Just moments ago my site reported that an IP Address had been banned due to excessive comments in the last 200 seconds. One can only assume that this is an automatic spam attack.
For those of you running sites that would like to avoid this, here are the details of the IP that attacked over the page, as well as listings from various Spam databases for the attacker.
The following results are for the IP Address 220.127.116.11 which traced through DNS Stuff gave this…
descr: tot ip network #1 chiengmai province dial up pool ip address and LAN pop infrastructure
person: pansak arpakajorn
address: 89/2 Moo 3 Chaengwattana Rd, Laksi,Bangkok 10210 THAILAND
person: tawat kerdput
address: 89/2 Moo 3 Chaengwattana Rd, Laksi, Bangkok 10210 THAILAND
person: surachet sripolkrang
address: Data Services Management Department
address: TOT Corporation Public Company Limited
address: 89/2 Moo 3 Chaengwattana Rd., Laksi,Bangkok 10210 THAILAND
Run through their Spam checker identified that various mail servers class it as spam, here’s some more details…
Netblock: 18.104.22.168/20 (22.214.171.124-126.96.36.199)
Record Created: Sat Aug 21 23:11:52 2004 GMT
Record Updated: Sat Aug 21 23:11:52 2004 GMT
Additional Information: Dynamic/Generic IP/rDNS address, use your ISPs mail server or get rDNS set to indicate static assignment.
Causes of listing
* System has sent mail to SpamCop spam traps in the past week (spam traps are secret, no reports or evidence are provided by SpamCop)
* SpamCop users have reported system as a source of spam about 10 times in the past week
Additional potential problems
(these factors do not directly result in spamcop listing)
DNS error: 188.8.131.52 has no reverse dns
Because of the above problems, express-delisting is not available
In the past 6.1 days, it has been listed 3 times for a total of 4.1 days
My apologies if you are running through that range of addresses and are a legitimate user. I would suggest either changing host or complaining directly to them.