ZoominfoBot
Bot User-Agent:zoominfobot
🤖 Overview
ZoominfoBot is a legitimate web crawler operated by ZoomInfo Technologies Inc., a publicly traded B2B data intelligence company headquartered in Vancouver, Washington. Its core purpose is to systematically scrape publicly accessible business websites to extract contact details such as employee names, job titles, email addresses, phone numbers, and company metadata. This harvested data feeds ZoomInfo’s proprietary B2B database, used by sales, marketing, and recruiting teams for lead generation and account-based marketing. ZoomInfo’s official documentation (https://www.zoominfo.com/about/website-crawling) explicitly states that the crawler collects only information already publicly available on the internet—e.g., from “About Us” pages, press releases, and employee directories—and does not access password-protected or private areas.
🌐 Technical Behavior
ZoominfoBot performs broad, systematic crawls across millions of business domains, focusing on pages that typically list team members, such as “/team,” “/about-us,” “/leadership,” and “/company.” The bot respects standard HTTP request headers and uses a default crawl rate of a few requests per second per domain, though it can increase frequency if the server responds quickly. IP ranges are not publicly documented; ZoomInfo’s crawler originates from a pool of addresses owned by the company (ASN 215969 and others). The crawler identifies itself via the User-Agent string “ZoominfoBot” or “Mozilla/5.0 (compatible; ZoominfoBot/1.0; +https://www.zoominfo.com/about/website-crawling)” (source: ZoomInfo’s own crawler policy page). It uses standard HTTP/1.1 and HTTPS, follows redirects, and parses HTML and structured data (JSON-LD, microdata) to extract contact fields. ZoomInfo claims the bot does not execute JavaScript or submit forms.
📋 robots.txt Compliance
Based on ZoomInfo’s official policy, ZoominfoBot is designed to honor robots.txt directives. The company provides a dedicated page (https://www.zoominfo.com/robots.txt) where webmasters can exclude their site entirely by disallowing the “ZoominfoBot” user-agent. Third-party tests (e.g., from bot management platforms like Cloudflare and Imperva) consistently report that the crawler respects Disallow rules, and ZoomInfo’s support team confirms they will cease crawling if the appropriate directives are in place. However, some webmasters have reported that the crawler can appear to ignore disallows if the rules are incorrectly formatted or if wildcards are used improperly.
🔍 Detection Indicators
The primary detection indicator is the User-Agent string: “ZoominfoBot/1.0” or variations such as “ZoomInfoBot” (case-insensitive). The crawler also sets a User-Agent that includes the URL “https://www.zoominfo.com/about/website-crawling” for verification. Behavioral fingerprints include a consistent request pattern: it typically requests a single page per domain every few seconds, rarely visits subdomains not linked from the main site, and does not fetch static assets (images, CSS, JS). The Accept header is usually “text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8”. No additional custom HTTP headers are standard.
📊 Data Usage
All data collected by ZoominfoBot is ingested into ZoomInfo’s proprietary database, which is sold as a subscription service to over 35,000 customers worldwide. The data is used for B2B sales prospecting, account mapping, lead enrichment, and predictive analytics. ZoomInfo emphasizes that the information is publicly available and that they do not train AI models on the data; it is used exclusively for structured company and contact profiles. The company also offers a “Do Not Crawl” opt-out tool on their website (https://www.zoominfo.com/opt-out) for individuals who wish to have their data removed from the database.
⚙️ Rate Limiting Policy
Rate limiting of ZoominfoBot is recommended because its systematic, high-volume crawling can consume bandwidth and server resources, especially on smaller sites. Policy rationale: while the bot is legitimate, threshold-based blocking (e.g., limit to 10 requests per minute per IP) prevents it from overwhelming origin servers while still allowing reasonable collection of publicly available business information.
Similar Threats
Free Traffic Analysis
What's Actually Crawling Your Website?
Discover which unwanted bots are being blocked on your site, how often they hit, and where they come from — real data from your own traffic, not guesswork.
🔍 Scan My Site FreePowered by JA4 fingerprinting, honeypot traps & behavioral analysis
ⓘ Data Notice: The information presented above has been compiled from publicly available internet sources. Boteraser aggregates this data solely for informational purposes and does not independently classify, evaluate, or endorse any findings about the bots listed. The accuracy and completeness of this information is the sole responsibility of the original publishers. Boteraser and its operators accept no liability for any decisions made based on this data.