Bogus Traffic Bot Blacklist
This list includes various IPs that were using bots/spiders to feed my site access logs with bogus referral traffic. Banning them by IP was particularly problematic since they found ways around the IP bans themselves, so I had write a redirect to the 403 page using {REMOTE_ADDR}. This bogus referral bot (located in Europe, Ukraine, from ISP Kyivstar PJSC was able to get past the blocks because they were accessing the folders on the site rather than pages, so blocks through .htaccess did no good. To get your blocks to work, you need to have an index.htm file in the folder; this will block auto-indexing & viewing of the folder, however it will make sure that you are blocking traffic from them since it's going to force load that page rather than the auto-index of what's in the folder. While you're at it, why not make it a point to list details as to why those folders can no longer be viewed; folders on this site that have seen attacks from these bots have details about where they're coming from including their IP, ISP, Organization, Continent & Country, so people are aware of why they can no longer view those folders (not to mention the raw access logs here, which shows the actual activity from their bots by IP).
005.248.000.000 - 005.248.255.255 (005.248.*.*) 037.115.000.000 - 037.115.255.255 (037.115.*.*) 037.229.252.195 046.118.000.000 - 046.118.255.255 (046.118.*.*) 046.119.000.000 - 046.119.255.255 (046.119.*.*) 046.185.000.000 - 046.185.255.255 (046.185.*.*) 112.005.000.000 - 112.005.255.255 (112.005.*.*) 134.249.000.000 - 134.249.255.255 (134.249.*.*) 175.042.087.032 176.008.000.000 - 176.008.255.255 (176.008.*.*) 178.019.253.218 178.137.000.000 - 178.137.255.255 (178.137.*.*) 188.163.078.045 |
Last updated 8/3/2020