Custom Search

Sunday, January 31, 2016

Suspected Bot List [2016-01-30]

detection period: 2016-01-30 00:00-23:59 UTC
number of suspected bots' IPs listed here: 39

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AR190.115.50.42Argentina
IT185.26.197.13Italy
US104.129.60.132United States
US104.129.60.148United States
US104.129.60.159United States
US104.129.60.165United States
US104.129.62.7United States
US104.129.62.36United States
US104.129.62.102United States

List from greylisting:

country codeIP addressCountry
AE83.110.81.241Arab Emirates
AR181.14.245.234Argentina
AR190.7.9.194Argentina
AR190.19.203.28Argentina
AR200.41.178.234Argentina
BO186.27.126.130Bolivia
CM197.159.0.70Cameroon
CN202.108.255.216China
CR201.202.246.162Costa Rica
EG193.227.49.83Egypt
IL213.57.90.10Israel
IN61.1.66.19India
IN117.193.245.123India
IN117.204.22.246India
IN117.204.68.80India
IN117.218.13.66India
IN117.244.15.243India
IN117.247.12.11India
IN122.170.105.219India
IN122.252.236.6India
IN125.16.12.146India
IN180.211.126.178India
IN203.192.212.52India
IN203.194.109.142India
IN210.212.215.35India
IT185.26.197.13Italy
RU89.23.192.230Russian Federation
RU188.191.22.29Russian Federation
SO41.79.197.27Somalia
ZW41.220.28.138Zimbabwe

Botnet Statistics [2016-01-30]

detection period: 2016-01-30 00:00-23:59 UTC
total number of suspected botnet IPs: 558
number of botnet IPs notified to network operators: 520
number of spam blocked: 2910
recipient count of spam blocked: 58066

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1MX-MSCV17-LACNIC107
2CHINANET-GD26
3VNPT-VNNIC-VN20
4ALISOFT14
5002.558.157/0001-629
6BSNLNET8
7QUADRANET7
8MX-CTSC6-LACNIC7
9CHINANET-ZJ7
10CHINANET-SC7

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China125
2Mexico119
3Viet Nam41
4United States33
5Brazil33
6Russian Federation28
7India22
8Hong Kong14
9Taiwan10
10Indonesia8

Saturday, January 30, 2016

Suspected Bot List [2016-01-29]

detection period: 2016-01-29 00:00-23:59 UTC
number of suspected bots' IPs listed here: 58

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AR186.18.166.64Argentina
AR190.115.50.42Argentina
EG82.129.243.42Egypt
IT185.26.197.13Italy
US104.129.60.132United States
US104.129.60.148United States
US104.129.60.159United States
US104.129.60.165United States
US104.129.62.7United States
US104.129.62.36United States
US104.129.62.102United States

List from greylisting:

country codeIP addressCountry
AR181.14.245.234Argentina
AR186.138.81.32Argentina
AR200.41.178.234Argentina
AR201.235.24.41Argentina
BG217.18.249.186Bulgaria
BO186.27.126.130Bolivia
CM197.159.0.70Cameroon
CR201.202.246.162Costa Rica
CR201.203.219.188Costa Rica
DZ197.118.221.114Algeria
EG193.227.49.83Egypt
ES87.235.177.251Spain
IE212.78.241.13Ireland
IL213.57.90.10Israel
IN59.90.111.127India
IN59.95.88.97India
IN112.133.232.2India
IN117.212.161.58India
IN117.218.13.66India
IN117.244.15.243India
IN120.63.8.27India
IN122.163.126.125India
IN122.170.105.219India
IN122.179.87.240India
IN125.16.12.146India
IN180.211.126.178India
IN182.56.98.189India
IN182.77.13.105India
IN203.192.212.52India
IN203.194.109.142India
IT185.26.197.13Italy
PH122.53.178.100Philippines
PK58.27.242.204Pakistan
RO109.97.179.131Romania
RS89.216.26.243Serbia
RU89.23.192.230Russian Federation
TR109.235.251.130Turkey
US104.47.0.214United States
US104.47.0.247United States
US104.47.0.248United States
US104.47.1.234United States
US104.47.2.235United States
US104.47.2.241United States
US142.4.29.53United States
US157.56.112.245United States
US157.56.112.249United States
ZW41.220.28.138Zimbabwe

Botnet Statistics [2016-01-29]

detection period: 2016-01-29 00:00-23:59 UTC
total number of suspected botnet IPs: 641
number of botnet IPs notified to network operators: 584
number of spam blocked: 4548
recipient count of spam blocked: 80352

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1MX-MSCV17-LACNIC128
2VNPT-VNNIC-VN22
3CHINANET-GD15
4ALISOFT11
5MSFT9
6CHINANET-ZJ9
7MX-CTSC6-LACNIC8
8002.558.157/0001-628
9VIETEL-VN7
10QUADRANET7

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Mexico145
2China111
3Viet Nam54
4United States49
5Brazil38
6Russian Federation34
7India25
8Taiwan14
9Hong Kong13
10Poland10

Friday, January 29, 2016

Suspected Bot List [2016-01-28]

detection period: 2016-01-28 00:00-23:59 UTC
number of suspected bots' IPs listed here: 48

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AR186.18.166.64Argentina
US104.129.60.132United States
US104.129.60.148United States
US104.129.60.159United States
US104.129.60.165United States
US104.129.62.7United States
US104.129.62.36United States
US104.129.62.102United States

List from greylisting:

country codeIP addressCountry
AE83.110.142.61Arab Emirates
AL213.207.33.19Albania
AM5.77.163.218Armenia
AR181.14.245.234Argentina
AR190.177.166.243Argentina
AR200.41.178.234Argentina
BD113.11.75.249Bangladesh
BG78.90.2.109Bulgaria
BO186.27.126.130Bolivia
BO190.129.54.151Bolivia
CM197.159.0.70Cameroon
CR201.202.246.162Costa Rica
IL213.57.90.10Israel
IN59.90.111.127India
IN59.178.156.120India
IN61.2.163.57India
IN61.3.22.86India
IN61.12.81.54India
IN106.220.123.2India
IN110.227.246.37India
IN117.218.13.66India
IN117.218.50.134India
IN117.241.78.244India
IN117.244.15.243India
IN122.168.151.3India
IN125.16.12.146India
IN180.211.126.178India
IN182.71.25.102India
IN203.192.212.52India
IN203.194.109.142India
KZ213.157.45.74Kazakhstan
MN150.129.143.242Mongolia
PH122.53.178.100Philippines
PK39.37.144.94Pakistan
PY181.40.91.118Paraguay
RO109.100.245.104Romania
RU89.23.192.230Russian Federation
TR46.2.92.113Turkey
TR109.235.251.130Turkey
TR188.3.74.61Turkey

Botnet Statistics [2016-01-28]

detection period: 2016-01-28 00:00-23:59 UTC
total number of suspected botnet IPs: 637
number of botnet IPs notified to network operators: 589
number of spam blocked: 30250
recipient count of spam blocked: 300760

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1MX-MSCV17-LACNIC145
2CHINANET-GD36
3VNPT-VNNIC-VN19
4VIETEL-VN9
5MX-CTSC6-LACNIC9
6002.558.157/0001-628
7QUADRANET7
8MRHOSTBIZ-NET7
9CMNET7
10CHINANET-ZJ7

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Mexico162
2China128
3Viet Nam48
4United States38
5Brazil37
6Russian Federation31
7India26
8Turkey12
9Indonesia12
10South Korea11

Thursday, January 28, 2016

Suspected Bot List [2016-01-27]

detection period: 2016-01-27 00:00-23:59 UTC
number of suspected bots' IPs listed here: 173

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AR190.178.132.125Argentina
AR190.178.136.7Argentina
AR190.178.144.146Argentina
AR190.178.154.168Argentina
MX177.226.189.201Mexico
MX177.229.41.229Mexico
MX177.229.101.11Mexico
MX177.229.136.159Mexico
MX177.229.221.81Mexico
MX177.229.239.191Mexico
MX177.230.5.63Mexico
MX177.230.237.24Mexico
MX177.230.238.155Mexico
MX177.230.251.81Mexico
MX177.231.14.105Mexico
MX177.231.53.94Mexico
MX177.231.179.166Mexico
MX177.231.195.245Mexico
MX177.240.68.247Mexico
MX177.240.196.57Mexico
MX177.240.209.28Mexico
MX177.241.34.88Mexico
MX177.241.42.194Mexico
MX177.241.76.16Mexico
MX177.241.94.246Mexico
MX177.241.98.65Mexico
MX177.241.154.107Mexico
MX177.241.199.225Mexico
MX177.243.71.181Mexico
MX177.243.88.207Mexico
MX177.243.100.51Mexico
MX177.243.150.5Mexico
MX177.243.151.126Mexico
MX177.243.157.37Mexico
MX177.243.158.165Mexico
MX177.243.158.243Mexico
MX177.243.219.222Mexico
MX177.244.110.180Mexico
MX177.244.195.190Mexico
MX177.245.30.8Mexico
MX177.245.195.9Mexico
MX177.245.201.206Mexico
MX177.246.38.43Mexico
MX177.246.40.177Mexico
MX177.246.179.110Mexico
MX177.246.187.19Mexico
MX177.246.201.226Mexico
MX177.247.158.122Mexico
MX177.247.159.194Mexico
MX177.247.177.64Mexico
MX177.247.180.118Mexico
MX177.247.184.163Mexico
MX187.240.14.51Mexico
MX187.240.88.160Mexico
MX187.240.172.123Mexico
MX187.241.12.217Mexico
MX187.242.151.154Mexico
MX187.242.152.144Mexico
MX187.242.157.142Mexico
MX187.242.220.26Mexico
MX187.242.244.66Mexico
MX187.243.184.137Mexico
MX187.243.204.45Mexico
MX187.244.3.155Mexico
MX187.244.19.67Mexico
MX187.244.140.77Mexico
MX187.245.12.167Mexico
MX187.245.83.30Mexico
MX187.246.12.86Mexico
MX187.246.104.52Mexico
MX187.247.41.107Mexico
MX187.247.114.6Mexico
MX189.192.5.99Mexico
MX189.192.37.60Mexico
MX189.192.48.203Mexico
MX189.192.111.251Mexico
MX189.192.112.213Mexico
MX189.193.0.159Mexico
MX189.193.18.188Mexico
MX189.193.19.122Mexico
MX189.193.24.176Mexico
MX189.193.49.170Mexico
MX189.193.125.105Mexico
MX189.193.132.124Mexico
MX189.193.210.125Mexico
MX189.194.38.18Mexico
MX189.195.142.38Mexico
MX189.195.204.253Mexico
MX189.196.55.12Mexico
MX189.196.55.88Mexico
MX189.196.66.11Mexico
MX189.196.66.115Mexico
MX189.196.137.209Mexico
MX189.197.0.35Mexico
MX189.197.3.170Mexico
MX189.197.22.247Mexico
MX189.197.23.0Mexico
MX189.197.28.189Mexico
MX189.197.34.162Mexico
MX189.198.2.59Mexico
MX189.198.3.94Mexico
MX189.198.16.28Mexico
MX189.198.18.74Mexico
MX189.198.18.93Mexico
MX189.198.118.188Mexico
MX189.198.118.192Mexico
MX189.198.118.200Mexico
MX189.198.118.216Mexico
MX189.198.120.159Mexico
MX189.198.161.205Mexico
MX189.198.189.169Mexico
MX189.199.26.223Mexico
MX189.199.34.213Mexico
MX189.199.63.25Mexico
MX200.77.83.235Mexico
MX200.77.99.164Mexico
MX200.92.17.117Mexico
MX200.92.19.112Mexico
MX200.92.59.22Mexico
MX200.92.68.194Mexico
MX200.92.77.231Mexico
MX200.92.91.161Mexico
MX200.92.101.177Mexico
MX200.92.121.25Mexico
MX200.92.124.112Mexico
MX200.92.151.197Mexico
MX200.92.190.211Mexico
MX200.92.222.16Mexico
MX201.132.231.24Mexico
MX201.164.12.248Mexico
MX201.164.52.145Mexico
MX201.164.200.124Mexico
MX201.164.202.227Mexico
MX201.164.208.82Mexico
MX201.164.210.191Mexico
MX201.164.215.72Mexico
MX201.164.252.22Mexico
MX201.164.255.74Mexico
MX201.165.244.26Mexico
MX201.165.244.52Mexico
US104.129.60.132United States
US104.129.60.165United States
US104.129.62.7United States
US104.129.62.36United States
US104.129.62.102United States

List from greylisting:

country codeIP addressCountry
AR181.14.245.234Argentina
AR200.41.178.234Argentina
BO186.27.126.130Bolivia
CI41.66.25.176Ivory Coast
CR201.202.246.162Costa Rica
EG193.227.49.83Egypt
ES87.235.177.251Spain
IL213.57.90.10Israel
IN59.92.232.81India
IN103.15.82.21India
IN117.212.131.94India
IN117.218.13.66India
IN117.218.50.134India
IN117.221.192.77India
IN117.244.15.243India
IN122.160.196.214India
IN122.161.184.66India
IN122.170.105.219India
IN122.177.72.102India
IN125.16.12.146India
IN180.211.126.178India
IN203.192.212.52India
IN203.194.109.142India
MN150.129.142.85Mongolia
PH122.53.178.100Philippines
RU89.23.192.230Russian Federation
US192.185.149.105United States
US198.57.213.93United States

Botnet Statistics [2016-01-27]

detection period: 2016-01-27 00:00-23:59 UTC
total number of suspected botnet IPs: 661
number of botnet IPs notified to network operators: 488
number of spam blocked: 30724
recipient count of spam blocked: 360018

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1MX-MSCV17-LACNIC136
2CHINANET-GD35
3VNPT-VNNIC-VN19
4MX-CTSC6-LACNIC10
5HINET-NET9
6CHINANET-ZJ9
7002.558.157/0001-629
8CMNET8
9ALISOFT7
10MRHOSTBIZ-NET6

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Mexico151
2China143
3United States48
4Russian Federation39
5Viet Nam38
6Brazil36
7India28
8Taiwan14
9Hong Kong13
10South Korea11

Wednesday, January 27, 2016

Suspected Bot List [2016-01-26]

detection period: 2016-01-26 00:00-23:59 UTC
number of suspected bots' IPs listed here: 32

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AR190.178.136.178Argentina
AR190.178.143.200Argentina
MX200.92.95.183Mexico
US104.129.60.132United States
US104.129.60.148United States
US104.129.60.159United States
US104.129.60.165United States
US104.129.62.7United States
US104.129.62.36United States
US104.129.62.102United States

List from greylisting:

country codeIP addressCountry
AR181.14.245.234Argentina
AR200.41.178.234Argentina
BG78.90.2.109Bulgaria
BO186.27.126.130Bolivia
CR201.202.246.162Costa Rica
DZ197.119.24.82Algeria
EG193.227.49.83Egypt
IL213.57.90.10Israel
IN110.225.191.97India
IN120.61.54.153India
IN120.61.208.225India
IN125.16.12.146India
IN182.65.253.8India
IN203.192.212.52India
IN203.194.109.142India
KZ92.46.30.210Kazakhstan
MX187.244.221.21Mexico
PH122.53.178.100Philippines
PR24.139.144.253Puerto Rico
RO86.34.170.206Romania
RU89.23.192.230Russian Federation
ZW41.220.28.138Zimbabwe

Botnet Statistics [2016-01-26]

detection period: 2016-01-26 00:00-23:59 UTC
total number of suspected botnet IPs: 377
number of botnet IPs notified to network operators: 345
number of spam blocked: 32660
recipient count of spam blocked: 358073

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-GD21
2VNPT-VNNIC-VN17
3QUADRANET7
4HINET-NET6
5CMNET6
6CHINANET-SC6
7FPT-VN5
8CHINANET-ZJ5
9ALISOFT5
10002.558.157/0001-625

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China99
2United States44
3Viet Nam34
4Brazil29
5Russian Federation24
6India13
7Taiwan11
8Colombia8
9Kazakhstan7
10Hong Kong7

Tuesday, January 26, 2016

Suspected Bot List [2016-01-25]

detection period: 2016-01-25 00:00-23:59 UTC
number of suspected bots' IPs listed here: 28

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AR190.115.50.42Argentina
AR190.178.136.178Argentina
AR190.178.151.153Argentina
MO60.246.234.187Macau
US104.129.60.132United States
US104.129.60.148United States
US104.129.60.159United States
US104.129.60.165United States
US104.129.62.7United States
US104.129.62.36United States
US104.129.62.102United States

List from greylisting:

country codeIP addressCountry
AM212.34.244.55Armenia
AR24.232.242.243Argentina
AR190.182.234.95Argentina
AR190.185.238.30Argentina
AZ95.86.185.91Azerbaijan
IN117.199.168.136India
IN122.162.136.97India
IN182.65.171.0India
IN182.68.159.88India
MX177.243.146.100Mexico
MX177.244.194.82Mexico
MX200.92.91.161Mexico
PH49.146.198.140Philippines
RO92.85.185.47Romania
RO109.98.8.76Romania
RO109.98.160.103Romania
RU89.23.192.230Russian Federation

Botnet Statistics [2016-01-25]

detection period: 2016-01-25 00:00-23:59 UTC
total number of suspected botnet IPs: 257
number of botnet IPs notified to network operators: 229
number of spam blocked: 30943
recipient count of spam blocked: 346342

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1VNPT-VNNIC-VN41
2CHINANET-GD15
3ETC-VNNIC-VN9
4FPT-VN8
5QUADRANET7
6HINET-NET6
7VIETEL-VN5
8ALISOFT5
9005.200.140/0001-275
10VIETEL-VNNIC-VN4

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Viet Nam77
2China39
3United States21
4Brazil14
5Taiwan11
6Ukraine8
7Mexico8
8Argentina7
9Russian Federation6
10Romania6

Monday, January 25, 2016

Suspected Bot List [2016-01-24]

detection period: 2016-01-23 00:00-24:59 UTC
number of suspected bots' IPs listed here: 20

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AR190.115.50.42Argentina
TR195.244.57.182Turkey
US104.129.60.132United States
US104.129.60.148United States
US104.129.60.159United States
US104.129.60.165United States
US104.129.62.7United States
US104.129.62.36United States
US104.129.62.102United States

List from greylisting:

country codeIP addressCountry
AR179.41.164.251Argentina
AR181.23.132.84Argentina
AR186.18.8.51Argentina
AR190.210.131.50Argentina
CA184.107.73.206Canada
GE5.178.179.139Republic Of Georgia
IN182.58.212.28India
IN182.74.87.153India
MX187.244.164.65Mexico
RU89.23.192.230Russian Federation
UA193.107.128.111Ukraine

Botnet Statistics [2016-01-24]

detection period: 2016-01-24 00:00-23:59 UTC
total number of suspected botnet IPs: 198
number of botnet IPs notified to network operators: 178
number of spam blocked: 30503
recipient count of spam blocked: 339753

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1VNPT-VNNIC-VN18
2CHINANET-GD15
3QUADRANET7
4TFN-NET5
5FPT-VN5
6HINET-NET4
7CHINANET-JS4
8ALISOFT4
9005.200.140/0001-274
10GIANT3

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China52
2Viet Nam33
3United States18
4Taiwan14
5Russian Federation11
6Brazil7
7Argentina6
8Indonesia5
9Turkey4
10Mexico4

Sunday, January 24, 2016

Suspected Bot List [2016-01-23]

detection period: 2016-01-23 00:00-23:59 UTC
number of suspected bots' IPs listed here: 25

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AR190.115.50.42Argentina
MO60.246.234.187Macau
TR195.244.57.182Turkey
US104.129.60.132United States
US104.129.60.148United States
US104.129.60.159United States
US104.129.60.165United States
US104.129.62.7United States
US104.129.62.36United States
US104.129.62.102United States

List from greylisting:

country codeIP addressCountry
AR190.178.199.181Argentina
IN59.91.19.181India
IN59.94.138.81India
IN59.178.167.208India
IN106.206.128.24India
IN117.196.191.71India
IN117.205.154.98India
IN122.165.214.119India
IN122.173.130.90India
IN182.68.65.14India
MX187.244.103.25Mexico
PK39.45.180.48Pakistan
PK115.186.188.155Pakistan
RS188.2.228.67Serbia
RU89.23.192.230Russian Federation

Botnet Statistics [2016-01-23]

detection period: 2016-01-23 00:00-23:59 UTC
total number of suspected botnet IPs: 276
number of botnet IPs notified to network operators: 251
number of spam blocked: 10383
recipient count of spam blocked: 143051

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1VNPT-VNNIC-VN32
2ETC-VNNIC-VN12
3VIETEL-VN11
4CHINANET-GD11
5FPT-VN10
6VIETEL-VNNIC-VN7
7QUADRANET7
8IPxDSL-NET7
9OVH-ARIN-76
10005.200.140/0001-275

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Viet Nam87
2China57
3United States18
4India16
5Taiwan11
6Brazil11
7France10
8Canada8
9Turkey7
10Russian Federation7

Saturday, January 23, 2016

Suspected Bot List [2016-01-22]

detection period: 2016-01-22 00:00-23:59 UTC
number of suspected bots' IPs listed here: 61

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AR186.138.82.251Argentina
CA167.114.215.61Canada
MO60.246.234.187Macau
US104.129.60.132United States
US104.129.60.148United States
US104.129.60.159United States
US104.129.60.165United States
US104.129.62.7United States
US104.129.62.36United States
US104.129.62.102United States

List from greylisting:

country codeIP addressCountry
AE217.165.244.65Arab Emirates
AR181.16.19.103Argentina
AR181.21.153.44Argentina
AR181.164.136.169Argentina
AR190.19.126.229Argentina
AR201.251.59.30Argentina
AZ91.135.246.191Azerbaijan
CG197.157.255.194Republic of the Congo
DZ105.104.200.202Algeria
DZ105.106.117.55Algeria
ES87.235.177.251Spain
ET213.55.105.102Ethiopia
IN59.95.144.20India
IN59.178.61.217India
IN61.3.104.126India
IN110.227.250.225India
IN117.198.44.159India
IN117.199.172.116India
IN117.205.9.104India
IN117.208.250.220India
IN117.213.106.162India
IN117.213.168.118India
IN117.223.200.212India
IN122.169.42.248India
IN122.170.193.148India
IN122.173.223.233India
IN122.180.174.212India
IN122.180.226.17India
IN202.62.72.210India
IN203.217.145.132India
IN223.176.39.148India
KG91.192.66.141Kyrgyzstan
KZ2.132.83.59Kazakhstan
MA196.12.226.220Morocco
MN49.0.187.130Mongolia
MN122.201.31.195Mongolia
MX177.229.105.126Mexico
PH110.55.0.246Philippines
PH124.104.131.192Philippines
PH124.107.13.78Philippines
PK39.47.193.233Pakistan
PK39.52.193.66Pakistan
PK182.178.248.92Pakistan
RO109.100.0.145Romania
RO109.102.172.36Romania
RU89.23.192.230Russian Federation
TW123.194.104.23Taiwan
UA193.107.128.111Ukraine
US142.4.29.53United States
US198.154.245.70United States
US216.172.173.36United States

Botnet Statistics [2016-01-22]

detection period: 2016-01-22 00:00-23:59 UTC
total number of suspected botnet IPs: 392
number of botnet IPs notified to network operators: 331
number of spam blocked: 3172
recipient count of spam blocked: 62500

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1VNPT-VNNIC-VN59
2CHINANET-GD15
3BSNLNET9
4VIETEL-VN8
5QUADRANET7
6FPT-VN7
7ALISOFT7
8VIETEL-VNNIC-VN6
9HINET-NET5
10ETC-VNNIC-VN5

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Viet Nam91
2China65
3India29
4United States28
5Brazil22
6Taiwan15
7Mexico10
8Turkey9
9Russian Federation8
10Romania8

Friday, January 22, 2016

Suspected Bot List [2016-01-21]

detection period: 2016-01-21 00:00-23:59 UTC
number of suspected bots' IPs listed here: 19

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AR186.138.82.251Argentina
US104.129.60.132United States
US104.129.60.148United States
US104.129.60.159United States
US104.129.60.165United States
US104.129.62.7United States
US104.129.62.36United States
US104.129.62.102United States

List from greylisting:

country codeIP addressCountry
AL213.207.33.19Albania
AR186.61.46.83Argentina
CM197.159.0.70Cameroon
ES87.235.177.251Spain
IN122.176.16.64India
MO27.109.207.222Macau
MX189.192.5.99Mexico
PK210.2.151.226Pakistan
RU89.23.192.230Russian Federation
TR195.87.6.82Turkey
US162.144.37.189United States

Botnet Statistics [2016-01-21]

detection period: 2016-01-21 00:00-23:59 UTC
total number of suspected botnet IPs: 204
number of botnet IPs notified to network operators: 185
number of spam blocked: 2755
recipient count of spam blocked: 59464

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-GD24
2FR-OVH-2015052210
3QUADRANET7
4OVH-ARIN-76
5ALISOFT6
6CHINANET-SN5
7MSFT-GFS4
8GIANT4
9CHINANET-SC4
10CHINANET-HA4

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China81
2United States32
3France12
4Russian Federation9
5Canada8
6Taiwan7
7Hong Kong5
8Turkey4
9Mexico4
10Viet Nam3

Thursday, January 21, 2016

Suspected Bot List [2016-01-20]

detection period: 2016-01-20 00:00-23:59 UTC
number of suspected bots' IPs listed here: 35

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AR186.138.82.251Argentina
UY167.57.15.195Uruguay

