“mobile”/ Voluum
Welcome to Our Community
Wanting to join the rest of our members? Feel free to sign up today.

Crushing b0ts, Proxies and Scrapers -- killing fraud

Discussion in 'Research and Intelligence' started by Graybeard, Apr 30, 2019.

  1. Graybeard

    Graybeard Well-Known Member affiliate

    5,344
    2,625
    113
    What is a hostname?

    Every legitimate internet ISP and WWW server using the Internet has a hostname!

    Every email server MUST have a hostname and reverse DNS resolution to identify itself to other servers or the email SHOULD be rejected as Spam.

    Check your IP with this tool and you should see your reverse DNS that advertised who you are.
    IP address to hostname lookup (reverse DNS check)
    Tools are for fools ;)

    Here is where it gets tricky: many IPs of servers are not real people will refuse a reverse lookup
    2(SERVERFAIL) >>> Cloudfront is famous for this (ex: if your server is behind Cloudfront and trying to connect directly to my ad [click bot] or trying to scrape my website(s) content?
    3(NXDOMAIN) is a common reply when the server is either not active or is in hiding ;)

    [​IMG]
    Unless you ban this ASN you will be bleeding ;)
    Just white list the servers that you have a business relationship with.

    This one is more obvious
    [​IMG]

    If you cannot detect this then you won't last long in the commercial internet ;)

    Proxy servers are the source of most internet frauds -- so is tor FYI
     
    Last edited: Apr 30, 2019
    azgold likes this.
  2. CPA Evolution
  3. Graybeard

    Graybeard Well-Known Member affiliate

    5,344
    2,625
    113
    I guess I was worrying about nothing: (The time added in the scrub)
    ---------
    WELCOME!
    1::mobile-166-216-159-76.mycingular.net
    166.216.159.76 now equals 2799214412 ID val
    US OH Cleveland Total Execution Time: 7.0030689239502E-6 milliSec
    ==================
    36.110.199.135|Host 135.199.110.36.in-addr.arpa not found: 2(SERVFAIL)
    -------
    you're banned!
    0::36.110.199.135
    36.110.199.135 now equals 611239815 ID val
    CN BJ Beijing Total Execution Time: 7.4782133102417E-5 milliSec

    No Name --No Ticket to Ride ;)
     
banners