RippleTech
Page:1/3
5/24/2006 3:12:12 PM
Cross Platform - Reports
Description
Allows reporting on all collected Cross Platform events from the monitored systems.
Parameters
Computer
All
Start Date Time
2006-03-27 12:01:00
Criticality Level
All
End Date Time
2006-03-28 01:00:00
UserAccount
All
Event Id
538,38
Category
All
Windows Message Search Criteria
None
Unix Message Search Criteria
None
Database Message Search Criteria
None
LOGCASTER SERVER
 
Computer
Event ID
Category
User Account
Criticality Level
Date / Time
Count
172.16.193.66
0
Login Added
inCache
Critical
3/27/2006 4:45:39 PM
1
 
sp_addlogin test1, test1, master
172.16.193.66
0
Login Added
inCache
Critical
3/27/2006 4:41:37 PM
1
 
sp_addlogin test, test, master
172.16.193.66
0
Login Added
inCache
Critical
3/27/2006 2:07:14 PM
1
 
sp_addlogin junk, junk, master
192.168.0.42
0
Privileges Granted To User
sa
Critical
3/27/2006 1:59:06 PM
1
 
grant insert,update, delete,select on event to mel
192.168.0.42
0
User Added
sa
Critical
3/27/2006 1:57:44 PM
1
 
sp_adduser mel,mel
192.168.0.42
0
Login Added
sa
Critical
3/27/2006 1:57:19 PM
1
 
sp_addlogin mel,mel,master
172.16.193.66
0
Login Added
inCache
Critical
3/27/2006 1:37:53 PM
1
 
sp_addlogin xyz,xyz,master
172.16.193.66
0
Login Added
inCache
Critical
3/27/2006 1:24:56 PM
2
 
sp_addlogin junk,junk,master
172.16.193.66
0
Login Added
inCache
Critical
3/27/2006 1:24:50 PM
1
 
sp_addlogin junk,junk,master g
172.16.193.66
0
Login Added
inCache
Critical
3/27/2006 12:11:57 PM
1
 
sp_addlogin mel,mel,master ;
LogCasterRA
 
Computer
Event ID
Category
User Account
Criticality Level
Date / Time
Count
LOGCASTERPROD
538
Logon/Logoff
venkat
Success Audit
3/28/2006 12:17:33 AM
1
 
User Logoff:
User Name: venkat
Domain: SHARKS
Logon ID: (0x0,0x565CE8E)
Logon Type: 2
RH Linux ES
38
auth
N/A
info
3/28/2006 12:02:52 AM
1
 
sshd(pam_unix)[1861]: session closed for user Troy
RH Linux ES
38
auth
N/A
info
3/28/2006 12:02:47 AM
1
 
su(pam_unix)[1889]: session closed for user root
RH Linux ES
38
auth
N/A
info
3/28/2006 12:02:41 AM
1
 
su(pam_unix)[1889]: session opened for user root by Troy(uid=504)
RH Linux ES
38
auth
N/A
info
3/28/2006 12:02:31 AM
1
 
sshd(pam_unix)[1861]: session opened for user Troy by (uid=0)
RH Linux ES
38
auth
N/A
info
3/28/2006 12:00:36 AM
1
 
su(pam_unix)[1837]: session closed for user Troy
RH Linux ES
38
auth
N/A
info
3/28/2006 12:00:32 AM
1
 
su(pam_unix)[1837]: session opened for user Troy by root(uid=0)
RH Linux ES
38
auth
N/A
info
3/28/2006 12:00:05 AM
1
 
crond(pam_unix)[1834]: session closed for user root
RH Linux ES
38
auth
N/A
info
3/28/2006 12:00:05 AM
1
 
crond(pam_unix)[1834]: session opened for user root by (uid=0)
RippleTech
Page:2/3
5/24/2006 3:12:12 PM
LogCasterRA
 
