2016/12/22

Web.com - wrong excuse

Web.com and Consumer Harm


This blog post will illustrate what happens when Network Solutions is made aware of serious issues on their service.

Network Solutions is a leading US based registrar, a member of the Web.com Group, Inc. For any abuse issues with their service, they insist the abuse form at https://abuse.web.com/ be completed. Also for fake domain registration details.

So what happens if this route is followed?

The domain and the scam


Let's first consider the malicious domain hyperchems.com and the website hosted on it to show what was reported.

This domain is abused in the infamous drug scam. Much like non-existent pets are being sold to unsuspecting victims in pet scams emanating from the Cameroon, the drug scam has a much darker side. Typically this scam targets terminally ill cancer patients. The victim is made to believe the fictitious drugs exists, will be shipped once they have been paid for. But the problems quickly crop up.

The first problem will be the secure credit card payment system. Should the victim pay via their credit card, invariably the credit card will be declined. However at this stage the victim has entered their full personal details and credit card details, including the CVV over and insecure connection.

As such the fraudster suggest paying via Western Union or Moneygram - since the card was declined.

Once this money has been paid, the bogus courier enters while the fraudsters merrily empty the victim's credit card.

The bogus courier will now claim to be shipping the discrete package for the victim. But there are problems. Customs inspections and special clearances are required all requiring fees, insurance fees etc. Should the victim try to withdraw from the scam, the fraudsters turns this scam into extortion, threatening to report the victim to the authorities for trying to obtain illegal drugs.

The index Page:



Crack Cocaine:

For the record, we show this fraudulent website selling crack cocaine. There is no such things as "Legal Crack Cocaine" in the USA.


Steroids for Cancer Sufferers:

This is where we cut to the heart of the scam, the actual group being targeted.



Credit Card Details Theft:


Domain Registration Details:

The domain registrant is extremely well known in the anti-fraud community. He has been using these and similar tactics to sell drugs, also non-existent Arowana fish to US consumers, listed endangered under the ESA and in CITES Appendix I and expressly prohibited as per the US Fish and Wildlife Service website.

These are then transported via his equally non-existent couriers. 

Let us look at four of his domain registration details.

Domain Name: HYPERCHEMS.COM
Creation Date: 2015-01-18T05:00:00Z
Updated Date: 2016-02-23T21:35:06Z
Registrant Name: chemical Labs
Registrant Organization: chemical Labs
Registrant Street: 629 N VALLEY RD
Registrant City: PAOLI
Registrant State/Province: PA
Registrant Postal Code: 19301-1006
Registrant Country: US
Registrant Phone: +1.7743148358
Registrant Email: kenjohn05@gmail.com
Domain Name: BESTSALTONLINE.COM (ClientHold)
Creation Date: 2016-03-31T04:27:38Z
Registrant Name: bigge, Daniel
Registrant Organization:
Registrant Street: 702 CHIPPEWA ST
Registrant City: ONTONAGON
Registrant State/Province: MI
Registrant Postal Code: 49953-1014
Registrant Country: US
Registrant Phone: +1.7743148358
Registrant Email: stevesimeu11@gmail.com
Domain Name: EXPRESSDIAMONDLOGISTIC.COM
Creation Date: 2016-09-23T04:00:00Z
Updated Date: 2016-09-23T12:44:34Z
Registrant Name: Dasha Wande
Registrant Organization:
Registrant Street: 929 POTOMAC AVE
Registrant City: PORTSMOUTH
Registrant State/Province: VA
Registrant Postal Code: 23707-1407
Registrant Country: US
Registrant Phone: +1.7743148358
Registrant Email: 92xwt@boun.cr
At another registrar (which we will escalate to them), but evidence
nonetheless that the party is serially creating fake registration details:
Domain Name: GHCWEED.COM
Updated Date: 2016-10-24T01:13:34Z
Creation Date: 2015-07-26T09:56:11Z
Registrant Name: maria baeza
Registrant Organization: Unknown company
Registrant Street: 215 brooklyn ave 
Registrant City: kansas city
Registrant State/Province: MO
Registrant Postal Code: 64124
Registrant Country: US
Registrant Phone: +1.8165476490
Registrant Email: kenjohn05@gmail.com
Looking at these domains:
  • The first three domain have telephone number +1.7743148358 as common and as such are clearly linked.
  • The first three domains are registered with domain registrar NETWORK SOLUTIONS, LLC.
  • NETWORK SOLUTIONS, LLC. has had some experience with this registrant, as seen with BESTSALTONLINE.COM being on clienthold.
  • We see the registrant changing names, addresses, even emails at trying to hide his trail and true identity.

BESTSALTONLINE.COM was used for exactly the same content, we even find the same telephone number + 1-(774) 314-8358 on the websites. For the eagle-eyed, yes, we even find the name www.bestsaltonline.com on the website at HYPERCHEMS.COM.





So are we to believe the registrant has really changed his name numerous time, likewise his address, even his sex?

Even if we were, that would still mean the domain registration details are invalid as he had changed it since his later registrations reflects different details.


From a registrar perspective, this should be very import and of concern. ICANN mandates such details be accurate and reliable. This is not optional.

The ICANN RAA:

Before becoming a registrar,  such a party must agree with ICANN to uphold certain standards. These standards are contained in a document called the Registrar Accreditation Agreement, commonly referred to as the ICANN RAA. This agreement is available online for all to see: https://www.icann.org/resources/pages/approved-with-specs-2013-09-17-en

Network Solutions is a signatory thereto and undertook to uphold there minimum standards:
https://www.icann.org/registrar-reports/accredited-list.html 

It is this agreement that is supposed to set minimum standards for domain registrations that should allow for some minimal protection for all parties when a domain is registered:
https://www.icann.org/resources/pages/approved-with-specs-2013-09-17-en

Of note are some of the provisions from this document, highlights are that of the author:

Registrar Accreditation Agreement
3.7.7 Registrar shall require all Registered Name Holders to enter into an electronic or paper registration agreement with Registrar including at least the provisions set forth in Subsections 3.7.7.1 through 3.7.7.12, and which agreement shall otherwise set forth the terms and conditions applicable to the registration of a domain name sponsored by Registrar. The Registered Name Holder with whom Registrar enters into a registration agreement must be a person or legal entity other than the Registrar, provided that Registrar may be the Registered Name Holder for domains registered for the purpose of conducting its Registrar Services, in which case the Registrar shall submit to the provisions set forth in Subsections 3.7.7.1 through 3.7.7.12 and shall be responsible to ICANN for compliance with all obligations of the Registered Name Holder as set forth in this Agreement and Specifications and Policies. Registrar shall use commercially reasonable efforts to enforce compliance with the provisions of the registration agreement between Registrar and any Registered Name Holder that relate to implementing the requirements of Subsections 3.7.7.1 through 3.7.7.12 or any Consensus Policy.
3.7.7.1 The Registered Name Holder shall provide to Registrar accurate and reliable contact details and correct and update them within seven (7) days of any change during the term of the Registered Name registration, including: the full name, postal address, e-mail address, voice telephone number, and fax number if available of the Registered Name Holder; name of authorized person for contact purposes in the case of an Registered Name Holder that is an organization, association, or corporation; and the data elements listed in Subsections 3.3.1.2, 3.3.1.7 and 3.3.1.8.
3.7.7.2 A Registered Name Holder's willful provision of inaccurate or unreliable information, its willful failure to update information provided to Registrar within seven (7) days of any change, or its failure to respond for over fifteen (15) days to inquiries by Registrar concerning the accuracy of contact details associated with the Registered Name Holder's registration shall constitute a material breach of the Registered Name Holder-registrar contract and be a basis for suspension and/or cancellation of the Registered Name registration.
3.7.7.9 The Registered Name Holder shall represent that, to the best of the Registered Name Holder's knowledge and belief, neither the registration of the Registered Name nor the manner in which it is directly or indirectly used infringes the legal rights of any third party.
 3.7.8 Registrar shall comply with the obligations specified in the Whois Accuracy Program Specification. In addition, notwithstanding anything in the Whois Accuracy Program Specification to the contrary, Registrar shall abide by any Consensus Policy requiring reasonable and commercially practicable (a) verification, at the time of registration, of contact information associated with a Registered Name sponsored by Registrar or (b) periodic re-verification of such information. Registrar shall, upon notification by any person of an inaccuracy in the contact information associated with a Registered Name sponsored by Registrar, take reasonable steps to investigate that claimed inaccuracy. In the event Registrar learns of inaccurate contact information associated with a Registered Name it sponsors, it shall take reasonable steps to correct that inaccuracy.
....
3.18 Registrar's Abuse Contact and Duty to Investigate Reports of Abuse.
3.18.1 Registrar shall maintain an abuse contact to receive reports of abuse involving Registered Names sponsored by Registrar, including reports of Illegal Activity. Registrar shall publish an email address to receive such reports on the home page of Registrar's website (or in another standardized place that may be designated by ICANN from time to time). Registrar shall take reasonable and prompt steps to investigate and respond appropriately to any reports of abuse.
WHOIS ACCURACY PROGRAM SPECIFICATION
4. If Registrar has any information suggesting that the contact information specified in Section 1(a) through 1(f) above is incorrect (such as Registrar receiving a bounced email notification or non-delivery notification message in connection with compliance with ICANN's Whois Data Reminder Policy or otherwise) for any Registered Name sponsored by Registrar (whether or not Registrar was previously required to perform the validation and verification requirements set forth in this Specification in respect of such Registered Name), Registrar must verify or re-verify, as applicable, the email address(es) as described in Section 1.f (for example by requiring an affirmative response to a Whois Data Reminder Policy notice). If, within fifteen (15) calendar days after receiving any such information, Registrar does not receive an affirmative response from the Registered Name Holder providing the required verification, Registrar shall either verify the applicable contact information manually or suspend the registration, until such time as Registrar has verified the applicable contact information. If, within fifteen (15) calendar days after receiving any such information, Registrar does not receive an affirmative response from the customer paying for the Registered Name, if applicable, providing the required verification, Registrar shall verify the applicable contact information manually, but is not required to suspend any registration.

5. Upon the occurrence of a Registered Name Holder's willful provision of inaccurate or unreliable WHOIS information, its willful failure promptly to update information provided to Registrar, or its failure to respond for over fifteen (15) calendar days to inquiries by Registrar concerning the accuracy of contact details associated with the Registered Name Holder's registration, Registrar shall either terminate or suspend the Registered Name Holder's Registered Name or place such registration on clientHold and clientTransferProhibited, until such time as Registrar has validated the information provided by the Registered Name Holder.
Then we have an ICANN advisory dated 03 March 2003 that should act as guidance to Registrars on encountering fake registration details in circumstances as above to evade responsibility for fraud. To this day it still stands, as was verified with ICANN themself earlier in the year. This is well known to exist since that long at least. So nothing of the above is new.

https://www.icann.org/announcements/advisory-03apr03.htm

...
    1. The customer's "willful provision of inaccurate or unreliable information";
    2. The customer's "willful failure promptly to update information provided to" the registrar; or
    3. The customer's "failure to respond for over fifteen calendar days to inquiries by Registrar concerning the accuracy of contact details".
In their registration agreements with registrars, customers promise to provide "accurate and reliable contact details and promptly correct and update them during the term of the . . . registration." (Subsection 3.7.7.1 of the Registrar Accreditation Agreement.) Conditions (1) and (2) above authorize registrars to cancel domain-name registrations for willful breaches of these promises.
Condition (3) above, it should be noted, is only triggered when the customer fails to respond to an inquiry; it is not triggered when the customer responds to the inquiry but does not complete any corrections to inaccurate or out-of-date Whois data within 15 days. Unlike conditions (1) and (2), which require willful transgressions on the part of the customer, condition (3) is triggered without a showing that the customer's failure to respond is willful, in recognition that the ability to prove willfulness can be frustrated by a customer's refusal to engage in dialog with the registrar.
...
Where an inaccuracy is minor (e.g., an incorrect postal code), appears inadvertent (e.g., transposed digits), and harms no third party (e.g., readily available means of contacting and locating the customer are provided by the data that is given), a registrar can appropriately conclude that much more than 15 days should be allowed before the registration is cancelled. In such cases the registrar, which after all seeks to promote good relations with its customer, has no motivation to act precipitously. On the other hand, where a registrar encounters a severe Whois inaccuracy being exploited by a registrant to evade responsibility for fraudulent activity being carried out through use of the domain name, prompt action by the registrar is appropriate. Under the approach of the Registrar Accreditation Agreement, the registrar is given discretion to act as appropriate in light of the particular circumstances of each case.
In determining how long to wait for a customer response to an inquiry about a Whois inaccuracy before canceling the registration, a registrar should take guidance from subsection 3.7.8 of the Registrar Accreditation Agreement. That subsection defines the registrar's obligation to correct inaccurate Whois data:
"Registrar shall, upon notification by any person of an inaccuracy in the contact information associated with a Registered Name sponsored by Registrar, take reasonable steps to investigate that claimed inaccuracy. In the event Registrar learns of inaccurate contact information associated with a Registered Name it sponsors, it shall take reasonable steps to correct that inaccuracy."

 What we conclude from the above is that:
  • ICANN mandates registrars to investigate reports of invalid registration details.
  • Such fake registration details linked to fraudulent activity should be investigated promptly, and if found to be so, the registrar can promptly cancel the domain.
This in fact exactly what many registrars do.

So what happened when the fraudulent activity with the domain name hyperchems.com was reported to Web.com? They issued ticket #11470443 hyperchems.com.

Their Abuse & Fraud Specialist 1 at Legal replied thus:
 
Dear (redacted)


We are writing in response to your recent complaint concerning the domain name hyperchems.com.   
We understand that you find the content on the website associated with this domain name abusive, offensive or otherwise objectionable; however, neither Web.com and or its subsidiary registrar brands (collectively, "Web.com") is the registrant of the domain name, nor providing hosting services for the domain name.  Web.com is simply the  registrar of record, providing domain registration services. As such, we are also not in a position to determine whether a particular domain name registration violates a third party's rights. 
 
Web.com will only take action with respect to a particular domain registration pursuant to (i) a request from the current domain name registrant; (ii) the terms of the Uniform Domain Name Dispute Resolution Policy ("UDRP") issued by the Internet Corporation for Assigned Names and Numbers ("ICANN"), the international regulatory body that oversees the administration of domain names; or (iii) an order from a court or arbitral tribunal of competent jurisdiction. 
 
If you would like to file a domain dispute against the registrant of the domain, please visit the following link for more information:  
https://www.icann.org/resources/pages/dispute-resolution-2012-02-25-en  
Please note that under the U.S. Communications and Decency Act, an Internet Service Provider or Web host is immune from liability for the content posted on a website by a customer and therefore, neither Web.com nor its affiliates would be a party to any potential court, arbitral or regulatory proceedings. 
 
We consider the matter closed. 
 
Sincerely,

(redacted)
Abuse & Fraud Specialist 1
Web.com12808 Gran Bay Parkway| Jacksonville Fl. 32258Office: (404)
260-2594|Fax: (571) 434-4634
Hours of Operation: 7 Days a week 5AM - 10PM EST
If you are shocked, so was the reporter at this response.

Suddenly years of negotiation, letters from the FTC, law enforcement, consumer protection groups just got thrown into the dustbin at Web.com. Not to mention the ICANN RAA and ICANN advisories ignored, yet alternative ICANN UDRPs being mentioned.

Wrong tool for the job at hand. A $10 domain trumps a $2500 UDRP each time in the cost of crime. Considering we literally have hundreds of these specific type of malicious domains streaming onto the net from the Cameroon, most with fake registration details, who is supposed to foot the bill? The cancer patient who has already been defrauded?

A few to and fro replies between the reporter and Web.com followed. The author was included at a stage.

Trying to take a step back, thinking a registrar would send a response like this if they fully understood what was at hand, the author logically explained the registrar's obligation as per the ICANN RAA to them. Explained the whois inaccuracies. Supplied them with additional evidence of serial abuse by the registrant. Supplied them with the relevant ICANN advisory.

The author also took time to explain to them why the UDRP would be the wrong tool, even offering them training on abuse issues if they did not understand what they were looking at for free. 

The reply?
The mail system

<(redacted)@web.com>: host mx.myregisteredsite.com[209.17.115.10] said: 554 5.7.1
    The message from (<(redacted)@aa419.org>) with the subject of (Re:
    [tkt:11470443] hyperchems.com) matches a profile the Internet community may
    consider spam. Please revise your message before resending. (in reply to
    end of DATA command)
Eventually the reply had to be converted to PDF to bypass this malicious domain mention, as labelled by the Internet community, from being seen. (Who are they? And why?)
No reply was received. Did the email reach or not reach Web.com?

A day later a new ticket was lodged, ticket 11498767 hyperchems.com

The reply?
Dear (redacted)
We are writing in response to your recent complaint concerning the domain name hyperchems.com.

We understand that you find the content on the website associated with this domain name abusive, offensive or otherwise objectionable; however, neither Web.com and or its subsidiary registrar brands (collectively, “Web.com”) is the registrant of the domain name, nor providing hosting services for the domain name.  Web.com is simply the  registrar of record, providing domain registration services. As such, we are also not in a position to determine whether a particular domain name registration violates a third party's rights.  

Web.com will only take action with respect to a particular domain registration pursuant to (i) a request from the current domain name registrant; (ii) the terms of the Uniform Domain Name Dispute Resolution Policy (“UDRP”) issued by the Internet Corporation for Assigned Names and Numbers (“ICANN”), the international regulatory body that oversees the administration of domain names; or (iii) an order from a court or arbitral tribunal of competent jurisdiction.

If you would like to file a domain dispute against the registrant of the domain, please visit the following link for more information:

https://www.icann.org/resources/pages/dispute-resolution-2012-02-25-en

Please note that under the U.S. Communications and Decency Act, an Internet Service Provider or Web host is immune from liability for the content posted on a website by a customer and therefore, neither Web.com nor its affiliates would be a party to any potential court, arbitral or regulatory proceedings. 

We consider the matter closed.

Sincerely,
Abuse & Fraud Specialist 1
Web.com

12808 Gran Bay Parkway| Jacksonville Fl. 32258
Office: (404) 260-2594|Fax: (571) 434-4634Hours of Operation: 7 Days a week 5AM - 10PM EST

To say the least, such a reply from one of the US largest ICANN accredited registrars does not do the registrar community proud. There is nothing decent in mentioning the U.S. Communications and Decency Act in this context.

What Web.com has done is turned itself into a willing proxy for fraud under the guise of the the U.S. Communications and Decency Act, while ignoring their ICANN commitments. At the same time they have made all internet users a potential piggy bank for West African scammers or anybody choosing to use their services for fraud by adopting this attitude to abuse and fake registration domain details, including their fellow US citizens who are the prime target of the fraudsters in this specific case.

In an one fell swoop, Web.com has turned their own Master Agreement into mere eye-candy tokenism. Some clauses:
You agree to: (1) provide certain true, current, complete and accurate information about you as required by the application process; and (2) maintain and update the information you provided to us
Customer will not provide Content or other materials, or use the Services in any manner that either directly or indirectly infringes any rights of a third party
Customer’s Content, other materials provided in conjunction with the Services, and use of the Services will in all respects conform to all applicable laws and regulations;
Likewise the Acceptable Usage Policy:
utilize the Services to traffic in illegal drugs, illegal gambling, obscene materials, or other anyproducts or services that are prohibited under applicable law;
 At this stage the reader would appreciate the confusion. If crack cocaine was sold (let's assume it were true and believed to be so by Web.com), this would violate this clause since the claimed address is US and selling crack cocaine is illegal in the US . It is were not true (and Web.com also not believed it so), this would be fraud, which would violate.
utilize the Services in any manner that violates any applicable regulation, rule or law
Then we have more eye candy:

utilize the Services in any manner that might subject Company to unfavorable regulatory
action, subject Company to any liability for any reason, or adversely affect Company's public image, reputation or goodwill, including, without limitation, sending, displaying or distributing  sexually explicit, hateful, vulgar, racially, ethnically or otherwise objectionable materials as determined by Company in its sole discretion.
Fraud, especially fraud targeting desperate terminally ill cancer sufferers, will cause consumer pushback. More so any registrar that allows it to happen on their watch. At this stage Web.com needs no fraudster's help to damage their image. Their own legal department "Abuse & Fraud Specialist 1" is doing more than a stellar job.

Web.com has swept all the consumer protections under the rug in a time when it's needed most, when we find their services being abused for fraud to target a specific vulnerable group of the population.

There simply is no decency in this. Then there are the other registrar obligation issues ...

2016/06/30

Introducing WHOIS flaky factor

AA419 has introduced a new toy for internet researchers.

Background

When looking up the registration details (WHOIS) for a domain, in the thin domain gTLD model, we are reliant on registrars to supply these services.

Essentially the access should be freely available and meet the following specifications as per ICANN
Registrars and registries [PDF, 649 KB] are obligated to provide access to WHOIS data through registration data publication services. It must be publicly available in a specific format and on a designated "port" reserved for WHOIS data sharing (port 43), as well as on an interactive webpage. Port 43 access by registrars is required only for domain names registered in 'thin' registries. The data must include specific identification, contact and technical information.
At present, web-based WHOIS queries may be performed through the websites of ICANN accredited registrars and registries, most regional Internet registries, and third party WHOIS client providers. The agreement between a gTLD registry operator and registrar may, if approved by ICANN in writing, state alternative requirements for that gTLD. Also, under certain market conditions, the registrar may be obligated to provide bulk access to WHOIS.
Data available depends on whether a registry is "thick" or "thin". Only a few registries that existed prior to the new GTLD program are "thin," (such as .com and .net). Thin registries do not include registrant contact details. For thin registries, registrars provide the specific registrant contact information.
ICANN specifies Service Level Agreements related to the performance and acceptable downtime of the registrar & registry's [PDF, 649 KB] WHOIS services. This includes downtime for maintenance, planned outages or system failures, and performance response times to Internet user queries.
Anyone can submit a complaint that a registrar's WHOIS service is down. Registries must submit WHOIS performance reports [PDF, 649 KB] to ICANN.

Some registrar's servers give hiccups from time to time. As a consumer of whois data in AA419's efforts to protect consumers, we are extremely sensitive to such issues. 

In the past we have been told by one registrar, GoDaddy, we need to apply for special permission to get access to whois.
 8 Sept 2014

GD: Remote access is blocked by default. You'll need to email a request to port43@godaddy.com to be whitelisted...
Please include: Full Name, Business Name, Business reasons for access, and specific IPs which need to be whitelisted. ^CG

Me: I'm not asking for bulk access not subject to rate limiting. I'm trying to use normal low volume port 43 - ICANN mandated free access.

GD: We already allow you access to retrieve the domain, name servers, and creation/expiration dates for the domain as ICANN Mandated...
If you require full access to contact details, you'll need to proceed with emailing port43@godaddy.com with the info requested. ^CG

Me: ICANN RAA 2013, 3.3 But nvm, I'll take it up with ICANN Compliance as a compliance issue against Godaddy using this as background. Thx

This led to an ICANN escalation. And then denial of issues (the claims by GoDaddy were never addressed).  Miraculously GoDaddy's whois servers started behaving though. We ensure these issues occur from various locations around the globe, doing relevant network traces at the TCP layer before making such claims. But what if there is not issue on our side?

Obviously these issues are counter productive to anti-fraud efforts and we simply do not have the time to play these games, especially as in the latest GoDaddy incident.

Once again we are in the same situation and we have broken whois servers on the net at GoDaddyand Wild West Domains. In the current situation, if a new session is opened and whois lookup is done against the relevant registrar's whois server, the server sets up a network session, then submits a reset to the client.

Connection reset: Godaddy

Connection reset: WildWest


These result in aborted lookups.

WHOIS lookup failure on reset
Should one try again repeatedly, you may either succeed, or eventually get blocked for a while, probably for being abusive? Fair enough blocking abuse if the server was working like it should, but currently this compounds to the issue.

In the current incident, we tried pointing this out to GoDaddy. From the GoDaddy preferred support chat, we were diverted to phoning in the details. The support operator, Bill, then wanted us to use the online WHOIS. It was necessary to point out the ICANN RAA requirements for a functional port 43 whois lookup server for any registrar registering thin WHOIS domains in the GTLD space. We were then asked to submit the details to support@godaddy.com which we did. But alas, GoDaddy no longer gives email support?

Thank you Godaddy for wasting our time and money.

Our Solution

Rather than flogging a dead horse, we patched our system and specifically the industry standard software we're using to obtain whois details, introducing the flaky factor into our database at http://db.aa419.org.

We will retry N times with a pause in between each attempt.
  • Should we succeed the first time, the flaky factor will not be shown.
  • Should we have to retry more than once before succeeding, the WHOIS resulting will show an appended flaky factor, example:
Flaky WHOIS Server Alert: We had to retry 4 times
  • Should we fail totally, the WHOIS result will show:
*** Flaky WHOIS Server Alert! ***
   whois-nameserver-name  failed.
*** We retried N times ****
We trust this information will be useful to researchers.



Regards,


The AA419 Team

2013/08/11

aa419 DDoS Aug 2013 Breakdown; AFRINIC

This post forms part of "aa419 DDoS Aug 2013 Breakdown" split for ease of reading

Here are statistics for bots from the AFRINIC region, broken down by Country code, ASN, IP address

