A /19 that was listed back in April caught this recently, definitely a user subscribed newsletter;
Wed 2012-06-06 08:55:21: [140:457] Accepting SMTP connection from [109.123.106.210]
Wed 2012-06-06 08:55:21: [140:457] Looking up PTR record for 109.123.106.210 (210.106.123.109.IN-ADDR.ARPA)
Wed 2012-06-06 08:55:21: [140:457] D=210.106.123.109.IN-ADDR.ARPA TTL=(1439) PTR=[srv-eight.clevercherry.net]
Wed 2012-06-06 08:55:21: [140:457] Gathering A-records for PTR hosts
Wed 2012-06-06 08:55:21: [140:457] D=srv-eight.clevercherry.net TTL=(240) A=[109.123.106.210]
Wed 2012-06-06 08:55:21: [140:457] --> 220 xxx.xxx.xxx ESMTP MDaemon 6.7.9; Wed, 06 Jun 2012 08:55:21 -0100
Wed 2012-06-06 08:55:21: [140:457] <-- EHLO srv-eight.clevercherry.net
Wed 2012-06-06 08:55:21: [140:457] Performing reverse lookup on srv-eight.clevercherry.net (looking for 109.123.106.210)
Wed 2012-06-06 08:55:21: [140:457] D=srv-eight.clevercherry.net TTL=(240) A=[109.123.106.210]
Wed 2012-06-06 08:55:21: [140:457] --> 250-xxx.xxx.xxx Hello srv-eight.clevercherry.net, pleased to meet you
Wed 2012-06-06 08:55:21: [140:457] --> 250-ETRN
Wed 2012-06-06 08:55:21: [140:457] --> 250-AUTH=LOGIN
Wed 2012-06-06 08:55:21: [140:457] --> 250-AUTH LOGIN CRAM-MD5
Wed 2012-06-06 08:55:21: [140:457] --> 250-8BITMIME
Wed 2012-06-06 08:55:21: [140:457] --> 250 SIZE 0
Wed 2012-06-06 08:55:21: [140:457] <-- MAIL FROM:<xxx @ xxx.xxx> SIZE=16289
Wed 2012-06-06 08:55:21: [140:457] Performing reverse lookup on xxx.clevercherry.com (looking for 109.123.106.210)
Wed 2012-06-06 08:55:21: [140:457] D=xxx.clevercherry.com TTL=(240) A=[109.123.106.210]
Wed 2012-06-06 08:55:21: [140:457] Spam Blocker A-record resolution of [210.106.123.109.L2.APEWS.ORG] in progress (DNS Server: 192.168.1.2)...
Wed 2012-06-06 08:55:21: [140:457] Spam Blocker D=210.106.123.109.L2.APEWS.ORG TTL=(35) A=[127.0.0.2]
Wed 2012-06-06 08:55:21: [140:457] L2.APEWS.ORG LISTED
Wed 2012-06-06 08:55:21: [140:457] Message will be accepted and X-RBL-Warning: header will be inserted.
Wed 2012-06-06 08:55:21: [140:457] --> 250 <xxx @ xxx.xxx>, Sender ok
Wed 2012-06-06 08:55:21: [140:457] <-- RCPT TO:<xxx @ xxx.xxx>
Wed 2012-06-06 08:55:21: [140:457] --> 250 <xxx @ xxx.xxx>, Recipient ok
Wed 2012-06-06 08:55:21: [140:457] <-- DATA
Wed 2012-06-06 08:55:21: [140:457] --> 354 Enter mail, end with <CRLF>.<CRLF>
Wed 2012-06-06 08:55:21: [140:457] --> 250 Ok, message saved <Message-ID: E1ScCvc-0005YX-27@srv-eight.clevercherry.net>
Wed 2012-06-06 08:55:21: [140:457] <-- QUIT
Wed 2012-06-06 08:55:21: [140:457] --> 221 See ya in cyberspace
Wed 2012-06-06 08:55:21: [140:457] SMTP session successful, 15603 bytes transferred.
