Suspected Bot List [2013-04-29]

detection period: 2013-04-29 00:00-23:59 UTC
number of suspected bots' IPs listed here: 622

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country code	IP address	Country
AE	194.170.149.21	Arab Emirates
AL	82.114.70.102	Albania
AO	196.223.13.230	Angola
BG	212.73.156.197	Bulgaria
BY	91.149.167.80	Belarus
CA	68.70.150.92	Canada
CA	70.38.37.207	Canada
CA	206.248.184.100	Canada
CI	213.136.105.210	Ivory Coast
CO	190.6.160.146	Colombia
CZ	77.104.244.69	Czech Republic
CZ	89.177.122.232	Czech Republic
DE	78.138.117.42	Germany
DE	84.11.89.66	Germany
DE	84.246.251.237	Germany
DE	85.116.198.151	Germany
DE	85.205.253.214	Germany
DZ	193.194.87.59	Algeria
EC	186.42.182.5	Ecuador
EG	196.218.229.14	Egypt
ES	149.126.34.213	Spain
ES	213.171.239.5	Spain
GB	37.220.19.147	United Kingdom
GB	46.17.63.169	United Kingdom
GB	46.32.233.152	United Kingdom
GB	46.166.178.84	United Kingdom
GB	77.246.20.2	United Kingdom
GB	83.218.130.114	United Kingdom
GB	89.105.3.212	United Kingdom
GB	89.106.131.16	United Kingdom
GB	93.93.129.119	United Kingdom
GB	109.204.5.228	United Kingdom
GB	193.164.207.16	United Kingdom
GE	92.241.80.222	Republic Of Georgia
GH	212.96.12.199	Ghana
GR	78.87.9.40	Greece
GT	200.30.165.178	Guatemala
HN	190.107.140.77	Honduras
IL	80.250.154.233	Israel
IN	117.211.91.147	India
IN	117.240.239.120	India
IN	122.180.96.110	India
IN	122.183.99.146	India
IN	125.17.98.200	India
IN	182.72.118.131	India
IN	182.73.139.30	India
IN	202.63.105.226	India
IR	93.126.25.35	Iran
IT	62.97.40.214	Italy
JO	87.236.232.231	Jordan
KE	41.89.96.20	Kenya
KE	41.139.206.178	Kenya
KW	62.150.12.46	Kuwait
KW	213.132.241.7	Kuwait
LV	46.183.219.137	Latvia
MD	77.89.251.70	Republic Of Moldova
MV	202.21.182.26	Republic of Maldives
MX	177.227.88.125	Mexico
MX	187.162.207.98	Mexico
MX	187.241.73.253	Mexico
MX	200.33.20.40	Mexico
MX	201.159.106.90	Mexico
MX	201.164.145.236	Mexico
NG	41.223.66.86	Nigeria
NI	186.1.10.154	Nicaragua
NO	212.4.34.78	Norway
NZ	202.169.192.130	New Zealand
PH	121.97.26.86	Philippines
PH	124.104.141.204	Philippines
PH	202.124.193.11	Philippines
PK	111.68.104.132	Pakistan
PK	111.68.104.133	Pakistan
PK	115.186.58.131	Pakistan
PK	124.109.47.66	Pakistan
PK	202.69.45.52	Pakistan
RO	89.120.102.13	Romania
RO	91.220.26.4	Romania
RS	84.22.61.190	Serbia
RS	91.150.124.71	Serbia
RS	178.149.182.28	Serbia
RS	194.106.178.161	Serbia
RS	212.200.156.184	Serbia
RU	188.134.20.63	Russian Federation
SA	94.77.199.148	Saudi Arabia
TR	82.222.171.203	Turkey
TR	82.222.189.43	Turkey
TR	85.105.126.140	Turkey
TR	89.145.185.42	Turkey
TR	95.9.55.90	Turkey
UA	82.207.51.92	Ukraine
UA	91.212.124.153	Ukraine
US	50.194.150.131	United States
US	65.98.75.14	United States
US	66.109.21.60	United States
US	67.20.29.147	United States
US	67.236.113.226	United States
US	69.18.205.139	United States
US	108.163.195.37	United States
US	198.55.102.12	United States
US	198.154.60.221	United States
US	199.36.74.133	United States
US	199.87.232.107	United States
US	200.62.8.50	United States
US	205.208.148.104	United States
US	206.217.198.12	United States
US	207.157.71.132	United States
US	208.89.209.81	United States
US	209.239.112.104	United States

List from greylisting:

Botnet Statistics [2013-04-29]

detection period: 2013-04-29 00:00-23:59 UTC
total number of suspected botnet IPs: 3278
number of botnet IPs notified to network operators: 2659
number of spam blocked: 68018
recipient count of spam blocked: 2090193

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

Rank	Network	# of suspected botnet IPs
1	BY-BELPAK-20091210	190
2	CHINANET-HE	180
3	CHINANET-GD	86
4	BSNLNET	67
5	CHINANET-HA	61
6	HINET-NET	56
7	BY-BELPAK-20120330	47
8	BY-BELPAK-20080213	42
9	MSFT-EP	39
10	RCOM	36

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

Rank	Country	# of suspected botnet IPs
1	China	749
2	Belarus	346
3	United States	244
4	India	210
5	Ukraine	148
6	Kazakhstan	127
7	Russian Federation	111
8	Brazil	107
9	Taiwan	97
10	Romania	89

Suspected Bot List [2013-04-28]

detection period: 2013-04-28 00:00-23:59 UTC
number of suspected bots' IPs listed here: 633

