Custom Search

Tuesday, June 30, 2015

Suspected Bot List [2015-06-29]

detection period: 2015-06-29 00:00-23:59 UTC
number of suspected bots' IPs listed here: 34

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-29]

detection period: 2015-06-29 00:00-23:59 UTC
total number of suspected botnet IPs: 1834
number of botnet IPs notified to network operators: 1800
number of spam blocked: 140593
recipient count of spam blocked: 3408525

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1035
2CHINANET-JS488
3CHINANET-GD24
4UNICOM-HB23
5VNPT-VNNIC-VN17
6CHINANET-JX9
7WASU8
8BSNLNET8
9WASU-BB7
10CHINANET-SH5

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1037
2China623
3Viet Nam28
4United States24
5Russian Federation21
6India12
7Brazil9
8France6
9Thailand5
10Hong Kong5

Monday, June 29, 2015

Suspected Bot List [2015-06-28]

detection period: 2015-06-28 00:00-23:59 UTC
number of suspected bots' IPs listed here: 18

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-28]

detection period: 2015-06-28 00:00-23:59 UTC
total number of suspected botnet IPs: 2030
number of botnet IPs notified to network operators: 2012
number of spam blocked: 131445
recipient count of spam blocked: 3352334

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1024
2CHINANET-JS758
3CHINANET-GD27
4UNICOM-HB22
5WASU7
6UNICOM-SD7
7WASU-BB6
8CMNET6
9CHINANET-HN5
10CHINANET-HB5

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1026
2China883
3United States17
4Russian Federation10
5Thailand8
6Brazil8
7Viet Nam7
8France6
9Argentina5
10South Korea4

Sunday, June 28, 2015

Suspected Bot List [2015-06-27]

detection period: 2015-06-27 00:00-23:59 UTC
number of suspected bots' IPs listed here: 26

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-27]

detection period: 2015-06-27 00:00-23:59 UTC
total number of suspected botnet IPs: 1424
number of botnet IPs notified to network operators: 1398
number of spam blocked: 145429
recipient count of spam blocked: 3373673

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET959
2CHINANET-JS264
3CHINANET-GD28
4VNPT-VNNIC-VN6
5CHINANET-SC5
6UNICOM-GD3
7ODS-VNNIC-VN3
8FR-OVH-201207063
9CMNET3
10CHINANET-HN3

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan960
2China336
3United States19
4Brazil14
5Viet Nam13
6Russian Federation9
7India8
8France7
9Ukraine5
10South Korea5

Saturday, June 27, 2015

Suspected Bot List [2015-06-26]

detection period: 2015-06-26 00:00-23:59 UTC
number of suspected bots' IPs listed here: 15

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
EG193.227.34.20Egypt

List from greylisting:

Botnet Statistics [2015-06-26]

detection period: 2015-06-26 00:00-23:59 UTC
total number of suspected botnet IPs: 1213
number of botnet IPs notified to network operators: 1198
number of spam blocked: 141518
recipient count of spam blocked: 3216649

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET961
2CHINANET-GD36
3UNICOM-BJ14
4UNICOM-HB12
5WASU11
6CHINANET-HN9
7ODS-VNNIC-VN8
8WASU-BB6
9CMNET6
10UNICOM-GD4

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan964
2China136
3United States24
4Viet Nam11
5Brazil10
6Thailand6
7Russian Federation6
8Germany5
9Ukraine4
10United Kingdom4

Friday, June 26, 2015

Suspected Bot List [2015-06-25]

detection period: 2015-06-25 00:00-23:59 UTC
number of suspected bots' IPs listed here: 26

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
EG193.227.34.20Egypt

List from greylisting:

Botnet Statistics [2015-06-25]

detection period: 2015-06-25 00:00-23:59 UTC
total number of suspected botnet IPs: 1944
number of botnet IPs notified to network operators: 1918
number of spam blocked: 131610
recipient count of spam blocked: 3271940

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1020
2CHINANET-JS669
3CHINANET-GD47
4UNICOM-BJ22
5CMNET7
6UNICOM-HB6
7UNICOM-SD4
8CHINANET-HN4
9ODS-VNNIC-VN3
10ERX-NETBLOCK3

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1026
2China793
3United States20
4Brazil12
5Viet Nam9
6Russian Federation8
7Ukraine7
8Argentina7
9Thailand5
10South Korea5

Thursday, June 25, 2015

Suspected Bot List [2015-06-24]

detection period: 2015-06-24 00:00-23:59 UTC
number of suspected bots' IPs listed here: 31

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-24]

detection period: 2015-06-24 00:00-23:59 UTC
total number of suspected botnet IPs: 1915
number of botnet IPs notified to network operators: 1884
number of spam blocked: 104196
recipient count of spam blocked: 2440087

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET795
2CHINANET-JS785
3CHINANET-GD34
4VNPT-VNNIC-VN23
5UNICOM-BJ20
6FPT-VN7
7CHINANET-JX7
8CMNET6
9UNICOM-HE5
10BSNLNET5

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China902
2Taiwan800
3Viet Nam44
4United States28
5Brazil15
6India12
7Ukraine9
8Germany9
9South Korea8
10Indonesia6

Wednesday, June 24, 2015

Suspected Bot List [2015-06-23]

detection period: 2015-06-23 00:00-23:59 UTC
number of suspected bots' IPs listed here: 28

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-23]

detection period: 2015-06-23 00:00-23:59 UTC
total number of suspected botnet IPs: 2048
number of botnet IPs notified to network operators: 2020
number of spam blocked: 179355
recipient count of spam blocked: 3546201

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1001
2CHINANET-JS809
3CHINANET-GD26
4UNICOM-BJ19
5CMNET6
6CHINANET-HN6
7UNICOM-SD5
8UNICOM-HE4
9GIANT4
10CHINANET-SH4

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1004
2China920
3United States20
4Russian Federation12
5Brazil11
6South Korea8
7Germany8
8Argentina7
9Viet Nam4
10Hong Kong4

Tuesday, June 23, 2015

Suspected Bot List [2015-06-22]

detection period: 2015-06-22 00:00-23:59 UTC
number of suspected bots' IPs listed here: 20

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-22]

detection period: 2015-06-22 00:00-23:59 UTC
total number of suspected botnet IPs: 1931
number of botnet IPs notified to network operators: 1911
number of spam blocked: 204652
recipient count of spam blocked: 3669874

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1019
2CHINANET-JS637
3CHINANET-GD30
4UNICOM-BJ22
5CHINANET-HN12
6VNPT-VNNIC-VN10
7CHINANET-YN10
8CMNET7
9CHINANET-SX6
10CHINANET-SC6

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1022
2China785
3United States21
4Viet Nam17
5Russian Federation11
6Brazil7
7Argentina6
8Ukraine5
9India5
10UNKNOWN4

Monday, June 22, 2015

Suspected Bot List [2015-06-21]

detection period: 2015-06-21 00:00-23:59 UTC
number of suspected bots' IPs listed here: 3

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-21]

detection period: 2015-06-21 00:00-23:59 UTC
total number of suspected botnet IPs: 1191
number of botnet IPs notified to network operators: 1188
number of spam blocked: 114553
recipient count of spam blocked: 3092194

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET936
2CHINANET-JS113
3CHINANET-GD17
4CHINANET-SN7
5CHINANET-HN7
6UNICOM-SD6
7GIANT5
8CHINANET-HB5
9UNICOM-SC4
10UNICOM-BJ4

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan938
2China216
3United States8
4Russian Federation6
5Brazil4
6Thailand3
7France2
8Germany2
9Argentina2
10Ukraine1

Sunday, June 21, 2015

Suspected Bot List [2015-06-20]

detection period: 2015-06-20 00:00-23:59 UTC
number of suspected bots' IPs listed here: 14

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-20]

detection period: 2015-06-20 00:00-23:59 UTC
total number of suspected botnet IPs: 1275
number of botnet IPs notified to network operators: 1261
number of spam blocked: 161059
recipient count of spam blocked: 3580592

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1063
2CHINANET-GD21
3CHINANET-JX9
4CHINANET-HN9
5CHINANET-YN8
6VNPT-VNNIC-VN6
7UNICOM-BJ6
8CHINANET-JS6
9UNICOM-SD5
10GIANT5

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1064
2China127
3Viet Nam10
4United States9
5Ukraine7
6India6
7Russian Federation5
8South Korea5
9Germany4
10Hong Kong3

Saturday, June 20, 2015

Suspected Bot List [2015-06-19]

detection period: 2015-06-19 00:00-23:59 UTC
number of suspected bots' IPs listed here: 12

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-19]

detection period: 2015-06-19 00:00-23:59 UTC
total number of suspected botnet IPs: 1231
number of botnet IPs notified to network operators: 1219
number of spam blocked: 168295
recipient count of spam blocked: 3562270

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1030
2CHINANET-GD28
3UNICOM-BJ14
4UNICOM-SD7
5CHINANET-JX7
6CHINANET-YN6
7UNICOM-GD5
8CHINANET-SX5
9CHINANET-JS5
10CHINANET-HN5

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1033
2China126
3United States13
4South Korea7
5Russian Federation5
6Brazil5
7Spain4
8Germany4
9Japan3
10Argentina3

Friday, June 19, 2015

Suspected Bot List [2015-06-18]

detection period: 2015-06-18 00:00-23:59 UTC
number of suspected bots' IPs listed here: 22

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-18]

detection period: 2015-06-18 00:00-23:59 UTC
total number of suspected botnet IPs: 1272
number of botnet IPs notified to network operators: 1250
number of spam blocked: 128498
recipient count of spam blocked: 3308306

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1040
2CHINANET-GD35
3CHINANET-HN12
4UNICOM-BJ11
5WASU-BB4
6VNPT-VNNIC-VN4
7UNICOM-GD4
8GIANT4
9CHINANET-YN4
10CHINANET-JX4

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1042
2China127
3United States17
4Viet Nam9
5Russian Federation9
6Brazil6
7United Kingdom5
8Spain5
9Italy4
10India4

Thursday, June 18, 2015

Suspected Bot List [2015-06-17]

detection period: 2015-06-17 00:00-23:59 UTC
number of suspected bots' IPs listed here: 46

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-17]

detection period: 2015-06-17 00:00-23:59 UTC
total number of suspected botnet IPs: 1376
number of botnet IPs notified to network operators: 1330
number of spam blocked: 129594
recipient count of spam blocked: 3360307

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET999
2CHINANET-GD57
3UNICOM-BJ11
4CHINANET-HN11
5WASU9
6VNPT-VNNIC-VN8
7CHINANET-JS8
8WASU-BB7
9CHINANET-LN7
10CHINANET-HB7

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1000
2China191
3India19
4United States18
5Viet Nam16
6Russian Federation16
7Argentina10
8Japan7
9Romania6
10Mexico6

Wednesday, June 17, 2015

Suspected Bot List [2015-06-16]

detection period: 2015-06-16 00:00-23:59 UTC
number of suspected bots' IPs listed here: 30

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
IL213.57.90.10Israel

List from greylisting:

Botnet Statistics [2015-06-16]

detection period: 2015-06-16 00:00-23:59 UTC
total number of suspected botnet IPs: 1445
number of botnet IPs notified to network operators: 1415
number of spam blocked: 144340
recipient count of spam blocked: 3769527

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1104
2CHINANET-GD54
3WASU8
4UNICOM-GD7
5UNICOM-BJ7
6WASU-BB6
7CMNET6
8CHINANET-SC6
9AR-TEAR7-LACNIC6
10broadNnet-KR5

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1106
2China162
3Russian Federation26
4Viet Nam16
5United States14
6South Korea11
7Brazil8
8Ukraine7
9India7
10Argentina7

Tuesday, June 16, 2015

Suspected Bot List [2015-06-15]

detection period: 2015-06-15 00:00-23:59 UTC
number of suspected bots' IPs listed here: 33

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
IL213.57.90.10Israel

List from greylisting:

Botnet Statistics [2015-06-15]

detection period: 2015-06-15 00:00-23:59 UTC
total number of suspected botnet IPs: 1410
number of botnet IPs notified to network operators: 1377
number of spam blocked: 123417
recipient count of spam blocked: 3350131

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1072
2CHINANET-GD48
3CHINANET-HN12
4UNICOM-BJ11
5VNPT-VNNIC-VN9
6WASU6
7UNICOM-GD6
8CHINANET-JS6
9WASU-BB5
10GIANT5

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1073
2China159
3Russian Federation34
4Viet Nam18
5United States17
6Brazil9
7Argentina9
8South Korea7
9India6
10Hong Kong6

Monday, June 15, 2015

Suspected Bot List [2015-06-14]

detection period: 2015-06-14 00:00-23:59 UTC
number of suspected bots' IPs listed here: 15

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-14]

detection period: 2015-06-14 00:00-23:59 UTC
total number of suspected botnet IPs: 1271
number of botnet IPs notified to network operators: 1256
number of spam blocked: 122410
recipient count of spam blocked: 3459660

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1080
2CHINANET-GD23
3CMNET8
4CHINANET-JS8
5UNICOM-GD7
6UNICOM-BJ6
7shinenet4
8ENZUINC-US-BLK164
9CHINANET-SC4
10CHINANET-HN4

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1080
2China96
3United States16
4Russian Federation15
5Brazil6
6Argentina5
7Viet Nam4
8Germany4
9Hong Kong3
10United Kingdom3

Sunday, June 14, 2015

Suspected Bot List [2015-06-13]

detection period: 2015-06-13 00:00-23:59 UTC
number of suspected bots' IPs listed here: 41

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-13]

detection period: 2015-06-13 00:00-23:59 UTC
total number of suspected botnet IPs: 1311
number of botnet IPs notified to network operators: 1270
number of spam blocked: 132371
recipient count of spam blocked: 3474755

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1036
2CHINANET-GD19
3UNICOM-BJ10
4CHINANET-HN9
5VNPT-VNNIC-VN8
6CMNET8
7UNICOM-GD7
8BSNLNET7
9CHINANET-JX6
10FPT-VN4

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1039
2China98
3Russian Federation22
4Viet Nam20
5United States20
6Brazil9
7India8
8Argentina6
9Mexico5
10Romania4

Saturday, June 13, 2015

Suspected Bots' IP List for June 2015

To encourage cyber security information sharing (as some form of open data) while still giving victims enough time to clean up their computers, the IP list of suspected infected computers will be released here (as shown below) 10 days after its respective botnet statistics gets published.

New data will be added here daily. You are free to use them to create more effective defenses, discover latest trends in cyber attacks, etc.

Suspected Bots IP [2015-06-30]
Suspected Bots IP [2015-06-29]
Suspected Bots IP [2015-06-28]
Suspected Bots IP [2015-06-27]
Suspected Bots IP [2015-06-26]
Suspected Bots IP [2015-06-25]
Suspected Bots IP [2015-06-24]
Suspected Bots IP [2015-06-23]
Suspected Bots IP [2015-06-22]
Suspected Bots IP [2015-06-21]
Suspected Bots IP [2015-06-20]
Suspected Bots IP [2015-06-19]
Suspected Bots IP [2015-06-18]
Suspected Bots IP [2015-06-17]
Suspected Bots IP [2015-06-16]
Suspected Bots IP [2015-06-15]
Suspected Bots IP [2015-06-14]
Suspected Bots IP [2015-06-13]
Suspected Bots IP [2015-06-12]
Suspected Bots IP [2015-06-11]
Suspected Bots IP [2015-06-10]
Suspected Bots IP [2015-06-09]
Suspected Bots IP [2015-06-07]
Suspected Bots IP [2015-06-06]
Suspected Bots IP [2015-06-05]
Suspected Bots IP [2015-06-04]
Suspected Bots IP [2015-06-03]
Suspected Bots IP [2015-06-02]
Suspected Bots IP [2015-06-01]

Suspected Bot List [2015-06-12]

detection period: 2015-06-12 00:00-23:59 UTC
number of suspected bots' IPs listed here: 41

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
IL213.57.90.10Israel

List from greylisting:

Botnet Statistics [2015-06-12]

detection period: 2015-06-12 00:00-23:59 UTC
total number of suspected botnet IPs: 1373
number of botnet IPs notified to network operators: 1332
number of spam blocked: 140770
recipient count of spam blocked: 3498666

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1024
2UNICOM-BJ32
3CHINANET-GD17
4VNPT-VNNIC-VN10
5UNICOM-GD9
6CHINANET-HN6
7KORNET-KR4
8CHINANET-SH4
9CHINANET-SC4
10CHINANET-JS4

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1032
2China115
3Russian Federation29
4United States25
5Viet Nam23
6Brazil17
7Argentina13
8Ukraine12
9Germany10
10South Korea7

Friday, June 12, 2015

Suspected Bot List [2015-06-11]

detection period: 2015-06-11 00:00-23:59 UTC
number of suspected bots' IPs listed here: 31

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-11]

detection period: 2015-06-11 00:00-23:59 UTC
total number of suspected botnet IPs: 1355
number of botnet IPs notified to network operators: 1324
number of spam blocked: 144265
recipient count of spam blocked: 3413270

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1039
2UNICOM-BJ31
3WASU-BB13
4WASU12
5CHINANET-GD11
6VNPT-VNNIC-VN7
7KORNET-KR7
8CMNET7
9CHINANET-HN7
10UNICOM-GD5

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1041
2China133
3Russian Federation25
4Viet Nam14
5United States11
6South Korea8
7India8
8Germany8
9Brazil8
10Argentina7

Thursday, June 11, 2015

Suspected Bot List [2015-06-10]

detection period: 2015-06-10 00:00-23:59 UTC
number of suspected bots' IPs listed here: 26

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-10]

detection period: 2015-06-10 00:00-23:59 UTC
total number of suspected botnet IPs: 1380
number of botnet IPs notified to network operators: 1354
number of spam blocked: 112028
recipient count of spam blocked: 2977882

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1063
2UNICOM-BJ21
3CHINANET-GD12
4UNICOM-GD10
5CHINANET-HN9
6WASU8
7UNICOM-SD7
8SOFTLAYER-4-67
9CHINANET-SH7
10CMNET6

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1069
2China134
3United States32
4Russian Federation14
5Brazil10
6India9
7Spain8
8Viet Nam7
9Japan7
10Indonesia7

Wednesday, June 10, 2015

Suspected Bot List [2015-06-09]

detection period: 2015-06-09 00:00-23:59 UTC
number of suspected bots' IPs listed here: 42

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-09]

detection period: 2015-06-09 00:00-23:59 UTC
total number of suspected botnet IPs: 1377
number of botnet IPs notified to network operators: 1335
number of spam blocked: 106431
recipient count of spam blocked: 2852918

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1055
2UNICOM-BJ27
3OCN11
4WASU10
5CHINANET-HN10
6VNPT-VNNIC-VN8
7UNICOM-GD7
8CHINANET-SC6
9AR-TEAR7-LACNIC6
10ERX-NETBLOCK5

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1055
2China110
3Russian Federation30
4United States25
5Viet Nam20
6Japan15
7Brazil9
8Argentina8
9India7
10Ukraine6

Monday, June 8, 2015

Suspected Bot List [2015-06-07]

detection period: 2015-06-07 00:00-23:59 UTC
number of suspected bots' IPs listed here: 37

