New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Need VPS with clean IP
This discussion has been closed.
Comments
I opted for Mailwizz as I already had a licence and I can add multiple sending servers and choose per account/campaign. As far as I can see from Mautic, you can only use one server. Great if you have a good list.
Check the IP _before _going through the hassle of setting everything up!
How to check if the IP is clean ?
For the most part you check their presence in the various blacklists and try to get a clear picture of how their neighborhood looks like. https://nerd.cesnet.cz/nerd/ips/ is pretty useful for that.
Hotmail/Outlook do their own thing with their blacklists which don't make sense and there is no reason behind it.
I can fire up a mail server on an unused IP, by used, I mean not used in 2+ years, since being assiged from the RIR, and it will be blocked, with the rest of the /24 firewall blocked from sending mail for those 2 years, so not based on neighbors.
But just Outlook domains.. Everywhere else is fine.
So don't rush to blame your VPS provider, it is definitely possible it was used to send SPAM in the past, but if it isn't blocked anywhere else, there is a good chance it is Hotmail/Outlook being normal.
you should check Tothost Vietnam (https://tothost.vn/). We have native IP, 100% Clean - Vietnam/ Asia Location.
That's a bit of a bold claim i fear: https://nerd.cesnet.cz/nerd/ips/?subnet=&hostname=&asn=AS45899&source_op=or&cat_op=or&bl_op=or&tag_op=or&sortby=rep&limit=20
Look like they use same ASN with Residential ASN , so they might have clean ip range but not asn
True, it would be better to have those ranges under a different ASN then though as those entries will still reflect badly on their other ranges. Those listings are pretty ugly after all.
You might wanna fix your site
Can you try with another browser? Our client still access normal. Let me know if you need something.
https://sitecheck.sucuri.net/results/https/tothost.vn
This is the problematic code beautified:
As you can see it's
eval
'ing a base-64-ed string. Pretty poor obfuscation. This is the code it's executing:This is executing javascript from
https://near.flyspecialline.com/eGRHSERSW
, which is heavily obfuscated this time.Do you know what this code is about?
A google search of that domain shows a number of wordpress-malware related things. Seems to be this: https://blog.sucuri.net/2023/04/balada-injector-synopsis-of-a-massive-ongoing-wordpress-malware-campaign.html
Your wordpress installation is likely backdoored and you should take immediate action. Customer data may be compromised.