Computer
Event ID
Category
User Account
Criticality Level
Date / Time
Count
RH Linux ES
38
auth
N/A
info
3/27/2006 11:54:12 PM
1
 
sshd(pam_unix)[1789]: session opened for user root by root(uid=0)
RH Linux ES
38
auth
N/A
info
3/27/2006 11:51:31 PM
1
 
su(pam_unix)[1764]: session closed for user Troy
RH Linux ES
38
auth
N/A
info
3/27/2006 11:50:37 PM
1
 
su(pam_unix)[1764]: session opened for user Troy by root(uid=0)
RH Linux ES
38
auth
N/A
info
3/27/2006 11:49:47 PM
1
 
su(pam_unix)[1743]: session closed for user Troy
RH Linux ES
38
auth
N/A
info
3/27/2006 11:49:43 PM
1
 
su(pam_unix)[1743]: session opened for user Troy by root(uid=0)
RH Linux ES
38
auth
N/A
info
3/27/2006 11:48:26 PM
1
 
sshd(pam_unix)[1704]: session opened for user root by root(uid=0)
LOGCASTERPROD
538
Logon/Logoff
truger
Success Audit
3/27/2006 11:02:50 PM
1
 
User Logoff:
User Name: truger
Domain: SHARKS
Logon ID: (0x0,0x2C02A20)
Logon Type: 2
RH Linux ES
38
auth
N/A
info
3/27/2006 11:02:15 PM
1
 
crond(pam_unix)[1209]: session closed for user root
RH Linux ES
38
auth
N/A
info
3/27/2006 11:01:05 PM
1
 
crond(pam_unix)[1209]: session opened for user root by (uid=0)
RH Linux ES
38
auth
N/A
info
3/27/2006 11:00:05 PM
1
 
crond(pam_unix)[1207]: session closed for user root
RH Linux ES
38
auth
N/A
info
3/27/2006 11:00:05 PM
1
 
crond(pam_unix)[1207]: session opened for user root by (uid=0)
LOGCASTERPROD
538
Logon/Logoff
venkat
Success Audit
3/27/2006 7:44:04 PM
1
 
User Logoff:
User Name: venkat
Domain: SHARKS
Logon ID: (0x0,0x55393E9)
Logon Type: 2
LOGCASTERPROD
538
Logon/Logoff
truger
Success Audit
3/27/2006 7:41:34 PM
1
 
User Logoff:
User Name: truger
Domain: SHARKS
Logon ID: (0x0,0x4FE24ED)
Logon Type: 2
LOGCASTERPROD
538
Logon/Logoff
venkat
Success Audit
3/27/2006 7:41:29 PM
1
 
User Logoff:
User Name: venkat
Domain: SHARKS
Logon ID: (0x0,0x5522E49)
Logon Type: 2
LOGCASTERPROD
538
Logon/Logoff
venkat
Success Audit
3/27/2006 7:38:09 PM
1
 
User Logoff:
User Name: venkat
Domain: SHARKS
Logon ID: (0x0,0x54C0ABF)
Logon Type: 2
LOGCASTERPROD
538
Logon/Logoff
truger
Success Audit
3/27/2006 7:25:46 PM
1
 
User Logoff:
User Name: truger
Domain: SHARKS
Logon ID: (0x0,0x550D95F)
Logon Type: 2
RIPPLE_BACKUP
538
Logon/Logoff
john
Success Audit
3/27/2006 4:20:45 PM
1
 
User Logoff:
User Name: john
Domain: SHARKS
Logon ID: (0x0,0xA777348)
Logon Type: 2
LOGCASTERPROD
538
Logon/Logoff
Administrator
Success Audit
3/27/2006 3:37:24 PM
1
 
User Logoff:
User Name: Administrator
Domain: LOGCASTERPROD
Logon ID: (0x0,0x53133A7)
Logon Type: 2
LOGCASTERPROD
538
Logon/Logoff
Administrator
Success Audit
3/27/2006 3:30:04 PM
1
 
User Logoff:
User Name: Administrator
Domain: LOGCASTERPROD
Logon ID: (0x0,0x5312CED)
Logon Type: 2
LOGCASTERPROD
538
Logon/Logoff
Administrator
Success Audit
3/27/2006 3:30:04 PM
1
 
