Custom Search

Saturday, January 24, 2026

Botnet Statistics [2026-01-23]

(To download the latest zombie ip list, please visit the Daily Zombie IP Lists for January 2026.
detection period: 2026-01-23 00:00-23:59 UTC
total number of suspected botnet IPs: 23103
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 21251
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by the number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1MSFT1367
2GOOGLE-CLOUD1004
3PAN-22950
4BYTEPLUS-SG847
5AL-3823
6VOLCANO-ENGINE500
7ASEPL-SG463
8FR-ONYPHE-20191111416
9ALISOFT393
10CMNET389


The top 10 countries (as defined by the 2-character country code), ordered by the number of suspected botnet IPs are:


The top 10 TCP ports, ordered by the number of connection attempts received are:

RankCountry/Region# of suspected botnet IPs
1United States7927
2China5729
3Singapore1513
4India534
5France521
6Hong Kong461
7Russian Federation394
8Netherlands389
9Indonesia373
10South Korea372
Labels:
Posted by at No comments:

Friday, January 23, 2026

Botnet Statistics [2026-01-22]

(To download the latest zombie ip list, please visit the Daily Zombie IP Lists for January 2026.
detection period: 2026-01-22 00:00-23:59 UTC
total number of suspected botnet IPs: 24223
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 22300
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by the number of suspected botnet IPs are:

RankTCP port number# of connection attempts received
15900173775
2666683388
3224070894
42250793
5992239819
6932237976
7590234127
8252228934
9922226669
10800424733
RankNetwork# of suspected botnet IPs
1MSFT1385
2GOOGLE-CLOUD999
3PAN-22950
4BYTEPLUS-SG848
5AL-3824
6VOLCANO-ENGINE494
7ASEPL-SG450
8FR-ONYPHE-20191111416
9ALISOFT389
10CENSY375


The top 10 countries (as defined by the 2-character country code), ordered by the number of suspected botnet IPs are:


The top 10 TCP ports, ordered by the number of connection attempts received are:

RankCountry/Region# of suspected botnet IPs
1United States8662
2China5632
3Singapore1533
4India570
5France527
6Netherlands431
7Russian Federation428
8Hong Kong415
9South Korea390
10Indonesia383
Labels:
Posted by at No comments:

Thursday, January 22, 2026

Botnet Statistics [2026-01-21]

(To download the latest zombie ip list, please visit the Daily Zombie IP Lists for January 2026.
detection period: 2026-01-21 00:00-23:59 UTC
total number of suspected botnet IPs: 23444
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 21479
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by the number of suspected botnet IPs are:

RankTCP port number# of connection attempts received
15900168361
2666680152
3224069381
42252613
5972230633
6590227578
7212227351
8922225832
944423784
10402223413
RankNetwork# of suspected botnet IPs
1MSFT1345
2GOOGLE-CLOUD1007
3PAN-22946
4BYTEPLUS-SG881
5AL-3820
6VOLCANO-ENGINE563
7ASEPL-SG448
8FR-ONYPHE-20191111416
9ALISOFT411
10CENSY372


The top 10 countries (as defined by the 2-character country code), ordered by the number of suspected botnet IPs are:


The top 10 TCP ports, ordered by the number of connection attempts received are:

RankCountry/Region# of suspected botnet IPs
1United States8027
2China5526
3Singapore1536
4India590
5France537
6Hong Kong444
7Indonesia421
8Russian Federation415
9Brazil381
10South Korea376
Labels:
Posted by at No comments:

Wednesday, January 21, 2026

Botnet Statistics [2026-01-20]

(To download the latest zombie ip list, please visit the Daily Zombie IP Lists for January 2026.
detection period: 2026-01-20 00:00-23:59 UTC
total number of suspected botnet IPs: 23818
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 22065
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by the number of suspected botnet IPs are:

RankTCP port number# of connection attempts received
15900178236
2972273921
377765772
4224058217
5666655777
6800343017
75822238860
8222238630
92237449
10662234245
RankNetwork# of suspected botnet IPs
1MSFT1356
2GOOGLE-CLOUD1003
3PAN-22949
4BYTEPLUS-SG881
5AL-3818
6VOLCANO-ENGINE472
7ASEPL-SG449
8FR-ONYPHE-20191111416
9CENSY379
10ALISOFT357


The top 10 countries (as defined by the 2-character country code), ordered by the number of suspected botnet IPs are:


The top 10 TCP ports, ordered by the number of connection attempts received are:

RankCountry/Region# of suspected botnet IPs
1United States8716
2China6018
3Singapore1515
4India527
5France487
6Netherlands449
7Hong Kong405
8Russian Federation390
9Indonesia344
10Germany335
Labels:
Posted by at No comments:

Tuesday, January 20, 2026

Botnet Statistics [2026-01-19]

(To download the latest zombie ip list, please visit the Daily Zombie IP Lists for January 2026.
detection period: 2026-01-19 00:00-23:59 UTC
total number of suspected botnet IPs: 23119
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 21353
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by the number of suspected botnet IPs are:

RankTCP port number# of connection attempts received
15900195087
277796851
3972281787
42277169
5228858709
6800354959
7233241804
8145330043
91000029127
10590224737
RankNetwork# of suspected botnet IPs
1MSFT1381
2GOOGLE-CLOUD1002
3PAN-22939
4BYTEPLUS-SG878
5AL-3837
6VOLCANO-ENGINE475
7ASEPL-SG446
8FR-ONYPHE-20191111416
9CENSY374
10CMNET367


The top 10 countries (as defined by the 2-character country code), ordered by the number of suspected botnet IPs are:


The top 10 TCP ports, ordered by the number of connection attempts received are:

RankCountry/Region# of suspected botnet IPs
1United States8361
2China5139
3Singapore1538
4India544
5France494
6Russian Federation435
7Hong Kong428
8Netherlands395
9Brazil395
10South Korea373
Labels:
Posted by at No comments:

Monday, January 19, 2026

Botnet Statistics [2026-01-18]

(To download the latest zombie ip list, please visit the Daily Zombie IP Lists for January 2026.
detection period: 2026-01-18 00:00-23:59 UTC
total number of suspected botnet IPs: 25554
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 23513
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by the number of suspected botnet IPs are:

RankTCP port number# of connection attempts received
15900265222
22291312
3228864910
4800349701
577728333
6972224931
7922223987
8590223747
9342221539
1052221429
RankNetwork# of suspected botnet IPs
1MSFT1390
2GOOGLE-CLOUD1007
3PAN-22948
4BYTEPLUS-SG878
5AL-3850
6VOLCANO-ENGINE470
7ASEPL-SG453
8FR-ONYPHE-20191111416
9ALISOFT402
10CENSY378


The top 10 countries (as defined by the 2-character country code), ordered by the number of suspected botnet IPs are:


The top 10 TCP ports, ordered by the number of connection attempts received are:

RankCountry/Region# of suspected botnet IPs
1United States9243
2China5264
3Singapore1491
4Brazil743
5India560
6France509
7Netherlands467
8Russian Federation455
9Hong Kong433
10Indonesia338
Labels:
Posted by at No comments:

Sunday, January 18, 2026

Botnet Statistics [2026-01-17]

(To download the latest zombie ip list, please visit the Daily Zombie IP Lists for January 2026.
detection period: 2026-01-17 00:00-23:59 UTC
total number of suspected botnet IPs: 28197
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 25308
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by the number of suspected botnet IPs are:

RankTCP port number# of connection attempts received
15900340285
222104299
3732293655
4228864989
51322238289
62872237229
7202235187
8862232481
933329302
10590226051
RankNetwork# of suspected botnet IPs
1MSFT1390
2GOOGLE-CLOUD1007
3PAN-22949
4BYTEPLUS-SG878
5AL-3834
6VOLCANO-ENGINE465
7ASEPL-SG457
8FR-ONYPHE-20191111416
9CENSY377
10ALISOFT372


The top 10 countries (as defined by the 2-character country code), ordered by the number of suspected botnet IPs are:


The top 10 TCP ports, ordered by the number of connection attempts received are:

RankCountry/Region# of suspected botnet IPs
1United States8663
2China5852
3Singapore1497
4Brazil1194
5India777
6Russian Federation567
7France537
8Indonesia414
9Hong Kong411
10Netherlands389
Labels:
Posted by at No comments:

Saturday, January 17, 2026

Botnet Statistics [2026-01-16]

(To download the latest zombie ip list, please visit the Daily Zombie IP Lists for January 2026.
detection period: 2026-01-16 00:00-23:59 UTC
total number of suspected botnet IPs: 28660
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 25826
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by the number of suspected botnet IPs are:

RankTCP port number# of connection attempts received
15900358756
22268250
3982267430
4228864978
5225543940
6707040435
75502236592
8822236232
9732233534
10202229650
RankNetwork# of suspected botnet IPs
1MSFT1407
2GOOGLE-CLOUD1002
3PAN-22949
4BYTEPLUS-SG878
5AL-3851
6VOLCANO-ENGINE478
7ASEPL-SG462
8FR-ONYPHE-20191111416
9ALISOFT391
10CENSY381


The top 10 countries (as defined by the 2-character country code), ordered by the number of suspected botnet IPs are:


The top 10 TCP ports, ordered by the number of connection attempts received are:

RankCountry/Region# of suspected botnet IPs
1United States8808
2China6088
3Singapore1504
4Brazil1082
5India811
6Russian Federation592
7France539
8Hong Kong436
9South Korea430
10Indonesia395
Labels:
Posted by at No comments:

Friday, January 16, 2026

Botnet Statistics [2026-01-15]

(To download the latest zombie ip list, please visit the Daily Zombie IP Lists for January 2026.
detection period: 2026-01-15 00:00-23:59 UTC
total number of suspected botnet IPs: 26297
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 23851
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by the number of suspected botnet IPs are:

RankTCP port number# of connection attempts received
15900324098
2707099031
3467569937
411769780
5886369760
6822268907
7228864432
8982263434
9225554470
10221247459
RankNetwork# of suspected botnet IPs
1MSFT1383
2GOOGLE-CLOUD1002
3PAN-22949
4BYTEPLUS-SG880
5AL-3848
6VOLCANO-ENGINE493
7ASEPL-SG463
8FR-ONYPHE-20191111416
9ALISOFT377
10CMNET368


The top 10 countries (as defined by the 2-character country code), ordered by the number of suspected botnet IPs are:


The top 10 TCP ports, ordered by the number of connection attempts received are:

RankCountry/Region# of suspected botnet IPs
1United States8848
2China6154
3Singapore1529
4Brazil747
5India576
6France514
7Russian Federation490
8Hong Kong444
9Indonesia407
10Netherlands388
Labels:
Posted by at No comments:

Thursday, January 15, 2026

Botnet Statistics [2026-01-14]

(To download the latest zombie ip list, please visit the Daily Zombie IP Lists for January 2026.
detection period: 2026-01-14 00:00-23:59 UTC
total number of suspected botnet IPs: 25446
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 23423
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by the number of suspected botnet IPs are:

RankTCP port number# of connection attempts received
15900307638
2712286739
3637381657
4301179788
5225578103
62617276113
73084476053
8707075550
9812375218
101303974665
RankNetwork# of suspected botnet IPs
1MSFT1340
2GOOGLE-CLOUD999
3PAN-22947
4BYTEPLUS-SG882
5AL-3850
6VOLCANO-ENGINE487
7ASEPL-SG468
8FR-ONYPHE-20191111416
9ALISOFT391
10CENSY371


The top 10 countries (as defined by the 2-character country code), ordered by the number of suspected botnet IPs are:


The top 10 TCP ports, ordered by the number of connection attempts received are:

RankCountry/Region# of suspected botnet IPs
1United States8646
2China5845
3Singapore1535
4Brazil764
5India635
6France529
7Russian Federation477
8Netherlands422
9Indonesia416
10Hong Kong408
Labels:
Posted by at No comments:

Wednesday, January 14, 2026

Botnet Statistics [2026-01-13]

(To download the latest zombie ip list, please visit the Daily Zombie IP Lists for January 2026.
detection period: 2026-01-13 00:00-23:59 UTC
total number of suspected botnet IPs: 26386
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 24516
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by the number of suspected botnet IPs are:

RankTCP port number# of connection attempts received
15900423268
2712294513
38278959
4460376876
5302276703
6816774370
7952574237
8828473346
91247273212
10804173186
RankNetwork# of suspected botnet IPs
1MSFT1382
2GOOGLE-CLOUD1003
3PAN-22949
4BYTEPLUS-SG882
5AL-3852
6VOLCANO-ENGINE494
7ASEPL-SG483
8FR-ONYPHE-20191111416
9ALISOFT391
10CENSY375


The top 10 countries (as defined by the 2-character country code), ordered by the number of suspected botnet IPs are:


The top 10 TCP ports, ordered by the number of connection attempts received are:

RankCountry/Region# of suspected botnet IPs
1United States9206
2China6422
3Singapore1543
4India660
5Brazil604
6France568
7Russian Federation468
8Indonesia439
9Hong Kong422
10Netherlands403
Labels:
Posted by at No comments:

Tuesday, January 13, 2026

Botnet Statistics [2026-01-12]

(To download the latest zombie ip list, please visit the Daily Zombie IP Lists for January 2026.
detection period: 2026-01-12 00:00-23:59 UTC
total number of suspected botnet IPs: 25002
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 23036
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by the number of suspected botnet IPs are:

RankTCP port number# of connection attempts received
15900436039
2712271795
3969646082
42245415
552232647
6800232381
7228827033
8590126538
9338921208
10590219326
RankNetwork# of suspected botnet IPs
1MSFT1403
2GOOGLE-CLOUD1001
3PAN-22945
4BYTEPLUS-SG882
5AL-3857
6VOLCANO-ENGINE535
7ASEPL-SG481
8FR-ONYPHE-20191111416
9ALISOFT379
10CENSY373


The top 10 countries (as defined by the 2-character country code), ordered by the number of suspected botnet IPs are:


The top 10 TCP ports, ordered by the number of connection attempts received are:

RankCountry/Region# of suspected botnet IPs
1United States8836
2China5284
3Singapore1560
4India608
5Brazil591
6France547
7Russian Federation506
8Indonesia446
9Hong Kong437
10Netherlands405
Labels:
Posted by at No comments:

Monday, January 12, 2026

Botnet Statistics [2026-01-11]

(To download the latest zombie ip list, please visit the Daily Zombie IP Lists for January 2026.
detection period: 2026-01-11 00:00-23:59 UTC
total number of suspected botnet IPs: 25973
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 24007
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by the number of suspected botnet IPs are:

RankTCP port number# of connection attempts received
15900503061
252253228
32250192
4227749093
5590124382
6777722554
7338919780
82332018946
9590218741
105932218649
RankNetwork# of suspected botnet IPs
1MSFT1369
2GOOGLE-CLOUD1004
3PAN-22949
4BYTEPLUS-SG877
5AL-3866
6VOLCANO-ENGINE508
7ASEPL-SG478
8FR-ONYPHE-20191111416
9ALISOFT380
10CENSY367


The top 10 countries (as defined by the 2-character country code), ordered by the number of suspected botnet IPs are:


The top 10 TCP ports, ordered by the number of connection attempts received are:

RankCountry/Region# of suspected botnet IPs
1United States9184
2China5499
3Singapore1507
4Brazil780
5India618
6France558
7Russian Federation537
8Hong Kong429
9Netherlands427
10Indonesia369
Labels:
Posted by at No comments:

Sunday, January 11, 2026

Botnet Statistics [2026-01-10]

(To download the latest zombie ip list, please visit the Daily Zombie IP Lists for January 2026.
detection period: 2026-01-10 00:00-23:59 UTC
total number of suspected botnet IPs: 25426
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 23185
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by the number of suspected botnet IPs are:

RankTCP port number# of connection attempts received
15900492147
2227778371
32273691
4532251964
552251050
6678945984
7492245442
8600037332
9800133204
10590127040
RankNetwork# of suspected botnet IPs
1MSFT1372
2GOOGLE-CLOUD1001
3PAN-22949
4AL-3879
5BYTEPLUS-SG877
6VOLCANO-ENGINE501
7ASEPL-SG480
8FR-ONYPHE-20191111416
9CENSY377
10ALISOFT366


The top 10 countries (as defined by the 2-character country code), ordered by the number of suspected botnet IPs are:


The top 10 TCP ports, ordered by the number of connection attempts received are:

RankCountry/Region# of suspected botnet IPs
1United States8119
2China5665
3Singapore1504
4Brazil725
5India626
6Russian Federation620
7France586
8Hong Kong439
9Netherlands395
10Indonesia365
Labels:
Posted by at No comments:

Saturday, January 10, 2026

Botnet Statistics [2026-01-09]

(To download the latest zombie ip list, please visit the Daily Zombie IP Lists for January 2026.
detection period: 2026-01-09 00:00-23:59 UTC
total number of suspected botnet IPs: 27289
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 25154
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by the number of suspected botnet IPs are:

RankTCP port number# of connection attempts received
15900521688
24922114311
32332105829
4532284674
5800166353
6571663002
7824861162
82258792
9434358376
10712756777
RankNetwork# of suspected botnet IPs
1MSFT1382
2GOOGLE-CLOUD1003
3PAN-22949
4AL-3912
5BYTEPLUS-SG877
6ASEPL-SG514
7VOLCANO-ENGINE501
8FR-ONYPHE-20191111416
9CENSY382
10ALISOFT376


The top 10 countries (as defined by the 2-character country code), ordered by the number of suspected botnet IPs are:


The top 10 TCP ports, ordered by the number of connection attempts received are:

RankCountry/Region# of suspected botnet IPs
1United States8699
2China6159
3Singapore1578
4India681
5Brazil671
6Russian Federation628
7France577
8Hong Kong438
9United Kingdom395
10Indonesia394
Labels:
Posted by at No comments:

Tuesday, January 6, 2026

Botnet Statistics [2026-01-05]

(To download the latest zombie ip list, please visit the Daily Zombie IP Lists for January 2026.
detection period: 2026-01-05 00:00-23:59 UTC
total number of suspected botnet IPs: 19999
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 18819
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by the number of suspected botnet IPs are:

RankTCP port number# of connection attempts received
15900498795
2492299781
3532286623
4111180591
52264923
6800164453
752252587
8803141800
92041273
105734435616
RankNetwork# of suspected botnet IPs
1MSFT1403
2GOOGLE-CLOUD994
3PAN-22941
4AL-3902
5BYTEPLUS-SG878
6VOLCANO-ENGINE519
7ASEPL-SG518
8ALISOFT420
9FR-ONYPHE-20191111416
10CENSY366


The top 10 countries (as defined by the 2-character country code), ordered by the number of suspected botnet IPs are:


The top 10 TCP ports, ordered by the number of connection attempts received are:

RankCountry/Region# of suspected botnet IPs
1United States7583
2China4411
3Singapore1609
4France490
5Hong Kong411
6Indonesia338
7United Kingdom325
8India308
9Germany304
10European Union283
Labels:
Posted by at No comments:

Monday, January 5, 2026

Botnet Statistics [2026-01-04]

(To download the latest zombie ip list, please visit the Daily Zombie IP Lists for January 2026.
detection period: 2026-01-04 00:00-23:59 UTC
total number of suspected botnet IPs: 20390
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 19204
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by the number of suspected botnet IPs are:

RankTCP port number# of connection attempts received
15900530568
2800088511
3532283389
42278744
5344365365
6777761911
7133356569
852255565
91022247678
10999045003
RankNetwork# of suspected botnet IPs
1MSFT1384
2GOOGLE-CLOUD1007
3PAN-22947
4AL-3904
5BYTEPLUS-SG878
6ASEPL-SG525
7VOLCANO-ENGINE510
8FR-ONYPHE-20191111416
9ALISOFT401
10CENSY361


The top 10 countries (as defined by the 2-character country code), ordered by the number of suspected botnet IPs are:


The top 10 TCP ports, ordered by the number of connection attempts received are:

RankCountry/Region# of suspected botnet IPs
1United States8365
2China4304
3Singapore1593
4France542
5Hong Kong416
6United Kingdom337
7European Union298
8Germany267
9Indonesia266
10Netherlands263
Labels:
Posted by at No comments:

Sunday, January 4, 2026

Botnet Statistics [2026-01-03]

(To download the latest zombie ip list, please visit the Daily Zombie IP Lists for January 2026.
detection period: 2026-01-03 00:00-23:59 UTC
total number of suspected botnet IPs: 19694
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 18503
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by the number of suspected botnet IPs are:

RankTCP port number# of connection attempts received
15900511998
2600095052
32273941
4600170795
5777765337
6532264774
7133356966
852256296
9226655986
10800041943
RankNetwork# of suspected botnet IPs
1MSFT1407
2GOOGLE-CLOUD1005
3PAN-22949
4AL-3909
5BYTEPLUS-SG878
6ASEPL-SG537
7VOLCANO-ENGINE510
8FR-ONYPHE-20191111416
9ALISOFT411
10CENSY374


The top 10 countries (as defined by the 2-character country code), ordered by the number of suspected botnet IPs are:


The top 10 TCP ports, ordered by the number of connection attempts received are:

RankCountry/Region# of suspected botnet IPs
1United States7589
2China4191
3Singapore1578
4France533
5Hong Kong409
6United Kingdom323
7Indonesia320
8Germany309
9Russian Federation291
10India288
Labels:
Posted by at No comments:

Saturday, January 3, 2026

Botnet Statistics [2026-01-02]

(To download the latest zombie ip list, please visit the Daily Zombie IP Lists for January 2026.
detection period: 2026-01-02 00:00-23:59 UTC
total number of suspected botnet IPs: 19767
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 18494
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by the number of suspected botnet IPs are:

RankTCP port number# of connection attempts received
15900490012
29999101938
3995575191
452256119
52254005
6322348805
7777740388
8133340227
9590135741
10590225046
RankNetwork# of suspected botnet IPs
1MSFT1392
2GOOGLE-CLOUD1007
3PAN-22949
4AL-3905
5BYTEPLUS-SG878
6ASEPL-SG518
7VOLCANO-ENGINE512
8FR-ONYPHE-20191111416
9ALISOFT385
10CENSY381


The top 10 countries (as defined by the 2-character country code), ordered by the number of suspected botnet IPs are:


The top 10 TCP ports, ordered by the number of connection attempts received are:

RankCountry/Region# of suspected botnet IPs
1United States7674
2China4165
3Singapore1548
4France550
5Hong Kong403
6Indonesia342
7Germany322
8United Kingdom307
9Russian Federation289
10European Union284
Labels:
Posted by at No comments:

Friday, January 2, 2026

Botnet Statistics [2026-01-01]

(To download the latest zombie ip list, please visit the Daily Zombie IP Lists for January 2026.
detection period: 2026-01-01 00:00-23:59 UTC
total number of suspected botnet IPs: 22584
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 21445
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by the number of suspected botnet IPs are:

RankTCP port number# of connection attempts received
15900476160
2999990369
352267010
42266799
577741885
6388341195
7225533598
8590130634
9590224521
105962219297
RankNetwork# of suspected botnet IPs
1MSFT1345
2GOOGLE-CLOUD1004
3PAN-22949
4AL-3903
5BYTEPLUS-SG878
6ASEPL-SG528
7VOLCANO-ENGINE503
8FR-ONYPHE-20191111415
9ALISOFT400
10CENSY379


The top 10 countries (as defined by the 2-character country code), ordered by the number of suspected botnet IPs are:


The top 10 TCP ports, ordered by the number of connection attempts received are:

RankCountry/Region# of suspected botnet IPs
1United States7754
2China7176
3Singapore1594
4France551
5Hong Kong399
6United Kingdom316
7Germany313
8Netherlands296
9Indonesia287
10European Union271
Labels:
Posted by at No comments:

Daily Zombie Lists for January 2026(2026年01月,每日殭屍電腦IP清單)

To facilitate security research, I will release the daily zombie IP lists in CSV format here for anyone interested to download. The data columns are defined as follows:
為協助資安方面的研究,我將每日釋出CSV格式的殭屍電腦IP清單,供任何有興趣的人下載。資料欄位定義如下:

Column 1: The date and time in UTC when the last connection attempt (port scans) from the zombie IP (column 2) was detected;
第1欄:該殭屍電腦最後一次被偵測到企圖連線的日期、時間,時區為UTC;
Column 2: Zombie IP;
第2欄:該殭屍電腦的IP位址;
Column 3: TCP destination port number scanned by the zombie.
第3欄:該殭屍電腦所掃描的TCP埠號。

Join the "Suspected Zombie IP List" Telegram channel to get notified when the latest data are ready for download.
想在第一時間取得資料下載網址?請加入Suspected Zombie IP List的Telegram頻道。

Here are the download links of the daily zombie IP lists for January 2026 (without excluding IP addresses of TOR exits and so-called security researchers' nodes.):
以下是2026年01月的每日殭屍電腦IP清單的下載網址(未濾除TOR exit與所謂“資安研究者”的主機IP):