Wed 2012-06-06 08:55:21: [140:457] Shuffling message(s) into proper queue(s)
Wed 2012-06-06 08:55:21: [140:457] Message received from srv-eight.clevercherry.net [109.123.106.210] <xxx @ xxx.xxx> with SMTP for <xxx @ xxx.xxx> [Size 10502] {j:\localq\6443522.msg}
Dear APEWS,
ReplyDeletePlease remove the below in from your list.
Oooops 213.79.112.130 is currently listed in APEWS :-(
Entry matching your Query: E-431476
213.79.112.0/22
CASE: C-41
Spambots / zombies / spammers / scanners within CIDR
History:
Entry created 2010-11-05
In case you need any more assistance, just e-mail to root@finstream.ru.
Our company isn't holding any spambots.
Thanks in advance!
The IP address 109.123.106.210 has been delisted.
ReplyDeleteDear APEWS,
ReplyDeleteWould you please remove my ip from your list.
Oooops 202.78.200.84 is currently listed in APEWS :-(
Entry matching your Query: E-245029
202.78.200.0/23CASE: C-237
AS18059 ID, ISP permits abuse and/or ignores criminal activityHistory:
Entry created 2007-07-07
It was blacklisted in 2007 & it is now 2012. It was misconfigured to be an open relay and now it has been reconfigured & the spam problem has been terminated. Thank you for your help.
can you please remove
ReplyDeleteOooops 184.154.88.170 is currently listed in APEWS :-(
--------------------------------------------------------------------------------
Entry matching your Query: E-431055
184.154.64.0/18
--------------------------------------------------------------------------------
CASE: C-1404
IP allocations to providers with a bad reputation
--------------------------------------------------------------------------------
History:
Entry created 2010-11-02
i bought this as a dedicated IP about 6 months ago and found it it is black listed here after the fact. one of my sites uses account email verification to post so a clean slate is important.
You probably leased not bought that IP, in any case you needed to check the history of an offered IP address before signing up for it. If your emails are important to you then choose an IP address that is not listed and that is managed by a reputable firm. Why not ask your provider for an unlisted IP address?
Deleteas you probably can tell, i am learning as i go....
Deleteout of the blue my host emailed me last night and say that they were changing me to an updated server within 48 hours and when moved it will be issued a new IP
hopefuly it will not be listed
thank you for your reply, it was helpful.
Please remove the IP 187.4.69.218 and Entry matching your Query: E-433317
ReplyDelete187.4.64.0/20
thank you
Hello,
ReplyDeleteWe passed all test except APEWS, very sad :-(
http://domain-blacklist.e-dns.org/
Do I wait to be released?
Oooops 65.114.179.210 is currently listed in APEWS :-(
________________________________________
Entry matching your Query: E-452048
65.114.128.0/18
________________________________________
CASE: C-14
Spambots, zombies, contaminated CIDR, bad reputation provider
hi there
ReplyDeletecan you please remove the following IP from your lists:
Oooops 84.252.218.219 is currently listed in APEWS :-(
Entry matching your Query: E-297449
84.252.192.0/18CASE: C-1010
Dynamic IP space, generic DNS/rDNS, no PTR
Direct connections to MX not permitted, you
need to use your ISP servers or smarthostSpecial Reason:
Dynamic IP, generic DNS, missing rDNS/PTR not permitted for direct email connection. You must use correctly configured [with registered working abuse contact] static IP / ISP mail servers / smarthost serviceHistory:
Entry created 2007-09-01
thank you
Jaco
Dear Team,
ReplyDeleteMy mail server IP address is listed and should't be as we are not sending out spam. so please remove from the blacklist brandsystems.in ip:
190.196.17.102
186.67.42.198
190.82.74.243
Thanks & Regards,
Juan Orostica
remove ip 200.113.14.10
ReplyDeleteE-520212 / Case C-131
ReplyDeleteIt looks like we got an IP address in a block that claims to be unallocated: 184.176.0.0/12 ...
