OwlCyberSecurity - MANAGER
Edit File: awstats012026.akcpa.onebox.pk.txt
AWSTATS DATA FILE 7.9 (build 20230108) # If you remove this file, all statistics for date 202601 will be lost/reset. # Last config file used to build this data file was /home/oneboxpk/tmp/awstats/ssl/awstats.akcpa.onebox.pk.conf. # Position (offset in bytes) in this file for beginning of each section for # direct I/O access. If you made changes somewhere in this file, you should # also remove completely the MAP section (AWStats will rewrite it at next # update). BEGIN_MAP 28 POS_GENERAL 2050 POS_TIME 2744 POS_VISITOR 8063 POS_DAY 11441 POS_DOMAIN 3796 POS_LOGIN 4181 POS_ROBOT 4336 POS_WORMS 4788 POS_EMAILSENDER 4919 POS_EMAILRECEIVER 5062 POS_SESSION 12068 POS_FILESIZE 12535 POS_SIDER 12260 POS_FILETYPES 5197 POS_DOWNLOADS 5294 POS_OS 5342 POS_BROWSER 5506 POS_SCREENSIZE 6036 POS_UNKNOWNREFERER 6110 POS_UNKNOWNREFERERBROWSER 6605 POS_ORIGIN 6881 POS_SEREFERRALS 7017 POS_PAGEREFS 7180 POS_SEARCHWORDS 7371 POS_KEYWORDS 7535 POS_MISC 2407 POS_ERRORS 7606 POS_CLUSTER 4037 POS_SIDER_404 7747 END_MAP # LastLine = Date of last record processed - Last record line number in last log - Last record offset in last log - Last record signature value # FirstTime = Date of first visit for history file # LastTime = Date of last visit for history file # LastUpdate = Date of last update - Nb of parsed records - Nb of parsed old records - Nb of parsed new records - Nb of parsed corrupted - Nb of parsed dropped # TotalVisits = Number of visits # TotalUnique = Number of unique visitors # MonthHostsKnown = Number of hosts known # MonthHostsUnKnown = Number of hosts unknown BEGIN_GENERAL 8 LastLine 20260201000000 93176 156480826 106098320888669 FirstTime 20260101050449 LastTime 20260131143441 LastUpdate 20260201185008 93176 3 93172 0 0 TotalVisits 115 TotalUnique 87 MonthHostsKnown 0 MonthHostsUnknown 87 END_GENERAL # Misc ID - Pages - Hits - Bandwidth BEGIN_MISC 10 FlashSupport 0 0 0 AddToFavourites 0 25 0 WindowsMediaPlayerSupport 0 0 0 PDFSupport 0 0 0 DirectorSupport 0 0 0 RealPlayerSupport 0 0 0 JavascriptDisabled 0 0 0 QuickTimeSupport 0 0 0 TotalMisc 0 0 0 JavaEnabled 0 0 0 END_MISC # Hour - Pages - Hits - Bandwidth - Not viewed Pages - Not viewed Hits - Not viewed Bandwidth BEGIN_TIME 24 0 23 23 23599 373863 373878 9815056840 1 2 2 393 376973 377004 9843513064 2 15 15 18403 386916 386941 10100679248 3 16 16 17116 356509 356534 9458662119 4 7 7 8165 347625 347634 9139978202 5 1 1 393 362635 362644 9563355467 6 20 20 19055 368774 368785 9728990320 7 13 13 18931 383162 383194 10141352176 8 8 8 6113 388882 388910 10326878594 9 10 10 14390 388946 388974 10312336768 10 5 5 8693 384053 384061 10153945047 11 17 17 22555 382324 382336 10093330940 12 41 41 36426 379505 379522 10034952597 13 2 2 4150 381951 381980 10120047437 14 3 3 2861 383775 383803 10158686679 15 5 5 6618 379221 379248 10033595646 16 12 12 16856 380327 380340 10057516106 17 16 16 20480 379099 379104 9991382994 18 3 3 2468 381619 381632 10004546441 19 8 8 