Custom Search

Saturday, April 30, 2016

Suspected Bot List [2016-04-29]

detection period: 2016-04-29 00:00-23:59 UTC
number of suspected bots' IPs listed here: 77

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AR181.16.81.11Argentina
UY167.56.40.26Uruguay
UY167.57.52.136Uruguay

List from greylisting:

country codeIP addressCountry
AE83.110.100.245Arab Emirates
AF103.12.96.54Afghanistan
AR24.232.163.167Argentina
AR186.134.4.214Argentina
AR190.188.104.157Argentina
AR190.244.28.138Argentina
BD150.242.104.198Bangladesh
BO190.129.46.239Bolivia
BO190.211.233.232Bolivia
BO200.87.86.23Bolivia
CI196.47.129.22Ivory Coast
CM41.204.82.238Cameroon
DE217.119.54.136Germany
ES87.235.177.251Spain
ET213.55.105.123Ethiopia
HK45.127.205.153Hong Kong
HN181.210.23.163Honduras
IN110.227.231.118India
IN112.133.249.24India
IN116.75.133.207India
IN122.165.228.107India
IN122.165.229.165India
IN150.129.29.92India
IN150.129.124.118India
IN183.83.48.207India
IN203.153.43.238India
IQ131.117.236.18Iraq
IT188.9.149.252Italy
KE196.207.147.32Kenya
KH103.23.135.178Cambodia
MU41.190.139.206Mauritius
MU196.192.11.66Mauritius
MX189.208.37.60Mexico
MX189.208.212.239Mexico
MY123.136.112.25Malaysia
NG197.242.112.101Nigeria
PH122.52.204.118Philippines
PH124.107.181.95Philippines
PK39.32.212.59Pakistan
PK39.40.90.79Pakistan
PK39.42.199.61Pakistan
PK39.45.149.191Pakistan
PK39.52.159.88Pakistan
PK119.154.161.146Pakistan
PK119.157.26.186Pakistan
PK182.184.59.26Pakistan
PK182.186.179.94Pakistan
PK202.83.163.11Pakistan
PL95.160.156.11Poland
RO85.121.95.71Romania
RS89.216.118.10Serbia
SE178.216.52.37Sweden
SZ41.215.158.127Swaziland
TG41.207.160.90Togo
TG197.148.101.211Togo
TN160.159.2.70Tunisia
TR31.155.136.58Turkey
TR46.1.134.60Turkey
TR46.2.211.250Turkey
TR46.2.254.132Turkey
TR78.187.86.63Turkey
TR78.188.217.171Turkey
TR81.213.45.53Turkey
TR81.215.87.88Turkey
TR88.225.216.167Turkey
TR195.142.127.162Turkey
TR212.156.97.214Turkey
TR212.174.6.14Turkey
TR213.153.221.26Turkey
TT190.59.25.36Trinidad/Tobago
TZ197.149.179.76Tanzania
US162.144.112.32United States
US198.57.192.199United States
ZW197.221.241.193Zimbabwe

Botnet Statistics [2016-04-29]

detection period: 2016-04-29 00:00-23:59 UTC
total number of suspected botnet IPs: 1452
number of botnet IPs notified to network operators: 1375
number of spam blocked: 12572
recipient count of spam blocked: 65176

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CNCITYNET472
2HINET-NET122
3SONET-NET71
4VNPT-VNNIC-VN56
5CHINANET-ZJ-JH29
6CHINANET-SD28
7CHINANET-HB28
8CHINANET-AH24
9CHINANET-GD23
10CHINANET-HA21

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China774
2Taiwan202
3Viet Nam104
4India84
5Brazil29
6Mexico23
7Turkey18
8South Korea13
9Iran13
10Pakistan11

Friday, April 29, 2016

Suspected Bot List [2016-04-28]

detection period: 2016-04-28 00:00-23:59 UTC
number of suspected bots' IPs listed here: 258

