Comment Spammers Notice

Hello everyone. I’m guessing that this will be the VERY last post and comments will be disabled on June 1st for all pages and posts, except the “Need Help?” page. Speaking of comments, the blog somehow got 20 spam comments from verified WP accounts with usernames that look like “WWW.XXX.[random assortment of letters].XYZ”.

Here are the pictures of the comments and relative email addresses and corresponding IP addresses (at 75% view).

Capture.PNG1.PNGCapture.PNGCapture.PNG

Here’s the list of IPs (in order), the corresponding country [I’m a bit suspicious about this], what they are reported for, and the number of reports (if reported already):

  1. 202.207.193.2 (China) — known for Web App Attack/Brute-Force/SSH, reported 5 times
  2. 124.74.157.58 (China) — not reported yet
  3. 166.200.166.219 (United States) — not reported yet
  4. 111.204.225.178 (China) — known for Web App Attack/Brute-Force/Web Spam/Email Spam/Hacking/FTP Brute-Force, reported 43 times
  5. 109.74.67.104 (Tajikistan) — known for Brute-Force/SSH/Hacking/FTP Brute-Force, reported 8 times
  6. 210.22.85.124 (China) — not reported yet
  7. 78.187.100.122 (Turkey) — not reported yet
  8. 201.241.40.182 (Chile) — known for Web App Attack, reported once
  9. 181.188.29.78 (Trinidad and Tobago) — not reported yet
  10. 197.51.154.68 (Egypt) — known for Brute-Force/Web App Attack/Email Spam, reported 21 times
  11. 88.217.224.169 (Germany) — known for Email Spam, reported once
  12. 62.94.88.46 (Italy) — known for Brute-Force/SSH/Hacking/FTP Brute-Force, reported 4 times
  13. 78.187.116.123 (Turkey) — not reported yet
  14. 200.55.232.155 (Ecuador) — known for Hacking/FTP Brute-Force, reported once
  15. 180.250.74.242 (Indonesia) — not reported yet
  16. 41.242.136.66 (Ghana) — known for Brute-Force/Web App Attack/Email Spam/Exploited Host/Port Scan/FTP Brute-Force/SSH/Hacking, reported 60 times
  17. 119.90.24.65 (China) — not reported yet
  18. 85.20.164.77 (Italy) — not reported yet
  19. 116.247.125.42 (China) — known for Brute-Force/SSH/Email Spam, reported 3 times
  20. 217.20.170.25 (Ukraine) — known for Brute-Force/SSH/Email Spam, reported 3 times

Credits to abuseipdb.com for report information.

Results: 60% of IPs have been reported before.

Here’s the list of email addresses (in order) and if they can be found somewhere online (yes=found online, no=not found online):

  1. tomcarpenterphotography@gmail.com — yes
  2. metafizzycal@gmail.com — no
  3. marcelpatek@yahoo.com — yes
  4. avinar000@mail.ru — yes
  5. fabianhonnef@googlemail.com — no
  6. mujibkebumen@gmail.com — yes
  7. edayton111@gmail.com — yes
  8. perso@fruit-des-bois.com — no
  9. quake101@badassmustangs.com — yes
  10. megbot8066@live.com —no
  11. slavamixailov55@yandex.ru — yes
  12. mcarsonwoodruff@gmail.com — no
  13. rcarrie42@gmail.com — no
  14. david_castellanos22@hotmail.com — yes
  15. wizzfile@gmail.com — no
  16. mfagan@ibcyclist.com — yes
  17. kaniloff@yandex.ru — no
  18. yourbrokentoy@gmail.com — yes
  19. stevenscipione@gmail.com — yes
  20. tan_long_bin@yahoo.com — no

Results: 55% of email addresses can be found online

NOTE: Usernames are not important when compared to the email and IP addresses.


Try to spam, well you can’t. I manage all comments and commenting will be disabled everywhere (except the “Need Help?” page) on June 1st. No more comments, no more spam. No matter how desperate you are for getting my attention, I might give it to you, but with NO protection. How? Showing your email address and IP address. Duh…? And, I’m not removing them, ever. No matter how much you complain/beg. You spam, you get consequences. What kind of consequences? Email spam and display of your email addresses forever. How’s that now? So, I win.

NOTE: This isn’t worth putting on the Spam Comment Example page because all are the EXACT same comment, except in different places and by different accounts.

~ Mimy

PS: I usually do this for spam emails. I would find the sending and reply-to email addresses (and any mentioned email addresses or email addresses hidden in the header/original message), so I could report them to the corresponding abuse departments of the domains (example: username@live.com would be reported to abuse@live.com), and the IP address, so I could report the email to the abuse department of the host (example: If the host was yahoo.com, the email would be reported to abuse@yahoo.com). If there is a recognized contact/email address in the “To:” field, I will not report them.

Advertisements

5 thoughts on “Comment Spammers Notice

Feel free to leave a Topic-Related Comment and/or a Question.

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

w

Connecting to %s