_INCREASE_BASE_PRIORITY_BIT
[2022-06-17 08:45:08.627731] 0: SEC_PRIV_CREATE_PAGEFILE_BIT
[2022-06-17 08:45:08.629239] 0: SEC_PRIV_SHUTDOWN_BIT
[2022-06-17 08:45:08.630741] 0: SEC_PRIV_DEBUG_BIT
[2022-06-17 08:45:08.632240] 0: SEC_PRIV_SYSTEM_ENVIRONMENT_BIT
[2022-06-17 08:45:08.633789] 0: SEC_PRIV_CHANGE_NOTIFY_BIT
[2022-06-17 08:45:08.635304] 0: SEC_PRIV_UNDOCK_BIT
[2022-06-17 08:45:08.636986] 0: SEC_PRIV_ENABLE_DELEGATION_BIT
[2022-06-17 08:45:08.638528] 0: SEC_PRIV_MANAGE_VOLUME_BIT
[2022-06-17 08:45:08.640042] 0: SEC_PRIV_IMPERSONATE_BIT
[2022-06-17 08:45:08.641551] 0: SEC_PRIV_CREATE_GLOBAL_BIT
[2022-06-17 08:45:08.643116] rights_mask : 0x00000000 (0)
[2022-06-17 08:45:08.644651] 0: LSA_POLICY_MODE_INTERACTIVE
[2022-06-17 08:45:08.646163] 0: LSA_POLICY_MODE_NETWORK
[2022-06-17 08:45:08.647671] 0: LSA_POLICY_MODE_BATCH
[2022-06-17 08:45:08.649165] 0: LSA_POLICY_MODE_SERVICE
[2022-06-17 08:45:08.650677] 0: LSA_POLICY_MODE_PROXY
[2022-06-17 08:45:08.652342] 0: LSA_POLICY_MODE_DENY_INTERACTIVE
[2022-06-17 08:45:08.653996] 0: LSA_POLICY_MODE_DENY_NETWORK
[2022-06-17 08:45:08.655523] 0: LSA_POLICY_MODE_DENY_BATCH
[2022-06-17 08:45:08.657040] 0: LSA_POLICY_MODE_DENY_SERVICE
[2022-06-17 08:45:08.658560] 0: LSA_POLICY_MODE_REMOTE_INTERACTIVE
[2022-06-17 08:45:08.660078] 0: LSA_POLICY_MODE_DENY_REMOTE_INTERACTIVE
[2022-06-17 08:45:08.661585] 0x00: LSA_POLICY_MODE_ALL (0)
[2022-06-17 08:45:08.663137] 0x00: LSA_POLICY_MODE_ALL_NT4 (0)
[2022-06-17 08:45:08.664662] unix_token : *
[2022-06-17 08:45:08.666182] unix_token: struct security_unix_token
[2022-06-17 08:45:08.667851] uid : 0x000000000000fffd (65533)
[2022-06-17 08:45:08.669412] gid : 0x000000000000fffe (65534)
[2022-06-17 08:45:08.670940] ngroups : 0x00000001 (1)
[2022-06-17 08:45:08.672449] groups: ARRAY(1)
[2022-06-17 08:45:08.674032] groups : 0x000000000000fffe (65534)
[2022-06-17 08:45:08.675583] info : *
[2022-06-17 08:45:08.677105] info: struct auth_user_info
[2022-06-17 08:45:08.678604] account_name : *
[2022-06-17 08:45:08.680112] account_name : 'useruser'
[2022-06-17 08:45:08.681631] user_principal_name : NULL
[2022-06-17 08:45:08.683409] user_principal_constructed: 0x00 (0)
[2022-06-17 08:45:08.684958] domain_name : *
[2022-06-17 08:45:08.686478] domain_name : 'ZALUPA'
[2022-06-17 08:45:08.688002] dns_domain_name : NULL
[2022-06-17 08:45:08.689505] full_name : *
[2022-06-17 08:45:08.691018] full_name : 'nobody'
[2022-06-17 08:45:08.692675] logon_script : *
[2022-06-17 08:45:08.694240] logon_script : ''
[2022-06-17 08:45:08.695745] profile_path : *
[2022-06-17 08:45:08.697437] profile_path : '\\ZALUPA\useruser\profile'
[2022-06-17 08:45:08.701105] home_directory : *
[2022-06-17 08:45:08.702772] home_directory : '\\ZALUPA\useruser'
[2022-06-17 08:45:08.704404] home_drive : *
[2022-06-17 08:45:08.705927] home_drive : ''
[2022-06-17 08:45:08.707452] logon_server : *
[2022-06-17 08:45:08.708953] logon_server : 'ZALUPA'
[2022-06-17 08:45:08.710455] last_logon : NTTIME(0)
[2022-06-17 08:45:08.712127] last_logoff : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:08.713781] acct_expiry : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:08.715336] last_password_change : Thu Jun 16 22:30:51 2022 UTC
[2022-06-17 08:45:08.716870] allow_password_change : Thu Jun 16 22:30:51 2022 UTC
[2022-06-17 08:45:08.718394] force_password_change : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:08.719910] logon_count : 0x0000 (0)
[2022-06-17 08:45:08.721431] bad_password_count : 0x0000 (0)
[2022-06-17 08:45:08.722981] acct_flags : 0x00000010 (16)
[2022-06-17 08:45:08.724650] authenticated : 0x01 (1)
[2022-06-17 08:45:08.726193] unix_info : *
[2022-06-17 08:45:08.727894] unix_info: struct auth_user_info_unix
[2022-06-17 08:45:08.729448] unix_name : *
[2022-06-17 08:45:08.730957] unix_name : 'useruser'
[2022-06-17 08:45:08.732462] sanitized_username : *
[2022-06-17 08:45:08.734047] sanitized_username : 'useruser'
[2022-06-17 08:45:08.735568] torture : NULL
[2022-06-17 08:45:08.737095] credentials : NULL
[2022-06-17 08:45:08.738618] unique_session_token : 948521e3-7864-4f36-8058-4ed4b9d327d1
[2022-06-17 08:45:08.740143] connection_dialect : 0x0311 (785)
[2022-06-17 08:45:08.741651] signing_flags : 0x04 (4)
[2022-06-17 08:45:08.743414] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:08.744944] 0: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:08.746457] 1: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:08.747972] encryption_flags : 0x08 (8)
[2022-06-17 08:45:08.749467] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:08.761557] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:08.763378] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:08.765076] 1: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:08.766754] signing_key : *
[2022-06-17 08:45:08.768407] encryption_key : *
[2022-06-17 08:45:08.770052] decryption_key : *
[2022-06-17 08:45:08.771702] num_channels : 0x00000001 (1)
[2022-06-17 08:45:08.773398] channels: ARRAY(1)
[2022-06-17 08:45:08.775047] channels: struct smbXsrv_channel_global0
[2022-06-17 08:45:08.776693] server_id: struct server_id
[2022-06-17 08:45:08.778322] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:08.779988] task_id : 0x00000000 (0)
[2022-06-17 08:45:08.781659] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:08.783401] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:08.785090] channel_id : 0x0000000000000000 (0)
[2022-06-17 08:45:08.786754] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:08.788402] local_address : 'ipv4:192.168.1.250:445'
[2022-06-17 08:45:08.790053] remote_address : 'ipv4:192.168.1.10:33730'
[2022-06-17 08:45:08.791707] remote_name : '192.168.1.10'
[2022-06-17 08:45:08.793409] signing_key : *
[2022-06-17 08:45:08.795079] auth_session_info_seqnum : 0x00000001 (1)
[2022-06-17 08:45:08.796739] connection : *
[2022-06-17 08:45:08.798388] encryption_cipher : 0x0002 (2)
[2022-06-17 08:45:08.800030] status : NT_STATUS_OK
[2022-06-17 08:45:08.801659] idle_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:08.803349] nonce_high_random : 0x1b89f68e6094ef6d (1984388202199576429)
[2022-06-17 08:45:08.804891] nonce_high_max : 0x00000000ffffffff (4294967295)
[2022-06-17 08:45:08.806414] nonce_high : 0x0000000000000000 (0)
[2022-06-17 08:45:08.807921] nonce_low : 0x0000000000000000 (0)
[2022-06-17 08:45:08.809433] tcon_table : *
[2022-06-17 08:45:08.810925] homes_snum : 0xffffffff (4294967295)
[2022-06-17 08:45:08.812428] pending_auth : NULL
[2022-06-17 08:45:08.813996] smbd_smb2_request_done_ex: mid [2] idx[1] status[NT_STATUS_OK] body[8] dyn[yes:29] at ../../source3/smbd/smb2_sesssetup.c:183
[2022-06-17 08:45:08.815538] smb2_set_operation_credit: smb2_set_operation_credit: requested 8192, charge 1, granted 8192, current possible/max 8192/8192, total granted/max/low/range 8192/8192/3/8192
[2022-06-17 08:45:08.817111] signed SMB2 message
[2022-06-17 08:45:08.819034] smbd_smb2_request idx[1] of 5 vectors
[2022-06-17 08:45:08.820685] smb2_validate_sequence_number: smb2_validate_sequence_number: clearing id 3 (position 3) from bitmap
[2022-06-17 08:45:08.822350] smbd_smb2_request_dispatch: opcode[SMB2_OP_TCON] mid = 3
[2022-06-17 08:45:08.824084] dbwrap_lock_order_lock: check lock order 1 for /var/lock/smbXsrv_session_global.tdb
[2022-06-17 08:45:08.825744] lock order: 1:/var/lock/smbXsrv_session_global.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:45:08.827398] db_tdb_log_key: Locking key 6F1A4B46
[2022-06-17 08:45:08.829029] db_tdb_fetch_locked_internal: Allocated locked data 0xb51605d0
[2022-06-17 08:45:08.830674] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:45:08.832331] smbXsrv_session_global_store: key '6F1A4B46' stored
[2022-06-17 08:45:08.834062] &global_blob: struct smbXsrv_session_globalB
[2022-06-17 08:45:08.835724] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:08.837361] seqnum : 0x00000006 (6)
[2022-06-17 08:45:08.838992] info : union smbXsrv_session_globalU(case 0)
[2022-06-17 08:45:08.840629] info0 : *
[2022-06-17 08:45:08.842264] info0: struct smbXsrv_session_global0
[2022-06-17 08:45:08.843851] db_rec : *
[2022-06-17 08:45:08.845485] session_global_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:08.847140] session_wire_id : 0x000000006f1a4b46 (1863994182)
[2022-06-17 08:45:08.848791] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:08.850438] expiration_time : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:08.852091] auth_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:08.853785] auth_session_info_seqnum : 0x00000001 (1)
[2022-06-17 08:45:08.855438] auth_session_info : *
[2022-06-17 08:45:08.857076] auth_session_info: struct auth_session_info
[2022-06-17 08:45:08.858724] security_token : *
[2022-06-17 08:45:08.860362] security_token: struct security_token
[2022-06-17 08:45:08.862017] num_sids : 0x00000007 (7)
[2022-06-17 08:45:08.863738] sids: ARRAY(7)
[2022-06-17 08:45:08.865400] sids : S-1-5-21-3939785350-4027435424-1589595352-132066
[2022-06-17 08:45:08.867083] sids : S-1-5-21-3939785350-4027435424-1589595352-513
[2022-06-17 08:45:08.868759] sids : S-1-22-2-65534
[2022-06-17 08:45:08.870419] sids : S-1-1-0
[2022-06-17 08:45:08.872055] sids : S-1-5-2
[2022-06-17 08:45:08.873744] sids : S-1-5-11
[2022-06-17 08:45:08.875409] sids : S-1-22-1-65533
[2022-06-17 08:45:08.876943] privilege_mask : 0x0000000000000000 (0)
[2022-06-17 08:45:08.878472] 0: SEC_PRIV_MACHINE_ACCOUNT_BIT
[2022-06-17 08:45:08.880220] 0: SEC_PRIV_PRINT_OPERATOR_BIT
[2022-06-17 08:45:08.881751] 0: SEC_PRIV_ADD_USERS_BIT
[2022-06-17 08:45:08.883606] 0: SEC_PRIV_DISK_OPERATOR_BIT
[2022-06-17 08:45:08.885275] 0: SEC_PRIV_REMOTE_SHUTDOWN_BIT
[2022-06-17 08:45:08.886930] 0: SEC_PRIV_BACKUP_BIT
[2022-06-17 08:45:08.888580] 0: SEC_PRIV_RESTORE_BIT
[2022-06-17 08:45:08.890234] 0: SEC_PRIV_TAKE_OWNERSHIP_BIT
[2022-06-17 08:45:08.891890] 0: SEC_PRIV_INCREASE_QUOTA_BIT
[2022-06-17 08:45:08.893593] 0: SEC_PRIV_SECURITY_BIT
[2022-06-17 08:45:08.895242] 0: SEC_PRIV_LOAD_DRIVER_BIT
[2022-06-17 08:45:08.896878] 0: SEC_PRIV_SYSTEM_PROFILE_BIT
[2022-06-17 08:45:08.898536] 0: SEC_PRIV_SYSTEMTIME_BIT
[2022-06-17 08:45:08.913051] 0: SEC_PRIV_PROFILE_SINGLE_PROCESS_BIT
[2022-06-17 08:45:08.914819] 0: SEC_PRIV_INCREASE_BASE_PRIORITY_BIT
[2022-06-17 08:45:08.916695] 0: SEC_PRIV_CREATE_PAGEFILE_BIT
[2022-06-17 08:45:08.918388] 0: SEC_PRIV_SHUTDOWN_BIT
[2022-06-17 08:45:08.920072] 0: SEC_PRIV_DEBUG_BIT
[2022-06-17 08:45:08.921720] 0: SEC_PRIV_SYSTEM_ENVIRONMENT_BIT
[2022-06-17 08:45:08.923417] 0: SEC_PRIV_CHANGE_NOTIFY_BIT
[2022-06-17 08:45:08.925088] 0: SEC_PRIV_UNDOCK_BIT
[2022-06-17 08:45:08.926759] 0: SEC_PRIV_ENABLE_DELEGATION_BIT
[2022-06-17 08:45:08.928424] 0: SEC_PRIV_MANAGE_VOLUME_BIT
[2022-06-17 08:45:08.930079] 0: SEC_PRIV_IMPERSONATE_BIT
[2022-06-17 08:45:08.933323] 0: SEC_PRIV_CREATE_GLOBAL_BIT
[2022-06-17 08:45:08.935110] rights_mask : 0x00000000 (0)
[2022-06-17 08:45:08.936803] 0: LSA_POLICY_MODE_INTERACTIVE
[2022-06-17 08:45:08.938469] 0: LSA_POLICY_MODE_NETWORK
[2022-06-17 08:45:08.940113] 0: LSA_POLICY_MODE_BATCH
[2022-06-17 08:45:08.941767] 0: LSA_POLICY_MODE_SERVICE
[2022-06-17 08:45:08.943497] 0: LSA_POLICY_MODE_PROXY
[2022-06-17 08:45:08.945175] 0: LSA_POLICY_MODE_DENY_INTERACTIVE
[2022-06-17 08:45:08.946863] 0: LSA_POLICY_MODE_DENY_NETWORK
[2022-06-17 08:45:08.948505] 0: LSA_POLICY_MODE_DENY_BATCH
[2022-06-17 08:45:08.950160] 0: LSA_POLICY_MODE_DENY_SERVICE
[2022-06-17 08:45:08.951799] 0: LSA_POLICY_MODE_REMOTE_INTERACTIVE
[2022-06-17 08:45:08.953389] 0: LSA_POLICY_MODE_DENY_REMOTE_INTERACTIVE
[2022-06-17 08:45:08.955147] 0x00: LSA_POLICY_MODE_ALL (0)
[2022-06-17 08:45:08.956806] 0x00: LSA_POLICY_MODE_ALL_NT4 (0)
[2022-06-17 08:45:08.958459] unix_token : *
[2022-06-17 08:45:08.960098] unix_token: struct security_unix_token
[2022-06-17 08:45:08.961723] uid : 0x000000000000fffd (65533)
[2022-06-17 08:45:08.963430] gid : 0x000000000000fffe (65534)
[2022-06-17 08:45:08.965099] ngroups : 0x00000001 (1)
[2022-06-17 08:45:08.966761] groups: ARRAY(1)
[2022-06-17 08:45:08.968407] groups : 0x000000000000fffe (65534)
[2022-06-17 08:45:08.970070] info : *
[2022-06-17 08:45:08.971699] info: struct auth_user_info
[2022-06-17 08:45:08.973401] account_name : *
[2022-06-17 08:45:08.975055] account_name : 'useruser'
[2022-06-17 08:45:08.976705] user_principal_name : NULL
[2022-06-17 08:45:08.978231] user_principal_constructed: 0x00 (0)
[2022-06-17 08:45:08.980025] domain_name : *
[2022-06-17 08:45:08.981675] domain_name : 'ZALUPA'
[2022-06-17 08:45:08.983364] dns_domain_name : NULL
[2022-06-17 08:45:08.985022] full_name : *
[2022-06-17 08:45:08.986659] full_name : 'nobody'
[2022-06-17 08:45:08.988293] logon_script : *
[2022-06-17 08:45:08.989937] logon_script : ''
[2022-06-17 08:45:08.991592] profile_path : *
[2022-06-17 08:45:08.993286] profile_path : '\\ZALUPA\useruser\profile'
[2022-06-17 08:45:08.994951] home_directory : *
[2022-06-17 08:45:08.996594] home_directory : '\\ZALUPA\useruser'
[2022-06-17 08:45:08.998238] home_drive : *
[2022-06-17 08:45:08.999887] home_drive : ''
[2022-06-17 08:45:09.001530] logon_server : *
[2022-06-17 08:45:09.003247] logon_server : 'ZALUPA'
[2022-06-17 08:45:09.004915] last_logon : NTTIME(0)
[2022-06-17 08:45:09.006585] last_logoff : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:09.008242] acct_expiry : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:09.009896] last_password_change : Thu Jun 16 22:30:51 2022 UTC
[2022-06-17 08:45:09.011550] allow_password_change : Thu Jun 16 22:30:51 2022 UTC
[2022-06-17 08:45:09.013243] force_password_change : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:09.014909] logon_count : 0x0000 (0)
[2022-06-17 08:45:09.016574] bad_password_count : 0x0000 (0)
[2022-06-17 08:45:09.018226] acct_flags : 0x00000010 (16)
[2022-06-17 08:45:09.019878] authenticated : 0x01 (1)
[2022-06-17 08:45:09.021523] unix_info : *
[2022-06-17 08:45:09.023205] unix_info: struct auth_user_info_unix
[2022-06-17 08:45:09.024861] unix_name : *
[2022-06-17 08:45:09.026526] unix_name : 'useruser'
[2022-06-17 08:45:09.028183] sanitized_username : *
[2022-06-17 08:45:09.029826] sanitized_username : 'useruser'
[2022-06-17 08:45:09.031474] torture : NULL
[2022-06-17 08:45:09.033160] credentials : NULL
[2022-06-17 08:45:09.034825] unique_session_token : 948521e3-7864-4f36-8058-4ed4b9d327d1
[2022-06-17 08:45:09.036483] connection_dialect : 0x0311 (785)
[2022-06-17 08:45:09.038124] signing_flags : 0x06 (6)
[2022-06-17 08:45:09.039771] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:09.041416] 1: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:09.043113] 1: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:09.044766] encryption_flags : 0x08 (8)
[2022-06-17 08:45:09.046407] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:09.048052] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:09.049693] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:09.051343] 1: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:09.053032] signing_key : *
[2022-06-17 08:45:09.054691] encryption_key : *
[2022-06-17 08:45:09.056323] decryption_key : *
[2022-06-17 08:45:09.057949] num_channels : 0x00000001 (1)
[2022-06-17 08:45:09.059583] channels: ARRAY(1)
[2022-06-17 08:45:09.061216] channels: struct smbXsrv_channel_global0
[2022-06-17 08:45:09.062907] server_id: struct server_id
[2022-06-17 08:45:09.064581] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:09.066238] task_id : 0x00000000 (0)
[2022-06-17 08:45:09.067967] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:09.069677] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:09.071339] channel_id : 0x0000000000000000 (0)
[2022-06-17 08:45:09.073036] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:09.074711] local_address : 'ipv4:192.168.1.250:445'
[2022-06-17 08:45:09.076377] remote_address : 'ipv4:192.168.1.10:33730'
[2022-06-17 08:45:09.078029] remote_name : '192.168.1.10'
[2022-06-17 08:45:09.079674] signing_key : *
[2022-06-17 08:45:09.081292] auth_session_info_seqnum : 0x00000001 (1)
[2022-06-17 08:45:09.082967] connection : *
[2022-06-17 08:45:09.084619] encryption_cipher : 0x0002 (2)
[2022-06-17 08:45:09.086270] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/smbXsrv_session_global.tdb
[2022-06-17 08:45:09.087942] db_tdb_log_key: Unlocking key 6F1A4B46
[2022-06-17 08:45:09.089575] smbXsrv_session_update: global_id (0x6f1a4b46) stored
[2022-06-17 08:45:09.091209] &session_blob: struct smbXsrv_sessionB
[2022-06-17 08:45:09.092846] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:09.094539] reserved : 0x00000000 (0)
[2022-06-17 08:45:09.096188] info : union smbXsrv_sessionU(case 0)
[2022-06-17 08:45:09.097834] info0 : *
[2022-06-17 08:45:09.099464] info0: struct smbXsrv_session
[2022-06-17 08:45:09.101111] table : *
[2022-06-17 08:45:09.102744] db_rec : NULL
[2022-06-17 08:45:09.104454] client : *
[2022-06-17 08:45:09.106100] local_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:09.107732] global : *
[2022-06-17 08:45:09.109359] global: struct smbXsrv_session_global0
[2022-06-17 08:45:09.110998] db_rec : NULL
[2022-06-17 08:45:09.112521] session_global_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:09.114110] session_wire_id : 0x000000006f1a4b46 (1863994182)
[2022-06-17 08:45:09.115631] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:09.117137] expiration_time : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:09.118634] auth_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:09.125078] auth_session_info_seqnum : 0x00000001 (1)
