Custom Search

Saturday, May 31, 2014

Suspected Bot List [2014-05-30]

detection period: 2014-05-30 00:00-23:59 UTC
number of suspected bots' IPs listed here: 106

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AR168.226.141.203Argentina
CL186.67.57.82Chile
CL186.67.60.155Chile
CL200.111.103.67Chile
CL200.111.103.73Chile
CO190.60.39.186Colombia
EG41.33.169.36Egypt
ES88.6.176.64Spain
ES88.26.235.134Spain
GB176.35.77.154United Kingdom
GH41.189.167.27Ghana
HN190.107.140.77Honduras
IN27.251.106.249India
IN122.160.239.46India
IN182.72.131.50India
IN202.62.67.250India
IN203.90.114.228India
IN210.212.97.179India
IR91.98.109.4Iran
IR94.182.162.242Iran
IT95.227.105.203Italy
KE41.207.65.165Kenya
LB194.126.140.247Lebanon
MK89.185.193.135Macedonia
MX200.94.17.244Mexico
MX201.116.227.163Mexico
NP202.79.52.53Nepal
PH58.69.100.234Philippines
PH58.71.94.176Philippines
PL213.92.171.169Poland
RU95.188.112.11Russian Federation
RU109.167.201.26Russian Federation
SA94.77.199.148Saudi Arabia
SG112.140.187.201Singapore
TR193.255.143.62Turkey
TR193.255.143.63Turkey
TR195.244.39.195Turkey
US50.201.42.106United States
US68.189.142.171United States
US146.148.246.2United States
US174.139.83.170United States
US207.224.134.32United States
UZ91.229.165.114Uzbekistan
VE186.24.34.179Venezuela
VE190.111.122.3Venezuela
VE190.202.116.101Venezuela
VE200.84.109.84Venezuela

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Botnet Statistics [2014-05-30]

detection period: 2014-05-30 00:00-23:59 UTC
total number of suspected botnet IPs: 1133
number of botnet IPs notified to network operators: 1027
number of spam blocked: 37980
recipient count of spam blocked: 1361212

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-GD242
2CRTC59
3CHINANET-FJ23
4CTTNET20
5UNICOM-GD18
6CHINANET-HB16
7idc-csloxinfo14
8SA-BAYANAT-2005042813
9SEEHU11
10KORNET-KR11

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China576
2Russian Federation60
3Brazil54
4United States43
5Italy29
6Indonesia27
7India23
8Thailand21
9Ukraine19
10South Korea17
Labels:
Posted by at No comments:

Friday, May 30, 2014

Suspected Bot List [2014-05-29]

detection period: 2014-05-29 00:00-23:59 UTC
number of suspected bots' IPs listed here: 135

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AR168.226.141.203Argentina
AR200.63.169.61Argentina
CL186.67.57.82Chile
CL186.67.60.155Chile
CL200.111.103.67Chile
CO190.60.39.186Colombia
EC186.42.225.189Ecuador
EC186.47.122.61Ecuador
GB176.35.77.154United Kingdom
ID36.72.231.85Indonesia
ID103.20.166.12Indonesia
ID103.228.81.34Indonesia
ID103.228.81.67Indonesia
ID111.68.123.154Indonesia
ID118.97.75.51Indonesia
ID118.97.95.185Indonesia
ID118.97.190.91Indonesia
ID124.40.252.54Indonesia
ID175.103.49.38Indonesia
ID175.158.32.252Indonesia
ID180.250.133.50Indonesia
ID182.23.39.226Indonesia
ID202.137.230.45Indonesia
ID202.137.230.127Indonesia
ID202.159.6.146Indonesia
ID203.57.24.25Indonesia
ID203.77.210.226Indonesia
ID203.128.94.165Indonesia
IN27.251.106.249India
IN59.90.91.95India
IN122.160.239.46India
IN182.72.131.50India
IN182.73.104.228India
IN202.62.67.250India
IN203.90.114.228India
IN210.212.97.179India
IR94.182.162.242Iran
IT37.186.201.149Italy
IT95.227.105.203Italy
KE41.207.65.165Kenya
LB194.126.140.247Lebanon
MK89.185.193.135Macedonia
MX200.94.17.244Mexico
MX201.116.227.163Mexico
NP202.79.52.53Nepal
PH58.69.100.234Philippines
PH58.71.94.176Philippines
PK58.27.226.231Pakistan
PK121.52.159.236Pakistan
RU95.188.112.11Russian Federation
RU109.167.201.26Russian Federation
SA94.77.199.148Saudi Arabia
SG112.140.187.201Singapore
TR193.255.143.62Turkey
TR193.255.143.63Turkey
TR195.244.39.195Turkey
US50.201.42.106United States
US68.189.142.171United States
US146.148.246.2United States
US174.139.83.170United States
US207.224.134.32United States
VE186.24.34.179Venezuela
VE190.111.122.3Venezuela
VE190.202.116.101Venezuela
VE190.206.211.168Venezuela
VE200.84.109.84Venezuela
ZW41.220.28.138Zimbabwe

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Botnet Statistics [2014-05-29]

detection period: 2014-05-29 00:00-23:59 UTC
total number of suspected botnet IPs: 1338
number of botnet IPs notified to network operators: 1203
number of spam blocked: 55397
recipient count of spam blocked: 1750448

