I was hoping for a lesson in reading a Whois entry. As you are aware, when comments and spam get onto ones blog, they are listed with email, IP and url if they have one. There is aslo a link to Whois.
Problem is that most of us have no clue as to what the information means, except the obvious (name, IP's etc) and thus cannot decipher for ourselves if it is truly SPAM or not.
Example: What appears to be a legit comment was left at my site and the whois says this:
OrgName: RIPE Network Coordination Centre
Address: P.O. Box 10096
NetRange: 126.96.36.199 - 188.8.131.52
NetType: Allocated to RIPE NCC
Comment: These addresses have been further assigned to users in
Comment: the RIPE NCC region. Contact information can be found in
Comment: the RIPE database at http://www.ripe.net/whois
# ARIN WHOIS database, last updated 2007-11-20 19:10
# Enter ? for additional hints on searching ARIN's WHOIS database.
Now because this shows multiple listings of IP addresses, I would normally mark it as SPAM and then delete it.... but how does one know for sure that is the right thing to do?
Could you give us some feedback as to how to decipher the WHOIS info please.
Any help is appreciated.