[2022-06-17 08:45:09.126940] auth_session_info : *
[2022-06-17 08:45:09.128550] auth_session_info: struct auth_session_info
[2022-06-17 08:45:09.130104] security_token : *
[2022-06-17 08:45:09.131619] security_token: struct security_token
[2022-06-17 08:45:09.133194] num_sids : 0x00000007 (7)
[2022-06-17 08:45:09.134729] sids: ARRAY(7)
[2022-06-17 08:45:09.136233] sids : S-1-5-21-3939785350-4027435424-1589595352-132066
[2022-06-17 08:45:09.137758] sids : S-1-5-21-3939785350-4027435424-1589595352-513
[2022-06-17 08:45:09.139285] sids : S-1-22-2-65534
[2022-06-17 08:45:09.140800] sids : S-1-1-0
[2022-06-17 08:45:09.142450] sids : S-1-5-2
[2022-06-17 08:45:09.144074] sids : S-1-5-11
[2022-06-17 08:45:09.145603] sids : S-1-22-1-65533
[2022-06-17 08:45:09.147122] privilege_mask : 0x0000000000000000 (0)
[2022-06-17 08:45:09.148639] 0: SEC_PRIV_MACHINE_ACCOUNT_BIT
[2022-06-17 08:45:09.150145] 0: SEC_PRIV_PRINT_OPERATOR_BIT
[2022-06-17 08:45:09.151657] 0: SEC_PRIV_ADD_USERS_BIT
[2022-06-17 08:45:09.153224] 0: SEC_PRIV_DISK_OPERATOR_BIT
[2022-06-17 08:45:09.154752] 0: SEC_PRIV_REMOTE_SHUTDOWN_BIT
[2022-06-17 08:45:09.156258] 0: SEC_PRIV_BACKUP_BIT
[2022-06-17 08:45:09.157984] 0: SEC_PRIV_RESTORE_BIT
[2022-06-17 08:45:09.159511] 0: SEC_PRIV_TAKE_OWNERSHIP_BIT
[2022-06-17 08:45:09.161030] 0: SEC_PRIV_INCREASE_QUOTA_BIT
[2022-06-17 08:45:09.162544] 0: SEC_PRIV_SECURITY_BIT
[2022-06-17 08:45:09.164138] 0: SEC_PRIV_LOAD_DRIVER_BIT
[2022-06-17 08:45:09.165662] 0: SEC_PRIV_SYSTEM_PROFILE_BIT
[2022-06-17 08:45:09.167173] 0: SEC_PRIV_SYSTEMTIME_BIT
[2022-06-17 08:45:09.168682] 0: SEC_PRIV_PROFILE_SINGLE_PROCESS_BIT
[2022-06-17 08:45:09.170188] 0: SEC_PRIV_INCREASE_BASE_PRIORITY_BIT
[2022-06-17 08:45:09.171699] 0: SEC_PRIV_CREATE_PAGEFILE_BIT
[2022-06-17 08:45:09.176152] 0: SEC_PRIV_SHUTDOWN_BIT
[2022-06-17 08:45:09.177770] 0: SEC_PRIV_DEBUG_BIT
[2022-06-17 08:45:09.179319] 0: SEC_PRIV_SYSTEM_ENVIRONMENT_BIT
[2022-06-17 08:45:09.180856] 0: SEC_PRIV_CHANGE_NOTIFY_BIT
[2022-06-17 08:45:09.182371] 0: SEC_PRIV_UNDOCK_BIT
[2022-06-17 08:45:09.183966] 0: SEC_PRIV_ENABLE_DELEGATION_BIT
[2022-06-17 08:45:09.191776] 0: SEC_PRIV_MANAGE_VOLUME_BIT
[2022-06-17 08:45:09.193450] 0: SEC_PRIV_IMPERSONATE_BIT
[2022-06-17 08:45:09.195017] 0: SEC_PRIV_CREATE_GLOBAL_BIT
[2022-06-17 08:45:09.196668] rights_mask : 0x00000000 (0)
[2022-06-17 08:45:09.198344] 0: LSA_POLICY_MODE_INTERACTIVE
[2022-06-17 08:45:09.200020] 0: LSA_POLICY_MODE_NETWORK
[2022-06-17 08:45:09.201679] 0: LSA_POLICY_MODE_BATCH
[2022-06-17 08:45:09.203640] 0: LSA_POLICY_MODE_SERVICE
[2022-06-17 08:45:09.205331] 0: LSA_POLICY_MODE_PROXY
[2022-06-17 08:45:09.206987] 0: LSA_POLICY_MODE_DENY_INTERACTIVE
[2022-06-17 08:45:09.208647] 0: LSA_POLICY_MODE_DENY_NETWORK
[2022-06-17 08:45:09.210307] 0: LSA_POLICY_MODE_DENY_BATCH
[2022-06-17 08:45:09.211962] 0: LSA_POLICY_MODE_DENY_SERVICE
[2022-06-17 08:45:09.213699] 0: LSA_POLICY_MODE_REMOTE_INTERACTIVE
[2022-06-17 08:45:09.215370] 0: LSA_POLICY_MODE_DENY_REMOTE_INTERACTIVE
[2022-06-17 08:45:09.217032] 0x00: LSA_POLICY_MODE_ALL (0)
[2022-06-17 08:45:09.218706] 0x00: LSA_POLICY_MODE_ALL_NT4 (0)
[2022-06-17 08:45:09.220372] unix_token : *
[2022-06-17 08:45:09.222032] unix_token: struct security_unix_token
[2022-06-17 08:45:09.223730] uid : 0x000000000000fffd (65533)
[2022-06-17 08:45:09.225417] gid : 0x000000000000fffe (65534)
[2022-06-17 08:45:09.226957] ngroups : 0x00000001 (1)
[2022-06-17 08:45:09.228757] groups: ARRAY(1)
[2022-06-17 08:45:09.230413] groups : 0x000000000000fffe (65534)
[2022-06-17 08:45:09.232094] info : *
[2022-06-17 08:45:09.233801] info: struct auth_user_info
[2022-06-17 08:45:09.235466] account_name : *
[2022-06-17 08:45:09.237113] account_name : 'useruser'
[2022-06-17 08:45:09.238773] user_principal_name : NULL
[2022-06-17 08:45:09.240434] user_principal_constructed: 0x00 (0)
[2022-06-17 08:45:09.242081] domain_name : *
[2022-06-17 08:45:09.243661] domain_name : 'ZALUPA'
[2022-06-17 08:45:09.245323] dns_domain_name : NULL
[2022-06-17 08:45:09.246982] full_name : *
[2022-06-17 08:45:09.248632] full_name : 'nobody'
[2022-06-17 08:45:09.250279] logon_script : *
[2022-06-17 08:45:09.251924] logon_script : ''
[2022-06-17 08:45:09.253631] profile_path : *
[2022-06-17 08:45:09.255297] profile_path : '\\ZALUPA\useruser\profile'
[2022-06-17 08:45:09.256990] home_directory : *
[2022-06-17 08:45:09.258652] home_directory : '\\ZALUPA\useruser'
[2022-06-17 08:45:09.260312] home_drive : *
[2022-06-17 08:45:09.261958] home_drive : ''
[2022-06-17 08:45:09.263658] logon_server : *
[2022-06-17 08:45:09.265325] logon_server : 'ZALUPA'
[2022-06-17 08:45:09.266982] last_logon : NTTIME(0)
[2022-06-17 08:45:09.268641] last_logoff : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:09.270315] acct_expiry : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:09.271983] last_password_change : Thu Jun 16 22:30:51 2022 UTC
[2022-06-17 08:45:09.273710] allow_password_change : Thu Jun 16 22:30:51 2022 UTC
[2022-06-17 08:45:09.275395] force_password_change : Tue Jan 19 03:14:07 2038 UTC
[2022-06-17 08:45:09.277067] logon_count : 0x0000 (0)
[2022-06-17 08:45:09.278733] bad_password_count : 0x0000 (0)
[2022-06-17 08:45:09.280395] acct_flags : 0x00000010 (16)
[2022-06-17 08:45:09.282053] authenticated : 0x01 (1)
[2022-06-17 08:45:09.283763] unix_info : *
[2022-06-17 08:45:09.285306] unix_info: struct auth_user_info_unix
[2022-06-17 08:45:09.286816] unix_name : *
[2022-06-17 08:45:09.288456] unix_name : 'useruser'
[2022-06-17 08:45:09.290125] sanitized_username : *
[2022-06-17 08:45:09.291657] sanitized_username : 'useruser'
[2022-06-17 08:45:09.293233] torture : NULL
[2022-06-17 08:45:09.294997] credentials : NULL
[2022-06-17 08:45:09.296654] unique_session_token : 948521e3-7864-4f36-8058-4ed4b9d327d1
[2022-06-17 08:45:09.298322] connection_dialect : 0x0311 (785)
[2022-06-17 08:45:09.299959] signing_flags : 0x06 (6)
[2022-06-17 08:45:09.301604] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:09.303302] 1: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:09.307758] 1: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:09.313543] encryption_flags : 0x08 (8)
[2022-06-17 08:45:09.315381] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:09.317083] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:09.323473] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:09.325200] 1: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:09.326868] signing_key : *
[2022-06-17 08:45:09.328535] encryption_key : *
[2022-06-17 08:45:09.330200] decryption_key : *
[2022-06-17 08:45:09.333159] num_channels : 0x00000001 (1)
[2022-06-17 08:45:09.334858] channels: ARRAY(1)
[2022-06-17 08:45:09.336517] channels: struct smbXsrv_channel_global0
[2022-06-17 08:45:09.338158] server_id: struct server_id
[2022-06-17 08:45:09.339794] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:09.341464] task_id : 0x00000000 (0)
[2022-06-17 08:45:09.343191] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:09.344871] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:09.346551] channel_id : 0x0000000000000000 (0)
[2022-06-17 08:45:09.348072] creation_time : Fri Jun 17 08:45:05 2022 UTC
[2022-06-17 08:45:09.349591] local_address : 'ipv4:192.168.1.250:445'
[2022-06-17 08:45:09.351338] remote_address : 'ipv4:192.168.1.10:33730'
[2022-06-17 08:45:09.353042] remote_name : '192.168.1.10'
[2022-06-17 08:45:09.354724] signing_key : *
[2022-06-17 08:45:09.356388] auth_session_info_seqnum : 0x00000001 (1)
[2022-06-17 08:45:09.358049] connection : *
[2022-06-17 08:45:09.359715] encryption_cipher : 0x0002 (2)
[2022-06-17 08:45:09.361368] status : NT_STATUS_OK
[2022-06-17 08:45:09.363782] idle_time : Fri Jun 17 08:45:07 2022 UTC
[2022-06-17 08:45:09.365455] nonce_high_random : 0x1b89f68e6094ef6d (1984388202199576429)
[2022-06-17 08:45:09.367128] nonce_high_max : 0x00000000ffffffff (4294967295)
[2022-06-17 08:45:09.368794] nonce_high : 0x0000000000000000 (0)
[2022-06-17 08:45:09.370466] nonce_low : 0x0000000000000000 (0)
[2022-06-17 08:45:09.372106] tcon_table : *
[2022-06-17 08:45:09.373804] homes_snum : 0xffffffff (4294967295)
[2022-06-17 08:45:09.375474] pending_auth : NULL
[2022-06-17 08:45:09.377117] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:09.378764] Security token: (NULL)
[2022-06-17 08:45:09.380391] UNIX token of user 0
[2022-06-17 08:45:09.382009] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:09.383710] change_to_root_user: now uid=(0,0) gid=(0,0)
[2022-06-17 08:45:09.385379] smbd_smb2_tree_connect: path[\\192.168.1.250\IPC$] share[IPC$]
[2022-06-17 08:45:09.386909] dbwrap_lock_order_lock: check lock order 1 for /var/lock/smbXsrv_tcon_global.tdb
[2022-06-17 08:45:09.388680] lock order: 1:/var/lock/smbXsrv_tcon_global.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:45:09.390337] db_tdb_log_key: Locking key 5676C97C
[2022-06-17 08:45:09.391976] db_tdb_fetch_locked_internal: Allocated locked data 0xb5bd9e10
[2022-06-17 08:45:09.393589] smbXsrv_tcon_global_store: key '5676C97C' stored
[2022-06-17 08:45:09.395247] &global_blob: struct smbXsrv_tcon_globalB
[2022-06-17 08:45:09.396890] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:09.398518] seqnum : 0x00000001 (1)
[2022-06-17 08:45:09.400158] info : union smbXsrv_tcon_globalU(case 0)
[2022-06-17 08:45:09.401808] info0 : *
[2022-06-17 08:45:09.403510] info0: struct smbXsrv_tcon_global0
[2022-06-17 08:45:09.405168] db_rec : *
[2022-06-17 08:45:09.406817] tcon_global_id : 0x5676c97c (1450625404)
[2022-06-17 08:45:09.408458] tcon_wire_id : 0x5676c97c (1450625404)
[2022-06-17 08:45:09.410097] server_id: struct server_id
[2022-06-17 08:45:09.411742] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:09.413434] task_id : 0x00000000 (0)
[2022-06-17 08:45:09.415115] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:09.416774] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:09.418436] creation_time : Fri Jun 17 08:45:07 2022 UTC
[2022-06-17 08:45:09.420081] share_name : NULL
[2022-06-17 08:45:09.421721] encryption_flags : 0x00 (0)
[2022-06-17 08:45:09.423480] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:09.425187] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:09.426713] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:09.428225] 0: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:09.430008] session_global_id : 0x00000000 (0)
[2022-06-17 08:45:09.431672] signing_flags : 0x00 (0)
[2022-06-17 08:45:09.433362] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:09.435011] 0: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:09.436650] 0: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:09.438283] db_tdb_log_key: Unlocking key 5676C97C
[2022-06-17 08:45:09.439925] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/smbXsrv_tcon_global.tdb
[2022-06-17 08:45:09.441580] smbXsrv_tcon_create: global_id (0x5676c97c) stored
[2022-06-17 08:45:09.443155] &tcon_blob: struct smbXsrv_tconB
[2022-06-17 08:45:09.444836] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:09.446345] reserved : 0x00000000 (0)
[2022-06-17 08:45:09.448084] info : union smbXsrv_tconU(case 0)
[2022-06-17 08:45:09.449726] info0 : *
[2022-06-17 08:45:09.451243] info0: struct smbXsrv_tcon
[2022-06-17 08:45:09.452739] table : *
[2022-06-17 08:45:09.454306] db_rec : NULL
[2022-06-17 08:45:09.455810] local_id : 0x5676c97c (1450625404)
[2022-06-17 08:45:09.457317] global : *
[2022-06-17 08:45:09.458806] global: struct smbXsrv_tcon_global0
[2022-06-17 08:45:09.460566] db_rec : NULL
[2022-06-17 08:45:09.462221] tcon_global_id : 0x5676c97c (1450625404)
[2022-06-17 08:45:09.463924] tcon_wire_id : 0x5676c97c (1450625404)
[2022-06-17 08:45:09.465593] server_id: struct server_id
[2022-06-17 08:45:09.467240] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:09.468894] task_id : 0x00000000 (0)
[2022-06-17 08:45:09.470532] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:09.472179] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:09.473899] creation_time : Fri Jun 17 08:45:07 2022 UTC
[2022-06-17 08:45:09.475557] share_name : NULL
[2022-06-17 08:45:09.477202] encryption_flags : 0x00 (0)
[2022-06-17 08:45:09.478854] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:09.480493] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:09.482150] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:09.483865] 0: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:09.485520] session_global_id : 0x00000000 (0)
[2022-06-17 08:45:09.487171] signing_flags : 0x00 (0)
[2022-06-17 08:45:09.488821] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:09.490463] 0: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:09.492117] 0: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:09.493814] status : NT_STATUS_INTERNAL_ERROR
[2022-06-17 08:45:09.495461] idle_time : Fri Jun 17 08:45:07 2022 UTC
[2022-06-17 08:45:09.497112] compat : NULL
[2022-06-17 08:45:09.498748] Allowed connection from 192.168.1.10 (192.168.1.10)
[2022-06-17 08:45:09.500391] string_to_sid: SID root is not in a valid format
[2022-06-17 08:45:09.502023] lookup_name: ZALUPA\root => domain=[ZALUPA], name=[root]
[2022-06-17 08:45:09.503715] lookup_name: flags = 0x073
[2022-06-17 08:45:09.505340] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:09.506968] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:09.508605] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:09.510250] Security token: (NULL)
[2022-06-17 08:45:09.511873] UNIX token of user 0
[2022-06-17 08:45:09.513535] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:09.515180] getsampwnam (smbpasswd): search by name: root
[2022-06-17 08:45:09.516825] startsmbfilepwent_internal: opening file /etc/samba/smbpasswd
[2022-06-17 08:45:09.518465] getsmbfilepwent: skipping comment or blank line
[2022-06-17 08:45:09.520098] getsmbfilepwent: LM password for user nobody invalidated
[2022-06-17 08:45:09.521725] getsmbfilepwent: returning passwd entry for user nobody, uid 0
[2022-06-17 08:45:09.523436] getsmbfilepwent: LM password for user useruser invalidated
[2022-06-17 08:45:09.525098] getsmbfilepwent: returning passwd entry for user useruser, uid 65533
[2022-06-17 08:45:09.526727] getsmbfilepwent: end of file reached.
[2022-06-17 08:45:09.528369] endsmbfilepwent_internal: closed password file.
[2022-06-17 08:45:09.530000] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:09.531625] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:09.533307] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:09.534955] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:09.536613] Security token: (NULL)
[2022-06-17 08:45:09.538229] UNIX token of user 0
[2022-06-17 08:45:09.539844] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:09.541481] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:09.543169] lookup_name: Unix User\root => domain=[Unix User], name=[root]
[2022-06-17 08:45:09.544822] lookup_name: flags = 0x073
[2022-06-17 08:45:09.546441] Finding user root
[2022-06-17 08:45:09.548060] Trying _Get_Pwnam(), username as lowercase is root
[2022-06-17 08:45:09.549701] Get_Pwnam_internals did find user [root]!
[2022-06-17 08:45:09.551341] user_ok_token: share IPC$ is ok for unix user useruser
[2022-06-17 08:45:09.563043] set_conn_connectpath: service IPC$, connectpath = /tmp
[2022-06-17 08:45:09.564946] make_connection_snum: Connect path is '/tmp' for service [IPC$]
[2022-06-17 08:45:09.566773] string_to_sid: SID root is not in a valid format
[2022-06-17 08:45:09.568446] lookup_name: ZALUPA\root => domain=[ZALUPA], name=[root]
[2022-06-17 08:45:09.570110] lookup_name: flags = 0x073
[2022-06-17 08:45:09.571746] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:09.573440] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:09.575091] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:09.579309] Security token: (NULL)
[2022-06-17 08:45:09.581028] UNIX token of user 0
[2022-06-17 08:45:09.582684] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:09.584427] getsampwnam (smbpasswd): search by name: root
[2022-06-17 08:45:09.586088] startsmbfilepwent_internal: opening file /etc/samba/smbpasswd
[2022-06-17 08:45:09.587738] getsmbfilepwent: skipping comment or blank line
[2022-06-17 08:45:09.589387] getsmbfilepwent: LM password for user nobody invalidated
[2022-06-17 08:45:09.591026] getsmbfilepwent: returning passwd entry for user nobody, uid 0
[2022-06-17 08:45:09.592683] getsmbfilepwent: LM password for user useruser invalidated
[2022-06-17 08:45:09.594400] getsmbfilepwent: returning passwd entry for user useruser, uid 65533
[2022-06-17 08:45:09.596049] getsmbfilepwent: end of file reached.
[2022-06-17 08:45:09.597692] endsmbfilepwent_internal: closed password file.
[2022-06-17 08:45:09.599349] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:09.600987] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:09.602611] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:09.604320] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:09.605966] Security token: (NULL)
[2022-06-17 08:45:09.607586] UNIX token of user 0
[2022-06-17 08:45:09.609210] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:09.610738] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:09.612475] lookup_name: Unix User\root => domain=[Unix User], name=[root]
[2022-06-17 08:45:09.614204] lookup_name: flags = 0x073
[2022-06-17 08:45:09.615828] Finding user root
[2022-06-17 08:45:09.617416] Trying _Get_Pwnam(), username as lowercase is root
[2022-06-17 08:45:09.619055] Get_Pwnam_internals did find user [root]!
[2022-06-17 08:45:09.620691] user_ok_token: share IPC$ is ok for unix user useruser
[2022-06-17 08:45:09.622333] is_share_read_only_for_user: share IPC$ is read-only for unix user useruser
[2022-06-17 08:45:09.624065] se_file_access_check: MAX desired = 0x2000000 mapped to 0x1f01ff
[2022-06-17 08:45:09.625725] Initialising default vfs hooks
[2022-06-17 08:45:09.627229] vfs_find_backend_entry called for /[Default VFS]/
[2022-06-17 08:45:09.628951] Successfully added vfs backend '/[Default VFS]/'
[2022-06-17 08:45:09.630588] vfs_find_backend_entry called for vfs_not_implemented
[2022-06-17 08:45:09.632213] Successfully added vfs backend 'vfs_not_implemented'
[2022-06-17 08:45:09.633903] Initialising custom vfs hooks from [/[Default VFS]/]
[2022-06-17 08:45:09.635570] vfs_find_backend_entry called for /[Default VFS]/
[2022-06-17 08:45:09.637220] Successfully loaded vfs module [/[Default VFS]/] with the new modules system
[2022-06-17 08:45:09.638883] set_conn_connectpath: service IPC$, connectpath = /tmp
[2022-06-17 08:45:09.640525] string_to_sid: SID root is not in a valid format
[2022-06-17 08:45:09.642155] lookup_name: ZALUPA\root => domain=[ZALUPA], name=[root]
[2022-06-17 08:45:09.643914] lookup_name: flags = 0x073
[2022-06-17 08:45:09.645557] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:09.647207] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:09.648858] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:09.650494] Security token: (NULL)
[2022-06-17 08:45:09.652104] UNIX token of user 0
[2022-06-17 08:45:09.653766] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:09.655415] getsampwnam (smbpasswd): search by name: root
[2022-06-17 08:45:09.657059] startsmbfilepwent_internal: opening file /etc/samba/smbpasswd
[2022-06-17 08:45:09.658710] getsmbfilepwent: skipping comment or blank line
[2022-06-17 08:45:09.660338] getsmbfilepwent: LM password for user nobody invalidated
[2022-06-17 08:45:09.661975] getsmbfilepwent: returning passwd entry for user nobody, uid 0
[2022-06-17 08:45:09.663688] getsmbfilepwent: LM password for user useruser invalidated
[2022-06-17 08:45:09.665349] getsmbfilepwent: returning passwd entry for user useruser, uid 65533
[2022-06-17 08:45:09.666987] getsmbfilepwent: end of file reached.
[2022-06-17 08:45:09.668614] endsmbfilepwent_internal: closed password file.
[2022-06-17 08:45:09.670251] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:09.671878] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:09.673572] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:09.675212] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:09.676850] Security token: (NULL)
[2022-06-17 08:45:09.678348] UNIX token of user 0
[2022-06-17 08:45:09.680074] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:09.681712] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:09.683395] lookup_name: Unix User\root => domain=[Unix User], name=[root]
[2022-06-17 08:45:09.685063] lookup_name: flags = 0x073
[2022-06-17 08:45:09.686684] Finding user root
[2022-06-17 08:45:09.688293] Trying _Get_Pwnam(), username as lowercase is root
[2022-06-17 08:45:09.689928] Get_Pwnam_internals did find user [root]!
[2022-06-17 08:45:09.691570] user_ok_token: share IPC$ is ok for unix user useruser
[2022-06-17 08:45:09.693336] is_share_read_only_for_user: share IPC$ is read-only for unix user useruser
[2022-06-17 08:45:09.695024] se_file_access_check: MAX desired = 0x2000000 mapped to 0x1f01ff
[2022-06-17 08:45:09.696559] setting sec ctx (65533, 65534) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:09.698305] Security token SIDs (7):
[2022-06-17 08:45:09.699910] SID[ 0]: S-1-5-21-3939785350-4027435424-1589595352-132066
[2022-06-17 08:45:09.701545] SID[ 1]: S-1-5-21-3939785350-4027435424-1589595352-513
[2022-06-17 08:45:09.703238] SID[ 2]: S-1-22-2-65534
[2022-06-17 08:45:09.704896] SID[ 3]: S-1-1-0
[2022-06-17 08:45:09.706525] SID[ 4]: S-1-5-2
[2022-06-17 08:45:09.708156] SID[ 5]: S-1-5-11
[2022-06-17 08:45:09.709775] SID[ 6]: S-1-22-1-65533
[2022-06-17 08:45:09.711389] Privileges (0x 0):
[2022-06-17 08:45:09.713051] Rights (0x 0):
[2022-06-17 08:45:09.714691] UNIX token of user 65533
[2022-06-17 08:45:09.716319] Primary group is 65534 and contains 1 supplementary groups
[2022-06-17 08:45:09.717960] Group[ 0]: 65534
[2022-06-17 08:45:09.719588] print_impersonation_info: Impersonated user: uid=(65533,65533), gid=(0,65534), cwd=[/root]
[2022-06-17 08:45:09.721240] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:09.722758] Security token: (NULL)
[2022-06-17 08:45:09.724525] UNIX token of user 0
[2022-06-17 08:45:09.726148] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:09.727784] change_to_root_user: now uid=(0,0) gid=(0,0)
[2022-06-17 08:45:09.729413] set_conn_connectpath: service IPC$, connectpath = /tmp
[2022-06-17 08:45:09.731067] vfswrap_fs_capabilities: timestamp resolution of sec available on share IPC$, directory /tmp
[2022-06-17 08:45:09.732736] linups (ipv4:192.168.1.10:33730) connect to service IPC$ initially as user useruser (uid=65533, gid=65534) (pid 9588)
[2022-06-17 08:45:09.734481] dbwrap_lock_order_lock: check lock order 1 for /var/lock/smbXsrv_tcon_global.tdb
[2022-06-17 08:45:09.736122] lock order: 1:/var/lock/smbXsrv_tcon_global.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:45:09.737762] db_tdb_log_key: Locking key 5676C97C
[2022-06-17 08:45:09.739380] db_tdb_fetch_locked_internal: Allocated locked data 0xb5444e80
[2022-06-17 08:45:09.741016] smbXsrv_tcon_global_store: key '5676C97C' stored
[2022-06-17 08:45:09.742541] &global_blob: struct smbXsrv_tcon_globalB
[2022-06-17 08:45:09.744395] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:09.746052] seqnum : 0x00000002 (2)
[2022-06-17 08:45:09.747698] info : union smbXsrv_tcon_globalU(case 0)
[2022-06-17 08:45:09.749343] info0 : *
[2022-06-17 08:45:09.750979] info0: struct smbXsrv_tcon_global0
[2022-06-17 08:45:09.752605] db_rec : *
[2022-06-17 08:45:09.754321] tcon_global_id : 0x5676c97c (1450625404)
[2022-06-17 08:45:09.755975] tcon_wire_id : 0x5676c97c (1450625404)
[2022-06-17 08:45:09.757629] server_id: struct server_id
[2022-06-17 08:45:09.759275] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:09.760925] task_id : 0x00000000 (0)
[2022-06-17 08:45:09.762565] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:09.764302] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:09.765964] creation_time : Fri Jun 17 08:45:07 2022 UTC
[2022-06-17 08:45:09.767622] share_name : 'IPC$'
[2022-06-17 08:45:09.769256] encryption_flags : 0x00 (0)
[2022-06-17 08:45:09.770900] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:09.772521] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:09.774239] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:09.775898] 0: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:09.777551] session_global_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:09.779199] signing_flags : 0x00 (0)
[2022-06-17 08:45:09.780846] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:09.782484] 0: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:09.784196] 0: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:09.785841] db_tdb_log_key: Unlocking key 5676C97C
[2022-06-17 08:45:09.787468] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/smbXsrv_tcon_global.tdb
[2022-06-17 08:45:09.789121] smbXsrv_tcon_update: global_id (0x5676c97c) stored
[2022-06-17 08:45:09.790760] &tcon_blob: struct smbXsrv_tconB
[2022-06-17 08:45:09.792398] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:09.794127] reserved : 0x00000000 (0)
[2022-06-17 08:45:09.795779] info : union smbXsrv_tconU(case 0)
[2022-06-17 08:45:09.797433] info0 : *
[2022-06-17 08:45:09.799053] info0: struct smbXsrv_tcon
[2022-06-17 08:45:09.800682] table : *
[2022-06-17 08:45:09.802316] db_rec : NULL
[2022-06-17 08:45:09.804066] local_id : 0x5676c97c (1450625404)
[2022-06-17 08:45:09.805727] global : *
[2022-06-17 08:45:09.807359] global: struct smbXsrv_tcon_global0
[2022-06-17 08:45:09.808993] db_rec : NULL
[2022-06-17 08:45:09.810504] tcon_global_id : 0x5676c97c (1450625404)
[2022-06-17 08:45:09.812147] tcon_wire_id : 0x5676c97c (1450625404)
[2022-06-17 08:45:09.813864] server_id: struct server_id
[2022-06-17 08:45:09.815527] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:09.817193] task_id : 0x00000000 (0)
[2022-06-17 08:45:09.818847] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:09.820501] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:09.822169] creation_time : Fri Jun 17 08:45:07 2022 UTC
[2022-06-17 08:45:09.823866] share_name : 'IPC$'
[2022-06-17 08:45:09.825504] encryption_flags : 0x00 (0)
[2022-06-17 08:45:09.827037] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:09.830096] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:09.836689] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:09.839108] 0: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:09.840841] session_global_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:09.842519] signing_flags : 0x00 (0)
[2022-06-17 08:45:09.844259] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:09.845925] 0: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:09.847589] 0: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:09.849238] status : NT_STATUS_OK
[2022-06-17 08:45:09.850890] idle_time : Fri Jun 17 08:45:07 2022 UTC
[2022-06-17 08:45:09.852534] compat : *
[2022-06-17 08:45:09.854271] smbd_smb2_request_done_ex: mid [3] idx[1] status[NT_STATUS_OK] body[16] dyn[no:0] at ../../source3/smbd/smb2_tcon.c:186
[2022-06-17 08:45:09.855948] smb2_set_operation_credit: smb2_set_operation_credit: requested 1, charge 1, granted 1, current possible/max 1/8192, total granted/max/low/range 8192/8192/4/8192
[2022-06-17 08:45:09.857668] signed SMB2 message
[2022-06-17 08:45:09.859292] smbd_smb2_request idx[1] of 5 vectors
[2022-06-17 08:45:09.860941] smb2_validate_sequence_number: smb2_validate_sequence_number: clearing id 4 (position 4) from bitmap
[2022-06-17 08:45:09.862610] smbd_smb2_request_dispatch: opcode[SMB2_OP_IOCTL] mid = 4
[2022-06-17 08:45:09.864343] setting sec ctx (65533, 65534) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:09.865999] Security token SIDs (7):
[2022-06-17 08:45:09.867610] SID[ 0]: S-1-5-21-3939785350-4027435424-1589595352-132066
[2022-06-17 08:45:09.869245] SID[ 1]: S-1-5-21-3939785350-4027435424-1589595352-513
[2022-06-17 08:45:09.870888] SID[ 2]: S-1-22-2-65534
[2022-06-17 08:45:09.872519] SID[ 3]: S-1-1-0
[2022-06-17 08:45:09.874230] SID[ 4]: S-1-5-2
[2022-06-17 08:45:09.875860] SID[ 5]: S-1-5-11
[2022-06-17 08:45:09.877354] SID[ 6]: S-1-22-1-65533
[2022-06-17 08:45:09.879049] Privileges (0x 0):
[2022-06-17 08:45:09.880687] Rights (0x 0):
[2022-06-17 08:45:09.882321] UNIX token of user 65533
[2022-06-17 08:45:09.884035] Primary group is 65534 and contains 1 supplementary groups
[2022-06-17 08:45:09.885683] Group[ 0]: 65534
[2022-06-17 08:45:09.887306] vfs_ChDir to /tmp
[2022-06-17 08:45:09.888918] vfs_ChDir: vfs_ChDir got /tmp
[2022-06-17 08:45:09.890548] print_impersonation_info: Impersonated user: uid=(65533,65533), gid=(0,65534), cwd=[/tmp]
[2022-06-17 08:45:09.892201] dbwrap_lock_order_lock: check lock order 1 for /var/lock/smbXsrv_tcon_global.tdb
[2022-06-17 08:45:09.893906] lock order: 1:/var/lock/smbXsrv_tcon_global.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:45:09.895696] db_tdb_log_key: Locking key 5676C97C
[2022-06-17 08:45:09.897339] db_tdb_fetch_locked_internal: Allocated locked data 0xb56bbee0
[2022-06-17 08:45:09.898987] smbXsrv_tcon_global_store: key '5676C97C' stored
[2022-06-17 08:45:09.900623] &global_blob: struct smbXsrv_tcon_globalB
[2022-06-17 08:45:09.902258] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:09.903978] seqnum : 0x00000003 (3)
[2022-06-17 08:45:09.905643] info : union smbXsrv_tcon_globalU(case 0)
[2022-06-17 08:45:09.907302] info0 : *
[2022-06-17 08:45:09.908945] info0: struct smbXsrv_tcon_global0
[2022-06-17 08:45:09.910581] db_rec : *
[2022-06-17 08:45:09.912215] tcon_global_id : 0x5676c97c (1450625404)
[2022-06-17 08:45:09.913900] tcon_wire_id : 0x5676c97c (1450625404)
[2022-06-17 08:45:09.915552] server_id: struct server_id
[2022-06-17 08:45:09.917187] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:09.918846] task_id : 0x00000000 (0)
[2022-06-17 08:45:09.920510] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:09.922162] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:09.923881] creation_time : Fri Jun 17 08:45:07 2022 UTC
[2022-06-17 08:45:09.925540] share_name : 'IPC$'
[2022-06-17 08:45:09.927183] encryption_flags : 0x08 (8)
[2022-06-17 08:45:09.928822] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:09.930453] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:09.932090] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:09.933799] 1: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:09.935461] session_global_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:09.937108] signing_flags : 0x04 (4)
[2022-06-17 08:45:09.938742] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:09.940350] 0: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:09.941872] 1: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:09.943553] db_tdb_log_key: Unlocking key 5676C97C
[2022-06-17 08:45:09.945220] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/smbXsrv_tcon_global.tdb
[2022-06-17 08:45:09.946879] smbXsrv_tcon_update: global_id (0x5676c97c) stored
[2022-06-17 08:45:09.948521] &tcon_blob: struct smbXsrv_tconB
[2022-06-17 08:45:09.950168] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:09.951805] reserved : 0x00000000 (0)
[2022-06-17 08:45:09.953499] info : union smbXsrv_tconU(case 0)
[2022-06-17 08:45:09.955150] info0 : *
[2022-06-17 08:45:09.956797] info0: struct smbXsrv_tcon
[2022-06-17 08:45:09.958429] table : *
[2022-06-17 08:45:09.959958] db_rec : NULL
[2022-06-17 08:45:09.961452] local_id : 0x5676c97c (1450625404)
[2022-06-17 08:45:09.963292] global : *
[2022-06-17 08:45:09.964947] global: struct smbXsrv_tcon_global0
[2022-06-17 08:45:09.966583] db_rec : NULL
[2022-06-17 08:45:09.968215] tcon_global_id : 0x5676c97c (1450625404)
[2022-06-17 08:45:09.969867] tcon_wire_id : 0x5676c97c (1450625404)
[2022-06-17 08:45:09.971524] server_id: struct server_id
[2022-06-17 08:45:09.973206] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:09.974876] task_id : 0x00000000 (0)
[2022-06-17 08:45:09.976526] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:09.978157] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:09.979854] creation_time : Fri Jun 17 08:45:07 2022 UTC
[2022-06-17 08:45:09.981518] share_name : 'IPC$'
[2022-06-17 08:45:09.983107] encryption_flags : 0x08 (8)
[2022-06-17 08:45:09.984878] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:09.986532] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:09.988061] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:09.989839] 1: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:09.991476] session_global_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:09.993191] signing_flags : 0x04 (4)
[2022-06-17 08:45:09.994854] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:09.996510] 0: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:09.998140] 1: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:09.999774] status : NT_STATUS_OK
[2022-06-17 08:45:10.001406] idle_time : Fri Jun 17 08:45:08 2022 UTC
[2022-06-17 08:45:10.003087] compat : *
[2022-06-17 08:45:10.004749] smbd_smb2_request_verify_creditcharge: mid 4, CreditCharge: 1, NeededCharge: 1
[2022-06-17 08:45:10.006413] smbd_smb2_ioctl: ctl_code[0x00060194] <no handle>, fnum [fsp is NULL]
[2022-06-17 08:45:10.008076] dfs_GetDFSReferral: struct dfs_GetDFSReferral
[2022-06-17 08:45:10.009708] in: struct dfs_GetDFSReferral
[2022-06-17 08:45:10.011337] req: struct dfs_GetDFSReferral_in
[2022-06-17 08:45:10.013019] max_referral_level : 0x0003 (3)
[2022-06-17 08:45:10.014671] servername : '\192.168.1.250\shr'
[2022-06-17 08:45:10.016326] parse_dfs_path: temp = |192.168.1.250\shr| after trimming \'s
[2022-06-17 08:45:10.017982] parse_dfs_path: hostname: 192.168.1.250
[2022-06-17 08:45:10.019616] parse_dfs_path: servicename: shr
[2022-06-17 08:45:10.021249] get_referred_path: |shr| in dfs path \192.168.1.250\shr is not a dfs root.
