Squid Analysis Report Generator

Squid User Access Report
Period: 2017Nov05-2017Nov05
Authentication Failures

USERID	IP/NAME	DATE/TIME	ACCESSED SITE
120.132.69.166	120.132.69.166	11/05/2017-14:59:38	http://www.baidu.com/favicon.ico
139.162.102.46	scan-51.security.ipip.net	11/05/2017-05:42:36	http://clientapi.ipip.net/echo.php?
192.168.137.104	192.168.137.104	11/05/2017-08:07:36	http://armmf.adobe.com/arm-manifests/win/Reader11Manifest2.msi
192.168.137.12	192.168.137.12	11/05/2017-08:01:15	armmf.adobe.com:443
		11/05/2017-08:01:15	armmf.adobe.com:443
		11/05/2017-18:13:51	armmf.adobe.com:443
		11/05/2017-18:13:51	armmf.adobe.com:443
		11/05/2017-18:13:25	http://192.168.137.245/
		11/05/2017-08:02:14	http://192.168.137.245/mtacs/tp/index.php
		11/05/2017-08:00:58	http://192.168.137.245:8080/safebrowser/client/safebrowser.jnlp
		11/05/2017-08:00:59	http://192.168.137.245:8080/safebrowser/client/safebrowser.jnlp
		11/05/2017-08:02:00	http://192.168.137.245:8080/safebrowser/client/safebrowser.jnlp
		11/05/2017-08:02:00	http://192.168.137.245:8080/safebrowser/client/safebrowser.jnlp
192.168.137.126	192.168.137.126	11/05/2017-08:20:00	http://www.msftncsi.com/ncsi.txt
192.168.137.13	192.168.137.13	11/05/2017-18:14:36	accounts.google.com:443
		11/05/2017-18:14:29	apis.google.com:443
		11/05/2017-18:14:29	apis.google.com:443
		11/05/2017-18:14:29	apis.google.com:443
		11/05/2017-18:14:48	apis.google.com:443
		11/05/2017-18:14:51	apis.google.com:443
		11/05/2017-18:14:29	clients4.google.com:443
		11/05/2017-18:14:37	http://gmail.com/
		11/05/2017-18:14:42	http://gmail.com/
		11/05/2017-18:14:43	http://gmail.com/
192.168.137.14	192.168.137.14	11/05/2017-18:27:44	armmf.adobe.com:443
		11/05/2017-18:27:45	armmf.adobe.com:443
		11/05/2017-18:27:45	armmf.adobe.com:443
		11/05/2017-18:27:45	armmf.adobe.com:443
		11/05/2017-18:27:45	armmf.adobe.com:443
		11/05/2017-18:27:45	armmf.adobe.com:443
		11/05/2017-18:27:45	armmf.adobe.com:443
		11/05/2017-18:27:46	armmf.adobe.com:443
		11/05/2017-18:15:58	http://192.168.137.245/
		11/05/2017-18:15:38	http://suzanaa.ddns.net:555/is-ready
192.168.137.143	192.168.137.143	11/05/2017-13:12:38	accounts.google.com:443
		11/05/2017-13:12:39	accounts.google.com:443
		11/05/2017-13:12:42	accounts.google.com:443
		11/05/2017-13:12:50	accounts.google.com:443
		11/05/2017-10:13:12	alt1-safebrowsing.google.com:443
		11/05/2017-13:15:51	alt1-safebrowsing.google.com:443
		11/05/2017-13:16:51	alt1-safebrowsing.google.com:443
		11/05/2017-13:12:55	apis.google.com:443
		11/05/2017-13:12:55	clients6.google.com:443
		11/05/2017-10:43:06	clientservices.googleapis.com:443
192.168.137.15	192.168.137.15	11/05/2017-18:28:35	armmf.adobe.com:443
		11/05/2017-18:28:35	armmf.adobe.com:443
		11/05/2017-18:28:35	armmf.adobe.com:443
		11/05/2017-18:28:36	armmf.adobe.com:443
		11/05/2017-18:28:37	armmf.adobe.com:443
		11/05/2017-18:28:37	armmf.adobe.com:443
		11/05/2017-18:28:37	armmf.adobe.com:443
		11/05/2017-18:28:36	http://crl.verisign.com/pca3.crl
		11/05/2017-18:28:36	http://crl3.digicert.com/DigiCertHighAssuranceEVRootCA.crl
		11/05/2017-18:28:36	http://crl3.digicert.com/EVCodeSigningSHA2-g1.crl
192.168.137.19	192.168.137.19	11/05/2017-12:41:34	armmf.adobe.com:443
		11/05/2017-12:41:33	http://armmf.adobe.com/arm-manifests/win/Reader11Manifest.msi
		11/05/2017-12:41:36	http://armmf.adobe.com/arm-manifests/win/Reader11Manifest.msi
		11/05/2017-12:43:57	http://go.microsoft.com/fwlink/?
		11/05/2017-12:43:59	http://go.microsoft.com/fwlink/?
		11/05/2017-12:44:00	http://go.microsoft.com/fwlink/?
		11/05/2017-12:44:00	http://go.microsoft.com/fwlink/?
		11/05/2017-12:44:01	http://go.microsoft.com/fwlink/?
		11/05/2017-12:44:02	http://go.microsoft.com/fwlink/?
		11/05/2017-12:43:58	ieonlinews.microsoft.com:443
192.168.137.245	192.168.137.245	11/05/2017-07:31:59	autolk.veeam.com:443
		11/05/2017-07:48:13	clients1.google.com:443
		11/05/2017-07:48:14	clients1.google.com:443
		11/05/2017-07:48:15	clients1.google.com:443
		11/05/2017-07:48:18	clients1.google.com:443
		11/05/2017-07:48:24	clients1.google.com:443
		11/05/2017-07:48:38	clients1.google.com:443
		11/05/2017-07:49:07	clients1.google.com:443
		11/05/2017-07:49:35	clients1.google.com:443
		11/05/2017-07:49:37	clients1.google.com:443
192.168.137.246	192.168.137.246	11/05/2017-07:28:26	autolk.veeam.com:443
		11/05/2017-12:41:52	clientservices.googleapis.com:443
		11/05/2017-07:28:20	http://crl.globalsign.com/gs/gscodesigng3.crl
		11/05/2017-12:42:00	http://http.00.s.sophosxl.net/V3/01/1.puebzr-2svagy-2sra-2sjrypbzr-2rugzy.jjj.tbbtyr.pbz.m/
		11/05/2017-12:42:05	http://http.00.s.sophosxl.net/V3/01/1.snivpba-2rvpb.jjj.tbbtyr.pbz.m/
		11/05/2017-12:42:00	http://http.00.s.sophosxl.net/V3/01/ffy.tfgngvp.pbz.m/
		11/05/2017-12:41:55	http://http.00.s.sophosxl.net/V3/01/jjj.tbbtyr.pbz.m/
		11/05/2017-12:42:50	http://http.00.s.sophosxl.net/V3/01/jjj.tfgngvp.pbz.m/
		11/05/2017-12:41:52	http://http.00.s.sophosxl.net/V3/02/1-1.59feb7a0.579e3a2caecca9e8960da0c76b3ada17a45d1a7f8765b219dbce93948d0a290.g/jjj.tbbtyr.pb.va.m/
		11/05/2017-07:26:27	http://ipv6.msftncsi.com/ncsi.txt
192.168.137.34	192.168.137.34	11/05/2017-13:03:09	clients5.google.com:443
		11/05/2017-13:03:37	clients5.google.com:443
		11/05/2017-13:00:18	http://tools.google.com/service/update2
		11/05/2017-13:00:45	http://tools.google.com/service/update2
		11/05/2017-13:02:30	http://tools.google.com/service/update2?
		11/05/2017-13:02:53	http://tools.google.com/service/update2?
