Custom Search

Friday, May 31, 2019

Botnet Statistics [2019-05-30]

detection period: 2019-05-30 00:00-23:59 UTC
total number of suspected botnet IPs: 12173
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 11459
number of spam blocked: 1
recipient count of spam blocked: 1

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud421
2TENCENT-CN313
3HINET-NET258
4DO-13254
5Baidu249
6VNPT-VN227
7KORNET186
8NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK160
9OVH139
1002.558.157/0001-62131

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2289
2United States1826
3France667
4India546
5Viet Nam500
6Brazil489
7Russian Federation403
8South Korea340
9Indonesia313
10Taiwan302
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-30]

detection period: 2019-05-30 00:00-23:59 UTC
number of suspected bots' IPs listed here: 714

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:


country codeIP addressCountry

List from SSH probes:

country codeIP addressCountry
ES88.10.39.183Spain

List from TCP port scans:
Read more »
Labels:
Posted by at No comments:

Thursday, May 30, 2019

Botnet Statistics [2019-05-29]

detection period: 2019-05-29 00:00-23:59 UTC
total number of suspected botnet IPs: 12958
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 12205
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud419
2TENCENT-CN332
3HINET-NET316
4DO-13269
5Baidu259
6VNPT-VN229
7KORNET210
8NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK167
9OVH151
1002.558.157/0001-62129

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2364
2United States1908
3France697
4India563
5Brazil514
6Viet Nam499
7Russian Federation448
8Indonesia410
9South Korea377
10Taiwan354
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-29]

detection period: 2019-05-29 00:00-23:59 UTC
number of suspected bots' IPs listed here: 753

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:


country codeIP addressCountry

List from SSH probes:

country codeIP addressCountry
ES88.10.39.183Spain

List from TCP port scans:
Read more »
Labels:
Posted by at No comments:

Wednesday, May 29, 2019

Botnet Statistics [2019-05-28]

detection period: 2019-05-28 00:00-23:59 UTC
total number of suspected botnet IPs: 12102
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 11366
number of spam blocked: 3
recipient count of spam blocked: 3

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud438
2TENCENT-CN321
3HINET-NET317
4Baidu244
5VNPT-VN237
6DO-13232
7KORNET183
8NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK158
9OVH145
1002.558.157/0001-62136

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2337
2United States1691
3France662
4India501
5Viet Nam483
6Brazil470
7Russian Federation390
8Indonesia376
9Taiwan365
10South Korea331
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-28]

detection period: 2019-05-28 00:00-23:59 UTC
number of suspected bots' IPs listed here: 736

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:


country codeIP addressCountry

List from SSH probes:

country codeIP addressCountry
ZA196.2.73.190South Africa

List from TCP port scans:
Read more »
Labels:
Posted by at No comments:

Tuesday, May 28, 2019

Botnet Statistics [2019-05-27]

detection period: 2019-05-27 00:00-23:59 UTC
total number of suspected botnet IPs: 12233
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 11513
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud437
2TENCENT-CN328
3HINET-NET274
4Baidu246
5DO-13235
6VNPT-VN196
7KORNET175
8NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK168
9OVH147
1002.558.157/0001-62129

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2361
2United States1733
3France689
4India538
5Brazil504
6Viet Nam459
7Indonesia394
8Russian Federation361
9South Korea329
10Taiwan313
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-27]

detection period: 2019-05-27 00:00-23:59 UTC
number of suspected bots' IPs listed here: 721

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:


country codeIP addressCountry

List from SSH probes:

country codeIP addressCountry
CN193.112.42.88China
ES88.10.39.183Spain
NL185.244.25.105Netherlands
PL188.114.89.11Poland
ZA156.155.136.254South Africa

List from TCP port scans:
Read more »
Labels:
Posted by at No comments:

Monday, May 27, 2019

Botnet Statistics [2019-05-26]

detection period: 2019-05-26 00:00-23:59 UTC
total number of suspected botnet IPs: 11803
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 11103
number of spam blocked: 3
recipient count of spam blocked: 3

