Custom Search

Sunday, September 30, 2018

Botnet Statistics [2018-09-29]

detection period: 2018-09-29 00:00-23:59 UTC
total number of suspected botnet IPs: 2337
number of botnet IPs notified to network operators: 2160
number of spam blocked: 4508
recipient count of spam blocked: 135215

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud63
2CMNET52
3TENCENT-CN35
4CHINANET-GD33
5CHINANET-JS32
6HINET-NET29
7VNPT-VNNIC-VN27
8Baidu27
9UNKNOWN24
10TMO923

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China665
2United States256
3Russian Federation130
4Brazil88
5France73
6South Korea72
7Indonesia60
8Viet Nam58
9India52
10Italy51
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-29]

detection period: 2018-09-29 00:00-23:59 UTC
number of suspected bots' IPs listed here: 181

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Saturday, September 29, 2018

Botnet Statistics [2018-09-28]

detection period: 2018-09-28 00:00-23:59 UTC
total number of suspected botnet IPs: 2043
number of botnet IPs notified to network operators: 1835
number of spam blocked: 4813
recipient count of spam blocked: 149200

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud61
2UNKNOWN42
3HINET-NET38
4CMNET38
5LogicWeb-Inc36
6VNPT-VNNIC-VN35
7CHINANET-GD34
8Baidu30
9CHINANET-JS29
10KORNET-KR27

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China544
2United States223
3Russian Federation102
4Brazil94
5India69
6Viet Nam66
7Taiwan58
8Indonesia52
9France48
10South Korea47
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-28]

detection period: 2018-09-28 00:00-23:59 UTC
number of suspected bots' IPs listed here: 211

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Friday, September 28, 2018

Botnet Statistics [2018-09-27]

detection period: 2018-09-27 00:00-23:59 UTC
total number of suspected botnet IPs: 2173
number of botnet IPs notified to network operators: 1979
number of spam blocked: 4216
recipient count of spam blocked: 126422

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud68
2CHINANET-GD41
3CMNET37
4HINET-NET35
5TENCENT-CN34
6CHINANET-JS31
7Baidu30
8UNKNOWN28
9VNPT-VNNIC-VN27
10CHINANET-SH25

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China633
2United States237
3Russian Federation119
4Brazil89
5Viet Nam76
6India66
7Indonesia61
8France59
9Taiwan49
10Italy49
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-27]

detection period: 2018-09-27 00:00-23:59 UTC
number of suspected bots' IPs listed here: 199

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Thursday, September 27, 2018

Botnet Statistics [2018-09-26]

detection period: 2018-09-26 00:00-23:59 UTC
total number of suspected botnet IPs: 1892
number of botnet IPs notified to network operators: 1736
number of spam blocked: 4649
recipient count of spam blocked: 139470

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud53
2CMNET38
3CHINANET-GD38
4HINET-NET31
5VNPT-VNNIC-VN29
6LogicWeb-Inc26
7Baidu26
8CHINANET-JS25
9ALISOFT25
10UNKNOWN22

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China507
2United States214
3Russian Federation122
4Brazil78
5Viet Nam62
6France61
7India57
8Indonesia56
9Taiwan49
10South Africa38
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-26]

detection period: 2018-09-26 00:00-23:59 UTC
number of suspected bots' IPs listed here: 157

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Wednesday, September 26, 2018

Botnet Statistics [2018-09-25]

detection period: 2018-09-25 00:00-23:59 UTC
total number of suspected botnet IPs: 2006
number of botnet IPs notified to network operators: 1822
number of spam blocked: 8548
recipient count of spam blocked: 256417

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud57
2LogicWeb-Inc44
3TENCENT-CN41
4CHINANET-JS37
5VNPT-VNNIC-VN36
6HINET-NET36
7CHINANET-GD32
8TELKOMNET27
9Baidu27
10CMNET26

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China555
2United States217
3Russian Federation105
4Brazil91
5Viet Nam86
6Indonesia77
7India63
8South Africa55
9Taiwan51
10Italy49
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-25]

detection period: 2018-09-25 00:00-23:59 UTC
number of suspected bots' IPs listed here: 184

