I think the IP range for Microsoft's email (hotmail, outlook, etc.) is 147.47.0.0/16Could Microsoft be using Des Moines to do mail (hotmail, outlook.com etc.) amongst other things?
I think by blocking Microsoft data center I also stopped email going to Microsoft’s email addresses! They have piled up waiting to send.
168.61.0.0/16 # Microsoft Des Moines - do not delete
104.208.0.0/16 # Microsoft Des Moines - do not delete
104.43.0.0/16 # Microsoft Des Moines - do not delete
52.176.0.0/16 # Microsoft Des Moines - do not delete
52.173.0.0/16 # Microsoft Des Moines - do not delete
52.165.0.0/16 # Microsoft Des Moines - do not delete
40.122.0.0/16 # Microsoft Des Moines - do not delete
40.113.0.0/16 # Microsoft Des Moines - do not delete
40.122.0.0/16 # Microsoft Des Moines - do not delete
40.86.0.0/16 # Microsoft Des Moines - do not delete
40.83.0.0/16 # Microsoft Des Moines - do not delete
40.78.0.0/16 # Microsoft Des Moines - do not delete
40.77.0.0/16 # Microsoft Des Moines - do not delete
40.69.0.0/16 # Microsoft Des Moines - do not delete
23.101.0.0/16 # Microsoft Des Moines - do not delete
23.100.0.0/16 # Microsoft Des Moines - do not delete
23.99.0.0/16 # Microsoft Des Moines - do not delete
20.241.0.0/16 # Microsoft Washington - do not delete
20.169.0.0/16 # Microsoft Washington - do not delete
20.29.0.0/16 # Microsoft Des Moines - do not delete
13.89.0.0/16 # Microsoft Des Moines - do not delete
13.86.0.0/16 # Microsoft Des Moines - do not delete
13.67.0.0/16 # Microsoft Des Moines - do not delete
Microsoft is well more than a search engine.It is very difficult to communicate with search engines... It is even impossible...!!!
I'm beginning to think that this and this (https://xenforo.com/community/threa...isting-accounts-with-no-need-to-login.211713/) are connected.
Possibly scanning websites looking for older registered profiles which match compromised username/email and passwords from a data breach/dump several years ago (not XenForo).
The scans continue until they find a match and then use that member's profile to post spam.
And they won't do nothing to solve it.... this is not from today or yesterday, its a problem going since a lot of days....Microsoft is well more than a search engine.
The prime issue here is that the attacks/scans are apparently coming from an MS Azure instance (think AWS E2).
Not really surprised.. you ever have to deal with them to get your domain whitelisted on their HotMail/Live/Outlook service?And they won't do nothing to solve it.... this is not from today or yesterday, its a problem going since a lot of days....
This happens regularly if content on your site gets posted to FB, and then shared... for some reason they send their FB bots in full force. I've had upwards of 15 when I was checking shortly after an image got shared on a FB page then shared from there. I guess they want to see if they can find anything else to make some money from.Also Facebook sent 29 bots from one post mentioning my community. Not sure why they needed so many. 29! lol
You can do this. Do a range ban of any bot you see on your forum.Ban this asap - I think this is the same IP I saw last time before an attack.
You can do this. Do a range ban of any bot you see on your forum.
admincp > users > ban ip address > add range banned ip (192.168.*) > submit
It works for me. It stops microsoft's cloud users from viewing the forum.Don't do that.
You are banning tens of thousands of IP addresses.
You are missing my point though. Microsoft's cloud ip addresses always have the same ip binary bits so you can with those ones.Not with that range it doesn't.
My point was don't range ban IP addresses.
We use essential cookies to make this site work, and optional cookies to enhance your experience.