{ "ok": true, "source": "scotnet-dnsbl-public-history", "generated_at": 1782319385, "generated_at_iso": "2026-06-24T16:43:05Z", "requested_limit": 10, "history": { "code": "127.0.0.4", "confidence_band": "high", "confidence_score": 85, "event_count": 9, "events": [ { "category": "add", "code": "127.0.0.4", "kind": "add", "severity": "high", "source": "apache-security", "summary": "Apache security: shell_backdoor_probe; 2 evidence item(s); 1 attack session(s)/7d, 1/30d", "time": 1781621113, "time_iso": "2026-06-16T14:45:13Z" }, { "category": "generic_4xx", "kind": "attack", "method": "GET", "severity": "medium", "source": "apache-security", "status": 404, "summary": "Repeated suspicious 4xx target • GET • HTTP 404", "target": "/chomu.php", "time": 1781621039, "time_iso": "2026-06-16T14:43:59Z" }, { "category": "generic_4xx", "kind": "attack", "method": "GET", "severity": "medium", "source": "apache-security", "status": 404, "summary": "Repeated suspicious 4xx target • GET • HTTP 404", "target": "/hur.php", "time": 1781621038, "time_iso": "2026-06-16T14:43:58Z" }, { "category": "generic_4xx", "kind": "attack", "method": "GET", "severity": "medium", "source": "apache-security", "status": 404, "summary": "Repeated suspicious 4xx target • GET • HTTP 404", "target": "/s2.php", "time": 1781621037, "time_iso": "2026-06-16T14:43:57Z" }, { "category": "shell_backdoor_probe", "kind": "attack", "method": "GET", "severity": "high", "source": "apache-security", "status": 404, "summary": "Web-shell/backdoor probe • GET • HTTP 404", "target": "/classwithtostring.php", "time": 1781621036, "time_iso": "2026-06-16T14:43:56Z" }, { "category": "generic_4xx", "kind": "attack", "method": "GET", "severity": "medium", "source": "apache-security", "status": 404, "summary": "Repeated suspicious 4xx target • GET • HTTP 404", "target": "/jac.php", "time": 1781621036, "time_iso": "2026-06-16T14:43:56Z" }, { "category": "shell_backdoor_probe", "kind": "attack", "method": "GET", "severity": "high", "source": "apache-security", "status": 302, "summary": "Web-shell/backdoor probe • GET • HTTP 302", "target": "/classwithtostring.php", "time": 1781621036, "time_iso": "2026-06-16T14:43:56Z" }, { "category": "wordpress_probe", "kind": "attack", "method": "GET", "severity": "medium", "source": "apache-security", "status": 404, "summary": "WordPress application probe • GET • HTTP 404", "target": "/wp-content/plugins/hellopress/wp_filemanager.php", "time": 1781621035, "time_iso": "2026-06-16T14:43:55Z" }, { "category": "generic_4xx", "kind": "attack", "method": "GET", "severity": "medium", "source": "apache-security", "status": 404, "summary": "Repeated suspicious 4xx target • GET • HTTP 404", "target": "/this_is_a_new_hello_world.php", "time": 1781621035, "time_iso": "2026-06-16T14:43:55Z" } ], "events_returned": 9, "expires_at": 1784213039, "first_event_at": 1781621035, "ip": "40.70.87.213", "last_delisted_at": null, "last_event_at": 1781621113, "last_expired_at": null, "listed": true, "primary_source": "apache_security", "reason": "Apache security: shell_backdoor_probe; 2 evidence item(s); 1 attack session(s)/7d, 1/30d", "repeat_offender": false, "sources": [ "apache-security" ], "status": "listed", "suppression_until": null } }