The entry was created 2012-04-10
cox.net allocated an IP address within that range, 184.181.224.74, to our school district.
The information on the lookup at APEWS.ORG isn't sufficient to help us determine why that IP address might be listed, nor what actions anyone might take to "correct" it.
I found apews.org by searching for "less used" dns blacklist hosts...
You may find that Cox doesn't have the best reputation around and that their IP address space is listed in other blacklists apart from Apews but that needn't bother your email delivery provided that all your recipients consented and thus whitelisted the server IP. You could always ask Cox for an unlisted IP address or a discount for the listed one.
DeleteWrong positive
ReplyDeleteQuery E-397527: 178.0.0.0/12 is not only a Dynamic address range. Our range is registrated in Ripe. I hope range 178.15.55.0/25 can be removed.
Looking at the whois it looks like one big IP pool for Arcor and Vodafone, like a residencial DSL allocation, likely all dynamic. If they're renting out small parts then they would be better to separate a distinct CIDR for the purpose.
DeleteSame IP-Range as poster above:
ReplyDeleteE-397527 178.0.0.0/12
Please remove 178.15.208.208/29 from the blacklist
Oooops 66.192.200.130 is currently listed in APEWS :-(
ReplyDelete--------------------------------------------------------------------------------
Entry matching your Query: E-436719
66.192.200.0/21
--------------------------------------------------------------------------------
CASE: C-17
Spambots, zombies, contaminated CIDR, bad reputation provider
--------------------------------------------------------------------------------
History:
Entry created 2010-12-16
Oooops 212.35.110.130 is currently listed in APEWS :-(
ReplyDeleteEntry matching your Query: E-406415
212.35.110.0/24CASE: C-13
Spambot/zombie PC and/or port scanner and/or harvester bot in CIDRSpecial Reason:
CIDR contains at least one spammer and/or port scanner. ASN/CIDR owner can solve listing by: block TCP25 out, use TCP587 or TCP465 for client email via ISP servers, terminate accounts of abusive clientsHistory:
Entry created 2010-08-14
------
Hi,
This old entry doesn't give enough details to understand why we were blacklisted.
Our mail server isn't blacklisted anywhere (even spamcop whitelists us) but on APNEWS.
Please remove us from your list.
Thank you.
It looks like spam came out of an IP address in that /24, so you have 1 IP address with another 255 close by. Listing a block says that the block is not managed well by the owner so there is a probability that more spam will be sent. You need to get an IP address with better reputation if you value sending your emails, complain to your ISP and ask them for an unlisted IP address. You should also get whitelisted on a public register and ask your recipients to whitelist your IP address too. Don't worry about the date, some folks have been listed since 2006, but if the reputation doesn't change nor will the listing. You could smart host your emails, just use your IP for the internet connection, maybe VPS out to a server.
DeleteOooops 72.54.227.27 is currently listed in APEWS :-(
ReplyDeleteEntry matching your Query: E-454786
72.54.227.0/24
CASE: C-79
Spambots, zombies, contaminated CIDR, bad reputation provider
History:
Entry created 2011-01-31
Entry is old also. Since then we've changed to new servers, upgraded our Antivirus, etc. This is the ONLY place where we are listed.
Apews is an early warning system, listings are about the probability of spam or abuse based on the reputation of the IP address space manager. You have 1 IP address with 255 others close by, one of more of which could be sending spam. You need to ask your ISP for an unlisted IP address e.g. your ISP has their own SMTP servers, get an IP address in their /24 because your ISP is more likely to keep that clean.
DeleteIf you had a server that was sending spam then you were correctly listed, and since your spam was able to get out onto the internet then listing the CIDR is also correct since it has the same manager i.e. systems are common. You can't expect the rest of the internet community to suffer abuse just because you didn't/don't know how to prevent spam coming out of your server. Hire a professional server technician or smart host your email sending.
