Have you been blocked?
All blocklists are researched and managed by The Spamhaus Project.
Simply click on the link below, which will take you to the Project’s IP and Domain Reputation Checker. From here you will be able to enter your IP or Domain and begin your request for removal.
Please note that the Project’s IP and Domain Reputation Checker is the only place where removals are handled.
IT and security teams consistently face multiple business challenges. Discover how our solutions can help overcome some of those issues.
From processing issues, to email-borne threats our blocklists easily integrate with your current email set-up to improve anti-spam & anti-virus email filtering.
Employ our threat intelligence to increase visibility across security events, reveal potential weaknesses in your network, and threats to your brand.
Stay on top of the latest threats and proactively combat botnet infections, and other forms of abuse, with our solutions.
From clicking on phishing emails to visiting malware dropper sites, our threat intelligence provides automatic protection for your users.
Data for Integration
Enhance your service and create competitive advantage by integrating Spamhaus’ world-class IP and domain reputation data.
Our products provide additional layers of security for networks and email. They also present security teams with additional insight into malicious behavior.
Border Gateway Protocol (BGP) Firewall
Block the worst of the worst at your network edge, taking advantage of your existing BGP-capable routers. Configuration only takes minutes.
Data Query Service (DQS)
Benefit from industry-leading real time blocklists. These DNSBLs easily plug into your existing email infrastructure to block spam and other email threats.
A powerful research tool to investigate relationships between internet infrastructures. Quickly pivot to new areas of concern to rapidly investigate potential threats.
Immediately block connections to dangerous sites, including phishing and malware dropper websites. A ‘set and forget’ solution.
Spamhaus Intelligence API
Threat intelligence data in API format to enable users to easily integrate metadata relating to threats with their own applications, programs, and products.
abuse.ch Real Time Feeds - coming soon
Actionable data signals on cyber threats, with a focus on malware and botnets, to strengthen threat investigations, detections, and help prevent data breaches.
Integration | MDaemon
Block over 99% of email-borne threats with Spamhaus’ real time DNS blocklists and MDaemon® Email Server.
Integration | Halon
Safeguard your email stream using Spamhaus’ real time DNS blocklists and Halon’s secure email infrastructure.
Integration | Messageware
Enhance Microsoft Exchange protection by blocking malicious IP addresses from connecting to your on-premise server in real time.
A wide range of datasets, providing multiple layers of protection. They can be plugged directly into your existing hardware, making them an affordable choice.
Exploits Dataset Statistics
View the geolocation, hosting network, malware names associated with each detection, and other critical data points.
Border Gateway Protocol (BGP) Feeds
Do Not Route Or Peer (DROP) and Botnet Controller List (BCL) datafeeds can peer with your existing BGP-capable router.
Domain (DBL), Zero Reputation (ZRD) and Hash blocklists (HBL) enable you to block content in emails, filtering out a higher rate of email-borne threats.
Data for Investigation
Passive DNS and extended datasets give you additional information on internet resources. They provide deeper insights into incidents and possible threats.
DNS Firewall Threat Feeds
A wide range of feeds to apply to your DNS recursive server. Choose the right level of protection for your organization.
Spam (SBL), Policy (PBL), Exploits (XBL) and Auth (AuthBL) blocklists allow you to filter email from IPs associated with spam, botnets, and other threats.
abuse.ch Threat Intelligence Feeds – coming soon
URLhaus, MalwareBazaar, ThreatFox, YARAify, Feodo Tracker and Sandnet enrich CTI feeds and support vulnerability mangement.
Find out more about us.
Learn more about Spamhaus; who we are, and what we do.
Find a partner
Discover our partners and how they can support you.
Become a partner
Learn about the benefits of being a Spamhaus partner and how to get started.
Discover a wide range of blog posts, case studies and reports.
Spamhaus’ insight into malware, botnet C&Cs, and the domain reputation landscape.
Commonly asked questions about Spamhaus products and processes.
The Blocklist Tester
A tool to help you check if your servers are correctly configured to use Spamhaus DNSBLs.
The Reputation Portal
A tool for ASN owners to get visibility of their IPs’ reputation and proactively manage listings.
Help for the Project's legacy DNSBLs users
Using the Project’s legacy blocklists and suddenly experiencing email issues? This page may be able to help.
In depth information about the technical details and implementation of our products.
