Have you been blocked?
All blocklists are researched and managed by The Spamhaus Project.
Simply click on the link below, which will take you to the Project’s IP and Domain Reputation Checker. From here you will be able to enter your IP or Domain and begin your request for removal.
Please note that the Project’s IP and Domain Reputation Checker is the only place where removals are handled.
IT and security teams consistently face multiple business challenges. Discover how our solutions can help overcome some of those issues.
From processing issues, to email-borne threats our blocklists easily integrate with your current email set-up to improve anti-spam & anti-virus email filtering.
Employ our threat intelligence to increase visibility across security events, reveal potential weaknesses in your network, and threats to your brand.
Stay on top of the latest threats and proactively combat botnet infections, and other forms of abuse, with our solutions.
From clicking on phishing emails to visiting malware dropper sites, our threat intelligence provides automatic protection for your users.
Data for Integration
Enhance your service and create competitive advantage by integrating Spamhaus’ world-class IP and domain reputation data.
Our products provide additional layers of security for networks and email. They also present security teams with additional insight into malicious behavior.
Border Gateway Protocol (BGP) Firewall
Block the worst of the worst at your network edge, taking advantage of your existing BGP-capable routers. Configuration only takes minutes.
Data Query Service (DQS)
Benefit from industry-leading real time blocklists. These DNSBLs easily plug into your existing email infrastructure to block spam and other email threats.
A powerful research tool to investigate relationships between internet infrastructures. Quickly pivot to new areas of concern to rapidly investigate potential threats.
Immediately block connections to dangerous sites, including phishing and malware dropper websites. A ‘set and forget’ solution.
Spamhaus Intelligence API
Threat intelligence data in API format to enable users to easily integrate metadata relating to threats with their own applications, programs, and products.
abuse.ch Real Time Feeds - coming soon
Actionable data signals on cyber threats, with a focus on malware and botnets, to strengthen threat investigations, detections, and help prevent data breaches.
Integration | MDaemon
Block over 99% of email-borne threats with Spamhaus’ real time DNS blocklists and MDaemon® Email Server.
Integration | Halon
Safeguard your email stream using Spamhaus’ real time DNS blocklists and Halon’s secure email infrastructure.
Integration | Messageware
Enhance Microsoft Exchange protection by blocking malicious IP addresses from connecting to your on-premise server in real time.
A wide range of datasets, providing multiple layers of protection. They can be plugged directly into your existing hardware, making them an affordable choice.
Exploits Dataset Statistics
View the geolocation, hosting network, malware names associated with each detection, and other critical data points.
Border Gateway Protocol (BGP) Feeds
Do Not Route Or Peer (DROP) and Botnet Controller List (BCL) datafeeds can peer with your existing BGP-capable router.
Domain (DBL), Zero Reputation (ZRD) and Hash blocklists (HBL) enable you to block content in emails, filtering out a higher rate of email-borne threats.
Data for Investigation
Passive DNS and extended datasets give you additional information on internet resources. They provide deeper insights into incidents and possible threats.
DNS Firewall Threat Feeds
A wide range of feeds to apply to your DNS recursive server. Choose the right level of protection for your organization.
Spam (SBL), Policy (PBL), Exploits (XBL) and Auth (AuthBL) blocklists allow you to filter email from IPs associated with spam, botnets, and other threats.
abuse.ch Threat Intelligence Feeds – coming soon
URLhaus, MalwareBazaar, ThreatFox, YARAify, Feodo Tracker and Sandnet enrich CTI feeds and support vulnerability mangement.
Find out more about us.
Learn more about Spamhaus; who we are, and what we do.
Find a partner
Discover our partners and how they can support you.
Become a partner
Learn about the benefits of being a Spamhaus partner and how to get started.
Discover a wide range of blog posts, case studies and reports.
Spamhaus’ insight into malware, botnet C&Cs, and the domain reputation landscape.
Commonly asked questions about Spamhaus products and processes.
The Blocklist Tester
A tool to help you check if your servers are correctly configured to use Spamhaus DNSBLs.
The Reputation Portal
A tool for ASN owners to get visibility of their IPs’ reputation and proactively manage listings.
Help for the Project's legacy DNSBLs users
Using the Project’s legacy blocklists and suddenly experiencing email issues? This page may be able to help.
In depth information about the technical details and implementation of our products.
Posted by Spamhaus Technology on 31 Aug 2023
For internet service providers (ISPs), protection from malicious traffic requires a multifaceted approach. Discover how and why Mornington Communications has adopted Spamhaus’ IP and Domain reputation data across its infrastructure via our commercial partner, SecurityZones - to protect its users, the network and ultimately, the business.
Meet Mornington Communications
Mornington are a community-focused Canadian co-operative telecommunications company. Over the past 100 years, they have provided telecommunications services, becoming an Internet Service Provider in the mid-1990s. Now they offer everything from mobile to TV to home security.
Today, with over 5,000 customers on the network, security threats are an ongoing battle. Something Network Manager, Dave Godglick, knows all too well. Led by a small but mighty network team, they ‘get’ the importance of proactive protection at every level of the infrastructure. We caught up with Dave to find out how Spamhaus’ data is helping Mornington to protect their customers and keep their network clean.
It started with a blocklist
Having tested several datasets over the years, Mornington opted to implement Spamhaus DNSBLs. The real-time blocklists easily integrated into Mornington’s existing email infrastructure, protecting them from spam and other email-borne threats. Dave explains, ‘We tried many datasets and experienced many problems such as users being blocked and we couldn’t unblock them very easily or they wouldn’t time out quickly enough – however, not with Spamhaus. The datasets are great. They’re easy to deploy, accurate, and cleaned up quickly.’ As an early adopter of Spamhaus blocklists, it was simply a natural progression for Mornington to enhance customer protection with additional layers of reputation data.
With many customers falling foul of phishing and clickbait, DNS Firewall was an obvious next step for Mornington. At the DNS level, DNS Firewall Threat Feeds provide automatic protection against malicious traffic, phishing sites, and malware downloads. For Mornington, the phishing, malware and botnet feeds specifically were a no-brainer.
Utilizing the response policy zones (RPZs) has allowed Mornington to help protect those customers that do not know how to defend themselves. One of the biggest successes was for Mornington’s Support Services, with the number of incoming customer calls significantly dropping within days of deploying DNS Firewall. In Dave’s words, “Bringing on DNS Firewall led to huge improvements, particularly correcting most of our phishing issues.”
However, with the surge in IoT devices preconfigured with their own DNS settings and clients wishing to bypass the name servers, Mornington was again left with some vulnerabilities to botnets.
Protection at the network edge
The timing was perfect. Spamhaus already had a solution to protect customers right at the edge of the network, including the Botnet C&C and Drop lists – Border Gateway Protocol Firewall. A cost-effective, automatic network edge solution that drops communication with the worst of the worst, including botnet command and control servers.
For a small team, set-and-forget methods that provide automatic protection from malicious traffic are like gold – especially when they are easy to implement. For Mornington, configuration was straightforward. The edge routers are configured for eBGP with Spamhaus BGP feed (BGPf), then using iBGP the routes are shared internally. And the impact appeared to be instantaneous, leading to almost zero reports of viruses! Dave shares, “With the botnet C&C listings on BGP Firewall, and the botnet C&Cs on the DNS Firewall utilizing similar data, it’s like two extra layers of protection.“
In it together
For ISPs like Mornington, botnets and malware have long been a serious problem, with any malicious outbreak reflecting poorly on the business. When a customer becomes infected, the whole network is at risk – including Mornington. Yet, rather than blaming the customer who failed to protect themselves, Mornington takes a pragmatic approach, Dave shares, ‘To protect a customer is to protect the entire network, including ourselves. The mission is to find proactive ways of protecting people from themselves!’.
Mornington, we LOVE this approach – keep up the great work!
Spamhaus’ Data Query Service (DQS) is an affordable and effective solution to protect your email infrastructure and users.
Using your existing email protection solution, you will be able to block spam and other related threats including malware, ransomware, and phishing emails.
The service has never failed and utilizes the longest established DNSBLs in the industry.
Border Gateway Protocol (BGP) Firewall provides your users and network with up-to-date protection against botnets and other external attacks.
Set up takes minutes; our data is constantly updated in real time by our experienced researchers on your behalf and can be utilized in your existing firewalls or routers.
Applied at the DNS level of your infrastructure, these threat feeds automatically stop users from accessing malicious sites including phishing and malware dropper websites.
These threat feeds can be integrated with existing recursive DNS servers, or for those who don’t manage their own DNS, we have a managed service available.
7 December 2022
Border Gateway Protocol Firewall (BGPF) is an effective and low-cost way to drop traffic to and from the worst of the worst IP addresses. Discover how it works and why it's invaluable to protect your network.
8 March 2022
Global email and data security company, Egress uses Spamhaus’ Data Query Service to provide users with simple intelligence about malicious actors.
11 September 2018
With such a huge growth in the DNS Firewall market over the past few years there are plenty of options to choose from. Read our Top 10 questions for your next DNS Firewall provider.