		11/05/2017-12:57:52	javadl-esd-secure.oracle.com:443
		11/05/2017-12:59:35	tools.google.com:443
		11/05/2017-13:00:02	tools.google.com:443
		11/05/2017-13:01:51	tools.google.com:443
192.168.137.36	192.168.137.36	11/05/2017-17:23:50	accounts.google.com:443
		11/05/2017-17:23:51	accounts.google.com:443
		11/05/2017-17:23:54	accounts.google.com:443
		11/05/2017-17:26:36	alt1-safebrowsing.google.com:443
		11/05/2017-17:27:36	alt1-safebrowsing.google.com:443
		11/05/2017-18:13:36	alt1-safebrowsing.google.com:443
		11/05/2017-17:23:51	clients2.google.com:443
		11/05/2017-17:23:53	clients2.google.com:443
		11/05/2017-17:23:57	clients2.google.com:443
		11/05/2017-17:29:49	clients2.google.com:443
192.168.137.50	192.168.137.50	11/05/2017-08:04:15	http://www.msftncsi.com/ncsi.txt
192.168.137.51	192.168.137.51	11/05/2017-18:16:05	armmf.adobe.com:443
		11/05/2017-18:16:07	armmf.adobe.com:443
		11/05/2017-18:16:10	armmf.adobe.com:443
		11/05/2017-18:16:11	armmf.adobe.com:443
		11/05/2017-19:07:23	http://192.168.137.245/
		11/05/2017-18:16:09	http://armmf.adobe.com/arm-manifests/win/ArmManifest.msi
		11/05/2017-18:16:13	http://armmf.adobe.com/arm-manifests/win/Reader11Manifest.msi
		11/05/2017-18:21:05	http://bitcast-b.bitgravity.com/quickheal/1600/mymms/eng/ts/msg32.htm
		11/05/2017-18:21:05	http://bitcast-b.bitgravity.com/quickheal/1600/mymms/eng/ts/msg32.htm
		11/05/2017-18:21:05	http://bitcast-b.bitgravity.com/quickheal/1600/mymms/eng/ts/msg32.htm
192.168.137.52	192.168.137.52	11/05/2017-18:16:08	armmf.adobe.com:443
		11/05/2017-18:16:09	armmf.adobe.com:443
		11/05/2017-18:16:11	armmf.adobe.com:443
		11/05/2017-18:16:12	armmf.adobe.com:443
		11/05/2017-18:16:11	http://armmf.adobe.com/arm-manifests/win/ArmManifest.msi
		11/05/2017-18:16:14	http://armmf.adobe.com/arm-manifests/win/Reader11Manifest.msi
		11/05/2017-18:16:05	http://suzanaa.ddns.net:555/is-ready
		11/05/2017-18:16:06	http://suzanaa.ddns.net:555/is-ready
		11/05/2017-18:16:07	http://suzanaa.ddns.net:555/is-ready
		11/05/2017-18:16:08	http://suzanaa.ddns.net:555/is-ready
192.168.137.53	192.168.137.53	11/05/2017-12:57:39	armmf.adobe.com:443
		11/05/2017-12:57:39	armmf.adobe.com:443
		11/05/2017-18:16:18	armmf.adobe.com:443
		11/05/2017-18:16:18	armmf.adobe.com:443
		11/05/2017-12:57:41	http://armmf.adobe.com/arm-manifests/win/Reader11Manifest.msi
		11/05/2017-18:16:20	http://armmf.adobe.com/arm-manifests/win/Reader11Manifest.msi
		11/05/2017-13:04:58	http://watson.microsoft.com/StageOne/Generic/AppHangB1/acad_exe/25_0_114_0/503d9651/4c4a/513.htm?
		11/05/2017-18:28:37	http://watson.microsoft.com/StageOne/Generic/AppHangB1/acad_exe/25_0_114_0/503d9651/4c4a/513.htm?