13236 383065 383094 10069696428 20 12 12 8419 382770 382806 10087051171 21 2 2 2468 385274 385299 10132598536 22 1 1 2075 379726 379736 9972144973 23 7 7 8165 379572 379577 10037784185 END_TIME # Domain - Pages - Hits - Bandwidth # The 25 first Pages must be first (order not required for others) BEGIN_DOMAIN 13 us 149 149 175581 cn 25 25 27747 cl 18 18 12120 ru 16 16 16168 cz 15 15 16143 gb 7 7 1572 ca 6 6 10768 be 4 4 8300 in 3 3 6225 zz 2 2 4150 lt 2 2 786 au 1 1 2075 bg 1 1 393 END_DOMAIN # Cluster ID - Pages - Hits - Bandwidth BEGIN_CLUSTER 0 END_CLUSTER # Login - Pages - Hits - Bandwidth - Last visit # The 10 first Pages must be first (order not required for others) BEGIN_LOGIN 0 END_LOGIN # Robot ID - Hits - Bandwidth - Last visit - Hits on robots.txt # The 25 first Hits must be first (order not required for others) BEGIN_ROBOT 9 bot[\s_+:,\.\;\/\\-] 9076104 239377691574 20260131235959 201 robot 237 75129 20260131220502 237 curl 8 16600 20260128204642 0 no_user_agent 5 10375 20260126095600 0 unknown 5 1585 20260127014333 5 crawl 2 4150 20260122211627 0 survey 2 4150 20260109175229 0 scrapy 2 4150 20260114072851 0 spider 1 2075 20260129020746 0 END_ROBOT # Worm ID - Hits - Bandwidth - Last visit # The 5 first Hits must be first (order not required for others) BEGIN_WORMS 0 END_WORMS # EMail - Hits - Bandwidth - Last visit # The 20 first Hits must be first (order not required for others) BEGIN_EMAILSENDER 0 END_EMAILSENDER # EMail - Hits - Bandwidth - Last visit # The 20 first hits must be first (order not required for others) BEGIN_EMAILRECEIVER 0 END_EMAILRECEIVER # Files type - Hits - Bandwidth - Bandwidth without compression - Bandwidth after compression BEGIN_FILETYPES 2 html 247 282003 0 0 php 2 25 0 0 END_FILETYPES # Downloads - Hits - Bandwidth BEGIN_DOWNLOADS 0 END_DOWNLOADS # OS ID - Hits BEGIN_OS ID - Hits - Pages 8 macosx7 23 23 win7 68 68 linux 14 14 win10 20 20 Unknown 111 111 macosx 1 1 win11 3 3 macosx15 9 9 END_OS # Browser ID - Hits - Pages BEGIN_BROWSER 25 chrome119.0.0.0 1 1 firefox139.0 2 2 chrome142.0.0.0 3 3 firefox119.0 1 1 chrome134.0.0.0 4 4 msie10.0 68 68 chrome120.0.0.0 9 9 chrome126.0.0.0 4 4 netscape5.0 3 3 chrome133.0.0.0 1 1 firefox121.0 3 3 safari17.1 1 1 chrome138.0.7204.97 1 1 chrome17.0.963.56 23 23 chrome122.0.0.0 2 2 Unknown 9 9 firefox120.0 2 2 chrome139.0.0.0 3 3 chrome135.0.0.0 1 1 chrome81.0.4044.129 2 2 chrome144.0.0.0 2 2 chrome132.0.0.0 1 1 chrome90.0.4430.85 1 1 chrome91.0.4472.124 3 3 mozilla 99 99 END_BROWSER # Screen size - Hits BEGIN_SCREENSIZE 0 END_SCREENSIZE # Unknown referer OS - Last visit date BEGIN_UNKNOWNREFERER 5 python-requests/2.32.5 20260114153044 Hello_from_Palo_Alto_Networks,_find_out_more_about_our_scans_in_https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity 20260128175102 Mozilla/5.0_(compatible;_InternetMeasurement/1.0;__https://internet-measurement.com/) 20260113232736 Mozilla/5.0 20260112132015 Mozilla/5.0_(compatible;_CensysInspect/1.1;__https://about.censys.io/) 20260127083650 END_UNKNOWNREFERER # Unknown referer Browser - Last visit date BEGIN_UNKNOWNREFERERBROWSER 2 python-requests/2.32.5 20260114153044 Hello_from_Palo_Alto_Networks,_find_out_more_about_our_scans_in_https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity 20260128175102 END_UNKNOWNREFERERBROWSER # Origin - Pages - Hits BEGIN_ORIGIN 6 From0 165 165 From1 3 3 From2 3 3 From3 3 3 From4 75 75 From5 0 0 END_ORIGIN # Search engine referers ID - Pages - Hits BEGIN_SEREFERRALS 1 www_google_com 3 3 END_SEREFERRALS # External page referers - Pages - Hits # The 25 first Pages must be first (order not required for others) BEGIN_PAGEREFS 2 https://wordpress.org 2 2 https://t.co 1 1 END_PAGEREFS # Search keyphrases - Number of search # The 10 first number of search must be first (order not required for others) BEGIN_SEARCHWORDS 1 wordpress 1 END_SEARCHWORDS # Search keywords - Number of search # The 25 first number of search must be first (order not required for others) BEGIN_KEYWORDS 1 wordpress 1 END_KEYWORDS # Errors - Hits - Bandwidth BEGIN_ERRORS 5 404 15 5325 403 428 153224 301 90 25392 502 13 1950 500 99 68574 END_ERRORS # URL with 404 errors - Hits - Last URL referrer BEGIN_SIDER_404 1 / 15 - END_SIDER_404 # Host - Pages - Hits - Bandwidth - Last visit date - [Start date of last visit] - [Last page of last visit] # [Start date of last visit] and [Last page of last visit] are saved only if session is not finished # The 25 first Hits must be first (order not required for others) BEGIN_VISITOR 87 79.127.224.162 15 15 16143 20260127202432 181.214.218.49 11 11 6005 20260112124231 199.45.155.77 7 7 8163 20260127075138 199.45.155.94 7 7 8165 20260111001210 162.142.125.215 7 7 8165 20260112170656 167.94.138.184 7 7 8164 20260120023322 199.45.155.76 7 7 8163 20260125123435 167.94.138.202 7 7 8165 20260118092730 149.22.90.240 7 7 6483 20260119072338 206.168.34.218 7 7 8165 20260108041641 66.132.153.143 7 7 8165 20260105110808 206.168.34.36 6 6 6088 20260125123228 162.142.125.36 6 6 6090 20260112170235 167.94.138.59 6 6 6090 20260105112354 181.214.218.34 6 6 4040 20260101175617 185.132.187.76 6 6 6458 20260105060839 167.94.138.187 6 6 6088 20260127083650 162.142.125.32 6 6 6090 20260107234330 149.22.90.214 6 6 4040 20260128005012 206.168.34.58 6 6 6089 20260120022107 167.94.146.55 6 6 6089 20260118061503 185.132.187.152 6 6 6456 20260127202443 141.98.11.10 4 4 786 20260114153044 204.76.203.25 4 4 8300 20260130070143 193.105.73.213 4 4 8300 20260128005009 18.224.192.118 2 2 4150 20260111091839 205.210.31.195 1 1 2075 20260123090127 161.35.117.158 1 1 2075 20260125152254 172.105.53.35 1 1 0 20260110202200 141.98.11.98 2 2 786 20260129012152 34.207.56.102 1 1 0 20260108013105 101.91.110.5 2 2 4150 20260116030146 198.235.24.41 1 1 2075 20260128175102 45.163.151.95 1 1 2075 20260112071530 101.91.110.16 1 1 2443 20260116030052 101.91.110.26 1 1 393 20260116030202 147.182.158.30 1 1 2075 20260101152613 45.8.22.117 2 2 786 20260126191946 101.91.110.144 1 1 393 20260116030101 101.198.0.157 1 1 393 20260125160554 