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

country codeIP addressCountry
AE83.110.85.150Arab Emirates
AE83.110.148.98Arab Emirates
AE83.110.198.220Arab Emirates
AE83.110.210.136Arab Emirates
AE83.110.211.25Arab Emirates
AE217.165.23.195Arab Emirates
AE217.165.84.197Arab Emirates
AE217.165.152.141Arab Emirates
AL77.247.94.253Albania
AL217.24.246.164Albania
AR181.29.216.129Argentina
AR181.166.160.98Argentina
AR186.138.105.174Argentina
AR190.172.157.95Argentina
AR190.173.18.51Argentina
AR190.191.188.195Argentina
AR190.195.152.111Argentina
AR190.244.181.81Argentina
AR191.81.85.30Argentina
AR201.213.58.98Argentina
AR201.235.221.83Argentina
BD14.1.100.246Bangladesh
BD103.242.216.155Bangladesh
BD113.11.62.20Bangladesh
BG89.253.144.12Bulgaria
BO138.36.77.186Bolivia
BO181.115.140.57Bolivia
BO181.115.140.96Bolivia
BO190.129.34.28Bolivia
BO190.129.73.204Bolivia
BO190.129.165.189Bolivia
BO200.87.17.245Bolivia
BO200.87.135.90Bolivia
BO200.87.159.127Bolivia
BO200.87.221.124Bolivia
CG169.255.123.20Republic of the Congo
CL190.60.122.229Chile
CO190.90.14.19Colombia
CO190.90.100.54Colombia
CO190.90.251.223Colombia
CR186.176.129.80Costa Rica
CR201.197.180.198Costa Rica
CR201.200.2.126Costa Rica
DO186.120.88.128Dominican Republic
DO186.149.73.138Dominican Republic
DO186.150.31.122Dominican Republic
DO186.150.142.241Dominican Republic
DO186.150.234.43Dominican Republic
DO190.94.118.68Dominican Republic
EC190.214.19.204Ecuador
EC190.214.31.17Ecuador
EC200.125.220.178Ecuador
EC201.238.151.225Ecuador
ES47.61.157.78Spain
ES87.235.177.251Spain
ES176.84.248.217Spain
ES188.85.6.19Spain
GE92.51.116.6Republic Of Georgia
GH197.221.81.165Ghana
GH197.221.84.18Ghana
GM212.60.74.75Gambia
GT181.189.145.37Guatemala
HK45.122.55.191Hong Kong
HN181.210.41.147Honduras
HN181.210.129.69Honduras
HN201.190.18.18Honduras
ID112.215.147.65Indonesia
IN27.4.146.159India
IN27.7.10.43India
IN27.7.198.198India
IN27.251.161.178India
IN49.204.157.122India
IN49.204.163.246India
IN49.207.180.83India
IN60.243.80.146India
IN110.235.32.17India
IN112.133.227.82India
IN112.133.249.21India
IN114.79.157.196India
IN115.99.11.35India
IN115.99.22.28India
IN116.75.136.206India
IN122.164.142.146India
IN122.164.157.157India
IN122.164.179.39India
IN150.107.199.233India
IN150.129.205.16India
IN150.242.149.100India
IN183.83.49.41India
IN183.83.51.127India
IN202.63.109.131India
IN202.142.68.218India
IN202.142.70.128India
IN202.142.91.251India
IN202.142.95.14India
IN202.142.119.102India
IN202.164.39.74India
IN203.153.43.238India
IN223.180.134.42India
IQ130.193.247.104Iraq
IR89.165.6.127Iran
IR89.165.55.67Iran
IR89.198.208.69Iran
IT95.226.39.74Italy
IT95.234.150.122Italy
IT151.64.3.195Italy
IT151.64.16.56Italy
IT188.15.139.229Italy
KE196.200.18.22Kenya
KE197.237.9.104Kenya
KH202.58.99.146Cambodia
KW62.215.203.146Kuwait
MA196.112.239.65Morocco
ME62.4.55.34Montenegro
ME62.4.55.154Montenegro
ME62.4.55.178Montenegro
ML196.200.84.3Mali
MM203.81.71.24Myanmar
MO122.100.195.45Macau
MX148.244.102.194Mexico
MX177.249.108.109Mexico
MX187.162.161.7Mexico
MX187.163.193.29Mexico
MX187.177.9.133Mexico
MX187.177.16.190Mexico
MX187.177.99.57Mexico
MX187.178.248.190Mexico
MX187.254.32.117Mexico
MX187.254.36.31Mexico
MX189.205.142.106Mexico
MX189.205.192.3Mexico
MX189.207.195.59Mexico
MX189.207.208.114Mexico
MX189.208.91.42Mexico
MX189.210.150.4Mexico
MX189.210.191.233Mexico
MX189.210.240.147Mexico
MX189.211.181.239Mexico
MX189.211.236.120Mexico
MX189.212.96.5Mexico
MX189.213.48.175Mexico
MX200.78.238.35Mexico
MZ197.231.216.146Mozambique
MZ197.249.129.251Mozambique
PH58.71.15.155Philippines
PH119.94.171.95Philippines
PH121.97.165.18Philippines
PH122.54.1.114Philippines
PH124.105.127.30Philippines
PH124.107.57.97Philippines
PH125.212.36.23Philippines
PH210.213.82.124Philippines
PK39.32.90.11Pakistan
PK39.32.98.218Pakistan
PK39.33.139.138Pakistan
PK39.33.154.82Pakistan
PK39.33.195.35Pakistan
PK39.33.200.248Pakistan
PK39.33.222.196Pakistan
PK39.35.23.10Pakistan
PK39.35.169.60Pakistan
PK39.35.231.189Pakistan
PK39.36.160.42Pakistan
PK39.37.130.32Pakistan
PK39.37.152.155Pakistan
PK39.37.161.25Pakistan
PK39.40.72.14Pakistan
PK39.42.3.8Pakistan
PK39.42.165.86Pakistan
PK39.42.228.152Pakistan
PK39.43.63.101Pakistan
PK39.46.117.224Pakistan
PK39.47.66.151Pakistan
PK39.47.191.77Pakistan
PK39.48.47.131Pakistan
PK39.52.150.104Pakistan
PK39.54.72.146Pakistan
PK39.55.134.216Pakistan
PK111.88.105.64Pakistan
PK119.152.72.81Pakistan
PK119.153.139.67Pakistan
PK119.154.207.217Pakistan
PK182.176.138.75Pakistan
PK182.180.81.224Pakistan
PK182.180.146.203Pakistan
PK182.181.236.55Pakistan
PK182.184.69.41Pakistan
PK182.185.52.128Pakistan
PK182.185.97.103Pakistan
PK182.185.235.208Pakistan
PK182.185.242.50Pakistan
PK182.185.242.176Pakistan
PK182.185.247.70Pakistan
PK182.186.132.219Pakistan
PK182.186.217.171Pakistan
PK182.186.249.176Pakistan
PK182.187.65.21Pakistan
PK182.188.218.192Pakistan
PK182.190.240.235Pakistan
PK182.191.88.83Pakistan
PK182.191.114.199Pakistan
PK182.191.200.12Pakistan
PK203.81.204.171Pakistan
PK203.135.54.227Pakistan
PL188.146.7.207Poland
PL188.146.8.41Poland
PR24.41.240.238Puerto Rico
PS85.114.107.51Occupied Palestinian Territory
RO109.98.108.10Romania
RS24.135.29.230Serbia
RS87.116.189.8Serbia
RS87.116.189.55Serbia
RS94.189.216.132Serbia
RS178.148.190.154Serbia
RS178.149.78.166Serbia
SD41.209.70.9Sudan
SV190.86.208.22El Salvador
TR5.46.65.22Turkey
TR31.155.216.186Turkey
TR31.155.247.111Turkey
TR46.2.41.64Turkey
TR46.2.164.64Turkey
TR78.169.204.247Turkey
TR78.170.135.91Turkey
TR78.187.203.124Turkey
TR78.187.211.12Turkey
TR78.189.16.145Turkey
TR78.189.174.214Turkey
TR78.189.181.166Turkey
TR81.213.40.20Turkey
TR81.213.42.192Turkey
TR81.214.72.93Turkey
TR85.96.188.220Turkey
TR85.99.247.95Turkey
TR85.105.109.97Turkey
TR85.109.64.169Turkey
TR88.248.134.227Turkey
TR88.255.84.68Turkey
TR88.255.119.5Turkey
TR88.255.159.114Turkey
TR188.3.163.150Turkey
TR195.174.243.47Turkey
TR195.175.54.90Turkey
TR195.175.58.142Turkey
TR212.156.49.46Turkey
TR212.156.56.62Turkey
TR212.156.246.62Turkey
TZ41.59.40.172Tanzania
TZ197.149.178.182Tanzania
US162.144.112.32United States
US204.44.82.50United States
UY167.56.129.113Uruguay
UY167.58.99.53Uruguay
UY167.63.195.194Uruguay
UY167.63.234.27Uruguay
UY179.24.60.145Uruguay
UY179.25.208.55Uruguay
ZA197.245.175.162South Africa

Botnet Statistics [2016-04-28]

detection period: 2016-04-28 00:00-23:59 UTC
total number of suspected botnet IPs: 3171
number of botnet IPs notified to network operators: 2913
number of spam blocked: 11410
recipient count of spam blocked: 21938

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CNCITYNET444
2WASU195
3HINET-NET170
4MX-USCV4-LACNIC122
5VNPT-VNNIC-VN108
6UNICOM-ZJ106
7SONET-NET103
8UNICOM-JS89
9CHINANET-JS64
10CMNET52

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China1328
2Taiwan283
3Mexico232
4India220
5Viet Nam218
6Iran61
7Pakistan59
8Brazil57
9Colombia52
10Peru45

Thursday, April 28, 2016

Suspected Bot List [2016-04-27]

detection period: 2016-04-27 00:00-23:59 UTC
number of suspected bots' IPs listed here: 125