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud452
2TENCENT-CN340
3HINET-NET297
4Baidu261
5DO-13244
6KORNET202
7NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK165
8OVH151
9CHINANET-GD108
10HO-2107

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2476
2United States1745
3France699
4Brazil485
5India393
6Russian Federation372
7South Korea358
8Taiwan335
9Indonesia301
10Viet Nam272
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-26]

detection period: 2019-05-26 00:00-23:59 UTC
number of suspected bots' IPs listed here: 700

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:


country codeIP addressCountry

List from SSH probes:

country codeIP addressCountry
CA50.66.116.189Canada
CN193.112.42.88China
ES88.10.39.183Spain
NL185.244.25.105Netherlands
NL185.244.25.235Netherlands
TG196.171.154.255Togo

List from TCP port scans:
Read more »
Labels:
Posted by at No comments:

Sunday, May 26, 2019

Botnet Statistics [2019-05-25]

detection period: 2019-05-25 00:00-23:59 UTC
total number of suspected botnet IPs: 11623
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 10990
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud427
2TENCENT-CN325
3HINET-NET309
4Baidu256
5DO-13229
6KORNET195
7VNPT-VN155
8NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK154
9OVH143
1002.558.157/0001-62115

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2301
2United States1668
3France676
4India491
5Brazil487
6Russian Federation428
7Viet Nam383
8South Korea345
9Taiwan339
10Indonesia338
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-25]

detection period: 2019-05-25 00:00-23:59 UTC
number of suspected bots' IPs listed here: 633

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:


country codeIP addressCountry

List from SSH probes:

country codeIP addressCountry

List from TCP port scans:
Read more »
Labels:
Posted by at No comments:

Saturday, May 25, 2019

Botnet Statistics [2019-05-24]

detection period: 2019-05-24 00:00-23:59 UTC
total number of suspected botnet IPs: 11629
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 10987
number of spam blocked: 3
recipient count of spam blocked: 3

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud423
2TENCENT-CN331
3HINET-NET295
4Baidu251
5DO-13230
6VNPT-VN202
7KORNET183
8NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK158
9OVH139
10VIETTEL-VN112

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2302
2United States1636
3France686
4India487
5Viet Nam448
6Brazil446
7Russian Federation433
8Taiwan337
9Indonesia328
10South Korea325
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-24]

detection period: 2019-05-24 00:00-23:59 UTC
number of suspected bots' IPs listed here: 642

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
ES88.12.15.22Spain

List from greylisting:


country codeIP addressCountry

List from SSH probes:

country codeIP addressCountry
KR210.115.227.132South Korea

List from TCP port scans:
Read more »
Labels:
Posted by at No comments:

Friday, May 24, 2019

Botnet Statistics [2019-05-23]

detection period: 2019-05-23 00:00-23:59 UTC
total number of suspected botnet IPs: 12556
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 11847
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud428
2TENCENT-CN327
3HINET-NET297
4Baidu257
5DO-13230
6VNPT-VN226
7KORNET195
8NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK161
9OVH144
1002.558.157/0001-62136

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2376
2United States1833
3France698
4Viet Nam534
5India520
6Brazil516
7Russian Federation465
8Indonesia396
9South Korea349
10Taiwan337
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-23]

detection period: 2019-05-23 00:00-23:59 UTC
number of suspected bots' IPs listed here: 709

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:


country codeIP addressCountry

List from SSH probes:

country codeIP addressCountry
CN193.112.46.249China

List from TCP port scans:
Read more »
Labels:
Posted by at No comments:

Thursday, May 23, 2019

Botnet Statistics [2019-05-22]

detection period: 2019-05-22 00:00-23:59 UTC
total number of suspected botnet IPs: 12649
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 11901
number of spam blocked: 3
recipient count of spam blocked: 3

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud435
2TENCENT-CN342
3HINET-NET288
4Baidu265
5VNPT-VN224
6DO-13224
7KORNET210
8NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK162
9OVH150
1002.558.157/0001-62147