23.180.120.132 2 2 4150 20260122193940 45.148.10.174 2 2 4150 20260112132015 191.125.58.20 1 1 2075 20260112071529 101.91.110.142 1 1 2075 20260116025948 71.6.134.235 1 1 2075 20260110065325 205.210.31.238 1 1 2075 20260103193016 159.203.3.243 1 1 2075 20260129145554 165.22.45.88 1 1 2075 20260101155930 165.22.234.86 1 1 2075 20260111125215 45.38.18.59 2 2 786 20260115142513 100.52.3.146 2 2 4150 20260120074629 101.91.110.134 3 3 3229 20260116030210 185.212.171.137 1 1 393 20260105060840 134.122.7.213 1 1 2075 20260111095709 185.247.137.198 1 1 2075 20260113232736 101.91.110.154 1 1 393 20260116030109 38.242.199.211 1 1 2075 20260129111351 134.199.132.123 1 1 393 20260119002427 141.98.11.77 1 1 0 20260106182639 207.154.219.217 2 2 4150 20260129033036 101.91.110.24 1 1 393 20260116030057 101.198.0.133 1 1 2075 20260125160539 4.186.62.165 1 1 2075 20260129111150 54.162.31.194 1 1 2075 20260128161509 159.223.242.210 1 1 393 20260112124131 142.44.161.179 1 1 2075 20260103195712 100.50.77.146 2 2 4150 20260103180636 101.91.110.4 1 1 393 20260116030206 101.198.0.183 2 2 2468 20260125160611 149.88.98.87 1 1 393 20260101121913 101.198.0.171 1 1 393 20260125160542 94.26.106.103 1 1 393 20260131143441 101.91.110.162 1 1 393 20260116030043 101.91.110.131 2 2 2468 20260116030105 101.198.0.179 1 1 2441 20260125160549 149.22.90.235 1 1 2075 20260112191017 198.235.24.152 1 1 2075 20260127060035 24.8.185.175 1 1 2075 20260129111405 101.198.0.140 2 2 2468 20260125160557 91.224.92.126 1 1 393 20260110192358 3.139.242.79 2 2 4150 20260125163542 101.198.0.134 1 1 393 20260125160602 185.132.187.24 2 2 786 20260119002422 101.91.110.152 1 1 393 20260116030214 139.59.24.28 1 1 2075 20260115110624 204.10.194.20 4 4 811 20260130084819 91.224.92.185 1 1 393 20260101050449 END_VISITOR # Date - Pages - Hits - Bandwidth - Visits BEGIN_DAY 27 20260101 19 19 21659 11 20260102 1 1 2075 1 20260103 3 3 6225 3 20260105 27 27 27221 8 20260106 1 1 0 1 20260107 6 6 6090 1 20260108 8 8 8165 2 20260110 5 5 2861 4 20260111 10 10 14390 4 20260112 31 31 35521 11 20260113 1 1 2075 1 20260114 3 3 786 2 20260115 2 2 2468 2 20260116 17 17 19191 13 20260118 13 13 14254 2 20260119 14 14 12966 6 20260120 14 14 16328 3 20260121 2 2 4150 2 20260122 1 1 2075 1 20260123 2 2 2468 2 20260125 25 25 31107 12 20260126 3 3 1179 2 20260127 25 25 24745 6 20260128 5 5 8693 5 20260129 7 7 12843 7 20260130 3 3 2100 2 20260131 1 1 393 1 END_DAY # Session range - Number of visits BEGIN_SESSION 5 2mn-5mn 1 0s-30s 101 5mn-15mn 1 15mn-30mn 1 30s-2mn 11 END_SESSION # URL - Pages - Bandwidth - Entry - Exit # The 25 first Pages must be first (order not required for others) BEGIN_SIDER 8 / 82 159775 71 53 /wp-admin/ 41 16113 16 19 /d19b7f/ 28 68387 5 9 /wp-content/ 28 11004 3 7 /e4e358/ 28 11004 4 11 /7889e/ 27 10611 10 11 /wp-includes/ 13 5109 5 4 /.well-known/pki-validation/wp-login.php 2 25 1 1 END_SIDER # Payload Range - Payload Frequency BEGIN_FILESIZE 6 5K+ 8656005 0-44 14 2K-5K 1162 100-500 1129 1K-2K 418854 500-1K 121 END_FILESIZE