26:56 [Info] md5 equal:C:/Program Files (x86)/Alibaba/Aegis/aegis_client/aegis_11_38/rule/evtlog.data:78068adc6587a089c58e53cbe979b233
2022-09-24 04:26:56 [Info] update rule evtlog.data success
2022-09-24 04:32:05 [Info] TotalPhys:7918,AvailPhys:5127,TotalVirtual:2047,AvailVirtual:1923,TotalPageFile:9198,AvailPageFile:6436,SelfWorkingSet:44656, SelfPageFile:54104
2022-09-24 04:32:05 [Info] CommitTotal:2761,CommitLimit:9198,CommitPeak:3372,PhysicalTotal:7918,PhysicalAvailable:5127,SystemCache:5448,KernelTotal:1101,KernelPaged:636,KernelNonpaged:464,PageSize:4096,HandleCount:35747,ProcessCount:58,ThreadCount:1024
2022-09-24 04:32:50 [Info] cmdchain cache limit:50000 and over time cache clean now size :[0]
2022-09-24 04:32:50 [Info] cmdchain cache new limit:50000 and over time cache clean now size :[264]
2022-09-24 04:41:25 [Info] webshell scan count, tn:13000
2022-09-24 04:51:32 [Info] cmdchain cache limit:50000 and over time cache clean now size :[0]
2022-09-24 04:51:32 [Info] cmdchain cache new limit:50000 and over time cache clean now size :[119]
2022-09-24 04:55:11 [Info] exception info: {"bin_file_list_drop":"0","conn_first_work_time":"4","conn_work_time":"4","connect_filter_total_count":"413","connect_filter_total_length":"1058034","connect_merge_cache_count":"3","connect_merge_filter_count":"247","connect_merge_filter_count1":"247","connect_merge_filter_length":"693599","connect_profile_cache_count":"264","connect_profile_cache_limit":"0","connect_profile_filter_count":"166","connect_profile_filter_count1":"166","connect_profile_filter_length":"364435","connect_profile_no_ccp_count":"0","connect_static_filter_count":"0","connect_static_filter_length":"0","cpu_avg":"0.02","cpu_limit_enable":"1","cpu_limit_error_code":"0","cpu_limit_param_error_code":"0","cpu_warn_count":"0","fanotify_rate_limit":"0","fd_count":"559","file_change_list_drop":"0","inotify_node_limit":"0","ipc_msg_list_drop":"0","md5_file_not_exist":"0","md5_web_file_not_exist":"0","mem_avg":"44411.83","module_load_failed":"0","net_connect_list_drop_count":"0","net_connect_positive_drop_count":"0","net_connect_send_count":"413","net_connect_total_count":"413","net_connect_valid_send_count":"413","net_list_length":"0","net_tx_overflow":"0","network_rx_err":"0","network_tx_drop":"0","network_tx_overflow":"0","proc_filter_level":"2","proc_filter_total_count":"46","proc_filter_total_length":"58306","proc_first_work_time":"523","proc_list_drop_count":"0","proc_list_length":"0","proc_merge_cache_count":"1","proc_merge_filter_count":"9","proc_merge_filter_count1":"9","proc_merge_filter_length":"9997","proc_positive_drop_count":"0","proc_profile_cache_count":"119","proc_profile_cache_limit":"0","proc_profile_filter_count":"33","proc_profile_filter_count1":"33","proc_profile_filter_length":"42857","proc_profile_no_ccp_count":"0","proc_send_count":"46","proc_static_filter_count":"0","proc_static_filter_length":"0","proc_total_count":"46","proc_tx_overflow":"0","proc_valid_send_count":"46","proc_work_time":"2730","procfile_filter_total_count":"137","procfile_filter_total_length":"131781","procfile_first_work_time":"417","procfile_merge_cache_count":"0","procfile_merge_filter_count":"0","procfile_merge_filter_count1":"0","procfile_merge_filter_length":"0","procfile_profile_cache_count":"4619","procfile_profile_cache_limit":"0","procfile_profile_filter_count":"83","procfile_profile_filter_count1":"83","procfile_profile_filter_length":"70091","procfile_profile_no_ccp_count":"0","procfile_static_filter_count":"0","procfile_static_filter_length":"0","procfile_work_time":"2693","rtap_instance_abnormal":"0","script_file_list_drop":"0","script_md5_file_not_exist":"0","sys_login_config_error":"1","timer_skew":"0","update_update_fail":"0","web_file_list_drop":"0","web_file_size_fail":"472","web_path_failed":"0","web_rule_load_fail":"0","webshell_scan_timeout":"0"}
2022-09-24 04:55:32 [Info] cmdchain cache limit:50000 and over time cache clean now size :[0]
2022-09-24 04:55:32 [Info] cmdchain cache new limit:50000 and over time cache clean now size :[4542]
2022-09{
    color: #3c763d;
}

