The United States has broken through the barrier of 100 detected bots today. I hope that in 2010, I can detect more and more bots in the US.
There is no way that Taiwan should top the chart for so long. It is really the fault of my detection system, which can only detect certain kinds of bots. As I do not own a spam-rich domain, I have no way to know if detection with greylisting is better in this regard.
Maybe I should ask some large installations of greylisting, like Texas A&M University, to share their logs? If it works, then it is very likely that I will have 10 times more bots to report!
detection period: 2009-12-31 00:00-23:59 UTC
total number of suspected botnet IPs: 3908
number of botnet IPs notified to network operators: 3455
The top 10 networks (as found in WHOIS), ordered by number of suspected botnet IPs are:
| Rank | Network | # of suspected botnet IPs |
|---|---|---|
| 1 | HINET-NET | 1042 |
| 2 | BSNLNET | 563 |
| 3 | CHINANET-GD | 348 |
| 4 | TFN-NET | 166 |
| 5 | RCOM | 90 |
| 6 | 002.558.157/0001-62 | 87 |
| 7 | AR-TEAR7-LACNIC | 85 |
| 8 | TATACOMM-IN | 83 |
| 9 | 002.558.134/0001-58 | 58 |
| 10 | UNICOM-SD | 52 |
The top 10 countries (as defined by the 2-character country code), ordered by number of suspected botnet IPs are:
| Rank | Country | # of suspected botnet IPs |
|---|---|---|
| 1 | Taiwan | 1221 |
| 2 | India | 847 |
| 3 | China | 760 |
| 4 | Brazil | 318 |
| 5 | Argentina | 145 |
| 6 | United States | 102 |
| 7 | Russian Federation | 93 |
| 8 | Ukraine | 33 |
| 9 | Ethiopia | 30 |
| 10 | South Korea | 26 |
No comments:
Post a Comment