Oooops 58.26.30.3 is currently listed in APEWS
ReplyDeleteEntry matching your Query: E-434142
58.26.24.0/21CASE: C-174
AS4788 MY, ISP permits abuse and/or ignores criminal activityHistory:
Entry created 2010-12-06
Appreciate if you could whitelist us. Thanks
Dear APEWS admin,
ReplyDeletePlease delist 66.36.241.29 from your database. We are not Spammers and this is the only site still blacklisting us. Thank you.
Please remove..
ReplyDeleteOooops 119.75.26.198 is currently listed in APEWS
Please remove the following..
ReplyDeleteOooops 119.75.26.198 is currently listed in APEWS
Entry matching your Query: E-360642
119.75.0.0/18
Please - Remove and delisting
ReplyDeleteEntry matching your Query: E-608965
200.99.128.0/20
CASE: C-1058
AS15180 BR, ISP permits abuse and/or ignores criminal activity
History:
Entry created 2012-10-20
Thanks
Dear APEWS,
ReplyDeletePlease remove the below in from your list.
200.79.25.35
Oooops 200.79.25.35 is currently listed in APEWS :-(
Entry matching your Query: E-255396
200.79.0.0/17
CASE: C-354
AS8151 MX, ISP permits abuse and/or ignores criminal activity
Special Reason:
ISP permits abuse and/or ignores criminal activity
History:
Entry created 2007-07-12
Dear Sir,
ReplyDeletethe IP 83.229.43.142 and 83.229.43.140 is blacklisted in your database , pls remove from your database as we have email security in place now.
We will appreciate your quick support
Thanks
Suhasini
is anyone going to reply? when you guys will delist the IP, our entire server is down, none of our emails r going.
DeletePlease remove the below in from your list.
ReplyDeleteEntry matching your Query: E-440794 207.248.228.0/22
CASE: C-1120 AS11172 MX, ISP permits abuse and/or ignores criminal activity
Please remove us from your list.
Hello APEWS/Administrator
ReplyDelete81.214.39.129/24 is listed. This main server under the spam user closed the account. Please remove Black list.
Thanks,
EFE ASA
Dear APEWS Admin,
ReplyDeletePlease, remove our IP (81.214.39.129) from the black list.
All SPAM related issues have been resolved.
Thanks.
Dear Apews,
ReplyDeletePlease remove the following:
Oooops 200.198.93.228 is currently listed in APEWS
Entry matching your Query: E-290369
200.198.64.0/18
CASE: C-1058
AS15180 BR, ISP permits abuse and/or ignores criminal activity
Thanks
Dear Apews,
ReplyDeletePlease remove the following:
Oooops 186.236.15.241 is currently listed in APEWS :-(
Entry matching your Query: E-433315
186.224.0.0/11CASE: C-41
Spambots / zombies / spammers / scanners within CIDRHistory:
Entry created 2010-11-25
Very Thanks!
Dear APEWS Admin,
ReplyDeletePlease remove my mothers IP. She just got a new internet provider few days ago and she is not a spammer.
Testresults
Oooops 5.103.60.32 is currently listed in APEWS :-(
Entry matching your Query: E-179983
5.0.0.0/8CASE: C-1404
IP allocations to providers with a bad reputationSpecial Reason:
IP allocations to providers with a bad reputationHistory:
Entry created 2007-05-28 2012-05-31: Reason changed from No traffic until allocated to IP allocations to providers with a bad reputation
Dear APEWS Admin,
ReplyDeletePlease, remove our IP (120.146.245.16) from the black list.
All SPAM related issues have been resolved.
I report to my ISP's problem with the IP but if you could support me by removing it from the list as soon as possible is the much appreciate.
ReplyDeleteOooops 187.237.216.226 is currently listed in APEWS :-(
Entry matching your Query: E-413734
187.128.0.0/9CASE: C-41
Spambots / zombies / spammers / scanners within CIDRHistory:
Entry created 2010-09-19
This IP is new to our mail server.
Best Regards.
Please remove to list
ReplyDeleteEntry matching your Query: E-257451
200.27.64.0/19
CASE: C-385
Hi,
ReplyDeletePlease remove
Entry matching your Query: E-439605
194.90.208.0/20
--------------------------------------------------------------------------------
CASE: C-17
Spambots, zombies, contaminated CIDR, bad reputation provider
Good note request removal of 187.108.41.165 ip due to attack on the mail server racks thanks!
DeleteDear APEWS Admin,
ReplyDeletePlease, remove our IP (187.108.41.165) from the black list.
All SPAM related issues have been resolved.
Dear APEWS Admin,
ReplyDeletePlease, remove our IP (82.77.196.147)(mail.indd.tim.ro) from the black list.
All SPAM related issues have been resolved.
Hi APEWS Admin,
ReplyDeletePlease remove my IP from your list.(76.235.233.45) I am not a spammer!!
Testresults
Oooops 76.235.233.45 is currently listed in APEWS :-(
Entry matching your Query: E-437774
76.235.128.0/17
CASE: C-17
Spambots, zombies, contaminated CIDR, bad reputation provider
Thanks
Hi.
ReplyDeletehow do I remove my ip 189.112.88.211 of the list?
tks!
Dear APEWS!
ReplyDeleteRemove the black list the IP address of the following:
190.144.106.75
Hi Apews.
ReplyDeletePlease, one more to delete:
Oooops 178.63.60.71 is currently listed in APEWS :-(
Entry matching your Query: E-439529
178.63.56.0/21
CASE: C-17
Spambots, zombies, contaminated CIDR, bad reputation provider
History:
Entry created 2010-12-24
Thank you beforehand!
Hi Apews.
ReplyDeletePlease, one more to delete:
Oooops 67.222.8.178 is currently listed in APEWS :-(
Entry matching your Query: E-620162
67.222.8.0/24
CASE: C-46
Thanks you
Hi Apews.
ReplyDeletePlease remove my IP from your list.(24.38.112.125), We do not Spam and are on NO other lists.
Oooops 24.38.112.125 is currently listed in APEWS :-(
Entry matching your Query: E-455165
24.38.64.0/18
CASE: C-79
Spambots, zombies, contaminated CIDR, bad reputation provider
History:
Entry created 2011-02-01
Please remove my IP from your list: 114.57.33.246
ReplyDeleteThanks
CASE: C-17
ReplyDeleteSpambots, zombies, contaminated CIDR, bad reputation provider
Who are you apews? Under what authority do you have to just blacklist people without any proof whatsoever? I have been under attack on this stupid computer for years and did not even know it. I dont even know that much about computers. Are you trying to set up and frame people/ Like Jews and such? Areyou anti semetic? Are you guys really terrorists? I'm related to some of the richest Jews in America and I did not run spam on my account. I think you may be anti semetic. I bet that is it. Setting up Jews around the country. UNAMERICAN. Please remove. This is the second request. Just cuz Ayers gave you the keys to the internet does not make you a God. Don't be a terrorist.
Hey everyone, this guy that runs this site is nothing more then a blackmailing blacklisting foreigner.He's setting people up. Probably a big old Jew hater. He wont stop doing what he is doing and he has no authority to do this, Ill just bet. ANTI SEMETIC JEW HATING RACISIST foriegn terrorist with the keys to the internet. Stop making up stuff so you can play god with peoples lives. You are trash for what you have done to people.Keep your filthy hands off our Jews.
ReplyDeleteHi Apews.
ReplyDeleteI ask you to remove our ip 189.84.190.157 from blacklist, we had a virus machine, which has already been removed.
Oooops 189.84.190.157 is currently listed in APEWS :-(
Entry matching your Query: E-413809
189.84.0.0/14CASE: C-41
Spambots / zombies / spammers / scanners within CIDRHistory:
Entry created 2010-09-19
Thank you