Closed duzun closed 4 years ago
I guess it is worth noting this article: Blocking aggressive Chinese crawlers/scrapers/bots.
After reading the article, I've discovered a few more aggressive UserAgents:
Mozilla/5.0 (Linux; Android 7.0; FRD-AL00 Build/HUAWEIFRD-AL00; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/53.0.2785.49 Mobile MQQBrowser/6.2 TBS/043602 Safari/537.36 MicroMessenger/6.5.16.1120 NetType/WIFI Language/zh_CN
Mozilla/5.0(Linux;Android 5.1.1;OPPO A33 Build/LMY47V;wv) AppleWebKit/537.36(KHTML,link Gecko) Version/4.0 Chrome/43.0.2357.121 Mobile Safari/537.36 LieBaoFast/4.51.3
Same behaviour.
Thanks @duzun a quick search shows this is linked with Baidu (2345.com) will check on the others
Thanks @mitchellkrogza for quick reaction and for this repo, its great!
Absolute pleasure, thanks for the contribution, I also found thousands of entries in my own logs which made it a quick decision.
Paste the full User-Agent String here
Is this for Addition / Removal?
Did the User-Agent request robots.txt first?
Post Log Excerpt to show User-Agent behavior (10-20 lines is enough)
Additional information
We experience some attack/intense crawling of our sites in Russia since 12 February. I've implemented this nginx bad-bot-blocker configuration two days ago and paired with fail2ban, it helped to reduce the attack by a lot!
Yesterday they have changed the behaviour. I see ~1800 IP addresses with this UA in two days of log, almost all of them make 1-2 requests only, and all the verified IPs are from China!
I'm sure this traffic is not coming from legitimate users!