OwlCyberSecurity - MANAGER

Edit File: awstats102025.testone.onebox.pk.txt

AWSTATS DATA FILE 7.9 (build 20230108)
# If you remove this file, all statistics for date 202510 will be lost/reset.
# Last config file used to build this data file was /home/oneboxpk/tmp/awstats/ssl/awstats.testone.onebox.pk.conf.

# Position (offset in bytes) in this file for beginning of each section for
# direct I/O access. If you made changes somewhere in this file, you should
# also remove completely the MAP section (AWStats will rewrite it at next
# update).
BEGIN_MAP 28
POS_GENERAL 2052                
POS_TIME 2725                
POS_VISITOR 9421                
POS_DAY 11321               
POS_DOMAIN 3358                
POS_LOGIN 3690                
POS_ROBOT 3845                
POS_WORMS 4283                
POS_EMAILSENDER 4414                
POS_EMAILRECEIVER 4557                
POS_SESSION 11869               
POS_FILESIZE 12141               
POS_SIDER 12036               
POS_FILETYPES 4692                
POS_DOWNLOADS 4826                
POS_OS 4874                
POS_BROWSER 5214                
POS_SCREENSIZE 6091                
POS_UNKNOWNREFERER 6165                
POS_UNKNOWNREFERERBROWSER 6880                
POS_ORIGIN 7269                
POS_SEREFERRALS 7401                
POS_PAGEREFS 7545                
POS_SEARCHWORDS 7693                
POS_KEYWORDS 7845                
POS_MISC 2388                
POS_ERRORS 7904                
POS_CLUSTER 3546                
POS_SIDER_404 8018                
END_MAP

# LastLine    = Date of last record processed - Last record line number in last log - Last record offset in last log - Last record signature value
# FirstTime   = Date of first visit for history file
# LastTime    = Date of last visit for history file
# LastUpdate  = Date of last update - Nb of parsed records - Nb of parsed old records - Nb of parsed new records - Nb of parsed corrupted - Nb of parsed dropped
# TotalVisits = Number of visits
# TotalUnique = Number of unique visitors
# MonthHostsKnown   = Number of hosts known
# MonthHostsUnKnown = Number of hosts unknown
BEGIN_GENERAL 8
LastLine 20251101022230 1 0 11395880387054
FirstTime 20251001120448
LastTime 20251031040452
LastUpdate 20251101171905 1 0 0 0 0
TotalVisits 47                  
TotalUnique 47                  
MonthHostsKnown 0                   
MonthHostsUnknown 48                  
END_GENERAL

# Misc ID - Pages - Hits - Bandwidth
BEGIN_MISC 10
JavaEnabled 0 0 0
TotalMisc 0 0 0
WindowsMediaPlayerSupport 0 0 0
AddToFavourites 0 16 0
QuickTimeSupport 0 0 0
DirectorSupport 0 0 0
RealPlayerSupport 0 0 0
PDFSupport 0 0 0
JavascriptDisabled 0 0 0
FlashSupport 0 0 0
END_MISC

# Hour - Pages - Hits - Bandwidth - Not viewed Pages - Not viewed Hits - Not viewed Bandwidth
BEGIN_TIME 24
0 0 0 0 0 0 0
1 0 0 0 3 3 954
2 3 3 2259 20 21 11055
3 3 3 1506 35 35 12362
4 4 7 1863226 10 10 3606
5 2 3 716119 0 0 0
6 1 1 753 1 3 4503
7 8 11 2149080 1 2 4623
8 3 5 1430963 4 4 2577
9 1 1 753 2 2 1071
10 1 2 6100 2 3 5376
11 2 3 716119 128 130 42328
12 1 1 753 0 0 0
13 0 0 0 1 1 318
14 2 2 1506 4 13 7103047
15 6 8 1226270 2 3 4506
16 1 1 753 1 3 4938
17 1 1 753 3 4 1891
18 5 7 14459 10 14 15292
19 2 3 6853 2 6 8942
20 10 18 3595331 2 4 8493
21 1 1 753 0 1 3870
22 1 1 753 0 0 0
23 1 1 753 4 4 1707
END_TIME

# Domain - Pages - Hits - Bandwidth
# The 25 first Pages must be first (order not required for others)
BEGIN_DOMAIN 9
us 24 32 1479380
ru 15 25 6445057
ca 8 8 6024
de 5 8 1939869
gb 2 2 1506
in 2 5 1861720
rs 1 1 753
au 1 1 753
bg 1 1 753
END_DOMAIN

# Cluster ID - Pages - Hits - Bandwidth
BEGIN_CLUSTER 0
END_CLUSTER

# Login - Pages - Hits - Bandwidth - Last visit
# The 10 first Pages must be first (order not required for others)
BEGIN_LOGIN 0
END_LOGIN

# Robot ID - Hits - Bandwidth - Last visit - Hits on robots.txt
# The 25 first Hits must be first (order not required for others)
BEGIN_ROBOT 8
bot[\s_+:,\.\;\/\\-] 16 6383592 20251031143149 4
no_user_agent 12 9036 20251026093346 0
survey 3 2259 20251014083101 0
Go\-http\-client/ 2 1506 20251019035110 0
(firefox/)([0-9]\.|[0-1][0]\.) 1 714613 20251021142545 0
unknown 1 67 20251013195809 1
scrapy 1 753 20251030104547 0
robot 1 67 20251031143028 1
END_ROBOT

# Worm ID - Hits - Bandwidth - Last visit
# The 5 first Hits must be first (order not required for others)
BEGIN_WORMS 0
END_WORMS

# EMail - Hits - Bandwidth - Last visit
# The 20 first Hits must be first (order not required for others)
BEGIN_EMAILSENDER 0
END_EMAILSENDER

# EMail - Hits - Bandwidth - Last visit
# The 20 first hits must be first (order not required for others)
BEGIN_EMAILRECEIVER 0
END_EMAILRECEIVER

# Files type - Hits - Bandwidth - Bandwidth without compression - Bandwidth after compression
BEGIN_FILETYPES 4
json 12 5904 0 0
png 7 37429 0 0
html 47 34638 0 0
js 17 11657844 0 0
END_FILETYPES

# Downloads - Hits - Bandwidth
BEGIN_DOWNLOADS 0
END_DOWNLOADS

# OS ID - Hits
BEGIN_OS ID - Hits - Pages 19
androiddonut 1 1
androidmarshmallow 4 3
macosx15 4 4
win8.1 3 1
linux 9 8
win7 8 4
macosx9 1 1
androidkitkat 1 0
ios_ipad 1 0
ios_iphone 1 1
Unknown 28 19
macosx14 2 2
macosx10 1 1
macosx11 1 1
win10 12 8
androidpie 3 2
linuxubuntu 1 1
androidjellybean 1 1
androidfroyo 1 1
END_OS

# Browser ID - Hits - Pages
BEGIN_BROWSER 40
chrome75.0.3770.143 1 1
Unknown 12 10
chrome136.0.0.0 2 2
chrome74.0.3729.169 1 0
chrome76.0.3809.100 3 3
chrome76.0.3809.111 1 1
safari6.0 1 0
chrome91.0.4472.124 1 1
firefox139.0 3 3
msie7.0 1 0
chrome139.0.0.0 4 4
mozilla 14 7
chrome58.0.3029.110 1 1
chrome120.0.0.0 1 1
firefox47.0 5 2
chrome73.0.3683.103 1 1
chrome75.0.3770.145 1 1
chrome137.0.0.0 1 1
chrome133.0.0.0 1 1
chrome43.0.2357.93 1 0
chrome108.0.0.0 2 2
chrome134.0.0.0 2 1
safari9.0 1 1
chrome67.0.3396.87 1 1
chrome76.0.3804.0 1 1
chrome52.0.6247.98 2 2
chrome66.0.3359.181 1 1
android 3 3
chrome30.0.1599.103 1 0
chrome74.0.3729.157 1 0
firefox134.0 1 1
chrome72.0.3626.109 1 0
chrome75.0.3770.80 1 1
chrome44.0.2403.107 1 0
chrome124.0.0.0 1 1
netscape5.0 2 2
chrome74.0.3729.136 1 0
chrome76.0.3809.132 1 1
chrome76.0.3809.89 2 1
chrome72.0.3626.121 1 0
END_BROWSER