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2456
2United States1796
3France716
4Brazil530
5India501
6Viet Nam474
7Russian Federation451
8Indonesia415
9South Korea355
10Taiwan329
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-22]

detection period: 2019-05-22 00:00-23:59 UTC
number of suspected bots' IPs listed here: 748

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:


country codeIP addressCountry

List from SSH probes:

country codeIP addressCountry
DE116.203.182.45Germany
ES80.30.231.55Spain

List from TCP port scans:
Read more »
Labels:
Posted by at No comments:

Wednesday, May 22, 2019

Botnet Statistics [2019-05-21]

detection period: 2019-05-21 00:00-23:59 UTC
total number of suspected botnet IPs: 11865
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 11201
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud419
2TENCENT-CN333
3HINET-NET258
4Baidu256
5DO-13238
6VNPT-VN201
7KORNET168
8NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK157
9OVH154
10TELKOMNET130

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2406
2United States1703
3France656
4India475
5Brazil465
6Viet Nam457
7Russian Federation423
8Indonesia409
9South Korea305
10Taiwan291
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-21]

detection period: 2019-05-21 00:00-23:59 UTC
number of suspected bots' IPs listed here: 664

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:


country codeIP addressCountry

List from SSH probes:

country codeIP addressCountry
ES81.45.72.92Spain

List from TCP port scans:
Read more »
Labels:
Posted by at No comments:

Tuesday, May 21, 2019

Botnet Statistics [2019-05-20]

detection period: 2019-05-20 00:00-23:59 UTC
total number of suspected botnet IPs: 12369
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 11706
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud428
2TENCENT-CN342
3DO-13270
4Baidu269
5HINET-NET234
6VNPT-VN210
7KORNET175
8NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK161
9OVH152
10VIETTEL-VN135

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2477
2United States1851
3France680
4India539
5Viet Nam495
6Brazil479
7Russian Federation457
8Indonesia379
9South Korea307
10Taiwan271
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-20]

detection period: 2019-05-20 00:00-23:59 UTC
number of suspected bots' IPs listed here: 663

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:


country codeIP addressCountry

List from SSH probes:

country codeIP addressCountry

List from TCP port scans:
Read more »
Labels:
Posted by at No comments:

Monday, May 20, 2019

Botnet Statistics [2019-05-19]

detection period: 2019-05-19 00:00-23:59 UTC
total number of suspected botnet IPs: 12694
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 11992
number of spam blocked: 2
recipient count of spam blocked: 2

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud388
2TENCENT-CN305
3DO-13278
4Baidu267
5HINET-NET262
6KORNET170
7VNPT-VN167
8OVH156
9NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK137
10AT-88-Z123

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2367
2United States2001
3France685
4Russian Federation569
5Brazil506
6Viet Nam421
7India407
8Indonesia366
9South Korea315
10Taiwan308
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-19]

detection period: 2019-05-19 00:00-23:59 UTC
number of suspected bots' IPs listed here: 702

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:


country codeIP addressCountry

List from SSH probes:

country codeIP addressCountry
ES81.45.72.92Spain

List from TCP port scans:
Read more »
Labels:
Posted by at No comments:

Sunday, May 19, 2019

Botnet Statistics [2019-05-18]

detection period: 2019-05-18 00:00-23:59 UTC
total number of suspected botnet IPs: 11693
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 11068
number of spam blocked: 1
recipient count of spam blocked: 1

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud319
2HINET-NET253
3TENCENT-CN250
4Baidu240
5DO-13236
6VNPT-VN208
7AT-88-Z145
8OVH139
9KORNET130
1002.558.157/0001-62124

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2081
2United States1909
3France610
4Russian Federation541
5Viet Nam465
6India462
7Brazil354
8Indonesia335
9Taiwan297
10South Korea259
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-18]

detection period: 2019-05-18 00:00-23:59 UTC
number of suspected bots' IPs listed here: 625