List from greylisting:

country codeIP addressCountry
AE217.165.122.176Arab Emirates
AL80.78.78.131Albania
AL213.207.33.19Albania
AR181.27.181.242Argentina
AR190.105.90.200Argentina
CA184.107.162.10Canada
CM197.159.0.70Cameroon
CU200.55.139.82Cuba
ES87.235.177.251Spain
IN117.196.166.88India
IN117.208.45.18India
IN117.211.160.45India
IN117.220.7.79India
IN122.160.80.4India
IN122.173.44.74India
IN182.59.95.249India
IN182.64.175.56India
IN202.63.100.229India
KH117.20.113.21Cambodia
MX177.243.150.5Mexico
MX177.246.40.177Mexico
MX177.247.157.65Mexico
MX187.243.121.118Mexico
MX189.195.119.135Mexico
MX189.199.32.9Mexico
PK39.47.56.65Pakistan
PK39.48.91.82Pakistan
PK39.49.86.143Pakistan
PK182.185.233.114Pakistan
RS178.148.71.165Serbia
RU89.23.192.230Russian Federation
TR94.78.83.137Turkey
TR213.142.146.29Turkey

Botnet Statistics [2016-01-20]

detection period: 2016-01-20 00:00-23:59 UTC
total number of suspected botnet IPs: 461
number of botnet IPs notified to network operators: 426
number of spam blocked: 1830
recipient count of spam blocked: 37061

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-AH52
2UNICOM-AH41
3CHINANET-HB39
4CHINANET-ZJ36
5VNPT-VNNIC-VN33
6CHINANET-GD20
7CHINANET-SC16
8VIETEL-VNNIC-VN9
9FPT-VN8
10CHINANET-ZJ-JH8

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China251
2Viet Nam60
3United States17
4Mexico13
5India13
6Taiwan11
7Russian Federation10
8Canada7
9Indonesia6
10Ukraine5

Wednesday, January 20, 2016

Suspected Bot List [2016-01-19]

detection period: 2016-01-19 00:00-23:59 UTC
number of suspected bots' IPs listed here: 22

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AR186.138.82.251Argentina
UY167.56.5.27Uruguay
UY167.57.10.10Uruguay

List from greylisting:

country codeIP addressCountry
AL213.207.33.19Albania
AR191.81.53.176Argentina
CA184.107.162.10Canada
CM197.159.0.70Cameroon
CY213.149.185.212Cyprus
CZ217.198.113.97Czech Republic
DE80.153.14.197Germany
IN117.247.176.93India
IN117.253.137.152India
IN120.56.255.196India
IN120.61.201.239India
IN122.168.67.59India
MX201.164.57.166Mexico
PK39.35.119.57Pakistan
RU89.23.192.230Russian Federation
TR188.3.121.28Turkey
TR213.142.146.29Turkey
UA193.192.37.70Ukraine
UY201.217.138.67Uruguay

Botnet Statistics [2016-01-19]

detection period: 2016-01-19 00:00-23:59 UTC
total number of suspected botnet IPs: 623
number of botnet IPs notified to network operators: 601
number of spam blocked: 2903
recipient count of spam blocked: 49955

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-AH128
2CHINANET-ZJ80
3UNICOM-AH61
4CHINANET-ZJ-JH60
5CHINANET-HB55
6CHINANET-GD40
7CHINANET-SC21
8HINET-NET8
9NL-BARKAR-201509077
10GIANT5

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China489
2United States16
3Russian Federation15
4Viet Nam12
5Taiwan11
6Netherlands8
7Mexico7
8India7
9Hong Kong6
10Brazil6

Tuesday, January 19, 2016

Suspected Bot List [2016-01-18]

detection period: 2016-01-18 00:00-23:59 UTC
number of suspected bots' IPs listed here: 36

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
IL213.57.90.10Israel
US104.129.60.132United States
US104.129.60.148United States
US104.129.60.159United States
US104.129.60.165United States
US104.129.62.7United States
US104.129.62.36United States
US104.129.62.102United States

List from greylisting:

country codeIP addressCountry
AL213.207.33.19Albania
AR181.23.22.249Argentina
AR186.18.184.225Argentina
AR190.55.213.33Argentina
AR201.231.175.174Argentina
CA184.107.162.10Canada
CM197.159.0.70Cameroon
CN59.38.97.5China
ES87.235.177.251Spain
IN27.4.217.85India
IN117.216.11.198India
IN117.221.150.193India
IN117.222.126.32India
IN117.223.227.98India
IN120.63.213.52India
IN122.161.187.85India
IN122.178.209.228India
IN150.129.130.188India
IN210.89.56.226India
IR212.33.205.183Iran
MX148.240.33.5Mexico
PK39.33.251.20Pakistan
RU89.23.192.230Russian Federation
RU188.75.198.157Russian Federation
TR188.3.33.60Turkey
TR188.3.201.54Turkey
UA193.192.37.70Ukraine
UY201.217.138.67Uruguay

Botnet Statistics [2016-01-18]

detection period: 2016-01-18 00:00-23:59 UTC
total number of suspected botnet IPs: 284
number of botnet IPs notified to network operators: 248
number of spam blocked: 4408
recipient count of spam blocked: 6032

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-GD34
2VNPT-VNNIC-VN18
3MSFT14
4QUADRANET7
5VIETEL-VNNIC-VN6
6MSFT-GFS6
7CHINANET-JS6
8VIETEL-VN5
9FPT-VN5
10UNICOM-SX4