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Tuesday, September 25, 2018

Botnet Statistics [2018-09-24]

detection period: 2018-09-24 00:00-23:59 UTC
total number of suspected botnet IPs: 1775
number of botnet IPs notified to network operators: 1622
number of spam blocked: 8972
recipient count of spam blocked: 269160

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud47
2CHINANET-GD38
3HINET-NET36
4CMNET30
5TELKOMNET27
6CHINANET-JS27
7VNPT-VNNIC-VN26
8TMO926
9TENCENT-CN26
10002.558.157/0001-6220

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China484
2United States220
3Russian Federation108
4Brazil73
5Indonesia63
6India62
7Viet Nam60
8Taiwan55
9France45
10South Korea38
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-24]

detection period: 2018-09-24 00:00-23:59 UTC
number of suspected bots' IPs listed here: 154

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Monday, September 24, 2018

Botnet Statistics [2018-09-23]

detection period: 2018-09-23 00:00-23:59 UTC
total number of suspected botnet IPs: 1374
number of botnet IPs notified to network operators: 1273
number of spam blocked: 5041
recipient count of spam blocked: 151230

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud47
2HINET-NET34
3CHINANET-GD29
4CHINANET-JS28
5Baidu25
6CMNET22
7KORNET-KR18
8TELKOMNET17
9Amsterdam_Residential_Television_and_Internet_Network17
10VNPT-VNNIC-VN16

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China377
2United States156
3Russian Federation88
4Brazil47
5Netherlands45
6Indonesia41
7Taiwan39
8Viet Nam37
9India37
10South Korea35
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-23]

detection period: 2018-09-23 00:00-23:59 UTC
number of suspected bots' IPs listed here: 101

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Sunday, September 23, 2018

Suspected Bots' IP List for August 2018

To encourage cyber security information sharing (as some form of open data) while still giving victims enough time to clean up their computers, the IP list of suspected infected computers will be released here (as shown below). You are free to use them to create more effective defenses, discover latest trends in cyber attacks, etc.

Suspected Bots IP [2018-08-01]
Suspected Bots IP [2018-08-02]
Suspected Bots IP [2018-08-03]
Suspected Bots IP [2018-08-04]
Suspected Bots IP [2018-08-05]
Suspected Bots IP [2018-08-06]
Suspected Bots IP [2018-08-07]
Suspected Bots IP [2018-08-08]
Suspected Bots IP [2018-08-09]
Suspected Bots IP [2018-08-10]
Suspected Bots IP [2018-08-11]
Suspected Bots IP [2018-08-12]
Suspected Bots IP [2018-08-13]
Suspected Bots IP [2018-08-14]
Suspected Bots IP [2018-08-15]
Suspected Bots IP [2018-08-16]
Suspected Bots IP [2018-08-17]
Suspected Bots IP [2018-08-18]
Suspected Bots IP [2018-08-19]
Suspected Bots IP [2018-08-20]
Suspected Bots IP [2018-08-21]
Suspected Bots IP [2018-08-22]
Suspected Bots IP [2018-08-23]
Suspected Bots IP [2018-08-24]
Suspected Bots IP [2018-08-25]
Suspected Bots IP [2018-08-26]
Suspected Bots IP [2018-08-27]
Suspected Bots IP [2018-08-28]
Suspected Bots IP [2018-08-29]
Suspected Bots IP [2018-08-30]
Suspected Bots IP [2018-08-31]

Labels:
Posted by at No comments:

Botnet Statistics for August 2018

detection period: 2018-08-01 00:00 - 2018-08-31 23:59 UTC
total number of suspected botnet IPs: 4197
number of blocked spams: 446936
recipient count of blocked spams: 13175920

The top 25 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

RankCountry# of suspected botnet IPs
1China992
2United States473
3France277
4Brazil198
5Viet Nam181
6South Korea160
7Russian Federation149
8India139
9Germany103
10Italy100
11Netherlands84
12Colombia84
13Canada83
14Indonesia81
15United Kingdom73
16Egypt58
17Ecuador57
18Thailand56
19Taiwan41
20Argentina39
21Ukraine34
22Mexico34
23Poland31
24Spain31
25Japan28

