If you have areas of your site which require authenticated access (like with a .htaccess file), then the activity of those visitors includes their username.

For example, if your site has a "statistics" folder which you have to type in your username and password to view, your entire visit to your site (after entering in that username/password) will be logged with your username, like so:

4.5.6.7 - [b]caspita[/b] [02/Aug/2004:14:29:22 -0400] "GET /statistics/index.html HTTP/1.1" 200 8003 ...

More about .htaccess:
[httpd.apache.org...]

whoisgregg, you're right. But I think caspita means there are usernames in the Webalizer stats while it concerns a free site without any area which requires authenticated access.

I have seen that once, still don't understand.

Thanks for the info guys..

In fact it could be possible I think .. ie. I use cPanel to admin my site, it requires a us/pwd but is not the same I'm seeing in th logs.. could it be ie somebody trying to access without permit? .. I think I'll ask also my hosting provider and see if they know why this user appears in my logs.

As pointed for the previous post, I have no restricted areas in for my page, so it should not happen I think.

Thanks again

could it be ie somebody trying to access without permit?

I'd bet that's what is going on here, you may want to bring this issue up in the Apache forum [webmasterworld.com] here. Something like "spoofed username trying to crack my site?" and see what they have to say about it. I don't know if it's possible to send a username with a HTTP request, but if it is, I'm sure that's a tool in the hacker's tool belt.