Posted by Spamhaus Technology on 29 Sep 2023
If your organisation runs its own spamtraps, or you have tried to run spamtraps previously, you’re likely to have been challenged with, “What is the benefit to the business?”. In truth, spamtraps are business assets, but extracting value from them requires time, expertise, and resources. By sharing your spamtrap data with Spamhaus, we can mine these treasure troves of data on your behalf.
Let's explore the benefits of sharing spamtrap data with Spamhaus, starting with who can share data and how we use it.
Who can share spamtrap data with Spamhaus?
The short answer is anyone. Anyone maintaining spamtraps can share data with Spamhaus. In addition to receiving threat intelligence from Spamhaus, many customers contribute spamtrap and SMTP data back to improve the intelligence they receive. Nevertheless, anyone who wishes to make the internet a safer place can also share their spamtrap data with us. This is regardless of whether you are a Spamhaus customer or not.
And while Spamhaus likes to receive spamtrap data “no matter what’s in there”, it’s always advisable to follow best practice – check out the M3AAWG best practices for building and operating a spamtrap.
How does Spamhaus use spamtrap data?
Spamhaus analyses over 7 billion data points every 24 hours. Included in this vast repository is spamtrap data. Wonderfully rich spamtrap data. Data such as URLs, email addresses within the message body, reply-to email addresses and attachments. Data points that wouldn’t otherwise be available and can be used to produce reputation data and detections.
That being said, it’s important to note that not every message that hits a spamtrap is classified as spam. Due to the type of spamtrap, its creation and how it has been maintained over time, some messages may not be suspicious or malicious. As a result, spamtrap data is sometimes used for visibility and to provide additional context only.
Why share spamtrap data with Spamhaus?
Customer or not, there are many reasons why you should share spamtrap data with Spamhaus:
For customers, it’s a no-brainer. As sharing spamtrap data allows us to tailor the data customers receive for their specific threat view, enhancing the performance of the data.
It might be surprising to learn that you will receive mail almost nobody else has received. This may be due to your geographical location, language, or business sector. By sharing spamtrap data with Spamhaus, it allows us to see traffic we wouldn’t otherwise see. Leading to better filtering for you as the customer and all Spamhaus customers.
But what if you’re not a Spamhaus customer?
Replace internal blocklists
If you are running an internal blocklist to filter mail for your users, some unwanted mail will always slip through. As a result, you are forced to maintain local filters to remove the unwanted traffic – this adds time and cost. Sharing “what you see” with Spamhaus reduces your workload, as we can include your traffic in our blocklists. What you see, becomes what we see.
Safer internet for all
As part of our ‘making the internet a safer place’ mission, our data about compromised machines and end users is shared free of cost with relevant Community Emergency Response Teams (CERTs) all over the world. By sharing your spamtrap data with Spamhaus you directly contribute to this effort, and in the end to a safer internet for all.
Every contributor benefits not only from the data they share themselves, but also the data shared by others – if you’re the first to see something, no one else has to. This shared security approach creates a view that only looking at a single network can never compete with.
Sharing spamtrap data: A case study
Czech-based, Mailkit and Omnivery are known for their gleaming reputation as highly compliant email service providers. And every day they share a few thousand spamtrap emails with Spamhaus, resulting in blocklist additions based solely on their contributions.
For Mailkit and Omnivery the benefits of sharing spamtrap data are multiple, leading to:
And as Jakub Olexa, Founder of Mailkit and Omnivery explains, “Ultimately, I believe that sharing our spamtrap data adds value not only to us or Spamhaus but makes for a better and safer internet for all.”
Share early, share often
At Spamhaus we know that networks and organisations benefit from sharing spamtrap data. We promote a ‘share early, share often’ philosophy, emphasizing two important aspects of data sharing.
Sharing early allows everyone to benefit from threats seen by others as early as possible. Furthermore, when data is shared in a continuous stream rather than in a batch, the data becomes even more valuable.
To learn more about how to share spamtrap data with Spamhaus, please contact us.
8 November 2023
Discover how Censornet AI security platform integrates Spamhaus’ real time blocklists with two-way sharing of basic email connection data, to provide 'exceptional' email protection for its users.
1 November 2023
Unravel the myths of spamtraps clicking links and learn how to leverage these metrics to better understand your deliverability problems.