AFRINIC (297 bots)
    AO  (9 bots)
     AS11259 (4 bots) - ANGOLATELECOM
         197.148.63.1       197.148.0.0/18     
         197.216.8.194      197.216.0.0/15     
         41.223.157.14      41.223.156.0/22    
     AS36907 (1 bots) - TVCaboAngola
         197.148.63.1       197.148.0.0/18     
     AS37081 (1 bots) - movicel-as
         41.70.167.49       41.70.160.0/19     
     AS37155 (4 bots) - NETONE
         41.72.0.198        41.72.0.0/20       
         41.72.17.36        41.72.16.0/20      
         41.72.46.84        41.72.32.0/20      
         41.72.9.220        41.72.0.0/20       
    BW  (4 bots)
     AS14988 (4 bots) - BTC-GATE1
         168.167.176.182    168.167.176.0/20   
         168.167.181.55     168.167.176.0/20   
         168.167.190.137    168.167.176.0/20   
         168.167.213.161    168.167.208.0/21   
    CG  (1 bots)
     AS37281 (1 bots) - OFIS
         41.75.66.18        41.75.66.0/24      
    CM  (16 bots)
     AS15964 (10 bots) - CAMNET-AS
         195.24.206.122     195.24.192.0/20    
         195.24.206.123     195.24.192.0/20    
         195.24.206.124     195.24.192.0/20    
         195.24.206.125     195.24.192.0/20    
         195.24.206.126     195.24.192.0/20    
         41.204.72.2        41.204.72.0/24     
         41.204.72.53       41.204.72.0/24     
         41.204.87.173      41.204.64.0/19     
         41.204.87.228      41.204.64.0/19     
         41.204.90.107      41.204.64.0/19     
     AS16637 (7 bots) - MTNNS-AS
         41.205.16.210      41.205.0.0/19      
     AS36912 (5 bots) - ORANGECM
         41.202.197.45      41.202.192.0/21    
         41.202.203.170     41.202.203.0/24    
         41.202.203.78      41.202.203.0/24    
         41.202.204.219     41.202.204.0/24    
         41.202.205.152     41.202.205.0/24    
    DZ  (73 bots)
     AS33774 (21 bots) - DJAWEB
         197.200.12.234     197.200.0.0/16     
         197.200.20.140     197.200.0.0/16     
         197.200.9.188      197.200.0.0/16     
         41.107.194.132     41.107.192.0/19    
         41.107.214.79      41.107.192.0/19    
         41.200.24.13       41.200.0.0/19      
     AS33779 (2 bots) - wataniya-telecom-as
         80.88.12.85        80.88.12.0/24      
         80.88.12.90        80.88.12.0/24      
     AS36947 (80 bots) - ALGTEL-AS
         197.200.12.234     197.200.0.0/16     
         197.200.20.140     197.200.0.0/16     
         197.200.46.242     197.200.32.0/20    
         197.200.9.188      197.200.0.0/16     
         197.205.162.43     197.205.160.0/19   
         197.205.165.208    197.205.160.0/19   
         197.205.172.31     197.205.160.0/19   
         197.205.187.94     197.205.160.0/19   
         197.205.53.244     197.200.0.0/13     
         197.205.70.206     197.200.0.0/13     
         197.205.78.18      197.200.0.0/13     
         197.205.82.20      197.200.0.0/13     
         197.205.83.4       197.200.0.0/13     
         197.205.85.94      197.200.0.0/13     
         197.205.87.132     197.200.0.0/13     
         197.205.90.187     197.200.0.0/13     
         197.205.92.49      197.200.0.0/13     
         197.206.10.131     197.200.0.0/13     
         197.207.18.136     197.207.0.0/16     
         197.207.33.235     197.207.0.0/16     
         197.207.38.234     197.207.0.0/16     
         41.100.105.182     41.100.64.0/18     
         41.100.117.192     41.100.64.0/18     
         41.100.71.49       41.100.64.0/18     
         41.100.82.114      41.100.64.0/18     
         41.102.14.203      41.102.0.0/16      
         41.102.17.27       41.102.0.0/16      
         41.103.87.207      41.103.64.0/18     
         41.104.184.82      41.104.0.0/16      
         41.104.199.192     41.104.0.0/16      
         41.104.201.41      41.104.0.0/16      
         41.104.28.251      41.104.0.0/16      
         41.104.66.52       41.104.0.0/16      
         41.104.86.173      41.104.0.0/16      
         41.107.144.5       41.107.128.0/17    
         41.107.59.241      41.107.0.0/17      
         41.108.67.212      41.108.0.0/17      
         41.110.146.14      41.110.128.0/18    
         41.200.182.35      41.200.160.0/19    
         41.200.184.74      41.200.160.0/19    
         41.200.86.50       41.200.0.0/17      
         41.200.91.24       41.200.0.0/17      
         41.201.48.112      41.201.32.0/19     
         41.96.118.85       41.96.0.0/17       
         41.96.29.230       41.96.0.0/17       
         41.97.133.35       41.97.128.0/17     
         41.97.166.179      41.97.128.0/17     
         41.97.226.133      41.97.128.0/17     
         41.97.239.218      41.97.128.0/17     
         41.98.123.89       41.98.0.0/17       
         41.98.93.83        41.98.0.0/17       
         41.99.1.78         41.99.0.0/17       
         41.99.102.228      41.99.0.0/17       
         41.99.18.86        41.99.0.0/17       
         41.99.37.120       41.99.0.0/17       
         41.99.45.112       41.99.0.0/17       
         41.99.6.13         41.99.0.0/17       
         41.99.63.105       41.99.0.0/17       
         41.99.71.105       41.99.0.0/17       
         41.99.72.132       41.99.0.0/17       
         41.99.8.210        41.99.0.0/17       
         41.99.83.237       41.99.0.0/17       
         41.99.86.179       41.99.0.0/17       
         41.99.92.108       41.99.0.0/17       
         41.99.99.98        41.99.0.0/17       
    EG  (46 bots)
     AS24835 (4 bots) - RAYA-AS
         41.68.157.75       41.68.156.0/22     
         41.68.158.171      41.68.156.0/22     
         41.68.179.143      41.68.176.0/22     
         41.68.251.84       41.68.248.0/22     
     AS24863 (6 bots) - LINKdotNET-AS
         196.205.224.52     196.205.224.0/23   
         197.160.85.48      197.160.84.0/22    
         197.161.199.164    197.161.196.0/22   
         41.130.31.15       41.130.28.0/22     
         41.131.244.229     41.131.244.0/22    
         41.196.74.153      41.196.74.0/23     
     AS36935 (4 bots) - Vodafone-EG
         197.135.127.215    197.135.96.0/19    
         197.135.127.216    197.135.96.0/19    
         197.135.127.230    197.135.96.0/19    
         197.135.82.222     197.135.64.0/19    
     AS36992 (2 bots) - ETISALAT-MISR
         41.153.55.200      41.153.32.0/19     
         41.199.6.154       41.199.0.0/20      
     AS8452 (30 bots) - TE-AS TE-AS
          197.32.19.24       197.32.0.0/18      
          197.32.210.223     197.32.208.0/20    
          197.32.53.73       197.32.0.0/18      
          197.35.105.165     197.32.0.0/11      
          197.36.111.63      197.32.0.0/11      
          197.36.142.186     197.36.136.0/21    
          41.232.226.140     41.232.224.0/20    
          41.234.31.161      41.234.24.0/21     
          41.235.65.87       41.235.64.0/19     
          41.239.211.69      41.239.208.0/22    
          41.34.217.19       41.34.192.0/18     
          41.36.114.202      41.36.112.0/21     
          41.36.116.97       41.36.112.0/21     
          41.36.118.113      41.36.112.0/21     
          41.36.118.171      41.36.112.0/21     
          41.36.53.247       41.36.48.0/20      
          41.41.82.15        41.32.0.0/12       
          41.42.250.22       41.42.128.0/17     
          41.42.253.198      41.42.128.0/17     
          41.44.108.81       41.44.0.0/17       
          41.44.172.48       41.44.128.0/17     
          41.44.200.229      41.44.128.0/17     
          41.44.222.161      41.44.128.0/17     
          41.45.177.53       41.45.128.0/18     
          41.46.175.136      41.46.128.0/18     
          41.46.208.99       41.32.0.0/12       
          41.46.215.85       41.32.0.0/12       
          41.46.222.211      41.32.0.0/12       
          41.47.187.15       41.47.184.0/21     
          41.47.55.17        41.32.0.0/12       
    ET  (5 bots)
     AS24757 (5 bots) - EthioNet-AS
         197.156.102.5      197.156.96.0/19    
         213.55.109.235     213.55.109.0/24    
         213.55.110.112     213.55.110.0/23    
         213.55.110.140     213.55.110.0/23    
         213.55.115.13      213.55.64.0/18     
    GA  (2 bots)
     AS16058 (2 bots) - Gabon-Telecom
         41.158.35.48       41.158.32.0/19     
         41.211.130.247     41.211.130.0/23    
    GH  (14 bots)
     AS29614 (8 bots) - GHANATEL-AS
         197.253.96.147     197.253.96.0/19    
         41.210.43.70       41.210.0.0/18      
         41.218.230.58      41.218.224.0/19    
         41.218.232.81      41.218.224.0/19    
         41.218.235.65      41.218.224.0/19    
         41.218.250.5       41.218.224.0/19    
         41.66.207.143      41.66.207.0/24     
         41.66.232.101      41.66.224.0/20     
     AS33786 (1 bots) - KNet
         196.29.235.55      196.29.224.0/20    
     AS37030 (1 bots) - TIGO-AS
         41.215.163.3       41.215.163.0/24    
     AS37313 (4 bots) - GGoC1-AS
         197.253.66.20      197.253.64.0/19    
         197.253.66.207     197.253.64.0/19    
         197.253.66.39      197.253.64.0/19    
         197.253.96.147     197.253.96.0/19    
    GQ  (1 bots)
     AS37512 (1 bots) - IPX-Intl
         197.149.170.10     197.149.170.0/24   
    LR  (1 bots)
     AS37203 (1 bots) - LIBTELCO
         41.86.16.53        41.86.16.0/20      
    LY  (10 bots)
     AS21003 (8 bots) - GPTC-AS
         41.252.100.79      41.252.64.0/18     
         41.252.108.226     41.252.64.0/18     
         41.252.109.138     41.252.64.0/18     
         41.252.115.241     41.252.64.0/18     
         41.252.121.187     41.252.64.0/18     
         41.252.124.193     41.252.64.0/18     
         41.252.69.141      41.252.64.0/18     
         62.68.58.66        62.68.58.0/24      
     AS37284 (2 bots) - Aljeel-net
         41.74.67.128       41.74.64.0/20      
         41.74.67.83        41.74.64.0/20      
    MA  (36 bots)
     AS36884 (1 bots) - MAROCCONNECT
         41.137.25.153      41.137.24.0/23     
     AS36925 (32 bots) - ASMedi
         41.214.163.32      41.214.160.0/19    
         41.214.163.33      41.214.160.0/19    
         41.214.163.34      41.214.160.0/19    
         41.214.163.35      41.214.160.0/19    
         41.214.163.36      41.214.160.0/19    
         41.214.163.37      41.214.160.0/19    
         41.214.163.38      41.214.160.0/19    
         41.214.163.39      41.214.160.0/19    
         41.214.163.40      41.214.160.0/19    
         41.214.163.41      41.214.160.0/19    
         41.214.163.42      41.214.160.0/19    
         41.214.163.43      41.214.160.0/19    
         41.214.163.44      41.214.160.0/19    
         41.214.163.45      41.214.160.0/19    
         41.214.163.46      41.214.160.0/19    
         41.214.163.47      41.214.160.0/19    
         41.214.163.48      41.214.160.0/19    
         41.214.163.49      41.214.160.0/19    
         41.214.163.50      41.214.160.0/19    
         41.214.163.51      41.214.160.0/19    
         41.214.163.52      41.214.160.0/19    
         41.214.163.53      41.214.160.0/19    
         41.214.163.54      41.214.160.0/19    
         41.214.163.55      41.214.160.0/19    
         41.214.163.56      41.214.160.0/19    
         41.214.163.57      41.214.160.0/19    
         41.214.163.58      41.214.160.0/19    
         41.214.163.59      41.214.160.0/19    
         41.214.163.60      41.214.160.0/19    
         41.214.163.61      41.214.160.0/19    
         41.214.163.62      41.214.160.0/19    
         41.214.163.63      41.214.160.0/19    
     AS6713 (3 bots) - IAM-AS
          41.140.142.117     41.140.136.0/21    
          41.143.60.192      41.143.56.0/21     
          81.192.211.212     81.192.211.0/24    
    MU  (8 bots)
     AS23889 (8 bots) - MauritiusTelecom
         197.224.134.222    197.224.128.0/19   
         197.224.137.152    197.224.128.0/19   
         197.224.140.73     197.224.128.0/19   
         197.224.143.238    197.224.128.0/19   
         197.224.152.89     197.224.128.0/19   
         197.226.245.35     197.224.0.0/14     
         197.226.246.224    197.224.0.0/14     
         197.226.247.87     197.224.0.0/14     
    MW  (1 bots)
     AS36969 (1 bots) - MTL-AS
         41.221.103.182     41.221.102.0/23    
    MZ  (4 bots)
     AS25139 (1 bots) - TVCABO-AS TVCABO - Comunicacoes Multimedia, Lda.
         197.249.19.72      197.249.0.0/18     
     AS30619 (3 bots) - TDM-AS
         196.28.237.84      196.28.237.0/24    
         41.138.226.142     41.138.226.0/24    
         41.138.231.231     41.138.231.0/24    
    NA  (4 bots)
     AS33763 (1 bots) - INCREDIBLE-TECHNOLOGY-HOLDINGS
         196.1.30.251       196.1.28.0/22      
     AS36996 (3 bots) - TELECOM-NAMIBIA
         41.182.106.51      41.182.0.0/16      
         41.182.175.223     41.182.160.0/19    
         41.182.185.172     41.182.160.0/19    
    RW  (5 bots)
     AS16637 (7 bots) - MTNNS-AS
         196.44.240.62      196.44.240.0/24    
         41.186.10.196      41.186.0.0/20      
     AS37228 (2 bots) - RDB
         197.243.33.98      197.243.32.0/22    
         41.74.170.214      41.74.170.0/23     
     AS37547 (1 bots) - ISPA-RW
         197.234.244.1      197.234.244.0/22   
    SD  (10 bots)
     AS15706 (4 bots) - Sudatel
         197.252.1.234      197.252.1.0/24     
         197.252.1.240      197.252.1.0/24     
         197.252.1.6        197.252.1.0/24     
         197.252.1.7        197.252.1.0/24     
     AS36972 (1 bots) - MTNSD
         197.254.224.211    197.254.224.0/24   
     AS36998 (4 bots) - SDN-MOBITEL
         105.238.42.200     105.238.42.0/24    
         41.95.29.52        41.95.29.0/24      
         41.95.76.30        41.95.76.0/24      
         41.95.99.220       41.95.99.0/24      
     AS37211 (1 bots) - VISIONVALLEY
         41.78.110.138      41.78.110.0/23     
    SL  (1 bots)
     AS37174 (1 bots) - Comium-AS
         41.222.83.4        41.222.80.0/21     
    SN  (9 bots)
     AS8346 (9 bots) - SONATEL-AS Autonomous System
          41.83.12.19        41.83.0.0/16       
          41.83.13.220       41.83.0.0/16       
          41.83.13.29        41.83.0.0/16       
          41.83.14.43        41.83.0.0/16       
          41.83.15.234       41.83.0.0/16       
          41.83.15.46        41.83.0.0/16       
          41.83.26.113       41.83.0.0/16       
          41.83.26.3         41.83.0.0/16       
          41.83.26.70        41.83.0.0/16       
    SS  (2 bots)
     AS37376 (2 bots) - ZAIN-South-Sudan
         41.79.120.20       41.79.120.0/22     
         41.79.120.28       41.79.120.0/22     
    TG  (1 bots)
     AS24691 (1 bots) - TOGOTEL-AS TogoTelecom, Togo
         41.207.162.250     41.207.162.0/24    
    TN  (3 bots)
     AS2609 (2 bots) - TN-BB-AS Tunisia BackBone AS
          41.227.121.237     41.227.96.0/19     
          41.227.151.86      41.227.128.0/19    
     AS37492 (1 bots) - ORANGE-TN
         197.31.199.217     197.31.192.0/18    
    UG  (12 bots)
     AS21491 (7 bots) - UGANDA-TELECOM Uganda Telecom
         196.0.20.153       196.0.0.0/16       
         196.0.4.87         196.0.0.0/16       
         196.0.7.64         196.0.0.0/16       
         196.0.7.65         196.0.0.0/16       
         196.0.7.66         196.0.0.0/16       
         196.0.7.67         196.0.0.0/16       
         196.0.7.68         196.0.0.0/16       
     AS36991 (3 bots) - ORANGE-UG
         41.202.233.180     41.202.224.0/20    
         41.202.240.10      41.202.240.0/20    
         41.202.240.12      41.202.240.0/20    
     AS37075 (2 bots) - ZAINUGAS
         41.223.84.34       41.223.84.0/24     
         41.223.84.35       41.223.84.0/24     
    ZA  (14 bots)
     AS10474 (2 bots) - MWEB-10474
         197.81.41.81       197.80.0.0/13      
         41.132.28.182      41.132.0.0/16      
     AS16637 (7 bots) - MTNNS-AS
         197.71.212.30      197.64.0.0/12      
         197.77.206.248     197.64.0.0/12      
         41.123.162.83      41.112.0.0/12      
         41.124.64.58       41.112.0.0/12      
     AS29975 (3 bots) - VODACOM-ZA
         41.13.4.44         41.13.0.0/18       
         41.23.157.252      41.23.128.0/18     
         41.28.31.133       41.28.0.0/18       
     AS37168 (1 bots) - CELL-C
         197.104.111.102    197.104.0.0/14     
     AS37238 (1 bots) - IWAY-AFRICA
         196.2.70.17        196.2.70.0/24      
     AS3741 (1 bots) - IS
          196.26.195.164     196.26.0.0/16      
     AS37457 (2 bots) - Telkom-Internet
         105.227.149.203    105.227.0.0/16     
         105.227.96.17      105.227.0.0/16     
    ZM  (3 bots)
     AS36959 (1 bots) - afczas
         41.222.20.95       41.222.16.0/21     
     AS37532 (2 bots) - ZAMREN
         41.63.1.34         41.63.0.0/18       
         41.63.1.35         41.63.0.0/18       
    ZW  (2 bots)
     AS36986 (1 bots) - AINET
         41.221.157.174     41.221.156.0/23    
     AS37204 (1 bots) - TELONE
         197.221.242.24     197.221.224.0/19   

   

aa419 DDoS Aug 2013 Breakdown; APNIC

This post forms part of "aa419 DDoS Aug 2013 Breakdown" split for ease of reading

Here are statistics for bots from the APNIC region, broken down by Country code, ASN, IP address.

 APNIC   (1299 bots)
      AU  (4 bots)
       AS17543 (1 bots) - MELB-IT-US-AS Melbourne IT US
           203.27.226.69      203.27.226.0/24   
       AS4804 (1 bots) - MPX-AS Microplex PTY LTD
            49.176.69.196      49.176.64.0/19    
       AS7545 (2 bots) - TPG-INTERNET-AP TPG Telecom Limited
            115.64.30.108      115.64.30.0/23    
            14.200.82.214      14.200.82.0/23    
      BD  (15 bots)
       AS17494 (2 bots) - BTTB-AS-AP Telecom Operator & Internet Service Provider as well
           180.211.216.195    180.211.128.0/17  
           180.211.220.19     180.211.128.0/17  
       AS38721 (1 bots) - PBTL-BD-AS-AP Pacific Bangladesh Telecom Limited.
           117.18.231.61      117.18.231.0/24   
       AS45904 (3 bots) - BANGLALION-WIMAX-BD Silver Tower (16 & 18th Floor)
           180.149.0.249      180.149.0.0/24    
           180.149.23.100     180.149.23.0/24   
           58.97.244.127      58.97.244.0/23    
       AS45905 (1 bots) - X-LINK-LIMITED-BD 52/1, Hasan Holding, 3rd Floor
           180.148.212.45     180.148.212.0/24  
       AS55406 (1 bots) - HRCTECH-01-AS-AP 26 Shyamoli, Bir Uttam A. W. Chowdhury Road
           182.16.157.188     182.16.157.0/24   
       AS58601 (1 bots) - AAMRA-ATL-BD Aamra technologies limited
           103.9.114.236      103.9.114.0/24    
       AS58689 (1 bots) - ICCNET-DHK-BD ICC Bhaban
           103.15.140.12      103.15.140.0/24   
       AS58691 (1 bots) - DELTA-IIG-BD Delta Infocom Limited - IIG - BD
           103.15.164.166     103.15.164.0/24   
       AS58715 (1 bots) - EARTHTELECOMMUNICATION-AS EARTH TELECOMMUNICATION (Pvt) LTD.
           103.21.41.30       103.21.41.0/24    
       AS7565 (2 bots) - BDCOM-BD House
            113.11.27.247      113.11.0.0/17     
            113.11.96.218      113.11.0.0/17     
       AS9441 (1 bots) - NEXT-BD Next Online Limited
            103.245.205.164    103.245.205.0/24  
      BN  (1 bots)
       AS10094 (1 bots) - BRUNET-AS BruNet ISP, Telekom Brunei Berhad
           202.93.215.95      202.93.215.0/24   
      BT  (1 bots)
       AS17660 (1 bots) - DRUKNET-AS DrukNet ISP
           119.2.116.197      119.2.112.0/20    
      CN  (15 bots)
       AS17622 (1 bots) - CNCGROUP-GZ China Unicom Guangzhou network
           210.21.51.236      210.21.32.0/19    
       AS23844 (1 bots) - BJ-GUANGHUAN-AP Beijing Guanghuan Xinwang Digital
           220.231.34.3       220.231.32.0/20   
       AS4134 (7 bots) - CHINANET-BACKBONE No.31,Jin-rong Street
            113.106.249.181    113.106.248.0/22  
            113.77.140.141     113.77.128.0/18   
            120.71.229.85      120.71.224.0/19   
            202.104.122.216    202.104.96.0/19   
            222.80.104.154     222.80.96.0/20    
            49.66.124.128      49.66.64.0/18     
            59.35.105.55       59.35.104.0/21    
       AS4808 (4 bots) - CHINA169-BJ CNCGROUP IP network China169 Beijing Province Network
            114.240.179.102    114.240.128.0/18  
            221.218.119.179    221.218.64.0/18   
            221.218.122.28     221.218.64.0/18   
            221.218.126.189    221.218.64.0/18   
       AS4837 (1 bots) - CHINA169-BACKBONE CNCGROUP China169 Backbone
            221.3.91.166       221.3.0.0/17      
       AS9394 (1 bots) - CTTNET China TieTong Telecommunications Corporation
            123.90.192.180     123.90.0.0/16     
      FJ  (1 bots)
       AS38442 (1 bots) - VODAFONEFIJI-AS-FJ Vodafone Fiji Limited
           27.123.167.127     27.123.128.0/18   
      FM  (1 bots)
       AS45193 (1 bots) - AS45193 FSM Telecommunications Corporation
           119.252.122.107    119.252.122.0/24  
      HK  (8 bots)
       AS4760 (3 bots) - HKTIMS-AP PCCW Limited
            116.48.84.108      116.48.64.0/19    
            119.237.54.231     119.237.32.0/19   
            219.79.118.105     219.79.96.0/19    
       AS9269 (5 bots) - HKBN-AS-AP Hong Kong Broadband Network Ltd.
            14.198.88.12       14.198.64.0/18    
            183.178.132.182    183.178.128.0/18  
            203.186.170.18     203.186.128.0/18  
            203.186.170.30     203.186.128.0/18  
            203.186.237.100    203.186.192.0/18  
      ID  (94 bots)
       AS17884 (1 bots) - UNINET-AP PT. Uninet Media Sakti (ISP)
           203.161.30.179     203.161.30.0/24   
       AS17974 (50 bots) - TELKOMNET-AS2-AP PT Telekomunikasi Indonesia
           110.136.130.91     110.136.128.0/21  
           110.137.4.97       110.137.4.0/22    
           110.139.144.109    110.139.144.0/22  
           110.139.186.255    110.139.184.0/22  
           110.139.205.182    110.139.204.0/23  
           110.139.255.209    110.139.252.0/22  
           118.96.149.120     118.96.148.0/22   
           118.97.95.184      118.97.64.0/19    
           118.97.95.185      118.97.64.0/19    
           118.97.95.186      118.97.64.0/19    
           118.97.95.188      118.97.64.0/19    
           125.162.192.250    125.162.192.0/23  
           125.164.100.122    125.164.96.0/20   
           125.164.11.220     125.164.0.0/20    
           125.164.242.104    125.164.240.0/21  
           125.165.165.231    125.165.164.0/23  
           125.167.113.62     125.167.112.0/21  
           125.167.168.161    125.167.168.0/24  
           180.241.233.59     180.241.232.0/22  
           180.241.51.110     180.241.48.0/21   
           180.245.50.173     180.245.48.0/21   
           180.246.52.90      180.246.52.0/22   
           180.246.54.89      180.246.52.0/22   
           180.246.77.132     180.246.76.0/22   
           180.246.93.67      180.246.92.0/22   
           180.247.87.210     180.247.84.0/22   
           180.248.171.204    180.248.168.0/22  
           180.248.237.253    180.248.232.0/21  
           180.248.57.13      180.248.48.0/20   
           180.248.59.132     180.248.48.0/20   
           180.251.32.101     180.251.32.0/20   
           180.251.58.114     180.251.48.0/20   
           180.252.105.202    180.252.96.0/20   
           180.253.217.199    180.253.216.0/21  
           180.253.221.180    180.253.216.0/21  
           180.253.95.146     180.253.80.0/20   
           180.254.106.6      180.254.96.0/20   
           180.254.189.40     180.254.176.0/20  
           180.254.7.116      180.254.0.0/21    
           180.254.94.127     180.254.80.0/20   
           222.124.61.226     222.124.56.0/21   
           36.69.55.20        36.69.48.0/20     
           36.74.194.246      36.74.192.0/20    
           36.76.128.14       36.76.128.0/20    
           36.76.148.85       36.76.144.0/20    
           36.76.167.54       36.76.160.0/20    
           36.81.103.246      36.81.96.0/20     
           36.81.124.175      36.81.112.0/20    
           36.85.218.252      36.85.216.0/21    
           36.86.205.53       36.86.192.0/18    
       AS18004 (12 bots) - WIRELESSNET-ID-AP WIRELESSNET AS
           114.79.16.10       114.79.16.0/22    
           114.79.16.205      114.79.16.0/22    
           114.79.16.51       114.79.16.0/22    
           114.79.16.52       114.79.16.0/22    
           114.79.17.34       114.79.16.0/22    
           114.79.18.107      114.79.18.0/24    
           114.79.18.150      114.79.18.0/24    
           114.79.18.99       114.79.18.0/24    
           114.79.19.228      114.79.16.0/22    
           114.79.29.191      114.79.28.0/23    
           114.79.29.5        114.79.28.0/23    
           114.79.29.95       114.79.28.0/23    
       AS23679 (1 bots) - NUSANET-AS-ID Media Antar Nusa PT.
           110.232.84.249     110.232.84.0/24   
       AS23693 (12 bots) - TELKOMSEL-ASN-ID PT. Telekomunikasi Selular
           182.12.115.11      182.12.0.0/16     
           182.14.148.48      182.14.0.0/16     
           182.2.51.129       182.2.0.0/16      
           39.210.230.179     39.210.0.0/16     
           39.212.97.167      39.212.0.0/16     
           39.213.17.77       39.213.0.0/16     
           39.224.83.235      39.224.0.0/16     
           39.224.99.32       39.224.0.0/16     
           39.225.140.27      39.225.0.0/16     
           39.226.146.20      39.226.0.0/16     
           39.226.176.212     39.226.0.0/16     
           39.227.229.222     39.227.0.0/16     
       AS24518 (8 bots) - AXIS-AS-ID PT. Axis Telekom Indonesia
           203.78.118.213     203.78.118.0/24   
           203.78.118.244     203.78.118.0/24   
           203.78.119.84      203.78.119.0/24   
           203.78.119.89      203.78.119.0/24   
           203.78.123.199     203.78.123.0/24   
           203.78.123.234     203.78.123.0/24   
           27.111.49.80       27.111.49.0/24    
           27.111.51.242      27.111.51.0/24    
       AS38513 (1 bots) - LINTASARTA-AS-ID PT Aplikanusa Lintasarta
           182.23.71.214      182.23.68.0/22    
       AS45727 (7 bots) - THREE-AS-ID Hutchison CP Telecommunications, PT
           180.214.233.37     180.214.233.0/24  
           202.67.40.1        202.67.40.0/24    
           202.67.40.7        202.67.40.0/24    
           223.255.224.156    223.255.224.0/24  
           223.255.226.3      223.255.226.0/24  
           223.255.227.23     223.255.227.0/24  
           223.255.231.20     223.255.231.0/24  
       AS4800 (1 bots) - LINTASARTA-AS-AP Network Access Provider and Internet Service Provider
            202.173.23.68      202.173.23.0/24   
       AS56257 (1 bots) - BPPPTI-AS-ID Balai Penyedia dan Pengelola Pembiayaan Telekomunikasi dan Informatika
           118.97.155.52      118.97.155.0/24   
      IN  (310 bots)
       AS10199 (4 bots) - TATA-AS Tata Communications Ltd
           115.118.84.147     115.118.80.0/20   
           115.118.85.163     115.118.80.0/20   
           121.245.141.26     121.245.128.0/20  
           14.142.17.33       14.142.0.0/16     
       AS131222 (3 bots) - MTS-INDIA-IN 334,Udyog Vihar
          116.202.127.105    116.202.120.0/21  
          180.215.51.154     180.215.48.0/21   
          180.215.78.252     180.215.64.0/20   
       AS17483 (1 bots) - CITYSERV-AS-AP CityOnline Services Ltd
           49.156.155.246     49.156.155.0/24   
       AS17488 (2 bots) - HATHWAY-NET-AP Hathway IP Over Cable Internet
           116.73.144.196     116.73.144.0/21   
           27.4.18.5          27.4.16.0/20      
       AS17754 (4 bots) - EXCELL-AS Excellmedia
           175.101.13.40      175.101.13.0/24   
           175.101.64.18      175.101.64.0/24   
           202.133.60.2       202.133.60.0/24   
           202.133.62.10      202.133.62.0/24   
       AS17762 (3 bots) - HTIL-TTML-IN-AP Tata Teleservices Maharashtra Ltd
           114.143.82.91      114.143.80.0/20   
           114.143.84.176     114.143.80.0/20   
           49.248.178.88      49.248.176.0/20   
       AS17803 (16 bots) - BSES-AS-AP BSES TeleCom Limited
           101.63.153.101     101.63.128.0/18   
           101.63.170.208     101.63.128.0/18   
           101.63.214.101     101.63.128.0/17   
           101.63.30.177      101.63.0.0/17     
           115.241.102.95     115.241.0.0/17    
           115.241.147.217    115.241.128.0/18  
           115.241.208.161    115.241.192.0/18  
           115.241.225.19     115.241.192.0/18  
           115.241.48.25      115.241.0.0/17    
           115.242.150.192    115.242.128.0/18  
           115.242.178.81     115.242.128.0/18  
           115.242.210.232    115.242.192.0/18  
           115.242.28.35      115.242.0.0/18    
           115.242.34.20      115.242.0.0/18    
           115.253.223.22     115.253.0.0/16    
           123.238.3.228      123.238.0.0/22    
       AS17813 (13 bots) - MTNL-AP Mahanagar Telephone Nigam Ltd.
           120.59.141.12      120.59.0.0/16     
           120.59.145.241     120.59.0.0/16     
           120.61.46.174      120.61.0.0/17     
           120.61.50.236      120.61.0.0/17     
           120.61.82.98       120.61.0.0/17     
           120.62.39.202      120.62.0.0/17     
           120.63.0.156       120.63.0.0/17     
           120.63.245.185     120.63.128.0/17   
           120.63.40.254      120.63.0.0/17     
           182.58.178.20      182.58.128.0/17   
           59.183.0.228       59.183.0.0/20     
           59.183.36.187      59.183.32.0/20    
           59.184.44.214      59.184.32.0/20    
       AS17908 (1 bots) - TCISL Tata Communications
           121.246.222.124    121.246.222.0/24  
       AS17917 (1 bots) - QTLTELECOM-AS-AP Quadrant Televentures Limited
           124.253.36.143     124.253.32.0/21   
       AS18002 (2 bots) - WORLDPHONE-IN AS Number for Interdomain Routing
           118.91.184.62      118.91.184.0/24   
           14.102.53.146      14.102.53.0/24    
       AS18101 (3 bots) - RELIANCE-COMMUNICATIONS-IN Reliance Communications Ltd.DAKC MUMBAI
           115.249.53.226     115.249.52.0/22   
           123.238.149.81     123.238.148.0/22  
           124.124.80.74      124.124.80.0/24   
       AS18207 (10 bots) - YOU-INDIA-AP YOU Broadband & Cable India Ltd.
           123.201.111.70     123.201.110.0/23  
           123.201.136.34     123.201.136.0/24  
           123.201.224.93     123.201.224.0/22  
           123.201.5.123      123.201.5.0/24    
           123.201.54.77      123.201.52.0/22   
           123.201.80.188     123.201.80.0/23   
           175.100.158.239    175.100.158.0/24  
           203.187.198.197    203.187.198.0/24  
           203.187.207.202    203.187.207.0/24  
           203.187.239.71     203.187.238.0/23  
       AS23772 (1 bots) - ORTELNET-AS M/s Ortel Communications Ltd
           27.49.69.87        27.49.64.0/19     
       AS24560 (13 bots) - AIRTELBROADBAND-AS-AP Bharti Airtel Ltd., Telemedia Services
           122.161.218.6      122.161.208.0/20  
           122.161.8.125      122.161.0.0/20    
           122.163.204.198    122.163.200.0/21  
           122.163.215.92     122.163.208.0/21  
           122.163.247.16     122.163.240.0/21  
           122.164.138.133    122.164.128.0/19  
           122.166.176.222    122.166.176.0/21  
           122.166.241.8      122.166.241.0/24  
           122.172.186.7      122.172.176.0/20  
           182.64.157.248     182.64.144.0/20   
           182.64.61.253      182.64.32.0/19    
           182.64.75.85       182.64.72.0/21    
           182.68.22.141      182.68.16.0/20    
       AS38207 (2 bots) - RAJESHNET-TRANSIT-AS-AP Rajesh Multi Channel Pvt Ltd.
           103.5.189.77       103.5.189.0/24    
           103.5.189.86       103.5.189.0/24    
       AS38266 (52 bots) - HUTCHVAS-AS Vodafone Essar Ltd., Telecommunication - Value Added Services,
           1.38.16.173        1.38.16.0/21      
           1.38.25.182        1.38.25.0/24      
           1.38.27.170        1.38.27.0/24      
           112.79.40.10       112.79.40.0/24    
           112.79.40.106      112.79.40.0/24    
