Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Many identical ip on who's online, Virus? hijack?


pq23

Recommended Posts

Hi!

 

I have notice there's many visitors with the same ip address in the past weeks, I've been monitoring it and this happen 24 hours including middle of the night. It is always the same ip address 220.181.38.198. I've learned that it is a china internet providers from whois search. This Ip visitor might be a machine (non human) I guess.

 

Anyone have similar experience? Is it a virus / hijack? How can I solve it?

 

Thanks in advance for your help!

 

Screen shot of my who's online list

 

Untitled-1.jpg

Link to comment
Share on other sites

You can block the IP address by adding this to your htaccess file

 

<limit GET>

 

order allow,Deny

 

Deny from 220.181.38.198

 

allow from all

 

</Limit>

 

Thanks! Before reading your reply, I've block the ip at cpanel instead.

 

This seems never end, now I always see IP that is slightly different, sometimes same.

Notice the entry and last click time is the same...Is this genuine visitor? or a virus in the server? or hacker?

 

Untitled-2.jpg

Link to comment
Share on other sites

  • 1 month later...
Run the IP address through http://centralops.net/co/.

 

Use the domain dossier function and then enter the IP details in the search field.

 

It will show you where the address originates from.

 

Didn't realized your reply, I just enable the board email notification.

Yes they're search engine 'crawling'. Thank you!

Link to comment
Share on other sites

I would upgrade your who's online system to distinguish between real people and search engine spiders.

 

Also make sure your spiders.txt file is upto date.

 

Both are available from the contributions site.

 

Aran

Link to comment
Share on other sites

I would upgrade your who's online system to distinguish between real people and search engine spiders.

 

Also make sure your spiders.txt file is upto date.

 

Both are available from the contributions site.

 

Aran

 

Great! I've enabled 'Prevent Spider Sessions' in Admin/session and update spiders.txt from contributions.

Now I see only real people.

 

Thanks Aran!

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...