Digital Ocean Inc. Is spamming my website.

Posted March 3, 2017 41.4k views

My google analytics shows 50+ visits per day to my website. Why are you guys running a bot to my website. Its messing up my analytics and I believe its an attempt from someone to mess with my seo / leech bandwidth. I have been forced to filter you from my analytics and ban all visitors from this service via htaccess…

I saw a post about someone else griping about the same thing from you guys....



These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Submit an Answer
5 answers

From a separate post from two years back:

ryanpq MOD April 7, 2015
If you are seeing visits where the ISP shows as DigitalOcean these are visits coming via another droplet in one of our data centers most likely. Several decent sized VPN services utilize our services so the most likely explanation is that you are getting visits from users using a public VPN service or someone running a crawler or bot on their droplet.

Post is here

  • It’s important to note that some people are running legitimate VPNs on their Droplets and use them to access the internet, so these visits are most likely harmless.

    @zachnewberry — if you believe that these visits are malicious and are intentionally harming your website/analytics, please send an email to with the relevant logs so that we can investigate.

    • I have forwarded proper logs.

    • Yeah “legitimate” my butt .. 221 visits in 7 days consistently from a state 300+ miles from our service radius. Harmless probably. but this still have NO business spamming my website. I want to see digital ocean resolve this. Its to hard to block considering the IP is consistently different… same location zone tho… same amount of time spent every visit. same everything.

      • I report DO hackers all the time. However, it doesn’t make sense they have different IP addresses. At least my droplet has a static IP. {Oh, and a good reason to behave yourself.)

        For a website, there is nothing wrong with blocking a VPS IP space entirely. If someone has a VPN on it, too bad for them. They can just drop their VPN. Note you go to and block the entire IP space. AWS is a little different. You need to retrieve their IP space in json format. I haven’t done google in a while, but you get their hosting via a SPF record. But just about everyone else can be found on or similar websites.

        My argument is there are no eyeballs in datacenters, VPS, etc. I don’t block DO because as a customer, I can complain about the hacking. But AWS, Linode, etc. are all blocked. Not only from port 80, but all email ports other than 25. This greatly reduces the chatter in the server logs.

        I have geographical blocking on all email other than port 25. I stop about 20 hackers a day. Not significant, but these IPs don’t need imap access.

        I maintain two ipfw tables. One for port 80 and all email other than 25. The other table doesn’t include port 80. For example, the University of Michigan tries to log into my imap server times a day. Could be hackers…could be research…they never answer my emails. So I block the University of Michigan from my email but not the web server.

      • I just got an internet security alert that an IP address to this company Digital Ocean hacked my business email. If they have been hitting your website that persistently it is likely they are at your email as well.

    • Why would I contact you if it is an IP address belonging to you that internet security identified as hacking my email??

Why is it that is displaying my logo, website copy and articles even after I have sent you a cease and Desist letter? Does this person work for you? Why is falsely claiming that they have worked in the fashion business or graphic design, displaying our articles and taking credit for someone else’s work?

This is a direct violation of dmca laws.

I’m getting unisolicited spam emails from Digital Ocean IP addresses all the time. Seems like this service provider is not doing anything to control their clients use of their (and my) resources.

Best just to have your firewall block all traffic from their IP addresses -

We’ve seen 4,000+ hits in the last thirty days. They are obviously providing service to bot/spider users.

We had to make sure we had “Exclude Known Bots” activated in our Google Analytics (It wasn’t). and I am working with our host dev team to exclude the ISP IP Addresses. Network Domain shows as the source.

same here… getting lots of records in Analytics from digitalocean llc based in Santa Clara 😣