           112.79.40.119      112.79.40.0/24    
           112.79.40.131      112.79.40.0/24    
           112.79.40.142      112.79.40.0/24    
           112.79.40.148      112.79.40.0/24    
           112.79.40.18       112.79.40.0/24    
           112.79.40.207      112.79.40.0/24    
           112.79.40.215      112.79.40.0/24    
           112.79.40.217      112.79.40.0/24    
           112.79.40.225      112.79.40.0/24    
           112.79.40.236      112.79.40.0/24    
           112.79.40.50       112.79.40.0/24    
           112.79.40.55       112.79.40.0/24    
           112.79.40.61       112.79.40.0/24    
           112.79.40.62       112.79.40.0/24    
           112.79.40.64       112.79.40.0/24    
           112.79.40.71       112.79.40.0/24    
           112.79.40.75       112.79.40.0/24    
           112.79.40.81       112.79.40.0/24    
           112.79.41.102      112.79.41.0/24    
           112.79.41.111      112.79.41.0/24    
           112.79.41.125      112.79.41.0/24    
           112.79.41.132      112.79.41.0/24    
           112.79.41.148      112.79.41.0/24    
           112.79.41.153      112.79.41.0/24    
           112.79.41.170      112.79.41.0/24    
           112.79.41.31       112.79.41.0/24    
           112.79.41.67       112.79.41.0/24    
           112.79.42.167      112.79.42.0/24    
           112.79.42.195      112.79.42.0/24    
           112.79.42.33       112.79.42.0/24    
           112.79.42.37       112.79.42.0/24    
           112.79.42.41       112.79.42.0/24    
           112.79.42.53       112.79.42.0/24    
           112.79.42.68       112.79.42.0/24    
           112.79.42.98       112.79.42.0/24    
           112.79.43.105      112.79.43.0/24    
           112.79.43.126      112.79.43.0/24    
           112.79.43.227      112.79.43.0/24    
           112.79.43.78       112.79.43.0/24    
           112.79.43.96       112.79.43.0/24    
           112.79.44.121      112.79.44.0/24    
           112.79.44.19       112.79.44.0/24    
           112.79.44.219      112.79.44.0/24    
           112.79.44.254      112.79.44.0/24    
           112.79.44.82       112.79.44.0/24    
           112.79.44.99       112.79.44.0/24    
           112.79.45.66       112.79.45.0/24    
       AS38457 (1 bots) - HNS-AS-AP Honesty Net Solution (I) Pvt Ltd
           111.91.89.110      111.91.89.0/24    
       AS45117 (1 bots) - INPL-IN-AP Ishan_s Network
           111.90.168.178     111.90.168.0/24   
       AS45194 (2 bots) - SIPL-AS Syscon Infoway Pvt. Ltd., Internet Service Provider, India.
           111.119.198.210    111.119.192.0/21  
           27.106.73.148      27.106.72.0/21    
       AS45271 (12 bots) - ICLNET-AS-AP Idea Cellular Limited
           106.66.133.125     106.66.128.0/20   
           106.66.154.207     106.66.144.0/20   
           106.66.184.141     106.66.176.0/20   
           106.66.190.248     106.66.176.0/20   
           106.66.36.199      106.66.32.0/19    
           106.77.219.50      106.77.192.0/19   
           106.78.175.46      106.78.160.0/20   
           106.79.175.245     106.79.160.0/20   
           223.196.135.87     223.196.128.0/19  
           27.97.211.140      27.97.192.0/19    
           49.15.204.15       49.15.204.0/24    
           49.15.223.122      49.15.223.0/24    
       AS45528 (4 bots) - TDN Tikona Digital Networks Pvt Ltd.
           1.22.57.219        1.22.57.0/24      
           113.193.238.52     113.193.238.0/24  
           113.193.85.242     113.193.85.0/24   
           113.193.90.21      113.193.90.0/24   
       AS45609 (7 bots) - BHARTI-MOBILITY-AS-AP Bharti Airtel Ltd. AS for GPRS Service
           106.206.104.181    106.206.0.0/16    
           106.208.33.138     106.208.0.0/16    
           106.214.146.82     106.214.128.0/17  
           106.218.182.57     106.218.128.0/17  
           110.225.242.152    110.225.224.0/19  
           171.79.187.74      171.79.128.0/17   
           223.184.42.92      223.184.0.0/17    
       AS45774 (2 bots) - SPIDIGO-AS-IN Chandra Net Pvt. Limited, India
           110.172.31.161     110.172.31.0/24   
           122.102.120.132    122.102.120.0/24  
       AS45841 (2 bots) - P4NETWORKS-IN 506/7, Balarma Building, Bandra Kurla Complex, Bandra (E). Mumbai - 400051
           183.87.252.125     183.87.252.0/24   
           183.87.252.68      183.87.252.0/24   
       AS45884 (1 bots) - RVRNET-AS RVR Infrastructure Limited Service provider hyderabad india
           203.217.147.28     203.217.147.0/24  
       AS4755 (2 bots) - TATACOMM-AS TATA Communications formerly VSNL is Leading ISP
            121.241.245.4      121.241.244.0/23  
            121.242.26.166     121.242.26.0/23   
       AS55441 (4 bots) - TATA-DOCOMO-AS-AP D 26/2 TTC INDUSTRIAL AREA MIDC SANPADA
           49.200.137.76      49.200.128.0/18   
           49.201.96.195      49.201.64.0/18    
           49.203.31.22       49.203.16.0/20    
           49.249.79.28       49.249.64.0/20    
       AS55577 (3 bots) - BEAMTELE-AS-AP Beam Telecom Pvt Ltd
           124.123.165.130    124.123.128.0/18  
           183.82.203.54      183.82.192.0/18   
           183.82.39.108      183.82.32.0/21    
       AS55740 (11 bots) - TATAINDICOM-IN TATA TELESERVICES LTD - TATA INDICOM - CDMA DIVISION
           14.96.117.77       14.96.112.0/20    
           14.96.26.138       14.96.16.0/20     
           14.97.125.207      14.97.112.0/20    
           14.97.14.55        14.97.0.0/20      
           14.97.169.242      14.97.160.0/20    
           14.97.181.48       14.97.176.0/20    
           14.97.228.30       14.97.224.0/20    
           14.97.96.108       14.97.96.0/20     
           14.98.181.54       14.98.176.0/20    
           14.98.234.173      14.98.224.0/20    
           14.99.239.146      14.99.224.0/20    
       AS55814 (1 bots) - SINETISP-IN 7, Baghajatin Road, Holding No 105
           27.125.201.118     27.125.200.0/22   
       AS55831 (3 bots) - AIRCEL-IN Aircel Ltd.
           101.219.162.161    101.219.160.0/19  
           101.221.21.66      101.221.0.0/19    
           101.221.225.163    101.221.224.0/19  
       AS9498 (4 bots) - BBIL-AP BHARTI Airtel Ltd.
            125.21.55.154      125.21.52.0/22    
            182.73.209.90      182.73.0.0/16     
            59.145.202.106     59.145.202.0/23   
            59.145.220.226     59.145.220.0/24   
       AS9829 (119 bots) - BSNL-NIB National Internet Backbone
            117.192.106.169    117.192.96.0/20   
            117.194.45.229     117.194.32.0/20   
            117.195.194.143    117.195.192.0/20  
            117.195.208.129    117.195.208.0/20  
            117.195.216.122    117.195.208.0/20  
            117.195.222.123    117.195.208.0/20  
            117.195.43.65      117.195.32.0/20   
            117.195.97.237     117.195.96.0/20   
            117.196.225.84     117.196.224.0/20  
            117.196.249.13     117.196.240.0/20  
            117.196.4.16       117.196.0.0/20    
            117.196.5.181      117.196.0.0/20    
            117.197.186.74     117.197.176.0/20  
            117.197.69.223     117.197.64.0/20   
            117.197.70.61      117.197.64.0/20   
            117.197.74.128     117.197.64.0/20   
            117.197.77.190     117.197.64.0/20   
            117.197.79.250     117.197.64.0/20   
            117.197.79.47      117.197.64.0/20   
            117.197.81.51      117.197.80.0/20   
            117.197.83.174     117.197.80.0/20   
            117.197.83.82      117.197.80.0/20   
            117.198.101.161    117.198.96.0/20   
            117.198.64.6       117.198.64.0/20   
            117.199.123.192    117.199.112.0/20  
            117.199.52.66      117.199.48.0/20   
            117.199.58.182     117.199.48.0/20   
            117.199.65.2       117.199.64.0/20   
            117.200.138.10     117.200.128.0/20  
            117.200.176.65     117.200.176.0/20  
            117.200.177.215    117.200.176.0/20  
            117.200.178.226    117.200.176.0/20  
            117.200.181.13     117.200.176.0/20  
            117.200.191.54     117.200.176.0/20  
            117.200.24.135     117.200.16.0/20   
            117.201.1.173      117.201.0.0/20    
            117.201.160.132    117.201.160.0/20  
            117.201.22.205     117.201.16.0/20   
            117.201.28.186     117.201.16.0/20   
            117.201.29.216     117.201.16.0/20   
            117.201.30.129     117.201.16.0/20   
            117.203.114.213    117.203.112.0/20  
            117.203.114.39     117.203.112.0/20  
            117.203.81.76      117.203.80.0/20   
            117.204.142.248    117.204.128.0/20  
            117.204.19.38      117.204.16.0/20   
            117.204.209.179    117.204.208.0/20  
            117.204.5.162      117.204.0.0/20    
            117.204.8.105      117.204.0.0/20    
            117.205.141.102    117.205.128.0/20  
            117.205.209.239    117.205.208.0/20  
            117.206.46.143     117.206.32.0/20   
            117.207.102.221    117.207.96.0/20   
            117.207.104.99     117.207.96.0/20   
            117.207.106.21     117.207.96.0/20   
            117.207.106.89     117.207.96.0/20   
            117.207.107.128    117.207.96.0/20   
            117.207.107.217    117.207.96.0/20   
            117.207.111.60     117.207.96.0/20   
            117.207.17.156     117.207.16.0/20   
            117.207.21.198     117.207.16.0/20   
            117.207.248.137    117.207.240.0/20  
            117.207.87.96      117.207.80.0/20   
            117.208.10.204     117.208.0.0/20    
            117.208.17.112     117.208.16.0/20   
            117.208.249.233    117.208.240.0/20  
            117.212.153.70     117.212.144.0/20  
            117.212.158.40     117.212.144.0/20  
            117.213.11.202     117.213.0.0/20    
            117.213.224.251    117.213.224.0/20  
            117.214.14.69      117.214.0.0/20    
            117.215.0.182      117.215.0.0/20    
            117.215.101.98     117.215.96.0/20   
            117.215.96.231     117.215.96.0/20   
            117.215.97.103     117.215.96.0/20   
            117.215.97.233     117.215.96.0/20   
            117.216.14.238     117.216.0.0/20    
            117.217.166.123    117.217.160.0/20  
            117.217.19.239     117.217.16.0/20   
            117.217.69.35      117.217.64.0/20   
            117.220.12.125     117.220.0.0/20    
            117.220.177.185    117.220.176.0/20  
            117.220.209.41     117.220.208.0/20  
            117.220.248.232    117.220.240.0/20  
            117.221.130.110    117.221.128.0/20  
            117.221.131.70     117.221.128.0/20  
            117.221.131.90     117.221.128.0/20  
            117.221.206.11     117.221.192.0/20  
            117.221.59.23      117.221.48.0/20   
            117.221.68.43      117.221.64.0/20   
            117.222.14.173     117.222.0.0/20    
            117.222.160.16     117.222.160.0/20  
            117.222.162.53     117.222.160.0/20  
            117.222.163.207    117.222.160.0/20  
            117.222.166.235    117.222.160.0/20  
            117.222.167.247    117.222.160.0/20  
            117.222.8.188      117.222.0.0/20    
            117.222.89.26      117.222.64.0/18   
            117.222.93.76      117.222.64.0/18   
            117.222.95.57      117.222.64.0/18   
            117.223.66.208     117.223.64.0/20   
            117.229.111.243    117.229.96.0/20   
            117.239.67.2       117.239.64.0/20   
            117.241.112.189    117.241.112.0/20  
            59.88.33.72        59.88.32.0/20     
            59.90.152.178      59.90.144.0/20    
            59.92.2.209        59.92.0.0/20      
            59.92.243.101      59.92.240.0/20    
            59.92.249.55       59.92.240.0/20    
            59.93.9.192        59.93.0.0/20      
            59.93.9.226        59.93.0.0/20      
            59.94.56.10        59.94.48.0/20     
            59.94.9.93         59.94.0.0/20      
            59.95.224.174      59.95.224.0/20    
            59.95.225.214      59.95.224.0/20    
            59.95.234.203      59.95.224.0/20    
            59.96.173.15       59.96.160.0/20    
            59.98.168.166      59.98.160.0/20    
            61.3.155.224       61.3.144.0/20     
      JP  (9 bots)
       AS10013 (1 bots) - FBDC FreeBit Co.,Ltd.
           119.150.111.116    119.150.0.0/16    
       AS17676 (2 bots) - GIGAINFRA Softbank BB Corp.
           221.26.193.199     221.26.0.0/16     
           221.36.134.18      221.36.0.0/16     
       AS2516 (2 bots) - KDDI KDDI CORPORATION
            106.176.67.68      106.176.0.0/16    
            106.188.110.227    106.188.0.0/16    
       AS2518 (2 bots) - BIGLOBE NEC BIGLOBE, Ltd.
            110.233.160.119    110.233.0.0/16    
            60.236.251.5       60.236.0.0/14     
       AS4713 (2 bots) - OCN NTT Communications Corporation
            114.150.40.198     114.144.0.0/12    
            122.19.20.249      122.16.0.0/12     
      KH  (3 bots)
       AS131331 (1 bots) - BDKTEL-AS-AP BDKTel Co., Ltd.
          202.8.72.121       202.8.72.0/24     
       AS38623 (1 bots) - VIETTELCAMBODIA-AS-AP ISP/IXP IN CAMBODIA WITH THE BEST VERVICE IN THERE.
           36.37.238.73       36.37.238.0/23    
       AS45429 (1 bots) - DTV-STAR-KH-AS-AP network for triple service iptv, isp, voip, game
           115.178.25.134     115.178.25.0/24   
      KR  (1 bots)
       AS4766 (1 bots) - KIXS-AS-KR Korea Telecom
            14.53.77.18        14.48.0.0/13      
      LK  (4 bots)
       AS17770 (1 bots) - DIALOG-LK Dialog Telekom Plc
           122.255.33.242     122.255.32.0/21   
       AS9329 (3 bots) - SLTINT-AS-AP Sri Lanka Telecom Internet
            112.134.199.46     112.134.192.0/19  
            124.43.211.8       124.43.192.0/19   
            124.43.228.46      124.43.224.0/19   
      MN  (89 bots)
       AS10219 (1 bots) - SKYCC-AS-MAIN SKY C&C LLC
           202.55.191.35      202.55.191.0/24   
       AS17882 (84 bots) - ASN-MCS-AP
           122.201.18.1       122.201.18.0/24   
           122.201.18.10      122.201.18.0/24   
           122.201.18.11      122.201.18.0/24   
           122.201.18.128     122.201.18.0/24   
           122.201.18.129     122.201.18.0/24   
           122.201.18.13      122.201.18.0/24   
           122.201.18.130     122.201.18.0/24   
           122.201.18.131     122.201.18.0/24   
           122.201.18.132     122.201.18.0/24   
           122.201.18.133     122.201.18.0/24   
           122.201.18.134     122.201.18.0/24   
           122.201.18.135     122.201.18.0/24   
           122.201.18.136     122.201.18.0/24   
           122.201.18.137     122.201.18.0/24   
           122.201.18.138     122.201.18.0/24   
           122.201.18.139     122.201.18.0/24   
           122.201.18.14      122.201.18.0/24   
           122.201.18.141     122.201.18.0/24   
           122.201.18.142     122.201.18.0/24   
           122.201.18.143     122.201.18.0/24   
           122.201.18.144     122.201.18.0/24   
           122.201.18.145     122.201.18.0/24   
           122.201.18.147     122.201.18.0/24   
           122.201.18.148     122.201.18.0/24   
           122.201.18.149     122.201.18.0/24   
           122.201.18.15      122.201.18.0/24   
           122.201.18.150     122.201.18.0/24   
           122.201.18.151     122.201.18.0/24   
           122.201.18.158     122.201.18.0/24   
           122.201.18.16      122.201.18.0/24   
           122.201.18.167     122.201.18.0/24   
           122.201.18.17      122.201.18.0/24   
           122.201.18.173     122.201.18.0/24   
           122.201.18.18      122.201.18.0/24   
           122.201.18.180     122.201.18.0/24   
           122.201.18.183     122.201.18.0/24   
           122.201.18.19      122.201.18.0/24   
           122.201.18.2       122.201.18.0/24   
           122.201.18.20      122.201.18.0/24   
           122.201.18.21      122.201.18.0/24   
           122.201.18.22      122.201.18.0/24   
           122.201.18.23      122.201.18.0/24   
           122.201.18.24      122.201.18.0/24   
           122.201.18.25      122.201.18.0/24   
           122.201.18.26      122.201.18.0/24   
           122.201.18.27      122.201.18.0/24   
           122.201.18.28      122.201.18.0/24   
           122.201.18.29      122.201.18.0/24   
           122.201.18.3       122.201.18.0/24   
           122.201.18.30      122.201.18.0/24   
           122.201.18.31      122.201.18.0/24   
           122.201.18.32      122.201.18.0/24   
           122.201.18.33      122.201.18.0/24   
           122.201.18.34      122.201.18.0/24   
           122.201.18.35      122.201.18.0/24   
           122.201.18.36      122.201.18.0/24   
           122.201.18.37      122.201.18.0/24   
           122.201.18.38      122.201.18.0/24   
           122.201.18.39      122.201.18.0/24   
           122.201.18.40      122.201.18.0/24   
           122.201.18.41      122.201.18.0/24   
           122.201.18.42      122.201.18.0/24   
           122.201.18.43      122.201.18.0/24   
           122.201.18.44      122.201.18.0/24   
           122.201.18.45      122.201.18.0/24   
           122.201.18.46      122.201.18.0/24   
           122.201.18.47      122.201.18.0/24   
           122.201.18.48      122.201.18.0/24   
           122.201.18.49      122.201.18.0/24   
           122.201.18.50      122.201.18.0/24   
           122.201.18.51      122.201.18.0/24   
           122.201.18.52      122.201.18.0/24   
           122.201.18.53      122.201.18.0/24   
           122.201.18.54      122.201.18.0/24   
           122.201.18.55      122.201.18.0/24   
           122.201.18.56      122.201.18.0/24   
           122.201.18.57      122.201.18.0/24   
           122.201.18.58      122.201.18.0/24   
           122.201.18.59      122.201.18.0/24   
           122.201.18.6       122.201.18.0/24   
           122.201.18.60      122.201.18.0/24   
           122.201.18.7       122.201.18.0/24   
           122.201.18.8       122.201.18.0/24   
           122.201.18.9       122.201.18.0/24   
       AS38218 (2 bots) - ULUSNET-MN-AP ULUSNET LLC. Mongolian Internet Provider
           202.126.90.58      202.126.90.0/24   
           202.126.95.15      202.126.88.0/21   
       AS9484 (1 bots) - MOBINET-AS-MN Mobinet LLC. AS Mobinet Internet Service Provider
            202.21.105.1       202.21.96.0/19    
       AS9934 (1 bots) - MICOM-MN-AS Mongolia Telecom
            202.179.11.42      202.179.11.0/24   
      MO  (1 bots)
       AS4609 (1 bots) - CTM-MO Companhia de Telecomunicacoes de Macau SARL
            180.94.150.159     180.94.128.0/19   
      MY  (33 bots)
       AS10030 (9 bots) - CELCOMNET-AP Celcom Internet Service Provider
           183.171.160.247    183.171.160.0/24  
           183.171.163.143    183.171.163.0/24  
           183.171.167.175    183.171.167.0/24  
           183.171.167.190    183.171.167.0/24  
           183.171.168.126    183.171.168.0/24  
           183.171.169.147    183.171.169.0/24  
           183.171.170.170    183.171.170.0/24  
           183.171.172.179    183.171.172.0/24  
           183.171.174.184    183.171.174.0/24  
       AS24028 (1 bots) - CNXNET-AS-MY Redtone-CNX Broadband Sdn Bhd
           203.142.34.100     203.142.32.0/22   
       AS4788 (21 bots) - TMNET-AS-AP TM Net, Internet Service Provider
            110.159.139.192    110.159.136.0/21  
            115.135.231.206    115.135.0.0/16    
            118.101.225.86     118.101.0.0/16    
            124.82.40.121      124.82.0.0/16     
            175.136.205.135    175.136.0.0/16    
            175.140.231.249    175.140.0.0/16    
            175.140.32.233     175.140.0.0/17    
            175.140.61.50      175.140.0.0/17    
            175.142.6.235      175.142.0.0/16    
            175.142.87.35      175.142.0.0/16    
            175.145.195.56     175.145.192.0/18  
            203.106.156.177    203.106.128.0/18  
            203.106.156.252    203.106.128.0/18  
            203.106.156.69     203.106.128.0/18  
            203.106.157.160    203.106.128.0/18  
            210.186.53.169     210.186.0.0/16    
            210.186.54.234     210.186.0.0/16    
            219.92.163.24      219.92.0.0/16     
            219.92.178.170     219.92.0.0/16     
            60.48.183.108      60.48.128.0/18    
            60.54.122.95       60.54.0.0/17      
       AS9534 (2 bots) - MAXIS-AS1-AP Binariang Berhad
            113.210.143.127    113.210.0.0/16    
            58.71.169.121      58.71.128.0/18    
      NC  (1 bots)
       AS45461 (1 bots) - TELENET-AS-AP TeleNet
           113.20.52.182      113.20.48.0/20    
      NP  (5 bots)
       AS23752 (2 bots) - NPTELECOM-NP-AS Nepal Telecommunications Corporation, Internet Services,
           113.199.209.137    113.199.208.0/22  
           113.199.252.95     113.199.224.0/19  
       AS24550 (3 bots) - WEBSURFERNP-AS-NP Websurfer Nepal Internet Service Provider
           111.119.43.4       111.119.32.0/20   
           116.90.227.195     116.90.224.0/20   
           116.90.227.196     116.90.224.0/20   
      NZ  (2 bots)
       AS4771 (2 bots) - NZTELECOM Telecom New Zealand Ltd.
            122.58.216.70      122.58.208.0/20   
            222.152.129.204    222.152.128.0/18  
      PH  (216 bots)
       AS10139 (70 bots) - SMARTBRO-PH-AP Smart Broadband, Inc.
           121.1.11.39        121.1.8.0/21      
           121.1.38.232       121.1.32.0/21     
           121.1.38.238       121.1.32.0/21     
           121.1.52.28        121.1.48.0/21     
           121.54.13.26       121.54.8.0/21     
           121.54.13.27       121.54.8.0/21     
           121.54.29.5        121.54.28.0/22    
           121.54.32.101      121.54.32.0/21    
           121.54.32.103      121.54.32.0/21    
           121.54.32.104      121.54.32.0/21    
           121.54.32.106      121.54.32.0/21    
           121.54.32.107      121.54.32.0/21    
           121.54.32.108      121.54.32.0/21    
           121.54.32.110      121.54.32.0/21    
           121.54.32.130      121.54.32.0/21    
           121.54.32.135      121.54.32.0/21    
           121.54.32.136      121.54.32.0/21    
           121.54.32.138      121.54.32.0/21    
           121.54.32.140      121.54.32.0/21    
           121.54.32.141      121.54.32.0/21    
           121.54.32.144      121.54.32.0/21    
           121.54.32.145      121.54.32.0/21    
           121.54.32.148      121.54.32.0/21    
           121.54.32.150      121.54.32.0/21    
           121.54.32.151      121.54.32.0/21    
           121.54.32.152      121.54.32.0/21    
           121.54.32.153      121.54.32.0/21    
           121.54.32.155      121.54.32.0/21    
           121.54.32.157      121.54.32.0/21    
           121.54.34.178      121.54.32.0/21    
           121.54.42.229      121.54.40.0/22    
           121.54.54.130      121.54.52.0/22    
           121.54.54.153      121.54.52.0/22    
           121.54.54.35       121.54.52.0/22    
           121.54.54.56       121.54.52.0/22    
           121.54.58.134      121.54.56.0/21    
           121.54.58.135      121.54.56.0/21    
           121.54.58.136      121.54.56.0/21    
           121.54.58.137      121.54.56.0/21    
           121.54.58.138      121.54.56.0/21    
           121.54.58.141      121.54.56.0/21    
           121.54.58.143      121.54.56.0/21    
           121.54.58.144      121.54.56.0/21    
           121.54.58.146      121.54.56.0/21    
           121.54.58.147      121.54.56.0/21    
           121.54.58.148      121.54.56.0/21    
           121.54.58.149      121.54.56.0/21    
           121.54.58.154      121.54.56.0/21    
           121.54.58.158      121.54.56.0/21    
           121.54.58.192      121.54.56.0/21    
           121.54.58.194      121.54.56.0/21    
           121.54.58.196      121.54.56.0/21    
           121.54.58.197      121.54.56.0/21    
           121.54.58.198      121.54.56.0/21    
           121.54.58.199      121.54.56.0/21    
           121.54.58.201      121.54.56.0/21    
           121.54.58.203      121.54.56.0/21    
           121.54.58.204      121.54.56.0/21    
           121.54.58.207      121.54.56.0/21    
           121.54.58.209      121.54.56.0/21    
           121.54.58.211      121.54.56.0/21    
           121.54.58.217      121.54.56.0/21    
           121.54.58.218      121.54.56.0/21    
           121.54.58.221      121.54.56.0/21    
           125.60.156.219     125.60.152.0/21   
           125.60.156.231     125.60.152.0/21   
           125.60.195.230     125.60.192.0/21   
           203.87.162.18      203.87.160.0/21   
           203.87.201.134     203.87.200.0/21   
           203.87.201.150     203.87.200.0/21   
       AS132199 (13 bots) - GLOBE-MOBILE-5TH-GEN-AS Globe Telecom Inc.
          112.198.77.154     112.198.77.0/24   
          112.198.77.226     112.198.77.0/24   
          112.198.77.24      112.198.77.0/24   
          112.198.79.180     112.198.79.0/24   
          112.198.82.116     112.198.82.0/24   
          112.198.82.121     112.198.82.0/24   
          112.198.82.129     112.198.82.0/24   
          112.198.82.157     112.198.82.0/24   
          112.198.82.211     112.198.82.0/24   
          112.198.82.237     112.198.82.0/24   
          112.198.82.51      112.198.82.0/24   
          112.198.90.195     112.198.90.0/24   
          112.198.90.208     112.198.90.0/24   
       AS17639 (3 bots) - COMCLARK-AS ComClark Network & Technology Corp.
           120.29.100.156     120.29.100.0/23   
           121.58.222.58      121.58.222.0/23   
           121.58.222.60      121.58.222.0/23   
       AS24106 (5 bots) - DMPI-AS-AP DMPI, Digitel Mobile Philippines Inc.,
           180.194.28.200     180.194.0.0/17    
           180.194.29.33      180.194.0.0/17    
           180.194.29.88      180.194.0.0/17    
           180.194.30.15      180.194.0.0/17    
           180.194.30.168     180.194.0.0/17    
       AS38553 (1 bots) - DCTECHDVO-AS-AP Internet Service Provider and Data Center
           120.72.20.106      120.72.20.0/23    
       AS45622 (1 bots) - SKYBB-PILIPINOCABLE-AS-AP SkyBroadband Provincial Network
           182.18.250.147     182.18.250.0/24   
       AS45664 (3 bots) - LBNI Liberty Broadcasting Network Inc
           110.54.194.37      110.54.192.0/22   
           27.110.213.50      27.110.212.0/22   
           27.110.228.47      27.110.228.0/22   
       AS45754 (4 bots) - CLEARPATH-AS-AP Clear Path Networks Inc
           110.93.92.202      110.93.92.0/24    
           110.93.93.222      110.93.93.0/24    
           110.93.94.240      110.93.94.0/24    
           110.93.94.66       110.93.94.0/24    
       AS4775 (31 bots) - GLOBE-TELECOM-AS Globe Telecoms
            112.198.64.10      112.198.64.0/24   
            112.198.64.28      112.198.64.0/24   
            112.198.64.46      112.198.64.0/24   
            112.198.64.50      112.198.64.0/24   
            120.28.127.104     120.28.64.0/18    
            120.28.127.240     120.28.64.0/18    
            120.28.191.58      120.28.128.0/18   
            120.28.209.47      120.28.192.0/18   
            124.6.181.108      124.6.181.0/24    
            124.6.181.164      124.6.181.0/24    
            124.6.181.166      124.6.181.0/24    
            124.6.181.178      124.6.181.0/24    
            124.6.181.180      124.6.181.0/24    
            124.6.181.198      124.6.181.0/24    
            124.6.181.206      124.6.181.0/24    
            124.6.181.214      124.6.181.0/24    
            124.6.181.220      124.6.181.0/24    
            124.6.181.46       124.6.181.0/24    
            124.6.181.70       124.6.181.0/24    
            124.6.181.74       124.6.181.0/24    
            124.6.181.88       124.6.181.0/24    
            124.6.181.98       124.6.181.0/24    
            124.6.185.141      124.6.184.0/21    
            124.6.185.24       124.6.184.0/21    
            180.190.129.204    180.190.128.0/18  
            180.190.174.31     180.190.128.0/18  
            180.190.244.32     180.190.192.0/18  
            180.190.7.175      180.190.0.0/18    
            180.191.223.205    180.191.208.0/20  
            222.127.174.37     222.127.168.0/21  
            222.127.174.96     222.127.168.0/21  
       AS56099 (1 bots) - AVCHI-CLICK-AS-AP CLICK Broadband
           223.25.37.162      223.25.36.0/23    
       AS6648 (16 bots) - BAYAN-TELECOMMUNICATIONS Bayan Telecommunications, Inc.
            103.14.60.200      103.14.60.0/23    
            103.14.60.38       103.14.60.0/23    
            110.55.2.106       110.55.2.0/23     
            110.55.3.188       110.55.2.0/23     
            121.96.12.14       121.96.0.0/18     
            121.97.142.15      121.97.128.0/20   
            121.97.142.183     121.97.128.0/20   
            121.97.142.231     121.97.128.0/20   
            121.97.192.246     121.97.192.0/20   
            125.212.120.72     125.212.120.0/22  
            125.212.121.151    125.212.120.0/22  
            125.212.40.43      125.212.40.0/24   
            203.215.117.151    203.215.116.0/22  
            203.215.117.152    203.215.116.0/22  
            203.215.117.216    203.215.116.0/22  
            203.215.122.100    203.215.120.0/22  
       AS9299 (58 bots) - IPG-AS-AP Philippine Long Distance Telephone Company
            112.200.106.231    112.200.96.0/19   
            112.200.12.151     112.200.0.0/19    
            112.200.130.239    112.200.128.0/19  