The top 25 countries (as defined by the 2-character country code), ordered by number of blocked spams are:

RankCountry# of blocked spams
1China289739
2South Korea63054
3Colombia38089
4Russian Federation20854
5Italy17552
6United States6343
7Netherlands5991
8Slovenia2434
9France1408
10Nigeria903
11India253
12Brazil138
13ZZ80
14Germany67
15South Africa6
16Canada4
17Poland3
18United Kingdom3
19Viet Nam2
20Taiwan2
21Pakistan2
22Bangladesh2
23Saudi Arabia1
24Romania1
25Iran1

The top 25 countries (as defined by the 2-character country code), ordered by recipient count of blocked spams are:
Read more »
Labels:
Posted by at No comments:

Botnet Statistics [2018-09-22]

detection period: 2018-09-22 00:00-23:59 UTC
total number of suspected botnet IPs: 1599
number of botnet IPs notified to network operators: 1501
number of spam blocked: 5504
recipient count of spam blocked: 165062

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud56
2CHINANET-GD35
3CHINANET-JS29
4HINET-NET28
5VNPT-VNNIC-VN26
6TELKOMNET20
7CMNET18
8Baidu17
9CHINANET-SC14
10AMAZON-2011L14

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China426
2United States197
3Russian Federation106
4Viet Nam73
5India71
6Brazil60
7Indonesia55
8Taiwan44
9Netherlands30
10France27
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-22]

detection period: 2018-09-22 00:00-23:59 UTC
number of suspected bots' IPs listed here: 98

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Saturday, September 22, 2018

Botnet Statistics [2018-09-21]

detection period: 2018-09-21 00:00-23:59 UTC
total number of suspected botnet IPs: 2008
number of botnet IPs notified to network operators: 1859
number of spam blocked: 5606
recipient count of spam blocked: 168180

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud61
2CHINANET-GD54
3VNPT-VNNIC-VN44
4HINET-NET40
5CMNET30
6CO-BROADBAND-329
7CHINANET-JS29
8TELKOMNET22
9Baidu22
10UNICOM-SD21

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China533
2United States243
3Russian Federation101
4Viet Nam97
5Brazil86
6Republic Of Georgia 74
7Indonesia71
8India62
9Taiwan54
10South Korea44
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-21]

detection period: 2018-09-21 00:00-23:59 UTC
number of suspected bots' IPs listed here: 149

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Friday, September 21, 2018

Botnet Statistics [2018-09-20]

detection period: 2018-09-20 00:00-23:59 UTC
total number of suspected botnet IPs: 2013
number of botnet IPs notified to network operators: 1866
number of spam blocked: 5380
recipient count of spam blocked: 161348

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud62
2CHINANET-GD45
3VNPT-VNNIC-VN38
4HINET-NET36
5TELKOMNET32
6CHINANET-JS32
7CMNET24
8VE-CSVE-LACNIC22
9UNICOM-BJ22
10TMO921

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China547
2United States236
3Russian Federation118
4Viet Nam87
5Indonesia85
6India80
7Brazil74
8France54
9Taiwan49
10South Korea47
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-20]

detection period: 2018-09-20 00:00-23:59 UTC
number of suspected bots' IPs listed here: 149

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Thursday, September 20, 2018

Botnet Statistics [2018-09-19]

detection period: 2018-09-19 00:00-23:59 UTC
total number of suspected botnet IPs: 1792
number of botnet IPs notified to network operators: 1662
number of spam blocked: 8002
recipient count of spam blocked: 282620

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud49
2VNPT-VNNIC-VN46
3CHINANET-GD35
4HINET-NET33
5TELKOMNET30
6TMO929
7Baidu26
8DIGITALOCEAN-823
9CHINANET-JS20
10VE-CSVE-LACNIC17

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China419
2United States217
3Russian Federation127
4Viet Nam87
5Indonesia83
6Brazil77
7India65
8Taiwan43
9France42
10Netherlands35
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-19]

detection period: 2018-09-19 00:00-23:59 UTC
number of suspected bots' IPs listed here: 130

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Wednesday, September 19, 2018