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
IL213.57.90.10Israel

List from greylisting:

country codeIP addressCountry
AE83.110.73.41Arab Emirates
AE217.165.84.200Arab Emirates
AL77.247.93.250Albania
AL178.175.62.23Albania
AR181.16.112.83Argentina
AR181.166.200.195Argentina
AR186.139.225.181Argentina
AR190.190.30.118Argentina
AR190.210.90.237Argentina
AR190.220.23.161Argentina
AR209.13.156.2Argentina
BD113.11.102.41Bangladesh
BD150.242.104.2Bangladesh
BD150.242.104.226Bangladesh
BG46.55.167.129Bulgaria
BG78.90.46.250Bulgaria
BO179.60.113.247Bolivia
BO181.115.128.243Bolivia
BO181.115.130.222Bolivia
BO200.87.186.180Bolivia
BO200.87.218.90Bolivia
CM41.78.205.43Cameroon
CM41.202.219.66Cameroon
CM41.204.71.53Cameroon
CO190.5.198.27Colombia
DE217.119.54.136Germany
EC190.63.140.36Ecuador
EG45.243.65.249Egypt
ES88.19.15.232Spain
GH41.218.255.32Ghana
HK45.122.55.191Hong Kong
HN181.210.23.163Honduras
HN190.53.58.191Honduras
ID112.215.44.217Indonesia
ID112.215.66.72Indonesia
ID112.215.124.129Indonesia
IL213.57.90.10Israel
IN27.6.33.177India
IN27.6.211.249India
IN49.156.148.161India
IN60.243.160.101India
IN106.207.93.236India
IN112.133.249.4India
IN112.133.249.32India
IN112.133.249.33India
IN115.98.54.195India
IN115.98.147.253India
IN115.99.238.118India
IN116.72.10.163India
IN122.164.150.168India
IN122.164.163.153India
IN122.252.229.236India
IN150.242.149.3India
IN183.82.1.231India
IN202.153.38.62India
IN203.194.105.97India
IN223.185.6.244India
IN223.225.10.190India
IR85.133.176.63Iran
IR89.165.35.138Iran
KE41.223.115.119Kenya
KE195.202.82.177Kenya
KE197.156.133.203Kenya
KE197.237.233.210Kenya
KH202.58.99.234Cambodia
LR41.86.10.2Liberia
MA41.137.63.202Morocco
ML217.64.110.245Mali
MN180.235.176.123Mongolia
MN203.91.118.254Mongolia
MX187.163.139.123Mexico
MX187.178.135.235Mexico
MX189.207.143.27Mexico
MX189.208.145.35Mexico
MX189.210.149.169Mexico
MX189.212.168.217Mexico
MX200.33.30.18Mexico
MX201.151.46.170Mexico
MX201.163.236.43Mexico
MX201.163.243.90Mexico
MZ197.249.129.251Mozambique
NG41.86.152.34Nigeria
NG41.184.173.26Nigeria
NO193.150.121.66Norway
PH49.145.254.144Philippines
PH122.3.171.50Philippines
PH124.106.123.23Philippines
PK39.33.114.66Pakistan
PK39.35.100.92Pakistan
PK39.36.164.52Pakistan
PK39.37.188.214Pakistan
PK39.41.201.26Pakistan
PK39.47.67.139Pakistan
PK39.55.185.143Pakistan
PK119.152.67.151Pakistan
PK119.153.160.72Pakistan
PK119.153.176.229Pakistan
PK175.107.8.228Pakistan
PK182.176.103.125Pakistan
PK182.178.83.204Pakistan
PK182.178.125.9Pakistan
PK182.181.247.78Pakistan
PK182.186.251.44Pakistan
PK182.190.207.217Pakistan
PK203.135.50.159Pakistan
RO109.98.165.58Romania
RO109.101.206.70Romania
RO109.102.96.142Romania
RO109.103.218.165Romania
RS82.117.214.66Serbia
RS87.116.191.56Serbia
RS89.216.19.97Serbia
RS94.189.170.192Serbia
RS178.149.167.182Serbia
SN41.208.146.219Senegal
SV186.32.121.219El Salvador
TN196.224.23.105Tunisia
TR5.47.202.217Turkey
TR46.1.172.226Turkey
TR95.65.190.199Turkey
TZ155.12.12.42Tanzania
UY167.57.7.209Uruguay
UY167.62.8.110Uruguay
ZW197.221.225.16Zimbabwe

Botnet Statistics [2016-04-27]

detection period: 2016-04-27 00:00-23:59 UTC
total number of suspected botnet IPs: 2890
number of botnet IPs notified to network operators: 2766
number of spam blocked: 12048
recipient count of spam blocked: 81627

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CNCITYNET705
2WASU517
3UNICOM-ZJ115
4HINET-NET112
5SONET-NET97
6UNICOM-JS79
7VNPT-VNNIC-VN62
8MX-USCV4-LACNIC49
9CHINANET-JS49
10CMNET45

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China1808
2Taiwan218
3India131
4Viet Nam128
5Mexico106
6Brazil43
7Iran41
8Indonesia28
9Turkey25
10Pakistan22

Wednesday, April 27, 2016

Suspected Bot List [2016-04-26]

detection period: 2016-04-26 00:00-23:59 UTC
number of suspected bots' IPs listed here: 24

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
IL213.57.90.10Israel
MX189.212.81.206Mexico

List from greylisting:

country codeIP addressCountry
CN221.136.15.11China
CN221.136.15.179China
CN221.136.15.181China
CN221.136.15.182China
HN181.210.23.163Honduras
ID112.215.16.203Indonesia
IN116.72.248.211India
IN116.75.86.27India
IN183.83.119.200India
IN203.88.145.95India
IN203.217.145.165India
MX187.177.172.13Mexico
MX200.94.17.244Mexico
RO109.98.160.182Romania
SV201.247.241.221El Salvador
TR78.186.181.15Turkey
TR88.250.69.146Turkey
US65.55.169.248United States
US157.56.110.245United States
US157.56.110.247United States
US198.57.192.199United States
ZA129.232.196.60South Africa

Botnet Statistics [2016-04-26]

detection period: 2016-04-26 00:00-23:59 UTC
total number of suspected botnet IPs: 2271
number of botnet IPs notified to network operators: 2247
number of spam blocked: 3038
recipient count of spam blocked: 81639

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CNCITYNET858
2WASU506
3UNICOM-ZJ102
4CMNET86
5UNICOM-JS66
6VNPT-VNNIC-VN56
7SONET-NET54
8HINET-NET48
9CHINANET-JS37
10CHINANET-GD33

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China1926
2Taiwan108
3Viet Nam95
4India25
5United States19
6Brazil12
7Indonesia9
8South Korea8
9Ukraine6
10Romania5

Tuesday, April 26, 2016

Suspected Bot List [2016-04-25]

detection period: 2016-04-25 00:00-23:59 UTC
number of suspected bots' IPs listed here: 40

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

country codeIP addressCountry
AL217.24.254.115Albania
AR190.176.192.252Argentina
AR201.235.221.83Argentina
BD116.58.205.113Bangladesh
BO190.129.127.178Bolivia
CI41.66.19.23Ivory Coast
CM195.24.223.162Cameroon
CR186.176.19.79Costa Rica
DO186.120.199.39Dominican Republic
DO186.149.67.76Dominican Republic
DZ105.107.24.79Algeria
ES83.53.96.119Spain
ES87.235.177.251Spain
GH196.11.90.178Ghana
GT190.4.21.82Guatemala
HN181.210.23.163Honduras
IN27.4.203.160India
IN27.6.196.152India
IN116.75.75.6India
IN223.231.14.6India
IQ109.127.76.204Iraq
IR89.165.6.127Iran
KW188.71.250.99Kuwait
LK175.157.80.26Sri Lanka
MO202.175.189.2Macau
MX187.176.229.212Mexico
MX189.207.64.31Mexico
PH124.107.187.158Philippines
PK39.32.65.234Pakistan
PK39.33.254.35Pakistan
RS89.216.23.43Serbia
SD197.252.0.2Sudan
SV190.150.243.36El Salvador
TG197.148.106.202Togo
TR88.247.154.60Turkey
TR88.255.219.130Turkey
TR195.175.58.78Turkey
TR195.175.103.90Turkey
US41.194.24.162United States
UY186.49.234.166Uruguay

Botnet Statistics [2016-04-25]

detection period: 2016-04-25 00:00-23:59 UTC
total number of suspected botnet IPs: 2070
number of botnet IPs notified to network operators: 2030
number of spam blocked: 14200
recipient count of spam blocked: 26153

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1WASU598
2CNCITYNET447
3UNICOM-ZJ117
4CMNET106
5HINET-NET100
6SONET-NET92
7UNICOM-JS54
8CHINANET-JS42
9WASU-BB38
10VNPT-VNNIC-VN23

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China1592
2Taiwan201
3Viet Nam46
4Mexico34
5India19
6Brazil18
7United States11
8Iran11
9Indonesia10
10Ukraine7

Monday, April 25, 2016

Suspected Bot List [2016-04-24]

detection period: 2016-04-24 00:00-23:59 UTC
number of suspected bots' IPs listed here: 221

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
IL213.57.90.10Israel
MX189.212.81.206Mexico

List from greylisting:

country codeIP addressCountry
AE83.110.58.103Arab Emirates
AE83.110.72.132Arab Emirates
AE83.110.77.250Arab Emirates
AE83.110.97.17Arab Emirates
AE83.110.136.149Arab Emirates
AE83.110.200.100Arab Emirates
AE83.110.209.35Arab Emirates
AE83.110.233.105Arab Emirates
AE217.165.68.210Arab Emirates
AE217.165.99.50Arab Emirates
AE217.165.160.216Arab Emirates
AE217.165.226.102Arab Emirates
AE217.165.227.62Arab Emirates
AL79.106.7.99Albania
AL79.106.14.140Albania
AL217.24.253.178Albania
AR24.232.129.243Argentina
AR24.232.164.52Argentina
AR181.16.70.140Argentina
AR181.171.115.29Argentina
AR186.135.36.248Argentina
AR190.192.18.96Argentina
AR201.216.195.221Argentina
AR201.231.183.196Argentina
BA92.241.143.41Bosnia And Herzegovina
BA178.20.19.20Bosnia And Herzegovina
BD123.108.244.209Bangladesh
BD123.108.246.117Bangladesh
BD180.211.170.46Bangladesh
BD180.234.210.248Bangladesh
BD210.4.68.173Bangladesh
BG89.190.193.75Bulgaria
BI41.79.226.2Burundi
BO181.115.129.181Bolivia
BO181.115.140.72Bolivia
BO181.188.128.10Bolivia
BO186.27.16.189Bolivia
BO200.87.38.37Bolivia
BO200.87.71.251Bolivia
BO200.87.74.166Bolivia
CI41.66.28.89Ivory Coast
CM41.202.199.220Cameroon
CO190.90.20.58Colombia
CO190.90.100.209Colombia
DO148.103.135.42Dominican Republic
DO186.120.89.46Dominican Republic
DZ41.110.209.71Algeria
DZ193.194.69.114Algeria
DZ193.194.84.254Algeria
EC181.199.73.24Ecuador
EG45.243.8.54Egypt
ES80.37.218.146Spain
ES81.47.155.2Spain
ES92.58.36.99Spain
ET213.55.104.221Ethiopia
GB163.172.203.55United Kingdom
GH197.221.84.122Ghana
GR176.92.105.139Greece
HN181.210.23.163Honduras
ID61.247.39.95Indonesia
IE37.228.235.143Ireland
IN27.4.37.49India
IN27.7.128.252India
IN27.7.217.242India
IN27.251.203.54India
IN43.226.30.115India
IN60.243.161.234India
IN60.243.210.55India
IN106.219.0.240India
IN106.219.40.194India
IN111.125.198.14India
IN112.133.245.81India
IN112.133.249.11India
IN115.96.55.46India
IN115.97.145.82India
IN115.98.49.174India
IN115.98.145.178India
IN116.73.205.232India
IN116.74.48.4India
IN116.74.68.175India
IN116.74.105.115India
IN116.75.56.211India
IN116.75.112.255India
IN122.164.18.50India
IN122.164.39.111India
IN122.164.47.223India
IN122.164.153.56India
IN125.99.121.198India
IN125.99.137.190India
IN125.99.255.210India
IN150.107.97.84India
IN150.129.126.57India
IN150.129.130.182India
IN150.242.27.60India
IN150.242.151.8India
IN202.142.79.158India
IN202.142.86.253India
IN202.142.118.46India
IN203.192.212.52India
IN203.192.251.86India
IN203.194.97.232India
IN210.89.35.83India
IN223.176.46.236India
IN223.176.48.223India
IN223.176.57.103India
IN223.227.125.131India
IN223.231.23.178India
IQ131.117.233.217Iraq
IQ212.126.112.179Iraq
IR85.133.164.250Iran
IR85.133.246.26Iran
IR89.165.26.35Iran
IR89.165.64.189Iran
IR92.242.223.130Iran
IR93.126.61.17Iran
JO87.236.233.98Jordan
KE41.215.121.106Kenya
KE196.103.197.84Kenya
KH114.134.189.176Cambodia
KW62.215.207.50Kuwait
LK122.255.6.90Sri Lanka
LK175.157.2.226Sri Lanka
LY41.74.65.150Libya
ME109.228.113.103Montenegro
MN49.0.187.78Mongolia
MN103.9.90.200Mongolia
MN202.170.67.24Mongolia
MR41.188.114.59Mauritania
MR41.188.124.50Mauritania
MV202.153.83.23Republic of Maldives
MV202.153.84.58Republic of Maldives
MX148.240.154.139Mexico
MX187.254.54.199Mexico
MX189.206.170.148Mexico
MX189.207.91.95Mexico
MX189.210.21.184Mexico
MX189.210.50.15Mexico
MX200.95.47.178Mexico
NG197.234.33.142Nigeria
PH121.54.32.98Philippines
PH121.54.32.110Philippines
PH121.54.32.133Philippines
PH121.54.32.141Philippines
PH121.54.32.144Philippines
PH121.54.32.161Philippines
PH121.54.58.241Philippines
PH121.54.58.243Philippines
PH121.54.58.246Philippines
PH122.52.40.33Philippines
PH122.53.93.250Philippines
PH122.54.207.86Philippines
PH180.193.79.245Philippines
PH203.111.224.40Philippines
PH203.111.224.47Philippines
PH203.111.224.68Philippines
PK39.32.23.190Pakistan
PK39.32.122.35Pakistan
PK39.32.136.37Pakistan
PK39.32.192.185Pakistan
PK39.33.44.85Pakistan
PK39.33.242.230Pakistan
PK39.35.75.180Pakistan
PK39.41.28.150Pakistan
PK39.43.14.223Pakistan
PK39.43.112.218Pakistan
PK39.45.4.78Pakistan
PK39.45.130.52Pakistan
PK39.46.30.218Pakistan
PK39.47.243.209Pakistan
PK39.48.16.194Pakistan
PK39.49.47.34Pakistan
PK39.50.213.40Pakistan
PK39.52.40.146Pakistan
PK39.52.156.147Pakistan
PK39.54.100.189Pakistan
PK39.54.169.169Pakistan
PK39.55.153.127Pakistan
PK39.55.199.197Pakistan
PK119.73.3.144Pakistan
PK119.152.77.236Pakistan
PK119.152.168.95Pakistan
PK119.154.189.44Pakistan
PK119.154.222.179Pakistan
PK119.156.36.226Pakistan
PK119.156.46.167Pakistan
PK182.185.40.234Pakistan
PK182.185.64.229Pakistan
PK182.185.127.21Pakistan
PK182.185.194.112Pakistan
PK182.186.233.106Pakistan
PK182.187.18.235Pakistan
PK182.187.42.175Pakistan
PK182.187.116.45Pakistan
PK182.187.119.48Pakistan
PK182.187.139.119Pakistan
PK182.190.208.124Pakistan
PK210.2.150.82Pakistan
PL188.146.133.57Poland
PS85.114.107.53Occupied Palestinian Territory
PY181.40.126.250Paraguay
PY181.121.96.240Paraguay
RO109.96.163.49Romania
RO109.98.161.111Romania
RO109.102.0.238Romania
RS89.216.118.10Serbia
RS178.149.27.96Serbia
SD41.218.62.6Sudan
SD197.254.255.207Sudan
TH112.143.13.219Thailand
TN196.184.53.164Tunisia
TN196.184.106.239Tunisia
TN196.224.27.183Tunisia
TR5.46.8.252Turkey
TR5.46.226.231Turkey
TR188.3.103.116Turkey
TZ41.59.72.234Tanzania
TZ156.159.31.239Tanzania
UY167.56.189.128Uruguay
UY167.58.100.230Uruguay

Botnet Statistics [2016-04-24]

detection period: 2016-04-24 00:00-23:59 UTC
total number of suspected botnet IPs: 3644
number of botnet IPs notified to network operators: 3423
number of spam blocked: 3547
recipient count of spam blocked: 76173

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CNCITYNET808
2WASU295
3VNPT-VNNIC-VN172
4BB-Multiplay98
5UNICOM-ZJ96
6HINET-NET77
7CMNET61
8SONET-NET58
9MX-USCV4-LACNIC44
10IR-DCC-2010101844

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China1576
2India398
3Viet Nam352
4Iran239
5Taiwan146
6Mexico102
7Indonesia74
8United States70
9Bangladesh48
10Pakistan45

Sunday, April 24, 2016

Suspected Bot List [2016-04-23]

detection period: 2016-04-23 00:00-23:59 UTC
number of suspected bots' IPs listed here: 500

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
MX189.212.81.206Mexico

List from greylisting:

country codeIP addressCountry
AE31.218.31.46Arab Emirates
AE83.110.78.134Arab Emirates
AE83.110.94.198Arab Emirates
AE83.110.97.17Arab Emirates
AE83.110.104.48Arab Emirates
AE83.110.107.179Arab Emirates
AE83.110.151.83Arab Emirates
AE83.110.196.174Arab Emirates
AE83.110.203.65Arab Emirates
AE83.110.208.222Arab Emirates
AE83.110.237.63Arab Emirates
AE217.165.16.52Arab Emirates
AE217.165.52.139Arab Emirates
AE217.165.127.155Arab Emirates
AF180.94.80.114Afghanistan
AL79.106.7.99Albania
AL79.106.110.140Albania
AL178.175.33.170Albania
AL178.175.59.226Albania
AL217.24.244.39Albania
AR152.168.52.110Argentina
AR181.22.41.67Argentina
AR181.28.1.170Argentina
AR181.28.233.87Argentina
AR181.30.5.41Argentina
AR181.30.11.71Argentina
AR181.171.115.29Argentina
AR181.231.126.42Argentina
AR186.56.130.119Argentina
AR186.137.47.100Argentina
AR190.6.218.4Argentina
AR190.17.52.209Argentina
AR200.68.124.161Argentina
AR201.180.104.52Argentina
AR201.231.183.19Argentina
AR201.252.22.238Argentina
BA92.241.143.41Bosnia And Herzegovina
BD14.1.102.194Bangladesh
BD14.1.103.249Bangladesh
BD113.11.25.220Bangladesh
BD113.11.26.102Bangladesh
BD116.58.202.98Bangladesh
BD119.148.3.99Bangladesh
BD123.108.246.33Bangladesh
BD123.108.246.101Bangladesh
BD150.242.104.74Bangladesh
BD150.242.104.98Bangladesh
BD150.242.104.198Bangladesh
BD180.211.159.186Bangladesh
BD180.211.183.74Bangladesh
BD180.211.235.228Bangladesh
BD180.234.6.141Bangladesh
BD180.234.132.28Bangladesh
BD202.5.36.2Bangladesh
BG46.233.4.153Bulgaria
BH62.209.9.88Bahrain
BJ197.234.219.64Benin
BO181.115.140.22Bolivia
BO190.129.33.106Bolivia
BO200.87.71.251Bolivia
BO200.87.75.10Bolivia
BO200.87.146.82Bolivia
BO200.87.237.26Bolivia
CD169.239.73.119Democratic Republic Of Congo
CI41.66.38.96Ivory Coast
CI160.120.32.243Ivory Coast
CM41.78.205.139Cameroon
CM41.202.195.174Cameroon
CM41.202.205.18Cameroon
CM41.205.5.3Cameroon
CO190.60.240.211Colombia
CO190.90.20.58Colombia
CY213.149.187.175Cyprus
DK87.104.134.14Denmark
DO148.103.135.42Dominican Republic
DO148.103.149.155Dominican Republic
DO186.120.89.46Dominican Republic
DO186.149.75.208Dominican Republic
DO186.150.155.186Dominican Republic
DO190.94.58.180Dominican Republic
DO200.42.245.71Dominican Republic
DZ41.110.65.214Algeria
DZ105.104.29.217Algeria
EC181.199.68.248Ecuador
EC190.214.77.209Ecuador
ES2.138.60.162Spain
ES80.30.57.246Spain
ES80.37.218.146Spain
ES92.57.55.148Spain
ES188.87.104.189Spain
ET213.55.83.49Ethiopia
ET213.55.85.206Ethiopia
ET213.55.104.141Ethiopia
ET213.55.104.221Ethiopia
ET213.55.104.249Ethiopia
ET213.55.105.90Ethiopia
ET213.55.105.125Ethiopia
ET213.55.107.223Ethiopia
ET213.55.114.114Ethiopia
ET213.55.114.230Ethiopia
GA169.159.31.250Gabon
GA169.159.31.253Gabon
GB163.172.21.47United Kingdom
GR37.6.244.49Greece
HN181.115.2.10Honduras
ID61.247.34.163Indonesia
ID112.215.63.114Indonesia
ID112.215.153.122Indonesia
ID112.215.154.221Indonesia
IL31.154.167.224Israel
IN1.186.36.90India
IN1.186.96.172India
IN27.4.2.23India
IN27.4.37.232India
IN27.5.8.79India
IN27.5.228.43India
IN27.6.214.203India
IN27.58.12.219India
IN27.58.16.200India
IN27.58.17.221India
IN27.58.60.145India
IN27.58.134.224India
IN27.59.204.5India
IN27.251.37.42India
IN27.251.46.146India
IN27.251.203.54India
IN27.251.207.106India
IN43.224.221.227India
IN43.255.140.4India
IN49.204.151.83India
IN49.207.189.22India
IN49.207.189.241India
IN49.207.216.54India
IN60.243.91.227India
IN60.254.53.90India
