OwlCyberSecurity - MANAGER

Edit File: awstats122025.testone.onebox.pk.txt

AWSTATS DATA FILE 7.9 (build 20230108)
# If you remove this file, all statistics for date 202512 will be lost/reset.
# Last config file used to build this data file was /home/oneboxpk/tmp/awstats/awstats.testone.onebox.pk.conf.

# Position (offset in bytes) in this file for beginning of each section for
# direct I/O access. If you made changes somewhere in this file, you should
# also remove completely the MAP section (AWStats will rewrite it at next
# update).
BEGIN_MAP 28
POS_GENERAL 2048                
POS_TIME 2723                
POS_VISITOR 10229               
POS_DAY 10975               
POS_DOMAIN 3383                
POS_LOGIN 3690                
POS_ROBOT 3845                
POS_WORMS 4171                
POS_EMAILSENDER 4302                
POS_EMAILRECEIVER 4445                
POS_SESSION 11290               
POS_FILESIZE 11540               
POS_SIDER 11437               
POS_FILETYPES 4580                
POS_DOWNLOADS 4709                
POS_OS 4757                
POS_BROWSER 4892                
POS_SCREENSIZE 5104                
POS_UNKNOWNREFERER 5178                
POS_UNKNOWNREFERERBROWSER 5608                
POS_ORIGIN 5846                
POS_SEREFERRALS 5978                
POS_PAGEREFS 6122                
POS_SEARCHWORDS 6270                
POS_KEYWORDS 6422                
POS_MISC 2386                
POS_ERRORS 6481                
POS_CLUSTER 3546                
POS_SIDER_404 6616                
END_MAP

# LastLine    = Date of last record processed - Last record line number in last log - Last record offset in last log - Last record signature value
# FirstTime   = Date of first visit for history file
# LastTime    = Date of last visit for history file
# LastUpdate  = Date of last update - Nb of parsed records - Nb of parsed old records - Nb of parsed new records - Nb of parsed corrupted - Nb of parsed dropped
# TotalVisits = Number of visits
# TotalUnique = Number of unique visitors
# MonthHostsKnown   = Number of hosts known
# MonthHostsUnKnown = Number of hosts unknown
BEGIN_GENERAL 8
LastLine 20260101053853 3 336 10394857457268
FirstTime 20251201055102
LastTime 20251231162546
LastUpdate 20260101150146 3 0 2 0 0
TotalVisits 17                  
TotalUnique 17                  
MonthHostsKnown 0                   
MonthHostsUnknown 18                  
END_GENERAL

# Misc ID - Pages - Hits - Bandwidth
BEGIN_MISC 10
JavascriptDisabled 0 0 0
QuickTimeSupport 0 0 0
PDFSupport 0 0 0
FlashSupport 0 0 0
TotalMisc 0 0 0
AddToFavourites 0 10 0
JavaEnabled 0 0 0
RealPlayerSupport 0 0 0
WindowsMediaPlayerSupport 0 0 0
DirectorSupport 0 0 0
END_MISC

# Hour - Pages - Hits - Bandwidth - Not viewed Pages - Not viewed Hits - Not viewed Bandwidth
BEGIN_TIME 24
0 4 4 3012 18 18 12667
1 1 1 753 379 381 1721293
2 0 0 0 3 4 15438
3 1 2 6100 2 3 18488
4 0 0 0 7 7 2658
5 3 4 598574 7 8 6531
6 0 0 0 152 153 55129
7 3 4 7606 4 7 16579
8 0 0 0 217 217 1586053
9 0 0 0 0 0 0
10 0 0 0 0 1 67
11 1 1 753 1 3 4690
12 0 0 0 161 162 58447
13 1 1 753 337 337 1267464
14 0 0 0 2 4 21994
15 1 1 753 211 212 86272
16 2 2 1506 318 319 2328132
17 3 3 2259 180 181 79142
18 3 3 2259 33 34 123337
19 0 0 0 37 37 257321
20 0 0 0 167 167 1220603
21 0 0 0 421 421 1617292
22 0 0 0 159 159 56865
23 1 2 6100 0 1 3870
END_TIME

