The name of my site has been hijacked to form part of the file name of a bogus page on a spam site.
Since I’ve discovered this, I’ve contacted my hosting provider and tracked down and contacted the host providers of both the IP of the main spam site’s URL and the IP of the specific URL of the offending page. I’ve also banned the IPs, installed Akismet and banned image hotlinking.
The bogus page is not your typical plagiarized-content spam blog. Instead, my blog images were uploaded to the page with a hotlink, along with their file directory path, info about the file and upload/download times for each file. My hosting company thinks it’s some kind of test page. InterNIC shows the spammer’s main site to be hosted in the Czech Republic, while the bogus page is hosted in the Netherlands.
If you have a WordPress blog, you might want to examine your spam comments carefully when they arrive in the moderation queue. In this case, the spammer was using my site’s name as his/her commenter name. The URL listed incorporated the name of my site as the file name of a sub-page of the spammer’s site, but with some alterations by adding extra hyphens, digits and forward slashes. The ARIN whois IP search info in the WordPress notification email led to a dead end, as the bogus page IP is not in the US.
I’m very reluctant to contact the probable spammer directly. If he has my website name and personal name, all he needs to commit fraud or identity theft is a live email address.
I’m anxious and saddened about the loss of my good name. 