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-07]

detection period: 2015-06-07 00:00-23:59 UTC
total number of suspected botnet IPs: 1338
number of botnet IPs notified to network operators: 1301
number of spam blocked: 90995
recipient count of spam blocked: 2691323

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1069
2UNICOM-BJ24
3CHINANET-GD9
4CHINANET-HN8
5AR-TEAR7-LACNIC5
6WASU-BB4
7WASU4
8IR-DCC-201010184
9BSNLNET4
10SOFTLAYER-4-83

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1072
2China76
3United States34
4Russian Federation26
5Argentina13
6Germany10
7India9
8Ukraine8
9Italy6
10Romania5

Sunday, June 7, 2015

Suspected Bot List [2015-06-06]

detection period: 2015-06-06 00:00-23:59 UTC
number of suspected bots' IPs listed here: 25

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-06]

detection period: 2015-06-06 00:00-23:59 UTC
total number of suspected botnet IPs: 1098
number of botnet IPs notified to network operators: 1073
number of spam blocked: 77511
recipient count of spam blocked: 2306978

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET891
2UNICOM-BJ14
3CHINANET-GD10
4VNPT-VNNIC-VN8
5CHINANET-JS6
6CHINANET-JX4
7CHINANET-HN4
8WEBSTREAM3
9VPS-UA3
10UNIFIEDLAYER-NETWORK-143

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan892
2China63
3United States24
4Russian Federation20
5Viet Nam15
6Germany10
7Brazil8
8India6
9Argentina5
10Ukraine4

Saturday, June 6, 2015

Botnet Statistics for May 2015

detection period: 2015-05-01 00:00 - 2015-05-31 23:59 UTC
total number of suspected botnet IPs: 37031
number of blocked spams: 3720622
recipient count of blocked spams: 111979716

The top 25 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan21975
2China4416
3United States2461
4Turkey600
5Russian Federation452
6Viet Nam430
7France425
8India402
9Mexico355
10Germany322
11Spain303
12United Kingdom271
13Canada258
14South Korea248
15Italy232
16Argentina192
17South Africa174
18Arab Emirates156
19Brazil154
20Ukraine141
21Australia127
22Romania118
23Colombia117
24Switzerland117
25Singapore113

The top 25 countries (as defined by the 2-character country code), ordered by number of blocked spams are:

RankCountry# of blocked spams
1Taiwan3410026
2China125235
3United States40992
4Brazil19118
5Indonesia12693
6Ivory Coast10954
7Saudi Arabia10402
8Malaysia10389
9Israel7730
10Poland6990
11Argentina6321
12United Kingdom5827
13Hong Kong5403
14Ukraine3981
15Mexico3274
16Serbia3270
17Thailand2964
18Bangladesh2896
19Colombia2872
20Viet Nam2853
21South Korea2824
22Ecuador2367
23South Africa2319
24Philippines2218
25Turkey1992

The top 25 countries (as defined by the 2-character country code), ordered by recipient count of blocked spams are:

Suspected Bot List [2015-06-05]

detection period: 2015-06-05 00:00-23:59 UTC
number of suspected bots' IPs listed here: 21

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-05]

detection period: 2015-06-05 00:00-23:59 UTC
total number of suspected botnet IPs: 1250
number of botnet IPs notified to network operators: 1229
number of spam blocked: 99596
recipient count of spam blocked: 2806259

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1036
2CHINANET-JS11
3CHINANET-GD11
4VNPT-VNNIC-VN7
5OCN6
6WASU-BB5
7WASU4
8PCCW-BIA4
9GIANT4
10CHINANET-HN4

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1039
2China70
3Viet Nam19
4United States16
5Russian Federation16
6Japan10
7Ukraine7
8Germany6
9South Korea5
10Mexico4

Friday, June 5, 2015

Suspected Bot List [2015-06-04]

detection period: 2015-06-04 00:00-23:59 UTC
number of suspected bots' IPs listed here: 25

