OwlCyberSecurity - MANAGER

Edit File: awstats042026.testone.onebox.pk.txt

AWSTATS DATA FILE 7.9 (build 20230108)
# If you remove this file, all statistics for date 202604 will be lost/reset.
# Last config file used to build this data file was /home/oneboxpk/tmp/awstats/ssl/awstats.testone.onebox.pk.conf.

# Position (offset in bytes) in this file for beginning of each section for
# direct I/O access. If you made changes somewhere in this file, you should
# also remove completely the MAP section (AWStats will rewrite it at next
# update).
BEGIN_MAP 28
POS_GENERAL 2052                
POS_TIME 2713                
POS_VISITOR 14311               
POS_DAY 16480               
POS_DOMAIN 3408                
POS_LOGIN 3798                
POS_ROBOT 3953                
POS_WORMS 4325                
POS_EMAILSENDER 4456                
POS_EMAILRECEIVER 4599                
POS_SESSION 17076               
POS_FILESIZE 17383               
POS_SIDER 17233               
POS_FILETYPES 4734                
POS_DOWNLOADS 4901                
POS_OS 4949                
POS_BROWSER 5094                
POS_SCREENSIZE 5575                
POS_UNKNOWNREFERER 5649                
POS_UNKNOWNREFERERBROWSER 6111                
POS_ORIGIN 6381                
POS_SEREFERRALS 6514                
POS_PAGEREFS 6658                
POS_SEARCHWORDS 6806                
POS_KEYWORDS 6958                
POS_MISC 2376                
POS_ERRORS 7017                
POS_CLUSTER 3654                
POS_SIDER_404 7143                
END_MAP

# LastLine    = Date of last record processed - Last record line number in last log - Last record offset in last log - Last record signature value
# FirstTime   = Date of first visit for history file
# LastTime    = Date of last visit for history file
# LastUpdate  = Date of last update - Nb of parsed records - Nb of parsed old records - Nb of parsed new records - Nb of parsed corrupted - Nb of parsed dropped
# TotalVisits = Number of visits
# TotalUnique = Number of unique visitors
# MonthHostsKnown   = Number of hosts known
# MonthHostsUnKnown = Number of hosts unknown
BEGIN_GENERAL 8
LastLine 20260501005205 2 179 4628630223668
FirstTime 0
LastTime 20260430142038
LastUpdate 20260501184820 2 0 1 0 0
TotalVisits 67                  
TotalUnique 53                  
MonthHostsKnown 0                   
MonthHostsUnknown 55                  
END_GENERAL

# Misc ID - Pages - Hits - Bandwidth
BEGIN_MISC 10
JavaEnabled 0 0 0
AddToFavourites 0 12 0
PDFSupport 0 0 0
JavascriptDisabled 0 0 0
QuickTimeSupport 0 0 0
RealPlayerSupport 0 0 0
TotalMisc 0 0 0
DirectorSupport 0 0 0
FlashSupport 0 0 0
WindowsMediaPlayerSupport 0 0 0
END_MISC

# Hour - Pages - Hits - Bandwidth - Not viewed Pages - Not viewed Hits - Not viewed Bandwidth
BEGIN_TIME 24
0 5 6 10489318 10 19 5638038
1 1 3 746929 6 9 6823
2 3 7 1468954 2 6 9270
3 4 7 1437585 6 13 722677
4 0 0 0 1 2 422
5 3 4 7345 242 258 809922
6 2 2 1506 1 4 4359
7 3 4 7606 1 3 8493
8 7 7 5271 166 166 59588
9 1 1 753 2 2 1108
10 5 5 3765 86 92 747448
11 5 7 1432991 2 2 710
12 2 3 716119 4 5 1885
13 17 17 12801 34 34 12974
14 5 5 3765 2 5 5510
15 2 2 1506 2 3 4580
16 3 3 2259 0 2 3937
17 5 8 1438338 18 23 11514
18 3 6 2146098 21 24 8645
19 5 9 2862217 21 23 9184
20 8 10 1434989 247 263 93750
21 2 3 716119 4 6 2350
22 5 7 1432730 250 264 94684
23 3 3 2259 1 1 753
END_TIME