# Screen size - Hits
BEGIN_SCREENSIZE 0
END_SCREENSIZE

# Unknown referer OS - Last visit date
BEGIN_UNKNOWNREFERER 9
Mozilla/5.0_(compatible;_InternetMeasurement/1.0;__https://internet-measurement.com/) 20251021105934
Mozilla/5.0_zgrab/0.x 20251025220622
Mozilla/5.0_(compatible;_UGAResearchAgent/1.0;_Please_visit:_NISLabUGA.github.io) 20251004020027
python-httpx/0.28.1 20251022050955
python-httpx/0.24.1 20251019115217
Hello_from_Palo_Alto_Networks,_find_out_more_about_our_scans_in_https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity 20251031040452
python-requests/2.32.5 20251019155515
Python/3.10_aiohttp/3.12.15 20251001182228
Mozilla/5.0_(compatible;_CensysInspect/1.1;__https://about.censys.io/) 20251021203706
END_UNKNOWNREFERER

# Unknown referer Browser - Last visit date
BEGIN_UNKNOWNREFERERBROWSER 5
python-requests/2.32.5 20251019155515
Hello_from_Palo_Alto_Networks,_find_out_more_about_our_scans_in_https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity 20251031040452
python-httpx/0.24.1 20251019115217
python-httpx/0.28.1 20251022050955
Python/3.10_aiohttp/3.12.15 20251001182228
END_UNKNOWNREFERERBROWSER

# Origin - Pages - Hits 
BEGIN_ORIGIN 6
From0 59 83
From1 0 0
From2 0 0
From3 0 0
From4 0 0
From5 0 0
END_ORIGIN

# Search engine referers ID - Pages - Hits
BEGIN_SEREFERRALS 0
END_SEREFERRALS

# External page referers - Pages - Hits
# The 25 first Pages must be first (order not required for others)
BEGIN_PAGEREFS 0
END_PAGEREFS

# Search keyphrases - Number of search
# The 10 first number of search must be first (order not required for others)
BEGIN_SEARCHWORDS 0
END_SEARCHWORDS

# Search keywords - Number of search
# The 25 first number of search must be first (order not required for others)
BEGIN_KEYWORDS 0
END_KEYWORDS

# Errors - Hits - Bandwidth
BEGIN_ERRORS 3
403 139 43884
404 70 22050
503 4 1712
END_ERRORS

# URL with 404 errors - Hits - Last URL referrer
BEGIN_SIDER_404 50
/s/0323e2634323e20363e27333/_/ 2 -
/swagger-ui.html 1 -
/ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application 2 -
/webjars/swagger-ui/index.html 1 -
/info.php.orig 1 -
/php_info.php.bak 1 -
/_ignition/execute-solution 1 -
/swagger.json 1 -
/login.action 2 -
/about 2 -
/api-docs/swagger.json 1 -
/php_info.php.save 1 -
/server-status 2 -
/test.php.bak 1 -
/phpinfo.php.orig 1 -
/php_info.php.orig 1 -
/v2/api-docs 1 -
/@vite/env 2 -
/server 2 -
/v2/_catalog 2 -
/test.php.old 1 -
/php_info.php.old 1 -
/info.php.save 1 -
/php_info.php.backup 1 -
/.vscode/sftp.json 2 -
/phpinfo.php.save 1 -
/phpinfo.php.bak 1 -
/test.php.orig 1 -
/info.php.backup 1 -
/swagger/index.html 1 -
/sitemap.xml 1 -
/debug/default/view 2 -
/_all_dbs 2 -
/swagger/swagger-ui.html 1 -
/swagger/v1/swagger.json 1 -
/.well-known/security.txt 3 -
/actuator/env 2 -
/info.php.bak 1 -
/phpinfo 4 -
/phpinfo.php.backup 1 -
/graphql 1 -
/test.php.save 1 -
/telescope/requests 2 -
/manifest.js 1 -
/graphql/api 1 -
/config.json 2 -
/.DS_Store 2 -
/info.php.old 1 -
/v3/api-docs 1 -
/phpinfo.php.old 1 -
END_SIDER_404

