I have been having exactly the same spammers trying to fill the guestbook on my site with this stuff. As far as I can tell, the people are using random proxies (most of the IPs don't resolve, but those that do contain 'proxy*'. One resolved to Hong Kong, one resolve to New Zealand, etc.
I've temporarily fixed the solution on my site by updating my guestbook script with these bits of code:
Code: Select all
if(checkForBullshit($frmName) || checkForBullshit($frmEMail) || checkForBullshit($frmComments))
// add this person's IP address to the banned IP list.
if($fd = fopen("spammerips.txt", "a"))
$textout = $_SERVER['REMOTE_ADDR'] . "\n";
if( stristr($in, "poker") ||
stristr($in, "holdem") ||
stristr($in, "casino") ||
stristr($in, "andrewsaluk") ||
stristr($in, "gambling") ||
stristr($in, "gamble") ||
Maybe you could make a similar modification. It's very primitive, but will most likely confuse the lowlife scum. If it -is- a bot doing this (I can see that it might be possible), they will be redirected to some other URL, assuming the code is developed enough.
If the script catches more people trying to spam it, then it's just a matter of adding the banned IPs to the .htaccess (I didn't want to let the script write directly to the .htaccess file for security).