# Domain - Pages - Hits - Bandwidth
# The 25 first Pages must be first (order not required for others)
BEGIN_DOMAIN 13
us 33 48 9325512
bg 17 17 12801
in 13 16 11924568
ru 12 18 2194349
gb 9 9 6777
ca 6 6 4518
nl 3 5 1431485
br 1 1 753
ir 1 2 715366
be 1 1 753
id 1 1 753
cn 1 1 753
sc 1 4 752835
END_DOMAIN

# Cluster ID - Pages - Hits - Bandwidth
BEGIN_CLUSTER 0
END_CLUSTER

# Login - Pages - Hits - Bandwidth - Last visit
# The 10 first Pages must be first (order not required for others)
BEGIN_LOGIN 0
END_LOGIN

# Robot ID - Hits - Bandwidth - Last visit - Hits on robots.txt
# The 25 first Hits must be first (order not required for others)
BEGIN_ROBOT 7
bot[\s_+:,\.\;\/\\-] 18 6355660 20260430233502 2
robot 16 1072 20260429202748 16
MJ12bot/ 14 5740 20260428030853 7
scanner 4 1430471 20260423055804 0
crawl 2 1506 20260427082241 0
scrapy 1 753 20260401075811 0
survey 1 753 20260410191047 0
END_ROBOT

# Worm ID - Hits - Bandwidth - Last visit
# The 5 first Hits must be first (order not required for others)
BEGIN_WORMS 0
END_WORMS

# EMail - Hits - Bandwidth - Last visit
# The 20 first Hits must be first (order not required for others)
BEGIN_EMAILSENDER 0
END_EMAILSENDER

# EMail - Hits - Bandwidth - Last visit
# The 20 first hits must be first (order not required for others)
BEGIN_EMAILRECEIVER 0
END_EMAILRECEIVER

# Files type - Hits - Bandwidth - Bandwidth without compression - Bandwidth after compression
BEGIN_FILETYPES 6
html 94 70782 0 0
map 2 9772446 0 0
json 3 1476 0 0
css 2 63126 0 0
png 5 27294 0 0
js 23 16436099 0 0
END_FILETYPES

# Downloads - Hits - Bandwidth
BEGIN_DOWNLOADS 0
END_DOWNLOADS

# OS ID - Hits
BEGIN_OS ID - Hits - Pages 6
linux 17 14
win10 66 47
macosx 2 2
Unknown 18 14
macosx15 24 20
linuxubuntu 2 2
END_OS

# Browser ID - Hits - Pages
BEGIN_BROWSER 23
safari17.2 2 2
firefox133.0 4 4
chrome146.0.0.0 7 2
firefox137.0 1 1
firefox142.0 2 2
chrome137.0.0.0 1 1
chrome122.0.0.0 12 12
chrome147.0.0.0 6 4
Unknown 8 8
chrome84.0.4147.89 3 3
chrome131.0.0.0 16 13
chrome120.0.0.0 11 9
chrome134.0.0.0 19 9
chrome136.0.0.0 1 1
chrome124.0.0.0 2 1
chrome126.0.0.0 3 3
firefox121.0 6 6
chrome116.0.0.0 1 1
chrome142.0.0.0 2 2
netscape5.0 9 7
chrome129.0.0.0 1 1
mozilla 10 6
firefox138.0 2 1
END_BROWSER

# Screen size - Hits
BEGIN_SCREENSIZE 0
END_SCREENSIZE

# Unknown referer OS - Last visit date
BEGIN_UNKNOWNREFERER 4
Hello_from_Palo_Alto_Networks,_find_out_more_about_our_scans_in_https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity 20260425182519
RootEvidence/1.0 20260414102629
Mozilla/5.0_(compatible;_CensysInspect/1.1;__https://about.censys.io/) 20260424062247
Mozilla/5.0_(compatible;_InternetMeasurement/1.0;__https://internet-measurement.com/) 20260415073445
END_UNKNOWNREFERER

# Unknown referer Browser - Last visit date
BEGIN_UNKNOWNREFERERBROWSER 2
Hello_from_Palo_Alto_Networks,_find_out_more_about_our_scans_in_https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity 20260425182519
RootEvidence/1.0 20260414102629
END_UNKNOWNREFERERBROWSER