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-GD197
2CTTNET159
3CRTC73
4UNICOM-GD35
5CHINANET-FJ24
6CHINANET-HB23
7idc-csloxinfo18
8CHINANET-JS15
9SA-BAYANAT-2005042813
10CMNET12

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China737
2Russian Federation71
3United States56
4Brazil43
5Thailand29
6United Kingdom24
7India23
8Indonesia21
9Viet Nam19
10South Korea17
Labels:
Posted by at No comments:

Thursday, May 29, 2014

Suspected Bot List [2014-05-28]

detection period: 2014-05-28 00:00-23:59 UTC
number of suspected bots' IPs listed here: 176

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AR190.228.175.82Argentina
AR200.63.169.61Argentina
BO190.129.58.252Bolivia
CH141.255.166.38Switzerland
CI41.66.24.224Ivory Coast
CL186.67.57.82Chile
CL186.67.60.155Chile
CL200.111.103.67Chile
CO190.60.39.186Colombia
CO190.90.2.30Colombia
DZ41.191.253.146Algeria
EG41.33.169.36Egypt
EG62.117.58.109Egypt
ES88.6.176.64Spain
ES88.26.235.134Spain
GB176.35.77.154United Kingdom
HN190.107.140.77Honduras
IN27.251.106.249India
IN59.90.91.95India
IN59.95.36.240India
IN111.93.9.67India
IN117.194.205.106India
IN117.247.241.27India
IN122.160.239.46India
IN182.72.131.50India
IN182.73.104.228India
IN202.62.67.250India
IN203.90.114.228India
IN210.212.97.179India
IR91.98.36.84Iran
IR94.182.162.242Iran
IT37.186.201.149Italy
IT95.227.105.203Italy
KE41.207.65.165Kenya
LB194.126.140.247Lebanon
MX187.240.115.183Mexico
MX200.94.17.244Mexico
MX201.116.227.163Mexico
NP202.79.52.53Nepal
PH58.69.100.234Philippines
PH58.71.94.176Philippines
PK58.27.226.231Pakistan
PK121.52.159.236Pakistan
RU5.19.221.219Russian Federation
RU109.167.201.26Russian Federation
SA94.77.199.148Saudi Arabia
SG112.140.187.201Singapore
TR193.255.143.62Turkey
TR193.255.143.63Turkey
TR195.244.39.195Turkey
US50.201.42.106United States
US174.139.83.170United States
US184.82.236.67United States
US207.224.134.32United States
VE186.24.34.179Venezuela
VE186.95.37.54Venezuela
VE190.111.122.3Venezuela
VE190.202.116.101Venezuela
VE190.206.211.168Venezuela
VE200.84.109.84Venezuela
ZW41.220.28.138Zimbabwe

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Botnet Statistics [2014-05-28]

detection period: 2014-05-28 00:00-23:59 UTC
total number of suspected botnet IPs: 1902
number of botnet IPs notified to network operators: 1726
number of spam blocked: 57889
recipient count of spam blocked: 1811526

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-GD399
2CTTNET144
3CRTC93
4UNICOM-GD46
5CHINANET-FJ42
6CHINANET-HB25
7UNICOM-HN22
8CHINANET-JS20
9VNPT-VNNIC-VN19
10idc-csloxinfo17

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China1023
2United States78
3Russian Federation76
4Brazil65
5United Kingdom38
6Indonesia35
7France35
8Ukraine33
9Italy33
10India33
Labels:
Posted by at No comments:

Wednesday, May 28, 2014

Suspected Bot List [2014-05-27]

detection period: 2014-05-27 00:00-23:59 UTC
number of suspected bots' IPs listed here: 117

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
BO190.129.58.252Bolivia
CH141.255.166.38Switzerland
CL186.67.57.82Chile
CL200.111.103.67Chile
CL200.111.103.74Chile
CO190.60.39.186Colombia
CO190.90.2.30Colombia
DZ41.191.253.146Algeria
EG41.33.169.36Egypt
EG62.117.58.109Egypt
ES88.26.235.134Spain
GB176.35.77.154United Kingdom
HN190.107.140.77Honduras
IN59.90.11.34India
IN111.93.9.67India
IN117.254.248.213India
IN122.160.239.46India
IN202.62.67.250India
IN203.90.114.228India
IR91.98.36.84Iran
LB194.126.140.247Lebanon
MK89.185.193.135Macedonia
MX189.208.57.239Mexico
PE190.81.193.8Peru
PH58.69.100.234Philippines
PK58.27.226.231Pakistan
RU109.167.201.26Russian Federation
SA94.77.199.148Saudi Arabia
TR193.255.143.62Turkey
TR193.255.143.63Turkey
TR195.244.39.195Turkey
UA109.251.17.225Ukraine
US50.201.42.106United States
US65.23.154.86United States
US68.189.142.171United States
US174.139.83.170United States
US184.82.236.67United States
VE190.111.122.3Venezuela
VE190.202.116.101Venezuela
ZW41.220.28.138Zimbabwe

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Botnet Statistics [2014-05-27]

detection period: 2014-05-27 00:00-23:59 UTC
total number of suspected botnet IPs: 1416
number of botnet IPs notified to network operators: 1299
number of spam blocked: 47128
recipient count of spam blocked: 1481787

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-GD228
2CTTNET168
3CRTC89
4UNICOM-GD34
5CHINANET-FJ34
6CHINANET-HB33
7UNICOM21
8VNPT-VNNIC-VN17
9CHINANET-SH15
10CHINANET-JS14

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China796
2Russian Federation45
3United States42
4Brazil41
5India40
6France36
7Italy33
8Ukraine30
9Viet Nam28
10Indonesia23
Labels:
Posted by at No comments:

Tuesday, May 27, 2014

Suspected Bot List [2014-05-26]

detection period: 2014-05-26 00:00-23:59 UTC
number of suspected bots' IPs listed here: 112

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
CO190.60.39.186Colombia
CO190.90.2.30Colombia
EG41.33.219.133Egypt
EG62.117.58.109Egypt
ES88.6.49.98Spain
GB176.35.77.154United Kingdom
HN190.107.140.77Honduras
IN111.93.9.67India
IN117.239.241.147India
IN117.247.241.27India
IN122.160.239.46India
IN202.62.67.250India
IN203.90.114.228India
LB194.126.140.247Lebanon
MK89.185.193.135Macedonia
PK58.27.226.231Pakistan
RU109.167.201.26Russian Federation
SA94.77.199.148Saudi Arabia
TR193.255.143.62Turkey
TR193.255.143.63Turkey
TR195.244.39.195Turkey
US50.201.42.106United States
US98.126.70.18United States
US174.139.83.170United States
VE190.202.116.101Venezuela
ZW41.220.28.138Zimbabwe

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Botnet Statistics [2014-05-26]

detection period: 2014-05-26 00:00-23:59 UTC
total number of suspected botnet IPs: 1247
number of botnet IPs notified to network operators: 1135
number of spam blocked: 40315
recipient count of spam blocked: 1375774

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-GD298
2CTTNET144
3CRTC77
4CHINANET-FJ29
5VNPT-VNNIC-VN27
6UNICOM-GD27
7CHINANET-JS15
8UNICOM-BJ12
9CMNET10
10CHINANET-SH9

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China737
2United States68
3Russian Federation39
4India37
5Viet Nam35
6Brazil26
7Turkey19
8Indonesia18
9Ukraine17
10United Kingdom17
Labels:
Posted by at No comments:

Monday, May 26, 2014

Suspected Bot List [2014-05-25]

detection period: 2014-05-25 00:00-23:59 UTC
number of suspected bots' IPs listed here: 59

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
CO190.60.39.186Colombia
CO190.90.2.30Colombia
EG41.33.169.36Egypt
EG62.117.58.109Egypt
ES84.124.18.129Spain
ES88.6.49.98Spain
ES194.140.150.248Spain
GB176.35.77.154United Kingdom
HN190.107.140.77Honduras
IN111.93.9.67India
IN117.247.241.27India
IN122.160.239.46India
IN202.62.67.250India
IN203.90.114.228India
IR91.98.36.84Iran
KZ89.218.47.226Kazakhstan
LB194.126.140.247Lebanon
MK89.185.193.135Macedonia
PK58.27.226.231Pakistan
RS188.2.93.77Serbia
RU109.167.201.26Russian Federation
SA94.77.199.148Saudi Arabia
TR193.255.143.62Turkey
TR193.255.143.63Turkey
TR195.244.39.195Turkey
US50.201.42.106United States
US174.139.83.170United States
US184.82.162.122United States
VE190.202.116.101Venezuela

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Botnet Statistics [2014-05-25]

detection period: 2014-05-25 00:00-23:59 UTC
total number of suspected botnet IPs: 1258
number of botnet IPs notified to network operators: 1199
number of spam blocked: 40458
recipient count of spam blocked: 1427403

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-GD403
2CTTNET203
3CRTC72
4CHINANET-FJ44
5UNICOM-GD27
6NETBLK-NOBIS-TECHNOLOGY-GROUP-1721
7CHINANET-SH14
8CHINANET-JS14
9GC0412
10UNICOM-BJ8

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China917
2United States77
3Russian Federation37
4Brazil26
5Indonesia23
6Ukraine15
7India13
8Hong Kong13
9Iran10
10Thailand9
Labels:
Posted by at No comments:

Sunday, May 25, 2014

Suspected Bot List [2014-05-24]

detection period: 2014-05-24 00:00-23:59 UTC
number of suspected bots' IPs listed here: 87

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
BO190.129.58.252Bolivia
CL186.67.57.82Chile
CL200.111.103.74Chile
CO190.60.39.186Colombia
CO190.90.2.30Colombia
CZ80.188.121.251Czech Republic
EG41.33.169.36Egypt
ES88.6.49.98Spain
GB176.35.77.154United Kingdom
HN190.107.140.77Honduras
IN111.93.9.67India
IN111.93.44.186India
IN117.247.241.27India
IN122.160.52.15India
IN122.160.239.46India
IN182.48.218.108India
IN182.48.252.72India
IN202.62.67.250India
IN203.90.114.228India
IR91.98.36.84Iran
IR91.98.109.4Iran
LB194.126.140.247Lebanon
MK89.185.193.135Macedonia
PH58.69.100.234Philippines
PK58.27.226.231Pakistan
RU95.188.112.11Russian Federation
RU109.167.201.26Russian Federation
SA94.77.199.148Saudi Arabia
TR37.247.107.82Turkey
TR193.255.143.62Turkey
TR193.255.143.63Turkey
TR195.244.39.195Turkey
US50.201.42.106United States
US68.115.37.153United States
US98.126.70.18United States
US174.139.43.202United States
US174.139.83.170United States
US184.82.162.122United States
VE190.153.98.24Venezuela
VE190.202.116.101Venezuela