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country code	IP address	Country
AE	194.170.149.21	Arab Emirates
AL	82.114.70.102	Albania
AO	196.223.13.230	Angola
BG	212.73.156.197	Bulgaria
BY	91.149.167.80	Belarus
CA	68.70.150.92	Canada
CA	70.38.37.207	Canada
CA	206.248.184.100	Canada
CI	213.136.105.210	Ivory Coast
CU	190.6.90.204	Cuba
CZ	77.104.244.69	Czech Republic
CZ	89.177.122.232	Czech Republic
CZ	212.67.82.93	Czech Republic
DE	78.138.117.42	Germany
DE	84.11.89.66	Germany
DE	84.246.251.237	Germany
DE	85.116.198.151	Germany
DE	85.205.253.214	Germany
DE	88.152.29.67	Germany
DZ	193.194.87.59	Algeria
EC	186.42.182.5	Ecuador
EG	196.218.229.14	Egypt
ES	149.126.34.213	Spain
ES	213.171.239.5	Spain
EU	84.40.11.180	European Union
GB	37.220.19.147	United Kingdom
GB	46.17.63.169	United Kingdom
GB	46.166.178.84	United Kingdom
GB	77.246.20.2	United Kingdom
GB	83.218.130.114	United Kingdom
GB	89.105.3.212	United Kingdom
GB	89.106.131.16	United Kingdom
GB	93.93.129.119	United Kingdom
GB	193.164.207.16	United Kingdom
GE	92.241.80.222	Republic Of Georgia
GH	212.96.12.199	Ghana
GR	78.87.9.40	Greece
GT	200.30.165.178	Guatemala
HN	190.107.140.77	Honduras
IL	80.250.154.233	Israel
IL	82.102.158.5	Israel
IN	117.211.91.147	India
IN	117.240.239.120	India
IN	122.180.96.110	India
IN	122.183.99.146	India
IN	125.17.98.200	India
IN	182.72.118.131	India
IN	182.73.111.162	India
IN	182.73.139.30	India
IN	202.63.105.226	India
IR	82.99.246.10	Iran
IR	93.126.25.35	Iran
IT	62.97.40.214	Italy
IT	213.149.213.37	Italy
JO	87.236.232.231	Jordan
KE	41.89.96.20	Kenya
KE	41.139.206.178	Kenya
KW	213.132.241.7	Kuwait
LV	46.183.219.137	Latvia
LV	94.30.129.199	Latvia
MD	77.89.251.70	Republic Of Moldova
MD	95.65.86.236	Republic Of Moldova
MV	202.21.182.26	Republic of Maldives
MX	177.227.88.125	Mexico
MX	177.228.74.54	Mexico
MX	187.137.22.85	Mexico
MX	187.141.185.118	Mexico
MX	187.162.207.98	Mexico
MX	187.174.173.18	Mexico
MX	187.241.73.253	Mexico
MX	187.247.92.77	Mexico
MX	200.33.20.40	Mexico
MX	201.147.189.118	Mexico
MX	201.159.106.90	Mexico
MX	201.164.145.236	Mexico
NG	41.223.66.86	Nigeria
NI	186.1.10.154	Nicaragua
NO	212.4.34.78	Norway
NZ	202.169.192.130	New Zealand
PH	121.97.26.86	Philippines
PH	124.104.141.204	Philippines
PH	202.124.193.11	Philippines
PK	111.68.104.132	Pakistan
PK	111.68.104.133	Pakistan
PK	115.186.58.131	Pakistan
PK	124.109.47.66	Pakistan
PK	202.69.45.52	Pakistan
PK	210.2.171.13	Pakistan
RO	89.120.102.13	Romania
RO	91.220.26.4	Romania
RS	84.22.61.190	Serbia
RS	91.150.124.71	Serbia
RS	178.149.182.28	Serbia
RS	194.106.178.161	Serbia
RS	212.200.156.184	Serbia
RU	188.134.20.63	Russian Federation
SA	94.77.199.148	Saudi Arabia
SK	93.184.71.66	Slovakia
SN	196.207.216.131	Senegal
TN	41.230.10.190	Tunisia
TR	82.222.171.203	Turkey
TR	82.222.189.43	Turkey
TR	85.105.126.140	Turkey
TR	89.145.185.42	Turkey
TR	95.9.55.90	Turkey
TR	159.253.44.163	Turkey
TZ	196.41.61.58	Tanzania
UA	82.207.51.92	Ukraine
UA	91.212.124.153	Ukraine
US	50.194.150.131	United States
US	64.19.97.130	United States
US	65.98.75.14	United States
US	67.20.29.147	United States
US	67.236.113.226	United States
US	108.163.195.37	United States
US	129.79.148.159	United States
US	198.55.102.12	United States
US	198.143.159.144	United States
US	198.154.60.221	United States
US	199.241.136.105	United States
US	200.62.8.50	United States
US	205.208.148.104	United States
US	206.217.198.12	United States
US	207.157.71.132	United States
US	208.89.209.81	United States
ZA	196.211.119.139	South Africa

List from greylisting:

Botnet Statistics [2013-04-28]

detection period: 2013-04-28 00:00-23:59 UTC
total number of suspected botnet IPs: 3212
number of botnet IPs notified to network operators: 2582
number of spam blocked: 65340
recipient count of spam blocked: 1975253

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

Rank	Network	# of suspected botnet IPs
1	BY-BELPAK-20091210	202
2	CHINANET-HE	153
3	CHINANET-GD	109
4	BY-BELPAK-20120330	96
5	UNICOM-HA	93
6	HINET-NET	54
7	BY-BELPAK-20080213	53
8	BY-BELPAK-20120106	48
9	MSFT-EP	39
10	BSNLNET	39

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

Rank	Country	# of suspected botnet IPs
1	China	707
2	Belarus	448
3	Ukraine	195
4	United States	166
5	India	143
6	Kazakhstan	137
7	Russian Federation	127
8	Romania	104
9	Brazil	100
10	Taiwan	81

Suspected Bot List [2013-04-27]

detection period: 2013-04-27 00:00-23:59 UTC
number of suspected bots' IPs listed here: 628

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country code	IP address	Country
AE	83.111.92.120	Arab Emirates
AE	94.200.108.10	Arab Emirates
AL	82.114.70.102	Albania
AO	196.223.13.230	Angola
BD	180.211.179.30	Bangladesh
BG	212.73.156.197	Bulgaria
BY	91.149.167.80	Belarus
CA	68.70.150.92	Canada
CA	70.38.37.207	Canada
CI	213.136.105.210	Ivory Coast
CZ	77.104.244.69	Czech Republic
CZ	89.177.122.232	Czech Republic
CZ	212.67.82.93	Czech Republic
DE	77.23.13.20	Germany
DE	84.11.89.66	Germany
DE	84.246.251.237	Germany
DE	85.116.198.151	Germany
DE	85.205.253.214	Germany
DZ	193.194.87.59	Algeria
EC	186.42.182.5	Ecuador
EG	196.218.229.14	Egypt
ES	84.124.36.238	Spain
ES	213.171.239.5	Spain
GB	37.220.19.147	United Kingdom
GB	46.17.63.169	United Kingdom
GB	77.246.20.2	United Kingdom
GB	83.218.130.114	United Kingdom
GB	89.105.3.212	United Kingdom
GB	89.106.131.16	United Kingdom
GB	93.93.129.119	United Kingdom
GB	193.164.207.16	United Kingdom
GH	212.96.12.199	Ghana
GR	78.87.9.40	Greece
GT	200.30.165.178	Guatemala
HN	190.107.140.77	Honduras
IN	27.49.107.83	India
IN	117.211.91.147	India
IN	117.240.239.120	India
IN	122.180.96.110	India
IN	122.183.99.146	India
IN	125.17.98.200	India
IN	182.72.118.131	India
IN	182.73.111.162	India
IN	182.73.139.30	India
IN	202.63.105.226	India
IQ	95.159.105.2	Iraq
IR	31.47.40.88	Iran
IR	82.99.246.10	Iran
IR	89.165.109.165	Iran
IR	93.126.25.35	Iran
IT	62.97.40.214	Italy
IT	95.171.57.129	Italy
IT	213.149.213.37	Italy
JO	87.236.232.231	Jordan
KE	41.89.96.20	Kenya
KW	213.132.241.7	Kuwait
LV	46.183.219.137	Latvia
MV	202.21.182.26	Republic of Maldives
MX	177.227.88.125	Mexico
MX	177.228.74.54	Mexico
MX	187.137.22.85	Mexico
MX	187.141.185.118	Mexico
MX	187.162.207.98	Mexico
MX	187.174.173.18	Mexico
MX	187.241.73.253	Mexico
MX	187.247.92.77	Mexico
MX	189.198.198.35	Mexico
MX	200.33.20.40	Mexico
MX	200.53.147.250	Mexico
MX	201.147.189.118	Mexico
MX	201.159.106.90	Mexico
NI	186.1.10.154	Nicaragua
NO	212.4.34.78	Norway
NZ	121.73.60.67	New Zealand
NZ	202.169.192.130	New Zealand
PH	121.97.26.86	Philippines
PH	124.104.141.204	Philippines
PH	202.124.193.11	Philippines
PK	111.68.104.133	Pakistan
PK	124.109.47.66	Pakistan
PK	210.2.171.13	Pakistan
RO	78.97.216.93	Romania
RO	89.120.102.13	Romania
RO	91.220.26.4	Romania
RS	84.22.61.190	Serbia
RS	91.150.124.71	Serbia
RS	178.149.182.28	Serbia
RS	194.106.178.161	Serbia
RU	178.237.184.222	Russian Federation
RU	188.134.20.63	Russian Federation
SA	94.77.199.148	Saudi Arabia
SK	85.237.244.128	Slovakia
SK	93.184.71.66	Slovakia
SN	196.207.216.131	Senegal
SV	201.247.174.177	El Salvador
TN	41.230.10.190	Tunisia
TR	82.222.171.203	Turkey
TR	82.222.189.43	Turkey
TR	89.145.185.42	Turkey
TR	95.9.55.90	Turkey
TZ	196.41.61.58	Tanzania
UA	91.212.124.153	Ukraine
US	50.194.150.131	United States
US	64.19.97.130	United States
US	65.98.75.14	United States
US	67.20.29.147	United States
US	67.236.113.226	United States
US	108.163.195.37	United States
US	129.79.148.159	United States
US	198.55.102.12	United States
US	198.143.159.144	United States
US	199.241.136.105	United States
US	200.62.8.50	United States
US	205.208.148.104	United States
US	207.157.71.132	United States
US	208.89.209.81	United States
ZA	196.211.119.139	South Africa