            112.200.154.72     112.200.128.0/19  
            112.200.163.156    112.200.160.0/19  
            112.200.167.253    112.200.160.0/19  
            112.200.174.65     112.200.160.0/19  
            112.200.184.129    112.200.160.0/19  
            112.200.212.48     112.200.192.0/19  
            112.200.213.141    112.200.192.0/19  
            112.200.51.116     112.200.32.0/19   
            112.201.142.61     112.201.128.0/19  
            112.202.24.4       112.202.0.0/19    
            112.203.252.151    112.203.224.0/19  
            112.204.203.65     112.204.192.0/19  
            112.204.207.111    112.204.192.0/19  
            112.204.99.214     112.204.96.0/19   
            112.205.136.250    112.205.128.0/19  
            112.205.136.39     112.205.128.0/19  
            112.205.175.28     112.205.160.0/19  
            112.205.190.173    112.205.160.0/19  
            112.205.21.73      112.205.0.0/19    
            112.205.213.20     112.205.192.0/19  
            112.205.220.50     112.205.192.0/19  
            112.207.175.234    112.207.160.0/19  
            112.207.179.40     112.207.160.0/19  
            112.208.130.244    112.208.128.0/19  
            112.208.142.242    112.208.128.0/19  
            112.208.147.234    112.208.128.0/19  
            112.208.221.174    112.208.192.0/19  
            112.208.81.130     112.208.64.0/19   
            112.209.143.190    112.209.128.0/19  
            112.209.28.31      112.209.0.0/19    
            112.209.37.250     112.209.32.0/19   
            112.209.82.152     112.209.64.0/19   
            112.210.117.208    112.210.96.0/19   
            112.210.119.103    112.210.96.0/19   
            112.210.221.107    112.210.192.0/19  
            112.210.92.109     112.210.64.0/19   
            119.93.43.117      119.93.32.0/19    
            122.52.127.60      122.52.96.0/19    
            124.105.255.70     124.105.224.0/19  
            124.106.233.141    124.106.224.0/19  
            49.144.105.85      49.144.96.0/19    
            49.144.117.170     49.144.96.0/19    
            49.144.149.180     49.144.128.0/19   
            49.144.164.189     49.144.160.0/19   
            49.144.210.179     49.144.192.0/19   
            49.144.38.21       49.144.32.0/19    
            49.145.107.116     49.145.96.0/19    
            49.145.16.243      49.145.0.0/19     
            49.145.186.196     49.145.160.0/19   
            49.145.29.11       49.145.0.0/19     
            49.145.33.210      49.145.32.0/19    
            49.145.72.35       49.145.64.0/19    
            49.147.212.47      49.147.192.0/19   
            49.147.97.98       49.147.96.0/19    
            58.69.27.0         58.69.0.0/18      
       AS9497 (9 bots) - DIGITELONE Digital Telecommunications Philippines Inc.
            115.147.104.140    115.147.104.0/21  
            115.147.105.37     115.147.104.0/21  
            115.147.106.195    115.147.104.0/21  
            115.147.106.55     115.147.104.0/21  
            115.147.109.95     115.147.104.0/21  
            115.147.114.208    115.147.96.0/19   
            115.147.97.174     115.147.96.0/22   
            180.192.231.11     180.192.224.0/19  
            180.194.241.48     180.194.240.0/20  
       AS9658 (1 bots) - ETPI-IDS-AS-AP Eastern Telecoms Phils., Inc.
            112.199.39.162     112.199.32.0/19   
      PK  (50 bots)
       AS38547 (2 bots) - WITRIBE-AS-AP WITRIBE PAKISTAN LIMITED
           139.190.97.243     139.190.96.0/23   
           175.110.31.163     175.110.30.0/23   
       AS45595 (44 bots) - PKTELECOM-AS-PK Pakistan Telecom Company Limited
           116.71.165.17      116.71.160.0/20   
           116.71.167.142     116.71.160.0/20   
           119.152.13.223     119.152.0.0/13    
           119.154.11.51      119.152.0.0/13    
           119.154.14.202     119.152.0.0/13    
           119.154.55.210     119.152.0.0/13    
           119.154.57.204     119.152.0.0/13    
           119.154.75.143     119.152.0.0/13    
           182.178.217.181    182.178.128.0/17  
           182.178.222.18     182.178.128.0/17  
           182.178.246.129    182.178.128.0/17  
           182.179.108.242    182.179.64.0/18   
           182.179.114.101    182.179.64.0/18   
           182.179.116.123    182.179.64.0/18   
           182.179.120.159    182.179.64.0/18   
           182.179.126.163    182.179.64.0/18   
           182.179.64.24      182.179.64.0/18   
           182.179.75.14      182.179.64.0/18   
           182.179.77.114     182.179.64.0/18   
           182.179.80.148     182.179.64.0/18   
           182.179.81.254     182.179.64.0/18   
           182.179.83.144     182.179.64.0/18   
           182.179.85.74      182.179.64.0/18   
           182.179.97.200     182.179.64.0/18   
           182.179.98.92      182.179.64.0/18   
           182.179.99.61      182.179.64.0/18   
           182.181.158.101    182.181.128.0/17  
           182.181.161.173    182.181.128.0/17  
           182.181.186.105    182.181.128.0/17  
           182.182.42.68      182.182.0.0/17    
           182.182.56.189     182.182.0.0/17    
           182.182.96.214     182.182.0.0/17    
           182.185.11.136     182.185.0.0/17    
           182.185.121.66     182.185.0.0/17    
           182.185.6.142      182.185.0.0/17    
           182.185.72.48      182.185.0.0/17    
           182.185.95.136     182.185.0.0/17    
           182.187.5.174      182.187.0.0/17    
           182.188.162.141    182.188.128.0/18  
           182.189.146.153    182.189.128.0/17  
           182.189.66.11      182.189.0.0/17    
           39.41.242.62       39.41.128.0/17    
           39.45.102.135      39.45.0.0/16      
           39.45.6.254        39.45.0.0/16      
       AS9387 (4 bots) - AUGERE-PK AUGERE-Pakistan
            113.203.152.195    113.203.128.0/18  
            113.203.178.220    113.203.128.0/18  
            113.203.178.83     113.203.128.0/18  
            113.203.205.58     113.203.192.0/20  
      TH  (223 bots)
       AS131090 (10 bots) - CAT-IDC-4BYTENET-AS-AP CAT TELECOM Public Company Ltd,CAT
          110.77.136.145     110.77.136.0/24   
          110.77.208.138     110.77.208.0/24   
          110.77.209.96      110.77.209.0/24   
          110.77.233.129     110.77.233.0/24   
          110.77.233.135     110.77.233.0/24   
          110.77.248.223     110.77.248.0/24   
          119.42.104.23      119.42.104.0/24   
          119.42.98.35       119.42.98.0/24    
          61.7.178.132       61.7.178.0/24     
          61.7.181.37        61.7.181.0/24     
       AS132061 (6 bots) - REALMOVE-AS-AP Realmove Company Limited
          27.55.134.87       27.55.128.0/20    
          27.55.153.99       27.55.144.0/20    
          27.55.195.67       27.55.192.0/20    
          27.55.214.235      27.55.208.0/20    
          27.55.217.56       27.55.208.0/20    
          27.55.218.158      27.55.208.0/20    
       AS17552 (17 bots) - TRUE-AS-AP True Internet Co.,Ltd.
           110.168.158.254    110.168.128.0/18  
           115.87.12.109      115.87.0.0/18     
           115.87.138.222     115.87.128.0/18   
           115.87.174.21      115.87.128.0/18   
           115.87.82.140      115.87.64.0/18    
           115.87.89.240      115.87.64.0/18    
           124.120.17.129     124.120.0.0/18    
           171.100.38.68      171.100.0.0/18    
           171.100.85.217     171.100.64.0/18   
           58.11.140.31       58.11.128.0/18    
           58.11.153.230      58.11.128.0/18    
           58.11.55.191       58.11.0.0/18      
           58.8.123.236       58.8.64.0/18      
           58.9.127.147       58.9.64.0/18      
           58.9.15.224        58.9.0.0/18       
           61.90.91.146       61.90.64.0/18     
           61.90.94.253       61.90.64.0/18     
       AS23974 (6 bots) - MOE-EDNET-AS-AP Ministry of education
           182.93.179.37      182.93.128.0/17   
           182.93.201.149     182.93.128.0/17   
           182.93.201.59      182.93.128.0/17   
           202.143.155.180    202.143.128.0/19  
           203.172.139.153    203.172.128.0/18  
           203.172.252.241    203.172.192.0/18  
       AS24378 (4 bots) - ENGTAC-AS-TH-AP Total Access Communication PLC.
           115.67.163.79      115.67.163.0/24   
           115.67.165.52      115.67.165.0/24   
           115.67.2.128       115.67.2.0/24     
           115.67.37.202      115.67.37.0/24    
       AS38444 (1 bots) - SUPERBROADBANDNETWORK-AS-AP Super Broadband Network
           110.49.241.206     110.49.241.0/24   
       AS45629 (55 bots) - JASTEL-NETWORK-TH-AP JasTel Network International Gateway
           110.164.217.131    110.164.0.0/16    
           14.207.115.154     14.207.0.0/16     
           14.207.138.33      14.207.0.0/16     
           14.207.148.81      14.207.0.0/16     
           14.207.173.105     14.207.0.0/16     
           14.207.212.198     14.207.0.0/16     
           14.207.44.211      14.207.0.0/16     
           14.207.69.81       14.207.0.0/16     
           171.4.190.101      171.4.0.0/16      
           171.4.237.130      171.4.0.0/16      
           171.5.102.49       171.5.0.0/16      
           171.5.104.101      171.5.0.0/16      
           171.5.250.115      171.5.0.0/16      
           171.5.97.36        171.5.0.0/16      
           171.6.149.209      171.6.0.0/16      
           171.7.112.104      171.7.0.0/16      
           171.7.127.74       171.7.0.0/16      
           171.7.155.151      171.7.0.0/16      
           171.7.39.127       171.7.0.0/16      
           171.7.69.9         171.7.0.0/16      
           180.183.16.95      180.183.0.0/16    
           180.183.26.132     180.183.0.0/16    
           180.183.46.65      180.183.0.0/16    
           183.89.64.119      183.89.0.0/16     
           183.89.73.109      183.89.0.0/16     
           183.89.73.134      183.89.0.0/16     
           183.89.82.118      183.89.0.0/16     
           223.204.232.4      223.204.0.0/16    
           223.204.48.79      223.204.0.0/16    
           223.205.115.109    223.205.0.0/16    
           223.205.182.163    223.205.0.0/16    
           223.205.229.213    223.205.0.0/16    
           223.205.63.168     223.205.0.0/16    
           223.205.84.122     223.205.0.0/16    
           223.206.154.159    223.206.0.0/16    
           223.206.195.31     223.206.0.0/16    
           223.206.197.7      223.206.0.0/16    
           223.206.76.6       223.206.0.0/16    
           223.207.154.208    223.207.0.0/16    
           27.130.145.206     27.130.0.0/16     
           27.130.243.223     27.130.0.0/16     
           27.130.39.219      27.130.0.0/16     
           27.130.55.94       27.130.0.0/16     
           49.48.10.124       49.48.0.0/16      
           49.48.110.213      49.48.0.0/16      
           49.48.141.238      49.48.0.0/16      
           49.48.190.204      49.48.0.0/16      
           49.48.83.201       49.48.0.0/16      
           49.49.180.116      49.49.0.0/16      
           49.49.189.236      49.49.0.0/16      
           49.49.39.39        49.49.0.0/16      
           49.49.44.21        49.49.0.0/16      
           49.49.66.129       49.49.0.0/16      
           49.49.66.169       49.49.0.0/16      
           49.49.97.252       49.49.0.0/16      
       AS45758 (55 bots) - TRIPLETNET-AS-AP TripleT Internet Internet service provider Bangkok
           110.164.217.131    110.164.0.0/16    
           14.207.115.154     14.207.0.0/16     
           14.207.138.33      14.207.0.0/16     
           14.207.148.81      14.207.0.0/16     
           14.207.173.105     14.207.0.0/16     
           14.207.212.198     14.207.0.0/16     
           14.207.44.211      14.207.0.0/16     
           14.207.69.81       14.207.0.0/16     
           171.4.190.101      171.4.0.0/16      
           171.4.237.130      171.4.0.0/16      
           171.5.102.49       171.5.0.0/16      
           171.5.104.101      171.5.0.0/16      
           171.5.250.115      171.5.0.0/16      
           171.5.97.36        171.5.0.0/16      
           171.6.149.209      171.6.0.0/16      
           171.7.112.104      171.7.0.0/16      
           171.7.127.74       171.7.0.0/16      
           171.7.155.151      171.7.0.0/16      
           171.7.39.127       171.7.0.0/16      
           171.7.69.9         171.7.0.0/16      
           180.183.16.95      180.183.0.0/16    
           180.183.26.132     180.183.0.0/16    
           180.183.46.65      180.183.0.0/16    
           183.89.64.119      183.89.0.0/16     
           183.89.73.109      183.89.0.0/16     
           183.89.73.134      183.89.0.0/16     
           183.89.82.118      183.89.0.0/16     
           223.204.232.4      223.204.0.0/16    
           223.204.48.79      223.204.0.0/16    
           223.205.115.109    223.205.0.0/16    
           223.205.182.163    223.205.0.0/16    
           223.205.229.213    223.205.0.0/16    
           223.205.63.168     223.205.0.0/16    
           223.205.84.122     223.205.0.0/16    
           223.206.154.159    223.206.0.0/16    
           223.206.195.31     223.206.0.0/16    
           223.206.197.7      223.206.0.0/16    
           223.206.76.6       223.206.0.0/16    
           223.207.154.208    223.207.0.0/16    
           27.130.145.206     27.130.0.0/16     
           27.130.243.223     27.130.0.0/16     
           27.130.39.219      27.130.0.0/16     
           27.130.55.94       27.130.0.0/16     
           49.48.10.124       49.48.0.0/16      
           49.48.110.213      49.48.0.0/16      
           49.48.141.238      49.48.0.0/16      
           49.48.190.204      49.48.0.0/16      
           49.48.83.201       49.48.0.0/16      
           49.49.180.116      49.49.0.0/16      
           49.49.189.236      49.49.0.0/16      
           49.49.39.39        49.49.0.0/16      
           49.49.44.21        49.49.0.0/16      
           49.49.66.129       49.49.0.0/16      
           49.49.66.169       49.49.0.0/16      
           49.49.97.252       49.49.0.0/16      
       AS4618 (1 bots) - INET-TH-AS Internet Thailand Company Limited
            203.150.243.252    203.150.0.0/16    
       AS4621 (5 bots) - UNSPECIFIED UNINET-TH
            202.29.222.226     202.29.216.0/21   
            202.29.237.142     202.29.224.0/19   
            202.29.241.60      202.29.224.0/19   
            202.29.243.218     202.29.224.0/19   
            203.158.160.29     203.158.160.0/20  
       AS9464 (1 bots) - PSU-TH-AS-AP Prince of Songkla University (Sritrang_NET)
            202.12.73.202      202.12.73.0/24    
       AS9737 (58 bots) - TOTNET-TH-AS-AP TOT Public Company Limited
            1.0.148.30         1.0.128.0/19      
            1.1.186.53         1.1.160.0/19      