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Botnet Statistics [2014-05-24]

detection period: 2014-05-24 00:00-23:59 UTC
total number of suspected botnet IPs: 1166
number of botnet IPs notified to network operators: 1079
number of spam blocked: 44614
recipient count of spam blocked: 1579226

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-GD308
2CTTNET183
3CRTC73
4CHINANET-FJ29
5CHINANET-JS14
6UNICOM-GD11
7CHINANET-SH9
8AOL-DTC9
9UNICOM-BJ8
10HICHINA8

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China769
2United States54
3Russian Federation41
4Brazil37
5Indonesia19
6Italy17
7Spain17
8Ukraine16
9India13
10Germany13
Labels:
Posted by at No comments:

Saturday, May 24, 2014

Suspected Bot List [2014-05-23]

detection period: 2014-05-23 00:00-23:59 UTC
number of suspected bots' IPs listed here: 77

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
BO190.129.70.116Bolivia
CO190.60.39.186Colombia
CO190.90.2.30Colombia
CZ80.188.121.251Czech Republic
EG41.33.169.36Egypt
EG41.33.219.133Egypt
GB176.35.77.154United Kingdom
HN190.107.140.77Honduras
IN111.93.9.67India
IN117.239.199.190India
IN117.239.241.147India
IN117.247.241.27India
IN122.160.239.46India
IN202.62.67.250India
IN202.63.105.51India
IN203.90.114.228India
IN203.194.103.195India
LB194.126.140.247Lebanon
PE190.81.193.8Peru
PE200.110.35.150Peru
PH58.69.100.234Philippines
PK58.27.226.231Pakistan
PK121.52.159.236Pakistan
PL95.160.208.75Poland
RU95.188.112.11Russian Federation
RU109.167.201.26Russian Federation
RU188.75.234.254Russian Federation
SA94.77.199.148Saudi Arabia
TR193.255.143.62Turkey
TR193.255.143.63Turkey
TR195.244.39.195Turkey
US50.201.42.106United States
US68.115.37.153United States
US68.189.142.171United States
US98.126.70.18United States
US174.139.43.202United States
US174.139.56.83United States
US174.139.83.170United States
US184.82.162.122United States
UZ217.29.114.86Uzbekistan
VE190.202.116.101Venezuela
ZW41.220.28.138Zimbabwe

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Botnet Statistics [2014-05-23]

detection period: 2014-05-23 00:00-23:59 UTC
total number of suspected botnet IPs: 1268
number of botnet IPs notified to network operators: 1193
number of spam blocked: 44750
recipient count of spam blocked: 1510000

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-GD280
2CTTNET217
3CRTC71
4CHINANET-FJ61
5UNICOM-HN35
6UNICOM-GD25
7UNICOM25
8HICHINA12
9CHINANET-JS11
10CMNET8

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China895
2Russian Federation43
3United States37
4Brazil32
5Indonesia24
6India22
7Ukraine16
8South Korea16
9Taiwan10
10Germany10
Labels:
Posted by at No comments:

Friday, May 23, 2014

Suspected Bot List [2014-05-22]

detection period: 2014-05-22 00:00-23:59 UTC
number of suspected bots' IPs listed here: 97

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
BG93.183.155.80Bulgaria
BO190.129.70.116Bolivia
CL186.67.57.82Chile
CL200.111.103.74Chile
CO190.60.39.186Colombia
CO190.90.2.30Colombia
EG41.33.219.133Egypt
GB176.35.77.154United Kingdom
HN190.107.140.77Honduras
IN111.93.9.67India
IN114.79.166.169India
IN116.74.71.175India
IN117.239.241.147India
IN117.242.109.174India
IN122.160.239.46India
IN202.62.67.250India
IN203.90.114.228India
LB194.126.140.247Lebanon
MK89.185.193.135Macedonia
PE200.110.35.150Peru
PH58.69.100.234Philippines
PK58.27.226.231Pakistan
PK121.52.159.236Pakistan
SA94.77.199.148Saudi Arabia
TR193.255.143.62Turkey
TR193.255.143.63Turkey
TR195.244.39.195Turkey
US50.201.42.106United States
US68.189.142.171United States
US174.139.43.202United States
US174.139.83.170United States
US184.82.162.122United States
US184.82.177.78United States
VE190.202.116.101Venezuela
ZW41.220.28.138Zimbabwe

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Botnet Statistics [2014-05-22]

detection period: 2014-05-22 00:00-23:59 UTC
total number of suspected botnet IPs: 1097
number of botnet IPs notified to network operators: 1001
number of spam blocked: 43958
recipient count of spam blocked: 1477140

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CTTNET209
2CHINANET-GD149
3CHINANET-FJ38
4UNICOM-GD25
5CRTC23
6CHINANET-JS14
7CHINANET-SH13
8UNICOM-BJ12
9NETBLK-NOBIS-TECHNOLOGY-GROUP-1810
10HICHINA10

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China659
2United States68
3Brazil44
4Russian Federation39
5Italy23
6Indonesia21
7Ukraine17
8Germany14
9India13
10Colombia13
Labels:
Posted by at No comments:

Thursday, May 22, 2014

Suspected Bot List [2014-05-21]

detection period: 2014-05-21 00:00-23:59 UTC
number of suspected bots' IPs listed here: 104

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
BG93.183.155.80Bulgaria
CO190.60.39.186Colombia
CO190.90.2.30Colombia
EG41.33.219.133Egypt
GB176.35.77.154United Kingdom
HN190.107.140.77Honduras
IN27.5.97.88India
IN59.92.103.184India
IN59.95.2.29India
IN111.93.9.67India
IN117.239.241.147India
IN117.242.109.174India
IN117.247.241.27India
IN122.160.239.46India
IN202.62.67.250India
IR91.98.36.84Iran
LB194.126.140.247Lebanon
MK89.185.193.135Macedonia
PH58.69.100.234Philippines
PK58.27.226.231Pakistan
PK121.52.159.236Pakistan
SA94.77.199.148Saudi Arabia
TR193.255.143.62Turkey
TR193.255.143.63Turkey
TR195.244.39.195Turkey
UA109.251.197.101Ukraine
US50.201.42.106United States
US174.139.83.170United States
UZ217.29.114.86Uzbekistan
VE190.202.116.101Venezuela
ZW41.220.28.138Zimbabwe

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Botnet Statistics [2014-05-21]

detection period: 2014-05-21 00:00-23:59 UTC
total number of suspected botnet IPs: 1390
number of botnet IPs notified to network operators: 1286
number of spam blocked: 47890
recipient count of spam blocked: 1596891

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-GD430
2CTTNET152
3CHINANET-FJ34
4UNICOM-GD22
5CRTC21
6HINET-NET16
7UNICOM11
8CHINANET-ZJ11
9CHINANET-JS11
10UNICOM-HN10

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China849
2United States66
3Russian Federation41
4United Kingdom32
5Brazil32
6India24
7Ukraine21
8Taiwan21
9South Korea18
10Indonesia18
Labels:
Posted by at No comments:

Wednesday, May 21, 2014

Suspected Bot List [2014-05-20]

detection period: 2014-05-20 00:00-23:59 UTC
number of suspected bots' IPs listed here: 93

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AR190.228.175.82Argentina
BO190.129.58.252Bolivia
CL186.67.57.82Chile
CL200.111.103.74Chile
CO190.60.39.186Colombia
ES2.138.31.178Spain
GB176.35.77.154United Kingdom
HN190.107.140.77Honduras
IN27.5.97.88India
IN111.93.9.67India
IN117.239.241.147India
IN117.247.241.27India
IN182.72.57.212India
IN202.62.67.250India
IR91.98.36.84Iran
LB194.126.140.247Lebanon
PE190.81.193.8Peru
PH58.69.100.234Philippines
PK121.52.159.236Pakistan
RS188.2.93.77Serbia
RU95.188.112.11Russian Federation
SA94.77.199.148Saudi Arabia
TR193.255.143.62Turkey
TR193.255.143.63Turkey
TR195.244.39.195Turkey
UA109.251.197.101Ukraine
US50.201.42.106United States
US174.139.83.170United States
US184.82.236.67United States
UZ217.29.114.86Uzbekistan
VE190.202.116.101Venezuela
ZA105.236.237.181South Africa
ZW41.220.28.138Zimbabwe

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Botnet Statistics [2014-05-20]

detection period: 2014-05-20 00:00-23:59 UTC
total number of suspected botnet IPs: 1442
number of botnet IPs notified to network operators: 1355
number of spam blocked: 45811
recipient count of spam blocked: 1471952

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-GD406
2CRTC91
3CTTNET83
4CHINANET-FJ76
5UNICOM-GD24
6HINET-NET15
7HICHINA15
8CHINANET-ZJ14
9CHINANET-JS14
10SINGNET-SG12

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China888
2Russian Federation52
3Brazil42
4United States35
5Indonesia31
6Taiwan21
7Turkey21
8Ukraine20
9France20
10Viet Nam19
Labels:
Posted by at No comments:

Tuesday, May 20, 2014

Suspected Bot List [2014-05-19]

detection period: 2014-05-19 00:00-23:59 UTC
number of suspected bots' IPs listed here: 121

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
BG93.183.155.80Bulgaria
CL186.67.57.82Chile
CL200.111.103.74Chile
CO190.60.39.186Colombia
CO190.90.2.30Colombia
EG41.33.219.133Egypt
ES2.138.31.178Spain
GB176.35.77.154United Kingdom
HN190.107.140.77Honduras
IN111.93.9.67India
IN117.239.241.147India
IN117.247.241.27India
IN202.62.67.250India
IN210.212.97.139India
LB194.126.140.247Lebanon
MX201.132.52.129Mexico
PE190.81.193.8Peru
PH58.69.100.234Philippines
PK121.52.159.236Pakistan
RS89.216.21.136Serbia
SA94.77.199.148Saudi Arabia
SK78.98.80.154Slovakia
SK91.127.7.154Slovakia
TR193.255.143.62Turkey
TR193.255.143.63Turkey
TR195.244.39.195Turkey
US50.201.42.106United States
US50.244.253.9United States
US174.139.83.170United States
US184.82.236.67United States
UZ217.30.171.169Uzbekistan
VE190.111.122.3Venezuela
VE190.202.116.101Venezuela
ZA105.236.237.181South Africa
ZA105.237.137.36South Africa
ZA196.28.31.245South Africa
ZW41.220.28.138Zimbabwe