List from greylisting:

Botnet Statistics [2013-04-27]

detection period: 2013-04-27 00:00-23:59 UTC
total number of suspected botnet IPs: 3884
number of botnet IPs notified to network operators: 3257
number of spam blocked: 48662
recipient count of spam blocked: 1452915

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

Rank	Network	# of suspected botnet IPs
1	CHINANET-JS	600
2	UNICOM-HA	391
3	BY-BELPAK-20091210	191
4	CHINANET-HE	125
5	CHINANET-GD	104
6	BY-BELPAK-20120330	55
7	BSNLNET	55
8	HINET-NET	53
9	BY-BELPAK-20120106	47
10	KZ-KAZAKTELECOM-20091126	39

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

Rank	Country	# of suspected botnet IPs
1	China	1615
2	Belarus	371
3	Ukraine	181
4	India	168
5	United States	153
6	Kazakhstan	150
7	Russian Federation	112
8	Romania	110
9	Brazil	92
10	Taiwan	83

Suspected Bot List [2013-04-26]

detection period: 2013-04-26 00:00-23:59 UTC
number of suspected bots' IPs listed here: 471

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country code	IP address	Country
AE	83.111.92.120	Arab Emirates
AE	94.200.108.10	Arab Emirates
AE	194.170.149.21	Arab Emirates
AL	82.114.70.102	Albania
AO	196.223.13.230	Angola
BD	180.211.179.30	Bangladesh
BG	77.85.175.82	Bulgaria
BG	212.73.156.197	Bulgaria
BR	150.161.30.7	Brazil
BY	176.60.192.54	Belarus
CA	68.70.150.92	Canada
CA	70.38.37.207	Canada
CA	99.244.26.71	Canada
CH	81.17.19.31	Switzerland
CI	213.136.105.210	Ivory Coast
CZ	77.104.244.69	Czech Republic
DE	77.23.13.20	Germany
DE	78.138.117.42	Germany
DE	84.11.89.66	Germany
DE	84.246.251.237	Germany
DE	85.116.198.151	Germany
DE	85.205.253.214	Germany
DZ	193.194.87.59	Algeria
EG	196.218.229.14	Egypt
ES	84.124.36.238	Spain
ES	149.126.34.213	Spain
ES	213.171.239.5	Spain
GB	37.220.19.147	United Kingdom
GB	46.17.63.169	United Kingdom
GB	77.246.20.2	United Kingdom
GB	83.218.130.114	United Kingdom
GB	89.105.3.212	United Kingdom
GB	93.93.129.119	United Kingdom
GB	95.154.243.37	United Kingdom
GB	188.227.161.40	United Kingdom
GB	188.227.161.46	United Kingdom
GB	188.227.161.47	United Kingdom
GB	193.164.207.16	United Kingdom
GB	217.30.116.142	United Kingdom
GH	212.96.12.199	Ghana
GR	78.87.9.40	Greece
GT	200.30.165.178	Guatemala
HN	190.107.140.77	Honduras
IL	82.102.153.250	Israel
IN	117.240.239.120	India
IN	122.180.96.110	India
IN	122.183.99.146	India
IN	125.17.98.200	India
IN	182.72.118.131	India
IN	182.73.111.162	India
IN	182.73.139.30	India
IN	202.63.105.226	India
IN	203.153.39.18	India
IQ	95.159.105.2	Iraq
IR	31.47.40.88	Iran
IR	82.99.246.10	Iran
IR	89.165.109.165	Iran
IR	93.126.25.35	Iran
IT	95.171.57.129	Italy
IT	213.149.213.37	Italy
JO	87.236.232.231	Jordan
KE	41.89.96.20	Kenya
KW	62.150.12.46	Kuwait
KW	213.132.241.7	Kuwait
LV	46.183.219.137	Latvia
MD	77.89.251.70	Republic Of Moldova
MN	180.149.96.169	Mongolia
MV	202.21.182.26	Republic of Maldives
MX	177.227.88.125	Mexico
MX	177.228.74.54	Mexico
MX	187.137.22.85	Mexico
MX	187.141.185.118	Mexico
MX	187.162.207.98	Mexico
MX	187.174.173.18	Mexico
MX	187.174.234.99	Mexico
MX	187.241.73.253	Mexico
MX	187.247.92.77	Mexico
MX	189.198.198.35	Mexico
MX	200.33.20.40	Mexico
MX	200.53.147.250	Mexico
MX	201.147.189.118	Mexico
MX	201.159.106.90	Mexico
NI	186.1.10.154	Nicaragua
NO	212.4.34.78	Norway
NZ	121.73.60.67	New Zealand
NZ	202.169.192.130	New Zealand
PA	190.33.184.107	Panama
PH	121.97.26.86	Philippines
PH	124.104.141.204	Philippines
PH	202.124.193.11	Philippines
PK	111.68.104.133	Pakistan
PK	121.52.154.230	Pakistan
PK	210.2.171.13	Pakistan
RO	78.97.216.93	Romania
RO	91.220.26.4	Romania
RO	188.27.126.232	Romania
RS	84.22.61.190	Serbia
RS	178.149.182.28	Serbia
RS	194.106.178.161	Serbia
RU	188.134.20.63	Russian Federation
RU	195.190.118.6	Russian Federation
SA	94.77.199.148	Saudi Arabia
SV	201.247.174.177	El Salvador
TN	41.230.10.190	Tunisia
TR	82.222.171.203	Turkey
TR	82.222.189.43	Turkey
TR	85.105.126.140	Turkey
TR	89.145.185.42	Turkey
TR	95.9.55.90	Turkey
TR	188.132.237.61	Turkey
UA	91.212.124.153	Ukraine
US	50.20.219.165	United States
US	50.194.150.131	United States
US	64.33.143.164	United States
US	65.98.75.14	United States
US	67.20.29.147	United States
US	67.236.113.226	United States
US	72.249.55.100	United States
US	108.163.195.37	United States
US	192.184.3.251	United States
US	198.55.102.12	United States
US	199.231.85.222	United States
US	199.241.136.105	United States
US	205.208.148.104	United States
US	207.157.71.132	United States
US	208.89.209.81	United States
US	209.239.112.104	United States
ZA	196.211.119.139	South Africa