.has-success .form-control
{
    border-color: #3c763d;
    -webkit-box-shadow: inset 0 1px 1px rgba(0,0,0,.075);
    box-shadow: inset 0 1px 1px rgba(0,0,0,.075);
}

    .has-success .form-control:focus
    {
        border-color: #2b542c;
        -webkit-box-shadow: inset 0 1px 1px rgba(0,0,0,.075),0 0 6px #67b168;
        box-shadow: inset 0 1px 1px rgba(0,0,0,.075),0 0 6px #67b168;
    }

.has-success .input-group-addon
{
    color: #3c763d;
    background-color: #dff0d8;
    border-color: #3c763d;
}

.has-success .form-control-feedback
{
    color: #3c763d;
}

.has-warning .checkbox, .has-warning .checkbox-inline, .has-warning .control-label, .has-warning .help-block, .has-warning .radio, .has-warning .radio-inline, .has-warning.checkbox label, .has-warning.checkbox-inline label, .has-warning.radio label, .has-warning.radio-inline label
{
    color: #8a6d3b;
}

.has-warning .form-control
{
    border-color: #8a6d3b;
    -webkit-box-shadow: inset 0 1px 1px rgba(0,0,0,.075);
    box-shadow: inset 0 1px 1px rgba(0,0,0,.075);
}

    .has-warning .form-control:focus
    {
        border-color: #66512c;
        -webkit-box-shadow: inset 0 1px 1px rgba(0,0,0,.075),0 0 6px #c0a16b;
        box-shadow: inset 0 1px 1px rgba(0,0,0,.075),0 0 6px #c0a16b;
    }

.has-warning .input-group-addon
{
    color: #8a6d3b;
    background-color: #fcf8e3;
    border-color: #8a6d3b;
}

.has-warning .form-control-feedback
{
    color: #8a6d3b;
}

.has-error .checkbox, .has-error .checkbox-inline, .has-error .control-label, .has-error .help-block, .has-error .radio, .has-error .radio-inline, .has-error.checkbox label, .has-error.checkbox-inline label, .has-error.radio label, .has-error.radio-inline label
{
    color: #a94442;
}

.has-error .form-control
{
    border-color: #a94442;
    -webkit-box-shadow: inset 0 1px 1px rgba(0,0,0,.075);
    box-shadow: inset 0 1px 1px rgba(0,0,0,.075);
}

    .has-error .form-control:focus
    {
        border-color: #843534;
        -webkit-box-shadow: inset 0 1px 1px rgba(0,0,0,.075),0 0 6px #ce8483;
        box-shadow: inset 0 1px 1px rgba(0,0,0,.075),0 0 6px #ce8483;
    }

.has-error .input-group-addon
{
    color: #a94442;
    background-color: #f2dede;
    border-color: #a94442;
}

.has-error .form-control-feedback
{
    color: #a94442;
}

.has-feedback label ~ .form-control-feedback
{
    top: 25px;
}

.has-feedback label.sr-only ~ .form-control-feedback
{
    top: 0;
}

.help-block
{
    display: block;
    margin-top: 5px;
    margin-bottom: 10px;
    color: #737373;
}

@media (min-width:768px)
{
    .form-inline .form-group
    {
        display: inline-block;
        margin-bottom: 0;
        vertical-align: middle;
    }

    .form-inline .form-control
    {
        display: inline-block;
        width: auto;
        vertical-align: middle;
    }

    .form-inline .form-control-static
    {
        display: inline-block;
    }

    .form-inline .input-group
    {
        display: inline-table;
        vertical-align: middle;
    }

        .form-inline .input-group .form-control, .form-inline .input-group .input-group-addon, .form-inline .input-group .input-group-btn
        {
            width: auto;
        }

        .form-inline .input-group > .form-control
        {
            width: 100%;
        }

    .form-inline .control-label
    {
        margin-bottom: 0;
        vertical-align: middle;
    }

    .form-inline .checkbox, .form-inline .radio
    {
        display: inline-block;
        margin-top: 0;
        margin-bottom: 0;
        vertical-align: middle;
    }

        .form-inline .checkbox label, .form-inline .radio label
        {
            padding-left: 0;
        }

        .form-inline .checkbox input[type=checkbox