IN60.254.67.251India
IN106.219.48.238India
IN106.220.85.76India
IN106.220.185.121India
IN110.224.229.251India
IN110.224.240.114India
IN110.227.92.53India
IN110.227.238.40India
IN112.133.208.218India
IN112.133.245.81India
IN112.133.248.115India
IN112.133.249.12India
IN112.133.249.13India
IN112.133.249.25India
IN112.133.249.32India
IN114.79.141.109India
IN115.96.55.46India
IN115.97.145.82India
IN115.98.30.47India
IN115.98.42.46India
IN115.98.53.190India
IN115.98.145.118India
IN116.72.29.95India
IN116.72.176.231India
IN116.73.202.141India
IN116.74.68.168India
IN116.74.113.107India
IN116.75.20.8India
IN116.75.92.238India
IN122.164.31.160India
IN122.164.39.111India
IN122.164.79.54India
IN122.164.83.146India
IN122.164.106.130India
IN122.164.123.157India
IN122.164.163.234India
IN122.164.165.14India
IN122.164.167.242India
IN122.164.168.114India
IN122.164.223.135India
IN122.165.63.183India
IN122.165.81.40India
IN122.165.95.120India
IN122.165.113.152India
IN122.165.128.251India
IN122.165.216.96India
IN123.201.92.3India
IN150.107.97.84India
IN150.107.100.181India
IN150.107.101.97India
IN150.107.103.110India
IN150.129.120.17India
IN150.129.126.252India
IN150.129.236.70India
IN180.87.210.247India
IN180.87.245.173India
IN182.48.200.70India
IN202.9.123.147India
IN202.63.98.13India
IN202.134.171.66India
IN202.142.67.94India
IN202.142.68.62India
IN202.142.76.71India
IN202.142.90.209India
IN202.142.95.254India
IN202.142.101.97India
IN202.142.104.85India
IN202.142.104.114India
IN202.142.115.150India
IN202.142.118.142India
IN203.76.181.134India
IN203.163.249.130India
IN203.192.204.162India
IN203.192.245.5India
IN203.194.97.232India
IN203.194.109.142India
IN203.217.145.238India
IN210.89.48.186India
IN223.176.7.23India
IN223.176.56.85India
IN223.176.138.33India
IN223.179.221.194India
IN223.225.145.38India
IN223.227.250.18India
IN223.235.17.51India
IN223.255.245.107India
IQ130.193.194.229Iraq
IQ212.126.113.131Iraq
IR85.9.75.168Iran
IR85.9.95.225Iran
IR85.9.127.254Iran
IR85.133.132.210Iran
IR85.133.143.34Iran
IR85.133.207.74Iran
IR89.165.6.127Iran
IR89.165.9.219Iran
IR89.165.12.99Iran
IR89.165.116.119Iran
IR93.126.51.227Iran
IT95.235.238.234Italy
JO87.236.233.98Jordan
KE41.215.19.230Kenya
KE41.215.31.54Kenya
KE41.215.43.150Kenya
KE197.237.225.185Kenya
KE197.237.226.74Kenya
KE197.254.32.102Kenya
KE217.21.125.221Kenya
KH114.134.184.45Cambodia
KH114.134.189.160Cambodia
KH117.20.117.42Cambodia
KH202.58.99.23Cambodia
KH202.58.99.91Cambodia
KW37.37.207.35Kuwait
KW62.215.172.30Kuwait
KW62.215.219.54Kuwait
KW89.203.3.27Kuwait
KW168.187.110.26Kuwait
KW168.187.148.244Kuwait
KW168.187.246.30Kuwait
KW188.70.0.151Kuwait
KZ2.132.83.166Kazakhstan
LB85.112.77.18Lebanon
LK175.157.16.203Sri Lanka
LK175.157.174.199Sri Lanka
LK175.157.253.215Sri Lanka
LS197.155.199.116Lesotho
LY41.74.67.82Libya
LY41.74.67.167Libya
LY41.74.71.133Libya
LY41.74.75.208Libya
ME46.161.92.58Montenegro
MG41.63.130.180Madagascar
MG41.63.139.197Madagascar
MG41.207.60.156Madagascar
MM203.81.91.7Myanmar
MM203.81.91.14Myanmar
MN49.0.160.30Mongolia
MN49.0.161.152Mongolia
MN112.72.12.21Mongolia
MN183.177.100.10Mongolia
MN202.170.67.24Mongolia
MN203.91.117.2Mongolia
MV202.153.83.23Republic of Maldives
MX148.244.70.50Mexico
MX187.163.155.80Mexico
MX187.176.232.226Mexico
MX187.177.187.144Mexico
MX187.178.154.231Mexico
MX187.254.54.199Mexico
MX189.206.170.148Mexico
MX189.207.61.119Mexico
MX189.207.91.95Mexico
MX189.208.75.73Mexico
MX189.208.134.208Mexico
MX189.211.171.18Mexico
MX189.211.181.239Mexico
MX189.213.3.250Mexico
MX200.94.17.244Mexico
MX200.95.89.1Mexico
MX207.248.250.177Mexico
MY123.136.106.194Malaysia
MY161.139.102.9Malaysia
MZ197.249.56.128Mozambique
NG41.73.245.233Nigeria
NP202.166.217.205Nepal
PH103.14.61.160Philippines
PH119.92.119.231Philippines
PH119.92.233.173Philippines
PH119.93.163.197Philippines
PH119.93.229.64Philippines
PH119.94.167.89Philippines
PH121.54.32.131Philippines
PH121.54.32.150Philippines
PH121.54.32.155Philippines
PH121.54.32.157Philippines
PH121.54.32.168Philippines
PH121.54.32.170Philippines
PH121.54.44.145Philippines
PH121.54.58.241Philippines
PH121.54.58.242Philippines
PH121.54.58.245Philippines
PH121.54.58.247Philippines
PH122.3.35.98Philippines
PH122.3.169.78Philippines
PH122.3.174.141Philippines
PH122.3.197.254Philippines