List from greylisting:

Botnet Statistics [2013-04-26]

detection period: 2013-04-26 00:00-23:59 UTC
total number of suspected botnet IPs: 4902
number of botnet IPs notified to network operators: 4438
number of spam blocked: 64421
recipient count of spam blocked: 1851240

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

Rank	Network	# of suspected botnet IPs
1	UNICOM-HA	1079
2	CHINANET-JS	786
3	CHINANET-HE	252
4	BY-BELPAK-20091210	188
5	UNICOM-GD	149
6	CHINANET-GD	123
7	TimeNet	57
8	BY-BELPAK-20120330	43
9	BY-BELPAK-20080213	37
10	VNPT-VNNIC-VN	36

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

Rank	Country	# of suspected botnet IPs
1	China	2871
2	Belarus	335
3	United States	249
4	Ukraine	146
5	Kazakhstan	139
6	Russian Federation	96
7	Brazil	89
8	India	67
9	Peru	62
10	Viet Nam	57

Suspected Bot List [2013-04-25]

detection period: 2013-04-25 00:00-23:59 UTC
number of suspected bots' IPs listed here: 549

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country code	IP address	Country
AE	83.111.92.120	Arab Emirates
AE	194.170.149.21	Arab Emirates
AL	82.114.70.102	Albania
AO	196.223.13.230	Angola
BD	180.211.179.30	Bangladesh
BR	150.161.30.7	Brazil
BY	91.149.167.80	Belarus
CA	70.38.37.207	Canada
CH	81.17.19.31	Switzerland
CI	213.136.105.210	Ivory Coast
CU	190.6.90.204	Cuba
CZ	77.104.244.69	Czech Republic
DE	77.23.13.20	Germany
DE	78.138.117.42	Germany
DE	84.11.89.66	Germany
DE	84.246.251.237	Germany
DE	85.116.198.151	Germany
DE	85.205.253.214	Germany
DZ	193.194.87.59	Algeria
ES	149.126.34.213	Spain
ES	213.171.239.5	Spain
GB	37.220.19.147	United Kingdom
GB	46.17.63.169	United Kingdom
GB	77.246.20.2	United Kingdom
GB	83.218.130.114	United Kingdom
GB	89.105.3.212	United Kingdom
GB	93.93.129.119	United Kingdom
GB	95.154.243.37	United Kingdom
GB	188.227.161.40	United Kingdom
GB	188.227.161.46	United Kingdom
GB	188.227.161.47	United Kingdom
GB	193.164.207.16	United Kingdom
GB	217.30.116.142	United Kingdom
GH	212.96.12.199	Ghana
GR	46.246.190.198	Greece
GR	78.87.9.40	Greece
HN	190.107.140.77	Honduras
IN	27.49.107.83	India
IN	117.240.239.120	India
IN	122.183.99.146	India
IN	125.17.98.200	India
IN	182.72.118.131	India
IN	182.73.111.162	India
IN	182.73.139.30	India
IN	202.63.105.226	India
IN	203.153.39.18	India
IQ	95.159.105.2	Iraq
IR	31.47.40.88	Iran
IR	82.99.246.10	Iran
IR	93.126.25.35	Iran
IT	213.149.213.37	Italy
JO	87.236.232.231	Jordan
KE	41.89.96.20	Kenya
KW	62.150.12.46	Kuwait
KW	213.132.241.7	Kuwait
LV	46.183.219.137	Latvia
LV	94.30.129.199	Latvia
MD	77.89.251.70	Republic Of Moldova
MN	180.149.96.169	Mongolia
MX	177.227.88.125	Mexico
MX	177.228.74.54	Mexico
MX	187.162.207.98	Mexico
MX	187.247.92.77	Mexico
MX	200.33.20.40	Mexico
MX	200.53.147.250	Mexico
MX	201.159.106.90	Mexico
NI	186.1.10.154	Nicaragua
NZ	202.169.192.130	New Zealand
PA	190.33.184.107	Panama
PH	121.97.26.86	Philippines
PH	124.104.141.204	Philippines
PH	202.124.193.11	Philippines
PK	121.52.154.230	Pakistan
PK	210.2.171.13	Pakistan
RO	91.220.26.4	Romania
RS	84.22.61.190	Serbia
RS	194.106.178.161	Serbia
RU	178.237.184.222	Russian Federation
RU	188.134.20.63	Russian Federation
RU	195.190.118.6	Russian Federation
SA	94.77.199.148	Saudi Arabia
TN	41.230.10.190	Tunisia
TR	82.222.171.203	Turkey
TR	82.222.189.43	Turkey
TR	85.105.126.140	Turkey
TR	89.145.185.42	Turkey
TR	95.9.55.90	Turkey
TR	188.132.237.61	Turkey
TZ	196.41.61.58	Tanzania
US	50.194.150.131	United States
US	66.109.21.60	United States
US	67.20.29.147	United States
US	67.236.113.226	United States
US	108.163.195.37	United States
US	192.184.3.251	United States
US	198.55.102.12	United States
US	199.231.85.222	United States
US	205.208.148.104	United States
US	207.157.71.132	United States
US	208.89.209.81	United States
US	209.239.112.104	United States
US	216.224.166.223	United States
ZA	41.185.36.50	South Africa
ZA	196.211.119.139	South Africa

List from greylisting:

Botnet Statistics [2013-04-25]

detection period: 2013-04-25 00:00-23:59 UTC
total number of suspected botnet IPs: 5155
number of botnet IPs notified to network operators: 4618
number of spam blocked: 27486
recipient count of spam blocked: 631412

To encourage cyber security information sharing (as some form of open data) while still giving victims enough time to clean up their computers, the IP list of suspected infected computers will be released here 10 days after its respective botnet statistics gets published.

Suspected Bots IP [2013-04-25]

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

Rank	Network	# of suspected botnet IPs
1	UNICOM-HA	1450
2	CHINANET-JS	496
3	CHINANET-HE	287
4	BY-BELPAK-20091210	214
5	CHINANET-GD	114
6	UNICOM-GD	97
7	BY-BELPAK-20120330	60
8	TimeNet	49
9	BY-BELPAK-20080213	46
10	VNPT-VNNIC-VN	44

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

Rank	Country	# of suspected botnet IPs
1	China	2915
2	Belarus	392
3	United States	297
4	Ukraine	178
5	Kazakhstan	145
6	Russian Federation	90
7	Brazil	89
8	India	82
9	Viet Nam	72
10	Iran	53

Suspected Bot List [2013-04-24]

detection period: 2013-04-24 00:00-23:59 UTC
number of suspected bots' IPs listed here: 609

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country code	IP address	Country

List from greylisting:

Botnet Statistics [2013-04-24]

detection period: 2013-04-24 00:00-23:59 UTC
total number of suspected botnet IPs: 6119
number of botnet IPs notified to network operators: 5510
number of spam blocked: 18265
recipient count of spam blocked: 143754

To encourage cyber security information sharing (as some form of open data) while still giving victims enough time to clean up their computers, the IP list of suspected infected computers will be released here 10 days after its respective botnet statistics gets published.

