Well, the reason for initial suspicion tends to be that shell access to a remote host is a way to be more quasi-anonymous than if you just tried to say, launch an email scam, spam, or some kind of...