# Domain - Pages - Hits - Bandwidth
# The 25 first Pages must be first (order not required for others)
BEGIN_DOMAIN 8
us 15 18 618304
cz 3 3 2259
ca 2 2 1506
be 1 1 753
se 1 1 753
cn 1 1 753
nl 1 1 753
ru 0 1 5347
END_DOMAIN

# Cluster ID - Pages - Hits - Bandwidth
BEGIN_CLUSTER 0
END_CLUSTER

# Login - Pages - Hits - Bandwidth - Last visit
# The 10 first Pages must be first (order not required for others)
BEGIN_LOGIN 0
END_LOGIN

# Robot ID - Hits - Bandwidth - Last visit - Hits on robots.txt
# The 25 first Hits must be first (order not required for others)
BEGIN_ROBOT 6
no_user_agent 12 54928 20251229125946 0
MJ12bot/ 8 3280 20251230125750 4
robot 2 134 20251228141441 2
checker 1 753 20251224195640 0
unknown 1 67 20251223075004 1
scanner 1 753 20251203190308 0
END_ROBOT

# Worm ID - Hits - Bandwidth - Last visit
# The 5 first Hits must be first (order not required for others)
BEGIN_WORMS 0
END_WORMS

# EMail - Hits - Bandwidth - Last visit
# The 20 first Hits must be first (order not required for others)
BEGIN_EMAILSENDER 0
END_EMAILSENDER

# EMail - Hits - Bandwidth - Last visit
# The 20 first hits must be first (order not required for others)
BEGIN_EMAILRECEIVER 0
END_EMAILRECEIVER

# Files type - Hits - Bandwidth - Bandwidth without compression - Bandwidth after compression
BEGIN_FILETYPES 4
json 1 492 0 0
js 1 596576 0 0
html 23 17319 0 0
png 3 16041 0 0
END_FILETYPES

# Downloads - Hits - Bandwidth
BEGIN_DOWNLOADS 0
END_DOWNLOADS

# OS ID - Hits
BEGIN_OS ID - Hits - Pages 6
ios_iphone 1 1
linux 3 3
macosx15 1 1
win7 3 2
win10 9 9
Unknown 11 8
END_OS

# Browser ID - Hits - Pages
BEGIN_BROWSER 9
firefox47.0 3 2
chrome120.0.0.0 1 1
safari17.3.1 1 1
chrome88.0.4240.193 3 3
chrome78.0.3904.108 6 6
mozilla 7 4
chrome139.0.0.0 2 2
Unknown 4 4
firefox139.0 1 1
END_BROWSER

# Screen size - Hits
BEGIN_SCREENSIZE 0
END_SCREENSIZE

# Unknown referer OS - Last visit date
BEGIN_UNKNOWNREFERER 3
Mozilla/5.0_(compatible;_InternetMeasurement/1.0;__https://internet-measurement.com/) 20251230074155
Mozilla/5.0_(compatible;_CensysInspect/1.1;__https://about.censys.io/) 20251230052258
Hello_from_Palo_Alto_Networks,_find_out_more_about_our_scans_in_https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity 20251226070238
END_UNKNOWNREFERER

# Unknown referer Browser - Last visit date
BEGIN_UNKNOWNREFERERBROWSER 1
Hello_from_Palo_Alto_Networks,_find_out_more_about_our_scans_in_https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity 20251226070238
END_UNKNOWNREFERERBROWSER

# Origin - Pages - Hits 
BEGIN_ORIGIN 6
From0 24 28
From1 0 0
From2 0 0
From3 0 0
From4 0 0
From5 0 0
END_ORIGIN

# Search engine referers ID - Pages - Hits
BEGIN_SEREFERRALS 0
END_SEREFERRALS

# External page referers - Pages - Hits
# The 25 first Pages must be first (order not required for others)
BEGIN_PAGEREFS 0
END_PAGEREFS

