Custom Search

Wednesday, July 27, 2016

Suspected Bot List [2016-07-26]

detection period: 2016-07-26 00:00-23:59 UTC
number of suspected bots' IPs listed here: 186

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2016-07-26]

detection period: 2016-07-26 00:00-23:59 UTC
total number of suspected botnet IPs: 1685
number of botnet IPs notified to network operators: 1499
number of spam blocked: 68610
recipient count of spam blocked: 69464

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1WASU265
2HINET-NET150
3SONET-NET129
4UNICOM-ZJ82
5VNPT-VNNIC-VN73
6UNICOM-JS49
7CHINANET-JS29
8BSNLNET26
9WASU-BB24
10BHARTI-IN21

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China557
2Taiwan286
3India139
4Viet Nam134
5Mexico54
6Iran42
7Turkey35
8Brazil34
9Peru33
10United States23

Tuesday, July 26, 2016

Suspected Bot List [2016-07-25]

detection period: 2016-07-25 00:00-23:59 UTC
number of suspected bots' IPs listed here: 82

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting: