On 2022-06-29 13:14:58 +0000, Marc wrote: > Today I decided to spend some time getting all the ip's[1] (these > are all /24 thus you have to add 164.215.103.1-164.215.103.255) of > serverion, who is sending out constant stream of crap. I thought > about posting it here so you do not need to do this work. If you do > some random checks, you can see this looks weird[2]. Do as you > please with this info.
FYI, I'm rejecting them at the postfix level. Here are all the blocks from which I've received spam and blocked afterwards: # Serverion / Des Capital B.V. (2021-08 / 2022-05) 2.56.56.0/22 REJECT Blacklisted (SERVER-2-56-56-0 / Serverion BV, NL) 2.58.148.0/22 REJECT Blacklisted (SERVER-2-58-148-0 / Serverion BV, NL) 31.210.20.0/24 REJECT Blacklisted (SERVER-31-210-20-0 / Serverion BV, NL) 31.210.22.0/24 REJECT Blacklisted (SERVER-31-210-22-0 / Serverion BV, NL) 37.0.8.0/21 REJECT Blacklisted (SERVER-37-0-8/12-0 / Serverion BV, NL) 45.85.90.0/24 REJECT Blacklisted (SERVER-45-85-90-0 / Serverion BV, NL) 45.133.1.0/24 REJECT Blacklisted (SERVER-45-133-1-0 / Serverion BV, NL) 45.134.23.0/24 REJECT Blacklisted (SERVER-45-134-23-0 / Serverion BV, NL) 45.144.225.0/24 REJECT Blacklisted (SERVER-45-144-225-0 / Serverion BV, NL) 45.144.226.0/24 REJECT Blacklisted (SERVER-45-144-226-0 / Serverion BV, NL) 62.197.136.0/24 REJECT Blacklisted (SERVER-62-197-136-0 / Serverion BV, NL) 85.202.168.0/24 REJECT Blacklisted (SERVER-85-202-168-0 / Serverion BV, NL) 107.182.131.0/24 REJECT Blacklisted (Serverion LLC, DE) 136.144.41.0/24 REJECT Blacklisted (SERVER-136-144-41-0 / Serverion BV, NL) 185.102.170.0/23 REJECT Blacklisted (SERVER-185-102-170-0 / Serverion BV, NL) 185.239.242.0/24 REJECT Blacklisted (SERVER-185-239-242-0 / Serverion BV, NL) 193.233.182.0/24 REJECT Blacklisted (Serverion / Des Capital B.V., NL) 194.31.98.0/24 REJECT Blacklisted (SERVER-194-31-98-0 / Serverion BV, NL) 194.99.45.0/24 REJECT Blacklisted (SERVER-194-99-44-0 / Serverion BV, NL) 195.133.18.0/24 REJECT Blacklisted (US-DELIS-20210528 / Des Capital B.V., NL) 195.133.38.0/24 REJECT Blacklisted (Serverion, NL) 195.133.39.0/24 REJECT Blacklisted (Serverion, NL) 212.192.216.0/22 REJECT Blacklisted (Serverion, NL) 212.192.244.0/22 REJECT Blacklisted (Serverion, NL) I check the logs from time to time, and I haven't see any false positive (in the sense that the few logged data give a good indication of real spam). I have the same kind of things for DATACLUB, DigitalOcean, EONIX, LAYER-HOST, RootLayer and UCLOUD-NET (though spam from DATACLUB IPs seems to have stopped, and also almost for EONIX). -- Vincent Lefèvre <vinc...@vinc17.net> - Web: <https://www.vinc17.net/> 100% accessible validated (X)HTML - Blog: <https://www.vinc17.net/blog/> Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)
