RippleTech
Page:1/2
5/26/2006 3:04:53 PM
All RACF Events
Description
Allows reporting on all collected events from the monitored systems.
For more information on various Windows events, go to :
http://www.microsoft.com/technet/support/eventserrors.mspx
Parameters
Database Servers
All
Computers
All
Accounts
All
Sources
All
Categories
Text File Watcher
IDs
All
Logs
All
Types
All
Message Search Criteria
None
Time Frame
User specified date and time
Start Date Time
2006-04-01 00:00:00
End Date Time
2006-04-15 00:00:00
Server
Date / Time
Id
Log
Type
Category
Source
Computer
Account
LogCasterRA
4/13/2006 6:32:05 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 4
EventNo : 27
DateTime : Thu Apr 13 17:29:04 2006
EventId : AUD_It
Command : audit
User : root
Group : root
Outcome : OK
Details : cmd: 4 arg: 0
  
LogCasterRA
4/13/2006 6:24:07 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 26
DateTime : Thu Apr 13 17:21:05 2006
EventId : USER_Login
Command : tsm
User : root
Group : root
Outcome : OK
Details : user: root tty: /dev/pts/0
  
LogCasterRA
4/13/2006 5:35:53 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 25
DateTime : Thu Apr 13 16:32:51 2006
EventId : USER_SU
Command : su
User : adtprb
Group : root
Outcome : OK
Details : adtprb
  
LogCasterRA
4/13/2006 5:35:47 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 24
DateTime : Thu Apr 13 16:32:46 2006
EventId : USER_SU
Command : su
User : root
Group : root
Outcome : FAIL
Details : auditpro
  
LogCasterRA
4/13/2006 5:35:29 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 2
EventNo : 23
DateTime : Thu Apr 13 16:32:27 2006
EventId : USER_Create
Command : mkuser
User : root
Group : root
Outcome : OK
Details : adtprb pgrp=dba home=/home/auditprobe
  
LogCasterRA
4/13/2006 5:33:55 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 2
EventNo : 22
DateTime : Thu Apr 13 16:30:53 2006
EventId : GROUP_Change
Command : mkuser
User : root
Group : root
Outcome : FAIL
Details : adtprb pgrp=adtprb home=/home/auditprobe
  
LogCasterRA
4/13/2006 5:32:47 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 2
EventNo : 21
DateTime : Thu Apr 13 16:29:47 2006
EventId : USER_Create
Command : mkuser
User : root
Group : root
Outcome : FAIL
Details : auditprobe pgrp=auditprobe home=/home/auditprobe
  
LogCasterRA
4/13/2006 5:19:29 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 20
DateTime : Thu Apr 13 16:16:26 2006
EventId : USER_SU
Command : su
User : mel
Group : root
Outcome : OK
Details : mel
  
LogCasterRA
4/13/2006 3:41:55 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 19
DateTime : Thu Apr 13 14:38:53 2006
EventId : USER_SU
Command : su
User : mel
Group : root
Outcome : OK
Details : mel
  
LogCasterRA
4/13/2006 3:41:51 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 18
DateTime : Thu Apr 13 14:38:49 2006
EventId : USER_Login
Command : tsm
User : root
Group : root
Outcome : OK
Details : user: root tty: /dev/pts/3
  
LogCasterRA
4/13/2006 3:23:06 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 17
DateTime : Thu Apr 13 14:20:05 2006
EventId : USER_Login
Command : tsm
User : root
Group : root
Outcome : OK
Details : user: root tty: /dev/pts/0
  
LogCasterRA
4/13/2006 10:27:10 AM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 16
DateTime : Thu Apr 13 09:24:09 2006
EventId : USER_Login
Command : tsm
User : root
Group : root
Outcome : OK
Details : user: root tty: /dev/pts/0
  
LogCasterRA
4/13/2006 10:26:59 AM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 15
DateTime : Thu Apr 13 09:23:57 2006
EventId : USER_Login
Command : tsm
User : root
Group : root
Outcome : FAIL_AUTH
Details : user: UNKNOWN_USER tty: /dev/pts/0
  
LogCasterRA
4/13/2006 10:26:28 AM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 14
DateTime : Thu Apr 13 09:23:26 2006
EventId : USER_SU
Command : su
User : root
Group : root
Outcome : FAIL
Details : paul
  