01/01: download link 下載網址; MD5sum: 17a23fe51f25fd701e4541169783d008
01/02: download link 下載網址; MD5sum: 0af39cf08665567d4d438ebc86824b2c
01/03: download link 下載網址; MD5sum: dc37e83893c7fd1c192a786681dbcb37
01/04: download link 下載網址; MD5sum: 085f12b05aee989ae52f50dd743605df
01/05: download link 下載網址; MD5sum: 82455c64175b3bfebef5759d0e35dcde
01/09: download link 下載網址; MD5sum: bb3da5c2f25eca1ebbb8e7182d796d9b
01/10: download link 下載網址; MD5sum: ede46fdb2a8e1ea893f85e30900676b7
01/11: download link 下載網址; MD5sum: 67e0bec0a9c8350ee7ea59ae55c098b3
01/12: download link 下載網址; MD5sum: 4f5b9a10358911f61c4c41940a8a5d92
01/13: download link 下載網址; MD5sum: fbe631e39835956a1091a71463628189
01/14: download link 下載網址; MD5sum: 5639d44f0960fc726dd62998c6406fe4
01/15: download link 下載網址; MD5sum: 7a8167cae5d7359cfb087e590f0780bb
01/16: download link 下載網址; MD5sum: 5d5ff8e731c0179589168d8f465ca268
01/17: download link 下載網址; MD5sum: b6914c0f5e0a68b42dd9e68c3220d2f3
01/18: download link 下載網址; MD5sum: c21704e2f1671ad0974f89a802b59a5d
01/19: download link 下載網址; MD5sum: ef78eb6e1e782d340655de7c58597d84
01/20: download link 下載網址; MD5sum: cc0ccfac942b34b1933d08f3a52b3600
01/21: download link 下載網址; MD5sum: 3bf22e91c6feafd7d64081af2bd49fed
01/22: download link 下載網址; MD5sum: 12366b726f0f873c5c57e602eba200a1
01/23: download link 下載網址; MD5sum: 48c54a3d1a844d7fbe66a796c173c96c
Labels:
Posted by at No comments:

Thursday, January 1, 2026

Botnet Statistics [2025-12-31]

(To download the latest zombie ip list, please visit the Daily Zombie IP Lists for December 2025.
detection period: 2025-12-31 00:00-23:59 UTC
total number of suspected botnet IPs: 26398
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 25159
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by the number of suspected botnet IPs are:

RankTCP port number# of connection attempts received
15900338219
2929257277
3225557038
4999955922
52255779
6132253678
752251281
8112245730
9991137932
10344331398
RankNetwork# of suspected botnet IPs
1MSFT1377
2GOOGLE-CLOUD1000
3PAN-22945
4AL-3926
5BYTEPLUS-SG878
6ASEPL-SG568
7VOLCANO-ENGINE519
8CLOUDFLARENET445
9UNICOM437
10ALISOFT410


The top 10 countries (as defined by the 2-character country code), ordered by the number of suspected botnet IPs are:


The top 10 TCP ports, ordered by the number of connection attempts received are:

RankCountry/Region# of suspected botnet IPs
1China10439
2United States7975
3Singapore1661
4France467
5Hong Kong414
6Indonesia352
7Germany327
8United Kingdom324
9India290
10Russian Federation288
Labels:
Posted by at No comments:

Botnet Statistics [2025-12-30]

(To download the latest zombie ip list, please visit the Daily Zombie IP Lists for December 2025.
detection period: 2025-12-30 00:00-23:59 UTC
total number of suspected botnet IPs: 21452
number of botnet IPs notified to network operators (best case, if all mail were sent out successfully): 20135
number of spam blocked: 0
recipient count of spam blocked: 0

The top 10 networks (as found in WHOIS), ordered by the number of suspected botnet IPs are:

RankTCP port number# of connection attempts received
15900402373
2929270610
3702267752
4132262798
52260345
6255560078
7112259318
8225558447
9344343080
10224433316
RankNetwork# of suspected botnet IPs
1MSFT1412
2GOOGLE-CLOUD1002
3PAN-22948
4AL-3935
5BYTEPLUS-SG879
6ASEPL-SG572
7VOLCANO-ENGINE531
8ALISOFT428
9CENSY371
10FR-ONYPHE-20191111368


The top 10 countries (as defined by the 2-character country code), ordered by the number of suspected botnet IPs are:


The top 10 TCP ports, ordered by the number of connection attempts received are:

RankCountry/Region# of suspected botnet IPs
1United States8478
2China4367
3Singapore1665
4France478
5Hong Kong475
6United Kingdom375
7Germany360
8Indonesia357
9Russian Federation336
10Netherlands328
Labels:
Posted by at No comments:
Subscribe to: Comments (Atom)
RankTCP port number# of connection attempts received
15900407974
282273369
3700071975
4702270690
5929268981
6132262809
7123461565
8225554556
92251855
10224434930