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-04]

detection period: 2015-06-04 00:00-23:59 UTC
total number of suspected botnet IPs: 1227
number of botnet IPs notified to network operators: 1202
number of spam blocked: 153052
recipient count of spam blocked: 3058940

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1003
2CHINANET-GD15
3VNPT-VNNIC-VN11
4CHINANET-HN8
5WASU-BB7
6WASU7
7CHINANET-JX6
8UNICOM-GD5
9CHINANET-ZJ-HZ5
10UNICOM-SD4

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1007
2China81
3Russian Federation25
4Viet Nam17
5United States16
6Germany7
7Mexico4
8Japan4
9India4
10Kazakhstan3

Thursday, June 4, 2015

Suspected Bot List [2015-06-03]

detection period: 2015-06-03 00:00-23:59 UTC
number of suspected bots' IPs listed here: 10

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-03]

detection period: 2015-06-03 00:00-23:59 UTC
total number of suspected botnet IPs: 1219
number of botnet IPs notified to network operators: 1209
number of spam blocked: 90654
recipient count of spam blocked: 2512589

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1027
2CHINANET-GD27
3WASU-BB10
4WASU7
5UNICOM-GD6
6CHINANET-HN4
7033.530.486/0001-294
8UNICOM-SD3
9GIANT3
10UNICOM-HE2

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1027
2China88
3United States22
4Russian Federation9
5Brazil8
6Thailand4
7Japan4
8Germany4
9Ukraine3
10South Korea3

Wednesday, June 3, 2015

Suspected Bot List [2015-06-02]

detection period: 2015-06-02 00:00-23:59 UTC
number of suspected bots' IPs listed here: 54

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-02]

detection period: 2015-06-02 00:00-23:59 UTC
total number of suspected botnet IPs: 1395
number of botnet IPs notified to network operators: 1341
number of spam blocked: 95937
recipient count of spam blocked: 2752365

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1006
2VNPT-VNNIC-VN16
3WASU-BB13
4CHINANET-GD12
5CHINANET-HN7
6BSNLNET7
7AR-TEAR7-LACNIC7
8KORNET-KR5
9CHINANET-JS5
10WEBSTREAM4

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1007
2China69
3Russian Federation59
4United States37
5Viet Nam33
6India24
7Brazil14
8South Korea13
9Argentina12
10Turkey7

Tuesday, June 2, 2015

Suspected Bot List [2015-06-01]

detection period: 2015-06-01 00:00-23:59 UTC
number of suspected bots' IPs listed here: 40

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-06-01]

detection period: 2015-06-01 00:00-23:59 UTC
total number of suspected botnet IPs: 1268
number of botnet IPs notified to network operators: 1228
number of spam blocked: 86546
recipient count of spam blocked: 2572164

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET993
2CHINANET-GD11
3WASU9
4WASU-BB6
5CHINANET-HN5
6VNPT-VNNIC-VN4
7OCN4
8HGBLOCK-104
9AR-TEAR7-LACNIC4
10WEBSTREAM3

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan997
2China54
3Russian Federation31
4United States29
5India15
6Brazil13
7Viet Nam9
8Argentina9
9Germany8
10Kazakhstan7

Monday, June 1, 2015

Suspected Bot List [2015-05-31]

detection period: 2015-05-31 00:00-23:59 UTC
number of suspected bots' IPs listed here: 43

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

Botnet Statistics [2015-05-31]

detection period: 2015-05-31 00:00-23:59 UTC
total number of suspected botnet IPs: 1322
number of botnet IPs notified to network operators: 1279
number of spam blocked: 122900
recipient count of spam blocked: 3096847

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1HINET-NET1026
2CHINANET-GD22
3CHINANET-JS11
4OCN6
5CHINANET-HN6
6CHINANET-YN5
7CHINANET-SX5
8BSNLNET5
9WASU4
10VNPT-VNNIC-VN4

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Taiwan1029
2China82
3Russian Federation46
4United States14
5Viet Nam12
6India11
7Argentina11
8Japan8
9Iran6
10Turkey5