# Search keyphrases - Number of search
# The 10 first number of search must be first (order not required for others)
BEGIN_SEARCHWORDS 0
END_SEARCHWORDS

# Search keywords - Number of search
# The 25 first number of search must be first (order not required for others)
BEGIN_KEYWORDS 0
END_KEYWORDS

# Errors - Hits - Bandwidth
BEGIN_ERRORS 4
404 320 110640
503 3 1364
403 1117 395286
500 1361 9947549
END_ERRORS

# URL with 404 errors - Hits - Last URL referrer
BEGIN_SIDER_404 101
/wp-content/admin.php 6 -
/wp-admin/user/about.php 3 -
/index/function.php 5 -
/wp-admin/includes/xmrlpc.php 2 -
/wp-includes/ID3/about.php 3 -
/wp-content/upgrade/index.php 2 -
/wp-admin/admin-ajax.php 1 -
/wp-admin/maint/maint.php 3 -
/content.php 2 -
/blog/wp-includes/wlwmanifest.xml 3 -
/wp-content/uploads/wp-conflg.php 2 -
/wp-includes/SimplePie/wp-login.php 3 -
/wp-content/plugins/index.php 4 -
/shop/wp-includes/wlwmanifest.xml 3 -
/sitemap.xml 1 -
/wp-admin/css/colors/midnight/about.php 6 -
/wp-content/uploads/index.php 3 -
/wp1/wp-includes/wlwmanifest.xml 3 -
/wp-includes/blocks/post-excerpt/alfa-rex.PHP 1 -
/.well-known/acme-challenge/about.php 2 -
/wp-includes/assets/index.php 3 -
/wp-content/plugins/zwso.php 1 -
/wp-includes/blocks/post-excerpt/index.php 1 -
/wp-includes/images/wp-login.php 3 -
/about.php 8 -
/wp-content/packed.php 2 -
/wp-content/index.php 3 -
/wp-content/radio.php 6 -
/media/wp-includes/wlwmanifest.xml 2 -
/wp2/wp-includes/wlwmanifest.xml 3 -
/2019/wp-includes/wlwmanifest.xml 3 -
/filemanager/dialog.php 3 -
/wp-admin/maint/admin.php 3 -
/wp-includes/style-engine/about.php 3 -
/wp-admin/maint/about.php 6 -
/plugins/Cache/footer.php 3 -
/wp-includes/style-engine/index.php 2 -
/wp-admin/maint/index.php 5 -
/well-known/acme-challenge/e/index.php 1 -
/wp-includes/block-patterns/index.php 3 -
/wp-content/themes/sketch/404.php 2 -
/2018/wp-includes/wlwmanifest.xml 2 -
/wp-includes/wp-class.php 3 -
/wp-includes/js/codemirror/index.php 3 -
/jp.php 3 -
/ext.php 2 -
/sito/wp-includes/wlwmanifest.xml 3 -
/modules/mod_simplefileuploadv1.3/elements/filemanager.php 1 -
/test/wp-includes/wlwmanifest.xml 3 -
/css/index.php 3 -
/wp-admin/js/index.php 3 -
/wordpress/wp-includes/wlwmanifest.xml 3 -
/themes/twentytwentytwo/index.php 3 -
/wp-admin/network/plugins.php 3 -
/.well-known/security.txt 1 -
/wp-includes/sodium_compat/index.php 2 -
/2020/wp-includes/wlwmanifest.xml 1 -
/config.json 1 -
/css/colors/blue/index.php 3 -
/wp-admin/network/wp-conflg.php 3 -
/wp-admin/css/colour.php 2 -
/wp-admin/about.php 7 -
/wp-admin/css/colors/index.php 1 -
/wp/wp-includes/wlwmanifest.xml 3 -
/wp-content/plugins/admin.php 3 -
/images/m.php 3 -
/website/wp-includes/wlwmanifest.xml 3 -
/wp-admin/maint/wp-is.php 2 -
/web/wp-includes/wlwmanifest.xml 3 -
/about/function.php 3 -
/assets/plugins/gmap/dapa.php 1 -
/.well-known/admin.php 3 -
/.well-known/index.php 3 -
/wp-admin/setup-config.php 1 -
/wp-content/upgrade/about.php 3 -
/mah.php 2 -
/cms/wp-includes/wlwmanifest.xml 3 -
/admin.php 14 -
/uploads/autoload_classmap.php 3 -
/wp-includes/IXR/about.php 2 -
/radio.php 8 -
/wp-content/themes/admin.php 2 -
/wp-content/plugins/hellopress/wp_filemanager.php 8 -
/lock360.php 8 -
/wp-admin/js/wp-conflg.php 8 -
/site/wp-includes/wlwmanifest.xml 3 -
/wp-admin/css/wp-conflg.php 3 -
/css/up.php 2 -
/news/wp-includes/wlwmanifest.xml 3 -
/wp-includes/customize/about.php 3 -
/wp-content/uploads/wp.php 2 -
/modules/mod_simplefileuploadv1.3/elements/Cyb3r.php 1 -
/wp-content/themes/about.php 6 -
/wp-admin/admin-post.php 2 -
/wp-includes/fonts/index.php 6 -
/wp-content/themes/twentytwentytwo/index.php 3 -
/update/f35.php 2 -
/.well-known/acme-challenge/index.php 3 -
/wp-includes/wlwmanifest.xml 3 -
/wp-admin/css/colors/blue/index.php 6 -
/wp-admin/wp-conflg.php 3 -
END_SIDER_404

