when doing NTLM for the DC it looks like MWG is the workstation trying to logon. I strongly recommend to disable "locking" the MWG computer account, as otherwise one user can logon with wrong credentials and this may cause authentication failures for other users.
You can add some logging to your authentication and write a log line when someone does not authenticate correctly. You can log the property Authentication.FailureReason.Message along with the IP address of the client to find out who is logging in incorrectly.
how do i disable locking the MWG computer acc.
MWG is not locking the account, it is most likley your workstation, which has a saved password, and the MWG is locking you out by proxy.
Please check your machine to see if you have any "Stored usernames or passwords".