User Logoff:
User Name: Administrator
Domain: LOGCASTERPROD
Logon ID: (0x0,0x531322C)
Logon Type: 2
LOGCASTERPROD
538
Logon/Logoff
truger
Success Audit
3/27/2006 3:29:39 PM
1
 
User Logoff:
User Name: truger
Domain: SHARKS
Logon ID: (0x0,0x530FD30)
Logon Type: 2
LOGCASTERPROD
538
Logon/Logoff
truger
Success Audit
3/27/2006 3:29:35 PM
1
 
User Logoff:
User Name: truger
Domain: SHARKS
Logon ID: (0x0,0x530E69D)
Logon Type: 2
LOGCASTERPROD
538
Logon/Logoff
truger
Success Audit
3/27/2006 3:29:15 PM
1
 
User Logoff:
User Name: truger
Domain: SHARKS
Logon ID: (0x0,0x5309F63)
Logon Type: 2
LOGCASTERPROD
538
Logon/Logoff
Administrator
Success Audit
3/27/2006 2:06:46 PM
1
 
User Logoff:
User Name: Administrator
Domain: LOGCASTERPROD
Logon ID: (0x0,0x51E2F84)
Logon Type: 2
LOGCASTERPROD
538
Logon/Logoff
truger
Success Audit
3/27/2006 2:00:03 PM
1
 
User Logoff:
User Name: truger
Domain: SHARKS
Logon ID: (0x0,0x51E3091)
Logon Type: 2
RippleTech
Page:3/3
5/24/2006 3:12:12 PM
LogCasterRA
 
Computer
Event ID
Category
User Account
Criticality Level
Date / Time
Count
LOGCASTERPROD
538
Logon/Logoff
Administrator
Success Audit
3/27/2006 2:00:02 PM
1
 
User Logoff:
User Name: Administrator
Domain: LOGCASTERPROD
Logon ID: (0x0,0x51E2C0F)
Logon Type: 2
LOGCASTERPROD
538
Logon/Logoff
Administrator
Success Audit
3/27/2006 2:00:02 PM
1
 
User Logoff:
User Name: Administrator
Domain: LOGCASTERPROD
Logon ID: (0x0,0x51E2E0A)
Logon Type: 2
LOGCASTERPROD
538
Logon/Logoff
Administrator
Success Audit
3/27/2006 1:37:26 PM
1
 
User Logoff:
User Name: Administrator
Domain: LOGCASTERPROD
Logon ID: (0x0,0x519A6AE)
Logon Type: 2
LOGCASTERPROD
538
Logon/Logoff
Administrator
Success Audit
3/27/2006 1:30:06 PM
1
 
User Logoff:
User Name: Administrator
Domain: LOGCASTERPROD
Logon ID: (0x0,0x519A529)
Logon Type: 2
LOGCASTERPROD
538
Logon/Logoff
truger
Success Audit
3/27/2006 1:30:06 PM
1
 
User Logoff:
User Name: truger
Domain: SHARKS
Logon ID: (0x0,0x519A7F3)
Logon Type: 2
LOGCASTERPROD
538
Logon/Logoff
Administrator
Success Audit
3/27/2006 1:30:05 PM
1
 
User Logoff:
User Name: Administrator
Domain: LOGCASTERPROD
Logon ID: (0x0,0x519A19D)
Logon Type: 2
LOGCASTERPROD
538
Logon/Logoff
truger
Success Audit
3/27/2006 12:14:16 PM
1
 
User Logoff:
User Name: truger
Domain: SHARKS
Logon ID: (0x0,0x50E8BDD)
Logon Type: 2
LOGCASTERPROD
538
Logon/Logoff
truger
Success Audit
3/27/2006 12:13:49 PM
1
 
User Logoff:
User Name: truger
Domain: SHARKS
Logon ID: (0x0,0x50E7827)
Logon Type: 2