Custom Search

Sunday, September 25, 2016

Suspected Bot List [2016-09-24]

detection period: 2016-09-24 00:00-23:59 UTC
number of suspected bots' IPs listed here: 0

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2016-09-24]

detection period: 2016-09-24 00:00-23:59 UTC
total number of suspected botnet IPs: 1040
number of botnet IPs notified to network operators: 1040
number of spam blocked: 46180
recipient count of spam blocked: 1318051

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1009
2CHINANET-JS7
3UNICOM-NM5
4CHINANET-HB4
5CHINANET-AH4
6CHINANET-ZJ-NB2
7CHINANET-HN2
8CHINANET-HA2
9UNICOM-JX1
10MAINT-CHINANET-HA1

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1Taiwan1009
2China30
3Italy1

Saturday, September 24, 2016

Suspected Bot List [2016-09-23]

detection period: 2016-09-23 00:00-23:59 UTC
number of suspected bots' IPs listed here: 0

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting: