DNSアンプ攻撃観測 (379zc.com ANY)
新しいAレコード割当ての形.
$ dig @127.0.0.1 379zc.com any ;; Truncated, retrying in TCP mode. ; <<>> DiG 9.7.6-P1 <<>> @127.0.0.1 379zc.com any ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 54012 ;; flags: qr rd ra; QUERY: 1, ANSWER: 261, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;379zc.com. IN ANY ;; ANSWER SECTION: 379zc.com. 3857 IN A 162.208.166.144 379zc.com. 3857 IN A 162.208.166.145 379zc.com. 3857 IN A 162.208.166.146 379zc.com. 3857 IN A 162.208.166.147 379zc.com. 3857 IN A 162.208.166.148 379zc.com. 3857 IN A 162.208.166.149 379zc.com. 3857 IN A 162.208.166.150 379zc.com. 3857 IN A 162.208.166.151 379zc.com. 3857 IN A 162.208.166.152 379zc.com. 3857 IN A 162.208.166.153 379zc.com. 3857 IN A 162.208.166.154 379zc.com. 3857 IN A 162.208.166.155 379zc.com. 3857 IN A 162.208.166.156 379zc.com. 3857 IN A 162.208.166.157 379zc.com. 3857 IN A 162.208.166.158 379zc.com. 3857 IN A 162.208.166.159 379zc.com. 3857 IN A 162.208.166.160 379zc.com. 3857 IN A 162.208.166.161 379zc.com. 3857 IN A 162.208.166.162 379zc.com. 3857 IN A 162.208.166.163 379zc.com. 3857 IN A 162.208.166.164 379zc.com. 3857 IN A 162.208.166.165 379zc.com. 3857 IN A 162.208.166.166 379zc.com. 3857 IN A 162.208.166.167 379zc.com. 3857 IN A 162.208.166.168 379zc.com. 3857 IN A 162.208.166.169 379zc.com. 3857 IN A 162.208.166.170 379zc.com. 3857 IN A 162.208.166.171 379zc.com. 3857 IN A 162.208.166.172 379zc.com. 3857 IN A 162.208.166.173 379zc.com. 3857 IN A 162.208.166.174 379zc.com. 3857 IN A 162.208.166.175 379zc.com. 3857 IN A 162.208.166.176 379zc.com. 3857 IN A 162.208.166.177 379zc.com. 3857 IN A 162.208.166.178 379zc.com. 3857 IN A 162.208.166.179 379zc.com. 3857 IN A 162.208.166.180 379zc.com. 3857 IN A 162.208.166.181 379zc.com. 3857 IN A 162.208.166.182 379zc.com. 3857 IN A 162.208.166.183 379zc.com. 3857 IN A 162.208.166.184 379zc.com. 3857 IN A 162.208.166.185 379zc.com. 3857 IN A 162.208.166.186 379zc.com. 3857 IN A 162.208.166.187 379zc.com. 3857 IN A 162.208.166.188 379zc.com. 3857 IN A 162.208.166.189 379zc.com. 3857 IN A 162.208.166.190 379zc.com. 3857 IN A 162.208.166.191 379zc.com. 3857 IN A 162.208.166.192 379zc.com. 3857 IN A 162.208.166.193 379zc.com. 3857 IN A 162.208.166.194 379zc.com. 3857 IN A 162.208.166.195 379zc.com. 3857 IN A 162.208.166.196 379zc.com. 3857 IN A 162.208.166.197 379zc.com. 3857 IN A 162.208.166.198 379zc.com. 3857 IN A 162.208.166.199 379zc.com. 3857 IN A 162.208.166.200 379zc.com. 3857 IN A 162.208.165.100 379zc.com. 3857 IN A 162.208.165.101 379zc.com. 3857 IN A 162.208.165.102 379zc.com. 3857 IN A 162.208.165.103 379zc.com. 3857 IN A 162.208.165.104 379zc.com. 3857 IN A 162.208.165.105 379zc.com. 3857 IN A 162.208.165.106 379zc.com. 3857 IN A 162.208.165.107 379zc.com. 3857 IN A 162.208.165.108 379zc.com. 3857 IN A 162.208.165.109 379zc.com. 3857 IN A 162.208.165.110 379zc.com. 3857 IN A 162.208.165.111 379zc.com. 3857 IN A 162.208.165.112 379zc.com. 3857 IN A 162.208.165.113 379zc.com. 3857 IN A 162.208.165.114 379zc.com. 3857 IN A 162.208.165.115 379zc.com. 3857 IN A 162.208.165.116 379zc.com. 3857 IN A 162.208.165.117 379zc.com. 3857 IN A 162.208.165.118 379zc.com. 3857 IN A 162.208.165.119 379zc.com. 3857 IN A 162.208.165.120 379zc.com. 3857 IN A 162.208.165.121 379zc.com. 3857 IN A 162.208.165.122 379zc.com. 3857 IN A 162.208.165.123 379zc.com. 3857 IN A 162.208.165.124 379zc.com. 3857 IN A 162.208.165.125 379zc.com. 3857 IN A 162.208.165.126 379zc.com. 3857 IN A 162.208.165.127 379zc.com. 3857 IN A 162.208.165.128 379zc.com. 3857 IN A 162.208.165.129 379zc.com. 3857 IN A 162.208.165.130 379zc.com. 3857 IN A 162.208.165.131 379zc.com. 3857 IN A 162.208.165.132 379zc.com. 3857 IN A 162.208.165.133 379zc.com. 3857 IN A 162.208.165.134 379zc.com. 3857 IN A 162.208.165.135 379zc.com. 3857 IN A 162.208.165.136 379zc.com. 3857 IN A 162.208.165.137 379zc.com. 3857 IN A 162.208.165.138 379zc.com. 3857 IN A 162.208.165.139 379zc.com. 3857 IN A 162.208.165.140 379zc.com. 3857 IN A 162.208.165.141 379zc.com. 3857 IN A 162.208.165.142 379zc.com. 3857 IN A 162.208.165.143 379zc.com. 3857 IN A 162.208.165.144 379zc.com. 3857 IN A 162.208.165.145 379zc.com. 3857 IN A 162.208.165.146 379zc.com. 3857 IN A 162.208.165.147 379zc.com. 3857 IN A 162.208.165.148 379zc.com. 3857 IN A 162.208.165.149 379zc.com. 3857 IN A 162.208.165.150 379zc.com. 3857 IN A 162.208.165.151 379zc.com. 3857 IN A 162.208.165.152 379zc.com. 3857 IN A 162.208.165.153 379zc.com. 3857 IN A 162.208.165.154 379zc.com. 3857 IN A 162.208.165.155 379zc.com. 3857 IN A 162.208.165.156 379zc.com. 3857 IN A 162.208.165.157 379zc.com. 3857 IN A 162.208.165.158 379zc.com. 3857 IN A 162.208.165.159 379zc.com. 3857 IN A 162.208.165.160 379zc.com. 3857 IN A 162.208.165.161 379zc.com. 3857 IN A 162.208.165.162 379zc.com. 3857 IN A 162.208.165.163 379zc.com. 3857 IN A 162.208.165.164 379zc.com. 3857 IN A 162.208.165.165 379zc.com. 3857 IN A 162.208.165.166 379zc.com. 3857 IN A 162.208.165.167 379zc.com. 3857 IN A 162.208.165.168 379zc.com. 3857 IN A 162.208.165.169 379zc.com. 3857 IN A 162.208.165.170 379zc.com. 3857 IN A 162.208.165.171 379zc.com. 3857 IN A 162.208.165.172 379zc.com. 3857 IN A 162.208.165.173 379zc.com. 3857 IN A 162.208.165.174 379zc.com. 3857 IN A 162.208.165.175 379zc.com. 3857 IN A 162.208.165.176 379zc.com. 3857 IN A 162.208.165.177 379zc.com. 3857 IN A 162.208.165.178 379zc.com. 3857 IN A 162.208.165.179 379zc.com. 3857 IN A 162.208.165.180 379zc.com. 3857 IN A 162.208.165.181 379zc.com. 3857 IN A 162.208.165.182 379zc.com. 3857 IN A 162.208.165.183 379zc.com. 3857 IN A 162.208.165.184 379zc.com. 3857 IN A 162.208.165.185 379zc.com. 3857 IN A 162.208.165.186 379zc.com. 3857 IN A 162.208.165.187 379zc.com. 3857 IN A 162.208.165.188 379zc.com. 3857 IN A 162.208.165.189 379zc.com. 3857 IN A 162.208.165.190 379zc.com. 3857 IN A 162.208.165.191 379zc.com. 3857 IN A 162.208.165.192 379zc.com. 3857 IN A 162.208.165.193 379zc.com. 3857 IN A 162.208.165.194 379zc.com. 3857 IN A 162.208.165.195 379zc.com. 3857 IN A 162.208.165.196 379zc.com. 3857 IN A 162.208.165.197 379zc.com. 3857 IN A 162.208.165.198 379zc.com. 3857 IN A 162.208.165.199 379zc.com. 3857 IN A 162.208.165.200 379zc.com. 3857 IN A 162.208.165.201 379zc.com. 3857 IN A 162.208.165.202 379zc.com. 3857 IN A 162.208.165.203 379zc.com. 3857 IN A 162.208.165.204 379zc.com. 3857 IN A 162.208.165.205 379zc.com. 3857 IN A 162.208.165.206 379zc.com. 3857 IN A 162.208.165.207 379zc.com. 3857 IN A 162.208.165.208 379zc.com. 3857 IN A 162.208.165.209 379zc.com. 3857 IN A 162.208.165.210 379zc.com. 3857 IN A 162.208.165.211 379zc.com. 3857 IN A 162.208.165.212 379zc.com. 3857 IN A 162.208.165.213 379zc.com. 3857 IN A 162.208.165.214 379zc.com. 3857 IN A 162.208.165.215 379zc.com. 3857 IN A 162.208.165.216 379zc.com. 3857 IN A 162.208.165.217 379zc.com. 3857 IN A 162.208.165.218 379zc.com. 3857 IN A 162.208.165.219 379zc.com. 3857 IN A 162.208.165.220 379zc.com. 3857 IN A 162.208.165.221 379zc.com. 3857 IN A 162.208.165.222 379zc.com. 3857 IN A 162.208.165.223 379zc.com. 3857 IN A 162.208.165.224 379zc.com. 3857 IN A 162.208.165.225 379zc.com. 3857 IN A 162.208.165.226 379zc.com. 3857 IN A 162.208.165.227 379zc.com. 3857 IN A 162.208.165.228 379zc.com. 3857 IN A 162.208.165.229 379zc.com. 3857 IN A 162.208.165.230 379zc.com. 3857 IN A 162.208.165.231 379zc.com. 3857 IN A 162.208.165.232 379zc.com. 3857 IN A 162.208.165.233 379zc.com. 3857 IN A 162.208.165.234 379zc.com. 3857 IN A 162.208.165.235 379zc.com. 3857 IN A 162.208.165.236 379zc.com. 3857 IN A 162.208.165.237 379zc.com. 3857 IN A 162.208.165.238 379zc.com. 3857 IN A 162.208.165.239 379zc.com. 3857 IN A 162.208.165.240 379zc.com. 3857 IN A 162.208.165.241 379zc.com. 3857 IN A 162.208.165.242 379zc.com. 3857 IN A 162.208.165.243 379zc.com. 3857 IN A 162.208.165.244 379zc.com. 3857 IN A 162.208.165.245 379zc.com. 3857 IN A 162.208.165.246 379zc.com. 3857 IN A 162.208.165.247 379zc.com. 3857 IN A 162.208.165.248 379zc.com. 3857 IN A 162.208.165.249 379zc.com. 3857 IN A 162.208.165.250 379zc.com. 3857 IN A 162.208.165.251 379zc.com. 3857 IN A 162.208.165.252 379zc.com. 3857 IN A 162.208.165.253 379zc.com. 3857 IN A 162.208.165.254 379zc.com. 3857 IN A 162.208.166.100 379zc.com. 3857 IN A 162.208.166.101 379zc.com. 3857 IN A 162.208.166.102 379zc.com. 3857 IN A 162.208.166.103 379zc.com. 3857 IN A 162.208.166.104 379zc.com. 3857 IN A 162.208.166.105 379zc.com. 3857 IN A 162.208.166.106 379zc.com. 3857 IN A 162.208.166.107 379zc.com. 3857 IN A 162.208.166.108 379zc.com. 3857 IN A 162.208.166.109 379zc.com. 3857 IN A 162.208.166.110 379zc.com. 3857 IN A 162.208.166.111 379zc.com. 3857 IN A 162.208.166.112 379zc.com. 3857 IN A 162.208.166.113 379zc.com. 3857 IN A 162.208.166.114 379zc.com. 3857 IN A 162.208.166.115 379zc.com. 3857 IN A 162.208.166.116 379zc.com. 3857 IN A 162.208.166.117 379zc.com. 3857 IN A 162.208.166.118 379zc.com. 3857 IN A 162.208.166.119 379zc.com. 3857 IN A 162.208.166.120 379zc.com. 3857 IN A 162.208.166.121 379zc.com. 3857 IN A 162.208.166.122 379zc.com. 3857 IN A 162.208.166.123 379zc.com. 3857 IN A 162.208.166.124 379zc.com. 3857 IN A 162.208.166.125 379zc.com. 3857 IN A 162.208.166.126 379zc.com. 3857 IN A 162.208.166.127 379zc.com. 3857 IN A 162.208.166.128 379zc.com. 3857 IN A 162.208.166.129 379zc.com. 3857 IN A 162.208.166.130 379zc.com. 3857 IN A 162.208.166.131 379zc.com. 3857 IN A 162.208.166.132 379zc.com. 3857 IN A 162.208.166.133 379zc.com. 3857 IN A 162.208.166.134 379zc.com. 3857 IN A 162.208.166.135 379zc.com. 3857 IN A 162.208.166.136 379zc.com. 3857 IN A 162.208.166.137 379zc.com. 3857 IN A 162.208.166.138 379zc.com. 3857 IN A 162.208.166.139 379zc.com. 3857 IN A 162.208.166.140 379zc.com. 3857 IN A 162.208.166.141 379zc.com. 3857 IN A 162.208.166.142 379zc.com. 3857 IN A 162.208.166.143 379zc.com. 5057 IN SOA ns1.mmtac1.com. root.ns1.379zc.com. 20091027 28800 600 604800 86400 379zc.com. 5057 IN NS ns3.mmtac1.com. 379zc.com. 5057 IN NS ns4.mmtac1.com. 379zc.com. 5057 IN NS ns1.mmtac1.com. 379zc.com. 5057 IN NS ns2.mmtac1.com. ;; Query time: 11 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: Mon Oct 7 15:55:35 2013 ;; MSG SIZE rcvd: 4247
$ whois 222.163.192.106 # # ARIN WHOIS data and services are subject to the Terms of Use # available at: https://www.arin.net/whois_tou.html # # # Query terms are ambiguous. The query is assumed to be: # "n 222.163.192.106" # # Use "?" to get help. # # # The following results may also be obtained via: # http://whois.arin.net/rest/nets;q=222.163.192.106?showDetails=true&showARIN=false&ext=netref2 # NetRange: 222.0.0.0 - 222.255.255.255 CIDR: 222.0.0.0/8 OriginAS: NetName: APNIC8 NetHandle: NET-222-0-0-0-1 Parent: NetType: Allocated to APNIC Comment: This IP address range is not registered in the ARIN database. Comment: For details, refer to the APNIC Whois Database via Comment: WHOIS.APNIC.NET or http://wq.apnic.net/apnic-bin/whois.pl Comment: ** IMPORTANT NOTE: APNIC is the Regional Internet Registry Comment: for the Asia Pacific region. APNIC does not operate networks Comment: using this IP address