[2022-06-17 08:45:10.022942] smbd_smb2_request_ioctl_done: smbd_smb2_ioctl_recv returned 0 status NT_STATUS_NOT_FOUND
[2022-06-17 08:45:10.024620] smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_NOT_FOUND] || at ../../source3/smbd/smb2_ioctl.c:353
[2022-06-17 08:45:10.026584] smbd_smb2_request_done_ex: mid [4] idx[1] status[NT_STATUS_NOT_FOUND] body[8] dyn[yes:1] at ../../source3/smbd/smb2_server.c:3909
[2022-06-17 08:45:10.028291] smb2_set_operation_credit: smb2_set_operation_credit: requested 1, charge 1, granted 1, current possible/max 1/8192, total granted/max/low/range 8192/8192/5/8192
[2022-06-17 08:45:10.030023] smbd_smb2_request idx[1] of 5 vectors
[2022-06-17 08:45:10.031668] smb2_validate_sequence_number: smb2_validate_sequence_number: clearing id 5 (position 5) from bitmap
[2022-06-17 08:45:10.033404] smbd_smb2_request_dispatch: opcode[SMB2_OP_TDIS] mid = 5
[2022-06-17 08:45:10.035056] change_to_user_impersonate: Skipping user change - already user
[2022-06-17 08:45:10.036705] print_impersonation_info: Impersonated user: uid=(65533,65533), gid=(0,65534), cwd=[/tmp]
[2022-06-17 08:45:10.038359] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:10.039992] Security token: (NULL)
[2022-06-17 08:45:10.041608] UNIX token of user 0
[2022-06-17 08:45:10.043275] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:10.044938] change_to_root_user: now uid=(0,0) gid=(0,0)
[2022-06-17 08:45:10.046581] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:10.048210] Security token: (NULL)
[2022-06-17 08:45:10.049834] UNIX token of user 0
[2022-06-17 08:45:10.051448] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:10.053146] change_to_root_user: now uid=(0,0) gid=(0,0)
[2022-06-17 08:45:10.054811] vfs_ChDir to /tmp
[2022-06-17 08:45:10.056446] vfs_ChDir: vfs_ChDir got /tmp
[2022-06-17 08:45:10.058071] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:10.059705] Security token: (NULL)
[2022-06-17 08:45:10.061320] UNIX token of user 0
[2022-06-17 08:45:10.063206] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:10.064951] change_to_root_user: now uid=(0,0) gid=(0,0)
[2022-06-17 08:45:10.066632] linups (ipv4:192.168.1.10:33730) closed connection to service IPC$
[2022-06-17 08:45:10.068375] vfs_ChDir to /
[2022-06-17 08:45:10.070016] vfs_ChDir: vfs_ChDir got /
[2022-06-17 08:45:10.071622] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:10.073298] Security token: (NULL)
[2022-06-17 08:45:10.074928] UNIX token of user 0
[2022-06-17 08:45:10.076644] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:10.078322] change_to_root_user: now uid=(0,0) gid=(0,0)
[2022-06-17 08:45:10.079975] dbwrap_lock_order_lock: check lock order 1 for /var/lock/smbXsrv_tcon_global.tdb
[2022-06-17 08:45:10.081628] lock order: 1:/var/lock/smbXsrv_tcon_global.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:45:10.083318] db_tdb_log_key: Locking key 5676C97C
[2022-06-17 08:45:10.084955] db_tdb_fetch_locked_internal: Allocated locked data 0xb5c3ee70
[2022-06-17 08:45:10.086608] db_tdb_log_key: Unlocking key 5676C97C
[2022-06-17 08:45:10.088226] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/smbXsrv_tcon_global.tdb
[2022-06-17 08:45:10.089878] smbd_smb2_request_done_ex: mid [5] idx[1] status[NT_STATUS_OK] body[4] dyn[no:0] at ../../source3/smbd/smb2_tcon.c:560
[2022-06-17 08:45:10.091568] smb2_set_operation_credit: smb2_set_operation_credit: requested 1, charge 1, granted 1, current possible/max 1/8192, total granted/max/low/range 8192/8192/6/8192
[2022-06-17 08:45:10.093340] smbd_smb2_request idx[1] of 5 vectors
[2022-06-17 08:45:10.094993] smb2_validate_sequence_number: smb2_validate_sequence_number: clearing id 6 (position 6) from bitmap
[2022-06-17 08:45:10.096663] smbd_smb2_request_dispatch: opcode[SMB2_OP_TCON] mid = 6
[2022-06-17 08:45:10.098300] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:10.099934] Security token: (NULL)
[2022-06-17 08:45:10.101543] UNIX token of user 0
[2022-06-17 08:45:10.103216] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:10.104871] change_to_root_user: now uid=(0,0) gid=(0,0)
[2022-06-17 08:45:10.106508] smbd_smb2_tree_connect: path[\\192.168.1.250\shr] share[shr]
[2022-06-17 08:45:10.108147] dbwrap_lock_order_lock: check lock order 1 for /var/lock/smbXsrv_tcon_global.tdb
[2022-06-17 08:45:10.109800] lock order: 1:/var/lock/smbXsrv_tcon_global.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:45:10.111325] db_tdb_log_key: Locking key E48C8ACD
[2022-06-17 08:45:10.113138] db_tdb_fetch_locked_internal: Allocated locked data 0xb5f16c70
[2022-06-17 08:45:10.114809] smbXsrv_tcon_global_store: key 'E48C8ACD' stored
[2022-06-17 08:45:10.116456] &global_blob: struct smbXsrv_tcon_globalB
[2022-06-17 08:45:10.118096] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:10.119751] seqnum : 0x00000001 (1)
[2022-06-17 08:45:10.121400] info : union smbXsrv_tcon_globalU(case 0)
[2022-06-17 08:45:10.123087] info0 : *
[2022-06-17 08:45:10.124725] info0: struct smbXsrv_tcon_global0
[2022-06-17 08:45:10.126369] db_rec : *
[2022-06-17 08:45:10.128014] tcon_global_id : 0xe48c8acd (3834415821)
[2022-06-17 08:45:10.129674] tcon_wire_id : 0xe48c8acd (3834415821)
[2022-06-17 08:45:10.131309] server_id: struct server_id
[2022-06-17 08:45:10.132987] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:10.134645] task_id : 0x00000000 (0)
[2022-06-17 08:45:10.136296] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:10.137944] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:10.139598] creation_time : Fri Jun 17 08:45:08 2022 UTC
[2022-06-17 08:45:10.141234] share_name : NULL
[2022-06-17 08:45:10.142925] encryption_flags : 0x00 (0)
[2022-06-17 08:45:10.144588] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:10.146231] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:10.147880] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:10.149521] 0: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:10.151166] session_global_id : 0x00000000 (0)
[2022-06-17 08:45:10.152796] signing_flags : 0x00 (0)
[2022-06-17 08:45:10.154509] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:10.156158] 0: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:10.157797] 0: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:10.159431] db_tdb_log_key: Unlocking key E48C8ACD
[2022-06-17 08:45:10.161058] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/smbXsrv_tcon_global.tdb
[2022-06-17 08:45:10.162714] smbXsrv_tcon_create: global_id (0xe48c8acd) stored
[2022-06-17 08:45:10.164435] &tcon_blob: struct smbXsrv_tconB
[2022-06-17 08:45:10.166071] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:10.167709] reserved : 0x00000000 (0)
[2022-06-17 08:45:10.169337] info : union smbXsrv_tconU(case 0)
[2022-06-17 08:45:10.170967] info0 : *
[2022-06-17 08:45:10.172488] info0: struct smbXsrv_tcon
[2022-06-17 08:45:10.174054] table : *
[2022-06-17 08:45:10.175553] db_rec : NULL
[2022-06-17 08:45:10.177287] local_id : 0xe48c8acd (3834415821)
[2022-06-17 08:45:10.178945] global : *
[2022-06-17 08:45:10.180587] global: struct smbXsrv_tcon_global0
[2022-06-17 08:45:10.182231] db_rec : NULL
[2022-06-17 08:45:10.183912] tcon_global_id : 0xe48c8acd (3834415821)
[2022-06-17 08:45:10.185563] tcon_wire_id : 0xe48c8acd (3834415821)
[2022-06-17 08:45:10.187226] server_id: struct server_id
[2022-06-17 08:45:10.188872] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:10.190537] task_id : 0x00000000 (0)
[2022-06-17 08:45:10.192189] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:10.193886] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:10.195555] creation_time : Fri Jun 17 08:45:08 2022 UTC
[2022-06-17 08:45:10.197200] share_name : NULL
[2022-06-17 08:45:10.198846] encryption_flags : 0x00 (0)
[2022-06-17 08:45:10.200490] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:10.202139] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:10.203821] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:10.205475] 0: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:10.207134] session_global_id : 0x00000000 (0)
[2022-06-17 08:45:10.208778] signing_flags : 0x00 (0)
[2022-06-17 08:45:10.210412] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:10.212057] 0: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:10.213756] 0: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:10.215427] status : NT_STATUS_INTERNAL_ERROR
[2022-06-17 08:45:10.217230] idle_time : Fri Jun 17 08:45:08 2022 UTC
[2022-06-17 08:45:10.218916] compat : NULL
[2022-06-17 08:45:10.220565] Allowed connection from 192.168.1.10 (192.168.1.10)
[2022-06-17 08:45:10.222201] string_to_sid: SID root is not in a valid format
[2022-06-17 08:45:10.223899] lookup_name: ZALUPA\root => domain=[ZALUPA], name=[root]
[2022-06-17 08:45:10.225558] lookup_name: flags = 0x073
[2022-06-17 08:45:10.227186] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:10.228813] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:10.230435] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:10.232059] Security token: (NULL)
[2022-06-17 08:45:10.233734] UNIX token of user 0
[2022-06-17 08:45:10.235250] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:10.236760] getsampwnam (smbpasswd): search by name: root
[2022-06-17 08:45:10.238248] startsmbfilepwent_internal: opening file /etc/samba/smbpasswd
[2022-06-17 08:45:10.239739] getsmbfilepwent: skipping comment or blank line
[2022-06-17 08:45:10.241226] getsmbfilepwent: LM password for user nobody invalidated
[2022-06-17 08:45:10.242719] getsmbfilepwent: returning passwd entry for user nobody, uid 0
[2022-06-17 08:45:10.244534] getsmbfilepwent: LM password for user useruser invalidated
[2022-06-17 08:45:10.246194] getsmbfilepwent: returning passwd entry for user useruser, uid 65533
[2022-06-17 08:45:10.247846] getsmbfilepwent: end of file reached.
[2022-06-17 08:45:10.249365] endsmbfilepwent_internal: closed password file.
[2022-06-17 08:45:10.250864] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:10.252356] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:10.253949] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:10.255646] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:10.257405] Security token: (NULL)
[2022-06-17 08:45:10.259031] UNIX token of user 0
[2022-06-17 08:45:10.260545] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:10.262256] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:10.263949] lookup_name: Unix User\root => domain=[Unix User], name=[root]
[2022-06-17 08:45:10.265597] lookup_name: flags = 0x073
[2022-06-17 08:45:10.267217] Finding user root
[2022-06-17 08:45:10.268829] Trying _Get_Pwnam(), username as lowercase is root
[2022-06-17 08:45:10.270462] Get_Pwnam_internals did find user [root]!
[2022-06-17 08:45:10.272100] user_ok_token: share shr is ok for unix user useruser
[2022-06-17 08:45:10.273801] set_conn_connectpath: service shr, connectpath = /mnt/share
[2022-06-17 08:45:10.275449] make_connection_snum: Connect path is '/mnt/share/' for service [shr]
[2022-06-17 08:45:10.277101] string_to_sid: SID root is not in a valid format
[2022-06-17 08:45:10.278730] lookup_name: ZALUPA\root => domain=[ZALUPA], name=[root]
[2022-06-17 08:45:10.280358] lookup_name: flags = 0x073
[2022-06-17 08:45:10.281967] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:10.283656] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:10.285303] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:10.286957] Security token: (NULL)
[2022-06-17 08:45:10.288568] UNIX token of user 0
[2022-06-17 08:45:10.290184] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:10.291811] getsampwnam (smbpasswd): search by name: root
[2022-06-17 08:45:10.293380] startsmbfilepwent_internal: opening file /etc/samba/smbpasswd
[2022-06-17 08:45:10.295009] getsmbfilepwent: skipping comment or blank line
[2022-06-17 08:45:10.296667] getsmbfilepwent: LM password for user nobody invalidated
[2022-06-17 08:45:10.298309] getsmbfilepwent: returning passwd entry for user nobody, uid 0
[2022-06-17 08:45:10.299935] getsmbfilepwent: LM password for user useruser invalidated
[2022-06-17 08:45:10.301567] getsmbfilepwent: returning passwd entry for user useruser, uid 65533
[2022-06-17 08:45:10.303268] getsmbfilepwent: end of file reached.
[2022-06-17 08:45:10.304924] endsmbfilepwent_internal: closed password file.
[2022-06-17 08:45:10.306572] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:10.308220] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:10.309854] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:10.311485] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:10.313170] Security token: (NULL)
[2022-06-17 08:45:10.314802] UNIX token of user 0
[2022-06-17 08:45:10.316427] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:10.318063] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:10.319709] lookup_name: Unix User\root => domain=[Unix User], name=[root]
[2022-06-17 08:45:10.321362] lookup_name: flags = 0x073
[2022-06-17 08:45:10.323029] Finding user root
[2022-06-17 08:45:10.324630] Trying _Get_Pwnam(), username as lowercase is root
[2022-06-17 08:45:10.326162] Get_Pwnam_internals did find user [root]!
[2022-06-17 08:45:10.327659] user_ok_token: share shr is ok for unix user useruser
[2022-06-17 08:45:10.329163] is_share_read_only_for_user: share shr is read-write for unix user useruser
[2022-06-17 08:45:10.330672] se_file_access_check: MAX desired = 0x2000000 mapped to 0x1f01ff
[2022-06-17 08:45:10.332171] Initialising default vfs hooks
[2022-06-17 08:45:10.333734] Initialising custom vfs hooks from [/[Default VFS]/]
[2022-06-17 08:45:10.335238] vfs_find_backend_entry called for /[Default VFS]/
[2022-06-17 08:45:10.336734] Successfully loaded vfs module [/[Default VFS]/] with the new modules system
[2022-06-17 08:45:10.338392] Initialising custom vfs hooks from [io_uring]
[2022-06-17 08:45:10.339940] vfs_find_backend_entry called for io_uring
[2022-06-17 08:45:10.341451] vfs module [io_uring] not loaded - trying to load...
[2022-06-17 08:45:10.342992] load_module_absolute_path: Loading module '/usr/lib/samba/vfs/io_uring.so'
[2022-06-17 08:45:10.344518] load_module_absolute_path: Module '/usr/lib/samba/vfs/io_uring.so' loaded
[2022-06-17 08:45:10.346033] vfs_find_backend_entry called for io_uring
[2022-06-17 08:45:10.347527] Successfully added vfs backend 'io_uring'
[2022-06-17 08:45:10.349003] vfs_find_backend_entry called for io_uring
[2022-06-17 08:45:10.350491] Successfully loaded vfs module [io_uring] with the new modules system
[2022-06-17 08:45:10.351987] notify_init: notifyd=9560
[2022-06-17 08:45:10.353712] Registering messaging pointer for type 784 - private_data=0xb5bd9db0
[2022-06-17 08:45:10.355266] Registering messaging pointer for type 793 - private_data=0xb5829e80
[2022-06-17 08:45:10.356781] Registering messaging pointer for type 799 - private_data=0xb5829e80
[2022-06-17 08:45:10.358278] set_conn_connectpath: service shr, connectpath = /mnt/share
[2022-06-17 08:45:10.359766] string_to_sid: SID root is not in a valid format
[2022-06-17 08:45:10.361393] lookup_name: ZALUPA\root => domain=[ZALUPA], name=[root]
[2022-06-17 08:45:10.363436] lookup_name: flags = 0x073
[2022-06-17 08:45:10.364965] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:10.366471] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:10.368820] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:10.370588] Security token: (NULL)
[2022-06-17 08:45:10.372217] UNIX token of user 0
[2022-06-17 08:45:10.373895] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:10.375539] getsampwnam (smbpasswd): search by name: root
[2022-06-17 08:45:10.377184] startsmbfilepwent_internal: opening file /etc/samba/smbpasswd
[2022-06-17 08:45:10.378841] getsmbfilepwent: skipping comment or blank line
[2022-06-17 08:45:10.380497] getsmbfilepwent: LM password for user nobody invalidated
[2022-06-17 08:45:10.382131] getsmbfilepwent: returning passwd entry for user nobody, uid 0
[2022-06-17 08:45:10.383841] getsmbfilepwent: LM password for user useruser invalidated
[2022-06-17 08:45:10.385486] getsmbfilepwent: returning passwd entry for user useruser, uid 65533
[2022-06-17 08:45:10.387145] getsmbfilepwent: end of file reached.
[2022-06-17 08:45:10.388780] endsmbfilepwent_internal: closed password file.
[2022-06-17 08:45:10.390433] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:10.392068] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:10.393762] push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:10.395404] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:10.397045] Security token: (NULL)
[2022-06-17 08:45:10.398665] UNIX token of user 0
[2022-06-17 08:45:10.400295] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:10.401934] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:10.403624] lookup_name: Unix User\root => domain=[Unix User], name=[root]
[2022-06-17 08:45:10.405285] lookup_name: flags = 0x073
[2022-06-17 08:45:10.406905] Finding user root
[2022-06-17 08:45:10.408512] Trying _Get_Pwnam(), username as lowercase is root
[2022-06-17 08:45:10.410150] Get_Pwnam_internals did find user [root]!
[2022-06-17 08:45:10.411780] user_ok_token: share shr is ok for unix user useruser
[2022-06-17 08:45:10.413511] is_share_read_only_for_user: share shr is read-write for unix user useruser
[2022-06-17 08:45:10.415199] se_file_access_check: MAX desired = 0x2000000 mapped to 0x1f01ff
[2022-06-17 08:45:10.416868] setting sec ctx (65533, 65534) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:10.418513] Security token SIDs (7):
[2022-06-17 08:45:10.420127] SID[ 0]: S-1-5-21-3939785350-4027435424-1589595352-132066
[2022-06-17 08:45:10.421757] SID[ 1]: S-1-5-21-3939785350-4027435424-1589595352-513
[2022-06-17 08:45:10.423447] SID[ 2]: S-1-22-2-65534
[2022-06-17 08:45:10.425076] SID[ 3]: S-1-1-0
[2022-06-17 08:45:10.426698] SID[ 4]: S-1-5-2
[2022-06-17 08:45:10.428319] SID[ 5]: S-1-5-11
[2022-06-17 08:45:10.429936] SID[ 6]: S-1-22-1-65533
[2022-06-17 08:45:10.431545] Privileges (0x 0):
[2022-06-17 08:45:10.433233] Rights (0x 0):
[2022-06-17 08:45:10.434879] UNIX token of user 65533
[2022-06-17 08:45:10.436506] Primary group is 65534 and contains 1 supplementary groups
[2022-06-17 08:45:10.438140] Group[ 0]: 65534
[2022-06-17 08:45:10.439758] print_impersonation_info: Impersonated user: uid=(65533,65533), gid=(0,65534), cwd=[/]
[2022-06-17 08:45:10.441412] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:10.443113] Security token: (NULL)
[2022-06-17 08:45:10.444743] UNIX token of user 0
[2022-06-17 08:45:10.446358] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:10.447984] change_to_root_user: now uid=(0,0) gid=(0,0)
[2022-06-17 08:45:10.449627] set_conn_connectpath: service shr, connectpath = /mnt/share
[2022-06-17 08:45:10.451278] linups (ipv4:192.168.1.10:33730) connect to service shr initially as user useruser (uid=65533, gid=65534) (pid 9588)
[2022-06-17 08:45:10.453007] dbwrap_lock_order_lock: check lock order 1 for /var/lock/smbXsrv_tcon_global.tdb
[2022-06-17 08:45:10.454686] lock order: 1:/var/lock/smbXsrv_tcon_global.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:45:10.456343] db_tdb_log_key: Locking key E48C8ACD
[2022-06-17 08:45:10.457967] db_tdb_fetch_locked_internal: Allocated locked data 0xb56bbeb0
[2022-06-17 08:45:10.459628] smbXsrv_tcon_global_store: key 'E48C8ACD' stored
[2022-06-17 08:45:10.461264] &global_blob: struct smbXsrv_tcon_globalB
[2022-06-17 08:45:10.462987] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:10.464718] seqnum : 0x00000002 (2)
[2022-06-17 08:45:10.466376] info : union smbXsrv_tcon_globalU(case 0)
[2022-06-17 08:45:10.468026] info0 : *
[2022-06-17 08:45:10.469661] info0: struct smbXsrv_tcon_global0
[2022-06-17 08:45:10.471300] db_rec : *
[2022-06-17 08:45:10.472988] tcon_global_id : 0xe48c8acd (3834415821)
[2022-06-17 08:45:10.474661] tcon_wire_id : 0xe48c8acd (3834415821)
[2022-06-17 08:45:10.476325] server_id: struct server_id
[2022-06-17 08:45:10.477968] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:10.479608] task_id : 0x00000000 (0)
[2022-06-17 08:45:10.481246] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:10.482922] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:10.484605] creation_time : Fri Jun 17 08:45:08 2022 UTC
[2022-06-17 08:45:10.486268] share_name : 'shr'
[2022-06-17 08:45:10.487925] encryption_flags : 0x00 (0)
[2022-06-17 08:45:10.489576] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:10.491208] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:10.492844] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:10.494542] 0: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:10.496198] session_global_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:10.497842] signing_flags : 0x00 (0)
[2022-06-17 08:45:10.499506] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:10.501144] 0: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:10.502799] 0: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:10.504504] db_tdb_log_key: Unlocking key E48C8ACD
[2022-06-17 08:45:10.506142] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/smbXsrv_tcon_global.tdb
[2022-06-17 08:45:10.507786] smbXsrv_tcon_update: global_id (0xe48c8acd) stored
[2022-06-17 08:45:10.509428] &tcon_blob: struct smbXsrv_tconB
[2022-06-17 08:45:10.511054] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:10.512711] reserved : 0x00000000 (0)
[2022-06-17 08:45:10.514432] info : union smbXsrv_tconU(case 0)
[2022-06-17 08:45:10.516086] info0 : *
[2022-06-17 08:45:10.517710] info0: struct smbXsrv_tcon
[2022-06-17 08:45:10.519330] table : *
[2022-06-17 08:45:10.520963] db_rec : NULL
[2022-06-17 08:45:10.522607] local_id : 0xe48c8acd (3834415821)
[2022-06-17 08:45:10.524352] global : *
[2022-06-17 08:45:10.526003] global: struct smbXsrv_tcon_global0
[2022-06-17 08:45:10.527655] db_rec : NULL
[2022-06-17 08:45:10.529306] tcon_global_id : 0xe48c8acd (3834415821)
[2022-06-17 08:45:10.530957] tcon_wire_id : 0xe48c8acd (3834415821)
[2022-06-17 08:45:10.532612] server_id: struct server_id
[2022-06-17 08:45:10.534332] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:10.536008] task_id : 0x00000000 (0)
[2022-06-17 08:45:10.537647] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:10.539302] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:10.540976] creation_time : Fri Jun 17 08:45:08 2022 UTC
[2022-06-17 08:45:10.542635] share_name : 'shr'
[2022-06-17 08:45:10.544360] encryption_flags : 0x00 (0)
[2022-06-17 08:45:10.546018] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:10.547673] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:10.549329] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:10.550970] 0: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:10.552605] session_global_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:10.554338] signing_flags : 0x00 (0)
[2022-06-17 08:45:10.556008] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:10.557656] 0: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:10.559316] 0: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:10.560972] status : NT_STATUS_OK
[2022-06-17 08:45:10.562626] idle_time : Fri Jun 17 08:45:08 2022 UTC
[2022-06-17 08:45:10.564353] compat : *
[2022-06-17 08:45:10.566002] smbd_smb2_request_done_ex: mid [6] idx[1] status[NT_STATUS_OK] body[16] dyn[no:0] at ../../source3/smbd/smb2_tcon.c:186
[2022-06-17 08:45:10.567774] smb2_set_operation_credit: smb2_set_operation_credit: requested 1, charge 1, granted 1, current possible/max 1/8192, total granted/max/low/range 8192/8192/7/8192
[2022-06-17 08:45:10.569516] signed SMB2 message
[2022-06-17 08:45:10.571150] smbd_smb2_request idx[1] of 5 vectors
[2022-06-17 08:45:10.572914] smb2_validate_sequence_number: smb2_validate_sequence_number: clearing id 7 (position 7) from bitmap
[2022-06-17 08:45:10.574638] smbd_smb2_request_dispatch: opcode[SMB2_OP_CREATE] mid = 7
[2022-06-17 08:45:10.576304] setting sec ctx (65533, 65534) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:10.577946] Security token SIDs (7):
[2022-06-17 08:45:10.579557] SID[ 0]: S-1-5-21-3939785350-4027435424-1589595352-132066
[2022-06-17 08:45:10.581200] SID[ 1]: S-1-5-21-3939785350-4027435424-1589595352-513
[2022-06-17 08:45:10.582837] SID[ 2]: S-1-22-2-65534
[2022-06-17 08:45:10.584546] SID[ 3]: S-1-1-0
[2022-06-17 08:45:10.586176] SID[ 4]: S-1-5-2
[2022-06-17 08:45:10.587794] SID[ 5]: S-1-5-11
[2022-06-17 08:45:10.589406] SID[ 6]: S-1-22-1-65533
[2022-06-17 08:45:10.591010] Privileges (0x 0):
[2022-06-17 08:45:10.592646] Rights (0x 0):
[2022-06-17 08:45:10.594359] UNIX token of user 65533
[2022-06-17 08:45:10.595982] Primary group is 65534 and contains 1 supplementary groups
[2022-06-17 08:45:10.597634] Group[ 0]: 65534
[2022-06-17 08:45:10.599263] vfs_ChDir to /mnt/share
[2022-06-17 08:45:10.600767] vfs_ChDir: vfs_ChDir got /mnt/share
[2022-06-17 08:45:10.602260] print_impersonation_info: Impersonated user: uid=(65533,65533), gid=(0,65534), cwd=[/mnt/share]
[2022-06-17 08:45:10.604110] dbwrap_lock_order_lock: check lock order 1 for /var/lock/smbXsrv_tcon_global.tdb
[2022-06-17 08:45:10.605774] lock order: 1:/var/lock/smbXsrv_tcon_global.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:45:10.607419] db_tdb_log_key: Locking key E48C8ACD
[2022-06-17 08:45:10.609065] db_tdb_fetch_locked_internal: Allocated locked data 0xb54a5e80
[2022-06-17 08:45:10.610711] smbXsrv_tcon_global_store: key 'E48C8ACD' stored
[2022-06-17 08:45:10.612350] &global_blob: struct smbXsrv_tcon_globalB
[2022-06-17 08:45:10.614081] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:10.615712] seqnum : 0x00000003 (3)
[2022-06-17 08:45:10.617333] info : union smbXsrv_tcon_globalU(case 0)
[2022-06-17 08:45:10.618981] info0 : *
[2022-06-17 08:45:10.620624] info0: struct smbXsrv_tcon_global0
[2022-06-17 08:45:10.622271] db_rec : *
[2022-06-17 08:45:10.624037] tcon_global_id : 0xe48c8acd (3834415821)
[2022-06-17 08:45:10.625691] tcon_wire_id : 0xe48c8acd (3834415821)
[2022-06-17 08:45:10.627346] server_id: struct server_id
[2022-06-17 08:45:10.628988] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:10.630631] task_id : 0x00000000 (0)
[2022-06-17 08:45:10.632276] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:10.633992] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:10.635665] creation_time : Fri Jun 17 08:45:08 2022 UTC
[2022-06-17 08:45:10.637318] share_name : 'shr'
[2022-06-17 08:45:10.638960] encryption_flags : 0x08 (8)
[2022-06-17 08:45:10.640595] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:10.642243] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:10.643803] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:10.645546] 1: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:10.647202] session_global_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:10.648837] signing_flags : 0x04 (4)
[2022-06-17 08:45:10.650461] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:10.652095] 0: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:10.653797] 1: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:10.655455] db_tdb_log_key: Unlocking key E48C8ACD
[2022-06-17 08:45:10.657088] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/smbXsrv_tcon_global.tdb
[2022-06-17 08:45:10.658755] smbXsrv_tcon_update: global_id (0xe48c8acd) stored
[2022-06-17 08:45:10.660393] &tcon_blob: struct smbXsrv_tconB
[2022-06-17 08:45:10.662022] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:10.663708] reserved : 0x00000000 (0)
[2022-06-17 08:45:10.665357] info : union smbXsrv_tconU(case 0)
[2022-06-17 08:45:10.667002] info0 : *
[2022-06-17 08:45:10.668648] info0: struct smbXsrv_tcon
[2022-06-17 08:45:10.670290] table : *
[2022-06-17 08:45:10.671937] db_rec : NULL
[2022-06-17 08:45:10.673631] local_id : 0xe48c8acd (3834415821)
[2022-06-17 08:45:10.675279] global : *
[2022-06-17 08:45:10.676911] global: struct smbXsrv_tcon_global0
[2022-06-17 08:45:10.678544] db_rec : NULL
[2022-06-17 08:45:10.680172] tcon_global_id : 0xe48c8acd (3834415821)
[2022-06-17 08:45:10.681822] tcon_wire_id : 0xe48c8acd (3834415821)
[2022-06-17 08:45:10.683516] server_id: struct server_id
[2022-06-17 08:45:10.685171] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:10.686821] task_id : 0x00000000 (0)
[2022-06-17 08:45:10.688468] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:10.690120] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:10.691783] creation_time : Fri Jun 17 08:45:08 2022 UTC
[2022-06-17 08:45:10.693500] share_name : 'shr'
[2022-06-17 08:45:10.695287] encryption_flags : 0x08 (8)
[2022-06-17 08:45:10.696937] 0: SMBXSRV_ENCRYPTION_REQUIRED
[2022-06-17 08:45:10.698600] 0: SMBXSRV_ENCRYPTION_DESIRED
[2022-06-17 08:45:10.700251] 0: SMBXSRV_PROCESSED_ENCRYPTED_PACKET
[2022-06-17 08:45:10.701896] 1: SMBXSRV_PROCESSED_UNENCRYPTED_PACKET
[2022-06-17 08:45:10.703588] session_global_id : 0x6f1a4b46 (1863994182)
[2022-06-17 08:45:10.705253] signing_flags : 0x04 (4)
[2022-06-17 08:45:10.706892] 0: SMBXSRV_SIGNING_REQUIRED
[2022-06-17 08:45:10.708541] 0: SMBXSRV_PROCESSED_SIGNED_PACKET
[2022-06-17 08:45:10.710186] 1: SMBXSRV_PROCESSED_UNSIGNED_PACKET
[2022-06-17 08:45:10.711836] status : NT_STATUS_OK
[2022-06-17 08:45:10.713516] idle_time : Fri Jun 17 08:45:09 2022 UTC
[2022-06-17 08:45:10.715172] compat : *
[2022-06-17 08:45:10.716815] smbd_smb2_create_send: name []
[2022-06-17 08:45:10.718460] smbd_smb2_create_send: open execution phase
[2022-06-17 08:45:10.720091] unix_convert: Called on file []
[2022-06-17 08:45:10.721719] unix_convert: conversion finished [] -> [.]
