Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

How do I find range of servers for a spam server (Beyond the Newtwork USA).

Status
Not open for further replies.
jlockley

jlockley

Technical User
Nov 28, 2001
1,522
0
0
US
We have been found by a Ukranian Spam server/provider of space for spammers named Beyond the Network USA. My mail server uses an RBL but these (satellite) servers are only sporadically identified - surprising considering the extent of their badness reported across the web. (Lots or reports of back door invasion attempts, possibly responsible for the many hotmail and yahoo contact list hijacks, much more).
Sherweb's spam lists only block the literal entry, so blocking 206.161. or trying wild cards will not impact 206.161.12.13.
They provide USA (right now in WASH and UT small towns, but again these are satellite, so they show in parking lots and forests, German and Luxembourg VPN servers apparent mostly for Chinese spammers.
I in the process of building serverside spam filters. They are working, but BTN has a lot of IP's, as as soon as we have one out, we receive first a blank mail then a rush of spam. I intend to fill out the server arrays in the obvious IP address runs (see below) but there must be a source of all of their IP addresses.
Note that I have already planned to cut out the entire 206.161.X range, as they all belong to BTN. Collateral damage be damned.

Any suggestions?

Here the list so far.

024.116.176.122
041.104.68.182
107.227.48.244
118.142.77.12
119.18.60.229
122.176.116.24
173.232.11.153
173.232.244.168
173.232.247.56
173.45.132.51
173.45.133.47
176.57.161.5
178.254.55.125
182.18.175.244]
182.68.100.37
182.68.104.41
182.68.201.244
182.68.42.225
182.68.99.162
188.165.40.213
192.168.0.2
198.15.102.81
198.15.102.84
198.15.87.62
198.175.167.0/24
198.175.168.0/24
198.175.169.0/24
198.175.170.0/24
198.212.180.0/24
198.252.128.0/24
198.252.129.0/24
198.252.130.0/24
198.252.131.0/24
198.69.128.0/20
199.0.216.0/21
203.30.26.0/23
204.12.249.121
204.180.160.0/19
204.8.49.0/24
204.8.50.0/24 ;
205.161.96.0/20
205.177.0.0/16
205.177.176.0/20
205.177.176.62
205.177.177.52
205.177.64.0/21
205.177.69.214
205.177.69.240
205.177.71.48
205.177.72.0/21
205.177.88.0/21
205.177.95.221
205.177.95.77
205.252.0.0/16
205.252.144.126
205.252.166.30
205.252.217.186
205.252.218.42
205.252.72.0/21
205.252.84.158
205.252.96.0/21
206.161.0.0/16
206.161.12.13
206.161.121.1
206.161.121.10
206.161.121.100
206.161.121.101
206.161.121.115
206.161.121.122
206.161.121.123
206.161.121.124
206.161.121.2
206.161.121.21
206.161.121.22
206.161.121.3
206.161.121.4
206.161.121.5
206.161.121.6
206.161.121.7
206.161.121.70
206.161.121.8
206.161.181.100
206.161.6.0/23
206.161.64.0/21
206.161.99.149
206.161.99.153
206.161.99.157
206.161.99.158
206.161.99.65
206.251.171.102
207.176.0.0/17
207.176.72.0/23
207.176.74.0/23
207.226.0.0/16
207.226.112.0/21
207.226.16.0/21
207.226.166.216
207.226.177.42
207.226.180.188
207.226.183.116
207.226.183.120
207.226.183.126
207.226.183.73
207.226.186.164
207.226.201.250
207.226.216.98
207.226.252.0/22
207.226.28.0/22
207.226.32.0/20
207.226.45.252
207.226.48.0/20
207.226.80.0/20
209.170.64.0/23
209.170.66.0/23
209.8.0.0/15
209.8.104.0/21
209.8.108.70
209.8.112.0/21
209.8.112.120
209.8.115.125
209.8.115.146
209.8.115.148
209.8.115.156
209.8.115.204
209.8.118.137
209.8.118.74
209.8.118.75
209.8.118.97
209.8.34.0/23
209.8.4.0/22
209.8.47.178
209.8.48.0/22
209.8.60.0/22
209.85.161.205
209.85.212.50
209.9.144.0/20
209.9.176.0/20
209.9.177.181
209.9.224.0/19
209.9.228.252
209.9.231.76
209.9.239.101
209.9.239.252
209.9.8.0/21
213.248.118.0/23
213.248.120.0/23
37.139.12.22
37.59.225.80
38.114.103.27
38.114.103.32
46.45.143.150
63.216.0.0/13
63.216.0.1
63.216.100.116
63.216.100.178
63.216.100.92
63.216.102.110
63.216.104.247
63.216.108.144
63.216.109.241
63.216.110.165
63.216.112.53
63.216.115.119
63.216.115.175
63.216.118.248
63.216.120.255
63.216.14.162
63.216.153.200
63.216.168.0/21
63.216.184.0/21
63.216.192.0/21
63.216.200.0/21
63.216.248.17
63.216.32.0/20
63.216.48.0/21
63.216.49.225
63.216.49.227
63.216.49.243
63.216.54.120
63.216.54.121
63.216.54.25
63.216.54.33
63.216.54.34
63.216.54.41
63.216.54.49
63.216.54.50
63.216.54.56
63.216.54.96
63.216.54.98
63.216.56.0/21
63.216.59.225
63.216.63.43
63.216.72.0/22
63.216.88.0/21
63.216.96.0/19
63.217.115.10
63.217.169.36
63.217.184.105
63.217.184.41
63.217.184.56
63.217.184.65
63.217.184.75
63.217.184.81
63.217.232.113
63.217.232.152
63.217.232.185
63.217.232.186
63.217.232.193
63.217.232.57
63.217.232.67
63.217.232.94
63.217.232.97
63.217.249.107
63.217.249.109
63.217.31.133
63.217.8.24
63.217.8.91
63.217.82.139
63.217.82.140
63.218.0.0/22
63.218.10.0/23
63.218.102.0/23
63.218.104.0/23
63.218.108.0/22
63.218.109.253
63.218.112.0/23
63.218.114.0/23
63.218.115.89
63.218.116.0/23
63.218.118.0/23
63.218.12.0/23
63.218.12.130
63.218.136.0/22
63.218.14.0/23
63.218.140.0/23
63.218.142.0/23
63.218.144.0/23
63.218.146.0/23
63.218.149.185
63.218.165.117
63.218.211.13
63.218.22.0/23
63.218.23.153
63.218.24.0/23
63.218.28.0/23
63.218.30.0/23
63.218.32.0/23
63.218.34.0/23
63.218.36.0/22
63.218.38.88
63.218.4.0/23
63.218.40.0/23
63.218.44.0/22
63.218.48.0/23
63.218.50.0/23
63.218.50.78
63.218.51.13
63.218.52.0/22
63.218.52.241
63.218.53.73
63.218.56.0/22
63.218.6.0/23
63.218.60.0/22
63.218.64.0/22
63.218.68.0/22
63.218.71.113
63.218.71.190
63.218.72.0/23
63.218.78.0/23
63.218.8.0/23
63.218.80.0/23
63.218.82.0/23
63.218.84.0/22
63.218.88.0/23
63.218.90.0/23
63.218.92.0/22
63.218.95.26
63.218.96.0/22
63.219.0.0/20
63.219.16.133
63.219.177.250
63.220.0.0
63.220.1.56
63.220.49.220
63.221.0.0
63.221.138.114
63.221.143.21
63.222.0.0
63.223.0.0
63.223.109.43
63.223.109.57
63.223.114.
63.223.114.**
63.223.114.142
63.223.114.147
63.223.114.159
63.223.114.161
63.223.114.22
63.223.114.63
63.223.255.255
65.72.0.0/16
65.72.12.32
65.72.64.0/20
67.196.16.114
67.230.160.107
68.175.61.131
69.1.80.0/24
69.1.84.0/24
69.1.85.0/24
69.1.86.0/24
69.1.87.0/24
69.1.88.0/24
69.1.90.0/24
71.19.180.0/23
71.19.184.0/23
71.19.192.0/23
71.19.218.0/23
71.19.240.0/24
72.246.200.0/22
72.246.204.0/22
72.246.80.0/22
72.246.88.0/22
74.116.91.139
74.200.95.0/24
8.3.213.0
8.3.279.1
80.246.48.0/22
80.83.16.0/22
83.167.226.147
86.62.0.0/18
89.249.208.0/24
94.242.240.10
94.242.240.6
94.242.242.156
94.242.242.159
94.242.242.191
94.242.242.196
94.242.242.201
94.242.242.220
94.242.242.239
94.242.242.242
94.242.245.196
94.242.245.23
97.74.201.61
98.138.91.180
ad13.mta.exact.com
...
 