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China90
2Viet Nam41
3United States39
4India15
5Russian Federation14
6Brazil12
7Turkey8
8Iran7
9Ukraine6
10Argentina5

Monday, January 18, 2016

Suspected Bot List [2016-01-17]

detection period: 2016-01-17 00:00-23:59 UTC
number of suspected bots' IPs listed here: 22

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
US104.129.60.132United States
US104.129.60.148United States
US104.129.60.159United States
US104.129.60.165United States
US104.129.62.7United States
US104.129.62.36United States
US104.129.62.102United States

List from greylisting:

country codeIP addressCountry
AL213.207.33.19Albania
AR181.169.79.145Argentina
AR190.178.79.136Argentina
CA184.107.162.10Canada
CM197.159.0.70Cameroon
IN59.99.128.105India
IN116.74.65.99India
IN117.248.4.251India
IN121.243.210.219India
IN122.160.154.35India
IN182.68.213.33India
MX177.230.238.240Mexico
RU89.23.192.230Russian Federation
TR213.142.146.29Turkey
UA193.192.37.70Ukraine

Botnet Statistics [2016-01-17]

detection period: 2016-01-17 00:00-23:59 UTC
total number of suspected botnet IPs: 247
number of botnet IPs notified to network operators: 225
number of spam blocked: 3987
recipient count of spam blocked: 5222

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1VNPT-VNNIC-VN52
2CHINANET-GD15
3FPT-VN14
4VIETEL-VN8
5QUADRANET7
6ETC-VNNIC-VN6
7VIETEL-VNNIC-VN4
8ALISOFT4
9MX-CTSC6-LACNIC3
10CHINANET-SC3

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Viet Nam92
2China48
3United States22
4India10
5Russian Federation8
6Ukraine7
7Poland6
8Brazil6
9Mexico5
10Iran4

Sunday, January 17, 2016

Suspected Bot List [2016-01-16]

detection period: 2016-01-16 00:00-23:59 UTC
number of suspected bots' IPs listed here: 47

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AR186.138.82.251Argentina
CA167.114.215.61Canada
NL83.162.216.214Netherlands
PK116.90.109.37Pakistan
US104.129.60.132United States
US104.129.60.148United States
US104.129.60.159United States
US104.129.60.165United States
US104.129.62.7United States
US104.129.62.36United States
US104.129.62.102United States
UY167.56.166.70Uruguay
UY167.57.55.65Uruguay

List from greylisting:

country codeIP addressCountry
AL213.207.33.19Albania
AR181.166.108.171Argentina
AR186.138.230.9Argentina
AR190.177.150.105Argentina
AR190.246.233.16Argentina
AR200.49.156.98Argentina
CA184.107.162.10Canada
CM197.159.0.70Cameroon
GB5.68.214.175United Kingdom
GE92.51.116.28Republic Of Georgia
IN27.4.7.41India
IN59.92.67.26India
IN59.176.125.51India
IN117.55.242.134India
IN117.194.148.71India
IN117.214.165.221India
IN117.241.232.179India
IN117.246.255.134India
IN117.253.186.91India
IN117.255.224.45India
IN121.246.34.234India
IN122.163.154.130India
IN122.164.210.223India
IN122.176.179.152India
IN125.16.41.9India
IN202.142.70.129India
IN202.142.73.182India
KZ2.132.85.85Kazakhstan
ME178.175.49.40Montenegro
MX177.241.75.183Mexico
MX187.177.172.13Mexico
MX189.192.49.103Mexico
RO109.98.161.6Romania
UA193.192.37.70Ukraine

Botnet Statistics [2016-01-16]

detection period: 2016-01-16 00:00-23:59 UTC
total number of suspected botnet IPs: 336
number of botnet IPs notified to network operators: 289
number of spam blocked: 8511
recipient count of spam blocked: 116768

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1VNPT-VNNIC-VN45
2CHINANET-GD17
3FPT-VN14
4ETC-VNNIC-VN8
5ALISOFT8
6VIETEL-VNNIC-VN7
7QUADRANET7
8BSNLNET7
9VIETEL-VN6
10AR-CASA10-LACNIC5

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Viet Nam87
2China69
3United States26
4India24
5Russian Federation18
6Brazil12
7Ukraine8
8Mexico7
9Indonesia7
10Taiwan6

Saturday, January 16, 2016

Suspected Bot List [2016-01-15]

detection period: 2016-01-15 00:00-23:59 UTC
number of suspected bots' IPs listed here: 29

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
PK116.90.109.37Pakistan
US104.129.60.132United States

List from greylisting:

country codeIP addressCountry
AL213.207.33.19Albania
AR181.14.172.187Argentina
AR190.178.5.98Argentina
AR200.49.156.98Argentina
AR200.82.76.26Argentina
BO190.129.184.219Bolivia
CM197.159.0.70Cameroon
CZ217.198.113.97Czech Republic
DE79.133.50.70Germany
ES87.235.177.251Spain
ES95.61.54.136Spain
IN59.93.5.199India
IN117.201.212.186India
IN117.208.2.64India
IN122.174.46.108India
IN182.68.133.122India
KW62.215.100.201Kuwait
MX177.245.99.167Mexico
MX189.197.41.83Mexico
PH122.3.37.83Philippines
PH122.3.87.115Philippines
PH122.54.107.63Philippines
PH124.106.167.60Philippines
PK39.47.219.78Pakistan
TR195.87.6.82Turkey
UA31.43.94.53Ukraine
UA193.192.37.70Ukraine