[2022-06-17 08:45:10.723402] unix_convert: Conversion finished [] -> [.]
[2022-06-17 08:45:10.725044] is_in_path: .
[2022-06-17 08:45:10.726645] is_in_path: match not found
[2022-06-17 08:45:10.728256] check_reduced_name: check_reduced_name [.] [/mnt/share]
[2022-06-17 08:45:10.729896] check_reduced_name realpath [.] -> [/mnt/share]
[2022-06-17 08:45:10.731546] check_reduced_name: . reduced to /mnt/share
[2022-06-17 08:45:10.733231] openat_pathref_fsp: smb_fname [.]
[2022-06-17 08:45:10.734880] fsp_new: allocated files structure (1 used)
[2022-06-17 08:45:10.736508] file_name_hash: /mnt/share/. hash 0x7a8d2120
[2022-06-17 08:45:10.738131] check_reduced_name: check_reduced_name [.] [/mnt/share]
[2022-06-17 08:45:10.739776] check_reduced_name realpath [.] -> [/mnt/share]
[2022-06-17 08:45:10.741418] check_reduced_name: . reduced to /mnt/share
[2022-06-17 08:45:10.743100] fd_openat: name ., flags = 040000 mode = 00, fd = 39
[2022-06-17 08:45:10.744751] openat_pathref_fsp: fsp [.]: OK
[2022-06-17 08:45:10.746376] create_file_default: create_file: access_mask = 0x80 file_attributes = 0x10, share_access = 0x7, create_disposition = 0x1 create_options = 0x1 oplock_request = 0x0 private_flags = 0x0 ea_list = 0, sd = 0, fname = .
[2022-06-17 08:45:10.748093] create_file_unixpath: create_file_unixpath: access_mask = 0x80 file_attributes = 0x10, share_access = 0x7, create_disposition = 0x1 create_options = 0x1 oplock_request = 0x0 private_flags = 0x0 ea_list = 0, sd = 0, fname = .
[2022-06-17 08:45:10.749843] dbwrap_lock_order_lock: check lock order 1 for /var/lock/smbXsrv_open_global.tdb
[2022-06-17 08:45:10.751509] lock order: 1:/var/lock/smbXsrv_open_global.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:45:10.753224] db_tdb_log_key: Locking key 3C9AF004
[2022-06-17 08:45:10.754893] db_tdb_fetch_locked_internal: Allocated locked data 0xb5896d90
[2022-06-17 08:45:10.756534] smbXsrv_open_global_verify_record: empty value
[2022-06-17 08:45:10.758178] smbXsrv_open_global_store: key '3C9AF004' stored
[2022-06-17 08:45:10.759810] &global_blob: struct smbXsrv_open_globalB
[2022-06-17 08:45:10.761441] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:10.763114] seqnum : 0x00000001 (1)
[2022-06-17 08:45:10.764758] info : union smbXsrv_open_globalU(case 0)
[2022-06-17 08:45:10.766416] info0 : *
[2022-06-17 08:45:10.768060] info0: struct smbXsrv_open_global0
[2022-06-17 08:45:10.769699] db_rec : *
[2022-06-17 08:45:10.771329] server_id: struct server_id
[2022-06-17 08:45:10.772992] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:10.774660] task_id : 0x00000000 (0)
[2022-06-17 08:45:10.776308] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:10.777961] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:10.779614] open_global_id : 0x3c9af004 (1016786948)
[2022-06-17 08:45:10.781249] open_persistent_id : 0x000000003c9af004 (1016786948)
[2022-06-17 08:45:10.782944] open_volatile_id : 0x000000002b604d9e (727731614)
[2022-06-17 08:45:10.784613] open_owner : S-1-5-21-3939785350-4027435424-1589595352-132066
[2022-06-17 08:45:10.786267] open_time : Fri Jun 17 08:45:09 2022 UTC
[2022-06-17 08:45:10.787929] create_guid : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:45:10.789580] client_guid : 81388492-5b34-419d-9462-792b3b27d8b4
[2022-06-17 08:45:10.791235] app_instance_id : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:45:10.792930] disconnect_time : NTTIME(0)
[2022-06-17 08:45:10.794592] durable_timeout_msec : 0x00000000 (0)
[2022-06-17 08:45:10.796229] durable : 0x00 (0)
[2022-06-17 08:45:10.797867] backend_cookie : DATA_BLOB length=0
[2022-06-17 08:45:10.799517] channel_sequence : 0x0000 (0)
[2022-06-17 08:45:10.801140] channel_generation : 0x0000000000000000 (0)
[2022-06-17 08:45:10.802782] lock_sequence_array: ARRAY(64)
[2022-06-17 08:45:10.804488] [0000] FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF ........ ........
[2022-06-17 08:45:10.806227] [0010] FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF ........ ........
[2022-06-17 08:45:10.807904] [0020] FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF ........ ........
[2022-06-17 08:45:10.809564] [0030] FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF ........ ........
[2022-06-17 08:45:10.811228] db_tdb_log_key: Unlocking key 3C9AF004
[2022-06-17 08:45:10.812850] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/smbXsrv_open_global.tdb
[2022-06-17 08:45:10.814567] smbXsrv_open_create: global_id (0x3c9af004) stored
[2022-06-17 08:45:10.816219] &open_blob: struct smbXsrv_openB
[2022-06-17 08:45:10.817855] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:10.819479] reserved : 0x00000000 (0)
[2022-06-17 08:45:10.821115] info : union smbXsrv_openU(case 0)
[2022-06-17 08:45:10.822746] info0 : *
[2022-06-17 08:45:10.824442] info0: struct smbXsrv_open
[2022-06-17 08:45:10.826079] table : *
[2022-06-17 08:45:10.827722] db_rec : NULL
[2022-06-17 08:45:10.829368] local_id : 0x2b604d9e (727731614)
[2022-06-17 08:45:10.831019] global : *
[2022-06-17 08:45:10.832655] global: struct smbXsrv_open_global0
[2022-06-17 08:45:10.834354] db_rec : NULL
[2022-06-17 08:45:10.836001] server_id: struct server_id
[2022-06-17 08:45:10.837632] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:10.839303] task_id : 0x00000000 (0)
[2022-06-17 08:45:10.840955] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:10.842610] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:10.844346] open_global_id : 0x3c9af004 (1016786948)
[2022-06-17 08:45:10.845999] open_persistent_id : 0x000000003c9af004 (1016786948)
[2022-06-17 08:45:10.847654] open_volatile_id : 0x000000002b604d9e (727731614)
[2022-06-17 08:45:10.849279] open_owner : S-1-5-21-3939785350-4027435424-1589595352-132066
[2022-06-17 08:45:10.850949] open_time : Fri Jun 17 08:45:09 2022 UTC
[2022-06-17 08:45:10.852618] create_guid : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:45:10.854359] client_guid : 81388492-5b34-419d-9462-792b3b27d8b4
[2022-06-17 08:45:10.856025] app_instance_id : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:45:10.857683] disconnect_time : NTTIME(0)
[2022-06-17 08:45:10.859324] durable_timeout_msec : 0x00000000 (0)
[2022-06-17 08:45:10.860975] durable : 0x00 (0)
[2022-06-17 08:45:10.862612] backend_cookie : DATA_BLOB length=0
[2022-06-17 08:45:10.864337] channel_sequence : 0x0000 (0)
[2022-06-17 08:45:10.865993] channel_generation : 0x0000000000000000 (0)
[2022-06-17 08:45:10.867668] lock_sequence_array: ARRAY(64)
[2022-06-17 08:45:10.869305] [0000] FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF ........ ........
[2022-06-17 08:45:10.870948] [0010] FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF ........ ........
[2022-06-17 08:45:10.872588] [0020] FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF ........ ........
[2022-06-17 08:45:10.874328] [0030] FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF ........ ........
[2022-06-17 08:45:10.875995] status : NT_STATUS_OK
[2022-06-17 08:45:10.877526] idle_time : Fri Jun 17 08:45:09 2022 UTC
[2022-06-17 08:45:10.879299] compat : NULL
[2022-06-17 08:45:10.880941] flags : 0x00 (0)
[2022-06-17 08:45:10.882570] 0: SMBXSRV_OPEN_NEED_REPLAY_CACHE
[2022-06-17 08:45:10.884278] 0: SMBXSRV_OPEN_HAVE_REPLAY_CACHE
[2022-06-17 08:45:10.885930] create_action : 0x00000000 (0)
[2022-06-17 08:45:10.887574] request_count : 0x0000000000000000 (0)
[2022-06-17 08:45:10.889228] pre_request_count : 0x0000000000000000 (0)
[2022-06-17 08:45:10.890868] fsp_bind_smb: fsp [.] mid [7]
[2022-06-17 08:45:10.892501] open_directory: opening directory ., access_mask = 0x80, share_access = 0x7 create_options = 0x1, create_disposition = 0x1, file_attributes = 0x10
[2022-06-17 08:45:10.894273] posix_get_nt_acl: called for file .
[2022-06-17 08:45:10.895783] push_sec_ctx(65533, 65534) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:10.897557] push_conn_ctx(1863994182) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:10.899192] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:10.900844] Security token: (NULL)
[2022-06-17 08:45:10.902471] UNIX token of user 0
[2022-06-17 08:45:10.904148] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:10.905778] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
[2022-06-17 08:45:10.907417] push_conn_ctx(1863994182) : conn_ctx_stack_ndx = 1
[2022-06-17 08:45:10.908924] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
[2022-06-17 08:45:10.910423] Security token: (NULL)
[2022-06-17 08:45:10.912058] UNIX token of user 0
[2022-06-17 08:45:10.913852] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:10.915512] getsampwnam (smbpasswd): search by name: root
[2022-06-17 08:45:10.917142] startsmbfilepwent_internal: opening file /etc/samba/smbpasswd
[2022-06-17 08:45:10.918769] getsmbfilepwent: skipping comment or blank line
[2022-06-17 08:45:10.920421] getsmbfilepwent: LM password for user nobody invalidated
[2022-06-17 08:45:10.922062] getsmbfilepwent: returning passwd entry for user nobody, uid 0
[2022-06-17 08:45:10.923796] getsmbfilepwent: LM password for user useruser invalidated
[2022-06-17 08:45:10.925480] getsmbfilepwent: returning passwd entry for user useruser, uid 65533
[2022-06-17 08:45:10.927158] getsmbfilepwent: end of file reached.
[2022-06-17 08:45:10.928809] endsmbfilepwent_internal: closed password file.
[2022-06-17 08:45:10.930460] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:10.932080] pdb_default_uid_to_sid: Did not find user root (0)
[2022-06-17 08:45:10.933779] pop_sec_ctx (65533, 65534) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:10.935433] xid_to_sid: UID 0 -> S-1-22-1-0 fallback
[2022-06-17 08:45:10.937087] push_sec_ctx(65533, 65534) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:10.938733] push_conn_ctx(1863994182) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:10.940381] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:10.942010] Security token: (NULL)
[2022-06-17 08:45:10.943555] UNIX token of user 0
[2022-06-17 08:45:10.945255] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:10.946896] pop_sec_ctx (65533, 65534) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:10.948532] xid_to_sid: GID 0 -> S-1-22-2-0 fallback
[2022-06-17 08:45:10.950172] canonicalise_acl: Access ace entries before arrange :
[2022-06-17 08:45:10.951807] canon_ace index 0. Type = allow SID = S-1-1-0 other SMB_ACL_OTHER ace_flags = 0x0 perms r-x
[2022-06-17 08:45:10.953521] canon_ace index 1. Type = allow SID = S-1-22-2-0 gid 0 SMB_ACL_GROUP_OBJ ace_flags = 0x0 perms r-x
[2022-06-17 08:45:10.955198] canon_ace index 2. Type = allow SID = S-1-22-1-0 uid 0 SMB_ACL_USER_OBJ ace_flags = 0x0 perms rwx
[2022-06-17 08:45:10.956875] print_canon_ace_list: canonicalise_acl: ace entries after arrange
[2022-06-17 08:45:10.958523] canon_ace index 0. Type = allow SID = S-1-22-1-0 uid 0 SMB_ACL_USER_OBJ ace_flags = 0x0 perms rwx
[2022-06-17 08:45:10.960195] canon_ace index 1. Type = allow SID = S-1-22-2-0 gid 0 SMB_ACL_GROUP_OBJ ace_flags = 0x0 perms r-x
[2022-06-17 08:45:10.961875] canon_ace index 2. Type = allow SID = S-1-1-0 other SMB_ACL_OTHER ace_flags = 0x0 perms r-x
[2022-06-17 08:45:10.963595] map_canon_ace_perms: Mapped (UNIX) 1c0 to (NT) 1f01ff
[2022-06-17 08:45:10.965251] map_canon_ace_perms: Mapped (UNIX) 140 to (NT) 1200a9
[2022-06-17 08:45:10.966905] map_canon_ace_perms: Mapped (UNIX) 140 to (NT) 1200a9
[2022-06-17 08:45:10.968544] smbd_check_access_rights_sd: File [.] requesting [0x80] returning [0x0] (NT_STATUS_OK)
[2022-06-17 08:45:10.970196] delete_lock_ref_count for file .