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Saturday, May 18, 2019

Suspected Bot List [2019-05-17]

detection period: 2019-05-17 00:00-23:59 UTC
number of suspected bots' IPs listed here: 728

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
CN218.75.36.70China

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Botnet Statistics [2019-05-17]

detection period: 2019-05-17 00:00-23:59 UTC
total number of suspected botnet IPs: 12505
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 11777
number of spam blocked: 2
recipient count of spam blocked: 2

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud399
2TENCENT-CN312
3VNPT-VN296
4DO-13248
5HINET-NET245
6Baidu243
7VIETTEL-VN151
8NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK147
9AT-88-Z142
10OVH138

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2253
2United States1942
3Viet Nam618
4Russian Federation597
5France597
6India526
7Indonesia401
8Brazil368
9Taiwan286
10South Korea252
Labels:
Posted by at No comments:

Friday, May 17, 2019

Botnet Statistics [2019-05-16]

detection period: 2019-05-16 00:00-23:59 UTC
total number of suspected botnet IPs: 12784
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 12032
number of spam blocked: 5
recipient count of spam blocked: 5

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud404
2TENCENT-CN314
3VNPT-VN286
4Baidu251
5DO-13250
6HINET-NET238
7NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK155
802.558.157/0001-62149
9TELKOMNET146
10KORNET146

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2297
2United States1832
3France633
4Viet Nam586
5Russian Federation578
6India535
7Indonesia451
8Brazil433
9Taiwan284
10South Korea274
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-16]

detection period: 2019-05-16 00:00-23:59 UTC
number of suspected bots' IPs listed here: 752

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
RU88.205.135.21Russian Federation

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Thursday, May 16, 2019

Botnet Statistics [2019-05-15]

detection period: 2019-05-15 00:00-23:59 UTC
total number of suspected botnet IPs: 13096
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 12345
number of spam blocked: 6
recipient count of spam blocked: 6

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud407
2TENCENT-CN318
3VNPT-VN287
4Baidu256
5DO-13246
6HINET-NET231
7VIETTEL-VN153
8NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK151
9OVH147
10KORNET143

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2432
2United States1828
3France647
4Viet Nam631
5Russian Federation624
6India514
7Indonesia448
8Brazil382
9South Korea280
10Taiwan263
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-15]

detection period: 2019-05-15 00:00-23:59 UTC
number of suspected bots' IPs listed here: 751

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
IN103.107.37.113India

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Wednesday, May 15, 2019

Botnet Statistics [2019-05-14]

detection period: 2019-05-14 00:00-23:59 UTC
total number of suspected botnet IPs: 13216
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 12414
number of spam blocked: 5
recipient count of spam blocked: 5

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud421
2TENCENT-CN335
3VNPT-VN262
4DO-13255
5Baidu247
6HINET-NET216
7VIETTEL-VN161
8NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK160
9OVH153
1002.558.157/0001-62141

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2398
2United States1884
3France662
4Viet Nam590
5Russian Federation571
6India567
7Brazil423
8Indonesia420
9South Korea277
10Taiwan255
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-14]

detection period: 2019-05-14 00:00-23:59 UTC
number of suspected bots' IPs listed here: 802

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
BR201.182.91.254Brazil
RU91.144.142.125Russian Federation

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Tuesday, May 14, 2019

Botnet Statistics [2019-05-13]

detection period: 2019-05-13 00:00-23:59 UTC
total number of suspected botnet IPs: 13303
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 12553
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud417
2TENCENT-CN330
3VNPT-VN323
4DO-13262
5Baidu254
6HINET-NET224
7VIETTEL-VN162
8TELKOMNET161
9NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK161
10OVH149

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2451
2United States1795
3Viet Nam678
4France652
5Russian Federation594
6India560
7Indonesia468
8Brazil438
9South Korea266
10Taiwan264
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-13]

detection period: 2019-05-13 00:00-23:59 UTC
number of suspected bots' IPs listed here: 750