		11/05/2017-13:04:58	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024402c/EndSearch/Search/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
		11/05/2017-13:04:58	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024402c/EndSearch/Search/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
192.168.137.54	192.168.137.54	11/05/2017-18:15:35	armmf.adobe.com:443
		11/05/2017-18:15:36	armmf.adobe.com:443
		11/05/2017-18:15:39	armmf.adobe.com:443
		11/05/2017-18:15:39	armmf.adobe.com:443
		11/05/2017-18:15:38	http://armmf.adobe.com/arm-manifests/win/ArmManifest.msi
		11/05/2017-18:15:41	http://armmf.adobe.com/arm-manifests/win/Reader11Manifest.msi
		11/05/2017-18:29:05	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024402c/EndSearch/Search/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
		11/05/2017-18:29:05	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024402c/EndSearch/Search/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
		11/05/2017-18:29:05	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024402c/EndSearch/Search/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
		11/05/2017-18:29:05	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024402c/EndSearch/Search/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
192.168.137.55	192.168.137.55	11/05/2017-18:15:14	armmf.adobe.com:443
		11/05/2017-18:15:15	armmf.adobe.com:443
		11/05/2017-18:15:17	http://armmf.adobe.com/arm-manifests/win/ArmManifest.msi
		11/05/2017-18:28:45	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024001b/EndDownload/Download/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
		11/05/2017-18:28:45	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024402c/EndSearch/Search/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
		11/05/2017-18:28:45	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024402c/EndSearch/Search/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
		11/05/2017-18:28:45	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024402c/EndSearch/Search/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
		11/05/2017-18:28:45	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024402c/EndSearch/Search/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
		11/05/2017-18:28:45	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024402c/EndSearch/Search/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
		11/05/2017-18:28:45	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024402c/EndSearch/Search/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
192.168.137.56	192.168.137.56	11/05/2017-18:15:11	armmf.adobe.com:443
		11/05/2017-18:15:11	armmf.adobe.com:443
		11/05/2017-18:15:14	armmf.adobe.com:443
		11/05/2017-18:15:14	armmf.adobe.com:443
		11/05/2017-19:13:33	http://192.168.137.245/
		11/05/2017-18:15:13	http://armmf.adobe.com/arm-manifests/win/ArmManifest.msi
		11/05/2017-18:15:16	http://armmf.adobe.com/arm-manifests/win/Reader11Manifest.msi
		11/05/2017-18:15:12	http://suzanaa.ddns.net:555/is-ready
		11/05/2017-18:15:13	http://suzanaa.ddns.net:555/is-ready
		11/05/2017-18:15:14	http://suzanaa.ddns.net:555/is-ready
192.168.137.57	192.168.137.57	11/05/2017-18:13:18	armmf.adobe.com:443
		11/05/2017-18:13:18	armmf.adobe.com:443
		11/05/2017-18:13:23	armmf.adobe.com:443
		11/05/2017-18:13:24	armmf.adobe.com:443
		11/05/2017-19:13:23	http://192.168.137.245/
		11/05/2017-18:13:20	http://armmf.adobe.com/arm-manifests/win/ArmManifest.msi
		11/05/2017-18:13:26	http://armmf.adobe.com/arm-manifests/win/Reader11Manifest.msi
		11/05/2017-18:26:26	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024402c/EndSearch/Search/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
		11/05/2017-18:26:29	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024402c/EndSearch/Search/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
		11/05/2017-18:26:32	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024402c/EndSearch/Search/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
192.168.137.58	192.168.137.58	11/05/2017-18:15:13	armmf.adobe.com:443
		11/05/2017-18:15:13	armmf.adobe.com:443
		11/05/2017-18:15:18	armmf.adobe.com:443
		11/05/2017-18:15:18	armmf.adobe.com:443
		11/05/2017-19:12:45	http://192.168.137.245/
		11/05/2017-19:12:52	http://192.168.137.245/destroy_login.php
		11/05/2017-18:15:15	http://armmf.adobe.com/arm-manifests/win/ArmManifest.msi
		11/05/2017-18:15:20	http://armmf.adobe.com/arm-manifests/win/Reader11Manifest.msi
		11/05/2017-18:13:45	http://go.microsoft.com/fwlink/?
		11/05/2017-18:13:46	http://go.microsoft.com/fwlink/?
