Tag: bad bot

Dual IP Comment Spammers with Canadian Content

We Canadians are always overshadowed by the 10 larger in population US. If at all possible I like to highlight our accomplishments, or in this case, sophisticated comment spamming from Canada. Bad, Canada.

Comment spammers on my site usually use a single IP to first read the post, determine if they can submit spam, then submit the spam comment. This shows up in my Akismet spam comments. They are simple to identify and ban.

New Host Provider, No IP Bans for 21 hrs

Moved, I did, from Site5, to A2. The last 21 hrs was a wet and wild ride all without the protection of my trusty .htaccess file, the one with my Ip ban list. Within that time, 21 hrs, I received a total of 33 spam comments. Usually I receive only one or two. It is clear that without protection I would be inundated by comment spam.

Of course these IPs are only the ones that comment spammed me. There are many more that use their bots to do content scraping, trying to break into my site, trick my host provider, etc. There are too many to list.

DomainCrawler Attack using 5 IP addresses

Domain Crawler hit my server a 500 transaction attack today, using 5 IP addresses, all from Sweden. They scraped me hard! Their user agent is “DomainCrawler/3.0 (info@domaincrawler.com; http://www.domaincrawler.com/dontai.com)”. I have banned all these IP addresses with their last octet. Good riddance.

80.248.225.142 Internetbolaget Se domaincrawler
80.248.227.107 Internetbolaget Se domaincrawler
176.74.192.36 Tralex Se domaincrawler
193.183.102.178 Internetbolaget Se domaincrawler

Microsoft POST Spamming me, but Why?

Puzzled, I am, when Microsoft spams me, and they are pretty regular visitors. After all, Microsoft owns the Bing search engine, and I let Bing freely crawl my site. So why would they want to spam me, and do it so often, using multiple ways? inquiring minds want to know.

Usually I see Microsoft come in using a missing user agent, pretty stealthily, and as I want all visitors to be identifiable, I ban them. They change IPs and do this regularly. Then there are the tor exit servers owned by Microsoft. I suppose that having Tor exit servers is Ok, as they are used by everyone.