range and is not able to investigate Comment: spam or abuse reports relating to these addresses. For more Comment: help, refer to http://www.apnic.net/apnic-info/whois_search2/abuse-and-spamming RegDate: 2003-02-13 Updated: 2010-07-30 Ref: http://whois.arin.net/rest/net/NET-222-0-0-0-1 OrgName: Asia Pacific Network Information Centre OrgId: APNIC Address: PO Box 3646 City: South Brisbane StateProv: QLD PostalCode: 4101 Country: AU RegDate: Updated: 2012-01-24 Ref: http://whois.arin.net/rest/org/APNIC ReferralServer: whois://whois.apnic.net OrgTechHandle: AWC12-ARIN OrgTechName: APNIC Whois Contact OrgTechPhone: +61 7 3858 3188 OrgTechEmail: search-apnic-not-arin@apnic.net OrgTechRef: http://whois.arin.net/rest/poc/AWC12-ARIN OrgAbuseHandle: AWC12-ARIN OrgAbuseName: APNIC Whois Contact OrgAbusePhone: +61 7 3858 3188 OrgAbuseEmail: search-apnic-not-arin@apnic.net OrgAbuseRef: http://whois.arin.net/rest/poc/AWC12-ARIN # # ARIN WHOIS data and services are subject to the Terms of Use # available at: https://www.arin.net/whois_tou.html # % [whois.apnic.net] % Whois data copyright terms http://www.apnic.net/db/dbcopyright.html % Information related to '222.160.0.0 - 222.163.255.255' inetnum: 222.160.0.0 - 222.163.255.255 netname: UNICOM-JL descr: China Unicom Jilin province network descr: China Unicom country: CN admin-c: CH1302-AP tech-c: WT92-AP mnt-by: APNIC-HM mnt-lower: MAINT-CNCGROUP-JL mnt-routes: MAINT-CNCGROUP-RR status: ALLOCATED PORTABLE remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+ remarks: This object can only be updated by APNIC hostmasters. remarks: To update this object, please contact APNIC remarks: hostmasters and include your organisation's account remarks: name in the subject line. remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+ mnt-irt: IRT-CU-CN changed: hm-changed@apnic.net 20050803 changed: hm-changed@apnic.net 20060118 changed: hm-changed@apnic.net 20090508 source: APNIC irt: IRT-CU-CN address: No.21,Jin-Rong Street address: Beijing,100140 address: P.R.China e-mail: zhouxm@chinaunicom.cn abuse-mailbox: zhouxm@chinaunicom.cn admin-c: CH1302-AP tech-c: CH1302-AP auth: # Filtered mnt-by: MAINT-CNCGROUP changed: zhouxm@chinaunicom.cn 20101110 changed: hm-changed@apnic.net 20101116 source: APNIC person: ChinaUnicom Hostmaster nic-hdl: CH1302-AP e-mail: abuse@cnc-noc.net address: No.21,Jin-Rong Street address: Beijing,100033 address: P.R.China phone: +86-10-66259764 fax-no: +86-10-66259764 country: CN changed: abuse@cnc-noc.net 20090408 mnt-by: MAINT-CNCGROUP source: APNIC person: Wang Tiegang nic-hdl: WT92-AP e-mail: jhli_jl@sina.cn address: NO.3535,Renmin Street, ChangChun , address: Jilin province , 130021 , P.R. China phone: +86-431-5560792 fax-no: +86-431-5560816 country: CN changed: jhli_jl@mail.jl.cn 20060626 mnt-by: MAINT-CNCGROUP-JL changed: hm-changed@apnic.net 20120528 source: APNIC % Information related to '222.160.0.0/14AS4837' route: 222.160.0.0/14 descr: CNC Group CHINA169 Jilin Province Network country: CN origin: AS4837 mnt-by: MAINT-CNCGROUP-RR changed: abuse@cnc-noc.net 20060118 source: APNIC % This query was served by the APNIC Whois Service version 1.68.5 (WHOIS2)
DNSアンプ攻撃観測 (kiddy3233655.ru ANY)
よく見る形の204.46.43/24 の A レコードが大量に割り当てられている怪しいドメイン.
$ dig @127.0.0.1 kiddy3233655.ru any ;; Truncated, retrying in TCP mode. ; <<>> DiG 9.7.6-P1 <<>> @127.0.0.1 kiddy3233655.ru any ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 27105 ;; flags: qr rd ra; QUERY: 1, ANSWER: 242, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;kiddy3233655.ru. IN ANY ;; ANSWER SECTION: kiddy3233655.ru. 43200 IN A 204.46.43.1 kiddy3233655.ru. 43200 IN A 204.46.43.2 kiddy3233655.ru. 43200 IN A 204.46.43.3 kiddy3233655.ru. 43200 IN A 204.46.43.4 kiddy3233655.ru. 43200 IN A 204.46.43.5 kiddy3233655.ru. 43200 IN A 204.46.43.6 kiddy3233655.ru. 43200 IN A 204.46.43.7 kiddy3233655.ru. 43200 IN A 204.46.43.8 kiddy3233655.ru. 43200 IN A 204.46.43.9 kiddy3233655.ru. 43200 IN A 204.46.43.10 kiddy3233655.ru. 43200 IN A 204.46.43.11 kiddy3233655.ru. 43200 IN A 204.46.43.12 kiddy3233655.ru. 43200 IN A 204.46.43.13 kiddy3233655.ru. 43200 IN A 204.46.43.14 kiddy3233655.ru. 43200 IN A 204.46.43.15 kiddy3233655.ru. 43200 IN A 204.46.43.16 kiddy3233655.ru. 43200 IN A 204.46.43.17 kiddy3233655.ru. 43200 IN A 204.46.43.18 kiddy3233655.ru. 43200 IN A 204.46.43.19 kiddy3233655.ru. 43200 IN A 204.46.43.20 kiddy3233655.ru. 43200 IN A 204.46.43.21 kiddy3233655.ru. 43200 IN A 204.46.43.22 kiddy3233655.ru. 43200 IN A 204.46.43.23 kiddy3233655.ru. 43200 IN A 204.46.43.24 kiddy3233655.ru. 43200 IN A 204.46.43.25 kiddy3233655.ru. 43200 IN A 204.46.43.26 kiddy3233655.ru. 43200 IN A 204.46.43.27 kiddy3233655.ru. 43200 IN A 204.46.43.28 kiddy3233655.ru. 43200 IN A 204.46.43.29 kiddy3233655.ru. 43200 IN A 204.46.43.30 kiddy3233655.ru. 43200 IN A 204.46.43.31 kiddy3233655.ru. 43200 IN A 204.46.43.32 kiddy3233655.ru. 43200 IN A 204.46.43.33 kiddy3233655.ru. 43200 IN A 204.46.43.34 kiddy3233655.ru. 43200 IN A 204.46.43.40 kiddy3233655.ru. 43200 IN A 204.46.43.41 kiddy3233655.ru. 43200 IN A 204.46.43.42 kiddy3233655.ru. 43200 IN A 204.46.43.43 kiddy3233655.ru. 43200 IN A 204.46.43.44 kiddy3233655.ru. 43200 IN A 204.46.43.45 kiddy3233655.ru. 43200 IN A 204.46.43.46 kiddy3233655.ru. 43200 IN A 204.46.43.47 kiddy3233655.ru. 43200 IN A 204.46.43.48 kiddy3233655.ru. 43200 IN A 204.46.43.49 kiddy3233655.ru. 43200 IN A 204.46.43.50 kiddy3233655.ru. 43200 IN A 204.46.43.51 kiddy3233655.ru. 43200 IN A 204.46.43.52 kiddy3233655.ru. 43200 IN A 204.46.43.53 