192.168.137.60	192.168.137.60	11/05/2017-18:13:40	armmf.adobe.com:443
		11/05/2017-18:13:40	armmf.adobe.com:443
		11/05/2017-18:13:46	armmf.adobe.com:443
		11/05/2017-18:13:46	armmf.adobe.com:443
		11/05/2017-19:10:13	http://192.168.137.245/
		11/05/2017-19:10:18	http://192.168.137.245/destroy_login.php
		11/05/2017-18:13:42	http://armmf.adobe.com/arm-manifests/win/ArmManifest.msi
		11/05/2017-18:13:48	http://armmf.adobe.com/arm-manifests/win/Reader11Manifest.msi
		11/05/2017-18:13:31	http://suzanaa.ddns.net:555/is-ready
		11/05/2017-18:13:32	http://suzanaa.ddns.net:555/is-ready
192.168.137.62	192.168.137.62	11/05/2017-18:18:05	armmf.adobe.com:443
		11/05/2017-18:18:08	armmf.adobe.com:443
		11/05/2017-18:18:11	armmf.adobe.com:443
		11/05/2017-18:18:12	armmf.adobe.com:443
		11/05/2017-19:11:20	http://192.168.137.245/
		11/05/2017-18:18:10	http://armmf.adobe.com/arm-manifests/win/ArmManifest.msi
		11/05/2017-18:18:14	http://armmf.adobe.com/arm-manifests/win/Reader11Manifest.msi
		11/05/2017-18:18:14	http://suzanaa.ddns.net:555/is-ready
		11/05/2017-18:18:15	http://suzanaa.ddns.net:555/is-ready
		11/05/2017-18:18:16	http://suzanaa.ddns.net:555/is-ready
192.168.137.64	192.168.137.64	11/05/2017-19:51:53	alt1-safebrowsing.google.com:443
		11/05/2017-19:52:53	alt1-safebrowsing.google.com:443
		11/05/2017-19:49:52	clients2.google.com:443
		11/05/2017-19:49:53	clients2.google.com:443
		11/05/2017-19:49:57	clients2.google.com:443
		11/05/2017-19:50:05	clients2.google.com:443
		11/05/2017-19:55:51	clients2.google.com:443
		11/05/2017-19:49:52	clients4.google.com:443
		11/05/2017-19:54:52	clients4.google.com:443
		11/05/2017-20:06:55	go.microsoft.com:443
192.168.137.67	192.168.137.67	11/05/2017-18:36:45	javadl-esd-secure.oracle.com:443
192.168.137.69	192.168.137.69	11/05/2017-18:31:39	armmf.adobe.com:443
		11/05/2017-18:31:39	armmf.adobe.com:443
		11/05/2017-18:31:41	http://armmf.adobe.com/arm-manifests/win/ArmManifest.msi
		11/05/2017-18:38:04	http://www.msftncsi.com/ncsi.txt
192.168.137.71	192.168.137.71	11/05/2017-18:36:04	javadl-esd-secure.oracle.com:443
192.168.137.83	192.168.137.83	11/05/2017-18:28:04	armmf.adobe.com:443
		11/05/2017-18:28:05	armmf.adobe.com:443
		11/05/2017-18:28:07	http://armmf.adobe.com/arm-manifests/win/Reader11Manifest.msi
		11/05/2017-18:41:22	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024001f/EndSearch/Search/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
		11/05/2017-18:41:25	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024402c/EndSearch/Search/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
		11/05/2017-18:41:27	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024402c/EndSearch/Search/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
		11/05/2017-18:41:30	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024402c/EndSearch/Search/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
		11/05/2017-18:41:33	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024402c/EndSearch/Search/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
		11/05/2017-18:41:35	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024402c/EndSearch/Search/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
		11/05/2017-18:41:38	http://watson.microsoft.com/StageOne/Generic/MpTelemetry/8024402c/EndSearch/Search/6_1_7600_16385/MpSigDwn_dll/6_1_7600_16385/Windows%20Defender.htm?
192.168.137.9	192.168.137.9	11/05/2017-17:31:09	alt1-safebrowsing.google.com:443
		11/05/2017-17:32:09	alt1-safebrowsing.google.com:443
		11/05/2017-17:40:56	armmf.adobe.com:443
		11/05/2017-17:40:56	armmf.adobe.com:443
		11/05/2017-17:40:56	armmf.adobe.com:443
		11/05/2017-17:40:56	armmf.adobe.com:443
		11/05/2017-17:35:10	clients2.google.com:443
		11/05/2017-17:34:10	clients4.google.com:443
		11/05/2017-17:59:10	clients4.google.com:443
		11/05/2017-17:59:24	clients4.google.com:443
192.168.137.92	192.168.137.92	11/05/2017-13:33:34	http://www.bing.com/favicon.ico
91.196.50.33	91a196b50c33.greendata.pl	11/05/2017-20:48:52	http://testp3.pospr.waw.pl/testproxy.php
admin	192.168.137.12	11/05/2017-08:02:33	http://192.168.137.245/mtacs/tp/index.php
	192.168.137.64	11/05/2017-20:06:32	http://www.win-rar.com/notifier/?
		11/05/2017-20:06:37	http://www.win-rar.com/notifier/?
adminmaharani	192.168.137.12	11/05/2017-08:02:23	http://192.168.137.245/mtacs/tp/index.php

Generated by sarg-2.2 May-17-2006 on Nov/06/2017 04:58