WP Plugins and Widgets For Wordpress 2.1+

Manual Blog Comment Spam

March 28th, 2008 by Elliott Back

I had the pleasure of getting a spam comment from a manual Russian spammer:

Author: Rapidshare
Email: fileshunt@gmail.com
Website: fileshunt.com
IP: 212.44.130.15

I completely agree with all that here is told

You can see that this is actually a human from the log:

212.44.130.15 – - [28/Mar/2008:09:12:42 -0400] “GET /hashcash HTTP/1.1″ 200 7439 “-” “Opera/9.26 (Windows NT 5.1; U; ru)”
212.44.130.15 – - [28/Mar/2008:09:12:44 -0400] “GET /wp-content/themes/db/style.css HTTP/1.1″ 200 2646 “http://wordpress-plugins.feifei.us/hashcash” “Opera/9.26 (Windows NT 5.1; U; ru)”
212.44.130.15 – - [28/Mar/2008:09:12:46 -0400] “GET /wp-content/uploads/2008/01/hashcash.png HTTP/1.1″ 200 59975 “http://wordpress-plugins.feifei.us/hashcash” “Opera/9.26 (Windows NT 5.1; U; ru)”
212.44.130.15 – - [28/Mar/2008:09:14:58 -0400] “GET /favicon.ico HTTP/1.1″ 200 1330 “http://wordpress-plugins.feifei.us/hashcash” “Opera/9.26 (Windows NT 5.1; U; ru)”

I highly doubt an efficient bot network would GET requests on my favicon, theme stylesheet, and images. My second spammer sent me this:

Author: penis enlargement
Email: penisenlargementz@gmail.com
Website: naturalherbalz.com
IP: 202.143.112.106

Natural herbal health care medicines, Articles, informations and daily updated health concerns issues and their solutions for better health and better life. www.naturalherbalz.com

If you look at their logs, it is incredibly clear what is happening here:

202.143.112.106 – - [28/Mar/2008:10:02:46 -0400] “GET /hashcash/ HTTP/1.0″ 200 7511 “http://www.google.com.pk/search?q=powered by wordpress blogs comments add url” “Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.13) Gecko/20080311 Firefox/2.0.0.13″
202.143.112.106 – - [28/Mar/2008:10:02:50 -0400] “GET /wp-content/themes/db/style.css HTTP/1.0″ 200 2646 “http://wordpress-plugins.feifei.us/hashcash/” “Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.13) Gecko/20080311 Firefox/2.0.0.13″
202.143.112.106 – - [28/Mar/2008:10:02:51 -0400] “GET /wp-content/themes/db/img/bg.jpg HTTP/1.0″ 200 8203 “http://wordpress-plugins.feifei.us/wp-content/themes/db/style.css” “Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.13) Gecko/20080311 Firefox/2.0.0.13″

This manual spammer searched for “powered By Wordpress blogs comments add url,” came to my site, and submitted his spam comment. So spammers are targeting Wordpress as a platform with cheap labour in foreign countries to post spam comments.

Posted in Spam

Tagged with

40 Responses to “Manual Blog Comment Spam”

  1. HFR says:

    It seems most spam comes from a handful of countries, I have found a simple solution for blocking specific countries by making an easy modification in your .htaccess file. Most websites don’t need to target every country so the solution is quite helpful, for more info check out… http://www.countryipblocks.net/country-blocks/

  2. MasLuthfi says:

    i’ve many comment spam/day..
    i’ve delete 6000 comment spam a month..crazy spam..

  3. Basketcase says:

    This is how it works. But I think this kind of spamming doesnt have a huge impact for SEO. What I see as much more “dangerous” for website-admins is content-grabbing via rss.

  4. Diyet says:

    I have a couple blogs that are now almost 4 years old and have had to make them password protected which is very easy to do. I have tried several plug-in’s claiming to do the same but they did very little to stem the tide. I do still have to spend a lot of time approving posters but most spammers do not take the time to confirm.

  5. Someone please suggest a way out.
    Thanks.

  6. I agree with you, it is always advisable to remove all traces of wordpress including copyright messages at the bottom and even the version of wordpress in the header file.

  7. Mina says:

    It’s pretty messed up the lengths some people go to. I’m a very new WP blogger, so I haven’t had an issue with spam yet. Is it something that builds up over time, as with email spam? (Ie, I have older email accounts that have been around and are much more heavily spammed than the newer ones)

    Poster #1’s comment is news to me, is this something I should implement on my own blog? Thanks!

    Mina

  8. Abhimanyu says:

    Elliott, here is another way of automated spamming http://mwolk.com/blog/wordpress-automated-comment-spam/, people posting generic content on thousands of blogs.

    As far as your case is concerned, its always advisable to remove all traces of wordpress including copyright messages at the bottom and even the wordpress version in header file.

  9. William says:

    These are the types of things that you really have to learn to deal with, I receive like..mh..let me see, out of 200 comments 100 are spam, I really am pity for those people, should get another way to things around in the world of internet..

    regards

  10. Alice Hall says:

    Spammers and Spamming it wont stop it will go on its a nusiance to the bloggers and our respective sites best way out of the problem delete it thats what we bloggers can do.

  11. Syed Taha says:

    I had a similar problem where i got hundreds of span comments everyday on my blog. And it was getting difficult to approve the original comments because of this. So i added the akismet plugin which now stops spammers from posting links.

    But my problem is, these spammers are eating away my bandwidth.
    I have three blogs and a forum running on a single host with limited bandwidth. And these link hungry spammers eat all my bandwidth.

    Someone please suggest a way out.
    Thanks.

  12. big shop says:

    Spamming is a problem and we can say a pin in the *** but akismet helps me very much and I can only suggest everyone to use it too (or something similar).

