Who or what is ip-78-137-163-***.dedi.digiweb.ie

Forum Moderators: open

Message Too Old, No Replies

Who or what is ip-78-137-163-***.dedi.digiweb.ie

Drreggae

11:31 am on Jan 4, 2008 (gmt 0)

Can anybody tell who or what is that crawler 78.137.163.***
coming from digiweb.ie with
"Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9a1) Gecko/20070308 Minefield/3.0a1"
( ip-78-137-163-***.dedi.digiweb.ie )?

This 78.137.163.*** is all over the web in visible access logs
etc, ( ip-78-137-163-***.dedi.digiweb.ie ).
Since it does no identify itself, I now block it via
.htaccess, but sure would be not doing that if I knew it
came from any legitimate SE..

[edited by: volatilegx at 3:03 pm (utc) on Jan. 4, 2008]
[edit reason] obfuscated ip addresses [/edit]

incrediBILL

10:05 pm on Jan 4, 2008 (gmt 0)

Dedicated server, maybe a proxy with SE's crawling through it.

keyplyr

9:00 am on Jan 10, 2008 (gmt 0)

It's a scraper from Ireland. I've had their IPs banned for a while:

RewriteEngine On
RewriteCond %{REMOTE_ADDR} ^78\.137\.16[0-3]\. [OR]
RewriteCond %{REMOTE_ADDR} ^89\.234\.70\.
RewriteRule .* - [F]

Bewenched

3:30 am on Apr 10, 2008 (gmt 0)

Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9a1) Gecko/20070308 Minefield/3.0a1

turns out to be crawler.bloglines.com 65.214.44.29

incrediBILL

8:38 am on Apr 11, 2008 (gmt 0)

turns out to be crawler.bloglines.com 65.214.44.29

No, the bloglines IP is making screen shots for Ask using that Firefox UA and I have documented proof of that.

The Ireland IP is either spoofing Firefox or maybe making screen shots for something else.

How I know for sure that the crawler.bloglines.com IP is doing screen shots is I have a screen shot trap domain set up and all it does is dispay the IP and crawler/browser information in big letters so I can still read the IP from a thumbnail.

Anyway, the user agent is legit Firefox, 2 different things going on from 2 different IPs.