Removing malicious subdomain

RIscRIpt · October 31, 2018, 4:01pm

Hello,

TL;DR I want to remove sudbomain dc-2b29a957b6fe.riscript.com which I didn’t create anywhere (domain registrar, vps hosting, or Cloudflare).

Full question

Is it possible to know which service (domain registrar, vps hosting, or Cloudflare) added the following subdomain to my domain riscript.com?

dc-ae1d815e-mail.riscript.com
dc-2b29a957b6fe.riscript.com

When I noticed that these subdomains exist I immediately added them to Cloudflare and now the first subdomain points to Cloudflare but the second one still reveals IP of my VPS.
As it reveals my real IP of my server, it makes it useless to use Cloudflare as a protection against (D)DoS.

These subdomains do not exist in the DNS manager of my VPS server. Neither I can find any evidence of existence of these domains in my domain registrar.

cs-cf · October 31, 2018, 4:52pm

Your DNS is being managed by Cloudflare. These values exist in the DNS control panel for Cloudflare.

You will also want to either remove your Mx record or host your mail somewhere other than your VPS. Cloudflare doesn’t proxy SMTP traffic.

system · November 30, 2018, 4:52pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
A subdomain exists that does not appear in my host cPanel or the CF DNS interface DNS & Network	11	2693	February 11, 2021
CloudFlare add some unexistings subdomains DNS & Network	3	563	October 25, 2023
DNS entries that are not in my cloudflare account are disturbing email service DNS & Network	2	379	December 29, 2023
Unwanted DNS "A" Records Keep Appearing DNS & Network	6	2343	August 14, 2021
Remove from Cloudflare DNS & Network	6	287	March 6, 2024

Removing malicious subdomain

Full question

Related topics