kiddy3233655.ru. 43200 IN A 204.46.43.54 kiddy3233655.ru. 43200 IN A 204.46.43.55 kiddy3233655.ru. 43200 IN A 204.46.43.56 kiddy3233655.ru. 43200 IN A 204.46.43.57 kiddy3233655.ru. 43200 IN A 204.46.43.58 kiddy3233655.ru. 43200 IN A 204.46.43.59 kiddy3233655.ru. 43200 IN A 204.46.43.60 kiddy3233655.ru. 43200 IN A 204.46.43.61 kiddy3233655.ru. 43200 IN A 204.46.43.62 kiddy3233655.ru. 43200 IN A 204.46.43.63 kiddy3233655.ru. 43200 IN A 204.46.43.64 kiddy3233655.ru. 43200 IN A 204.46.43.65 kiddy3233655.ru. 43200 IN A 204.46.43.66 kiddy3233655.ru. 43200 IN A 204.46.43.67 kiddy3233655.ru. 43200 IN A 204.46.43.68 kiddy3233655.ru. 43200 IN A 204.46.43.69 kiddy3233655.ru. 43200 IN A 204.46.43.70 kiddy3233655.ru. 43200 IN A 204.46.43.71 kiddy3233655.ru. 43200 IN A 204.46.43.72 kiddy3233655.ru. 43200 IN A 204.46.43.73 kiddy3233655.ru. 43200 IN A 204.46.43.74 kiddy3233655.ru. 43200 IN A 204.46.43.75 kiddy3233655.ru. 43200 IN A 204.46.43.76 kiddy3233655.ru. 43200 IN A 204.46.43.77 kiddy3233655.ru. 43200 IN A 204.46.43.78 kiddy3233655.ru. 43200 IN A 204.46.43.79 kiddy3233655.ru. 43200 IN A 204.46.43.80 kiddy3233655.ru. 43200 IN A 204.46.43.81 kiddy3233655.ru. 43200 IN A 204.46.43.82 kiddy3233655.ru. 43200 IN A 204.46.43.83 kiddy3233655.ru. 43200 IN A 204.46.43.84 kiddy3233655.ru. 43200 IN A 204.46.43.85 kiddy3233655.ru. 43200 IN A 204.46.43.86 kiddy3233655.ru. 43200 IN A 204.46.43.87 kiddy3233655.ru. 43200 IN A 204.46.43.88 kiddy3233655.ru. 43200 IN A 204.46.43.89 kiddy3233655.ru. 43200 IN A 204.46.43.90 kiddy3233655.ru. 43200 IN A 204.46.43.91 kiddy3233655.ru. 43200 IN A 204.46.43.92 kiddy3233655.ru. 43200 IN A 204.46.43.93 kiddy3233655.ru. 43200 IN A 204.46.43.94 kiddy3233655.ru. 43200 IN A 204.46.43.95 kiddy3233655.ru. 43200 IN A 204.46.43.96 kiddy3233655.ru. 43200 IN A 204.46.43.97 kiddy3233655.ru. 43200 IN A 204.46.43.98 kiddy3233655.ru. 43200 IN A 204.46.43.99 kiddy3233655.ru. 43200 IN A 204.46.43.100 kiddy3233655.ru. 43200 IN A 204.46.43.101 kiddy3233655.ru. 43200 IN A 204.46.43.102 kiddy3233655.ru. 43200 IN A 204.46.43.103 kiddy3233655.ru. 43200 IN A 204.46.43.104 kiddy3233655.ru. 43200 IN A 204.46.43.105 kiddy3233655.ru. 43200 IN A 204.46.43.106 kiddy3233655.ru. 43200 IN A 204.46.43.107 kiddy3233655.ru. 43200 IN A 204.46.43.108 kiddy3233655.ru. 43200 IN A 204.46.43.109 kiddy3233655.ru. 43200 IN A 204.46.43.110 kiddy3233655.ru. 43200 IN A 204.46.43.111 kiddy3233655.ru. 43200 IN A 204.46.43.112 kiddy3233655.ru. 43200 IN A 204.46.43.113 kiddy3233655.ru. 43200 IN A 204.46.43.114 kiddy3233655.ru. 43200 IN A 204.46.43.115 kiddy3233655.ru. 43200 IN A 204.46.43.116 kiddy3233655.ru. 43200 IN A 204.46.43.117 kiddy3233655.ru. 43200 IN A 204.46.43.118 kiddy3233655.ru. 43200 IN A 204.46.43.119 kiddy3233655.ru. 43200 IN A 204.46.43.120 kiddy3233655.ru. 43200 IN A 204.46.43.121 kiddy3233655.ru. 43200 IN A 204.46.43.122 kiddy3233655.ru. 43200 IN A 204.46.43.123 kiddy3233655.ru. 43200 IN A 204.46.43.124 kiddy3233655.ru. 43200 IN A 204.46.43.125 kiddy3233655.ru. 43200 IN A 204.46.43.126 kiddy3233655.ru. 43200 IN A 204.46.43.127 kiddy3233655.ru. 43200 IN A 204.46.43.128 kiddy3233655.ru. 43200 IN A 204.46.43.129 kiddy3233655.ru. 43200 IN A 204.46.43.130 kiddy3233655.ru. 43200 IN A 204.46.43.131 kiddy3233655.ru. 43200 IN A 204.46.43.132 kiddy3233655.ru. 43200 IN A 204.46.43.133 kiddy3233655.ru. 43200 IN A 204.46.43.134 kiddy3233655.ru. 43200 IN A 204.46.43.135 kiddy3233655.ru. 43200 IN A 204.46.43.136 kiddy3233655.ru. 43200 IN A 204.46.43.137 kiddy3233655.ru. 43200 IN A 204.46.43.138 kiddy3233655.ru. 43200 IN A 204.46.43.139 kiddy3233655.ru. 43200 IN A 204.46.43.140 kiddy3233655.ru. 43200 IN A 204.46.43.141 kiddy3233655.ru. 43200 IN A 204.46.43.142 kiddy3233655.ru. 43200 IN A 204.46.43.143 kiddy3233655.ru. 43200 IN A 204.46.43.144 kiddy3233655.ru. 43200 IN A 204.46.43.145 kiddy3233655.ru. 43200 IN A 204.46.43.146 kiddy3233655.ru. 43200 IN A 204.46.43.147 kiddy3233655.ru. 43200 IN A 204.46.43.148 kiddy3233655.ru. 43200 IN A 204.46.43.149 kiddy3233655.ru. 43200 IN A 204.46.43.150 kiddy3233655.ru. 43200 IN A 204.46.43.151 kiddy3233655.ru. 43200 IN A 204.46.43.152 kiddy3233655.ru. 43200 IN A 204.46.43.153 kiddy3233655.ru. 43200 IN A 204.46.43.154 kiddy3233655.ru. 43200 IN A 204.46.43.155 kiddy3233655.ru. 43200 IN A 204.46.43.156 kiddy3233655.ru. 43200 IN A 204.46.43.157 kiddy3233655.ru. 43200 IN A 204.46.43.158 kiddy3233655.ru. 43200 IN A 204.46.43.159 kiddy3233655.ru. 43200 IN A 204.46.43.160 kiddy3233655.ru. 43200 IN A 204.46.43.161 kiddy3233655.ru. 43200 IN A 204.46.43.162 kiddy3233655.ru. 43200 IN A 204.46.43.163 kiddy3233655.ru. 43200 IN A 204.46.43.164 kiddy3233655.ru. 43200 IN A 204.46.43.165 kiddy3233655.ru. 43200 IN A 204.46.43.166 kiddy3233655.ru. 43200 IN A 204.46.43.167 kiddy3233655.ru. 43200 IN A 204.46.43.168 kiddy3233655.ru. 43200 IN A 204.46.43.169 kiddy3233655.ru. 43200 IN A 204.46.43.170 kiddy3233655.ru. 43200 IN A 204.46.43.171 kiddy3233655.ru. 43200 IN A 204.46.43.172 kiddy3233655.ru. 43200 IN A 204.46.43.173 kiddy3233655.ru. 43200 IN A 204.46.43.174 kiddy3233655.ru. 43200 IN A 204.46.43.175 kiddy3233655.ru. 43200 IN A 204.46.43.176 kiddy3233655.ru. 43200 IN A 204.46.43.177 kiddy3233655.ru. 43200 IN A 204.46.43.178 kiddy3233655.ru. 43200 IN A 204.46.43.179 kiddy3233655.ru. 43200 IN A 204.46.43.180 kiddy3233655.ru. 43200 IN A 204.46.43.181 kiddy3233655.ru. 43200 IN A 204.46.43.182 kiddy3233655.ru. 43200 IN A 204.46.43.183 kiddy3233655.ru. 43200 IN A 204.46.43.184 kiddy3233655.ru. 43200 IN A 204.46.43.185 kiddy3233655.ru. 43200 IN A 204.46.43.186 kiddy3233655.ru. 43200 IN A 204.46.43.187 kiddy3233655.ru. 43200 IN A 204.46.43.188 kiddy3233655.ru. 43200 IN A 204.46.43.189 kiddy3233655.ru. 43200 IN A 204.46.43.190 kiddy3233655.ru. 43200 IN A 204.46.43.191 kiddy3233655.ru. 43200 IN A 204.46.43.192 kiddy3233655.ru. 43200 IN A 204.46.43.193 kiddy3233655.ru. 43200 IN A 204.46.43.194 kiddy3233655.ru. 43200 IN A 204.46.43.195 kiddy3233655.ru. 43200 IN A 204.46.43.196 kiddy3233655.ru. 43200 IN A 204.46.43.197 kiddy3233655.ru. 43200 IN A 204.46.43.198 kiddy3233655.ru. 43200 IN A 204.46.43.199 kiddy3233655.ru. 43200 IN A 204.46.43.200 kiddy3233655.ru. 43200 IN A 204.46.43.201 kiddy3233655.ru. 43200 IN A 204.46.43.202 kiddy3233655.ru. 43200 IN A 204.46.43.203 kiddy3233655.ru. 43200 IN A 204.46.43.204 kiddy3233655.ru. 43200 IN A 204.46.43.205 kiddy3233655.ru. 43200 IN A 204.46.43.206 kiddy3233655.ru. 43200 IN A 204.46.43.207 kiddy3233655.ru. 43200 IN A 204.46.43.208 kiddy3233655.ru. 43200 IN A 204.46.43.209 kiddy3233655.ru. 43200 IN A 204.46.43.210 kiddy3233655.ru. 43200 IN A 204.46.43.211 kiddy3233655.ru. 43200 IN A 204.46.43.212 kiddy3233655.ru. 43200 IN A 204.46.43.213 kiddy3233655.ru. 43200 IN A 204.46.43.214 kiddy3233655.ru. 43200 IN A 204.46.43.215 kiddy3233655.ru. 43200 IN A 204.46.43.216 kiddy3233655.ru. 43200 IN A 204.46.43.217 kiddy3233655.ru. 43200 IN A 204.46.43.218 kiddy3233655.ru. 43200 IN A 204.46.43.219 kiddy3233655.ru. 43200 IN A 204.46.43.220 kiddy3233655.ru. 43200 IN A 204.46.43.221 kiddy3233655.ru. 43200 IN A 204.46.43.222 kiddy3233655.ru. 43200 IN A 204.46.43.223 kiddy3233655.ru. 43200 IN A 204.46.43.224 kiddy3233655.ru. 43200 IN A 204.46.43.225 kiddy3233655.ru. 43200 IN A 204.46.43.226 kiddy3233655.ru. 43200 IN A 204.46.43.227 kiddy3233655.ru. 43200 IN A 204.46.43.228 kiddy3233655.ru. 43200 IN A 204.46.43.229 kiddy3233655.ru. 43200 IN A 204.46.43.230 kiddy3233655.ru. 43200 IN A 204.46.43.231 kiddy3233655.ru. 43200 IN A 204.46.43.232 kiddy3233655.ru. 43200 IN A 204.46.43.233 kiddy3233655.ru. 43200 IN A 204.46.43.234 kiddy3233655.ru. 43200 IN A 204.46.43.235 kiddy3233655.ru. 43200 IN A 204.46.43.236 kiddy3233655.ru. 43200 IN A 204.46.43.237 kiddy3233655.ru. 43200 IN A 204.46.43.238 kiddy3233655.ru. 43200 IN A 204.46.43.239 kiddy3233655.ru. 43200 IN A 204.46.43.240 kiddy3233655.ru. 43200 IN A 204.46.43.241 kiddy3233655.ru. 43200 IN A 204.46.43.242 kiddy3233655.ru. 43200 IN A 204.46.43.243 kiddy3233655.ru. 43200 IN A 204.46.43.244 kiddy3233655.ru. 43200 IN NS ns1.reg.ru. kiddy3233655.ru. 43200 IN NS ns2.reg.ru. kiddy3233655.ru. 43200 IN SOA ns1.reg.ru. hostmaster.ns1.reg.ru. 1378751646 14400 3600 604800 21600 ;; Query time: 12 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: Mon Oct 7 14:00:51 2013 ;; MSG SIZE rcvd: 3944
$ whois 31.31.204.25 # # ARIN WHOIS data and services are subject to the Terms of Use # available at: https://www.arin.net/whois_tou.html # # # Query terms are ambiguous. The query is assumed to be: # "n 31.31.204.25" # # Use "?" to get help. # # # The following results may also be obtained via: # http://whois.arin.net/rest/nets;q=31.31.204.25?showDetails=true&showARIN=false&ext=netref2 # NetRange: 31.0.0.0 - 31.255.255.255 CIDR: 31.0.0.0/8 OriginAS: NetName: RIPE-31 NetHandle: NET-31-0-0-0-1 Parent: NetType: Allocated to RIPE NCC Comment: These addresses have been further assigned to users in Comment: the RIPE NCC region. Contact information can be found in Comment: the RIPE database at http://www.ripe.net/whois RegDate: Updated: 2010-05-18 Ref: http://whois.arin.net/rest/net/NET-31-0-0-0-1 OrgName: RIPE Network Coordination Centre OrgId: RIPE Address: P.O. Box 10096 City: Amsterdam StateProv: PostalCode: 1001EB Country: NL RegDate: Updated: 2013-07-29 Ref: http://whois.arin.net/rest/org/RIPE ReferralServer: whois://whois.ripe.net:43 OrgTechHandle: RNO29-ARIN OrgTechName: RIPE NCC Operations OrgTechPhone: +31 20 535 4444 OrgTechEmail: hostmaster@ripe.net OrgTechRef: http://whois.arin.net/rest/poc/RNO29-ARIN OrgAbuseHandle: ABUSE3850-ARIN OrgAbuseName: Abuse Contact OrgAbusePhone: +31205354444 OrgAbuseEmail: abuse@ripe.net OrgAbuseRef: http://whois.arin.net/rest/poc/ABUSE3850-ARIN # # ARIN WHOIS data and services are subject to the Terms of Use # available at: https://www.arin.net/whois_tou.html # % This is the RIPE Database query service. % The objects are in RPSL format. % % The RIPE Database is subject to Terms and Conditions. % See http://www.ripe.net/db/support/db-terms-conditions.pdf % Note: this output has been filtered. % To receive output for a database update, use the "-B" flag. % Information related to '31.31.204.0 - 31.31.205.255' % Abuse contact for '31.31.204.0 - 31.31.205.255' is 'abuse@reg.ru' inetnum: 31.31.204.0 - 31.31.205.255 netname: REGRU-NETWORK descr: Reg.Ru country: RU admin-c: RGRU-RIPE tech-c: RGRU-RIPE status: ASSIGNED PA mnt-by: REGRU-MNT mnt-routes: DN-MNT remarks: INFRA-AW source: RIPE # Filtered role: Reg.Ru Network Operations address: Russia, Moscow, Vassily Petushkova st., house 3, Office 326 remarks: NOC e-mail: noc@reg.ru remarks: User support: support@reg.ru remarks: SPAM reports: abuse@reg.ru phone: +7 (495) 580-11-11 fax-no: +7 (495) 491-55-53 admin-c: ARP-RIPE tech-c: ARP-RIPE nic-hdl: RGRU-RIPE mnt-by: REGRU-MNT abuse-mailbox: abuse@reg.ru source: RIPE # Filtered % Information related to '31.31.204.0/24AS12695' route: 31.31.204.0/24 descr: Reg.Ru origin: AS12695 mnt-by: DN-MNT source: RIPE # Filtered % This query was served by the RIPE Database Query Service version 1.69 (WHOIS4)
DNSアンプ攻撃観測 (1x1.cz ANY)
DNSSEC関係で凄いことになっている.チェコの会社っぽい.