[2022-06-17 08:45:10.971826] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:45:10.973519] dbwrap_watched_do_locked: dbwrap_watched_do_locked_fn returned NT_STATUS_OK
[2022-06-17 08:45:10.975188] dbwrap_lock_order_lock: check lock order 1 for /var/lock/locking.tdb
[2022-06-17 08:45:10.976844] lock order: 1:/var/lock/locking.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:45:10.978479] find_delete_on_close_token: name_hash = 0x7a8d2120
[2022-06-17 08:45:10.980115] set_share_mode: num_share_modes=0
[2022-06-17 08:45:10.981756] share_mode_entry_put: share_mode_entry:
[2022-06-17 08:45:10.983437] discard_const_p(void, e): struct share_mode_entry
[2022-06-17 08:45:10.985096] pid: struct server_id
[2022-06-17 08:45:10.986750] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:10.988394] task_id : 0x00000000 (0)
[2022-06-17 08:45:10.990037] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:10.991677] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:10.993370] op_mid : 0x0000000000000007 (7)
[2022-06-17 08:45:10.995029] op_type : 0x0000 (0)
[2022-06-17 08:45:10.996678] client_guid : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:45:10.998339] lease_key: struct smb2_lease_key
[2022-06-17 08:45:10.999993] data: ARRAY(2)
[2022-06-17 08:45:11.001626] data : 0x0000000000000000 (0)
[2022-06-17 08:45:11.003340] data : 0x0000000000000000 (0)
[2022-06-17 08:45:11.005002] access_mask : 0x00000080 (128)
[2022-06-17 08:45:11.006650] share_access : 0x00000007 (7)
[2022-06-17 08:45:11.008286] private_options : 0x00000000 (0)
[2022-06-17 08:45:11.009952] time : Fri Jun 17 08:45:08 2022 UTC.757865
[2022-06-17 08:45:11.011605] share_file_id : 0x0000000000000002 (2)
[2022-06-17 08:45:11.013300] uid : 0x0000fffd (65533)
[2022-06-17 08:45:11.014942] flags : 0x0000 (0)
[2022-06-17 08:45:11.016466] name_hash : 0x7a8d2120 (2056069408)
[2022-06-17 08:45:11.017959] stale : 0x00 (0)
[2022-06-17 08:45:11.019675] set_share_mode: idx=0, found=0
[2022-06-17 08:45:11.021299] set_share_mode: dbufs[0]=(0xbed70290, 132)
[2022-06-17 08:45:11.022972] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:45:11.024633] dbwrap_watched_do_locked: dbwrap_watched_do_locked_fn returned NT_STATUS_OK
[2022-06-17 08:45:11.026293] share_mode_data_store:
[2022-06-17 08:45:11.027783] d: struct share_mode_data
[2022-06-17 08:45:11.029488] unique_content_epoch : 0x18806ab16114c443 (1765528363999740995)
[2022-06-17 08:45:11.031143] flags : 0x01c0 (448)
[2022-06-17 08:45:11.032665] 1: SHARE_MODE_SHARE_DELETE
[2022-06-17 08:45:11.034225] 1: SHARE_MODE_SHARE_WRITE
[2022-06-17 08:45:11.035738] 1: SHARE_MODE_SHARE_READ
[2022-06-17 08:45:11.037228] 0: SHARE_MODE_ACCESS_DELETE
[2022-06-17 08:45:11.038800] 0: SHARE_MODE_ACCESS_WRITE
[2022-06-17 08:45:11.040314] 0: SHARE_MODE_ACCESS_READ
[2022-06-17 08:45:11.041810] 0: SHARE_MODE_LEASE_HANDLE
[2022-06-17 08:45:11.043597] 0: SHARE_MODE_LEASE_WRITE
[2022-06-17 08:45:11.045278] 0: SHARE_MODE_LEASE_READ
[2022-06-17 08:45:11.046813] servicepath : *
[2022-06-17 08:45:11.048476] servicepath : '/mnt/share'
[2022-06-17 08:45:11.050131] base_name : *
[2022-06-17 08:45:11.051891] base_name : '.'
[2022-06-17 08:45:11.053578] stream_name : NULL
[2022-06-17 08:45:11.055106] num_delete_tokens : 0x00000000 (0)
[2022-06-17 08:45:11.056844] delete_tokens: ARRAY(0)
[2022-06-17 08:45:11.058370] old_write_time : NTTIME(0)
[2022-06-17 08:45:11.060127] changed_write_time : NTTIME(0)
[2022-06-17 08:45:11.061644] fresh : 0x01 (1)
[2022-06-17 08:45:11.063187] modified : 0x01 (1)
[2022-06-17 08:45:11.064691] id: struct file_id
[2022-06-17 08:45:11.066410] devid : 0x0000000000000012 (18)
[2022-06-17 08:45:11.068078] inode : 0x0000000000000045 (69)
[2022-06-17 08:45:11.069731] extid : 0x0000000000000000 (0)
[2022-06-17 08:45:11.071380] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:45:11.073067] dbwrap_watched_do_locked: dbwrap_watched_do_locked_fn returned NT_STATUS_OK
[2022-06-17 08:45:11.074736] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:45:11.076524] dbwrap_watched_do_locked: dbwrap_watched_do_locked_fn returned NT_STATUS_OK
[2022-06-17 08:45:11.078193] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/locking.tdb
[2022-06-17 08:45:11.079845] share_mode_memcache_store: stored entry for file . epoch 18806ab16114c445 key 18:69:0
[2022-06-17 08:45:11.081498] create_file_unixpath: info=1
[2022-06-17 08:45:11.083185] create_file: info=1
[2022-06-17 08:45:11.084821] smbd_smb2_create_send: response construction phase
[2022-06-17 08:45:11.086462] fdos_mode: .
[2022-06-17 08:45:11.088075] fget_ea_dos_attribute: Cannot get attribute from EA on file .: Error = No data available
[2022-06-17 08:45:11.089726] dos_mode_debug_print: fdos_mode returning (0x10): "d"
[2022-06-17 08:45:11.091368] smbd_smb2_create_finish: . - fnum 727731614
[2022-06-17 08:45:11.093049] smbd_smb2_request_done_ex: mid [7] idx[1] status[NT_STATUS_OK] body[88] dyn[yes:0] at ../../source3/smbd/smb2_create.c:405
[2022-06-17 08:45:11.094748] smb2_set_operation_credit: smb2_set_operation_credit: requested 1, charge 1, granted 1, current possible/max 1/8192, total granted/max/low/range 8192/8192/8/8192
[2022-06-17 08:45:11.096472] smbd_smb2_request idx[1] of 5 vectors
[2022-06-17 08:45:11.098111] smb2_validate_sequence_number: smb2_validate_sequence_number: clearing id 8 (position 8) from bitmap
[2022-06-17 08:45:11.099770] smbd_smb2_request_dispatch: opcode[SMB2_OP_GETINFO] mid = 8
[2022-06-17 08:45:11.101402] change_to_user_impersonate: Skipping user change - already user
[2022-06-17 08:45:11.103104] vfs_ChDir to /mnt/share
[2022-06-17 08:45:11.104773] vfs_ChDir: vfs_ChDir got /mnt/share
[2022-06-17 08:45:11.106425] print_impersonation_info: Impersonated user: uid=(65533,65533), gid=(0,65534), cwd=[/mnt/share]
[2022-06-17 08:45:11.108092] smbd_smb2_request_verify_creditcharge: mid 8, CreditCharge: 1, NeededCharge: 1
[2022-06-17 08:45:11.109752] smbd_smb2_getinfo_send: . - fnum 727731614
[2022-06-17 08:45:11.111387] smbd_do_qfsinfo: level = 1005
[2022-06-17 08:45:11.113059] smbd_smb2_request_done_ex: mid [8] idx[1] status[NT_STATUS_OK] body[8] dyn[yes:20] at ../../source3/smbd/smb2_getinfo.c:206
[2022-06-17 08:45:11.114752] smb2_set_operation_credit: smb2_set_operation_credit: requested 1, charge 1, granted 1, current possible/max 1/8192, total granted/max/low/range 8192/8192/9/8192
[2022-06-17 08:45:11.116468] smbd_smb2_request idx[1] of 5 vectors
[2022-06-17 08:45:11.118125] smb2_validate_sequence_number: smb2_validate_sequence_number: clearing id 9 (position 9) from bitmap
[2022-06-17 08:45:11.119799] smbd_smb2_request_dispatch: opcode[SMB2_OP_CLOSE] mid = 9
[2022-06-17 08:45:11.121444] change_to_user_impersonate: Skipping user change - already user
[2022-06-17 08:45:11.123137] print_impersonation_info: Impersonated user: uid=(65533,65533), gid=(0,65534), cwd=[/mnt/share]
[2022-06-17 08:45:11.124821] smbd_smb2_close: . - fnum 727731614
[2022-06-17 08:45:11.126463] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:45:11.128094] dbwrap_watched_do_locked: dbwrap_watched_do_locked_fn returned NT_STATUS_OK
[2022-06-17 08:45:11.129747] dbwrap_lock_order_lock: check lock order 1 for /var/lock/locking.tdb
[2022-06-17 08:45:11.131402] lock order: 1:/var/lock/locking.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:45:11.133117] share_mode_memcache_fetch: fetched entry for file . epoch 18806ab16114c445 key 18:69:0
[2022-06-17 08:45:11.134786] find_delete_on_close_token: name_hash = 0x7a8d2120
[2022-06-17 08:45:11.136420] share_mode_entry_do: num_share_modes=1
[2022-06-17 08:45:11.138056] share_mode_entry_find: left=0, right=0, middle=0, middle_ptr=0xb5165e62
[2022-06-17 08:45:11.139700] share_mode_entry_do: entry[0]:
[2022-06-17 08:45:11.141335] &e: struct share_mode_entry
[2022-06-17 08:45:11.143013] pid: struct server_id
[2022-06-17 08:45:11.144665] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:11.146321] task_id : 0x00000000 (0)
[2022-06-17 08:45:11.147968] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:11.149626] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:11.151268] op_mid : 0x0000000000000007 (7)
[2022-06-17 08:45:11.152939] op_type : 0x0000 (0)
[2022-06-17 08:45:11.154597] client_guid : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:45:11.156241] lease_key: struct smb2_lease_key
[2022-06-17 08:45:11.157890] data: ARRAY(2)
[2022-06-17 08:45:11.159500] data : 0x0000000000000000 (0)
[2022-06-17 08:45:11.161140] data : 0x0000000000000000 (0)
[2022-06-17 08:45:11.162773] access_mask : 0x00000080 (128)
[2022-06-17 08:45:11.164475] share_access : 0x00000007 (7)
[2022-06-17 08:45:11.166136] private_options : 0x00000000 (0)
[2022-06-17 08:45:11.167781] time : Fri Jun 17 08:45:08 2022 UTC.757865
[2022-06-17 08:45:11.169417] share_file_id : 0x0000000000000002 (2)
[2022-06-17 08:45:11.171050] uid : 0x0000fffd (65533)
[2022-06-17 08:45:11.172677] flags : 0x0000 (0)
[2022-06-17 08:45:11.174369] name_hash : 0x7a8d2120 (2056069408)
[2022-06-17 08:45:11.176020] stale : 0x00 (0)
[2022-06-17 08:45:11.177655] share_mode_entry_do: entry[0]: modified=0, e.stale=1
[2022-06-17 08:45:11.179299] share_mode_entry_do: share_mode_entry:
[2022-06-17 08:45:11.180928] &e: struct share_mode_entry
[2022-06-17 08:45:11.182563] pid: struct server_id
[2022-06-17 08:45:11.184290] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:11.185946] task_id : 0x00000000 (0)
[2022-06-17 08:45:11.187595] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:11.189243] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:11.190904] op_mid : 0x0000000000000007 (7)
[2022-06-17 08:45:11.192547] op_type : 0x0000 (0)
[2022-06-17 08:45:11.194268] client_guid : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:45:11.195920] lease_key: struct smb2_lease_key
[2022-06-17 08:45:11.197553] data: ARRAY(2)
[2022-06-17 08:45:11.199164] data : 0x0000000000000000 (0)
[2022-06-17 08:45:11.200794] data : 0x0000000000000000 (0)
[2022-06-17 08:45:11.202435] access_mask : 0x00000080 (128)
[2022-06-17 08:45:11.204172] share_access : 0x00000007 (7)
[2022-06-17 08:45:11.205818] private_options : 0x00000000 (0)
[2022-06-17 08:45:11.207336] time : Fri Jun 17 08:45:08 2022 UTC.757865
[2022-06-17 08:45:11.208835] share_file_id : 0x0000000000000002 (2)
[2022-06-17 08:45:11.210557] uid : 0x0000fffd (65533)
[2022-06-17 08:45:11.212186] flags : 0x0000 (0)
[2022-06-17 08:45:11.213870] name_hash : 0x7a8d2120 (2056069408)
[2022-06-17 08:45:11.215522] stale : 0x01 (1)
[2022-06-17 08:45:11.217163] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:45:11.218824] dbwrap_watched_do_locked: dbwrap_watched_do_locked_fn returned NT_STATUS_OK
[2022-06-17 08:45:11.220478] share_mode_data_store:
[2022-06-17 08:45:11.222087] d: struct share_mode_data
[2022-06-17 08:45:11.223768] unique_content_epoch : 0x18806ab16114c445 (1765528363999740997)
[2022-06-17 08:45:11.225429] flags : 0x01c0 (448)
[2022-06-17 08:45:11.227247] 1: SHARE_MODE_SHARE_DELETE
[2022-06-17 08:45:11.228936] 1: SHARE_MODE_SHARE_WRITE
[2022-06-17 08:45:11.230593] 1: SHARE_MODE_SHARE_READ
[2022-06-17 08:45:11.232219] 0: SHARE_MODE_ACCESS_DELETE
[2022-06-17 08:45:11.233888] 0: SHARE_MODE_ACCESS_WRITE
[2022-06-17 08:45:11.235522] 0: SHARE_MODE_ACCESS_READ
[2022-06-17 08:45:11.237157] 0: SHARE_MODE_LEASE_HANDLE
[2022-06-17 08:45:11.238803] 0: SHARE_MODE_LEASE_WRITE
[2022-06-17 08:45:11.240446] 0: SHARE_MODE_LEASE_READ
[2022-06-17 08:45:11.242078] servicepath : *
[2022-06-17 08:45:11.243766] servicepath : '/mnt/share'
[2022-06-17 08:45:11.245431] base_name : *
[2022-06-17 08:45:11.247079] base_name : '.'
[2022-06-17 08:45:11.248702] stream_name : NULL
[2022-06-17 08:45:11.250342] num_delete_tokens : 0x00000000 (0)
[2022-06-17 08:45:11.251984] delete_tokens: ARRAY(0)
[2022-06-17 08:45:11.253673] old_write_time : NTTIME(0)
[2022-06-17 08:45:11.255327] changed_write_time : NTTIME(0)
[2022-06-17 08:45:11.256962] fresh : 0x00 (0)
[2022-06-17 08:45:11.258604] modified : 0x01 (1)
[2022-06-17 08:45:11.260120] id: struct file_id
[2022-06-17 08:45:11.261599] devid : 0x0000000000000012 (18)
[2022-06-17 08:45:11.263163] inode : 0x0000000000000045 (69)
[2022-06-17 08:45:11.264679] extid : 0x0000000000000000 (0)
[2022-06-17 08:45:11.266181] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:45:11.267664] dbwrap_watched_do_locked: dbwrap_watched_do_locked_fn returned NT_STATUS_OK
[2022-06-17 08:45:11.269165] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:45:11.270648] dbwrap_watched_do_locked: dbwrap_watched_do_locked_fn returned NT_STATUS_OK
[2022-06-17 08:45:11.272147] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/locking.tdb
[2022-06-17 08:45:11.274162] delete_lock_ref_count for file .
[2022-06-17 08:45:11.275814] dbwrap_lock_order_lock: check lock order 1 for /var/lock/smbXsrv_open_global.tdb
[2022-06-17 08:45:11.277474] lock order: 1:/var/lock/smbXsrv_open_global.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:45:11.279123] db_tdb_log_key: Locking key 3C9AF004
[2022-06-17 08:45:11.280749] db_tdb_fetch_locked_internal: Allocated locked data 0xb691fca0
[2022-06-17 08:45:11.282384] db_tdb_log_key: Unlocking key 3C9AF004
[2022-06-17 08:45:11.284176] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/smbXsrv_open_global.tdb
[2022-06-17 08:45:11.285877] freed files structure 727731614 (0 used)
[2022-06-17 08:45:11.288230] smbd_smb2_request_done_ex: mid [9] idx[1] status[NT_STATUS_OK] body[60] dyn[no:0] at ../../source3/smbd/smb2_close.c:146
[2022-06-17 08:45:11.289916] smb2_set_operation_credit: smb2_set_operation_credit: requested 1, charge 1, granted 1, current possible/max 1/8192, total granted/max/low/range 8192/8192/10/8192
[2022-06-17 08:45:11.291634] smbd_smb2_request idx[1] of 5 vectors
[2022-06-17 08:45:11.293321] smb2_validate_sequence_number: smb2_validate_sequence_number: clearing id 10 (position 10) from bitmap
[2022-06-17 08:45:11.295022] smbd_smb2_request_dispatch: opcode[SMB2_OP_CREATE] mid = 10
[2022-06-17 08:45:11.296667] change_to_user_impersonate: Skipping user change - already user
[2022-06-17 08:45:11.298312] print_impersonation_info: Impersonated user: uid=(65533,65533), gid=(0,65534), cwd=[/mnt/share]
[2022-06-17 08:45:11.299984] smbd_smb2_create_send: name [qwe]
[2022-06-17 08:45:11.301615] smbd_smb2_create_send: open execution phase
[2022-06-17 08:45:11.303298] unix_convert: Called on file [qwe]
[2022-06-17 08:45:11.304935] stat_cache_lookup: lookup failed for name [0000000000000000@QWE]
[2022-06-17 08:45:11.306453] unix_convert: Begin: name [qwe] dirpath [.] name [qwe]
[2022-06-17 08:45:11.307955] stat_cache_add: Added entry (b52c73a0:size 14) 0000000000000000@QWE -> 0000000000000000@qwe
[2022-06-17 08:45:11.309725] unix_convert: Conversion of base_name finished [qwe] -> [qwe]
[2022-06-17 08:45:11.311389] unix_convert: Conversion finished [qwe] -> [qwe]
[2022-06-17 08:45:11.313067] is_in_path: qwe
[2022-06-17 08:45:11.314700] is_in_path: match not found
[2022-06-17 08:45:11.316324] check_reduced_name: check_reduced_name [qwe] [/mnt/share]
[2022-06-17 08:45:11.317949] check_reduced_name realpath [qwe] -> [/mnt/share/qwe]
[2022-06-17 08:45:11.319580] check_reduced_name: qwe reduced to /mnt/share/qwe
[2022-06-17 08:45:11.321213] openat_pathref_fsp: smb_fname [qwe]
[2022-06-17 08:45:11.322842] fsp_new: allocated files structure (1 used)
[2022-06-17 08:45:11.324549] file_name_hash: /mnt/share/qwe hash 0x7d430cc4
[2022-06-17 08:45:11.326195] check_reduced_name: check_reduced_name [qwe] [/mnt/share]
[2022-06-17 08:45:11.327831] check_reduced_name realpath [qwe] -> [/mnt/share/qwe]
[2022-06-17 08:45:11.329463] check_reduced_name: qwe reduced to /mnt/share/qwe
[2022-06-17 08:45:11.331091] fd_openat: name qwe, flags = 00 mode = 00, fd = 39
[2022-06-17 08:45:11.332730] openat_pathref_fsp: fsp [qwe]: OK
[2022-06-17 08:45:11.334439] create_file_default: create_file: access_mask = 0x120089 file_attributes = 0x0, share_access = 0x3, create_disposition = 0x1 create_options = 0x40 oplock_request = 0x0 private_flags = 0x0 ea_list = 0, sd = 0, fname = qwe
[2022-06-17 08:45:11.336195] create_file_unixpath: create_file_unixpath: access_mask = 0x120089 file_attributes = 0x0, share_access = 0x3, create_disposition = 0x1 create_options = 0x40 oplock_request = 0x0 private_flags = 0x0 ea_list = 0, sd = 0, fname = qwe
[2022-06-17 08:45:11.337944] dbwrap_lock_order_lock: check lock order 1 for /var/lock/smbXsrv_open_global.tdb
[2022-06-17 08:45:11.339616] lock order: 1:/var/lock/smbXsrv_open_global.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:45:11.341272] db_tdb_log_key: Locking key C61EC380
[2022-06-17 08:45:11.342940] db_tdb_fetch_locked_internal: Allocated locked data 0xb5896d30
[2022-06-17 08:45:11.344604] smbXsrv_open_global_verify_record: empty value
[2022-06-17 08:45:11.346235] smbXsrv_open_global_store: key 'C61EC380' stored
[2022-06-17 08:45:11.347885] &global_blob: struct smbXsrv_open_globalB
[2022-06-17 08:45:11.349529] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:11.351165] seqnum : 0x00000001 (1)
[2022-06-17 08:45:11.352794] info : union smbXsrv_open_globalU(case 0)
[2022-06-17 08:45:11.354491] info0 : *
[2022-06-17 08:45:11.356122] info0: struct smbXsrv_open_global0
[2022-06-17 08:45:11.357752] db_rec : *
[2022-06-17 08:45:11.359382] server_id: struct server_id
[2022-06-17 08:45:11.361017] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:11.362655] task_id : 0x00000000 (0)
[2022-06-17 08:45:11.364356] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:11.365881] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:11.367666] open_global_id : 0xc61ec380 (3323904896)
[2022-06-17 08:45:11.369208] open_persistent_id : 0x00000000c61ec380 (3323904896)
[2022-06-17 08:45:11.370708] open_volatile_id : 0x000000003a146f1a (974417690)
[2022-06-17 08:45:11.372212] open_owner : S-1-5-21-3939785350-4027435424-1589595352-132066
[2022-06-17 08:45:11.374119] open_time : Fri Jun 17 08:45:09 2022 UTC
[2022-06-17 08:45:11.375792] create_guid : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:45:11.377452] client_guid : 81388492-5b34-419d-9462-792b3b27d8b4
[2022-06-17 08:45:11.379107] app_instance_id : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:45:11.380761] disconnect_time : NTTIME(0)
[2022-06-17 08:45:11.382397] durable_timeout_msec : 0x00000000 (0)
[2022-06-17 08:45:11.384134] durable : 0x00 (0)
[2022-06-17 08:45:11.385801] backend_cookie : DATA_BLOB length=0
[2022-06-17 08:45:11.387466] channel_sequence : 0x0000 (0)
[2022-06-17 08:45:11.389113] channel_generation : 0x0000000000000000 (0)
[2022-06-17 08:45:11.390742] lock_sequence_array: ARRAY(64)
[2022-06-17 08:45:11.392260] [0000] FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF ........ ........
[2022-06-17 08:45:11.394092] [0010] FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF ........ ........
[2022-06-17 08:45:11.395758] [0020] FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF ........ ........
[2022-06-17 08:45:11.397426] [0030] FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF ........ ........