Botnet Statistics [2018-09-18]

detection period: 2018-09-18 00:00-23:59 UTC
total number of suspected botnet IPs: 1671
number of botnet IPs notified to network operators: 1548
number of spam blocked: 8288
recipient count of spam blocked: 248611

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1VNPT-VNNIC-VN55
2TencentCloud40
3HINET-NET38
4CHINANET-JS29
5DIGITALOCEAN-825
6VE-CSVE-LACNIC24
7002.558.157/0001-6224
8TELKOMNET23
9Baidu23
10CHINANET-GD22

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China380
2United States182
3Russian Federation113
4Viet Nam96
5Brazil84
6Taiwan64
7India64
8Indonesia49
9Turkey39
10Netherlands38
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-18]

detection period: 2018-09-18 00:00-23:59 UTC
number of suspected bots' IPs listed here: 123

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Tuesday, September 18, 2018

Botnet Statistics [2018-09-17]

detection period: 2018-09-17 00:00-23:59 UTC
total number of suspected botnet IPs: 1717
number of botnet IPs notified to network operators: 1604
number of spam blocked: 5620
recipient count of spam blocked: 168573

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud54
2HINET-NET43
3VNPT-VNNIC-VN33
4TELKOMNET30
5DIGITALOCEAN-828
6CHINANET-GD26
7002.558.157/0001-6225
8Baidu24
9CHINANET-JS22
10CMNET19

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China406
2United States213
3Russian Federation127
4Brazil92
5Viet Nam73
6Indonesia66
7Taiwan58
8India52
9Netherlands40
10Poland32
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-17]

detection period: 2018-09-17 00:00-23:59 UTC
number of suspected bots' IPs listed here: 113

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Monday, September 17, 2018

Botnet Statistics [2018-09-16]

detection period: 2018-09-16 00:00-23:59 UTC
total number of suspected botnet IPs: 1798
number of botnet IPs notified to network operators: 1672
number of spam blocked: 5703
recipient count of spam blocked: 171090

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud63
2HINET-NET42
3CHINANET-GD32
4CHINANET-JS30
5VNPT-VNNIC-VN29
6CMNET26
7TELKOMNET24
8002.558.157/0001-6221
9Amsterdam_Residential_Television_and_Internet_Network19
10VE-CSVE-LACNIC17

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China423
2United States218
3Russian Federation130
4Brazil80
5Taiwan71
6Viet Nam67
7Indonesia60
8India54
9Netherlands51
10France48
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-16]

detection period: 2018-09-16 00:00-23:59 UTC
number of suspected bots' IPs listed here: 126

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Sunday, September 16, 2018

Botnet Statistics [2018-09-15]

detection period: 2018-09-15 00:00-23:59 UTC
total number of suspected botnet IPs: 1896
number of botnet IPs notified to network operators: 1746
number of spam blocked: 4976
recipient count of spam blocked: 149280

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud61
2UNKNOWN46
3DIGITALOCEAN-843
4VNPT-VNNIC-VN37
5CHINANET-JS37
6CHINANET-GD29
7CMNET28
8KORNET-KR23
9HINET-NET23
10TELKOMNET21

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China498
2United States235
3Russian Federation111
4Brazil83
5Viet Nam77
6India66
7Indonesia66
8Netherlands58
9France56
10South Korea39
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-15]

detection period: 2018-09-15 00:00-23:59 UTC
number of suspected bots' IPs listed here: 150

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Saturday, September 15, 2018

Botnet Statistics [2018-09-14]

detection period: 2018-09-14 00:00-23:59 UTC
total number of suspected botnet IPs: 1497
number of botnet IPs notified to network operators: 1415
number of spam blocked: 4770
recipient count of spam blocked: 143100

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud47
2VNPT-VNNIC-VN39
3CMNET31
4TELKOMNET26
5HINET-NET24
6CHINANET-JS24
7CHINANET-GD22
8Baidu21
9TENCENT-CN20
10KORNET-KR19

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China388
2United States178
3Russian Federation92
4Viet Nam78
5Brazil62
6India57
7Indonesia56
8Taiwan39
9South Korea38
10Netherlands37
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-14]

detection period: 2018-09-14 00:00-23:59 UTC
number of suspected bots' IPs listed here: 82

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Friday, September 14, 2018

Botnet Statistics [2018-09-13]

detection period: 2018-09-13 00:00-23:59 UTC
total number of suspected botnet IPs: 1436
number of botnet IPs notified to network operators: 1347
number of spam blocked: 9887
recipient count of spam blocked: 207810
(Detection from TCP port scans was added today.)
The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud49
2VNPT-VNNIC-VN48
3KORNET-KR25
4HINET-NET25
5TELKOMNET23
6CHINANET-GD23
7DIGITALOCEAN-819
8CMNET18
9Baidu18
10UNKNOWN16

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China357
2United States175
3Russian Federation89
4Viet Nam83
5Brazil69
6Indonesia56
7India47
8South Korea37
9Taiwan34
10Netherlands32
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-13]

detection period: 2018-09-13 00:00-23:59 UTC
number of suspected bots' IPs listed here: 89

(List from TCP port scans added)
IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
AR201.231.84.39Argentina

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Thursday, September 13, 2018

Botnet Statistics [2018-09-12]

detection period: 2018-09-12 00:00-23:59 UTC
total number of suspected botnet IPs: 473
number of botnet IPs notified to network operators: 444
number of spam blocked: 4421
recipient count of spam blocked: 132559

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud26
2TENCENT-CN16
3KORNET-KR15
4CMNET12
5CHINANET-GD12
6HINET-NET7
7Baidu6
8UNICOM-BJ5
9CHINANET-JS5
10CHINANET-HN5

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China177
2United States39
3France29
4South Korea22
5Brazil16
6India13
7Italy12
8Germany10
9Indonesia9
10United Kingdom9
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-12]

detection period: 2018-09-12 00:00-23:59 UTC
number of suspected bots' IPs listed here: 29

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Wednesday, September 12, 2018

Botnet Statistics [2018-09-11]

detection period: 2018-09-11 00:00-23:59 UTC
total number of suspected botnet IPs: 244
number of botnet IPs notified to network operators: 226
number of spam blocked: 9351
recipient count of spam blocked: 280501

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1KORNET-KR10
2TencentCloud9
3CMNET9
4VNPT-VNNIC-VN7
5CHINANET-GD6
6UNKNOWN5
7TENCENT-CN5
8CHINANET-SC5
9CO-ACSA-LACNIC4
10CHINANET-SH4

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China87
2France17
3United States14
4South Korea13
5Viet Nam11
6Italy7
7Colombia7
8Brazil7
9United Kingdom6
10Ukraine5
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-11]

detection period: 2018-09-11 00:00-23:59 UTC
number of suspected bots' IPs listed here: 18

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Tuesday, September 11, 2018

Botnet Statistics [2018-09-10]

detection period: 2018-09-10 00:00-23:59 UTC
total number of suspected botnet IPs: 221
number of botnet IPs notified to network operators: 206
number of spam blocked: 9671
recipient count of spam blocked: 295729

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1CMNET11
2TencentCloud10
3KORNET-KR7
4CHINANET-GD6
5Baidu6
6TENCENT-CN5
7VNPT-VNNIC-VN4
8UNKNOWN4
9033.000.118/0001-794
10VPS_Customers_KV_Solutions3

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China84
2United States20
3Brazil17
4South Korea11
5India9
6France9
7Viet Nam7
8Netherlands7
9Germany6
10United Kingdom5
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-10]

detection period: 2018-09-10 00:00-23:59 UTC
number of suspected bots' IPs listed here: 15

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Monday, September 10, 2018

Botnet Statistics [2018-09-09]

detection period: 2018-09-09 00:00-23:59 UTC
total number of suspected botnet IPs: 553
number of botnet IPs notified to network operators: 521
number of spam blocked: 10104
recipient count of spam blocked: 303120

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud26
2KORNET-KR15
3CMNET14
4CHINANET-GD12
5TENCENT-CN11
6CO-ACSA-LACNIC10
7Baidu10
8VNPT-VNNIC-VN7
9HINET-NET6
10FR-OVH-200103026