PH122.52.135.20Philippines
PH122.52.163.132Philippines
PH122.53.179.130Philippines
PH122.54.217.55Philippines
PH122.55.89.146Philippines
PH124.105.15.92Philippines
PH124.105.23.178Philippines
PH124.105.237.91Philippines
PH124.106.17.87Philippines
PH124.107.132.114Philippines
PH125.60.156.149Philippines
PH125.60.156.211Philippines
PH180.193.77.69Philippines
PH210.213.203.62Philippines
PK39.32.21.176Pakistan
PK39.32.37.244Pakistan
PK39.32.76.155Pakistan
PK39.32.82.89Pakistan
PK39.32.107.169Pakistan
PK39.32.147.53Pakistan
PK39.32.156.194Pakistan
PK39.32.173.182Pakistan
PK39.32.197.45Pakistan
PK39.32.204.151Pakistan
PK39.33.90.29Pakistan
PK39.33.159.130Pakistan
PK39.33.177.143Pakistan
PK39.33.221.112Pakistan
PK39.33.232.10Pakistan
PK39.35.54.129Pakistan
PK39.35.205.169Pakistan
PK39.36.54.89Pakistan
PK39.36.65.99Pakistan
PK39.36.89.99Pakistan
PK39.36.104.89Pakistan
PK39.36.201.22Pakistan
PK39.36.254.242Pakistan
PK39.37.143.126Pakistan
PK39.37.148.91Pakistan
PK39.37.178.163Pakistan
PK39.37.185.26Pakistan
PK39.40.93.22Pakistan
PK39.40.102.248Pakistan
PK39.40.116.139Pakistan
PK39.41.28.150Pakistan
PK39.41.229.181Pakistan
PK39.41.252.234Pakistan
PK39.42.10.100Pakistan
PK39.42.57.36Pakistan
PK39.42.63.201Pakistan
PK39.42.82.181Pakistan
PK39.42.118.20Pakistan
PK39.42.131.250Pakistan
PK39.42.172.42Pakistan
PK39.42.196.183Pakistan
PK39.43.17.87Pakistan
PK39.43.78.7Pakistan
PK39.45.1.78Pakistan
PK39.45.41.95Pakistan
PK39.45.42.43Pakistan
PK39.45.108.130Pakistan
PK39.45.166.71Pakistan
PK39.45.168.207Pakistan
PK39.45.198.41Pakistan
PK39.45.204.213Pakistan
PK39.46.12.202Pakistan
PK39.46.89.209Pakistan
PK39.46.95.67Pakistan
PK39.47.70.198Pakistan
PK39.47.83.33Pakistan
PK39.47.146.188Pakistan
PK39.47.183.222Pakistan
PK39.48.71.96Pakistan
PK39.48.81.151Pakistan
PK39.48.117.154Pakistan
PK39.50.154.245Pakistan
PK39.52.63.71Pakistan
PK39.52.90.114Pakistan
PK39.52.160.150Pakistan
PK39.52.185.100Pakistan
PK39.52.216.182Pakistan
PK39.54.212.165Pakistan
PK39.55.16.56Pakistan
PK39.55.145.90Pakistan
PK58.27.201.68Pakistan
PK59.103.151.109Pakistan
PK103.4.92.204Pakistan
PK110.36.218.2Pakistan
PK111.68.97.218Pakistan
PK119.155.153.183Pakistan
PK119.157.44.117Pakistan
PK182.176.82.116Pakistan
PK182.178.205.250Pakistan
PK182.178.216.212Pakistan
PK182.178.220.31Pakistan
PK182.180.104.214Pakistan
PK182.180.113.218Pakistan
PK182.180.162.110Pakistan
PK182.181.232.200Pakistan
PK182.184.68.20Pakistan
PK182.185.7.222Pakistan
PK182.185.15.255Pakistan
PK182.185.25.57Pakistan
PK182.185.51.70Pakistan
PK182.185.55.40Pakistan
PK182.185.87.100Pakistan
PK182.185.91.136Pakistan
PK182.185.95.54Pakistan
PK182.185.135.171Pakistan
PK182.185.170.225Pakistan
PK182.185.203.82Pakistan
PK182.185.230.134Pakistan
PK182.186.156.87Pakistan
PK182.186.183.124Pakistan
PK182.186.196.161Pakistan
PK182.186.237.96Pakistan
PK182.186.255.143Pakistan
PK182.187.80.124Pakistan
PK182.187.81.153Pakistan
PK182.191.116.243Pakistan
PK202.125.156.52Pakistan
PK203.81.209.218Pakistan
PK210.2.150.82Pakistan
PL188.146.3.153Poland
PS85.114.107.53Occupied Palestinian Territory
PS85.114.107.220Occupied Palestinian Territory
PS178.215.219.197Occupied Palestinian Territory
RO86.104.254.232Romania
RO109.99.197.146Romania
RO109.102.0.238Romania
RS24.135.137.125Serbia
RS24.135.251.46Serbia
RS178.148.14.80Serbia
RS178.148.79.98Serbia
RS178.148.119.244Serbia
RS178.149.200.219Serbia
RS188.2.191.94Serbia
SD41.218.42.47Sudan
SD197.252.2.121Sudan
SD197.254.224.232Sudan
SO197.157.246.138Somalia
SO197.231.200.107Somalia
SV190.99.59.182El Salvador
SV190.150.185.113El Salvador
TN196.186.230.197Tunisia
TN196.224.49.227Tunisia
TR5.46.9.136Turkey
TR5.46.138.99Turkey
TR5.46.252.179Turkey
TR5.47.24.161Turkey
TR31.155.66.92Turkey
TR31.155.107.196Turkey
TR31.155.213.71Turkey
TR37.155.29.170Turkey
TR37.155.156.82Turkey
TR46.1.61.4Turkey
TR46.2.7.159Turkey
TR46.2.147.156Turkey
TR94.78.75.242Turkey
TR188.3.92.56Turkey
TR188.3.181.3Turkey
TR188.3.181.106Turkey
TR194.27.90.140Turkey
TR212.108.156.64Turkey
TZ41.59.12.107Tanzania
TZ41.59.26.57Tanzania
TZ41.59.43.0Tanzania
TZ41.59.72.234Tanzania
TZ41.221.56.187Tanzania
TZ169.255.184.178Tanzania
UG169.239.88.11Uganda
UY179.24.197.199Uruguay
UY179.26.4.39Uruguay
UY179.29.171.84Uruguay
UY190.0.138.2Uruguay
ZA41.13.246.176South Africa
ZW197.221.243.145Zimbabwe