Botnet Statistics [2016-01-15]

detection period: 2016-01-15 00:00-23:59 UTC
total number of suspected botnet IPs: 264
number of botnet IPs notified to network operators: 235
number of spam blocked: 7152
recipient count of spam blocked: 75383

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-ZJ24
2VNPT-VNNIC-VN17
3CHINANET-GD14
4CHINANET-AH13
5CHINANET-SC12
6CHINANET-ZJ-JH10
7CHINANET-JS8
8ALISOFT6
9VIETEL-VNNIC-VN4
10IPG4

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China127
2Viet Nam29
3United States15
4Taiwan9
5India7
6Brazil6
7Russian Federation5
8Indonesia5
9Germany5
10Ukraine4

Friday, January 15, 2016

Suspected Bot List [2016-01-14]

detection period: 2016-01-14 00:00-23:59 UTC
number of suspected bots' IPs listed here: 21

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
PK116.90.106.129Pakistan
PK116.90.109.37Pakistan
US104.129.60.132United States

List from greylisting:

country codeIP addressCountry
AL79.106.8.36Albania
AL79.106.110.66Albania
AL213.207.33.19Albania
AR200.41.47.212Argentina
AR201.176.136.154Argentina
AR201.250.255.27Argentina
CM197.159.0.70Cameroon
IN59.97.136.105India
IN120.57.29.145India
PH49.149.8.151Philippines
PK39.46.73.192Pakistan
RO109.98.8.76Romania
SV190.86.253.9El Salvador
TR213.142.139.135Turkey
US50.61.143.131United States
US200.12.232.6United States
VE150.188.4.63Venezuela
ZA197.245.23.194South Africa

Botnet Statistics [2016-01-14]

detection period: 2016-01-14 00:00-23:59 UTC
total number of suspected botnet IPs: 639
number of botnet IPs notified to network operators: 618
number of spam blocked: 8586
recipient count of spam blocked: 104039

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-AH127
2CHINANET-ZJ91
3CHINANET-JS62
4CHINANET-SC46
5CHINANET-ZJ-JH42
6CHINANET-HB39
7UNICOM-AH36
8CHINANET-GD31
9HINET-NET9
10ALISOFT9

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China527
2United States20
3Taiwan15
4Viet Nam14
5Indonesia5
6Mexico4
7Ukraine3
8Romania3
9Pakistan3
10Japan3

Thursday, January 14, 2016

Suspected Bot List [2016-01-13]

detection period: 2016-01-13 00:00-23:59 UTC
number of suspected bots' IPs listed here: 18

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
PK116.90.106.129Pakistan
US104.129.60.132United States

List from greylisting:

country codeIP addressCountry
AE83.110.221.7Arab Emirates
AL213.207.33.19Albania
AM212.34.226.101Armenia
AR181.228.40.110Argentina
AR200.24.255.139Argentina
CM197.159.0.70Cameroon
DZ193.194.92.3Algeria
ES87.235.177.251Spain
IN117.247.120.198India
IN120.57.92.181India
IN122.161.44.83India
MX177.245.100.252Mexico
MX187.254.232.240Mexico
PH124.106.165.120Philippines
SV190.53.46.254El Salvador
TR213.142.146.29Turkey

Botnet Statistics [2016-01-13]

detection period: 2016-01-13 00:00-23:59 UTC
total number of suspected botnet IPs: 613
number of botnet IPs notified to network operators: 595
number of spam blocked: 10858
recipient count of spam blocked: 65165

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-AH137
2CHINANET-ZJ70
3UNICOM-AH53
4CHINANET-SC50
5CHINANET-HB44
6CHINANET-ZJ-JH31
7CHINANET-JS31
8CHINANET-GD23
9VNPT-VNNIC-VN19
10ALISOFT6

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China477
2Viet Nam31
3United States10
4Taiwan9
5Mexico8
6Brazil7
7Ukraine6
8Russian Federation5
9Turkey4
10Poland4

Wednesday, January 13, 2016

Suspected Bot List [2016-01-12]

detection period: 2016-01-12 00:00-23:59 UTC
number of suspected bots' IPs listed here: 24

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
PK116.90.106.129Pakistan
US104.129.60.132United States

List from greylisting:

country codeIP addressCountry
AL213.207.33.19Albania
AM212.34.226.101Armenia
AR190.3.24.18Argentina
AR190.189.24.54Argentina
AR190.192.38.12Argentina
AR190.193.211.211Argentina
AR200.126.129.82Argentina
AR200.127.47.116Argentina
AR201.251.91.128Argentina
CM197.159.0.70Cameroon
DZ193.194.92.3Algeria
ES87.235.177.251Spain
ES188.87.93.85Spain
IN117.195.159.54India
IN117.216.255.239India
IN120.61.160.202India
IN122.161.130.94India
IN202.153.45.94India
MX187.177.172.13Mexico
SV190.62.133.46El Salvador
US71.14.212.34United States
US192.232.212.44United States