Suspected Bots IP [2013-04-24]

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

Rank	Network	# of suspected botnet IPs
1	CHINANET-JS	1468
2	UNICOM-HA	1026
3	CRTC	349
4	CHINANET-HE	340
5	BY-BELPAK-20091210	185
6	UNICOM-GD	177
7	CHINANET-GD	126
8	CTTNET	104
9	TimeNet	56
10	BY-BELPAK-20120330	49

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

Rank	Country	# of suspected botnet IPs
1	China	4004
2	Belarus	343
3	United States	261
4	Ukraine	156
5	Kazakhstan	138
6	Peru	98
7	Viet Nam	71
8	Korea	71
9	India	63
10	Russian Federation	53

Suspected Bot List [2013-04-23]

detection period: 2013-04-23 00:00-23:59 UTC
number of suspected bots' IPs listed here: 598

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country code	IP address	Country
AL	82.114.70.102	Albania
AO	196.223.13.230	Angola
BG	77.85.175.82	Bulgaria
BG	78.90.20.249	Bulgaria
BR	150.161.30.7	Brazil
CA	70.38.37.207	Canada
CI	41.66.25.36	Ivory Coast
CN	202.107.222.50	China
CZ	77.104.244.69	Czech Republic
DE	5.45.179.226	Germany
DE	77.23.13.20	Germany
DE	80.241.211.18	Germany
DE	84.246.251.237	Germany
DE	85.205.253.214	Germany
DE	88.152.29.67	Germany
DZ	193.194.87.59	Algeria
EG	196.218.229.14	Egypt
ES	87.216.240.245	Spain
GB	37.220.10.52	United Kingdom
GB	37.220.19.147	United Kingdom
GB	46.17.63.169	United Kingdom
GB	46.32.233.152	United Kingdom
GB	46.166.178.84	United Kingdom
GB	77.246.20.2	United Kingdom
GB	83.218.130.114	United Kingdom
GB	88.107.176.95	United Kingdom
GB	89.105.3.212	United Kingdom
GB	93.93.129.119	United Kingdom
GB	95.154.243.37	United Kingdom
GB	188.227.161.40	United Kingdom
GB	188.227.161.46	United Kingdom
GB	193.164.207.16	United Kingdom
GR	78.87.9.40	Greece
GT	186.151.253.186	Guatemala
IN	59.96.66.2	India
IN	117.239.29.114	India
IN	117.240.239.120	India
IN	122.180.96.110	India
IN	122.183.99.146	India
IN	182.72.118.131	India
IN	182.73.111.162	India
IN	182.73.139.30	India
IN	202.63.105.226	India
IN	203.153.39.18	India
IR	77.237.185.33	Iran
IR	93.126.25.35	Iran
IT	62.97.40.214	Italy
IT	213.149.213.37	Italy
JO	87.236.232.231	Jordan
KE	41.89.96.20	Kenya
KG	212.112.107.188	Kyrgyzstan
KW	62.150.12.46	Kuwait
KW	213.132.241.7	Kuwait
MA	41.214.129.22	Morocco
MD	95.65.86.236	Republic Of Moldova
MV	202.21.182.26	Republic of Maldives
MX	177.227.88.125	Mexico
MX	177.228.74.54	Mexico
MX	187.137.22.85	Mexico
MX	187.141.185.118	Mexico
MX	187.162.207.98	Mexico
MX	187.174.173.18	Mexico
MX	187.244.120.28	Mexico
MX	187.247.92.77	Mexico
MX	189.198.198.35	Mexico
MX	200.33.20.40	Mexico
MX	200.53.147.250	Mexico
MX	201.159.106.90	Mexico
MX	201.164.145.236	Mexico
NI	186.1.10.154	Nicaragua
NL	185.13.224.51	Netherlands
NL	212.7.210.177	Netherlands
NL	213.126.90.227	Netherlands
NO	80.202.250.41	Norway
NO	212.4.34.78	Norway
NZ	121.73.60.67	New Zealand
NZ	202.169.192.130	New Zealand
PH	121.97.26.86	Philippines
PH	124.104.141.204	Philippines
PH	202.124.193.11	Philippines
PK	61.5.156.195	Pakistan
PK	202.69.45.52	Pakistan
PK	210.2.171.13	Pakistan
RO	78.97.216.93	Romania
RO	89.32.226.102	Romania
RO	89.120.102.13	Romania
RO	91.220.26.4	Romania
RS	84.22.61.190	Serbia
RS	178.149.182.28	Serbia
RS	194.106.178.161	Serbia
RU	178.237.184.222	Russian Federation
RU	188.134.20.63	Russian Federation
SA	94.77.199.148	Saudi Arabia
SE	79.138.113.235	Sweden
TN	41.230.10.190	Tunisia
TR	82.222.189.43	Turkey
TR	89.145.185.42	Turkey
TR	188.132.237.61	Turkey
TZ	196.41.61.58	Tanzania
UA	37.1.218.252	Ukraine
UA	91.212.124.153	Ukraine
UA	178.136.129.216	Ukraine
UA	188.191.238.205	Ukraine
US	50.194.150.131	United States
US	64.33.143.164	United States
US	67.20.29.147	United States
US	67.236.113.226	United States
US	87.76.30.198	United States
US	108.163.195.37	United States
US	108.166.205.163	United States
US	192.30.84.153	United States
US	192.81.249.4	United States
US	192.184.3.251	United States
US	199.15.251.184	United States
US	199.231.85.222	United States
US	199.241.136.105	United States
US	205.208.148.104	United States
US	206.190.158.235	United States
US	207.157.71.132	United States
US	207.182.133.221	United States
US	208.89.209.81	United States
ZW	41.57.125.190	Zimbabwe

List from greylisting:

Botnet Statistics [2013-04-23]

detection period: 2013-04-23 00:00-23:59 UTC
total number of suspected botnet IPs: 6080
number of botnet IPs notified to network operators: 5490
number of spam blocked: 64784
recipient count of spam blocked: 2015974

To encourage cyber security information sharing (as some form of open data) while still giving victims enough time to clean up their computers, the IP list of suspected infected computers will be released here 10 days after its respective botnet statistics gets published.

Suspected Bots IP [2013-04-23]

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

Rank	Network	# of suspected botnet IPs
1	CHINANET-JS	1891
2	CRTC	347
3	UNICOM-HA	311
4	CHINANET-HE	283
5	BY-BELPAK-20091210	192
6	UNICOM-GD	187
7	CHINANET-GD	153
8	CTTNET	121
9	TimeNet	58
10	BY-BELPAK-20120330	49

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

Rank	Country	# of suspected botnet IPs
1	China	3818
2	Belarus	343
3	United States	270
4	Ukraine	173
5	Kazakhstan	122
6	Russian Federation	102
7	Brazil	93
8	India	83
9	Peru	69
10	Viet Nam	60

Suspected Bot List [2013-04-22]

detection period: 2013-04-22 00:00-23:59 UTC
number of suspected bots' IPs listed here: 658

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country code	IP address	Country
AE	83.111.92.120	Arab Emirates
AE	195.229.241.181	Arab Emirates
AL	77.242.27.111	Albania
AL	80.78.67.98	Albania
AL	82.114.70.102	Albania
AL	213.207.41.34	Albania
AM	141.136.65.119	Armenia
AO	196.223.13.230	Angola
BD	180.211.179.30	Bangladesh
BG	77.85.175.82	Bulgaria
BR	150.161.30.7	Brazil
BR	177.137.0.123	Brazil
CA	70.38.37.207	Canada
CA	99.244.26.71	Canada
CA	174.142.104.5	Canada
CN	202.107.222.50	China
CO	190.0.60.238	Colombia
CZ	77.104.244.69	Czech Republic
DE	62.113.213.202	Germany
DE	77.23.13.20	Germany
DE	78.138.117.42	Germany
DE	80.241.212.224	Germany
DE	84.11.89.66	Germany
DE	84.246.251.237	Germany
DE	88.152.29.67	Germany
DZ	41.221.30.242	Algeria
DZ	193.194.87.59	Algeria
EC	186.5.102.162	Ecuador
EC	186.42.182.5	Ecuador
EG	196.218.229.14	Egypt
ES	87.216.240.245	Spain
ES	149.126.34.213	Spain
GB	46.17.63.169	United Kingdom
GB	77.246.20.2	United Kingdom
GB	83.218.130.114	United Kingdom
GB	87.113.141.230	United Kingdom
GB	89.105.3.212	United Kingdom
GB	93.93.129.119	United Kingdom
GB	95.154.243.37	United Kingdom
GB	146.185.31.170	United Kingdom
GB	188.227.161.40	United Kingdom
GB	188.227.161.46	United Kingdom
GB	188.227.161.47	United Kingdom
GB	193.164.207.16	United Kingdom
GH	212.96.12.199	Ghana
GR	78.87.9.40	Greece
HN	190.107.140.77	Honduras
IL	82.102.153.250	Israel
IN	14.139.191.193	India
IN	112.133.201.70	India
IN	117.211.91.147	India
IN	117.239.29.114	India
IN	117.239.132.146	India
IN	117.240.124.68	India
IN	117.240.239.120	India
IN	122.180.96.110	India
IN	122.183.99.146	India
IN	182.72.118.131	India
IN	182.73.111.162	India
IN	182.73.139.30	India
IN	202.63.105.226	India
IN	203.153.39.18	India
IQ	95.159.105.2	Iraq
IQ	109.224.20.138	Iraq
IR	82.99.246.10	Iran
IR	89.165.109.165	Iran
IR	93.126.25.35	Iran
IR	185.2.12.98	Iran
IT	213.149.213.37	Italy
JO	87.236.232.231	Jordan
KE	41.89.96.20	Kenya
KW	62.150.12.46	Kuwait
KW	213.132.241.7	Kuwait
MA	41.214.129.22	Morocco
MD	77.89.251.70	Republic Of Moldova
MD	95.65.86.236	Republic Of Moldova
MN	180.149.96.169	Mongolia
MV	202.21.182.26	Republic of Maldives
MX	177.227.88.125	Mexico
MX	177.228.74.54	Mexico
MX	187.162.207.98	Mexico
MX	187.244.120.28	Mexico
MX	187.247.92.77	Mexico
MX	189.198.198.35	Mexico
MX	200.33.20.40	Mexico
MX	200.53.147.250	Mexico
MX	200.76.63.75	Mexico
MX	201.159.106.90	Mexico
MX	201.164.145.236	Mexico
NI	186.1.10.154	Nicaragua
NL	185.13.224.51	Netherlands
NL	213.126.90.227	Netherlands
NO	80.202.250.41	Norway
NO	212.4.34.78	Norway
NZ	121.73.60.67	New Zealand
NZ	202.169.192.130	New Zealand
PA	190.33.184.107	Panama
PH	112.199.89.158	Philippines
PH	121.97.26.86	Philippines
PH	124.104.141.204	Philippines
PH	202.124.193.11	Philippines
PH	210.16.60.5	Philippines
PK	61.5.156.195	Pakistan
PK	111.68.104.132	Pakistan
PK	121.52.154.230	Pakistan
PK	202.69.45.52	Pakistan
PK	210.2.171.13	Pakistan
RO	89.32.226.102	Romania
RO	91.220.26.4	Romania
RS	84.22.61.190	Serbia
RS	89.216.30.165	Serbia
RS	178.149.182.28	Serbia
RS	194.106.178.161	Serbia
RU	84.17.27.245	Russian Federation
RU	94.154.74.145	Russian Federation
RU	178.237.184.222	Russian Federation
RU	188.134.20.63	Russian Federation
SA	94.77.199.148	Saudi Arabia
SE	89.160.116.194	Sweden
SK	195.168.85.26	Slovakia
SN	196.207.216.131	Senegal
SV	190.86.180.193	El Salvador
TN	41.230.10.190	Tunisia
TN	193.95.90.194	Tunisia
TR	82.222.189.43	Turkey
TR	89.145.185.42	Turkey
TR	188.132.237.61	Turkey
UA	188.191.238.205	Ukraine
US	50.156.91.52	United States
US	50.194.150.131	United States
US	67.20.29.147	United States
US	67.236.113.226	United States
US	108.163.195.37	United States
US	108.166.205.163	United States
US	184.82.232.167	United States
US	192.30.84.133	United States
US	192.30.84.153	United States
US	192.81.249.4	United States
US	192.184.3.251	United States
US	199.101.48.123	United States
US	199.188.194.208	United States
US	205.208.148.104	United States
US	207.157.71.132	United States
US	207.182.133.221	United States
US	208.89.209.81	United States
US	209.239.112.104	United States

List from greylisting:

Botnet Statistics [2013-04-22]

detection period: 2013-04-22 00:00-23:59 UTC
total number of suspected botnet IPs: 6545
number of botnet IPs notified to network operators: 5900
number of spam blocked: 85260
recipient count of spam blocked: 2523918

To encourage cyber security information sharing (as some form of open data) while still giving victims enough time to clean up their computers, the IP list of suspected infected computers will be released here 10 days after its respective botnet statistics gets published.

Suspected Bots IP [2013-04-22]

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

Rank	Network	# of suspected botnet IPs
1	CHINANET-JS	2496
2	CRTC	343
3	CHINANET-HE	273
4	BY-BELPAK-20091210	193
5	CHINANET-GD	156
6	CTTNET	120
7	UNICOM-GD	119
8	BY-BELPAK-20120330	51
9	BY-BELPAK-20080213	47
10	TimeNet	43

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

Rank	Country	# of suspected botnet IPs
1	China	4032
2	United States	378
3	Belarus	368
4	Ukraine	212
5	Kazakhstan	143
6	Brazil	108
7	Russian Federation	101
8	India	76
9	Peru	70
10	Viet Nam	62

Suspected Bot List [2013-04-21]

detection period: 2013-04-21 00:00-23:59 UTC
number of suspected bots' IPs listed here: 482

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country code	IP address	Country
AE	83.111.92.120	Arab Emirates
AE	94.200.108.10	Arab Emirates
AL	77.242.27.111	Albania
AL	80.78.67.98	Albania
AL	82.114.70.102	Albania
AL	213.207.41.34	Albania
AM	141.136.65.119	Armenia
AO	196.223.13.230	Angola
BD	180.211.179.30	Bangladesh
BG	77.85.175.82	Bulgaria
BR	150.161.30.7	Brazil
BR	177.137.0.123	Brazil
CA	70.38.37.207	Canada
CA	99.244.26.71	Canada
CH	31.7.63.44	Switzerland
CN	202.107.222.50	China
CO	190.0.60.238	Colombia
CZ	77.104.244.69	Czech Republic
DE	62.113.213.202	Germany
DE	77.23.13.20	Germany
DE	78.138.117.42	Germany
DE	80.241.212.224	Germany
DE	84.11.89.66	Germany
DE	84.246.251.237	Germany
DE	85.195.73.98	Germany
DE	87.106.91.124	Germany
DE	88.152.29.67	Germany
DZ	41.221.30.242	Algeria
EC	186.5.102.162	Ecuador
EC	186.42.182.5	Ecuador
EE	5.34.241.93	Estonia
EG	196.218.229.14	Egypt
ES	84.124.36.238	Spain
ES	87.216.240.245	Spain
ES	149.126.34.213	Spain
GB	46.17.63.169	United Kingdom
GB	46.166.178.84	United Kingdom
GB	77.246.20.2	United Kingdom
GB	83.218.130.114	United Kingdom
GB	89.105.3.212	United Kingdom
GB	93.93.129.119	United Kingdom
GB	95.154.243.37	United Kingdom
GB	146.185.31.170	United Kingdom
GB	188.227.161.40	United Kingdom
GB	188.227.161.46	United Kingdom
GB	188.227.161.47	United Kingdom
GB	193.164.207.16	United Kingdom
GH	212.96.12.199	Ghana
GR	78.87.9.40	Greece
GT	186.151.253.186	Guatemala
HN	190.107.140.77	Honduras
IN	14.139.191.193	India
IN	61.1.33.177	India
IN	117.211.91.147	India
IN	117.239.29.114	India
IN	117.239.132.146	India
IN	117.240.124.68	India
IN	117.240.239.120	India
IN	122.180.96.110	India
IN	122.183.99.146	India
IN	182.72.118.131	India
IN	182.73.111.162	India
IN	182.73.139.30	India
IN	202.63.105.226	India
IN	203.153.39.18	India
IQ	95.159.105.2	Iraq
IQ	109.224.20.138	Iraq
IR	82.99.246.10	Iran
IR	89.165.109.165	Iran
IR	93.126.25.35	Iran
IR	185.2.12.98	Iran
IT	213.149.213.37	Italy
JO	87.236.232.231	Jordan
KE	41.89.96.20	Kenya
KW	62.150.12.46	Kuwait
KW	213.132.241.7	Kuwait
LV	94.30.129.199	Latvia
MA	41.214.129.22	Morocco
MD	77.89.251.70	Republic Of Moldova
MN	180.149.96.169	Mongolia
MV	202.21.182.26	Republic of Maldives
MX	177.227.88.125	Mexico
MX	187.162.207.98	Mexico
MX	189.198.198.35	Mexico
MX	200.33.20.40	Mexico
MX	200.53.147.250	Mexico
MX	200.57.144.81	Mexico
MX	200.76.63.75	Mexico
MX	201.159.106.90	Mexico
MX	201.164.145.236	Mexico
NI	186.1.10.154	Nicaragua
NO	80.202.250.41	Norway
NO	212.4.34.78	Norway
NZ	121.73.60.67	New Zealand
NZ	202.169.192.130	New Zealand
PA	190.33.184.107	Panama
PH	121.97.26.86	Philippines
PH	124.104.141.204	Philippines
PH	202.124.193.11	Philippines
PH	210.16.60.5	Philippines
PK	61.5.156.195	Pakistan
PK	116.58.48.141	Pakistan
PK	121.52.154.230	Pakistan
PK	202.69.45.52	Pakistan
PK	210.2.171.13	Pakistan
RO	78.97.216.93	Romania
RO	91.220.26.4	Romania
RS	84.22.61.190	Serbia
RS	89.216.30.165	Serbia
RS	178.149.182.28	Serbia
RS	194.106.178.161	Serbia
RU	178.213.33.95	Russian Federation
RU	178.237.184.222	Russian Federation
RU	213.21.31.194	Russian Federation
SE	37.46.166.66	Sweden
SE	89.160.116.194	Sweden
SK	195.168.85.26	Slovakia
SN	196.207.216.131	Senegal
SV	190.86.180.193	El Salvador
TJ	217.11.177.26	Tajikistan
TN	41.230.10.190	Tunisia
TN	193.95.90.194	Tunisia
TR	82.222.171.203	Turkey
TR	82.222.189.43	Turkey
TR	85.105.126.140	Turkey
TR	89.145.185.42	Turkey
TR	188.132.237.61	Turkey
UA	82.207.51.92	Ukraine
UA	91.212.124.153	Ukraine
UA	188.191.238.205	Ukraine
US	50.156.91.52	United States
US	50.194.150.131	United States
US	64.33.143.164	United States
US	67.20.29.147	United States
US	67.236.113.226	United States
US	108.163.195.37	United States
US	192.30.84.133	United States
US	192.30.84.153	United States
US	192.81.249.4	United States
US	192.184.3.251	United States
US	198.143.188.10	United States
US	199.101.48.123	United States
US	199.188.194.208	United States
US	205.208.148.104	United States
US	206.190.158.235	United States
US	207.157.71.132	United States
US	207.182.133.221	United States
US	208.89.209.81	United States
US	216.224.166.223	United States

List from greylisting:

Botnet Statistics [2013-04-21]

detection period: 2013-04-21 00:00-23:59 UTC
total number of suspected botnet IPs: 4460
number of botnet IPs notified to network operators: 3982
number of spam blocked: 138211
recipient count of spam blocked: 4071347

To encourage cyber security information sharing (as some form of open data) while still giving victims enough time to clean up their computers, the IP list of suspected infected computers will be released here 10 days after its respective botnet statistics gets published.