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Botnet Statistics [2014-05-19]

detection period: 2014-05-19 00:00-23:59 UTC
total number of suspected botnet IPs: 1315
number of botnet IPs notified to network operators: 1197
number of spam blocked: 41577
recipient count of spam blocked: 1318214

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-GD330
2CRTC146
3CHINANET-FJ33
4CTTNET30
5UNICOM-GD24
6CHINANET-JS17
7KORNET-KR12
8CHINANET-SH12
9003.420.926/0002-0512
10CMNET9

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China724
2United States63
3Brazil49
4Russian Federation44
5Italy27
6Indonesia22
7South Korea19
8Spain19
9Ukraine18
10Turkey18
Labels:
Posted by at No comments:

Monday, May 19, 2014

Suspected Bot List [2014-05-18]

detection period: 2014-05-18 00:00-23:59 UTC
number of suspected bots' IPs listed here: 48

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
BG93.183.155.80Bulgaria
CL200.111.103.74Chile
CO190.60.39.186Colombia
CO200.80.43.248Colombia
ES88.3.102.164Spain
HN190.107.140.77Honduras
IN111.93.9.67India
IN202.62.67.250India
IN210.212.97.139India
IR91.98.28.220Iran
IR91.98.36.84Iran
LB194.126.140.247Lebanon
PE190.81.193.8Peru
PK121.52.159.236Pakistan
SA94.77.199.148Saudi Arabia
TR193.255.143.62Turkey
TR193.255.143.63Turkey
TR195.244.39.195Turkey
US50.201.42.106United States
US174.139.83.170United States
US205.209.173.252United States
VE186.24.34.179Venezuela
VE190.111.122.3Venezuela
VE190.202.116.101Venezuela
ZW41.220.28.138Zimbabwe

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Botnet Statistics [2014-05-18]

detection period: 2014-05-18 00:00-23:59 UTC
total number of suspected botnet IPs: 999
number of botnet IPs notified to network operators: 951
number of spam blocked: 34535
recipient count of spam blocked: 1062411

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-GD308
2CRTC151
3CHINANET-FJ40
4UNICOM-GD32
5CTTNET28
6CHINANET-SH9
7CHINANET-JS9
8HICHINA8
9UNICOM-SD6
10KORNET-KR6

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China693
2Russian Federation36
3United States35
4Brazil24
5Indonesia20
6South Korea13
7Ukraine12
8India11
9Hong Kong11
10Germany11
Labels:
Posted by at No comments:

Sunday, May 18, 2014

Suspected Bot List [2014-05-17]

detection period: 2014-05-17 00:00-23:59 UTC
number of suspected bots' IPs listed here: 61

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
BG93.183.155.80Bulgaria
CL186.67.57.82Chile
CL200.111.103.74Chile
CO190.60.39.186Colombia
CO200.80.43.248Colombia
ES88.3.102.164Spain
GB176.35.77.154United Kingdom
HN190.107.140.77Honduras
IN27.5.97.88India
IN111.93.9.67India
IN122.160.239.46India
IN210.212.97.139India
IR91.98.36.84Iran
LB194.126.140.247Lebanon
PK121.52.159.236Pakistan
SA94.77.199.148Saudi Arabia
TR193.255.143.62Turkey
TR193.255.143.63Turkey
TR195.244.39.195Turkey
UA62.122.106.141Ukraine
US50.201.42.106United States
US174.139.83.170United States
US205.209.173.252United States
VE186.24.34.179Venezuela
VE190.111.122.3Venezuela
VE190.202.116.101Venezuela
ZW41.220.28.138Zimbabwe

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Botnet Statistics [2014-05-17]

detection period: 2014-05-17 00:00-23:59 UTC
total number of suspected botnet IPs: 918
number of botnet IPs notified to network operators: 857
number of spam blocked: 34486
recipient count of spam blocked: 1050086

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-GD198
2CRTC121
3CHINANET-FJ45
4CTTNET28
5UNICOM-GD13
6UNICOM12
7CHINANET-JS10
8CMNET9
9CHINANET-SH8
10UNICOM-BJ7

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China554
2Brazil46
3Russian Federation35
4United States28
5Indonesia23
6Italy19
7Spain15
8Ukraine13
9South Korea13
10Turkey11
Labels:
Posted by at No comments:

Saturday, May 17, 2014

Suspected Bot List [2014-05-16]

detection period: 2014-05-16 00:00-23:59 UTC
number of suspected bots' IPs listed here: 72

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
BG93.183.155.80Bulgaria
CO190.60.39.186Colombia
CO190.90.2.30Colombia
CO200.80.43.248Colombia
EG41.33.169.36Egypt
EG41.33.219.133Egypt
ES88.3.102.164Spain
GB176.35.77.154United Kingdom
HN190.107.140.77Honduras
IN59.93.134.179India
IN111.93.9.67India
IN117.239.241.147India
IN117.242.240.172India
IN117.254.227.220India
IN122.160.239.46India
IN202.134.157.25India
IN210.212.97.139India
IR91.98.36.84Iran
LB194.126.140.247Lebanon
PE190.81.193.8Peru
PK121.52.159.236Pakistan
RU188.75.234.196Russian Federation
SA94.77.199.148Saudi Arabia
TR193.255.143.62Turkey
TR193.255.143.63Turkey
TR195.244.39.195Turkey
UA62.122.106.141Ukraine
US50.201.42.106United States
US174.139.83.170United States
VE186.24.34.179Venezuela
VE190.111.122.3Venezuela
VE190.202.116.101Venezuela
ZW41.220.28.138Zimbabwe

