POST //user/register?element_parents=timezone/timezone/%23value&ajax_form=1&_wrapper_format=drupal_ajax: Drupalgeddon3 exploit, another Drupal remote execution vulnerability.

The IP sent numerous SIP OPTIONS requests in a short time.

The IP sent numerous SIP OPTIONS requests in a short time.

This IP belongs to Oracle Cloud Infrastructure.

The IP engaged in DNS Spoofing, rerouting our server's lookups to a malicious destination.

The said IP was the source of several rootkit deployment attempts.

This IP exhibited malicious sophistication by employing multi-vector attacks.

The IP distributed unrequested software, secretly stealing user data while posing as useful tools.

This IP belongs to Cisco Systems.

This malicious IP was reported for trying to inject malicious scripts into the VoIP server, potentially to disrupt its operation or steal data.

The IP tried to exploit buffer overflow vulnerabilities to run unauthorized code.

The IP was seen trying to exploit known vulnerabilities in server software, a common tactic for gaining unauthorized access or control.

The IP attempted to send emails from the Postfix server pretending to be from a different sender.

This IP belongs to T-Mobile.

Forceful Browsing: Attempts to access pages or resources without proper navigation.

The deceptive IP was sneaking in spyware through clickjacking attacks to manipulate our users.

This IP belongs to American Express.

Malformed HTTP Version: Observation of logs where HTTP/1.1 or HTTP/2.0 replaced with an unusual alternative to bypass security tools.

The IP tried to launch 'Dark Tequila' malware that steals banking information and login credentials from the server.

The IP was recorded making persistent attempts to crack our encryption.

The IP was involved in a DDoS attack, sending massive amounts of traffic to overwhelm a server and disrupt its normal functioning.

It made multiple attempts to initiate malicious File Transfer Protocol (FTP) sessions with the Postfix service.

The IP attempted to perform a replay attack on the IMAP server.

The IP address attempted to register as a SIP user with an invalid username.

The IP was seen trying to perform a Denial of Service (DoS) attack, attempting to make a machine or network resource unavailable to its intended users.