Suspected Bots IP [2013-04-21]

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

Rank	Network	# of suspected botnet IPs
1	CHINANET-JS	1069
2	CHINANET-HE	252
3	BY-BELPAK-20091210	235
4	CRTC	159
5	CHINANET-GD	153
6	UNICOM-GD	132
7	BY-BELPAK-20120330	89
8	TimeNet	49
9	HINET-NET	48
10	BY-BELPAK-20080213	48

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

Rank	Country	# of suspected botnet IPs
1	China	2376
2	Belarus	456
3	United States	195
4	Ukraine	195
5	Kazakhstan	141
6	Russian Federation	88
7	Brazil	87
8	Taiwan	69
9	India	59
10	Iran	49

Suspected Bot List [2013-04-20]

detection period: 2013-04-20 00:00-23:59 UTC
number of suspected bots' IPs listed here: 484

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country code	IP address	Country
AE	83.111.92.120	Arab Emirates
AE	194.170.149.21	Arab Emirates
AL	82.114.70.102	Albania
AL	213.207.41.34	Albania
AM	141.136.65.119	Armenia
AO	41.63.166.3	Angola
AO	196.223.13.230	Angola
BA	87.250.99.210	Bosnia And Herzegovina
BD	180.211.179.30	Bangladesh
BG	77.85.175.82	Bulgaria
BR	150.161.30.7	Brazil
BR	177.137.0.123	Brazil
BY	212.98.187.147	Belarus
CA	70.38.37.207	Canada
CN	202.107.222.50	China
CO	190.0.60.238	Colombia
CZ	77.104.244.69	Czech Republic
DE	62.113.213.202	Germany
DE	62.141.36.188	Germany
DE	77.23.13.20	Germany
DE	80.241.212.224	Germany
DE	84.11.89.66	Germany
DE	85.195.73.98	Germany
DE	87.106.91.124	Germany
DE	185.10.71.188	Germany
DZ	41.221.30.242	Algeria
DZ	193.194.87.59	Algeria
EE	5.34.241.93	Estonia
EG	196.218.229.14	Egypt
ES	87.216.240.245	Spain
ES	149.126.34.213	Spain
EU	84.40.11.180	European Union
GB	37.220.1.55	United Kingdom
GB	77.246.20.2	United Kingdom
GB	83.218.130.114	United Kingdom
GB	89.105.3.212	United Kingdom
GB	93.93.129.119	United Kingdom
GB	95.154.243.37	United Kingdom
GB	109.200.12.166	United Kingdom
GB	109.203.112.236	United Kingdom
GB	146.185.31.170	United Kingdom
GB	188.227.161.40	United Kingdom
GB	188.227.161.46	United Kingdom
GB	193.164.207.16	United Kingdom
GH	212.96.12.199	Ghana
GR	78.87.9.40	Greece
GT	186.151.253.186	Guatemala
HN	190.107.140.77	Honduras
IL	82.102.153.250	Israel
IN	14.139.191.193	India
IN	59.96.66.2	India
IN	61.1.33.177	India
IN	117.211.91.147	India
IN	117.240.124.68	India
IN	117.240.239.120	India
IN	122.180.96.110	India
IN	122.183.99.146	India
IN	122.252.237.34	India
IN	182.72.118.131	India
IN	182.73.111.162	India
IN	182.73.139.30	India
IN	202.63.105.226	India
IN	203.153.39.18	India
IR	77.237.185.33	Iran
IR	82.99.246.10	Iran
IR	89.165.109.165	Iran
IR	93.126.25.35	Iran
IR	185.2.12.98	Iran
IT	213.149.213.37	Italy
JO	87.236.232.231	Jordan
KE	41.89.96.20	Kenya
KE	41.139.206.178	Kenya
KW	62.150.12.46	Kuwait
KW	213.132.241.7	Kuwait
LV	94.30.129.199	Latvia
MA	41.214.129.22	Morocco
MD	77.89.251.70	Republic Of Moldova
MD	95.65.86.236	Republic Of Moldova
MN	180.149.96.169	Mongolia
MV	202.21.182.26	Republic of Maldives
MX	177.227.88.125	Mexico
MX	177.228.74.54	Mexico
MX	187.141.185.118	Mexico
MX	187.162.207.98	Mexico
MX	187.174.173.18	Mexico
MX	189.198.198.35	Mexico
MX	189.198.207.148	Mexico
MX	200.33.20.40	Mexico
MX	200.53.147.250	Mexico
MX	200.57.144.81	Mexico
MX	200.76.63.75	Mexico
MX	201.159.106.90	Mexico
NI	186.1.10.154	Nicaragua
NO	80.202.250.41	Norway
NO	212.4.34.78	Norway
NZ	121.73.60.67	New Zealand
NZ	202.169.192.130	New Zealand
PA	190.33.184.107	Panama
PH	121.97.26.86	Philippines
PH	124.104.141.204	Philippines
PH	202.124.193.11	Philippines
PH	210.16.60.5	Philippines
PK	61.5.156.195	Pakistan
PK	116.58.48.141	Pakistan
PK	121.52.154.230	Pakistan
PK	202.69.45.52	Pakistan
PK	210.2.171.13	Pakistan
PS	213.244.123.205	Occupied Palestinian Territory
RO	78.97.216.93	Romania
RO	91.220.26.4	Romania
RS	84.22.61.190	Serbia
RS	89.216.30.165	Serbia
RS	178.149.182.28	Serbia
RS	194.106.178.161	Serbia
RU	94.154.74.145	Russian Federation
RU	178.213.33.95	Russian Federation
RU	213.21.31.194	Russian Federation
SE	89.160.116.194	Sweden
SE	91.95.40.3	Sweden
SG	58.185.103.222	Singapore
SK	93.184.71.66	Slovakia
SK	195.168.85.26	Slovakia
SN	196.207.216.131	Senegal
TJ	217.11.177.26	Tajikistan
TN	41.230.10.190	Tunisia
TN	193.95.90.194	Tunisia
TR	85.105.126.140	Turkey
TR	89.145.185.42	Turkey
TR	188.132.237.61	Turkey
UA	82.207.51.92	Ukraine
UA	91.212.124.153	Ukraine
UA	188.191.238.205	Ukraine
US	50.156.91.52	United States
US	50.194.150.131	United States
US	66.109.21.60	United States
US	67.20.29.147	United States
US	67.236.113.226	United States
US	108.163.195.37	United States
US	108.178.57.120	United States
US	174.123.154.98	United States
US	184.82.117.7	United States
US	184.82.120.190	United States
US	192.30.84.133	United States
US	192.30.84.153	United States
US	192.81.249.4	United States
US	192.184.3.251	United States
US	199.87.232.226	United States
US	199.188.194.208	United States
US	199.195.128.219	United States
US	205.208.148.104	United States
US	206.190.158.235	United States
US	207.157.71.132	United States
US	207.182.133.221	United States
US	208.89.209.81	United States
US	209.239.112.104	United States

List from greylisting:

Botnet Statistics [2013-04-20]

detection period: 2013-04-20 00:00-23:59 UTC
total number of suspected botnet IPs: 3546
number of botnet IPs notified to network operators: 3067
number of spam blocked: 118840
recipient count of spam blocked: 3958871

To encourage cyber security information sharing (as some form of open data) while still giving victims enough time to clean up their computers, the IP list of suspected infected computers will be released here 10 days after its respective botnet statistics gets published.

Suspected Bots IP [2013-04-20]

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

Rank	Network	# of suspected botnet IPs
1	CHINANET-JS	392
2	BY-BELPAK-20091210	200
3	CHINANET-GD	154
4	UNICOM-GD	93
5	BY-BELPAK-20120330	61
6	CHINASKYNET	55
7	CHINANET-HE	52
8	CRTC	51
9	BY-BELPAK-20080213	45
10	BY-BELPAK-20120106	43

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

Rank	Country	# of suspected botnet IPs
1	China	1356
2	Belarus	375
3	United States	218
4	Ukraine	175
5	Kazakhstan	150
6	Russian Federation	94
7	Brazil	94
8	India	84
9	Peru	67
10	Taiwan	64