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
KH203.189.142.33Cambodia

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Sunday, May 12, 2019

Botnet Statistics for April 2019

detection period: 2019-04-01 00:00 - 2019-04-30 23:59 UTC
total number of suspected botnet IPs: 95805

The top 25 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China8806
2Viet Nam7727
3United States6977
4Indonesia3956
5India2788
6Taiwan2435
7Brazil2029
8Russian Federation1726
9France1422
10Venezuela1413
11Thailand1302
12Mexico1110
13South Korea927
14Turkey909
15Egypt580
16Hong Kong567
17Colombia549
18Canada481
19Netherlands465
20Italy457
21Singapore439
22Pakistan401
23Germany391
24United Kingdom359
25Ukraine338

The top 25 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1VNPT-VN4383
2TELKOMNET2492
3HINET-NET2239
4VIETTEL-VN2223
502.558.157/0001-621539
6VE-CSVE-LACNIC1384
7AT-88-Z1010
8TencentCloud798
9CHINANET-GD794
10DO-13763
11MX-USCV4-LACNIC629
12TENCENT-CN598
13BSNLNET584
14KORNET539
15AMAZON-2011L530
16CHINANET-JS489
17Baidu438
18BHARTI-IN417
19FPTDYNAMICIP-NET404
20CMNET402
21CHINANET-SH364
22FPT-STATICIP-NET331
23CHINANET-SC317
24CHINANET-SD307
25NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK306

Labels:
Posted by at No comments:

Botnet Statistics for March 2019

detection period: 2019-03-01 00:00 - 2019-03-31 23:59 UTC
total number of suspected botnet IPs: 127410

The top 25 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Viet Nam13586
2China8860
3United States6820
4Indonesia6593
5India3848
6Taiwan3303
7Brazil2527
8Thailand2284
9Russian Federation2274
10Venezuela1719
11France1493
12Mexico1213
13Turkey1200
14South Korea1062
15Egypt884
16Hong Kong766
17Colombia638
18Pakistan617
19Italy534
20Netherlands472
21Germany466
22Canada466
23Singapore410
24Ukraine391
25Spain381

The top 25 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1VNPT-VN7860
2TELKOMNET4274
3VIETTEL-VN3885
4HINET-NET2940
502.558.157/0001-622130
6VE-CSVE-LACNIC1697
7AT-88-Z1081
8BSNLNET889
9TencentCloud854
10CHINANET-GD850
11FPTDYNAMICIP-NET721
12MX-USCV4-LACNIC711
13KORNET625
14TRIPLETNET-TH599
15BHARTI-IN593
16TENCENT-CN580
17CHINANET-JS567
18FPT-STATICIP-NET515
19AMAZON-2011L503
20DO-13476
21Baidu457
22CMNET436
23CHINANET-SH422
24BEELINE-BROADBAND370
25TOT-NET351

Labels:
Posted by at No comments:

Botnet Statistics for February 2019

detection period: 2019-02-01 00:00 - 2019-02-28 23:59 UTC
total number of suspected botnet IPs: 112759

The top 25 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Viet Nam9075
2China8591
3United States6195
4Indonesia5605
5India3426
6Taiwan3081
7Brazil2262
8Venezuela2176
9Thailand2021
10Russian Federation1972
11France1403
12South Korea1136
13Mexico1130
14Turkey919
15Egypt713
16Hong Kong684
17Colombia553
18Pakistan497
19Canada478
20Germany439
21Italy380
22Iran377
23Netherlands358
24Philippines313
25United Kingdom313

The top 25 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1VNPT-VN5307
2TELKOMNET3765
3HINET-NET2768
4VIETTEL-VN2624
5VE-CSVE-LACNIC2144
602.558.157/0001-621907
7AT-88-Z1221
8TencentCloud802
9BSNLNET791
10CHINANET-JS715
11CHINANET-GD692
12KORNET659
13MX-USCV4-LACNIC647
14AMAZON-2011L561
15CMNET550
16BHARTI-IN507
17TRIPLETNET-TH492
18TENCENT-CN426
19FPTDYNAMICIP-NET370
20FPT-STATICIP-NET356
21DO-13337
22MSFT324
23CHINANET-SH321
24CAT-BB-NET319
25Baidu300

Labels:
Posted by at No comments:

Botnet Statistics for January 2019

detection period: 2019-01-01 00:00 - 2019-01-31 23:59 UTC
total number of suspected botnet IPs: 141404
Because very few bots are detected through spam mail now, the relevant statistics will no longer be listed here.