Botnet Statistics [2016-04-23]

detection period: 2016-04-23 00:00-23:59 UTC
total number of suspected botnet IPs: 5001
number of botnet IPs notified to network operators: 4501
number of spam blocked: 2745
recipient count of spam blocked: 71417

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CNCITYNET971
2VNPT-VNNIC-VN250
3BB-Multiplay194
4WASU143
5BHARTI-IN127
6PTCLBB-PK99
7MX-USCV4-LACNIC93
8VIETEL-VNNIC-VN69
9VIETEL-VN68
10ETC-VNNIC-VN57

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China1469
2India961
3Viet Nam555
4Iran336
5Mexico177
6Indonesia131
7Pakistan128
8Taiwan95
9Bangladesh78
10Turkey65

Saturday, April 23, 2016

Suspected Bot List [2016-04-22]

detection period: 2016-04-22 00:00-23:59 UTC
number of suspected bots' IPs listed here: 139

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:

country codeIP addressCountry
AE83.110.78.134Arab Emirates
AE217.165.127.155Arab Emirates
AL79.106.17.167Albania
AO41.222.239.74Angola
AR181.28.1.170Argentina
AR186.39.17.79Argentina
AR186.136.20.36Argentina
AR190.17.52.209Argentina
AR191.85.129.93Argentina
BG46.233.4.153Bulgaria
BO186.27.126.130Bolivia
BO190.129.74.203Bolivia
BO190.129.127.118Bolivia
BO190.129.127.135Bolivia
BO200.87.39.146Bolivia
BO200.87.165.164Bolivia
BO200.87.237.26Bolivia
CG197.149.138.226Republic of the Congo
CI41.66.53.250Ivory Coast
CI196.47.129.22Ivory Coast
CO190.7.136.252Colombia
CR201.237.136.154Costa Rica
DO186.120.89.46Dominican Republic
DO186.149.125.98Dominican Republic
DO186.150.22.123Dominican Republic
DO186.150.150.157Dominican Republic
DZ41.110.24.13Algeria
DZ41.110.65.214Algeria
DZ105.105.201.50Algeria
ES80.37.218.146Spain
ET213.55.72.171Ethiopia
ET213.55.105.104Ethiopia
ET213.55.105.122Ethiopia
ET213.55.115.206Ethiopia
GH41.218.255.205Ghana
ID202.146.130.206Indonesia
IN1.186.39.160India
IN27.4.120.133India
IN27.4.185.228India
IN27.4.228.168India
IN27.7.34.114India
IN27.7.209.190India
IN49.207.187.187India
IN60.254.95.18India
IN110.227.75.30India
IN112.133.249.12India
IN115.99.4.148India
IN202.157.77.210India
IN203.192.212.52India
IN203.192.231.187India
IN203.194.109.142India
IN203.217.145.244India
IN223.176.27.65India
IN223.227.233.179India
IQ212.126.107.82Iraq
IQ212.126.114.132Iraq
IR89.165.6.127Iran
IT95.247.164.125Italy
JO87.236.233.98Jordan
KE196.207.136.65Kenya
KW31.203.80.166Kuwait
KW168.187.110.26Kuwait
LK122.255.6.90Sri Lanka
LK175.157.123.205Sri Lanka
MA41.137.56.4Morocco
MA41.137.63.203Morocco
MA196.121.44.48Morocco
MR41.188.98.224Mauritania
MV202.153.84.58Republic of Maldives
MX148.240.188.129Mexico
MX148.240.233.73Mexico
MX187.163.147.44Mexico
MX187.163.213.200Mexico
MX187.176.32.123Mexico
MX189.205.8.162Mexico
MX189.210.2.36Mexico
MX189.210.178.187Mexico
MX189.212.234.104Mexico
MX200.95.1.200Mexico
MX201.163.200.230Mexico
NG41.73.234.187Nigeria
PH122.53.126.139Philippines
PH122.54.27.119Philippines
PK39.35.124.49Pakistan
PK39.37.171.32Pakistan
PK39.47.93.6Pakistan
PK39.50.148.93Pakistan
PK39.52.140.94Pakistan
PK39.55.80.64Pakistan
PK119.154.141.163Pakistan
PK119.155.152.189Pakistan
PK182.178.225.60Pakistan
PK182.178.243.211Pakistan
PK182.180.75.94Pakistan
PK182.185.60.97Pakistan
PK182.186.143.127Pakistan
PK182.186.146.184Pakistan
PK182.191.116.243Pakistan
PK202.61.52.150Pakistan
PK221.120.235.86Pakistan
PL79.98.149.219Poland
RO89.122.104.82Romania
RO92.81.248.245Romania
RO109.100.244.84Romania
RS24.135.251.46Serbia
RS94.189.225.241Serbia
RS94.189.244.184Serbia
RS178.149.19.43Serbia
SD41.209.70.213Sudan
SD41.218.16.158Sudan
SK195.168.135.210Slovakia
TR5.46.149.95Turkey
TR46.2.226.52Turkey
TR46.2.237.16Turkey
TR78.170.135.137Turkey
TR78.188.222.60Turkey
TR81.213.199.33Turkey
TR81.215.217.113Turkey
TR85.105.63.21Turkey
TR85.105.80.218Turkey
TR85.105.86.221Turkey
TR85.109.124.115Turkey
TR88.225.216.167Turkey
TR88.250.69.146Turkey
TR94.78.86.94Turkey
TR94.78.120.183Turkey
TR195.175.53.26Turkey
TR195.175.58.146Turkey
TR212.156.73.30Turkey
TR212.156.86.90Turkey
TR212.156.92.82Turkey
TR212.156.98.210Turkey
TR212.156.122.138Turkey
TR212.156.143.226Turkey
TR212.156.246.74Turkey
UA193.107.130.143Ukraine
UY190.64.94.78Uruguay
UY190.64.139.202Uruguay
ZM41.72.104.198Zambia