# Origin - Pages - Hits 
BEGIN_ORIGIN 6
From0 97 122
From1 0 0
From2 0 0
From3 0 0
From4 2 7
From5 0 0
END_ORIGIN

# Search engine referers ID - Pages - Hits
BEGIN_SEREFERRALS 0
END_SEREFERRALS

# External page referers - Pages - Hits
# The 25 first Pages must be first (order not required for others)
BEGIN_PAGEREFS 0
END_PAGEREFS

# Search keyphrases - Number of search
# The 10 first number of search must be first (order not required for others)
BEGIN_SEARCHWORDS 0
END_SEARCHWORDS

# Search keywords - Number of search
# The 25 first number of search must be first (order not required for others)
BEGIN_KEYWORDS 0
END_KEYWORDS

# Errors - Hits - Bandwidth
BEGIN_ERRORS 4
403 138 49572
404 988 350740
301 1 5
503 34 15912
END_ERRORS

# URL with 404 errors - Hits - Last URL referrer
BEGIN_SIDER_404 358
/bootstrap.yml 3 -
/backup/db.sql 3 -
/phpmyadmin/phpinfo.php 2 -
/wp/.env 1 -
/WEB-INF/web.xml 3 -
/laravel/.env 6 -
/aws-credentials 1 -
/wp-config.php.bak 4 -
/graphql/.env 1 -
/aws.json 1 -
/wp-config.php.txt 4 -
/staging/.env 1 -
/public/.env 5 -
/.zsh_history 3 -
/config.php.bak 5 -
/application-local.yml 3 -
/_profiler/phpinfo 5 -
/wp-content/phpinfo.php 4 -
/v1/.env 1 -
/application.yml 4 -
/secrets.env 3 -
/.svn/entries 3 -
/package.json 3 -
/db.php.bak 4 -
/.boto3 3 -
/cronlab/.env 1 -
/config.php~ 3 -
/kubectl.yaml 2 -
/serverless.yml 3 -
/ansible.cfg 3 -
/wp-includes/phpinfo.php 3 -
/serviceAccountKey.json 1 -
/temp/.env 1 -
/shared/.env 1 -
/service/.env 1 -
/releases/.env 1 -
/inventory.ini 3 -
/vendor/.env 1 -
/current/.env 1 -
/.yarnrc.yml 2 -
/vercel.json 3 -
/.env.local 8 -
/.boto 3 -
/.env.sample 1 -
/credentials.yml 3 -
/env/.env 3 -
/en/ 8 -
/prestashop/.env 1 -
/firebase.json 3 -
/.ENV 1 -
/.gitconfig 3 -
/%22/static/js/main.6782d193.js%22 3 -
/.git/logs/HEAD 3 -
/Pipfile.lock 3 -
/backup.sql 3 -
/_next/static/chunks/main.js 1 -
/info.php.back 1 -
/now.json 3 -
/core/Database/.env 1 -
/dashboard/.env 4 -
/deploy/.env 1 -
/.aws/config 4 -
/bootstrap.properties 3 -
/appsettings.local.json 3 -
/dist/.env 1 -
/wordpress/.env 1 -
/mailjet/.env 1 -
/.env.swp 4 -
/Gemfile 2 -
/.bash_history 3 -
/.travis.yml 3 -
/.pgpass 2 -
/info/phpinfo.php 3 -
/serverless.yaml 3 -
/secrets.yaml 3 -
/wp-config.php.save 4 -
/ses/.env 1 -
/webroot/index.php/_environment 1 -
/portal/.env 4 -
/static/js/main.js 1 -
/.s3cfg 3 -
/config/sidekiq.yml 3 -
/hosting/phpinfo.php 1 -
/mail/.env 1 -
/poetry.lock 3 -
/secrets.yml 3 -
/cms/.env 4 -
/v2/.env 1 -
/.env.old 5 -
/db.sql 3 -
/env.txt 4 -
/node/.env 1 -
/config/.env 5 -
/credentials.yaml 3 -
/html/.env 1 -
/.svn/wc.db 3 -
/dev/info.php 3 -
/config.php.txt 3 -
/appsettings.Production.json 3 -
/saas/.env 1 -
/.well-known/security.txt 1 -
/cron/.env 1 -
/.env.docker 4 -
/panel/.env 4 -
/auth.sql 3 -
/config/default.json 4 -
/.git/index 3 -
/aws.env 1 -
/config.json 6 -
/.env.example 3 -
/storage/.env 1 -
/.env.save 6 -
/config.php.save 3 -
/system/.env 3 -
/public/phpinfo.php 4 -
/mail/phpinfo.php 1 -
/appsettings.json 4 -
/tmp/phpinfo.php 1 -
/appsettings.Staging.json 3 -
/psnlink/.env 1 -
/symfony/.env 4 -
/old/wp-config.php 3 -
/configs/.env 3 -
/wp-content/debug.log 4 -
/netlify.toml 3 -
/info 2 -
/live/.env 1 -
/logs/error.log 3 -
/Jenkinsfile 3 -
/.env.dev 5 -
/.env.j2 3 -
/joomla/.env 1 -
/aws-config.js 2 -
/docker/.env 4 -
/config/mail.php 4 -
/META-INF/context.xml 3 -
/wp-config.php.swp 3 -
/shopify/.env 1 -
/test/phpinfo.php 5 -
/parameters.yml 4 -
/application.yaml 3 -
/config.js 2 -
/tmp/.env 1 -
/.env.development 5 -
/cpanel/phpinfo.php 1 -
/scripts/.env 1 -
/.env.bak 8 -
/gateway/.env 1 -
/core/.env 4 -
/asdkjh2k3h4_nonexistent_path 1 -
/build/.env 1 -
/assets/.env 1 -
/.npmrc 3 -
/backup/wp-config.php 3 -
/wp-admin/phpinfo.php 3 -
/configuration.php~ 3 -
/en/.env 1 -
/mandrill/.env 1 -
/env 4 -
/env.json 4 -
/nuxt/.env 1 -
