if ($time - $timetem < $allowtime) {if ($iptem != $checkip) {$str .= $v;} else {$yesno = false;if ($uritem != $checkuri) {$str .= $iptem . $checkuri . $time . "\r\n";} else {if ($numtem < $allownum) {$str .= $iptem . $uritem . $timetem . ($numtem + 1) . "\r\n";} else {if (!file_exists($fileforbid)) {$addforbidarr = array($ip . "\r\n", time() . "\r\n", 1);file_put_contents($fileforbid, $addforbidarr);}file_put_contents($logFilePath . 'forbided_ip.log', $ip . '--' . date('Y-m-d H:i:s', time()) . '--' . $uri . "\r\n", FILE_APPEND);$timepass = $timetem + $allowtime - $time;exit(ip_pape('警告:不要刷新的太频繁!请在30秒之后再访问网站,否则禁止访问网站。'));//exit('警告:不要刷新的太频繁!请在一分钟之后再访问网站,否则禁止访问网站。');
| file | ./log/ipdate.dat |
| name | database |
| range | _sys_ |
| type | php |
| webscan_switch | 1 |
| webscan_post | 1 |
| webscan_get | 1 |
| webscan_cookie | 1 |
| webscan_referre | 1 |
| webscan_white_directory | admin|\/data\/ |
| webscan_white_url | { "index.php": "m=admin", "post.php": "job=postnew&step=post", "edit_space_info.php": "" } |
| getfilter | \<.+javascript:window\[.{1}\\x|<.*=(&#\d+?;?)+?>|<.*(data|src)=data:text\/html.*>|\b(alert\(|confirm\(|expression\(|prompt\(|benchmark\s*?\(.*\)|sleep\s*?\(.*\)|\b(group_)?concat[\s\/\*]*?\([^\)]+?\)|\bcase[\s\/\*]*?when[\s\/\*]*?\([^\)]+?\)|load_file\s*?\()|<[a-z]+?\b[^>]*?\bon([a-z]{4,})\s*?=|^\+\/v(8|9)|\b(and|or)\b\s*?([\(\)'"\d]+?=[\(\)'"\d]+?|[\(\)'"a-zA-Z]+?=[\(\)'"a-zA-Z]+?|>|<|\s+?[\w]+?\s+?\bin\b\s*?\(|\blike\b\s+?["'])|\/\*.*\*\/|<\s*script\b|\bEXEC\b|UNION.+?SELECT\s*(\(.+\)\s*|@{1,2}.+?\s*|\s+?.+?|(`|'|").*?(`|'|")\s*)|UPDATE\s*(\(.+\)\s*|@{1,2}.+?\s*|\s+?.+?|(`|'|").*?(`|'|")\s*)SET|INSERT\s+INTO.+?VALUES|(SELECT|DELETE)@{0,2}(\(.+\)|\s+?.+?\s+?|(`|'|").*?(`|'|"))FROM(\(.+\)|\s+?.+?|(`|'|").*?(`|'|"))|(CREATE|ALTER|DROP|TRUNCATE)\s+(TABLE|DATABASE)|<\s*iframe\b |
| postfilter | <.*=(&#\d+?;?)+?>|<.*data=data:text\/html.*>|\b(alert\(|confirm\(|expression\(|prompt\(|benchmark\s*?\(.*\)|sleep\s*?\(.*\)|\b(group_)?concat[\s\/\*]*?\([^\)]+?\)|\bcase[\s\/\*]*?when[\s\/\*]*?\([^\)]+?\)|load_file\s*?\()|<[^>]*?\b(onerror|onmousemove|onload|onclick|onmouseover)\b|\b(and|or)\b\s*?([\(\)'"\d]+?=[\(\)'"\d]+?|[\(\)'"a-zA-Z]+?=[\(\)'"a-zA-Z]+?|>|<|\s+?[\w]+?\s+?\bin\b\s*?\(|\blike\b\s+?["'])|\/\*.*\*\/|<\s*script\b|\bEXEC\b|UNION.+?SELECT\s*(\(.+\)\s*|@{1,2}.+?\s*|\s+?.+?|(`|'|").*?(`|'|")\s*)|UPDATE\s*(\(.+\)\s*|@{1,2}.+?\s*|\s+?.+?|(`|'|").*?(`|'|")\s*)SET|INSERT\s+INTO.+?VALUES|(SELECT|DELETE)(\(.+\)|\s+?.+?\s+?|(`|'|").*?(`|'|"))FROM(\(.+\)|\s+?.+?|(`|'|").*?(`|'|"))|(CREATE|ALTER|DROP|TRUNCATE)\s+(TABLE|DATABASE)|<\s*iframe\b |
| cookiefilter | benchmark\s*?\(.*\)|sleep\s*?\(.*\)|load_file\s*?\(|\b(and|or)\b\s*?([\(\)'"\d]+?=[\(\)'"\d]+?|[\(\)'"a-zA-Z]+?=[\(\)'"a-zA-Z]+?|>|<|\s+?[\w]+?\s+?\bin\b\s*?\(|\blike\b\s+?["'])|\/\*.*\*\/|<\s*script\b|\bEXEC\b|UNION.+?SELECT\s*(\(.+\)\s*|@{1,2}.+?\s*|\s+?.+?|(`|'|").*?(`|'|")\s*)|UPDATE\s*(\(.+\)\s*|@{1,2}.+?\s*|\s+?.+?|(`|'|").*?(`|'|")\s*)SET|INSERT\s+INTO.+?VALUES|(SELECT|DELETE)@{0,2}(\(.+\)|\s+?.+?\s+?|(`|'|").*?(`|'|"))FROM(\(.+\)|\s+?.+?|(`|'|").*?(`|'|"))|(CREATE|ALTER|DROP|TRUNCATE)\s+(TABLE|DATABASE)|<\s*iframe\b |
| webscan_referer | [] |
| value | q8a13i2kiphl3vbcfnjn9ria5d |
| key | PHPSESSID |
| ip | 10.17.1.4 |
| logFilePath | ./log/ |
| fileht | .htaccess2 |
| allowtime | 10 |
| allownum | 15 |
| allowRefresh | 20 |
| filehtarr | [] |
| time | 1732679309 |
| fileforbid | ./log/forbidchk.dat |
| str | |
| uri | /en/portal/index/cutsite/site_id/1.html |
| checkip | 9aceaab846eeb5dd408ba9a8222a5c87 |
| checkuri | 17d469928c6291a1921659ab254b10ab |
| yesno | false |
| ipdate | [ "9aceaab846eeb5dd408ba9a8222a5c8717d469928c6291a1921659ab254b10ab1732679304\r\n" ] |
| v | 9aceaab846eeb5dd408ba9a8222a5c8717d469928c6291a1921659ab254b10ab1732679304 |
| k | 0 |
| iptem | 9aceaab846eeb5dd408ba9a8222a5c87 |
| uritem | 17d469928c6291a1921659ab254b10ab |
| timetem | 1732679304 |
| numtem |