Unwanted Web Crawler Activity: Observing unusual frequent requests from a known web crawler not granted to scan your site.

The IP attempted to perform a SNMP amplification attack on the SSH server.

The IP made multiple requests with the same Proxy-Authorization header.

It showed an unusually high number of requests to the login page.

The IP was involved in a VoIP Hopping attack, jumping from one VoIP network to another to avoid detection or gain unauthorized access.

Uncommon Referer Header: HTTP logs record requests from an uncommon or suspicious 'Referer' header.

This IP belongs to Ford Motor.

MITM Detection: Detection of duplicate TCP acknowledgements could suggest a Man-in-the-Middle (MITM) attack.

This IP belongs to Morgan Stanley.

Multiple requests with the same If-Range header.

Multiple requests with the same Origin header.

HTTP Header Overflow: Logs showing HTTP headers with overly large amounts of data can indicate attempts at header overflow attacks.

POST /login.jsp?user=admin&pass=admin: This could be an attempt to log in as an admin.

This IP belongs to Virgin Media.

The IP was caught trying to overload the server through a Distributed Denial of Service attack.

The IP attempted to perform a distributed denial of service attack on the SSH server.

Smuggling Attack: Logs showing a single IP initiating multiple sessions, implying a Smuggling Attack.

It made multiple requests with the same Range header.

It attempted to create new directories on the SSH server.

The IP attempted Forceful Browsing, trying to discover hidden directories or files which could contain SSH access data.

The IP was involved in a SIP Flooding attack, sending a large number of SIP messages in a short period to overwhelm the server.

The malicious IP attempted to brute-force the .htaccess file to gain unauthorized administrative access.

The IP made multiple requests using uncommon HTTP methods.

This IP blocked legitimate users by performing IP hijacking.

The IP was detected attempting to skirt our system's detection through spoofing.