$ dig @::1 1x1.cz any ;; Truncated, retrying in TCP mode. ; <<>> DiG 9.7.6-P1 <<>> @::1 1x1.cz any ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 33384 ;; flags: qr rd ra; QUERY: 1, ANSWER: 26, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;1x1.cz. IN ANY ;; ANSWER SECTION: 1x1.cz. 1800 IN SOA ns.gransy.com. root.gransy.com. 2013092009 86400 900 1209600 1800 1x1.cz. 1800 IN RRSIG SOA 7 2 1800 20140920002332 20130920002332 56890 1x1.cz. VoueicIrPDYlgmp+Ty+/5A6OjqI6Nen7GV1L2Cac5W7MeIeARaiCZL1N ggBPAwgfh1Q543kj8uJcnjtbYmgd6Px08sFW4wb3oSz1gu3M2b4Iq7AZ xERqzAXrRMQI1IZ8zkXaLHCGllmDfn67GuEKNeD6Ggir8Mdx8H5QaMme /R/M7PAxJVjEr1wyrLQm9HwbPQwya5+b9XfLO85+Q9KwzgIbQVbWc3aN PA5aitnKP+E45dnUVL1EGL5+zF+5oW1DBYp1bSanCbueXxDmrCl5A8lq LFQC657TbtN7t7AHnbFEzVsad0oH28dP16nHWNOsL+XZm5aJbupZs4om uoygcb/hkXfShAlErWE9ubnQIa3d0FtoiCNjyW93HIxvhIEeUR/6+a07 Ye4ob2ifsnLSECLoGm3vtv8tc19RQyAg/pvCsNHaCUfKd9H1vF7pjRtU 2Q2k5EoOyIkrw6aRoEn79GoLhyjUtDc4eegcx8KEkfkydITr5iOa7xJi Z4xRQUzGVzARHCtvc2Njj5gWw/p8XkX1roD4dHyMZRc5jIWH890UcN+k z5VwL4h8X0wAgbnyVninqYHSWVB6RSFJofmvpPQBHs7NkSiy4o88VWM0 mGj2FUj8+QznVsMV789z6hr6iaelAxDhmQ2I6RV47dEma1E+wydfCViM Z6+OuVtb/bQ= 1x1.cz. 1800 IN DNSKEY 256 3 7 BQEAAAAB9QdSKCeptWzBV1tlAFU+AaiSGgU7XaUY6YHgtUQ1ggPvJApl v3N9Xt8vB+z7/FThK4gxzQ3xZ+Y0xZ0sEnQVdl05XTfrrOGjwr6x3Pwx wepWONVZ6FXDb+LhEFx95kYOIjhLnyr5UvOHu9vFOEu1mMENo9gdg00D MBX+tXNBxiHIXzsFUE90QmXBro2GH4EHqTX+4ZVuNCOFhzAnp3h+O7SQ TR8npmdRrmWJvC42uT6ODGEFOnstZ+vJDQnc3ZLvzJvuaXK9pUGJmIQ7 5MEs9xcngf7JXRmW/FqsTph0ZcAXUoad8+Tu43Z0+V1Znf7WtCfODqqj KsKklt7CdY7R6NzEV9b5F//rvG88wZeg+PKXNVbQFFSzyguEsFrvjrTT hdKjyDPfbMRl/vMeoB/dfnB1VP5Ds1zMpqqYqiPPVLBmCjuRC2EalK3t Ph3y9U2xE+A2vytXETew+T+nX9ZG62rS7YnKwsMYrSzUPDTXYgCVwsDM /2Ecl5XEpemOnTvMmQGh7LUuYs/kK2hImPew5ntAQC6jnGr37xC3xtBf kFQN4sV5iSOvZWs5mjP2iEhGEFl5fRqU0Zvck0vOCHBBU0oRj8k4VUpU KSFe2W4iKolj2VS9Jr7S5WIFGFMHUfhyC1j5FVAqSyLBnEKOWper3O+d MQrtWTRl5L1H7v96O/E= 1x1.cz. 1800 IN DNSKEY 257 3 7 BQEAAAABw0H2Xb7JjIuMMVRD3oqWpoXsriUK4sCT2B0TAc9b6v7K+gEI fhtrQ+LImQ/yY4VLZ1z88RDe48LvV2kA3fjB+4tFJTsgmgxCAg29skRN orVLnb6ztSqZO3FuTYgH3yywEw3W4rTkPfthNhiaMEVXVrFDDU4dGhiJ mvIa9mkaPOkIKeRV4gJqs2YSEIhCKeMxkNNGLn1CIXAiFjVbVDcYFv0n 1bBY2iDUllDIRZapMfoSwJMnHI6VXz3CGjxIfcFcr+BUfVFhobqyV848 n4HJcHKMgErtC8xFmRD++Pq/isLbNs48zDSZQY5jJvD30anwzZnzhWJJ 2ZlirUm6pIazB3a6A7V3c381TsRAyY8suy5pkEriSVs4wSfHkiiwd3Z1 sHCTHgefwyRrArFycXR4bvz9sSFOCjbZfJ4S2RFchQa2D+IJsea+kXa+ LGOi2enMd6Jaq5+WB6dUkgWz+9a0/xqCC2ShywyWeazuoLaaejL8NUDf sGj4TEHfkXX+/BodFl6SicWsQEZuNU44/+pyyFqgDKsHu9t8mDtz/IGR Z/Duj9GKTQ4j953Czkic0thvFwqqd6Xm+C48K1qIB1vWqV4AinXDVf/q jbkPxGP01P+riUs5E0zTEoJOtyTtm/xoV5lTwe2PvhysrtGmcTdyqZXD Z6DQnUgkO7BUjlprbnk= 1x1.cz. 1800 IN RRSIG DNSKEY 7 2 1800 20140920002332 20130920002332 52247 1x1.cz. I0sVnwyHKBl5dVGYkpgxcWCVT1uEn6Rzp2rREqwLMQnyIvdGIgWzckRa 8x75SdLW1Giszb1jQyfGRhq0MdVN6Q6YnJfOHTyOaD+H40EDH1rHni8K JqZlg+pgkJdqbMD+Updl6AIfuuhurVTi4o+VWGLr49M6avqtRw1xpxGn zY2xw9r+6UqECGGKNbEOOj5jMv/tSJ3iXKyDqMR9yyE4BlbvcurVe5zH pgZf2wuxakdmOaOrXhxszVQlsnuBdr83ZijMw6uYIt/y3eByT5q7Lkmv fenfRnif5rNXlksP+UE0WAN0CCJ7+OfM3TzS7NF/7sFyWqgWQKRsTcZO l7c7nInWR/W4k7go8J6RFR3sCUPL4p4045TFzpi72EHe/sE8qtI5zHpf FNyu5HOCLMIPTWaPbxSMivdWh1x78wELyEbG7aplFW8/iwdXV5bWpGFP tTBg16u6kIbXiCMQYXYJpDtvaT3qlqDwD25NNSXp9Sgf7jx8ZXY1k3yu zw0XU+5Gxnl4UxDS/z8dicrrBuuWpBCw5hsaueFmkMNIHZ8R6/32sJ4I 1q/DEv8c0lli/y8S3pAQF9pFdtBH1145R8oERxqxr1dsOhSCJPrGoFVT MyhMG2481Osx5CgyjA2wQyW6Y3NNoM1i4MAjT1WMwgxxbhrM+CAQZpx6 P09zD5W83e0= 1x1.cz. 1800 IN RRSIG DNSKEY 7 2 1800 20140920002332 20130920002332 56890 1x1.cz. P2OcDuLKhOuhkYHp9cCqmHKtJKWXu4OY7CapquNk7SFIraEITJWuqgmU d4rtnsEkwbxx6VxhveWBVWpa4YXHS7afoTW64UgBw0YRyb0hiYSLeBYv AYfp0oG0L0pK9W93QiVoPGAVwgqJ8zD4UnCYaHtVeyeE522hB0H9o3Lk pB2U4xp9H/Gt7n5MVHDqk100wPVwiq7kkIeFkXfEWQpLff+R94ZJHpfr