My blog has been bombed by hunderts of trackback spams the last 2 hours. And I’m not the only one as I figured out via Technorati, there’s for example Twig, Beau, Avery, and bronzefinger having the same problem.
I’ve investigated my log files a bit and the requests are all coming from different IP addresses all over the world. So I guess it is some sort of spy-ware/trojan/virus that got installed on all those computers. It is interresting that the browser IDs in the request are always “real” browsers, and are different with every request, e.g. “Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 5.0)”, “Mozilla/4.0 (compatible; MSIE 5.5; Windows 98; SAFEXPLORER TL)”, “Mozilla/4.0 (compatible; MSIE 4.01; Mac_PowerPC)”, “”Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; iOpus-I-M)” – always MSIE… That could be a trick, or that could mean, that the trojan is installed in Internet Explorer (whereas this would be hard to do for version 4 to 6 and even on Mac OS…).
And I’m asking myself: is it possible that these requests, though distributed over the whole world, are coordinated? Well, I’m curious what the virus companies / computer news tickers / you say about this topic the next few hours and days.
[tags]blog, trackback, spam, trojan, virus, spy-ware[/tags]