🔥 IPS 威脅報告與惡意 IP 監控
本報告彙整了 2ns.org 監測節點偵測到的即時攻擊行為。包含 SQL Injection、XSS 跨站腳本 以及非法檔案存取嘗試。提供管理者作為防火牆黑名單設定參考。
最後更新:2026-05-20 03:54:15 📥 下載完整報告
| 時間 | 攻擊名稱 | 來源 IP (下載威脅IP清單) | 動作 |
|---|---|---|---|
| - | Web.Server.Password.File.Access | 104.234.53.119 | dropped |
| - | Web.Server.Password.File.Access | 104.234.53.116 | dropped |
| - | Web.Server.Password.File.Access | 104.234.53.143 | dropped |
| - | Web.Server.Password.File.Access | 104.234.53.109 | dropped |
| - | Web.Server.Password.File.Access | 104.234.53.118 | dropped |
| - | Web.Server.Password.File.Access | 104.234.53.134 | dropped |
| - | Web.Server.Password.File.Access | 104.234.53.118 | dropped |
| - | Web.Server.Password.File.Access | 104.234.53.101 | dropped |
| - | Web.Server.Password.File.Access | 104.234.53.115 | dropped |
| - | Cross.Site.Scripting | 104.234.53.136 | detected |
| - | Web.Server.Password.File.Access | 104.234.53.250 | dropped |
| - | Cross.Site.Scripting | 104.234.53.136 | detected |
| - | Cross.Site.Scripting | 104.234.53.136 | detected |
| - | Web.Server.Password.File.Access | 104.234.53.115 | dropped |
| - | Web.Server.Password.File.Access | 158.51.111.218 | dropped |
| - | Web.Server.Password.File.Access | 158.51.111.218 | dropped |
| - | Web.Server.Password.File.Access | 158.51.111.218 | dropped |
| - | Web.Server.Password.File.Access | 158.51.111.218 | dropped |
| - | Cross.Site.Scripting | 158.51.111.218 | detected |
| - | Cross.Site.Scripting | 158.51.111.218 | detected |
| - | Web.Server.Password.File.Access | 158.51.111.218 | dropped |
| - | ALFA.TEaM.Web.Shell | 20.9.81.163 | dropped |
| - | Spring.Boot.Actuator.Unauthorized.Access | 34.97.47.11 | dropped |
| - | Spring.Boot.Actuator.Unauthorized.Access | 34.97.47.11 | dropped |
| - | HTTP.Negative.Content.Length | 172.233.141.78 | dropped |
| - | HTTP.Negative.Content.Length | 172.233.141.78 | dropped |
| - | HTTP.Negative.Content.Length | 172.233.141.78 | dropped |
| - | HTTP.Negative.Content.Length | 172.233.141.78 | dropped |
| - | Apache.HTTP.Server.cgi-bin.Path.Traversal | 118.145.104.105 | dropped |
| - | Apache.HTTP.Server.cgi-bin.Path.Traversal | 62.171.168.149 | dropped |
| - | AndroxGh0st.Malware | 185.93.89.16 | dropped |
| - | ALFA.TEaM.Web.Shell | 20.151.117.104 | dropped |
| - | ALFA.TEaM.Web.Shell | 20.151.117.104 | dropped |
| - | Multiple.Routers.GPON.formLogin.Remote.Command.Injection | 117.196.183.120 | dropped |
| - | Apache.HTTP.Server.cgi-bin.Path.Traversal | 36.62.94.189 | dropped |
| - | D-Link.Devices.HNAP.SOAPAction-Header.Command.Execution | 122.96.31.153 | dropped |
| - | Oracle.Java.Applet.CMM.Code.Execution | 47.79.15.92 | dropped |
| - | Web.Server.Password.File.Access | 154.16.169.87 | dropped |
| - | Cross.Site.Scripting | 154.16.169.87 | detected |
| - | Apache.HTTP.Server.cgi-bin.Path.Traversal | 77.91.77.151 | dropped |
| - | HTTP.URI.SQL.Injection | 195.181.174.229 | dropped |
| - | AndroxGh0st.Malware | 203.175.125.185 | dropped |
| - | AndroxGh0st.Malware | 203.175.125.185 | dropped |
| - | AndroxGh0st.Malware | 203.175.125.185 | dropped |
| - | Apache.HTTP.Server.cgi-bin.Path.Traversal | 72.56.1.31 | dropped |
| - | Apache.HTTP.Server.cgi-bin.Path.Traversal | 212.73.217.80 | dropped |
| - | HTTP.URI.SQL.Injection | 195.181.174.229 | dropped |
| - | HTTP.URI.SQL.Injection | 195.181.174.229 | dropped |
| - | HTTP.URI.SQL.Injection | 185.212.171.188 | dropped |
| - | HTTP.URI.SQL.Injection | 81.19.216.252 | dropped |