OwlCyberSecurity - MANAGER

Edit File: awstats052023.onebox.pk.txt

AWSTATS DATA FILE 7.8 (build 20200416) # If you remove this file, all statistics for date 202305 will be lost/reset. # Last config file used to build this data file was /home/oneboxpk/tmp/awstats/ssl/awstats.onebox.pk.conf. # Position (offset in bytes) in this file for beginning of each section for # direct I/O access. If you made changes somewhere in this file, you should # also remove completely the MAP section (AWStats will rewrite it at next # update). BEGIN_MAP 28 POS_GENERAL 2010 POS_TIME 2671 POS_VISITOR 11368 POS_DAY 14243 POS_DOMAIN 3380 POS_LOGIN 3819 POS_ROBOT 3974 POS_WORMS 4208 POS_EMAILSENDER 4339 POS_EMAILRECEIVER 4482 POS_SESSION 14819 POS_SIDER 15019 POS_FILETYPES 4617 POS_DOWNLOADS 4876 POS_OS 4924 POS_BROWSER 5113 POS_SCREENSIZE 5679 POS_UNKNOWNREFERER 5753 POS_UNKNOWNREFERERBROWSER 6284 POS_ORIGIN 6623 POS_SEREFERRALS 6762 POS_PAGEREFS 6949 POS_SEARCHWORDS 8106 POS_KEYWORDS 8258 POS_MISC 2334 POS_ERRORS 8317 POS_CLUSTER 3675 POS_SIDER_404 8440 END_MAP # LastLine = Date of last record processed - Last record line number in last log - Last record offset in last log - Last record signature value # FirstTime = Date of first visit for history file # LastTime = Date of last visit for history file # LastUpdate = Date of last update - Nb of parsed records - Nb of parsed old records - Nb of parsed new records - Nb of parsed corrupted - Nb of parsed dropped # TotalVisits = Number of visits # TotalUnique = Number of unique visitors # MonthHostsKnown = Number of hosts known # MonthHostsUnKnown = Number of hosts unknown BEGIN_GENERAL 8 LastLine 20230601081608 4 587 9837278332204 FirstTime 0 LastTime 20230531231505 LastUpdate 20230601174504 4 0 3 0 0 TotalVisits 80 TotalUnique 69 MonthHostsKnown 0 MonthHostsUnknown 72 END_GENERAL # Misc ID - Pages - Hits - Bandwidth BEGIN_MISC 10 TotalMisc 0 0 0 PDFSupport 0 0 0 JavascriptDisabled 0 0 0 FlashSupport 0 0 0 DirectorSupport 0 0 0 JavaEnabled 0 0 0 WindowsMediaPlayerSupport 0 0 0 AddToFavourites 0 18 0 QuickTimeSupport 0 0 0 RealPlayerSupport 0 0 0 END_MISC # Hour - Pages - Hits - Bandwidth - Not viewed Pages - Not viewed Hits - Not viewed Bandwidth BEGIN_TIME 24 0 12 12 133874 9 14 1136 1 4 4 36948 6 9 232 2 4 4 73370 16 19 13967 3 8 8 121889 50 56 2582 4 6 6 122592 12 18 62205 5 12 12 185659 17 21 13161 6 4 4 37004 12 15 13695 7 22 22 790726 51 53 1385 8 9 9 159104 48 60 26251 9 15 15 170466 7 12 1160 10 5 5 85719 10 11 38031 11 3 6 61189 16 29 1728 12 6 6 72778 16 19 1774 13 1 1 623 7 8 731 14 0 0 0 18 21 38223 15 1 1 37051 14 19 1030 16 4 4 111887 15 23 38171 17 1 1 623 18 22 2530 18 3 3 24836 12 19 13031 19 2 2 24209 15 16 1344 20 2 2 24204 12 15 26416 21 2 2 49166 25 26 3304 22 1 1 12102 12 16 2140 23 48 105 1494446 31 35 15000 END_TIME # Domain - Pages - Hits - Bandwidth # The 25 first Pages must be first (order not required for others) BEGIN_DOMAIN 16 us 72 130 1254629 gb 33 33 874160 be 24 24 753526 cn 13 13 261155 de 10 10 121174 fr 5 5 148851 pa 4 4 148378 eu 2 2 74124 ru 2 2 24215 cl 2 2 24216 ca 2 4 48447 in 2 2 49156 hk 1 1 12105 tz 1 1 12112 au 1 1 12109 my 1 1 12108 END_DOMAIN # Cluster ID - Pages - Hits - Bandwidth BEGIN_CLUSTER 0 END_CLUSTER # Login - Pages - Hits - Bandwidth - Last visit # The 10 first Pages must be first (order not required for others) BEGIN_LOGIN 0 END_LOGIN # Robot ID - Hits - Bandwidth - Last visit - Hits on robots.txt # The 25 first Hits must be first (order not required for others) BEGIN_ROBOT 3 survey 4 111788 20230511140412 0 unknown 2 52 20230515084344 2 no_user_agent 2 37686 20230531063513 0 END_ROBOT # Worm ID - Hits - Bandwidth - Last visit # The 5 first Hits must be first (order not required for others) BEGIN_WORMS 0 END_WORMS # EMail - Hits - Bandwidth - Last visit # The 20 first Hits must be first (order not required for others) BEGIN_EMAILSENDER 0 END_EMAILSENDER # EMail - Hits - Bandwidth - Last visit # The 20 first hits must be first (order not required for others) BEGIN_EMAILRECEIVER 0 END_EMAILRECEIVER # Files type - Hits - Bandwidth - Bandwidth without compression - Bandwidth after compression BEGIN_FILETYPES 11 woff 18 408000 0 0 html 75 1144768 0 0 css 12 202248 0 0 Unknown 2 74138 0 0 cfc 2 74240 0 0 svg 9 17793 0 0 php 40 534864 0 0 xml 36 1235165 0 0 env 2 74124 0 0 js 3 36361 0 0 png 36 28764 0 0 END_FILETYPES # Downloads - Hits - Bandwidth BEGIN_DOWNLOADS 0 END_DOWNLOADS # OS ID - Hits BEGIN_OS ID - Hits - Pages 10 win7 9 9 linuxubuntu 5 5 win10 109 90 macosx11 7 7 Unknown 36 36 macosx10 1 1 winxp 1 1 android 6 3 linux 60 22 win8.1 1 1 END_OS # Browser ID - Hits - Pages BEGIN_BROWSER 24 chrome108.0.0.0 1 1 chrome35.0.2309.372 1 1 mozilla 21 21 chrome85.0.4183.102 6 6 chrome40.0.2214.93 1 1 chrome34.0.1847.137 1 1 chrome83.0.4103.61 2 2 chrome41.0.2225.0 1 1 chrome63.0.3239.132 3 3 chrome39.0.2171.95 1 1 chrome49.0.2623.112 2 2 chrome41.0.2227.0 1 1 chrome89.0.4389.114 39 39 chrome93.0.4577.63 2 2 chrome109.0.0.0 12 12 firefox96 22 22 chrome79.0.3945.79 27 8 chrome103.0.5060.114 6 3 chrome42.0.2311.90 1 1 firefox68.0 4 4 chrome112.0.5615.121 54 16 firefox47.0 7 7 firefox58.0 5 5 Unknown 15 15 END_BROWSER # Screen size - Hits BEGIN_SCREENSIZE 0 END_SCREENSIZE # Unknown referer OS - Last visit date BEGIN_UNKNOWNREFERER 8 Mozilla/5.0_(compatible;_InternetMeasurement/1.0;__https://internet-measurement.com/) 20230530171755 Mozilliqa'_print(9347655345-4954366)_' 20230504122126 Mozilliqa'<?=print(9347655345-4954366);?>' 20230504122125 Mozilliqa\ 20230504122126 python-requests/2.27.1 20230507090015 fasthttp 20230523165932 Mozilla/5.0_(compatible;_CensysInspect/1.1;__https://about.censys.io/) 20230526044808 Mozilliqa'{${print(9347655345-4954366)}}' 20230504122125 END_UNKNOWNREFERER # Unknown referer Browser - Last visit date BEGIN_UNKNOWNREFERERBROWSER 6 Mozilliqa\ 20230504122126 Mozilliqa'<?=print(9347655345-4954366);?>' 20230504122125 Mozilliqa'{${print(9347655345-4954366)}}' 20230504122125 python-requests/2.27.1 20230507090015 fasthttp 20230523165932 Mozilliqa'_print(9347655345-4954366)_' 20230504122126 END_UNKNOWNREFERERBROWSER # Origin - Pages - Hits BEGIN_ORIGIN 6 From0 109 112 From1 0 0 From2 11 11 From3 55 112 From4 0 0 From5 0 0 END_ORIGIN # Search engine referers ID - Pages - Hits BEGIN_SEREFERRALS 2 www_google_com_hk 1 1 www_google_com 10 10 END_SEREFERRALS # External page referers - Pages - Hits # The 25 first Pages must be first (order not required for others) BEGIN_PAGEREFS 17 http://cpanel.onebox.pk/wp-login.php 13 13 https://cpanel.onebox.pk/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/open_sans.min.css 9 9 http://webmail.onebox.pk/wp-login.php 9 9 https://webmail.onebox.pk/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/open_sans.min.css 9 9 http://cpanel.onebox.pk/wp-includes/wlwmanifest.xml 2 2 http://cpanel.onebox.pk/public/_ignition/health-check/ 2 2 http://cpanel.onebox.pk/_ignition/health-check/ 2 2 http://webmail.onebox.pk/_ignition/health-check/ 2 2 http://webmail.onebox.pk/public/_ignition/health-check/ 2 2 http://webmail.onebox.pk/wp-includes/wlwmanifest.xml 2 2 http://cpanel.onebox.pk 1 1 http://webmail.onebox.pk 1 1 http://5.189.130.227:80 1 1 https://webmail.onebox.pk/cPanel_magic_revision_1676999183/unprotected/cpanel/style_v2_optimized.css 0 18 https://cpanel.onebox.pk/cPanel_magic_revision_1676999183/unprotected/cpanel/style_v2_optimized.css 0 21 https://webmail.onebox.pk 0 9 https://cpanel.onebox.pk 0 9 END_PAGEREFS # Search keyphrases - Number of search # The 10 first number of search must be first (order not required for others) BEGIN_SEARCHWORDS 0 END_SEARCHWORDS # Search keywords - Number of search # The 25 first number of search must be first (order not required for others) BEGIN_KEYWORDS 0 END_KEYWORDS # Errors - Hits - Bandwidth BEGIN_ERRORS 4 401 56 2725 301 145 33322 503 55 0 404 260 352 END_ERRORS # URL with 404 errors - Hits - Last URL referrer BEGIN_SIDER_404 93 /en/addresses 1 - /back.tar.gz 1 - /sitemap.xml 1 - /phpinfo 3 - /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/iedit.cfc 2 - /web/.env 1 - /wp-content/wso112233.php 1 www.google.com /en/contact-us 11 - /xleet-shell.php 1 www.google.com /en/stationery/17-32-brown-bear-notebook.html 2 - /aws.yml 3 - /.ssh/sftp-config.json 3 - /backup.zip 1 - /local/.env 1 - /ur/11-homoeopathic-medicine 1 - /sftp-config.json 7 - /helpers/utility.js 3 - /crm/.env 1 - /forums 1 https://onebox.pk/forums /wp-content/plugins/core-stab/index.php 1 - /rindex.php 3 www.google.com /login 3 - /.ftpconfig 1 - /wp-content/plugins/column/miin.php 2 www.google.com /wp-config.php.old 3 - /wp-content/themes/hello-element/footer.php 3 www.google.com /wp-admin/RxRqvwwu.php 2 - /.git/config 7 - /config/aws.yml 3 - /.env.bak 3 - /wp-content/plugins/sid/sidwso.php 1 www.google.com /config/config.json 3 - /.env 19 - /ur/stores 1 - /back.zip 1 - /app/.env 1 - /application/.env 1 - /public/.env 3 - /static/admin/javascript/hetong.js 3 - /config.js 3 - /wp-admin/css/colors/coffee/index.php 3 www.google.com /wp-content/themes/classic/inc/index.php 1 - /back.tar 1 - /index.php 2 - /wp-content/plugins/woocommerce/assets/images/icons/loader.svg 1 - /prod/.env 3 - /en/8-home-accessories 2 - /laravel/.env 3 - /xl2023.php 1 www.google.com /_profiler/phpinfo 3 - /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php 1 - /en/men/1-2-hummingbird-printed-t-shirt.html 1 - /public/client/planinfo 3 - /symfony/_profiler/phpinfo 3 - /phpinfo.php 3 - /dump.tar.gz 1 - /backup.tar.gz 1 - /backend/.env 1 - /wp-class.php 1 www.google.com /wordpress/wp-content/plugins/wp-daft/t62.php 2 www.google.com /en/6-accessories 2 - /en/2-home 3 - /ur/ 2 https://onebox.pk/ /wp-content/plugins/hellopress/wp_filemanager.php 2 www.google.com /modules/ps_imageslider/images/sample-2.jpg 5 - /kyc/.env 3 - /beta/.env 3 - /sftp.json 3 - /.vscode/sftp.json 4 - /prevlaravel/sftp-config.json 3 - /api/.env 3 - /Public/home/js/check.js 2 - /en/ 4 - /info.php 3 - /wp-content/plugins/wordpress-for/chang.php 1 www.google.com /robots.txt 39 - /ee.php 2 www.google.com /wso112233.php 2 www.google.com /wordpress/wp-content/plugins/wordpress-three/miin.php 1 www.google.com /wp-config.php.bak 3 - /repeater.php 3 www.google.com /backup.gz 1 - /en/stationery/18-36-hummingbird-notebook.html 1 - /laravel/core/.env 3 - /en/content/2-legal-notice 1 - /en/credit-slip 1 - /dump.gz 1 - /inputs.php 1 onebox.pk /TP/public/index.php 1 - /.aws/credentials 3 - /admin/.env 3 - /wp-content/shell20211028.php 1 www.google.com /15-medium_default/mountain-fox-vector-graphics.jpg 1 - END_SIDER_404 # Host - Pages - Hits - Bandwidth - Last visit date - [Start date of last visit] - [Last page of last visit] # [Start date of last visit] and [Last page of last visit] are saved only if session is not finished # The 25 first Hits must be first (order not required for others) BEGIN_VISITOR 72 57.128.84.67 19 19 704509 20230523071015 141.94.175.140 19 19 704509 20230507232620 147.78.47.249 12 12 145437 20230530034401 209.141.57.231 10 10 121558 20230504091159 199.195.253.105 10 10 121527 20230504122126 65.154.226.169 8 27 243142 20230524230606 85.215.200.98 6 6 72744 20230510094342 205.169.39.125 5 15 134235 20230503233222 205.169.39.143 5 14 133105 20230503233251 65.154.226.170 4 13 120999 20230503233409 183.136.225.46 4 4 98330 20230517050829 179.43.180.18 4 4 148378 20230523165932 65.154.226.167 4 14 122132 20230503233409 183.136.225.44 4 4 111788 20230522012418 87.106.169.74 2 2 24216 20230523020545 209.141.51.44 2 2 24224 20230507090015 167.94.138.127 2 2 24207 20230518205025 101.68.211.2 2 2 1246 20230504052812 167.94.138.34 2 2 12725 20230518234255 138.199.60.167 2 2 74124 20230511031312 151.106.35.235 1 1 12101 20230520005545 167.94.138.51 1 1 12100 20230526041057 104.131.179.223 1 1 623 20230506002643 162.142.125.14 1 1 623 20230503130626 45.137.192.64 1 1 12105 20230511025510 185.227.134.203 1 1 12109 20230504012832 167.248.133.36 1 1 12101 20230512022813 162.142.125.215 1 1 623 20230522094639 49.13.8.80 1 1 37051 20230514154639 167.94.138.50 1 1 623 20230513185857 51.255.62.12 1 1 37051 20230516055237 87.236.176.209 1 1 623 20230530171755 106.75.181.137 1 1 37058 20230527214623 87.236.176.129 1 1 12102 20230512222011 47.88.94.28 1 1 12103 20230504113603 112.213.125.230 1 1 12105 20230527054954 87.236.176.154 1 1 12103 20230514101659 47.89.193.239 0 1 12120 167.248.133.184 1 1 12103 20230517070252 87.236.176.45 1 1 12096 20230509053044 87.236.176.246 1 1 12093 20230509120400 37.187.215.248 1 1 37063 20230516075709 92.205.25.182 1 1 12108 20230515010046 167.248.133.191 1 1 12099 20230513080938 87.247.244.225 1 1 12107 20230508195626 47.254.16.187 0 1 12119 185.183.122.143 1 1 12106 20230517001733 37.187.215.252 1 1 37051 20230516075717 101.43.19.48 1 1 12110 20230523083839 185.104.44.73 1 1 12107 20230516005633 190.96.76.26 1 1 12108 20230531231505 167.248.133.187 1 1 12105 20230504065632 45.15.187.18 1 1 12105 20230508034048 124.217.226.56 1 1 12108 20230524210314 41.93.82.7 1 1 12112 20230512001200 167.94.138.125 1 1 12102 20230517203016 167.94.138.36 1 1 12097 