正在安全驗證中...
🔥 IPS 威脅報告與惡意 IP 監控
本報告彙整了 2ns.org 監測節點偵測到的即時攻擊行為。包含 SQL Injection、XSS 跨站腳本 以及非法檔案存取嘗試。提供管理者作為防火牆黑名單設定參考。
最後更新:2026-04-19 07:57:30 📥 下載完整報告
| 時間 | 攻擊名稱 | 來源 IP (下載威脅IP清單) | 動作 |
|---|---|---|---|
| - | ALFA.TEaM.Web.Shell | 20.63.32.193 | dropped |
| - | ALFA.TEaM.Web.Shell | 20.63.32.193 | dropped |
| - | ALFA.TEaM.Web.Shell | 172.202.75.66 | dropped |
| - | HTTP.URI.SQL.Injection | 65.181.118.110 | dropped |
| - | D-Link.DSL-2750B.CLI.OS.Command.Injection | 69.30.150.99 | dropped |
| - | Web.Server.Password.File.Access | 181.177.89.129 | dropped |
| - | Apache.HTTP.Server.cgi-bin.Path.Traversal | 109.105.210.88 | dropped |
| - | Apache.HTTP.Server.cgi-bin.Path.Traversal | 109.105.210.87 | dropped |
| - | Telerik.Web.UI.RadAsyncUpload.Handling.Arbitrary.File.Upload | 109.105.210.89 | dropped |
| - | ALFA.TEaM.Web.Shell | 20.63.32.193 | dropped |
| - | Apache.HTTP.Server.cgi-bin.Path.Traversal | 221.120.34.164 | dropped |
| - | ALFA.TEaM.Web.Shell | 172.202.75.66 | dropped |
| - | HTTP.URI.SQL.Injection | 65.181.118.110 | dropped |
| - | Apache.HTTP.Server.cgi-bin.Path.Traversal | 103.40.61.98 | dropped |
| - | Web.Server.Password.File.Access | 208.84.102.203 | dropped |
| - | Cross.Site.Scripting | 208.84.102.203 | detected |
| - | Cross.Site.Scripting | 208.84.102.203 | detected |
| - | Web.Server.Password.File.Access | 208.84.102.203 | dropped |
| - | HTTP.URI.SQL.Injection | 65.181.118.110 | dropped |
| - | Apache.HTTP.Server.cgi-bin.Path.Traversal | 158.173.159.116 | dropped |
| - | Apache.HTTP.Server.cgi-bin.Path.Traversal | 185.203.216.248 | dropped |
| - | NETGEAR.DGN1000.CGI.Unauthenticated.Remote.Code.Execution | 14.205.104.200 | dropped |
| - | Mirai.Botnet | 91.224.92.177 | dropped |
| - | NETGEAR.DGN1000.CGI.Unauthenticated.Remote.Code.Execution | 103.173.7.200 | dropped |
| - | Apache.Struts.2.DefaultActionMapper.Remote.Command.Execution | 125.165.62.124 | dropped |
| - | Apache.Struts.2.DefaultActionMapper.Remote.Command.Execution | 125.165.62.124 | dropped |
| - | Apache.Struts.2.Jakarta.Multipart.Parser.Code.Execution | 125.165.62.124 | dropped |
| - | Multiple.Routers.GPON.formLogin.Remote.Command.Injection | 176.65.139.60 | dropped |
| - | Bladabindi.Botnet | 138.197.16.14 | dropped |
| - | Apache.HTTP.Server.cgi-bin.Path.Traversal | 129.121.84.193 | dropped |
| - | D-Link.Devices.HNAP.SOAPAction-Header.Command.Execution | 58.65.216.0 | dropped |
| - | Mirai.Botnet | 91.224.92.177 | dropped |
| - | HTTP.URI.SQL.Injection | 109.176.21.181 | dropped |
| - | Malicious.HTTP.URI.Requests | 185.177.72.17 | dropped |
| - | Multiple.Routers.GPON.formLogin.Remote.Command.Injection | 223.123.38.32 | dropped |
| - | AndroxGh0st.Malware | 82.38.4.92 | dropped |
| - | Mirai.Botnet | 91.224.92.177 | dropped |
| - | Apache.HTTP.Server.cgi-bin.Path.Traversal | 46.191.157.159 | dropped |
| - | Apache.HTTP.Server.cgi-bin.Path.Traversal | 147.93.157.83 | dropped |
| - | ALFA.TEaM.Web.Shell | 20.220.15.7 | dropped |
| - | Multiple.Routers.GPON.formLogin.Remote.Command.Injection | 159.89.84.111 | dropped |
| - | Apache.HTTP.Server.cgi-bin.Path.Traversal | 222.89.169.98 | dropped |
| - | Multiple.Routers.GPON.formLogin.Remote.Command.Injection | 142.248.80.31 | dropped |
| - | Apache.HTTP.Server.cgi-bin.Path.Traversal | 36.132.36.134 | dropped |
| - | HTTP.URI.SQL.Injection | 217.79.116.138 | dropped |
| - | Apache.HTTP.Server.cgi-bin.Path.Traversal | 85.111.68.99 | dropped |
| - | Web.Server.Password.File.Access | 69.197.178.193 | dropped |
| - | Web.Server.Password.File.Access | 69.197.178.193 | dropped |
| - | Web.Server.Password.File.Access | 69.197.178.193 | dropped |
| - | Cross.Site.Scripting | 69.197.178.193 | detected |