Skip to content

Archives

Record for most blocked host on the ‘net

Published April 17, 2003

Wow. I think this is the most blocklist hits I’ve ever seen in a mail… the open relay 61.159.235.36 is listed in a whole 19 DNS blocklists.

  • T_RCVD_IN_DEADBEEF (0.0 points) RBL: T_RCVD_IN_DEADBEEF RBL A check: found 36.235.159.61.bl.deadbeef.com., type: 127.0.0.2
  • RCVD_IN_NJABL (1.2 points) RBL: Received via a relay in dnsbl.njabl.org RBL A check: found 36.235.159.61.dnsbl.njabl.org., type: 127.0.0.9
  • RCVD_IN_OSIRUSOFT_COM (0.5 points) RBL: Received via a relay in relays.osirusoft.com RBL A check: found 36.235.159.61.relays.osirusoft.com., type: 127.0.0.9
  • RCVD_IN_UNCONFIRMED_DSBL (0.0 points) RBL: Received via a relay in unconfirmed.dsbl.org RBL TXT check: found 36.235.159.61.unconfirmed.dsbl.org., type: http://dsbl.org/listing?ip=61.159.235.36
  • T_RCVD_IN_WIREHUB_PROXIES (0.0 points) RBL: T_RCVD_IN_WIREHUB_PROXIES RBL A check: found 36.235.159.61.proxies.blackholes.wirehub.net., type: 127.0.0.2
  • T_RCVD_IN_GIPPER (0.0 points) RBL: T_RCVD_IN_GIPPER RBL A check: found 36.235.159.61.proxy.bl.gweep.ca., type: 127.0.0.1
  • T_RCVD_IN_WIREHUB_BH (0.0 points) RBL: T_RCVD_IN_WIREHUB_BH RBL A check: found 36.235.159.61.blackholes.wirehub.net., type: 127.0.0.2
  • RCVD_IN_DSBL (4.3 points) RBL: Received via a relay in list.dsbl.org RBL TXT check: found 36.235.159.61.list.dsbl.org., type: http://dsbl.org/listing?ip=61.159.235.36
  • RCVD_IN_BL_SPAMCOP_NET (0.0 points) RBL: Received via a relay in bl.spamcop.net RBL TXT check: found 36.235.159.61.bl.spamcop.net., type: Blocked – see http://spamcop.net/bl.shtml?61.159.235.36
  • T_RCVD_IN_SORBS (0.0 points) RBL: T_RCVD_IN_SORBS RBL A check: found 36.235.159.61.dnsbl.sorbs.net., type: 127.0.0.2
  • RCVD_IN_SBL (1.1 points) RBL: Received via SBLed relay, see http://www.spamhaus.org/sbl/ RBL TXT check: found 36.235.159.61.sbl.spamhaus.org., type: Listed on SBL – see http://spamhaus.org/SBL/sbl.lasso?query=SBL5950
  • RCVD_IN_OPM (4.3 points) RBL: Received via a relay in opm.blitzed.org RBL TXT check: found 36.235.159.61.opm.blitzed.org., type: open proxy – see http://blitzed.org/proxy/?ip=61.159.235.36
  • T_RCVD_IN_OSSOCKS (0.0 points) RBL: T_RCVD_IN_OSSOCKS RBL A check: found 36.235.159.61.socks.relays.osirusoft.com., type: 127.0.0.9
  • T_RCVD_IN_MONKEYS_UPL (0.0 points) RBL: Received via a relay in proxies.relays.monkeys.com. RBL TXT check: found 36.235.159.61.proxies.relays.monkeys.com., type: BLOCKED: See http://www.monkeys.com/upl/listed-ip-0.cgi?ip=61.159.235.36
  • T_RCVD_IN_OPM_HTTP_CONNECT (0.0 points) RBL: T_RCVD_IN_OPM_HTTP_CONNECT
  • T_RCVD_IN_SORBS_HTTP (0.0 points) RBL: T_RCVD_IN_SORBS_HTTP
  • T_RCVD_IN_FIVETEN_SPAM (0.0 points) RBL: T_RCVD_IN_FIVETEN_SPAM

  • T_RCVD_IN_OPM_HTTP_POST (0.0 points) RBL: T_RCVD_IN_OPM_HTTP_POST

Aha. looking it up, it’s in China. That explains it… Full message here.