Manipulated HTTP POST Request: Finding HTTP POST requests with adjusted content-length headers to bypass firewall rules.

GET /backup.sql: Attempting to access a backup of your database.

It attempted to use the SIP server to perform a reflection DDoS attack.

This IP belongs to Cigna.

A large number of requests from a single user agent, suggesting an automated process.

Multiple HTTP 401 Status Codes: This could indicate someone is repeatedly attempting to access resources that require valid credentials, possibly attempting to brute-force their way in.

This IP directed malicious network traffic to our servers with the intent to crash them.

The IP made multiple unsuccessful login attempts in a short period of time.

Headless Browser Activity: Logs may show HTTP requests with user-agent strings containing headless browser identifiers.

The IP attempted to perform Integer Overflow attacks on the Apache server.

This IP belongs to Telstra.

This IP belongs to United Parcel Service.

Excessive traffic from a single IP address.

This IP belongs to DigitalOcean.

The IP address made multiple requests with identical request parameters.

This IP belongs to CHS.

This IP belongs to MetLife.

The IP was marked attempting to use infamous 'Ramnit' malware to steal sensitive Apache server data.

The specific IP has been identified attempting to load malicious browser helper objects into the network.

The IP attempted to bypass IP blacklisting by rapidly changing its IP address.

This malicious IP was reported for attempting to execute a Cross-Site Request Forgery (CSRF) attack, tricking a victim into executing unwanted actions on the FTP server.

This IP executed mass-probing of various ports to seek vulnerabilities.

This IP belongs to Netflix.

This IP belongs to Bank of America.

The IP was reported for hosting a phishing website, deceiving users into providing their sensitive personal or financial information.