What to do with all this spammers in my guest book?

I have a charity website for Tigers in Thailand.
This is a Buddhist website but that does not stop people from posting sex and viagra. You can not see the domains or websites once they are posted i blocked all www and com, net or what ever but they keep on spamming. My questions is

I guess they use Proxy server can i block them out from my website guestbook?

I use Advanced Guestbook 2.3.4 is there a script they use to post in there beucase even if there is no link and the text look like this &^*^T( they keep on posting...(idiots)

Is there some were i can send all this IP adresses and will some one care?

Can i go after there website they are posting and were do i turn to then?

How do i block RUSSIA from my server whats the first number IP ?

Some of this IP does not even have a name and some say HOST what is that.

This is from 48 hours of spam

83-103-69-86.ip.fastwebnet.it
85.255.116.182
85.255.116.178
122.30.155.211.ip.gzidc.com
218.11.207.244
85.255.116.180
softbank220047176162.bbtec.net
220.231.18.66
62.116.40.112
teuf.org
tntproxy.area.trieste.it
7-172-233-69.c3-0.eas-ubr3.atw-eas.pa.cable.rcn.com
tntproxy.area.trieste.it
207-172-233-69.c3-0.eas-ubr3.atw-eas.pa.cable.rcn.com
199.219.184.51
ool-182d8fbf.dyn.optonline.net
82.103.70.116
xdsl-1847.jgora.dialog.net.pl
207-172-233-69.c3-0.eas-ubr3.atw-eas.pa.cable.rcn.com
adslfixo-b4-127-41.telepac.pt
ip.hostside.net
196.40.31.138
219.254.172.73
207-172-233-69.c3-0.eas-ubr3.atw-eas.pa.cable.rcn.com
portvale01.onsite.hosting.co.za
207-172-233-69.c3-0.eas-ubr3.atw-eas.pa.cable.rcn.com
host-64-110-74-244.leuk.ses-americom.net
62.121.22.35
intranet.global1.mkg.com
ool-182d8fbf.dyn.optonline.net
194.68.63.142
66.158.93.59
194.68.63.142
212-41-250-34.fadingerstrasse.xdsl-line.inode.at
199.219.184.51
207-172-233-69.c3-0.eas-ubr3.atw-eas.pa.cable.rcn.com
202.129.12.14
tntproxy.area.trieste.it
196.40.31.138
81.223.26.58
65.99.198.36
tntproxy.area.trieste.it
196.1.53.7
teuf.org
teuf.org
62.121.22.35
62.116.40.112
c-71-226-126-188.hsd1.az.comcast.net
61.104.160.44
196.1.53.7
211.199.49.73
teuf.org
202.129.12.14
teuf.org
196.1.53.7
shells.q8comm.com
218.104.100.221
server.slayer.ms
server.slayer.ms
196.1.53.7
ip.hostside.net
168-226-242-129.mrse.com.ar
125.188.178.165
196.1.53.7
206.221.35.177
211.227.87.235
ip.hostside.net
ip.hostside.net
modemcable141.147-203-24.mc.videotron.ca
ip-68-178-164-73.ip.secureserver.net
72.36.244.143.reversedns.resolve.ru
72.36.244.143.reversedns.resolve.ru
ns1.neo.local
72.36.244.143.reversedns.resolve.ru
72.36.244.143.reversedns.resolve.ru
203-206-187-166.perm.iinet.net.au
72.36.244.143.reversedns.resolve.ru
72.36.244.143.reversedns.resolve.ru
218.48.177.82
72.36.244.143.reversedns.resolve.ru
210.92.181.152
ip.hostside.net
203.162.27.86
72.36.244.143.reversedns.resolve.ru
202-58-85-2.uitm.edu.my
202-58-85-8.uitm.edu.my
203.162.27.84
ip.hostside.net
host-64-110-74-244.leuk.ses-americom.net
a82-94-99-35.adsl.xs4all.nl
202-58-85-6.uitm.edu.my
203.162.27.87
ce7305-or-mde.orbitel.net.co
200.87.6.6
c-24-11-124-206.hsd1.mi.comcast.net
cp3.agava.net
220.117.185.79
host-69-144-214-58.cod-wy.client.bresnan.net
ns1074.imingo.net
ns1074.imingo.net
218.234.131.186
220.127.198.14
130.70-86-127.reverse.theplanet.com
63.246.146.81
61.77.204.74
219.249.2.197
59.26.117.103
219.249.169.238
211.220.178.136
203.232.99.212
218.152.241.209
211.178.170.136
222.119.75.129
211.223.55.88
220.71.155.217
203.162.27.87
cp3.agava.net
125.189.235.62
221.153.22.68
210.93.7.142
222.233.220.216
220.120.97.41
61-24-85-136.rev.home.ne.jp
222.99.246.116
85.255.116.178
sys43.3fn.net
203.162.27.87
59.186.6.35
server.slayer.ms
cp3.agava.net
unknown.sagonet.net
61.97.227.183
220.119.244.43
72.36.244.143.reversedns.resolve.ru
203.162.27.85
yaa1-e0.yaransk.ru
24-176-14-69.dhcp.klmz.mi.charter.com

 

years ago i offered free classifieds and also a guestbook
in my early blog-time i also had "comments" open and active

all above has been abused substantially for spamming with links

hence i deleted all of it and have pure content only

in a few european countries ( others may follow ) there is since years an ongoing tendency to hold the host/siteowner legally responsible for any abusive content on his entire domain including guestbooks and forums

 

You can try blocking keywords e.g. sex, viagra etc and block url's

 

I did block the key words but even if they can not write them they keep on putting in junk

 

If you have PHP on your site, there are two variables that could help you.

$ipvia = $_SERVER["HTTP_VIA"];
$ipfw = $_SERVER["HTTP_X_FORWARDED_FOR"];

PHP:

If any of the values $ipvia or $ipfw have text in them, it means that person uses an anonymous proxy, in which case you can ignore the comment.

If both values are blank, it means the person uses no proxy OR he uses an "elite" proxy that does not pass that information. Elite proxies are rare but not hard to find.

It is your choice if you wish to deny posting from proxies or not.

After this, you can use a word filter to block messages that still pass through.

You can go even further and use GeoIP from maxmind.com to block countries from posting on your site.

 

I am not that brilliant with php were do i put this stuff in the guest book?

 

Hello Yellowberry.org

You can change some pieces of the geustbook code to implement a simple human verification option. I had the same problem with a guest book at a customers website. After I changed the code accordingly I had no problems anymore. You can find the code and detailed instuctions here:
http://proxy2.de/forum/viewtopic.php?t=4678 (Sorry for the way the link is posted but I don't seem to have permison to post a "live-link" yet). I hope this solves you problems with spammers like it did for me.

Greetings.

 

That kept them away for 10 days now they are back in full force what to do i am thinking of getting another guest book or something Anyone have a good one with spam check!

 

i have solved this problem realy easy as the spammers are spider bots and works with looking in your source for a "form"
simply add a DIV field that is hidden and set the name for the filed with a comon name like "name" or "country" or something like that. add it then to your db and then on the output make it ( "select * from your_gb where spamprotection =' ' ) the spam bots cant see it as a "hidden" entry and will fill it out so that field wont be empty like in all others and therfor you get a nice spam protection that you also can make a counter for so you can see how manny spams you get

*my first post*

 

Maybe add some sample code i really did not get you.. but thanks for the help please tell me one more time

 

Maybe add some sample code i really did not get you.. but thanks for the help please tell me one more time

 

this is from my guestbook... the users cant see it but the "spambots" see it as a "name" field and enter their "name" and i just dont write out the entry from the DB if they have filled out this field... have been working in ower 3 months now and i have around 10 spams a day

 

I will try this on monday when we get back to work I let you know

 

I have tried a couple of guestbook scripts and finally had to give up on both of them. People just wanted to leave links, and it was a little gang from somewhere in France that were the worst abusers. Blocking IPs, nothing worked. Hope you have better luck. I just took down the guest book and started a discussion forum which had better security.

 

Maybe i have to password protect it only people that ask for it can get it

 

My webmaster tried to disable the small house thats in the guestbook mean HOME or Website. I like to disable that one. SO they can not edit or ad any websites at all only email name and sex.

If they can not enter an www site i guess they will stop beucase i already disable all www or http in the main guestbook.

http://www.walkingwithtigers.org/guestbook/