The top 25 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1Viet Nam14764
2China11209
3Indonesia7883
4United States6399
5Taiwan4535
6India4275
7Venezuela3208
8Brazil2649
9Thailand2579
10Russian Federation2433
11Mexico1350
12France1327
13South Korea1135
14Turkey1120
15Egypt968
16Hong Kong711
17Pakistan659
18Colombia607
19Canada516
20Iran481
21Italy410
22Ukraine387
23Germany382
24Philippines377
25Netherlands324

The top 25 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1VNPT-VN8824
2TELKOMNET5297
3VIETTEL-VN4162
4HINET-NET4155
5VE-CSVE-LACNIC3167
602.558.157/0001-622394
7AT-88-Z1165
8CHINANET-GD1119
9BSNLNET1067
10CMNET865
11TencentCloud861
12CHINANET-JS838
13MX-USCV4-LACNIC787
14AMAZON-2011L709
15TRIPLETNET-TH688
16FPTDYNAMICIP-NET656
17KORNET635
18BHARTI-IN633
19FPT-STATICIP-NET504
20CHINANET-SH481
21CHINANET-JX462
22CHINANET-SC456
23CHINANET-SD453
24BEELINE-BROADBAND446
25CHINANET-ZJ418

Labels:
Posted by at No comments:

Botnet Statistics [2019-05-11]

detection period: 2019-05-11 00:00-23:59 UTC
total number of suspected botnet IPs: 12527
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 11784
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud439
2TENCENT-CN355
3Baidu262
4DO-13258
5VNPT-VN213
6HINET-NET187
7NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK164
8KORNET157
9OVH145
1002.558.157/0001-62126

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2477
2United States1780
3France666
4Russian Federation509
5India494
6Viet Nam454
7Brazil376
8Indonesia367
9South Korea299
10United Kingdom231
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-11]

detection period: 2019-05-11 00:00-23:59 UTC
number of suspected bots' IPs listed here: 743

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Saturday, May 11, 2019

Botnet Statistics [2019-05-10]

detection period: 2019-05-10 00:00-23:59 UTC
total number of suspected botnet IPs: 13172
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 12401
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud445
2TENCENT-CN353
3Baidu282
4DO-13259
5VNPT-VN257
6HINET-NET170
7NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK161
8KORNET149
9OVH142
1002.558.157/0001-62142

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2559
2United States1941
3France679
4Viet Nam562
5India531
6Russian Federation507
7Brazil499
8Indonesia439
9South Korea282
10United Kingdom246
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-10]

detection period: 2019-05-10 00:00-23:59 UTC
number of suspected bots' IPs listed here: 771

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Friday, May 10, 2019

Botnet Statistics [2019-05-09]

detection period: 2019-05-09 00:00-23:59 UTC
total number of suspected botnet IPs: 12769
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 12018
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud394
2TENCENT-CN339
3VNPT-VN268
4DO-13251
5Baidu244
6AT-88-Z173
7NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK161
8KORNET150
9VIETTEL-VN136
10HINET-NET134

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2411
2United States1911
3France636
4Viet Nam557
5Russian Federation546
6India498
7Brazil477
8Indonesia417
9South Korea282
10Singapore228
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-09]

detection period: 2019-05-09 00:00-23:59 UTC
number of suspected bots' IPs listed here: 751