GrFdQy2LDHlzAszzJVsDgfQBMvFTWuy2zBVENLbn03Z57XXdbWjRRjso VWJwjyqZ9tfqg0D/52uAmrSVgU9/6ZhOOdSP6A1ziOJyVpxyGxPYH3SN rX1vbcbuXuNy6SCtnrsQh9KTIfEuEswRnOntdi7ApuF2oSOJXtsDAmYl KuLIwDEQvFrgAhO8ahTFBkU5m3jW5+t3C7pPr0m35gLCSHrkxDRz7BkL r6ILDE2OpJbFbN84imHrP6upCGBUyaCzUHUoUTHLD+TYYk86fiTgVSqt h/13+Zw/dAmmsyMIsPsKo7+KP40p9K0sP9ddJKeZU0v9InS3wCgnRcQt 5ZsNCW3x+yOJFPgSqbSxkiBwBFdnnUWq1EZNAAhFYPPLiLN2YX1eiAEA Zea/xJHJ9j0DIfa7vj+ZVb/XW24VrWjrREq2PQ2OjQuiSQxiJbd0c9tj L9fuopW1oeE= 1x1.cz. 1800 IN NSEC *.1x1.cz. A NS SOA MX TXT RRSIG NSEC DNSKEY 1x1.cz. 1800 IN RRSIG NSEC 7 2 1800 20140920002332 20130920002332 56890 1x1.cz. VQJz2B5G/2AlH8X4k4dwI4j1zMaherEmcBemAgOO7UNDzLyRhonN1Vxc bX9BfQXs8/pA8TQtrf02E3J9z/xk1EzAK+4bc2m4q2Y51cxXO9T7nmSz lFsK0p+mNb3eyPvZgN7jtW/AG8NSBxE7RnxiOinhyfci8KhiFOXNqigJ 3/7LAFy3PpO7/sOQr1SZ676XOD5y420AsBge6oMCGJnDqTm8W3QTcqaK LYJaPiw+NVE7sfNuFmFSG+RzjZQagSTF40CVGMevzgMPH1lYI2/pFyXP S4dxurrmNMgQT/2ck4JLymzhDUpckmVsn9wv8lBkpT18SUpv7UGj5b6n VMQPJZPcnIBjjBXfOgv90zLTRXKmKbdn4jNJRKTIuq9ZFFgVtOcG5D3O XPCrMwiCQOwGO0jYWAYmvt/QoviyCmATgd3frnCE77yW8g4T03c7C29N e2GW7z+ZxcQKNW2xWe16c/JNJh2syqFBeMUCkRWBW+/tsFRk4mJ0j3OU 44U2QNbTqqUs+VLA0VQ7KqCAKGdmtASCNqvd6nnWbmzmrIUYut2YkKGO x5WYTjdngWUXzSflbrg4R01fbgwiA4pz8uAs7gh3WcE5BiV9rO4t/Drr CIB6vVBDTJwuu2PYU25CCMW47MZqm/twRsF/zbuc/16X/FTtbn0S8B87 Kex9kLo/8Is= 1x1.cz. 1800 IN TXT "v=spf1 include:_spf.google.com ~all" 1x1.cz. 1800 IN RRSIG TXT 7 2 1800 20140920002332 20130920002332 56890 1x1.cz. mhd4YNHg1Me/Ay40kuElKBjfq1rxg51lPpQJyv5vISZi9ICKC13WfSjv 6CCOnoxPNjqEHxv/+xALlhzmiXnv6JjI4k4BEVMdLApL3w+ZjMXLEqyv D5+Yi4o5OKgdpGlTcrNE983P0/ibgEu+CewsN6YN2/ha014XBtKJrhoF 7t+yRa+KXXX9xIjDPAXjRjL+GkkAL2J2Gt76fs2mzZyJCEG+JLYi/mW9 8dR2wOn/1GsSUgP+j0DGfPoq+MhXAbUGPltyYRpYaliPj0np8FDFBe2+ wTovhpENYayin6R5TyuRE2QvNx2DV3tiUJRiTTcgML9dZJ0sdzLmwwc1 1dBPt0FYvSQ7hLaXtrNwG6HZhbOPHZlz8Cd1phCjOdkya1zhqslMboeJ mjw7YhnbDXkjZf4mw/8km2TWuXUYv5Ujern261JBdbeiI7ce4iumb8Ra jE8jsHWsKnEVlovwI2tPvo82/AGFZFBxagz0ayPL4TQQbHm7vbR9Kv5c h9XX3f0mKP5Jr25Az8OdW1zC9ss2PHQYTinbcYjFZyvPQGRFUo5EhfbB fpolBalqTYrmVOsvrJ5nlTTSUAJYukVkRIU/W8hEhSyAQX2zY7U4kf/f o3skWAfJnN5m13GCOu6uoyJ4JNicR3+NdP2aAW1cujuSu9Wxgc2bxjSG MAFabIX/s54= 1x1.cz. 1800 IN MX 30 ASPMX2.GOOGLEMAIL.com. 1x1.cz. 1800 IN MX 30 ASPMX3.GOOGLEMAIL.com. 1x1.cz. 1800 IN MX 30 ASPMX4.GOOGLEMAIL.com. 1x1.cz. 1800 IN MX 30 ASPMX5.GOOGLEMAIL.com. 1x1.cz. 1800 IN MX 10 ASPMX.L.GOOGLE.com. 1x1.cz. 1800 IN MX 20 ALT1.ASPMX.L.GOOGLE.com. 1x1.cz. 1800 IN MX 20 ALT2.ASPMX.L.GOOGLE.com. 1x1.cz. 1800 IN RRSIG MX 7 2 1800 20140920002332 20130920002332 56890 1x1.cz. VaMmj4xK5S6/DgFxRM8gvbFkgB38mwkhhC4o4RCzZPjELBq5m2mFypUj yynXsFb+OBTaDz3oOaedTN59pMg9da7SwlrOxEsIPfqq9I1jzlMwDMKx /LxUqbyCI10tKFFZM4Euq5R//qXLRfNE/fNHuQzqKVLU+/LUC3cEzF9R RaGGJFf688nRtuUXF6v2vNtGPWt2K9ucC+lk+Wi27gI7zOrnZJ9N8LBe Md4ghd3ayY+MK4HgdH1pqtoe1kzpahnUvQVlLv7EHlNSpNMgqdpyBS/F j+icO22XfjSAjw8rx/RpfcOW1x6YUolXLWQAo4IWsvq9V5Ggj/YD18W1 crf3nlAuYmx3sAmBvAa+Ov58JT8Wxo0AevaQYoMlxthMccKSSFHpJJE2 yuFuFuU2I4IzmmVppXxDd4M/Y44L67eq1ACvU7NUgcx85TpEabWNneBN 59AgD9f8j+hQtxkilpDrqJbVMjS2nVPnBrtMtzJNzFPfGu0Bj8j5TVFN Wz90hcS2m7ngnvMPL1cwqIn9scynpzmdnZEbCVPhW7rMGrGz1UmiDEyv /P3e/T1mHgv4gSmLKINLD1sA+PbjtrOA8xdzMRG4yVuzX/vTTeQh98re Ng3+8jK/nn9t/0o+nIAAOdssGIdPLW1HXBGuPnfpdIhl//6KV1vQU5JR 8ZoYHkyJld8= 1x1.cz. 1800 IN A 46.234.99.18 1x1.cz. 1800 IN RRSIG A 7 2 1800 20140920002332 20130920002332 56890 1x1.cz. KH6DnSGdTX+dUCf6hLrha6KmvSTVVf5gkVhp9a7xd0gdyBgTFoRRKWQt 6wEXtDoEAmeDnkZo7GPuvQO9jzYGmqZLZNvsYHhVs15d7fhYjFaOZTjZ exn7LwxC7zAALrmp95u5OLzs8qHbz6idOzU+v7UXeZG77YDYpyip0moz q0ZM65WK5pOhQPm10wTfaCcUNrObh97urYQnA8vQyg4kohKg0FqlXXKG bM8NR2aDUMKasPrs2TGWustbkjg+JqLsB+gam1RoDxiI4bw+QaQFgdwC fbKholt/aFUHeaHgtYI6GSbTNeKeXCa3Tw/XRWF17PQ+xekBbDAyGqJs