            1.1.194.177        1.1.192.0/19      
            1.1.195.3          1.1.192.0/19      
            1.1.230.247        1.1.224.0/19      
            1.179.133.37       1.179.133.0/24    
            1.2.241.210        1.2.224.0/19      
            1.2.241.57         1.2.224.0/19      
            1.4.129.203        1.4.128.0/19      
            1.4.132.75         1.4.128.0/19      
            1.4.133.122        1.4.128.0/19      
            1.4.133.73         1.4.128.0/19      
            1.4.134.26         1.4.128.0/19      
            1.4.144.153        1.4.128.0/19      
            1.4.189.174        1.4.160.0/19      
            1.4.228.59         1.4.224.0/19      
            1.4.247.53         1.4.224.0/19      
            101.108.125.252    101.108.96.0/19   
            101.109.213.84     101.109.192.0/19  
            101.109.233.193    101.109.224.0/19  
            101.51.10.199      101.51.0.0/19     
            101.51.161.122     101.51.160.0/19   
            113.53.180.222     113.53.128.0/18   
            113.53.183.169     113.53.128.0/18   
            113.53.186.75      113.53.128.0/18   
            113.53.191.88      113.53.128.0/18   
            113.53.194.252     113.53.192.0/18   
            113.53.197.143     113.53.192.0/18   
            113.53.44.232      113.53.32.0/19    
            113.53.44.77       113.53.32.0/19    
            118.172.154.195    118.172.128.0/19  
            118.172.166.139    118.172.160.0/19  
            118.172.197.248    118.172.192.0/19  
            118.172.24.205     118.172.0.0/18    
            118.172.43.17      118.172.32.0/19   
            118.172.43.227     118.172.32.0/19   
            118.172.67.4       118.172.64.0/19   
            118.172.72.206     118.172.64.0/19   
            118.172.81.93      118.172.64.0/19   
            118.172.91.164     118.172.64.0/19   
            118.175.12.74      118.175.12.0/24   
            118.175.179.53     118.175.160.0/19  
            118.175.199.145    118.175.192.0/19  
            125.26.149.218     125.26.128.0/19   
            125.26.207.99      125.26.192.0/19   
            125.26.218.218     125.26.192.0/19   
            125.26.253.172     125.26.224.0/19   
            125.26.40.186      125.26.32.0/19    
            125.26.85.143      125.26.64.0/19    
            125.27.170.119     125.27.160.0/19   
            125.27.223.194     125.27.128.0/17   
            125.27.29.174      125.27.0.0/18     
            182.52.155.9       182.52.128.0/19   
            182.52.24.250      182.52.0.0/19     
            182.53.158.102     182.53.128.0/17   
            182.53.39.152      182.53.0.0/17     
            182.53.42.220      182.53.0.0/17     
            203.113.115.254    203.113.112.0/22  
       AS9931 (4 bots) - CAT-AP The Communication Authoity of Thailand, CAT
            122.154.140.74     122.154.128.0/19  
            122.154.248.29     122.154.0.0/16    
            61.19.198.150      61.19.192.0/19    
            61.19.68.90        61.19.68.0/22     
      TW  (67 bots)
       AS1659 (2 bots) - ERX-TANET-ASN1 Tiawan Academic Network (TANet) Information Center
            120.126.117.89     120.96.0.0/11     
            120.127.47.22      120.96.0.0/11     
       AS17421 (1 bots) - EMOME-TW Long Distance & Mobile Business Group,
           116.59.237.228     116.59.236.0/22   
       AS17716 (2 bots) - NTU-TW National Taiwan University
           140.112.32.27      140.112.0.0/17    
           140.112.49.38      140.112.0.0/17    
       AS18182 (2 bots) - SONET-TW Sony Network Taiwan Limited
           219.85.212.168     219.85.192.0/18   
           61.62.10.102       61.62.0.0/18      
       AS24158 (2 bots) - TAIWANMOBILE-AS Taiwan Mobile Co., Ltd.
           101.15.126.19      101.15.0.0/16     
           115.80.129.219     115.80.0.0/16     
       AS3462 (47 bots) - HINET Data Communication Business Group
            1.161.175.126      1.161.0.0/16      
            1.162.43.57        1.162.0.0/16      
            1.164.221.13       1.164.0.0/16      
            1.171.202.76       1.171.0.0/16      
            1.171.227.191      1.171.0.0/16      
            1.172.67.167       1.172.0.0/16      
            1.34.144.198       1.34.0.0/16       
            1.34.149.240       1.34.0.0/16       
            111.240.168.150    111.240.0.0/16    
            111.246.96.72      111.246.0.0/16    
            111.250.87.101     111.250.0.0/16    
            111.251.195.138    111.251.0.0/16    
            111.252.43.3       111.252.0.0/16    
            111.253.251.52     111.253.0.0/16    
            111.255.213.144    111.255.0.0/16    
            114.24.48.123      114.24.0.0/16     
            114.27.208.237     114.27.0.0/16     
            114.27.214.130     114.27.0.0/16     
            114.34.135.180     114.34.0.0/16     
            114.37.138.197     114.37.0.0/16     
            114.37.165.235     114.37.0.0/16     
            114.37.243.10      114.37.0.0/16     
            114.39.192.208     114.39.0.0/16     
            114.42.144.49      114.42.0.0/16     
            114.42.172.125     114.42.0.0/16     
            118.165.95.39      118.165.0.0/16    
            118.171.102.68     118.171.0.0/16    
            125.224.7.248      125.224.0.0/16    
            203.69.36.139      203.69.0.0/16     
            211.22.63.238      211.22.0.0/16     
            220.135.213.39     220.135.192.0/18  
            220.135.249.95     220.135.192.0/18  
            220.142.254.47     220.142.0.0/16    
            36.232.97.161      36.232.0.0/16     
            36.237.230.53      36.237.0.0/16     
            59.124.228.84      59.124.0.0/16     
            59.126.72.54       59.126.0.0/17     
            60.248.140.204     60.248.0.0/16     
            60.248.143.147     60.248.0.0/16     
            60.251.130.136     60.251.0.0/16     
            60.251.144.196     60.251.0.0/16     
            60.251.146.64      60.251.0.0/16     
            60.251.182.4       60.251.0.0/16     
            61.221.173.159     61.221.0.0/16     
            61.223.209.229     61.223.0.0/16     
            61.227.120.51      61.227.0.0/16     
            61.231.218.39      61.231.0.0/16     
       AS4780 (3 bots) - SEEDNET Digital United Inc.
            203.73.48.164      203.73.32.0/19    
            59.102.184.35      59.102.184.0/22   
            61.58.25.32        61.58.16.0/20     
       AS4782 (1 bots) - GSNET Data Communication Business Group
            163.29.89.60       163.29.0.0/16     
       AS9416 (2 bots) - MULTIMEDIA-AS-AP Hoshin Multimedia Center Inc.
            182.233.133.152    182.233.128.0/17  
            219.68.103.179     219.68.0.0/17     
       AS9674 (1 bots) - FET-TW Far EastTone Telecommunication Co., Ltd.
            27.242.86.91       27.242.0.0/16     
       AS9676 (2 bots) - SAVECOM-TW SaveCom Internation Inc.
            118.99.142.73      118.99.128.0/18   
            60.245.46.218      60.245.32.0/19    
       AS9919 (1 bots) - NCIC-TW New Century InfoComm Tech Co., Ltd.
            113.196.196.10     113.196.0.0/16    
       AS9924 (1 bots) - TFN-TW Taiwan Fixed Network, Telco and Network Service Provider.
            106.1.215.215      106.1.0.0/16      
      VN  (144 bots)
       AS18403 (33 bots) - FPT-AS-AP The Corporation for Financing & Promoting Technology
           1.53.132.218       1.53.128.0/20     
           1.53.32.213        1.53.32.0/20      
           1.54.178.137       1.54.176.0/20     
           1.55.17.106        1.55.16.0/20      
           1.55.173.133       1.55.160.0/20     
           113.22.120.72      113.22.112.0/20   
           113.23.11.180      113.23.0.0/20     
           118.68.128.171     118.68.128.0/20   
           118.68.166.189     118.68.160.0/20   
           118.68.186.114     118.68.176.0/20   
           118.68.209.72      118.68.208.0/20   
           118.68.212.234     118.68.208.0/20   
           118.68.219.31      118.68.208.0/20   
           118.68.52.125      118.68.48.0/20    
           118.68.71.76       118.68.64.0/20    
           118.68.79.47       118.68.64.0/20    
           118.69.151.52      118.69.144.0/20   
           118.69.226.196     118.69.226.0/24   
           118.69.67.214      118.69.64.0/20    
           118.69.78.144      118.69.64.0/20    
           118.70.132.26      118.70.128.0/20   
           118.71.20.207      118.71.16.0/20    
           183.80.108.6       183.80.96.0/20    
           42.113.91.10       42.113.80.0/20    
           42.117.117.242     42.117.112.0/20   
           42.117.126.224     42.117.112.0/20   
           42.118.132.213     42.118.128.0/20   
           58.186.125.197     58.186.112.0/20   
           58.186.127.108     58.186.112.0/20   
           58.186.64.231      58.186.64.0/24    
           58.186.64.237      58.186.64.0/24    
           58.187.8.233       58.187.0.0/20     
           58.187.95.221      58.187.80.0/20    
       AS45543 (1 bots) - SCTV-AS-VN SaiGon Tourist cable Televition Company
           112.197.58.98      112.197.48.0/20   
       AS45899 (73 bots) - VNPT-AS-VN VNPT Corp
           113.160.112.137    113.160.96.0/19   
           113.161.71.114     113.161.64.0/19   
           113.161.71.26      113.161.64.0/19   
           113.161.71.27      113.161.64.0/19   
           113.161.71.28      113.161.64.0/19   
           113.161.71.3       113.161.64.0/19   
           113.161.75.113     113.161.64.0/19   
           113.161.75.116     113.161.64.0/19   
           113.161.76.161     113.161.64.0/19   
           113.162.128.70     113.162.128.0/19  
           113.162.210.90     113.162.192.0/19  
           113.163.117.41     113.163.96.0/19   
           113.163.2.1        113.163.0.0/19    
           113.165.82.106     113.165.64.0/19   
           113.166.129.248    113.166.128.0/19  
           113.166.133.156    113.166.128.0/19  
           113.166.43.88      113.166.32.0/19   
           113.167.212.59     113.167.192.0/19  
           113.167.250.96     113.167.224.0/19  
           113.167.87.129     113.167.64.0/19   
           113.168.16.228     113.168.0.0/19    
           113.169.11.78      113.169.0.0/19    
           113.169.17.131     113.169.0.0/19    
           113.169.224.156    113.169.224.0/19  
           113.169.56.36      113.169.32.0/19   
           113.169.60.32      113.169.32.0/19   
           113.169.70.153     113.169.64.0/19   
           113.169.74.139     113.169.64.0/19   
           113.169.83.175     113.169.64.0/19   
           113.170.255.177    113.170.224.0/19  
           113.171.83.119     113.171.64.0/19   
           113.172.202.27     113.172.192.0/19  
           113.172.62.132     113.172.32.0/19   
           113.172.63.222     113.172.32.0/19   
           113.172.94.219     113.172.64.0/19   
           113.173.213.27     113.173.192.0/19  
           113.173.215.183    113.173.192.0/19  
           113.173.96.125     113.173.96.0/19   
           113.182.132.183    113.182.128.0/19  
           113.184.197.1      113.184.192.0/19  
           113.187.17.192     113.187.16.0/20   
           113.187.17.194     113.187.16.0/20   
           113.187.17.206     113.187.16.0/20   
           113.190.168.105    113.190.160.0/19  
           113.190.221.29     113.190.192.0/19  
           113.190.64.233     113.190.64.0/19   
           123.16.164.197     123.16.128.0/18   
           123.16.237.60      123.16.192.0/18   
           123.16.89.94       123.16.64.0/18    
           123.18.185.226     123.18.160.0/19   
           123.19.171.66      123.19.160.0/20   
           123.20.226.119     123.20.192.0/18   
           123.20.31.79       123.20.0.0/18     
           123.20.53.218      123.20.0.0/18     
           123.20.83.205      123.20.64.0/18    
           123.20.85.219      123.20.64.0/18    
           123.21.108.179     123.21.96.0/20    
           123.21.113.206     123.21.112.0/20   
           123.21.114.181     123.21.112.0/20   
           123.21.61.157      123.21.48.0/20    
           123.21.62.149      123.21.48.0/20    
           123.21.94.52       123.21.80.0/20    
           123.22.124.62      123.22.96.0/19    
           123.22.149.160     123.22.128.0/19   
           123.22.74.49       123.22.64.0/19    
           123.23.238.7       123.23.224.0/20   
           123.24.13.206      123.24.0.0/18     
           123.24.190.171     123.24.128.0/18   
           123.24.219.119     123.24.192.0/18   
           123.25.210.81      123.25.192.0/19   
           123.28.142.231     123.28.128.0/19   
           14.161.6.228       14.161.0.0/19     
           222.253.186.249    222.253.160.0/19  
       AS7552 (36 bots) - VIETEL-AS-AP Vietel Corporation
            115.72.197.96      115.72.192.0/20   
            115.72.55.8        115.72.48.0/20    
            115.73.241.39      115.73.240.0/20   
            115.75.130.55      115.75.128.0/20   
            115.76.38.196      115.76.32.0/20    
            115.77.228.38      115.77.224.0/20   
            115.78.14.242      115.78.0.0/20     
            117.0.104.163      117.0.96.0/19     
            117.6.130.182      117.6.128.0/20    
            171.226.164.210    171.226.160.0/20  
            171.226.4.102      171.226.0.0/20    
            171.242.102.99     171.242.96.0/20   
            171.242.162.37     171.242.160.0/20  
            171.242.241.25     171.242.240.0/20  
            171.242.33.225     171.242.32.0/20   
            171.242.70.68      171.242.64.0/20   
            171.243.25.208     171.243.16.0/20   
            171.244.120.161    171.244.112.0/20  
            171.245.2.252      171.245.0.0/20    
            171.245.3.132      171.245.0.0/20    
            171.245.84.5       171.245.80.0/20   
            171.252.119.212    171.252.112.0/20  
            171.252.146.34     171.252.144.0/20  
            171.252.207.200    171.252.192.0/20  
            27.66.148.101      27.66.128.0/19    
            27.69.38.95        27.69.32.0/20     
            27.70.130.189      27.70.128.0/20    
            27.70.202.185      27.70.192.0/20    
            27.73.85.129       27.73.80.0/20     
            27.75.93.255       27.75.80.0/20     
            27.76.121.35       27.76.112.0/20    
            27.78.239.174      27.78.224.0/20    
            27.78.32.78        27.78.32.0/20     
            27.78.63.115       27.78.48.0/20     
            27.78.77.216       27.78.64.0/20     
            27.78.92.27        27.78.80.0/20     
       AS7643 (1 bots) - VNPT-AS-VN Vietnam Posts and Telecommunications (VNPT)
            123.30.165.194     123.30.164.0/22   
      WF  (1 bots)
       AS45879 (1 bots) - FCR-AS-AP France cables & radio Wallis & Futuna
           27.125.194.68      27.125.194.0/24