# Host - Pages - Hits - Bandwidth - Last visit date - [Start date of last visit] - [Last page of last visit]
# [Start date of last visit] and [Last page of last visit] are saved only if session is not finished
# The 25 first Hits must be first (order not required for others)
BEGIN_VISITOR 48
185.177.72.8 6 11 3576278 20251019202244
195.178.110.223 3 5 1430963 20251006075502
185.177.72.11 3 5 1430963 20251020082941
213.209.157.216 2 3 508645 20251007153524
213.209.157.244 2 3 715858 20251007071936
45.148.10.203 2 5 1861720 20251020044737
167.172.130.24 1 1 753 20251007150201
205.210.31.75 1 1 753 20251004152759
66.132.153.115 1 2 6100 20251021203703
195.211.77.142 1 1 753 20251019035150
134.209.25.199 1 1 753 20251006020238
203.55.131.3 1 1 753 20251021043312
143.110.217.244 1 1 753 20251019035058
198.235.24.80 1 1 753 20251029202913
176.65.149.195 1 2 715366 20251023173726
159.203.162.98 1 1 753 20251009234523
66.132.153.114 1 2 6100 20251015185714
3.73.33.142 1 2 715366 20251019115217
68.183.44.248 1 1 753 20251002144655
174.138.48.5 1 1 753 20251009203626
162.142.125.127 1 3 11447 20251004203852
91.231.89.121 1 1 753 20251006211620
206.189.27.236 1 1 753 20251016072554
209.38.46.216 1 1 753 20251008184339
34.52.204.70 1 1 753 20251019155515
185.247.137.157 0 1 5347 
167.99.46.102 1 1 753 20251030161938
18.224.192.118 1 1 753 20251017072903
205.210.31.154 1 1 753 20251031040452
198.235.24.97 1 1 753 20251024071710
185.247.137.29 1 1 753 20251021105933
3.138.185.30 1 1 753 20251025220622
167.94.146.59 1 2 6100 20251014190710
143.198.168.176 1 1 753 20251022060938
18.208.206.243 1 2 715366 20251022050954
205.210.31.181 1 1 753 20251011155559
195.211.77.140 1 1 0 20251019035115
146.70.117.202 1 1 753 20251006025805
206.189.192.139 1 1 753 20251021143039
35.233.68.216 1 1 753 20251011093104
138.197.29.157 1 1 753 20251009184638
198.235.24.216 1 1 753 20251007055640
205.210.31.80 1 1 753 20251001120448
93.123.109.60 1 1 753 20251001182228
128.192.12.124 1 1 753 20251004020027
167.94.146.62 1 2 6100 20251013180307
174.138.68.133 1 1 753 20251010113602
47.236.36.218 1 1 753 20251013195808
END_VISITOR

# Date - Pages - Hits - Bandwidth - Visits
BEGIN_DAY 24
20251001 2 2 1506 2
20251002 1 1 753 1
20251004 3 5 12953 3
20251006 6 8 1433222 4
20251007 6 8 1226009 4
20251008 1 1 753 1
20251009 3 3 2259 3
20251010 1 1 753 1
20251011 2 2 1506 2
20251013 2 3 6853 2
20251014 1 2 6100 1
20251015 1 2 6100 1
20251016 1 1 753 1
20251017 1 1 753 1
20251019 11 17 4293903 6
20251020 5 10 3292683 2
20251021 4 6 13706 4
20251022 2 3 716119 2
20251023 1 1 753 1
20251024 1 1 753 1
20251025 1 2 715366 1
20251029 1 1 753 1
20251030 1 1 753 1
20251031 1 1 753 1
END_DAY

# Session range - Number of visits
BEGIN_SESSION 3
0s-30s 42
30s-2mn 4
2mn-5mn 1
END_SESSION

# URL - Pages - Bandwidth - Entry - Exit
# The 25 first Pages must be first (order not required for others)
BEGIN_SIDER 2
/ 47 34638 47 41
/manifest.json 12 5904 0 6
END_SIDER

# Payload Range - Payload Frequency
BEGIN_FILESIZE 6
2K-5K 16
5K+ 30
0-44 2
100-500 226
44-100 6
500-1K 69
END_FILESIZE