LogCasterRA
4/13/2006 10:21:08 AM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 13
DateTime : Thu Apr 13 09:18:08 2006
EventId : USER_Login
Command : tsm
User : root
Group : root
Outcome : OK
Details : user: root tty: /dev/pts/0
  
LogCasterRA
4/13/2006 5:42:56 AM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 12
DateTime : Thu Apr 13 04:39:54 2006
EventId : USER_SU
Command : su
User : mel
Group : root
Outcome : OK
Details : mel
  
LogCasterRA
4/13/2006 4:47:24 AM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 11
DateTime : Thu Apr 13 03:44:22 2006
EventId : USER_SU
Command : su
User : mel
Group : root
Outcome : OK
Details : mel
  
RippleTech
Page:2/2
5/26/2006 3:04:53 PM
Server
Date / Time
Id
Log
Type
Category
Source
Computer
Account
LogCasterRA
4/13/2006 4:47:20 AM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 10
DateTime : Thu Apr 13 03:44:18 2006
EventId : USER_Login
Command : tsm
User : root
Group : root
Outcome : OK
Details : user: root tty: /dev/pts/4
  
LogCasterRA
4/13/2006 3:52:00 AM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 9
DateTime : Thu Apr 13 02:48:57 2006
EventId : USER_SU
Command : su
User : mel
Group : root
Outcome : OK
Details : mel
  
LogCasterRA
4/12/2006 5:09:05 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 7
DateTime : Wed Apr 12 16:06:04 2006
EventId : USER_SU
Command : su
User : root
Group : root
Outcome : FAIL
Details : john
  
LogCasterRA
4/12/2006 4:44:30 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 2
EventNo : 6
DateTime : Wed Apr 12 15:41:29 2006
EventId : FILE_Open
Command : vi
User : mel
Group : root
Outcome : FAIL_ACCESS
Details : flags: 769 mode: 644 fd: 5 filename /etc/security/audit/config
  
LogCasterRA
4/12/2006 3:55:13 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 5
DateTime : Wed Apr 12 14:52:12 2006
EventId : PASSWORD_Change
Command : passwd
User : mel
Group : root
Outcome : FAIL
Details : mel
  
LogCasterRA
4/12/2006 3:55:10 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 4
DateTime : Wed Apr 12 14:52:08 2006
EventId : PASSWORD_Change
Command : passwd
User : mel
Group : root
Outcome : FAIL
Details : mel
  
LogCasterRA
4/12/2006 3:55:04 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 3
DateTime : Wed Apr 12 14:52:03 2006
EventId : PASSWORD_Change
Command : passwd
User : mel
Group : root
Outcome : FAIL
Details : mel
  
LogCasterRA
4/12/2006 3:55:01 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 2
DateTime : Wed Apr 12 14:51:58 2006
EventId : USER_SU
Command : su
User : mel
Group : root
Outcome : OK
Details : mel
  
LogCasterRA
4/12/2006 3:09:05 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 4
EventNo : 1
DateTime : Wed Apr 12 14:06:02 2006
EventId : AUD_It
Command : audit
User : root
Group : root
Outcome : OK
Details : cmd: 1 arg: 0
  
LogCasterRA
4/12/2006 3:09:05 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 4
EventNo : 16
DateTime : Wed Apr 12 14:06:01 2006
EventId : AUD_It
Command : audit
User : root
Group : root
Outcome : OK
Details : cmd: 4 arg: 0
  
LogCasterRA
4/12/2006 3:08:19 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 15
DateTime : Wed Apr 12 14:05:16 2006
EventId : FILE_Open
Command : vi
User : root
Group : root
Outcome : FAIL
Details : flags: 0 mode: 0 fd: 4 filename /etc/shadow
  
LogCasterRA
4/12/2006 3:08:01 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 4
EventNo : 14
DateTime : Wed Apr 12 14:05:00 2006
EventId : FILE_Open
Command : vi
User : root
Group : root
Outcome : OK
Details : flags: 769 mode: 644 fd: 5 filename /etc/passwd
  
LogCasterRA
4/12/2006 3:07:31 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 2
EventNo : 13
DateTime : Wed Apr 12 14:04:29 2006
EventId : USER_Remove
Command : rmuser
User : root
Group : root
Outcome : OK
Details : paul
  
LogCasterRA
4/12/2006 3:07:19 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 2
EventNo : 12
DateTime : Wed Apr 12 14:04:18 2006
EventId : GROUP_Remove
Command : rmgroup
User : root
Group : root
Outcome : OK
Details : dbm
  
LogCasterRA
4/12/2006 3:07:04 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 2
EventNo : 11
DateTime : Wed Apr 12 14:04:03 2006
EventId : GROUP_Create
Command : mkgroup
User : root
Group : root
Outcome : OK
Details : dbm -A
  
LogCasterRA
4/12/2006 3:06:26 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 2
EventNo : 10
DateTime : Wed Apr 12 14:03:25 2006
EventId : USER_Create
Command : mkuser
User : root
Group : root
Outcome : OK
Details : paul
 
LogCasterRA
4/12/2006 3:05:31 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 9
DateTime : Wed Apr 12 14:02:29 2006
EventId : USER_Login
Command : tsm
User : root
Group : root
Outcome : FAIL_AUTH
Details : user: UNKNOWN_USER tty: /dev/pts/0
  
LogCasterRA
4/12/2006 3:05:26 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 8
DateTime : Wed Apr 12 14:02:25 2006
EventId : USER_Login
Command : tsm
User : root
Group : root
Outcome : FAIL_AUTH
Details : user: mel tty: /dev/pts/0
  
LogCasterRA
4/12/2006 3:05:11 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 7
DateTime : Wed Apr 12 14:02:09 2006
EventId : USER_Login
Command : tsm
User : root
Group : root
Outcome : OK
Details : user: root tty: /dev/pts/0
  
LogCasterRA
4/12/2006 3:05:02 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 5
DateTime : Wed Apr 12 14:02:00 2006
EventId : USER_Login
Command : tsm
User : root
Group : root
Outcome : FAIL_AUTH
Details : user: root tty: /dev/pts/0
  
LogCasterRA
4/12/2006 3:05:02 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 6
DateTime : Wed Apr 12 14:02:02 2006
EventId : USER_Login
Command : tsm
User : root
Group : root
Outcome : FAIL_AUTH
Details : user: root tty: /dev/pts/0
  
LogCasterRA
4/12/2006 3:04:59 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 4
DateTime : Wed Apr 12 14:01:58 2006
EventId : USER_Login
Command : tsm
User : root
Group : root
Outcome : FAIL_AUTH
Details : user: root tty: /dev/pts/0
  
LogCasterRA
4/12/2006 3:04:47 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 3
DateTime : Wed Apr 12 14:01:44 2006
EventId : USER_SU
Command : su
User : venkat
Group : root
Outcome : OK
Details : venkat
  
LogCasterRA
4/12/2006 3:04:40 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 3
EventNo : 2
DateTime : Wed Apr 12 14:01:38 2006
EventId : USER_SU
Command : su
User : mel
Group : root
Outcome : OK
Details : mel
  
LogCasterRA
4/12/2006 3:04:00 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 4
EventNo : 1
DateTime : Wed Apr 12 14:00:59 2006
EventId : AUD_It
Command : audit
User : root
Group : root
Outcome : OK
Details : cmd: 1 arg: 0
  
LogCasterRA
4/12/2006 3:04:00 PM
15080
Application
Warning
Text File Watcher
LogCaster
LOGCASTERPROD
N/A

Hostname : axis
AuditType : AIXAudit
CriticalityLevel : 4
EventNo : 2
DateTime : Wed Apr 12 14:00:58 2006
EventId : AUD_It
Command : audit
User : root
Group : root
Outcome : OK
Details : cmd: 4 arg: 0
  
 
 
Query Used:
( SELECT ID, LOGNAME, TYPENAMEX, CATNAME, SRCNAME, COMPNAME, ACCTNAME, MSG, DATETIMEX AS DATETIME,'LogCaster051506' AS Server FROM LogCaster051506.LogCaster051506.DBO.DATAVWEVTTBL WHERE DATETIMEX BETWEEN '2006-04-01 00:00:00' AND '2006-04-15 00:00:00' AND CATNAME IN ('Text File Watcher') ) UNION ALL ( SELECT ID, LOGNAME, TYPENAMEX, CATNAME, SRCNAME, COMPNAME, ACCTNAME, MSG, DATETIMEX AS DATETIME,'LogCasterRA' AS Server FROM LogCasterRA.LogCasterRA.DBO.DATAVWEVTTBL WHERE DATETIMEX BETWEEN '2006-04-01 00:00:00' AND '2006-04-15 00:00:00' AND CATNAME IN ('Text File Watcher') ) ORDER BY Server,DATETIME DESC