This IP address has been reported a total of
6
times from
6 distinct
sources.
206.62.143.18 was first reported on
, and the most recent report was
.
Old Reports:
The most recent abuse report for this IP address is from
. It is possible that this IP is no longer involved in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
Anonymous
Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to ...
show moreDistributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to bypass firewall/robots.txt restrictions in thread-skip.asp
show less
ELEVATED_THREAT | 148 IPs targeting /brand/satco-products-inc.html | Facet request during elevated t ...
show moreELEVATED_THREAT | 148 IPs targeting /brand/satco-products-inc.html | Facet request during elevated threat (facet_ratio=0.95, unique_ips=561) | Recv-Q=1489 bytes on ESTABLISHED connection (threshold=1000)
show less
DDoS botnet 510.000+ IPs; URL with bing/trustpilot/githubhelp and %C2%A4 or \xc2\xa4. NEW 09/2025: a ...
show moreDDoS botnet 510.000+ IPs; URL with bing/trustpilot/githubhelp and %C2%A4 or \xc2\xa4. NEW 09/2025: amplification attacks via third-parties e.g. HTTP_USER_AGENT facebookexternalhit/meta-externalagent/meta-externalfetcher or IPs from googleusercontent.com with fake HTTP_REFERER foxnews.com/newsweek.com/upwork.com/activision.com/... Port 443.
show less
(mod_security) mod_security (id:225080) triggered by 206.62.143.18 (Dinamic-Somos-206-62-143-18.somo ...
show more(mod_security) mod_security (id:225080) triggered by 206.62.143.18 (Dinamic-Somos-206-62-143-18.somosinternet.co): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 16 18:43:44.321276 2026] [security2:error] [pid 15354:tid 15354] [client 206.62.143.18:43440] ModSecurity: Access denied with code 403 (phase 2). Match of "rx ^[\\\\d\\\\.ab]+$" against "ARGS_GET:C" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "143"] [id "225080"] [rev "1"] [msg "COMODO WAF: XSS vulnerability in Plupload before 2.1.9 or MediaElement.js before 2.21.0, as used in WordPress before 4.5.2 (CVE-2016-4566 & CVE-2016-4567)||www.cffragrances.iee-usa.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.cffragrances.iee-usa.com"] [uri "/wp-includes/js/tinymce/themes/advanced/skins/default/"] [unique_id "abiHoKig5fMuzuYYJT-3DAAAABw"], referer: http://www.cffragrances.iee-usa.com/
show less