Fileless malware dissemination has been observed from this IP address.

The malicious IP was reported for attempting unauthorized logins to the SIP server, potentially to gain control over voice communication.

It persistently tried to exploit weaknesses in the SSH communication encryption.

It attempted to use the Postfix server to relay phishing emails to other servers.

The IP attempted session sidejacking, seeking to take over SSH sessions post-authentication.

The IP initiated fake traffic attacks to manipulate webpage rankings and conduct click fraud.

The IP attempted to delete directories on the SSH server.

Our network security detected the IP spreading malicious macros through document files.

This IP was traced back to several attempts to access domain admin credentials.

The IP made numerous attempts at SMTP Relay abuse by trying to send emails not meant for or from local users.

It attempted to perform Unvalidated Redirects and Forwards attacks on the Apache server.

The IP attempted to perform a phishing attack using the SASL server.

This IP belongs to CenturyLink.

This IP belongs to Fannie Mae.

This IP was reported for attempting to use the SIP server to mask its true location and identity, a common tactic in VoIP phishing attacks.

System logs trace back the distribution of trojans that could allow for remote access to this suspicious IP.

The IP attempted to send emails from the Postfix server without proper authentication.

The IP attempted various header manipulation attacks, aiming to bypass spam filters.

Multiple requests with the same Expect header.

The IP attempted to perform a dictionary attack on the IMAP server.

The IP was seen trying to perform a TDoS (Telephony Denial of Service) attack, flooding the VoIP server with calls to make it unavailable to users.

Multiple requests to the server's robots.txt file.

Incidents of privacy-invasive software floating in our network were linked to this IP.

This IP has been marked as the origin of numerous SQL injection attacks.

This malicious IP was reported for attempting a FTP Spoof attack, falsifying its IP address to bypass IP-based access controls on the FTP server.