Have you been blocked?
All blocklists are researched and managed by The Spamhaus Project.
Simply click on the link below, which will take you to the Project’s IP and Domain Reputation Checker. From here you will be able to enter your IP or Domain and begin your request for removal.
Please note that the Project’s IP and Domain Reputation Checker is the only place where removals are handled.
IT and security teams consistently face multiple business challenges. Discover how our solutions can help overcome some of those issues.
From processing issues, to email-borne threats our blocklists easily integrate with your current email set-up to improve anti-spam & anti-virus email filtering.
Employ our threat intelligence to increase visibility across security events, reveal potential weaknesses in your network, and threats to your brand.
Stay on top of the latest threats and proactively combat botnet infections, and other forms of abuse, with our solutions.
From clicking on phishing emails to visiting malware dropper sites, our threat intelligence provides automatic protection for your users.
Our products provide additional layers of security for networks and email. They also present security teams with additional insight into malicious behavior.
Border Gateway Protocol (BGP)
Block the worst of the worst at your network edge, taking advantage of your existing BGP-capable routers. Configuration only takes minutes.
Data Query Service (DQS)
Benefit from industry-leading real time blocklists. These DNSBLs easily plug into your existing email infrastructure to block spam and other email threats.
A powerful research tool to investigate relationships between internet infrastructures. Quickly pivot to new areas of concern to rapidly investigate potential threats.
Immediately block connections to dangerous sites, including phishing and malware dropper websites. A “˜set and forget’ solution.
Spamhaus Intelligence API
Threat intelligence data in API format to enable users to easily integrate metadata relating to threats with their own applications, programs, and products.
A wide range of datasets, providing multiple layers of protection. They can be plugged directly into your existing hardware, making them an affordable choice.
Border Gateway Protocol (BGP) Feeds
Do Not Route Or Peer (DROP) and Botnet Controller List (BCL) datafeeds can peer with your existing BGP-capable router.
Domain (DBL), Zero Reputation (ZRD) and Hash blocklists (HBL) enable you to block content in emails, filtering out a higher rate of email-borne threats.
Data for Investigation
Passive DNS and extended datasets give you additional information on internet resources. They provide deeper insights into incidents and possible threats.
DNS Firewall Threat Feeds
A wide range of feeds to apply to your DNS recursive server. Choose the right level of protection for your organization.
Spam (SBL), Policy (PBL), Exploits (XBL) and Auth (AuthBL) blocklists allow you to filter email from IPs associated with spam, botnets, and other threats.
Find out more about us.
Learn more about Spamhaus; who we are, and what we do.
Find out who we work with and how you can become a Spamhaus Partner.
Discover a wide range of blog posts, case studies and reports.
Commonly asked questions about Spamhaus products and processes.
In depth information about the technical details and implementation of our products.
Automatically block malicious activity at the DNS level, protecting your network and users.
DNS Firewall Threat Feeds provide automatic protection against malicious traffic, phishing sites, and malware downloads at the DNS level.
Security & IT teams can install this by leveraging existing equipment. Save on valuable resources as a result of less time spent on remediation.
DNS Firewall protects users from accessing malware dropper and phishing sites. It also protects from accidentally downloading ransomware, cryptominer software, botnet command & controller (C&C) servers.
It disrupts communications between botnet command and controller (C2) servers and infected botnet nodes on your network, preventing data loss.
Spamhaus DNS Firewall Threat Feeds can be used with a variety of major DNS software, including Bind & PowerDNS. They also can be used with some DNS hardware including Infoblox.
For those who don’t manage their own DNS infrastructure, we offer a DNS Firewall Managed Service. This allows you to point your DNS to our recursive servers.
To protect yourself from the most malicious threats, you can sign up and access our DROP threat feed for free.
Sometimes referred to as a Response Policy Zone (RPZ), DNS Firewall applies threat intelligence data sets to DNS resolver traffic. This prevents DNS requests from resolving to malicious IP addresses and domains.
Based on users, prices start from $5,000 US per annum.
A vast range of DNS Firewall threat feeds to choose from, allowing you to pick the right level of protection for your organization.
Get a FREE 30 day trial of our DNS Firewall Threat Feeds
13 July 2021
Researchers may have observed a 12%reduction in botnet command and controllers (C&Cs), however, more than one industry-leading provider is struggling to keep on top of botnet activity.
15 April 2021
After a quiet(ish) end to 2020 in Spamhaus' botnet world, the first quarter of this year kicked off in style. The major news surrounded the takedown of the Emotet botnet in January. Nonetheless, as one malware departs, others arrive on the scene, as proved by the 24% increase in the total number of botnet C&Cs Spamhaus researchers observed.
30 July 2020
Botnet operators certainly were busy during in lock-down. It's unfortunate to report a 29% increase quarter on quarter of newly observed botnet Command and Controllers (C&Cs) after last month's reduction.