20230517080634 190.107.177.235 1 1 12108 20230503014724 45.61.49.164 1 1 12104 20230509005611 47.254.76.138 0 1 12122 5.189.183.215 1 1 12106 20230516054113 70.32.0.184 1 1 12114 20230507235733 106.75.154.169 1 1 623 20230527165952 137.184.36.105 1 1 12111 20230525043446 47.88.94.161 1 1 623 20230504113632 221.121.150.129 1 1 12109 20230517044551 51.255.62.9 1 1 37063 20230516055235 167.248.133.33 1 1 12102 20230504055948 167.248.133.34 1 1 12095 20230526044808 51.255.62.6 1 1 623 20230516055235 159.89.104.182 1 1 12102 20230514191657 47.88.5.56 1 1 12102 20230504113605 END_VISITOR # Date - Pages - Hits - Bandwidth - Visits BEGIN_DAY 24 20230503 21 59 535310 7 20230504 28 31 341836 12 20230506 1 1 623 1 20230507 23 23 741470 4 20230508 2 2 24212 2 20230509 4 4 73356 4 20230510 6 6 72744 1 20230511 3 3 86229 2 20230512 3 3 36315 3 20230513 8 8 85443 3 20230514 3 3 61256 3 20230515 4 4 123273 3 20230516 7 7 173064 7 20230517 9 9 133889 7 20230518 2 2 24204 2 20230520 1 1 12101 1 20230522 2 2 1246 2 20230523 25 25 877105 5 20230524 9 28 255250 2 20230525 1 1 12111 1 20230526 2 2 24195 2 20230527 3 3 49786 3 20230530 7 7 73339 2 20230531 1 1 12108 1 END_DAY # Session range - Number of visits BEGIN_SESSION 6 30s-2mn 2 5mn-15mn 1 2mn-5mn 1 15mn-30mn 1 30mn-1h 1 0s-30s 74 END_SESSION # URL - Pages - Bandwidth - Entry - Exit # The 25 first Pages must be first (order not required for others) BEGIN_SIDER 38 / 67 1047814 48 42 /wp-login.php 23 278475 22 23 /cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Bold-webfont.woff 6 134592 0 4 /cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Semibold-webfont.woff 6 137448 0 1 /cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Regular-webfont.woff 6 135960 0 0 /public/_ignition/health-check/ 4 48488 0 0 /_ignition/health-check/ 4 48466 2 0 /index.php 4 48748 2 1 /wp-includes/wlwmanifest.xml 4 48483 0 2 //cms/wp-includes/wlwmanifest.xml 2 74166 0 0 //web/wp-includes/wlwmanifest.xml 2 74166 0 0 /.env 2 74124 1 1 //2020/wp-includes/wlwmanifest.xml 2 74168 0 0 //test/wp-includes/wlwmanifest.xml 2 74168 0 0 //wordpress/wp-includes/wlwmanifest.xml 2 74178 0 0 //2019/wp-includes/wlwmanifest.xml 2 74168 0 0 //blog/wp-includes/wlwmanifest.xml 2 74168 0 0 //wp1/wp-includes/wlwmanifest.xml 2 74166 0 0 //site/wp-includes/wlwmanifest.xml 2 74168 0 0 /TP/public/index.php 2 24391 0 0 //wp/wp-includes/wlwmanifest.xml 2 74164 0 0 //xmlrpc.php 2 74132 0 0 //news/wp-includes/wlwmanifest.xml 2 74168 0 0 /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/iedit.cfc 2 74240 2 0 //wp2/wp-includes/wlwmanifest.xml 2 74166 0 0 /vendor/htmlawed/htmlawed/htmLawedTest.php 1 12119 0 0 /index.php/vendor/htmlawed/htmlawed/htmLawedTest.php 1 12125 0 0 /helpdesk/vendor/htmlawed/htmlawed/htmLawedTest.php 1 12123 1 0 //wp-login.php 1 12110 1 0 /ticket/vendor/htmlawed/htmlawed/htmLawedTest.php 1 12126 0 1 //shop/wp-includes/wlwmanifest.xml 2 74168 0 0 //sito/wp-includes/wlwmanifest.xml 2 74168 0 2 //wp-includes/wlwmanifest.xml 2 74158 0 0 /glpi/vendor/htmlawed/htmlawed/htmLawedTest.php 1 12126 0 0 //website/wp-includes/wlwmanifest.xml 2 74174 0 0 /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php 2 24264 1 1 /support/vendor/htmlawed/htmlawed/htmLawedTest.php 1 12125 0 0 /.git/config 2 74138 0 2 END_SIDER