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China163
2United States52
3France46
4Brazil24
5South Korea22
6Russian Federation21
7Colombia17
8Italy16
9India16
10Indonesia15
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-09]

detection period: 2018-09-09 00:00-23:59 UTC
number of suspected bots' IPs listed here: 34

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
NG129.205.114.10Nigeria

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Sunday, September 9, 2018

Botnet Statistics [2018-09-08]

detection period: 2018-09-08 00:00-23:59 UTC
total number of suspected botnet IPs: 691
number of botnet IPs notified to network operators: 644
number of spam blocked: 4808
recipient count of spam blocked: 144240

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1KORNET-KR21
2CMNET18
3CHINANET-GD17
4TencentCloud16
5TENCENT-CN15
6CO-ACSA-LACNIC11
7HINET-NET10
8Baidu10
9CHINANET-SC8
10GOOGLE-CLOUD7

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China189
2United States67
3France61
4South Korea38
5Brazil26
6India23
7Italy22
8Germany20
9Colombia20
10Russian Federation19
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-08]

detection period: 2018-09-08 00:00-23:59 UTC
number of suspected bots' IPs listed here: 50

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry
NG129.205.114.10Nigeria

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Saturday, September 8, 2018

Botnet Statistics [2018-09-07]

detection period: 2018-09-07 00:00-23:59 UTC
total number of suspected botnet IPs: 653
number of botnet IPs notified to network operators: 594
number of spam blocked: 4769
recipient count of spam blocked: 143041

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud19
2KORNET-KR16
3TENCENT-CN13
4CMNET13
5Baidu10
6CHINANET-SH9
7CHINANET-JS9
8CHINANET-GD9
9FR-OVH-201505228
10UNICOM-BJ7

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China188
2United States73
3France48
4South Korea29
5India29
6Brazil25
7Italy16
8Colombia16
9Canada15
10Indonesia14
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-07]

detection period: 2018-09-07 00:00-23:59 UTC
number of suspected bots' IPs listed here: 64

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Friday, September 7, 2018

Botnet Statistics [2018-09-06]

detection period: 2018-09-06 00:00-23:59 UTC
total number of suspected botnet IPs: 675
number of botnet IPs notified to network operators: 618
number of spam blocked: 4897
recipient count of spam blocked: 146910

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud27
2CMNET17
3TENCENT-CN13
4KORNET-KR12
5CHINANET-GD11
6CHINANET-JS10
7Baidu10
8GO-DADDY-COM-LLC8
9CO-ACSA-LACNIC8
10CHINANET-SC8

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China217
2United States76
3France48
4South Korea28
5India27
6Russian Federation21
7Brazil21
8Indonesia18
9Viet Nam17
10Thailand14
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-06]

detection period: 2018-09-06 00:00-23:59 UTC
number of suspected bots' IPs listed here: 61

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Thursday, September 6, 2018

Botnet Statistics [2018-09-05]

detection period: 2018-09-05 00:00-23:59 UTC
total number of suspected botnet IPs: 617
number of botnet IPs notified to network operators: 566
number of spam blocked: 5057
recipient count of spam blocked: 151652

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud23
2CHINANET-GD15
3KORNET-KR14
4TENCENT-CN11
5broadNnet-KR8
6CO-ACSA-LACNIC8
7CHINANET-JS8
8CABLE-17
9UNKNOWN6
10HINET-NET6

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China166
2United States72
3France51
4South Korea31
5India28
6Russian Federation21
7Italy16
8Viet Nam14
9United Kingdom14
10Germany14
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-05]

detection period: 2018-09-05 00:00-23:59 UTC
number of suspected bots' IPs listed here: 55

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Wednesday, September 5, 2018

Botnet Statistics [2018-09-04]

detection period: 2018-09-04 00:00-23:59 UTC
total number of suspected botnet IPs: 679
number of botnet IPs notified to network operators: 626
number of spam blocked: 4331
recipient count of spam blocked: 129930

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud26
2KORNET-KR19
3TENCENT-CN13
4CHINANET-GD11
5CMNET10
6CHINANET-SH10
7CO-ACSA-LACNIC9
8CHINANET-JS8
9Baidu8
10IUNET47

