Got an IP from always on my Website

[nams]

58.61.164.142

58.61.164.138

keeps going through my website hosting, maybe a crawler but can't identify it, should i ban something like this??

[flesso]

Yes, I would, seems to be a Chinese IP, probably a spybot or something like that. Ban it unless you want Chinese visitors.

[nams]

ok, i'm going to put the ip addresses in ip deny manager.

What is a spy bot exactly??

[flesso]

Things that spy on your website hosting, they could be looking for bakdoors into your website hosting.

[nams]

lol, makes sense now. I'm just being thick on a sunday morning!!

Yeah the whole range is now banned. I put this in IP deny manager. 58.61.164.*

The things been going crazy on the website hosting, crawling thousands of pages for last two days.

Thanks

[DPS Computing]

Not only the problems regarding it trying to find weaknesses in your website hosting, you don't really want something that is not a real (human) visitor eating up all your bandwidth and costing you money!

[eUKhost.com]

You should add them to IP deny manager but if you see something specific in the logs then let us know as we can ban this range on the server.

[DPS Computing]

Yes, it will be a thing for everybody to look out for. If they have got sinister thoughts they may be looking for website hostings with weak points that are hosted on eUKhost as a way to get into the servers.

[eUKhost.com]

Quote:

Originally Posted by DPS Computing

Yes, it will be a thing for everybody to look out for. If they have got sinister thoughts they may be looking for website hostings with weak points that are hosted on eUKhost as a way to get into the servers.

quite sure that they cannot get into the servers now but they will keep on wasting our bandwidth and unnecessary connections coming on servers.

[DPS Computing]

Quote:

Originally Posted by eukhost.com

quite sure that they cannot get into the servers now but they will keep on wasting our bandwidth and unnecessary connections coming on servers.

Yes, so its a good idea to try and keep them away anyway, if only to save bandwidth. I will keep on the look out and see if there is an suspicious activity regarding IPs accessing my website hosting.

One of my friends had this problem with another host. They had a small website hosting that was using quite a lot of bandwidth considering its popularity and amount of pages / files on the website hosting. In the end it was spiralling out of control (5 gigs of bandwidth used per month - but it was only a 10MB website hosting in total!).

When the vistors were checked out it seems someone had managed to place an image into the images files and was sending it out en masse as spam to millions of hotmail addresses in emails with links to this image. This was fairly obvious when looking at the logs and I advised them to activate the hotlink protection function available in cPanel. Worked a treat and the people trying to steal the bandwidth got fed up and moved on.

I also advised them it was a good idea to change their password as it was unclear how they had managed to get an image into the website hosting without anyone noticing it.