  13. Tom Aquinas says:

    The spammers do add to the traffic to the site which might help with the all powerful google rankings.

  14. ipekpromosyon says:

    So many people leave comment in it. Maybe I should join them too. No comment means you got no follower and other will just not follow you as well.

  15. Andy says:

    Yeah.. As we know until this day, a lot of blogger still prefer using Wordpress than the other CMS. So of course, the spammer will targeted WP as their very interested meat to cook! :lol

  16. Biz Blog says:

    I have a couple of blogs and I receive my fair share of spam. What I don’t get is spamming effective for marketing purposes.

    Life SizeMouseTrap Blog

  17. Najja Banks says:

    Spam sucks but as they say, “it goes with the territory” I agree with some of the other readers. As long as it is comments that contribute instead of blatant ads then it is really not a big deal.

  18. Spammer spam spaming i had to start a new blog because i kept on getting spam from alot a random people that why i left wordpress i can’t take it anymore!!!

  19. dizi izle says:

    I hate spammers but i hate akismet more than spammers. It deletes everything :(

  20. I get hit harder and harder every day. The Russians have upped the ante on spam, especially WordPress, which has been hacked of late by sales you you know what. Dreary, useless lot in my view.

  21. TipAdsense says:

    Agree with Mr. Work Online Make Money. I don’t really mind people spam my blog if they do provide some comments with some intelligent in it. Of course I will not allow those viagra or xanax kind of things, but as long as the comment related, I will approve that comment. No big deal, in fact it is valuable to my next visitors. They will see that, “Owh, this blog is popular. So many people leave comment in it. Maybe I should join them too.”

    No comment means you got no follower and other will just not follow you as well.

  22. I think it depends how the person spams. Some people don’t even say anything they simply post a bunch of words but if you say something its not a big deal.

  23. Yeah, I;m trying to get spammers of my blog as well. It sucks if someone doesn’t leave a meaningful comment or even comes close to the topic at hand.

  24. dody says:

    I’ve had old posts that I left open for comments for years and would still see users come across it and add to the discussion in meaningful ways. I loved that. However, that almost never happens these days. So, I finally gave up and just close comments.

  25. I Hate spam myself but atleast it shows that your blog is in demand.:)

  26. Michael says:

    I have the same problem at my blog with all the spam….but hey atleast someone or something cares. lol

  27. _JD_ says:

    The links here are NO-FOLLOW…

    I would suggest that you advertise that fact right at the Comment Form Level

  28. Michael says:

    I have a couple blogs that are now almost 4 years old and have had to make them password protected which is very easy to do. I have tried several plug-in’s claiming to do the same but they did very little to stem the tide. I do still have to spend a lot of time approving posters but most spammers do not take the time to confirm.

  29. Andrew Green says:

    Spam is really irritating …Some times they dont know what they are doing …

    I am starting my blog so please provide me some suggestions to control them

  30. nitro2k01 says:

    I found my way here because I got this exact spam myself. I have made a JS spam killer hack, which, after browsing your page is not too different from hashcash: A piece of obfuscated JS that is used to check the presence of an actual browser. Mine is a real hack though and not a plugin, (Hacked template and wp-comments-post.php) and it just hard blocks all spams or browsers without JS.
    It has worked out well for me, but I’m actually considering moving to hashcash now!

  31. cory says:

    I understand what everyone is taking about when it comes to spam. I have 13 blogs myself and have found it to be a pain at time. However, fact of the matter is that it is a great way to truly leave comments and people that take the time to fill out a good comment should be rewarded with a link. I do it all the time for people .

  32. shemer says:

    If you dont like those spam comments I suggest and I currently use spamwow, which stops those pesty spammers, It is by far the best one out there!

    lol and I agree with you tom this post was kinda sad

  33. Tom allen says:

    DEATH TO SPAM LOL! Seriously tho, this is really sad.

  34. Emma says:

    spam is so annoying innit? never being it target though,but its dangerous of course.

  35. @markus: Yeah, this is dangerous. However, if you don’t want others to read your RSS, then disable it. And what happens if someone uses your content illegally? Just report such person(s) to the big G. Here is a link how to do it: http://www.google.com/dmca.html . And it works. My own experience :) . Once these dishonest guys get their AdSense accounts suspended, they will remove all stolen content.

  36. markus says:

    This is how it works. But I think this kind of spamming doesnt have a huge impact for SEO. What I see as much more “dangerous” for website-admins is content-grabbing via rss.

  37. @micgui: Yes, I created an anti-spam prevention for WP called CAPTCHA-Godfather. It offers you to turn on word verification :) . Of course, it is based on more algorithms securing your blog.

    Regarding this post: Yes, spammers do this. One point of view is that it’s a natural way of how man can get links. The second point of view is that it’s not ethical to do it if your blog is natural and the target website (commenter’s URL) is some pharmaceutical or porn website. Basically I have no problem linking to a normal website; no matter if it’s a shop (with SSL) or if it’s a website with some ads or affiliate links; Buy I hate spamming too ;) .

  38. udin says:

    i’m sure you’re tired about deleting those scam comment, but you know? that is value of blogging…
    :P

  39. micgui says:

    I am just a new blogger and my site is only 3 months old but every other day I am receiving this spam comments, not just one but many. Is there other way we can deal with it?

    Thanks…

  40. Wes says:

    And I just manually enter a comment :-)
    But this spamming is out of control, I just deleted 1400 spam messages from my blog yesterday ahhhhh

Leave a Reply

Powered by WP Hashcash

Search Posts


Categories

Blogroll

WP Hashcash

  • By Elliott Back
  • 966209 spam comments blocked out of 19386 human comments. 98.03% of your comments are spam!

Admin

Links

Feeds