Sort by date Sort by votes
Can you not block in DIDR ranges?

206.161.0.0/16 for example?

I block 121.160.0.0/16 & 122.169.0.0/16 the Indian forum spammers ISP of choice, Airtel Broadband India to keep them off my forum and the "blogs" on my server.

Chris.

Indifference will be the downfall of mankind, but who cares?
Time flies like an arrow, however, fruit flies like a banana.
Webmaster Forum
 
Upvote 0 Downvote
You shouldn't have posted that list of IPs/email addresses if it contains real email addresses. Those can now be harvested by bots and those people will start to receive more spam.
 
Upvote 0 Downvote
Goombhwahoo: point taken. If there wewe a delete or edit option, I'd restrict the lidt to only IP' I know to beling to BTN.

One of the real addressss is actually mine. (I think the only one) It is set to forward, and due to a catch 22 in the password setting process, I cannot access it to turn off forwarding. ). It's a lost cause. Let them spam. The others have all veen spam sources or sources of mail that can't be turned off, so it doesn't matter if it is spammed to capicity. It's the IT equivalent of an infected appendix. There may be one other from an applicant who has persistently assailed us with threats and falsisied credentials. That is unfortunare and frankly unprofessional (on my side) but I can't lose too much sleep over his inbox.

Yes, Indian servers were an exasperating poblem. Captcha doesn't stop them on our contact form, and as the mail from the form comes from me, I can't filter them at the client level. I was able to block all mail originating from Indian url's surprisingly at the host server level. Since I cannot deal with Indian candidates and Indian clients are highly improvable, the collateral damage is welcome. (The loss of many applicants for whom we canor dind visas is a definite time saver)
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

dik
  • Locked
  • Question
Spam Messages 4
Replies
16
Views
178
AlissaStark
AlissaStark
MP2023
  • Locked
  • Question
Mail Server
Replies
0
Views
54
MP2023
MP2023
IcarusHallsorts
  • Locked
  • Question
Delaying a batch of emails in Outlook Drafts folder.
Replies
2
Views
119
IcarusHallsorts
IcarusHallsorts
corbinap
  • Locked
  • Question
Create a form for responses and send
Replies
0
Views
60
corbinap
corbinap
hikermann
  • Locked
  • Question
All I want to do is change my Thunderbird password
Replies
1
Views
67
pjw001
pjw001

Part and Inventory Search

Sponsor

Back
Top