[2022-06-17 08:45:11.399094] db_tdb_log_key: Unlocking key C61EC380
[2022-06-17 08:45:11.400732] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/smbXsrv_open_global.tdb
[2022-06-17 08:45:11.402378] smbXsrv_open_create: global_id (0xc61ec380) stored
[2022-06-17 08:45:11.404101] &open_blob: struct smbXsrv_openB
[2022-06-17 08:45:11.405740] version : SMBXSRV_VERSION_0 (0)
[2022-06-17 08:45:11.407367] reserved : 0x00000000 (0)
[2022-06-17 08:45:11.409006] info : union smbXsrv_openU(case 0)
[2022-06-17 08:45:11.410641] info0 : *
[2022-06-17 08:45:11.412272] info0: struct smbXsrv_open
[2022-06-17 08:45:11.413949] table : *
[2022-06-17 08:45:11.415581] db_rec : NULL
[2022-06-17 08:45:11.417207] local_id : 0x3a146f1a (974417690)
[2022-06-17 08:45:11.418845] global : *
[2022-06-17 08:45:11.420498] global: struct smbXsrv_open_global0
[2022-06-17 08:45:11.422155] db_rec : NULL
[2022-06-17 08:45:11.423847] server_id: struct server_id
[2022-06-17 08:45:11.425489] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:11.427144] task_id : 0x00000000 (0)
[2022-06-17 08:45:11.428796] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:11.430450] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:11.432125] open_global_id : 0xc61ec380 (3323904896)
[2022-06-17 08:45:11.433868] open_persistent_id : 0x00000000c61ec380 (3323904896)
[2022-06-17 08:45:11.435559] open_volatile_id : 0x000000003a146f1a (974417690)
[2022-06-17 08:45:11.437222] open_owner : S-1-5-21-3939785350-4027435424-1589595352-132066
[2022-06-17 08:45:11.438892] open_time : Fri Jun 17 08:45:09 2022 UTC
[2022-06-17 08:45:11.440546] create_guid : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:45:11.442205] client_guid : 81388492-5b34-419d-9462-792b3b27d8b4
[2022-06-17 08:45:11.443891] app_instance_id : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:45:11.445558] disconnect_time : NTTIME(0)
[2022-06-17 08:45:11.447197] durable_timeout_msec : 0x00000000 (0)
[2022-06-17 08:45:11.448832] durable : 0x00 (0)
[2022-06-17 08:45:11.450463] backend_cookie : DATA_BLOB length=0
[2022-06-17 08:45:11.452090] channel_sequence : 0x0000 (0)
[2022-06-17 08:45:11.453806] channel_generation : 0x0000000000000000 (0)
[2022-06-17 08:45:11.455480] lock_sequence_array: ARRAY(64)
[2022-06-17 08:45:11.457142] [0000] FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF ........ ........
[2022-06-17 08:45:11.458806] [0010] FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF ........ ........
[2022-06-17 08:45:11.460455] [0020] FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF ........ ........
[2022-06-17 08:45:11.462102] [0030] FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF ........ ........
[2022-06-17 08:45:11.463812] status : NT_STATUS_OK
[2022-06-17 08:45:11.465459] idle_time : Fri Jun 17 08:45:09 2022 UTC
[2022-06-17 08:45:11.467100] compat : NULL
[2022-06-17 08:45:11.468743] flags : 0x00 (0)
[2022-06-17 08:45:11.470395] 0: SMBXSRV_OPEN_NEED_REPLAY_CACHE
[2022-06-17 08:45:11.472039] 0: SMBXSRV_OPEN_HAVE_REPLAY_CACHE
[2022-06-17 08:45:11.473731] create_action : 0x00000000 (0)
[2022-06-17 08:45:11.475377] request_count : 0x0000000000000000 (0)
[2022-06-17 08:45:11.477024] pre_request_count : 0x0000000000000000 (0)
[2022-06-17 08:45:11.478658] fsp_bind_smb: fsp [qwe] mid [10]
[2022-06-17 08:45:11.480275] unix_mode: unix_mode(qwe) returning 0666
[2022-06-17 08:45:11.481908] open_file_ntcreate: fname=qwe, dos_attrs=0x0 access_mask=0x120089 share_access=0x3 create_disposition = 0x1 create_options=0x40 unix mode=0666 oplock_request=0 private_flags = 0x0
[2022-06-17 08:45:11.483684] fget_ea_dos_attribute: Cannot get attribute from EA on file qwe: Error = No data available
[2022-06-17 08:45:11.485363] open_file_ntcreate: fname=qwe, after mapping access_mask=0x120089
[2022-06-17 08:45:11.487087] calling open_file with flags=0x0 flags2=0x800 mode=0666, access_mask = 0x120089, open_access_mask = 0x120089
[2022-06-17 08:45:11.488792] posix_get_nt_acl: called for file qwe
[2022-06-17 08:45:11.490435] push_sec_ctx(65533, 65534) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:11.492079] push_conn_ctx(1863994182) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:11.493775] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:11.495435] Security token: (NULL)
[2022-06-17 08:45:11.497064] UNIX token of user 0
[2022-06-17 08:45:11.498677] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:11.500304] push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
[2022-06-17 08:45:11.501816] push_conn_ctx(1863994182) : conn_ctx_stack_ndx = 1
[2022-06-17 08:45:11.503444] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
[2022-06-17 08:45:11.505200] Security token: (NULL)
[2022-06-17 08:45:11.506836] UNIX token of user 0
[2022-06-17 08:45:11.508467] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:11.509990] getsampwnam (smbpasswd): search by name: root
[2022-06-17 08:45:11.511503] startsmbfilepwent_internal: opening file /etc/samba/smbpasswd
[2022-06-17 08:45:11.513314] getsmbfilepwent: skipping comment or blank line
[2022-06-17 08:45:11.514969] getsmbfilepwent: LM password for user nobody invalidated
[2022-06-17 08:45:11.516620] getsmbfilepwent: returning passwd entry for user nobody, uid 0
[2022-06-17 08:45:11.518278] getsmbfilepwent: LM password for user useruser invalidated
[2022-06-17 08:45:11.519914] getsmbfilepwent: returning passwd entry for user useruser, uid 65533
[2022-06-17 08:45:11.521549] getsmbfilepwent: end of file reached.
[2022-06-17 08:45:11.523211] endsmbfilepwent_internal: closed password file.
[2022-06-17 08:45:11.524860] pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:11.526489] pdb_default_uid_to_sid: Did not find user root (0)
[2022-06-17 08:45:11.528133] pop_sec_ctx (65533, 65534) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:11.529776] xid_to_sid: UID 0 -> S-1-22-1-0 fallback
[2022-06-17 08:45:11.531396] push_sec_ctx(65533, 65534) : sec_ctx_stack_ndx = 1
[2022-06-17 08:45:11.533073] push_conn_ctx(1863994182) : conn_ctx_stack_ndx = 0
[2022-06-17 08:45:11.534718] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2022-06-17 08:45:11.536358] Security token: (NULL)
[2022-06-17 08:45:11.537970] UNIX token of user 0
[2022-06-17 08:45:11.539583] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:11.541220] pop_sec_ctx (65533, 65534) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:11.542920] xid_to_sid: GID 0 -> S-1-22-2-0 fallback
[2022-06-17 08:45:11.544585] canonicalise_acl: Access ace entries before arrange :
[2022-06-17 08:45:11.546114] canon_ace index 0. Type = allow SID = S-1-1-0 other SMB_ACL_OTHER ace_flags = 0x0 perms r--
[2022-06-17 08:45:11.547628] canon_ace index 1. Type = allow SID = S-1-22-2-0 gid 0 SMB_ACL_GROUP_OBJ ace_flags = 0x0 perms r--
[2022-06-17 08:45:11.549136] canon_ace index 2. Type = allow SID = S-1-22-1-0 uid 0 SMB_ACL_USER_OBJ ace_flags = 0x0 perms rw-
[2022-06-17 08:45:11.550657] print_canon_ace_list: canonicalise_acl: ace entries after arrange
[2022-06-17 08:45:11.552394] canon_ace index 0. Type = allow SID = S-1-22-1-0 uid 0 SMB_ACL_USER_OBJ ace_flags = 0x0 perms rw-
[2022-06-17 08:45:11.554168] canon_ace index 1. Type = allow SID = S-1-22-2-0 gid 0 SMB_ACL_GROUP_OBJ ace_flags = 0x0 perms r--
[2022-06-17 08:45:11.555855] canon_ace index 2. Type = allow SID = S-1-1-0 other SMB_ACL_OTHER ace_flags = 0x0 perms r--
[2022-06-17 08:45:11.557519] map_canon_ace_perms: Mapped (UNIX) 180 to (NT) 12019f
[2022-06-17 08:45:11.559135] map_canon_ace_perms: Mapped (UNIX) 100 to (NT) 120089
[2022-06-17 08:45:11.560643] map_canon_ace_perms: Mapped (UNIX) 100 to (NT) 120089
[2022-06-17 08:45:11.562416] smbd_check_access_rights_sd: File [qwe] requesting [0x120089] returning [0x120009] (NT_STATUS_OK)
[2022-06-17 08:45:11.564189] delete_lock_ref_count for file qwe
[2022-06-17 08:45:11.565839] useruser opened file qwe read=Yes write=No (numopen=1)
[2022-06-17 08:45:11.567363] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:45:11.568963] dbwrap_watched_do_locked: dbwrap_watched_do_locked_fn returned NT_STATUS_OK
[2022-06-17 08:45:11.570712] dbwrap_lock_order_lock: check lock order 1 for /var/lock/locking.tdb
[2022-06-17 08:45:11.572366] lock order: 1:/var/lock/locking.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:45:11.574106] share_mode_forall_entries: num_share_modes=0
[2022-06-17 08:45:11.575748] share_mode_forall_entries: num_share_entries=0, writeback=0
[2022-06-17 08:45:11.577422] find_delete_on_close_token: name_hash = 0x7d430cc4
[2022-06-17 08:45:11.579064] share_conflict: existing access_mask = 0x0, existing share access = 0x7, access_mask = 0x120089, share_access = 0x3
[2022-06-17 08:45:11.580748] share_conflict: No conflict due to existing access_mask = 0x0
[2022-06-17 08:45:11.582392] open_mode_check: No conflict due to share_mode_flags access
[2022-06-17 08:45:11.584173] share_mode_forall_entries: num_share_modes=0
[2022-06-17 08:45:11.585829] share_mode_forall_entries: num_share_entries=0, writeback=0
[2022-06-17 08:45:11.587474] seqnum=0, fsp->brlock_seqnum=0
[2022-06-17 08:45:11.589107] set_file_oplock: granted oplock on file qwe, 19:193:0/3, tv_sec = 62ac3f15, tv_usec = 4bdbb
[2022-06-17 08:45:11.590651] delay_for_oplock: oplock type 0x0 on file qwe
[2022-06-17 08:45:11.592151] set_share_mode: num_share_modes=0
[2022-06-17 08:45:11.593692] share_mode_entry_put: share_mode_entry:
[2022-06-17 08:45:11.595188] discard_const_p(void, e): struct share_mode_entry
[2022-06-17 08:45:11.596683] pid: struct server_id
[2022-06-17 08:45:11.598169] pid : 0x0000000000002574 (9588)
[2022-06-17 08:45:11.599668] task_id : 0x00000000 (0)
[2022-06-17 08:45:11.601161] vnn : 0xffffffff (4294967295)
[2022-06-17 08:45:11.602665] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:45:11.604240] op_mid : 0x000000000000000a (10)
[2022-06-17 08:45:11.605935] op_type : 0x0000 (0)
[2022-06-17 08:45:11.607467] client_guid : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:45:11.608968] lease_key: struct smb2_lease_key
[2022-06-17 08:45:11.610448] data: ARRAY(2)
[2022-06-17 08:45:11.611924] data : 0x0000000000000000 (0)
[2022-06-17 08:45:11.613482] data : 0x0000000000000000 (0)
[2022-06-17 08:45:11.615005] access_mask : 0x00120089 (1179785)
[2022-06-17 08:45:11.616499] share_access : 0x00000003 (3)
[2022-06-17 08:45:11.617992] private_options : 0x00000000 (0)
[2022-06-17 08:45:11.619492] time : Fri Jun 17 08:45:09 2022 UTC.310715
[2022-06-17 08:45:11.621211] share_file_id : 0x0000000000000003 (3)
[2022-06-17 08:45:11.622725] uid : 0x0000fffd (65533)
[2022-06-17 08:45:11.624290] flags : 0x0000 (0)
[2022-06-17 08:45:11.626269] name_hash : 0x7d430cc4 (2101546180)
[2022-06-17 08:45:11.627939] stale : 0x00 (0)
[2022-06-17 08:45:11.629579] set_share_mode: idx=0, found=0
[2022-06-17 08:45:11.631215] set_share_mode: dbufs[0]=(0xbed70020, 132)
[2022-06-17 08:45:11.632908] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:45:11.634559] dbwrap_watched_do_locked: dbwrap_watched_do_locked_fn returned NT_STATUS_OK
[2022-06-17 08:45:11.636213] share_mode_data_store:
[2022-06-17 08:45:11.637836] d: struct share_mode_data
[2022-06-17 08:45:11.639468] unique_content_epoch : 0x18806ab16114c44b (1765528363999741003)
[2022-06-17 08:45:11.641110] flags : 0x00c8 (200)
[2022-06-17 08:45:11.642731] 0: SHARE_MODE_SHARE_DELETE
[2022-06-17 08:45:11.644420] 1: SHARE_MODE_SHARE_WRITE
[2022-06-17 08:45:11.646063] 1: SHARE_MODE_SHARE_READ
[2022-06-17 08:45:11.647695] 0: SHARE_MODE_ACCESS_DELETE
[2022-06-17 08:45:11.649332] 0: SHARE_MODE_ACCESS_WRITE
[2022-06-17 08:45:11.650968] 1: SHARE_MODE_ACCESS_READ
[2022-06-17 08:45:11.652604] 0: SHARE_MODE_LEASE_HANDLE
[2022-06-17 08:45:11.654311] 0: SHARE_MODE_LEASE_WRITE
[2022-06-17 08:45:11.655948] 0: SHARE_MODE_LEASE_READ
[2022-06-17 08:45:11.657573] servicepath : *
[2022-06-17 08:45:11.659201] servicepath : '/mnt/share'
[2022-06-17 08:45:11.660860] base_name : *
[2022-06-17 08:45:11.662498] base_name : 'qwe'
[2022-06-17 08:45:11.664256] stream_name : NULL
[2022-06-17 08:45:11.665898] num_delete_tokens : 0x00000000 (0)
[2022-06-17 08:45:11.667529] delete_tokens: ARRAY(0)
[2022-06-17 08:45:11.669158] old_write_time : Fri Jun 17 06:10:26 2022 UTC
[2022-06-17 08:45:11.670800] changed_write_time : NTTIME(0)
[2022-06-17 08:45:11.672448] fresh : 0x01 (1)
[2022-06-17 08:45:11.674176] modified : 0x01 (1)
[2022-06-17 08:45:11.675830] id: struct file_id
[2022-06-17 08:45:11.677452] devid : 0x0000000000000013 (19)
[2022-06-17 08:45:11.678974] inode : 0x00000000000000c1 (193)
[2022-06-17 08:45:11.680470] extid : 0x0000000000000000 (0)
[2022-06-17 08:45:11.682126] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:45:11.683967] dbwrap_watched_do_locked: dbwrap_watched_do_locked_fn returned NT_STATUS_OK
[2022-06-17 08:45:11.685647] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:45:11.687305] dbwrap_watched_do_locked: dbwrap_watched_do_locked_fn returned NT_STATUS_OK
[2022-06-17 08:45:11.688959] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/locking.tdb
[2022-06-17 08:45:11.690616] share_mode_memcache_store: stored entry for file qwe epoch 18806ab16114c44d key 19:193:0
[2022-06-17 08:45:11.692273] create_file_unixpath: info=1
[2022-06-17 08:45:11.693969] create_file: info=1
[2022-06-17 08:45:11.695684] smbd_smb2_create_send: response construction phase
[2022-06-17 08:45:11.697351] fdos_mode: qwe
[2022-06-17 08:45:11.698974] fget_ea_dos_attribute: Cannot get attribute from EA on file qwe: Error = No data available
[2022-06-17 08:45:11.700631] dos_mode_debug_print: fdos_mode returning (0x80): ""
[2022-06-17 08:45:11.702272] smbd_smb2_create_finish: qwe - fnum 974417690
[2022-06-17 08:45:11.703972] smbd_smb2_request_done_ex: mid [10] idx[1] status[NT_STATUS_OK] body[88] dyn[yes:0] at ../../source3/smbd/smb2_create.c:405
[2022-06-17 08:45:11.705663] smb2_set_operation_credit: smb2_set_operation_credit: requested 1, charge 1, granted 1, current possible/max 1/8192, total granted/max/low/range 8192/8192/11/8192
[2022-06-17 08:45:11.707372] smbd_smb2_request idx[1] of 5 vectors
[2022-06-17 08:45:11.709026] smb2_validate_sequence_number: smb2_validate_sequence_number: clearing id 11 (position 11) from bitmap
[2022-06-17 08:45:11.710702] smbd_smb2_request_dispatch: opcode[SMB2_OP_GETINFO] mid = 11
[2022-06-17 08:45:11.712228] change_to_user_impersonate: Skipping user change - already user
[2022-06-17 08:45:11.713776] vfs_ChDir to /mnt/share
[2022-06-17 08:45:11.715251] vfs_ChDir: vfs_ChDir got /mnt/share
[2022-06-17 08:45:11.716735] print_impersonation_info: Impersonated user: uid=(65533,65533), gid=(0,65534), cwd=[/mnt/share]
[2022-06-17 08:45:11.718256] smbd_smb2_request_verify_creditcharge: mid 11, CreditCharge: 1, NeededCharge: 1
[2022-06-17 08:45:11.719759] smbd_smb2_getinfo_send: qwe - fnum 974417690
[2022-06-17 08:45:11.721257] share_mode_memcache_fetch: fetched entry for file qwe epoch 18806ab16114c44d key 19:193:0
[2022-06-17 08:45:11.722759] find_delete_on_close_token: name_hash = 0x7d430cc4
[2022-06-17 08:45:11.724310] smbd_do_qfilepathinfo: qwe (fnum 974417690) level=65298 max_data=65535
[2022-06-17 08:45:11.726161] fdos_mode: qwe
[2022-06-17 08:45:11.727800] fget_ea_dos_attribute: Cannot get attribute from EA on file qwe: Error = No data available
[2022-06-17 08:45:11.729469] dos_mode_debug_print: fdos_mode returning (0x80): ""
[2022-06-17 08:45:11.731159] get_ea_names_from_file: ea_namelist size = 0
[2022-06-17 08:45:11.732830] fill_ea_chained_buffer: data_size = 0
[2022-06-17 08:45:11.734529] smbd_do_qfilepathinfo: SMB2_FILE_ALL_INFORMATION
[2022-06-17 08:45:11.736182] smbd_smb2_request_done_ex: mid [11] idx[1] status[NT_STATUS_OK] body[8] dyn[yes:108] at ../../source3/smbd/smb2_getinfo.c:206
[2022-06-17 08:45:11.737862] smb2_set_operation_credit: smb2_set_operation_credit: requested 1, charge 1, granted 1, current possible/max 1/8192, total granted/max/low/range 8192/8192/12/8192
[2022-06-17 08:45:11.739572] smbd_smb2_request idx[1] of 5 vectors
[2022-06-17 08:45:11.741200] smb2_validate_sequence_number: smb2_validate_sequence_number: clearing id 12 (position 12) from bitmap
[2022-06-17 08:45:11.742915] smbd_smb2_request_dispatch: opcode[SMB2_OP_READ] mid = 12
[2022-06-17 08:45:11.744592] change_to_user_impersonate: Skipping user change - already user
[2022-06-17 08:45:11.746252] print_impersonation_info: Impersonated user: uid=(65533,65533), gid=(0,65534), cwd=[/mnt/share]
[2022-06-17 08:45:11.747915] smbd_smb2_request_verify_creditcharge: mid 12, CreditCharge: 1, NeededCharge: 1
[2022-06-17 08:45:11.749561] smbd_smb2_read: qwe - fnum 974417690
[2022-06-17 08:45:11.751192] seqnum=0, fsp->brlock_seqnum=0
[2022-06-17 08:45:11.752829] is_posix_locked: File qwe, offset = 0, count = 64000, type = READ
[2022-06-17 08:45:11.754534] posix_lock_in_range: offset_out = 0, count_out = 64000
[2022-06-17 08:45:11.756197] posix_fcntl_getlock 40 0 64000 0
[2022-06-17 08:45:11.757851] fcntl_getlock fd=40 op=12 offset=0 count=64000 type=0
[2022-06-17 08:45:11.759501] fcntl_getlock: fd 40 is returned info 2 pid 0
[2022-06-17 08:45:11.761126] posix_fcntl_getlock: Lock query call successful
[2022-06-17 08:45:11.762763] brl_locktest: posix start=0 len=64000 unlocked for fnum 974417690 file qwe