/credentials.json 4 -
/.env.uat 4 -
/.yarnrc 2 -
/.anthropic/config.json 1 -
/hosts.ini 3 -
/transactional/.env 1 -
/v3/.env 1 -
/debug.log 3 -
/release/.env 1 -
/app/.env 6 -
/.env.orig 3 -
/web.config 4 -
/.psql_history 3 -
/aws.config.js 2 -
/mailing/.env 1 -
/rest/.env 1 -
/apple-touch-icon.png 2 -
/.hg/hgrc 3 -
/postmark/.env 1 -
/include/phpinfo.php 3 -
/.env.testing 3 -
/phpinfo.php3 1 -
/.firebaserc 3 -
/crm/.env 4 -
/private/.env 1 -
/.mysql_history 3 -
/config/database.yml 4 -
/application-dev.yml 3 -
/config.php.old 3 -
/.circleci/config.yml 3 -
/prod/.env 1 -
/application-prod.properties 3 -
/dev/phpinfo.php 4 -
/error.log 3 -
/ecosystem.config.js 3 -
/connectionstrings.config 4 -
/backups/wp-config.php 3 -
/.env.ci 1 -
/wp-config.php.inc 3 -
/.env.dist 1 -
/.openai/config.json 1 -
/config/config.json 3 -
/magento/.env 1 -
/bulk/.env 1 -
/actuator/heapdump 3 -
/requirements.txt 3 -
/playbook.yml 3 -
/.docker/config.json 4 -
/pyproject.toml 3 -
/.kube/config 3 -
/nest/.env 1 -
/wp-json/gravitysmtp/v1/tests/mock-data 2 -
/WEB-INF/classes/application.properties 3 -
/includes/phpinfo.php 3 -
/newsletter/.env 1 -
/.drone.yml 3 -
/log/production.log 3 -
/config/secrets.yaml 3 -
/smtp/phpinfo.php 1 -
/uploads/.env 1 -
/.env.stage 4 -
/actuator/configprops 3 -
/_debugbar/ 1 -
/configuration.php.bak 4 -
/bundle.js 1 -
/db_backup.sql 3 -
/exapi/.env 1 -
/app.config 3 -
/web/.env 4 -
/storage/framework/sessions 3 -
/shop/.env 4 -
/lib/.env 1 -
/secrets.json 5 -
/notifications/.env 1 -
/info.php.1 1 -
/database/.env 1 -
/htdocs/.env 1 -
/.env.staging 5 -
/terraform.tfstate 3 -
/test/info.php 3 -
/.env.preprod 1 -
/lab/.env 1 -
/dev/.env 1 -
/config/puma.rb 3 -
/core/app/.env 1 -
/_profiler 3 -
/www.sql 3 -
/app/ 8 -
/application-prod.yml 3 -
/config/services.php 3 -
/smtp/.env 1 -
/phpinfo 1 -
/.env.test 4 -
/phpMyAdmin/phpinfo.php 2 -
/new/wp-config.php 3 -
/actuator/mappings 3 -
/application.properties 4 -
/config/secrets.yml 7 -
/.dockerenv 4 -
/dump.sql 3 -
/_environment 1 -
/frontend/.env 1 -
/.env.prod 5 -
/.env 25 -
/_next/ 8 -
/drupal/.env 1 -
/tools/.env 1 -
/Procfile 3 -
/wp-config.php.old 5 -
/brevo/.env 1 -
/notify/.env 1 -
/application-dev.properties 3 -
/backup/.env 1 -
/php/phpinfo.php 3 -
/.git/HEAD 7 -
/next/.env 1 -
/old/.env 1 -
/microservice/.env 1 -
/META-INF/MANIFEST.MF 3 -
/app.js 4 -
/.git-credentials 3 -
/.git/config 18 -
/wp-config.php.orig 3 -
/.netrc 2 -
/appsettings.Development.json 4 -
/campaign/.env 1 -
/server/.env 1 -
/.env.backup 8 -
/administrator/ 1 -
/Gemfile.lock 3 -
/config/app.php 4 -
/ENV 1 -
/debugbar/ 1 -
/backups/.env 1 -
/www/.env 3 -
/client/.env 1 -
/local.settings.json 3 -
/config/deploy.yml 3 -
/database.sql 3 -
/terraform.tfvars 3 -
/Pipfile 3 -
/erp/.env 1 -
/public_html/.env 1 -
/.cursor/mcp.json 1 -
/include/db.php.bak 4 -
/actuator/env 5 -
/_ignition/health-check 1 -
/resources/.env 1 -
/storage/logs/laravel.log 4 -
/email/.env 1 -
/db.php.old 3 -
/express/.env 1 -
/mailer/.env 1 -
/.env.production 8 -
/internal/.env 1 -
/.env.live 4 -
/terraform.tfstate.backup 3 -
/.env.qa 2 -
/info.php.bak 1 -
/.aws/credentials 8 -
/ConnectionStrings.config 3 -
/backend/.env 8 -
/sitemaps/.env 1 -
/administrator/.env 1 -
/Admin/login 1 -
/project/.env 1 -
/mailgun/.env 1 -
/apps/.env 4 -
/server.js 4 -
/sender/.env 1 -
/debug/ 1 -
/actuator/health 3 -
/wp-config.php~ 4 -
/include/config.php.bak 4 -
/.env~ 4 -
/.env.remote 1 -
/sql/dump.sql 3 -
/sparkpost/.env 1 -
/azure-pipelines.yml 3 -
/debug/phpinfo.php 3 -
/wp-config.php.sample 4 -
/src/.env 1 -
/wp-login.php 4 -
/config/database.php 3 -
/.env_old 1 -
/package-lock.json 3 -
/yarn.lock 3 -
/users.sql 3 -
/.env.vault 3 -
/store/.env 4 -
/_nuxt/app.js 1 -
/mysql.sql 3 -
/old/phpinfo.php 1 -
/.gitlab-ci.yml 3 -
/site/.env 4 -
/sql/backup.sql 3 -
/sendgrid/.env 1 -
END_SIDER_404