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China197
2United States83
3France59
4South Korea34
5India27
6Brazil25
7Russian Federation20
8Indonesia20
9Colombia16
10Canada15
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-04]

detection period: 2018-09-04 00:00-23:59 UTC
number of suspected bots' IPs listed here: 53

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Tuesday, September 4, 2018

Botnet Statistics [2018-09-03]

detection period: 2018-09-03 00:00-23:59 UTC
total number of suspected botnet IPs: 586
number of botnet IPs notified to network operators: 537
number of spam blocked: 5302
recipient count of spam blocked: 159002

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud24
2KORNET-KR19
3CMNET16
4Baidu11
5CO-ACSA-LACNIC9
6CABLE-19
7CHINANET-SH7
8TENCENT-CN6
9OVH6
10CHINANET-JS6

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China164
2France56
3United States52
4Brazil33
5South Korea32
6India21
7Indonesia19
8Russian Federation17
9Colombia15
10Canada14
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-03]

detection period: 2018-09-03 00:00-23:59 UTC
number of suspected bots' IPs listed here: 51

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Monday, September 3, 2018

Botnet Statistics [2018-09-02]

detection period: 2018-09-02 00:00-23:59 UTC
total number of suspected botnet IPs: 544
number of botnet IPs notified to network operators: 488
number of spam blocked: 4957
recipient count of spam blocked: 153642

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud23
2KORNET-KR20
3TENCENT-CN7
4Baidu7
5broadNnet-KR6
6FR-OVH-200103026
7CMNET6
8HO-25
9FR-OVH5
10CHINANET-GD5

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China116
2France57
3United States53
4South Korea39
5India24
6Brazil20
7Russian Federation16
8Viet Nam15
9Indonesia14
10Italy13
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-02]

detection period: 2018-09-02 00:00-23:59 UTC
number of suspected bots' IPs listed here: 58

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Sunday, September 2, 2018

Botnet Statistics [2018-09-01]

detection period: 2018-09-01 00:00-23:59 UTC
total number of suspected botnet IPs: 548
number of botnet IPs notified to network operators: 499
number of spam blocked: 17378
recipient count of spam blocked: 690398

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1KORNET-KR18
2TencentCloud16
3CMNET12
4Baidu11
5broadNnet-KR9
6TENCENT-CN9
7CHINANET-JS8
8BSNLNET7
9GO-DADDY-COM-LLC6
10CHINANET-GD6

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China160
2United States51
3South Korea41
4France39
5India23
6Indonesia18
7Brazil17
8Russian Federation14
9Italy13
10United Kingdom13
Labels:
Posted by at No comments:

Suspected Bot List [2018-09-01]

detection period: 2018-09-01 00:00-23:59 UTC
number of suspected bots' IPs listed here: 52

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:

Saturday, September 1, 2018

Botnet Statistics [2018-08-31]

detection period: 2018-08-31 00:00-23:59 UTC
total number of suspected botnet IPs: 605
number of botnet IPs notified to network operators: 551
number of spam blocked: 7583
recipient count of spam blocked: 289684

The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:

RankNetwork# of suspected botnet IPs
1TencentCloud24
2KORNET-KR20
3CMNET13
4CO-ACSA-LACNIC11
5CHINANET-GD11
6TENCENT-CN9
7Baidu8
8GO-DADDY-COM-LLC7
9CHINANET-SH7
10broadNnet-KR6

The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:

1China171
2United States68
3France52
4South Korea37
5Colombia23
6Brazil23
7India19
8Viet Nam18
9Russian Federation15
10Indonesia13
Labels:
Posted by at No comments:

Suspected Bot List [2018-08-31]

detection period: 2018-08-31 00:00-23:59 UTC
number of suspected bots' IPs listed here: 54

IP addresses listed here all exhibit strange network behavior. As I could not notify the victims for various reasons (no working abuse contact, mailbox over quota, etc.), I list them here instead. I have to emphasize that those are just *suspected* to be malware-infected computers.

List from fake open relays:

country codeIP addressCountry

List from greylisting:
Read more »
Labels:
Posted by at No comments:
Subscribe to: Posts (Atom)