Hello there,
Have you disabled this account ?
This event is also a routine event which periodically occurs during normal operating system activity.
This event is generated when a process attempts an account logon by explicitly specifying that account’s credentials.
This most commonly occurs in batch-type configurations such as scheduled tasks, or when using the “RUNAS” command.
You can read more about this event from here https://learn.microsoft.com/en-us/windows/security/threat-protection/auditing/event-4648
-------------------------------------------------------------------------------------------------------------------------------
--If the reply is helpful, please Upvote and Accept it as an answer--