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Thursday, May 9, 2019

Botnet Statistics [2019-05-08]

detection period: 2019-05-08 00:00-23:59 UTC
total number of suspected botnet IPs: 13682
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 12864
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud422
2TENCENT-CN343
3VNPT-VN259
4DO-13255
5Baidu248
6HINET-NET213
7AT-88-Z207
8KORNET171
902.558.157/0001-62170
10NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK157

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2616
2United States1964
3France700
4Russian Federation584
5Viet Nam578
6Brazil568
7India522
8Indonesia429
9South Korea301
10Taiwan255
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-08]

detection period: 2019-05-08 00:00-23:59 UTC
number of suspected bots' IPs listed here: 818

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Wednesday, May 8, 2019

Botnet Statistics [2019-05-07]

detection period: 2019-05-07 00:00-23:59 UTC
total number of suspected botnet IPs: 13880
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 13043
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud442
2TENCENT-CN352
3DO-13283
4VNPT-VN261
5Baidu257
6HINET-NET203
7AT-88-Z197
8NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK172
9KORNET170
10OVH164

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2614
2United States2100
3France738
4Russian Federation584
5Viet Nam576
6Brazil562
7India502
8Indonesia405
9South Korea309
10Singapore266
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-07]

detection period: 2019-05-07 00:00-23:59 UTC
number of suspected bots' IPs listed here: 837

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Tuesday, May 7, 2019

Botnet Statistics [2019-05-06]

detection period: 2019-05-06 00:00-23:59 UTC
total number of suspected botnet IPs: 13054
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 12279
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud415
2TENCENT-CN323
3DO-13258
4Baidu250
5VNPT-VN234
6HINET-NET173
7NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK164
8AT-88-Z161
9VIETTEL-VN160
10OVH143

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2422
2United States1873
3France667
4Russian Federation605
5Viet Nam550
6Brazil528
7India518
8Indonesia445
9South Korea264
10Singapore235
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-06]

detection period: 2019-05-06 00:00-23:59 UTC
number of suspected bots' IPs listed here: 775

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Monday, May 6, 2019

Botnet Statistics [2019-05-05]

detection period: 2019-05-05 00:00-23:59 UTC
total number of suspected botnet IPs: 12583
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 11840
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud417
2TENCENT-CN346
3DO-13273
4Baidu248
5AT-88-Z200
6HINET-NET192
7VNPT-VN174
8NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK163
9OVH154
10KORNET131

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2519
2United States2046
3France685
4Russian Federation541
5Brazil461
6Viet Nam392
7India381
8Indonesia305
9South Korea279
10Singapore242
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-05]

detection period: 2019-05-05 00:00-23:59 UTC
number of suspected bots' IPs listed here: 743

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Sunday, May 5, 2019

Botnet Statistics [2019-05-04]

detection period: 2019-05-04 00:00-23:59 UTC
total number of suspected botnet IPs: 12839
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 12050
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud410
2TENCENT-CN343
3VNPT-VN263
4AT-88-Z259
5DO-13251
6Baidu239
7HINET-NET215
8NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK165
902.558.157/0001-62141
10OVH137

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2424
2United States2036
3France629
4Viet Nam560
5Russian Federation535
6Brazil492
7India474
8Indonesia370
9South Korea256
10Taiwan247
Labels:
Posted by at No comments:

Suspected Bot List [2019-05-04]

detection period: 2019-05-04 00:00-23:59 UTC
number of suspected bots' IPs listed here: 789

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Saturday, May 4, 2019

Botnet Statistics [2019-05-03]

detection period: 2019-05-03 00:00-23:59 UTC
total number of suspected botnet IPs: 13318
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 12526
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud414
2TENCENT-CN340
3VNPT-VN327
4DO-13266
5AT-88-Z242
6Baidu235
7HINET-NET216
8NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK164
9VIETTEL-VN147
10OVH140

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry/Region# of suspected botnet IPs
1China2428
2United States2097
3Viet Nam664
4France654
5Russian Federation545
6Brazil530
7India509
8Indonesia453
9South Korea258
10Taiwan247
Labels:
Posted by at No comments:
Subscribe to: Posts (Atom)