# Host - Pages - Hits - Bandwidth - Last visit date - [Start date of last visit] - [Last page of last visit]
# [Start date of last visit] and [Last page of last visit] are saved only if session is not finished
# The 25 first Hits must be first (order not required for others)
BEGIN_VISITOR 18
89.187.187.89 3 3 2259 20251219171743
34.169.108.92 3 3 2259 20251204003552
136.107.97.232 3 3 2259 20251224183156
54.92.226.160 2 3 597821 20251201055103
46.101.227.162 1 1 753 20251231162546
101.91.110.23 1 1 753 20251223074941
147.185.132.123 1 1 753 20251202164848
87.236.176.17 1 1 753 20251230074155
198.235.24.77 1 1 753 20251220012011
162.142.125.124 1 2 6100 20251222233705
93.158.90.66 1 1 753 20251223135610
199.45.154.142 1 2 6100 20251202035628
147.185.132.12 1 1 753 20251226070238
198.235.24.100 1 1 753 20251225003921
206.168.34.51 1 1 753 20251230052258
68.183.38.125 1 1 753 20251225114211
159.223.220.100 1 1 753 20251203151223
185.247.137.166 0 1 5347 
END_VISITOR

# Date - Pages - Hits - Bandwidth - Visits
BEGIN_DAY 13
20251201 2 3 597821 1
20251202 2 3 6853 2
20251203 1 1 753 1
20251204 3 3 2259 1
20251219 3 3 2259 1
20251220 1 1 753 1
20251222 1 2 6100 1
20251223 2 2 1506 2
20251224 3 3 2259 1
20251225 2 2 1506 2
20251226 1 1 753 1
20251230 2 3 6853 2
20251231 1 1 753 1
END_DAY

# Session range - Number of visits
BEGIN_SESSION 1
0s-30s 17
END_SESSION

# URL - Pages - Bandwidth - Entry - Exit
# The 25 first Pages must be first (order not required for others)
BEGIN_SIDER 2
/ 23 17319 17 16
/manifest.json 1 492 0 1
END_SIDER

# Payload Range - Payload Frequency
BEGIN_FILESIZE 5
100-500 1441
500-1K 34
5K+ 1374
2K-5K 8
44-100 7
END_FILESIZE