# Host - Pages - Hits - Bandwidth - Last visit date - [Start date of last visit] - [Last page of last visit]
# [Start date of last visit] and [Last page of last visit] are saved only if session is not finished
# The 25 first Hits must be first (order not required for others)
BEGIN_VISITOR 55
93.123.109.202 17 17 12801 20260407133615
204.76.203.25 9 15 4294455 20260428024059
51.44.42.165 5 5 3765 20260426082121
103.153.183.69 4 4 3012 20260412193139
195.178.110.103 4 5 717103 20260423205428
204.76.203.27 3 9 4289937 20260428001351
195.178.110.133 3 3 2259 20260410202120
158.94.211.203 3 3 2259 20260427103756
45.148.10.231 3 4 10487812 20260427003211
3.139.242.79 2 2 1506 20260428205212
103.215.74.213 2 2 1506 20260410080714
45.148.10.245 2 2 1506 20260416223417
195.178.110.102 2 3 715858 20260423225906
72.62.167.175 1 1 753 20260427173055
44.210.120.235 1 1 753 20260421125159
45.148.10.174 1 2 715366 20260427181739
87.236.176.158 1 1 753 20260415073444
106.63.26.13 1 1 753 20260417112750
198.235.24.244 1 1 753 20260417185950
88.151.32.168 1 2 715366 20260419193707
71.6.239.28 1 1 753 20260414091422
195.178.110.104 1 1 753 20260415103352
205.210.31.56 1 1 753 20260422163350
66.132.172.215 1 1 753 20260411115557
3.151.194.164 1 1 753 20260407162922
173.239.198.102 1 1 753 20260423141558
184.72.173.149 1 1 753 20260408125333
102.129.232.131 1 1 753 20260417072950
66.132.195.38 1 2 6100 20260404050824
45.148.10.62 1 2 715366 20260426173803
185.247.137.59 1 1 753 20260403033745
165.231.182.48 1 4 752835 20260413025032
151.241.100.57 1 2 715366 20260428225723
138.197.81.222 1 1 753 20260408154128
88.151.33.14 1 1 753 20260426195445
5.255.99.123 1 2 715366 20260426115517
187.127.109.208 1 1 753 20260411033704
185.247.137.207 0 1 5347 
66.132.172.183 1 1 753 20260424062247
199.45.155.99 1 2 6100 20260418170834
185.253.162.23 1 3 746929 20260430013840
44.197.109.186 1 1 753 20260414031838
35.175.133.240 1 1 753 20260421230834
205.210.31.50 1 1 753 20260412171931
205.210.31.158 1 1 753 20260425182519
85.237.212.146 1 1 753 20260404195251
185.247.137.11 0 1 5347 
64.227.68.147 1 1 753 20260422160446
198.235.24.209 1 1 753 20260414225045
209.97.130.40 1 1 753 20260416070530
205.210.31.17 1 1 753 20260408230439
98.95.152.161 1 1 753 20260412171442
173.199.119.32 1 2 715366 20260413033608
64.227.25.186 1 1 753 20260430142038
45.79.177.203 1 1 753 20260414102629
END_VISITOR