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Botnet Statistics [2014-05-16]

detection period: 2014-05-16 00:00-23:59 UTC
total number of suspected botnet IPs: 1082
number of botnet IPs notified to network operators: 1010
number of spam blocked: 37783
recipient count of spam blocked: 1176735

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-GD259
2CRTC156
3CTTNET44
4CHINANET-FJ44
5UNICOM-GD24
6CHINANET-JS16
7KORNET-KR14
8UNICOM-BJ11
9CMNET11
10BSNLNET9

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China688
2Russian Federation41
3United States40
4Brazil29
5India28
6South Korea20
7Indonesia20
8Ukraine16
9Iran13
10United Kingdom13
Labels:
Posted by at No comments:

Friday, May 16, 2014

Suspected Bot List [2014-05-15]

detection period: 2014-05-15 00:00-23:59 UTC
number of suspected bots' IPs listed here: 73

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AL80.78.77.34Albania
AL109.69.6.107Albania
BG93.183.155.80Bulgaria
BO190.129.58.252Bolivia
CO190.60.39.186Colombia
EG41.33.169.36Egypt
EG41.33.219.133Egypt
ES88.3.102.164Spain
GB176.35.77.154United Kingdom
HN190.107.140.77Honduras
IN27.0.54.173India
IN59.93.192.100India
IN111.93.9.67India
IN117.239.241.147India
IN117.247.241.27India
IN122.160.239.46India
IN202.62.67.250India
IR91.98.28.220Iran
KZ89.218.179.155Kazakhstan
LB194.126.140.247Lebanon
PK121.52.159.236Pakistan
RU95.188.112.11Russian Federation
SA94.77.199.148Saudi Arabia
TR193.255.143.62Turkey
TR193.255.143.63Turkey
TR195.244.39.195Turkey
UA109.201.249.56Ukraine
US50.201.42.106United States
US66.214.186.192United States
US174.139.83.170United States
US199.101.116.212United States
VE186.24.34.179Venezuela
VE190.202.116.101Venezuela
ZW41.220.28.138Zimbabwe

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Botnet Statistics [2014-05-15]

detection period: 2014-05-15 00:00-23:59 UTC
total number of suspected botnet IPs: 1089
number of botnet IPs notified to network operators: 1016
number of spam blocked: 33234
recipient count of spam blocked: 1025064

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-GD289
2CRTC144
3CHINANET-FJ47
4CTTNET32
5UNICOM-GD18
6KORNET-KR13
7CMNET12
8CHINANET-SH12
9CHINANET-JS12
10UNICOM-SD8

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China696
2United States43
3Russian Federation38
4Brazil27
5South Korea23
6Indonesia23
7India20
8United Kingdom18
9Ukraine17
10Iran11
Labels:
Posted by at No comments:

Thursday, May 15, 2014

Suspected Bot List [2014-05-14]

detection period: 2014-05-14 00:00-23:59 UTC
number of suspected bots' IPs listed here: 57

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AL80.78.77.34Albania
AL109.69.6.107Albania
AR190.228.175.82Argentina
BG93.183.155.80Bulgaria
CO190.60.39.186Colombia
EG41.33.169.36Egypt
GB176.35.77.154United Kingdom
HN190.107.140.77Honduras
IN59.96.167.20India
IN111.93.9.67India
IN117.239.241.147India
IN122.160.239.46India
IN122.181.10.166India
IN202.62.67.250India
IN210.212.85.35India
IR91.98.36.84Iran
KZ89.218.47.226Kazakhstan
LB194.126.140.247Lebanon
MX201.158.203.50Mexico
PE190.81.193.8Peru
PE200.110.35.150Peru
PH58.69.100.234Philippines
PK121.52.159.236Pakistan
RU95.188.112.11Russian Federation
SA94.77.199.148Saudi Arabia
TR37.247.107.82Turkey
TR193.255.143.62Turkey
TR193.255.143.63Turkey
TR195.244.39.195Turkey
UA109.201.246.60Ukraine
US50.201.42.106United States
US66.214.186.192United States
US96.44.172.108United States
US199.101.116.212United States
VE186.24.34.179Venezuela
VE190.202.116.101Venezuela
ZW41.220.28.138Zimbabwe

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Botnet Statistics [2014-05-14]

detection period: 2014-05-14 00:00-23:59 UTC
total number of suspected botnet IPs: 1050
number of botnet IPs notified to network operators: 993
number of spam blocked: 37812
recipient count of spam blocked: 1210371

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-GD288
2CRTC162
3CHINANET-FJ47
4CTTNET30
5UNICOM-GD18
6CHINANET-JS15
7CMNET12
8UNICOM-BJ10
9KORNET-KR9
10CHINANET-SH8

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China707
2Russian Federation38
3United States32
4Brazil28
5Indonesia25
6South Korea16
7India16
8Ukraine15
9Taiwan12
10Iran11
Labels:
Posted by at No comments:

Wednesday, May 14, 2014

Suspected Bot List [2014-05-13]

detection period: 2014-05-13 00:00-23:59 UTC
number of suspected bots' IPs listed here: 60