[2022-06-17 08:45:11.764467] strict_lock_default: flavour = WINDOWS_LOCK brl start=0 len=64000 unlocked for fnum 974417690 file qwe
[2022-06-17 08:45:11.766144] smb2: scheduled aio_read for file qwe, offset 0, len = 64000 (mid = 12)
[2022-06-17 08:45:11.767797] smbd_smb2_request_pending_queue: req->current_idx = 1
[2022-06-17 08:45:11.769447] req->in.vector[0].iov_len = 0
[2022-06-17 08:45:11.771081] req->in.vector[1].iov_len = 0
[2022-06-17 08:45:11.772711] req->in.vector[2].iov_len = 64
[2022-06-17 08:45:11.774391] req->in.vector[3].iov_len = 48
[2022-06-17 08:45:11.776022] req->in.vector[4].iov_len = 1
[2022-06-17 08:45:11.777526] req->out.vector[0].iov_len = 4
[2022-06-17 08:45:11.779279] req->out.vector[1].iov_len = 0
[2022-06-17 08:45:11.780922] req->out.vector[2].iov_len = 64
[2022-06-17 08:45:11.782562] req->out.vector[3].iov_len = 8
[2022-06-17 08:45:11.784282] req->out.vector[4].iov_len = 0
[2022-06-17 08:45:11.785910] smbd_smb2_request_pending_queue: opcode[SMB2_OP_READ] mid 12 going async
[2022-06-17 08:45:11.787555] smb2_set_operation_credit: smb2_set_operation_credit: requested 1, charge 1, granted 1, current possible/max 1/8192, total granted/max/low/range 8192/8192/13/8192
[2022-06-17 08:45:11.789272] state->vector[0/5].iov_len = 4
[2022-06-17 08:45:11.790906] state->vector[1/5].iov_len = 0
[2022-06-17 08:45:11.792528] state->vector[2/5].iov_len = 64
[2022-06-17 08:45:11.794139] state->vector[3/5].iov_len = 8
[2022-06-17 08:45:11.795647] state->vector[4/5].iov_len = 1
[2022-06-17 08:45:29.841629] smbd_smb2_request idx[1] of 5 vectors
[2022-06-17 08:45:29.842611] smb2_validate_sequence_number: smb2_validate_sequence_number: clearing id 13 (position 13) from bitmap
[2022-06-17 08:45:29.845676] smbd_smb2_request_dispatch: opcode[SMB2_OP_CLOSE] mid = 13
[2022-06-17 08:45:29.847389] change_to_user_impersonate: Skipping user change - already user
[2022-06-17 08:45:29.849063] print_impersonation_info: Impersonated user: uid=(65533,65533), gid=(0,65534), cwd=[/mnt/share]
[2022-06-17 08:45:29.850755] smbd_smb2_request_pending_queue: req->current_idx = 1
[2022-06-17 08:45:29.852407] req->in.vector[0].iov_len = 0
[2022-06-17 08:45:29.854143] req->in.vector[1].iov_len = 0
[2022-06-17 08:45:29.855775] req->in.vector[2].iov_len = 64
[2022-06-17 08:45:29.857407] req->in.vector[3].iov_len = 24
[2022-06-17 08:45:29.859032] req->in.vector[4].iov_len = 0
[2022-06-17 08:45:29.860657] req->out.vector[0].iov_len = 4
[2022-06-17 08:45:29.862292] req->out.vector[1].iov_len = 0
[2022-06-17 08:45:29.864014] req->out.vector[2].iov_len = 64
[2022-06-17 08:45:29.865654] req->out.vector[3].iov_len = 8
[2022-06-17 08:45:29.867287] req->out.vector[4].iov_len = 0
[2022-06-17 08:45:29.868964] smbd_smb2_request_pending_queue: opcode[SMB2_OP_CLOSE] mid 13 going async
[2022-06-17 08:45:29.870642] smb2_set_operation_credit: smb2_set_operation_credit: requested 1, charge 1, granted 1, current possible/max 1/8192, total granted/max/low/range 8192/8192/14/8192
[2022-06-17 08:45:29.872353] state->vector[0/5].iov_len = 4
[2022-06-17 08:45:29.874081] state->vector[1/5].iov_len = 0
[2022-06-17 08:45:29.875728] state->vector[2/5].iov_len = 64
[2022-06-17 08:45:29.877364] state->vector[3/5].iov_len = 8
[2022-06-17 08:45:29.878995] state->vector[4/5].iov_len = 1
[2022-06-17 08:45:49.876361] smbd_smb2_request idx[1] of 5 vectors
[2022-06-17 08:45:49.878179] smb2_validate_sequence_number: smb2_validate_sequence_number: clearing id 14 (position 14) from bitmap
[2022-06-17 08:45:49.879953] smbd_smb2_request_dispatch: opcode[SMB2_OP_TDIS] mid = 14
[2022-06-17 08:45:49.881644] change_to_user_impersonate: Skipping user change - already user
[2022-06-17 08:45:49.883477] print_impersonation_info: Impersonated user: uid=(65533,65533), gid=(0,65534), cwd=[/mnt/share]
[2022-06-17 08:45:49.885048] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:45:49.886691] Security token: (NULL)
[2022-06-17 08:45:49.888389] UNIX token of user 0
[2022-06-17 08:45:49.889876] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:45:49.891519] change_to_root_user: now uid=(0,0) gid=(0,0)
[2022-06-17 08:46:05.073933] smbd_idle_event_handler: idle_evt(deadtime) 0 called
[2022-06-17 08:46:05.074910] smbd_idle_event_handler: idle_evt(deadtime) 0 rescheduled
[2022-06-17 08:46:05.075648] smbd_idle_event_handler: idle_evt(housekeeping) 0 called
[2022-06-17 08:46:05.076341] housekeeping
[2022-06-17 08:46:05.077015] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:46:05.077690] Security token: (NULL)
[2022-06-17 08:46:05.078366] UNIX token of user 0
[2022-06-17 08:46:05.079029] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:46:05.079695] change_to_root_user: now uid=(0,0) gid=(0,0)
[2022-06-17 08:46:05.080365] smbd_idle_event_handler: idle_evt(housekeeping) 0 rescheduled
[2022-06-17 08:46:09.913069] smbd_server_connection_terminate_ex: conn[ipv4:192.168.1.10:33730] num_ok[0] reason[NT_STATUS_END_OF_FILE] at ../../source3/smbd/smb2_server.c:4940
[2022-06-17 08:46:09.914886] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:46:09.923814] Security token: (NULL)
[2022-06-17 08:46:09.925627] UNIX token of user 0
[2022-06-17 08:46:09.927192] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:46:09.928862] change_to_root_user: now uid=(0,0) gid=(0,0)
[2022-06-17 08:46:09.930648] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:46:09.932286] Security token: (NULL)
[2022-06-17 08:46:09.945268] UNIX token of user 0
[2022-06-17 08:46:09.947203] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:46:09.948922] change_to_root_user: now uid=(0,0) gid=(0,0)
[2022-06-17 08:46:09.950583] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:46:09.952229] Security token: (NULL)
[2022-06-17 08:46:09.953789] UNIX token of user 0
[2022-06-17 08:46:09.955431] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:46:09.957082] change_to_root_user: now uid=(0,0) gid=(0,0)
[2022-06-17 08:46:09.958726] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:46:09.960224] dbwrap_watched_do_locked: dbwrap_watched_do_locked_fn returned NT_STATUS_OK
[2022-06-17 08:46:09.961859] dbwrap_lock_order_lock: check lock order 1 for /var/lock/locking.tdb
[2022-06-17 08:46:09.963559] lock order: 1:/var/lock/locking.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:46:09.965239] share_mode_memcache_fetch: failed to find entry for key 19:193:0
[2022-06-17 08:46:09.966897] parse_share_modes:
[2022-06-17 08:46:09.968518] d: struct share_mode_data
[2022-06-17 08:46:09.970166] unique_content_epoch : 0x18806ab16114c44d (1765528363999741005)
[2022-06-17 08:46:09.971924] flags : 0x00c8 (200)
[2022-06-17 08:46:09.973492] 0: SHARE_MODE_SHARE_DELETE
[2022-06-17 08:46:09.975245] 1: SHARE_MODE_SHARE_WRITE
[2022-06-17 08:46:09.976878] 1: SHARE_MODE_SHARE_READ
[2022-06-17 08:46:09.978401] 0: SHARE_MODE_ACCESS_DELETE
[2022-06-17 08:46:09.980046] 0: SHARE_MODE_ACCESS_WRITE
[2022-06-17 08:46:09.981673] 1: SHARE_MODE_ACCESS_READ
[2022-06-17 08:46:09.983363] 0: SHARE_MODE_LEASE_HANDLE
[2022-06-17 08:46:09.985017] 0: SHARE_MODE_LEASE_WRITE
[2022-06-17 08:46:09.986663] 0: SHARE_MODE_LEASE_READ
[2022-06-17 08:46:09.988281] servicepath : *
[2022-06-17 08:46:09.990026] servicepath : '/mnt/share'
[2022-06-17 08:46:09.991557] base_name : *
[2022-06-17 08:46:09.993106] base_name : 'qwe'
[2022-06-17 08:46:09.994779] stream_name : NULL
[2022-06-17 08:46:09.996395] num_delete_tokens : 0x00000000 (0)
[2022-06-17 08:46:09.998032] delete_tokens: ARRAY(0)
[2022-06-17 08:46:09.999659] old_write_time : Fri Jun 17 06:10:26 2022 UTC
[2022-06-17 08:46:10.001310] changed_write_time : NTTIME(0)
[2022-06-17 08:46:10.002996] fresh : 0x00 (0)
[2022-06-17 08:46:10.004648] modified : 0x00 (0)
[2022-06-17 08:46:10.006276] id: struct file_id
[2022-06-17 08:46:10.007987] devid : 0x0000000000000013 (19)
[2022-06-17 08:46:10.009515] inode : 0x00000000000000c1 (193)
[2022-06-17 08:46:10.011159] extid : 0x0000000000000000 (0)
[2022-06-17 08:46:10.012807] find_delete_on_close_token: name_hash = 0x7d430cc4
[2022-06-17 08:46:10.014503] share_mode_entry_do: num_share_modes=1
[2022-06-17 08:46:10.016257] share_mode_entry_find: left=0, right=0, middle=0, middle_ptr=0xb5147554
[2022-06-17 08:46:10.017901] share_mode_entry_do: entry[0]:
[2022-06-17 08:46:10.019420] &e: struct share_mode_entry
[2022-06-17 08:46:10.021147] pid: struct server_id
[2022-06-17 08:46:10.022760] pid : 0x0000000000002574 (9588)
[2022-06-17 08:46:10.024459] task_id : 0x00000000 (0)
[2022-06-17 08:46:10.025994] vnn : 0xffffffff (4294967295)
[2022-06-17 08:46:10.028060] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:46:10.029742] op_mid : 0x000000000000000a (10)
[2022-06-17 08:46:10.031373] op_type : 0x0000 (0)
[2022-06-17 08:46:10.033031] client_guid : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:46:10.034570] lease_key: struct smb2_lease_key
[2022-06-17 08:46:10.036209] data: ARRAY(2)
[2022-06-17 08:46:10.037837] data : 0x0000000000000000 (0)
[2022-06-17 08:46:10.039472] data : 0x0000000000000000 (0)
[2022-06-17 08:46:10.041132] access_mask : 0x00120089 (1179785)
[2022-06-17 08:46:10.042774] share_access : 0x00000003 (3)
[2022-06-17 08:46:10.044491] private_options : 0x00000000 (0)
[2022-06-17 08:46:10.046235] time : Fri Jun 17 08:45:09 2022 UTC.310715
[2022-06-17 08:46:10.047869] share_file_id : 0x0000000000000003 (3)
[2022-06-17 08:46:10.049390] uid : 0x0000fffd (65533)
[2022-06-17 08:46:10.051060] flags : 0x0000 (0)
[2022-06-17 08:46:10.052800] name_hash : 0x7d430cc4 (2101546180)
[2022-06-17 08:46:10.054494] stale : 0x00 (0)
[2022-06-17 08:46:10.056031] share_mode_entry_do: entry[0]: modified=0, e.stale=1
[2022-06-17 08:46:10.057674] share_mode_entry_do: share_mode_entry:
[2022-06-17 08:46:10.059398] &e: struct share_mode_entry
[2022-06-17 08:46:10.060911] pid: struct server_id
[2022-06-17 08:46:10.062633] pid : 0x0000000000002574 (9588)
[2022-06-17 08:46:10.064353] task_id : 0x00000000 (0)
[2022-06-17 08:46:10.065886] vnn : 0xffffffff (4294967295)
[2022-06-17 08:46:10.067520] unique_id : 0x1f1c5a526b61e095 (2241766024559059093)
[2022-06-17 08:46:10.069170] op_mid : 0x000000000000000a (10)
[2022-06-17 08:46:10.070909] op_type : 0x0000 (0)
[2022-06-17 08:46:10.072530] client_guid : 00000000-0000-0000-0000-000000000000
[2022-06-17 08:46:10.074147] lease_key: struct smb2_lease_key
[2022-06-17 08:46:10.075892] data: ARRAY(2)
[2022-06-17 08:46:10.077483] data : 0x0000000000000000 (0)
[2022-06-17 08:46:10.079141] data : 0x0000000000000000 (0)
[2022-06-17 08:46:10.080899] access_mask : 0x00120089 (1179785)
[2022-06-17 08:46:10.082428] share_access : 0x00000003 (3)
[2022-06-17 08:46:10.084289] private_options : 0x00000000 (0)
[2022-06-17 08:46:10.085823] time : Fri Jun 17 08:45:09 2022 UTC.310715
[2022-06-17 08:46:10.087461] share_file_id : 0x0000000000000003 (3)
[2022-06-17 08:46:10.089107] uid : 0x0000fffd (65533)
[2022-06-17 08:46:10.090753] flags : 0x0000 (0)
[2022-06-17 08:46:10.092488] name_hash : 0x7d430cc4 (2101546180)
[2022-06-17 08:46:10.094078] stale : 0x01 (1)
[2022-06-17 08:46:10.095728] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:46:10.097352] dbwrap_watched_do_locked: dbwrap_watched_do_locked_fn returned NT_STATUS_OK
[2022-06-17 08:46:10.098996] share_mode_data_store:
[2022-06-17 08:46:10.100614] d: struct share_mode_data
[2022-06-17 08:46:10.102341] unique_content_epoch : 0x18806ab16114c44d (1765528363999741005)
[2022-06-17 08:46:10.104053] flags : 0x00c8 (200)
[2022-06-17 08:46:10.105566] 0: SHARE_MODE_SHARE_DELETE
[2022-06-17 08:46:10.107189] 1: SHARE_MODE_SHARE_WRITE
[2022-06-17 08:46:10.108929] 1: SHARE_MODE_SHARE_READ
[2022-06-17 08:46:10.110450] 0: SHARE_MODE_ACCESS_DELETE
[2022-06-17 08:46:10.112079] 0: SHARE_MODE_ACCESS_WRITE
[2022-06-17 08:46:10.113739] 1: SHARE_MODE_ACCESS_READ
[2022-06-17 08:46:10.115380] 0: SHARE_MODE_LEASE_HANDLE
[2022-06-17 08:46:10.117012] 0: SHARE_MODE_LEASE_WRITE
[2022-06-17 08:46:10.118632] 0: SHARE_MODE_LEASE_READ
[2022-06-17 08:46:10.120420] servicepath : *
[2022-06-17 08:46:10.121961] servicepath : '/mnt/share'
[2022-06-17 08:46:10.123674] base_name : *
[2022-06-17 08:46:10.125428] base_name : 'qwe'
[2022-06-17 08:46:10.126957] stream_name : NULL
[2022-06-17 08:46:10.128680] num_delete_tokens : 0x00000000 (0)
[2022-06-17 08:46:10.130201] delete_tokens: ARRAY(0)
[2022-06-17 08:46:10.131912] old_write_time : Fri Jun 17 06:10:26 2022 UTC
[2022-06-17 08:46:10.133485] changed_write_time : NTTIME(0)
[2022-06-17 08:46:10.135145] fresh : 0x00 (0)
[2022-06-17 08:46:10.136909] modified : 0x01 (1)
[2022-06-17 08:46:10.138443] id: struct file_id
[2022-06-17 08:46:10.139917] devid : 0x0000000000000013 (19)
[2022-06-17 08:46:10.141410] inode : 0x00000000000000c1 (193)
[2022-06-17 08:46:10.143246] extid : 0x0000000000000000 (0)
[2022-06-17 08:46:10.144906] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:46:10.146447] dbwrap_watched_do_locked: dbwrap_watched_do_locked_fn returned NT_STATUS_OK
[2022-06-17 08:46:10.147975] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:46:10.149473] dbwrap_watched_do_locked: dbwrap_watched_do_locked_fn returned NT_STATUS_OK
[2022-06-17 08:46:10.151142] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/locking.tdb
[2022-06-17 08:46:10.152967] delete_lock_ref_count for file qwe
[2022-06-17 08:46:10.154499] useruser closed file qwe (numopen=0) NT_STATUS_OK
[2022-06-17 08:46:10.156251] dbwrap_lock_order_lock: check lock order 1 for /var/lock/smbXsrv_open_global.tdb
[2022-06-17 08:46:10.157786] lock order: 1:/var/lock/smbXsrv_open_global.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:46:10.159441] db_tdb_log_key: Locking key C61EC380
[2022-06-17 08:46:10.161074] db_tdb_fetch_locked_internal: Allocated locked data 0xb5ef4cf0
[2022-06-17 08:46:10.162705] db_tdb_log_key: Unlocking key C61EC380
[2022-06-17 08:46:10.164485] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/smbXsrv_open_global.tdb
[2022-06-17 08:46:10.166027] freed files structure 974417690 (0 used)
[2022-06-17 08:46:10.167528] vfs_ChDir to /mnt/share
[2022-06-17 08:46:10.169001] vfs_ChDir: vfs_ChDir got /mnt/share
[2022-06-17 08:46:10.170655] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:46:10.172298] Security token: (NULL)
[2022-06-17 08:46:10.174113] UNIX token of user 0
[2022-06-17 08:46:10.175623] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:46:10.177119] change_to_root_user: now uid=(0,0) gid=(0,0)
[2022-06-17 08:46:10.178777] linups (ipv4:192.168.1.10:33730) closed connection to service shr
[2022-06-17 08:46:10.180521] vfs_ChDir to /
[2022-06-17 08:46:10.182025] vfs_ChDir: vfs_ChDir got /
[2022-06-17 08:46:10.183719] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:46:10.185356] Security token: (NULL)
[2022-06-17 08:46:10.186974] UNIX token of user 0
[2022-06-17 08:46:10.188610] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:46:10.190337] change_to_root_user: now uid=(0,0) gid=(0,0)
[2022-06-17 08:46:10.191964] dbwrap_lock_order_lock: check lock order 1 for /var/lock/smbXsrv_tcon_global.tdb
[2022-06-17 08:46:10.193551] lock order: 1:/var/lock/smbXsrv_tcon_global.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:46:10.195232] db_tdb_log_key: Locking key E48C8ACD
[2022-06-17 08:46:10.196876] db_tdb_fetch_locked_internal: Allocated locked data 0xb5444e90
[2022-06-17 08:46:10.198523] db_tdb_log_key: Unlocking key E48C8ACD
[2022-06-17 08:46:10.200013] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/smbXsrv_tcon_global.tdb
[2022-06-17 08:46:10.201515] dbwrap_lock_order_lock: check lock order 1 for /var/lock/smbXsrv_session_global.tdb
[2022-06-17 08:46:10.203355] lock order: 1:/var/lock/smbXsrv_session_global.tdb 2:<none> 3:<none> 4:<none>
[2022-06-17 08:46:10.204918] db_tdb_log_key: Locking key 6F1A4B46
[2022-06-17 08:46:10.206557] db_tdb_fetch_locked_internal: Allocated locked data 0xb5160b30
[2022-06-17 08:46:10.208221] dbwrap_watched_subrec_wakeup_fn: No watchers
[2022-06-17 08:46:10.209877] dbwrap_lock_order_unlock: release lock order 1 for /var/lock/smbXsrv_session_global.tdb
[2022-06-17 08:46:10.211440] db_tdb_log_key: Unlocking key 6F1A4B46
[2022-06-17 08:46:10.212969] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:46:10.214609] Security token: (NULL)
[2022-06-17 08:46:10.216307] UNIX token of user 0
[2022-06-17 08:46:10.217925] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:46:10.219455] change_to_root_user: now uid=(0,0) gid=(0,0)
[2022-06-17 08:46:10.221114] setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2022-06-17 08:46:10.222757] Security token: (NULL)
[2022-06-17 08:46:10.224414] UNIX token of user 0
[2022-06-17 08:46:10.226039] Primary group is 0 and contains 0 supplementary groups
[2022-06-17 08:46:10.227546] change_to_root_user: now uid=(0,0) gid=(0,0)
[2022-06-17 08:46:10.229036] Deregistering messaging pointer for type 784 - private_data=0xb5bd9db0
[2022-06-17 08:46:10.230554] msg_dgm_ref_destructor: refs=0
[2022-06-17 08:46:10.232320] Server exit (NT_STATUS_END_OF_FILE)
[2022-06-17 08:46:10.233921] messaging_dgm_send: Sending message to 9561
[2022-06-17 08:46:10.235557] messaging_recv_cb: Received message 0x314 len 0 (num_fds:0) from 9557
[2022-06-17 08:46:10.237203] smbd_cleanupd_process_exited: cleaned up pid 9588