# Date - Pages - Hits - Bandwidth - Visits
BEGIN_DAY 25
20260403 2 3 6853 2
20260404 3 4 7606 3
20260405 0 2 1429226 0
20260407 18 18 13554 2
20260408 3 3 2259 3
20260409 2 2 1506 2
20260410 9 9 6777 4
20260411 2 6 2859958 2
20260412 3 3 2259 3
20260413 2 6 1468201 2
20260414 5 5 3765 5
20260415 3 4 7606 3
20260416 3 3 2259 3
20260417 3 5 1431485 3
20260418 1 2 6100 1
20260419 1 2 715366 1
20260421 4 4 3012 4
20260422 2 4 1430732 2
20260423 7 9 1433714 4
20260424 3 3 2259 3
20260425 1 3 1429979 1
20260426 8 10 1435250 4
20260427 8 10 11206190 4
20260428 4 5 717625 4
20260430 2 4 747682 2
END_DAY

# Session range - Number of visits
BEGIN_SESSION 2
0s-30s 66
30s-2mn 1
END_SESSION

# URL - Pages - Bandwidth - Entry - Exit
# The 25 first Pages must be first (order not required for others)
BEGIN_SIDER 3
/ 94 70782 67 63
/manifest.json 3 1476 0 3
/static/js/main.6782d193.js.map 2 9772446 0 1
END_SIDER

# Payload Range - Payload Frequency
BEGIN_FILESIZE 6
5K+ 38
100-500 1164
0-44 1
500-1K 118
2K-5K 12
44-100 25
END_FILESIZE