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AL80.78.77.34Albania
AL109.69.6.107Albania
BG93.183.155.80Bulgaria
CO190.60.39.186Colombia
CO190.90.2.30Colombia
EG41.33.219.133Egypt
HN190.107.140.77Honduras
IN111.93.9.67India
IN117.239.241.147India
IN122.160.239.46India
IN122.181.10.166India
IN182.72.57.212India
IN202.62.67.250India
IN210.212.85.35India
IN210.212.97.139India
IR91.98.36.84Iran
LB194.126.140.247Lebanon
MX201.158.203.50Mexico
PE190.81.196.71Peru
PE200.110.35.150Peru
PH58.69.100.234Philippines
PK121.52.159.236Pakistan
RU193.107.17.81Russian Federation
SA94.77.199.148Saudi Arabia
TR37.247.107.82Turkey
TR193.255.143.62Turkey
TR193.255.143.63Turkey
TR195.244.39.195Turkey
US50.201.42.106United States
US66.214.186.192United States
US68.189.142.171United States
US96.44.172.108United States
US98.126.57.100United States
US174.139.83.170United States
US199.101.116.212United States
VE186.24.34.179Venezuela
VE190.202.116.101Venezuela
ZW41.220.28.138Zimbabwe

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Botnet Statistics [2014-05-13]

detection period: 2014-05-13 00:00-23:59 UTC
total number of suspected botnet IPs: 1048
number of botnet IPs notified to network operators: 988
number of spam blocked: 44439
recipient count of spam blocked: 1346626

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-GD253
2CRTC133
3CHINANET-FJ60
4CTTNET31
5CHINANET-JS22
6UNICOM-GD20
7MSFT-GFS19
8UNICOM-BJ12
9MICROSOFT-GLOBAL-NET10
10CMNET10

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China656
2United States67
3Russian Federation43
4Brazil31
5Indonesia22
6Ukraine18
7India17
8Iran12
9Hong Kong12
10Turkey11
Labels:
Posted by at No comments:

Tuesday, May 13, 2014

Suspected Bot List [2014-05-12]

detection period: 2014-05-12 00:00-23:59 UTC
number of suspected bots' IPs listed here: 52

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AL80.78.77.34Albania
AL109.69.6.107Albania
BG93.183.155.80Bulgaria
CO190.60.39.186Colombia
CO190.90.2.30Colombia
EG41.33.169.36Egypt
EG41.33.219.133Egypt
HN190.107.140.77Honduras
IN59.96.165.2India
IN111.93.9.67India
IN117.247.241.27India
IN117.254.120.68India
IN210.212.97.139India
IR91.98.36.84Iran
LB194.126.140.247Lebanon
MX189.205.184.161Mexico
MX201.158.203.50Mexico
PE190.81.193.8Peru
PE200.110.35.150Peru
PH58.69.100.234Philippines
PH122.49.217.2Philippines
PH124.107.165.60Philippines
PK121.52.159.236Pakistan
RS188.2.93.77Serbia
SA94.77.199.148Saudi Arabia
TR37.247.107.82Turkey
TR193.255.143.62Turkey
TR193.255.143.63Turkey
TR195.244.39.195Turkey
US50.201.42.106United States
US96.44.172.108United States
US184.82.162.122United States
VE186.24.34.179Venezuela
VE190.202.116.101Venezuela
ZW41.220.28.138Zimbabwe

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Botnet Statistics [2014-05-12]

detection period: 2014-05-12 00:00-23:59 UTC
total number of suspected botnet IPs: 1091
number of botnet IPs notified to network operators: 1039
number of spam blocked: 46503
recipient count of spam blocked: 1407202

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CHINANET-GD283
2CRTC137
3CHINANET-FJ37
4CTTNET29
5UNICOM-HN27
6UNICOM-GD24
7CHINANET-JS19
8UNICOM-BJ13
9UNICOM12
10MSFT-GFS9

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China711
2United States57
3Russian Federation39
4Brazil26
5Indonesia23
6Iran15
7Germany14
8South Korea13
9India13
10United Kingdom13
Labels:
Posted by at No comments:

Monday, May 12, 2014

Botnet Statistics for April 2014

detection period: 2014-04-01 00:00 - 2014-04-30 23:59 UTC
total number of suspected botnet IPs: 29916
number of blocked spams: 1461434
recipient count of blocked spams: 46936448

The top 25 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China24453
2Taiwan1006
3United States728
4India290
5Viet Nam270
6Russian Federation208
7Italy175
8Brazil175
9France170
10United Kingdom156
11Ukraine135
12South Korea131
13Turkey124
14Germany121
15Indonesia118
16Poland108
17Argentina91
18Hong Kong79
19Spain77
20Japan66
21Colombia55
22Singapore54
23Thailand53
24Kazakhstan52
25Mexico50

The top 25 countries (as defined by the 2-character country code), ordered by number of blocked spams are:

RankCountry# of blocked spams
1China613349
2Russian Federation97119
3United States83364
4Brazil79404
5Indonesia79231
6Taiwan44644
7Ukraine35757
8United Kingdom30586
9South Korea27964
10India26588
11Iran21114
12Saudi Arabia21043
13Thailand20555
14Italy19551
15Colombia18453
16Turkey16953
17Viet Nam13842
18Germany13113
19Ivory Coast11609
20Hong Kong11597
21Bangladesh11496
22Malaysia10841
23France9745
24Poland8909
25Venezuela8413

The top 25 countries (as defined by the 2-character country code), ordered by recipient count of blocked spams are:
Read more »
Labels:
Posted by at No comments:
Subscribe to: Posts (Atom)