rmnpk6avXS1PpCPPoXOV+Gd9TObwkDvUY+f8IrOrbS3uNxmyNWcZkjDi 3CLICTgVIARyH3bzCZLERPUUxtBZstU90oQ+VsxwCX/fQReCKahaxFz/ ljvtP7tRiro1rma0d/DcJ9yWsVv/Js98n2QcIqGDoGPMBr18eqhW0sON 3IodJ4LphH0ADMgHtpVokE03gWAM6T7oZd31YrmhjkSGlxnKjDsJ6u2Z 6FEnJBD4qXK208RQVQx9w8MwcSLKVxYmDxIVf5XinYQ6oK5B7N6V1Fs6 0DoIoz4zMBt9s2iprQUoLCGaDbBLMg8KM+5s6Gc0oi/GxxMO87POKUjJ 16pYbx9PNVo= 1x1.cz. 1800 IN NS ns3.gransy.com. 1x1.cz. 1800 IN NS ns5.gransy.com. 1x1.cz. 1800 IN NS ns4.gransy.com. 1x1.cz. 1800 IN NS ns2.gransy.com. 1x1.cz. 1800 IN NS ns.gransy.com. 1x1.cz. 1800 IN RRSIG NS 7 2 1800 20140920002332 20130920002332 56890 1x1.cz. 459V0KYCr/59wvjKJivwX2gBxlkSuLJNas8V1CL0cxeVlayOlSLDruJ7 UTaIrHDl8XZzixBsyqYrgMt+x72WKCyvrFUebSYF0bH0liBpmgRZfuDB 6EbCN4/qntTVqydKarxBBNvPWrGvpNcqUejgKBzl8LaH0Zvo64jBmrsL gp8vjP9hW0n0zGUtjdrumOroEzqvGL4JtJhBDqhv1on51szR7bF2QZhC 301eDrG66aH7b9TN5vrN5rODh+jsJ0hbMu1L9yC+TUmBr3ffFyME6zvE VtbBgoEJQakOoT7TNmU8zA1eDOVFJce5ul/mRhf1jPshYhYAQPQ0e6rG Xbg/IIdJO7AhxtiKLS9H2NrJ+CKlOev5Rhub2LWyLgUJmPErzYgU7CQq INMPhnVbQ0SSHypkQbnJmpLZ8kkgh0UFAdzVAfSqOnmfX4lkH5czOUYB ag6j9cPSU9VdOvTNV3I3U10LmbpTAVljy4vMBVfshb1ALCzOFPbOPrYx Quv//MbMvGmQZZElVBM+pAczWDjmOsW80kedIo1nkKidUbR/ZdT8eB70 s7lPPyHRqJ8O+hQNSvwjILiO/nuoz8GOFafgLFPWNnqvXmDT6EuC6gRK f2llLfngCorQpf8u5xTHT9bg35xmuBUntZovzYQC3IzW3BM5BcVWfPeV gkfUasjsbto= ;; Query time: 4 msec ;; SERVER: ::1#53(::1) ;; WHEN: Mon Oct 7 13:13:29 2013 ;; MSG SIZE rcvd: 5903
$ whois 46.234.99.18 # # ARIN WHOIS data and services are subject to the Terms of Use # available at: https://www.arin.net/whois_tou.html # # # Query terms are ambiguous. The query is assumed to be: # "n 46.234.99.18" # # Use "?" to get help. # # # The following results may also be obtained via: # http://whois.arin.net/rest/nets;q=46.234.99.18?showDetails=true&showARIN=false&ext=netref2 # NetRange: 46.0.0.0 - 46.255.255.255 CIDR: 46.0.0.0/8 OriginAS: NetName: 46-RIPE NetHandle: NET-46-0-0-0-0 Parent: NetType: Allocated to RIPE NCC Comment: These addresses have been further assigned to users in Comment: the RIPE NCC region. Contact information can be found in Comment: the RIPE database at http://www.ripe.net/whois RegDate: 2009-09-29 Updated: 2009-09-30 Ref: http://whois.arin.net/rest/net/NET-46-0-0-0-0 OrgName: RIPE Network Coordination Centre OrgId: RIPE Address: P.O. Box 10096 City: Amsterdam StateProv: PostalCode: 1001EB Country: NL RegDate: Updated: 2013-07-29 Ref: http://whois.arin.net/rest/org/RIPE ReferralServer: whois://whois.ripe.net:43 OrgTechHandle: RNO29-ARIN OrgTechName: RIPE NCC Operations OrgTechPhone: +31 20 535 4444 OrgTechEmail: hostmaster@ripe.net OrgTechRef: http://whois.arin.net/rest/poc/RNO29-ARIN OrgAbuseHandle: ABUSE3850-ARIN OrgAbuseName: Abuse Contact OrgAbusePhone: +31205354444 OrgAbuseEmail: abuse@ripe.net OrgAbuseRef: http://whois.arin.net/rest/poc/ABUSE3850-ARIN # # ARIN WHOIS data and services are subject to the Terms of Use # available at: https://www.arin.net/whois_tou.html # % This is the RIPE Database query service. % The objects are in RPSL format. % % The RIPE Database is subject to Terms and Conditions. % See http://www.ripe.net/db/support/db-terms-conditions.pdf % Note: this output has been filtered. % To receive output for a database update, use the "-B" flag. % Information related to '46.234.96.0 - 46.234.127.255' inetnum: 46.234.96.0 - 46.234.127.255 netname: CZ-SUPERNETWORK-20110210 descr: SuperNetwork s.r.o. country: CZ org: ORG-SS59-RIPE admin-c: ZC10-RIPE tech-c: ZC10-RIPE tech-c: DC1000-RIPE tech-c: JP4750-RIPE status: ALLOCATED PA mnt-by: RIPE-NCC-HM-MNT mnt-lower: SUPERNETWORK-MNT mnt-routes: SUPERNETWORK-MNT mnt-domains: SUPERNETWORK-MNT source: RIPE # Filtered organisation: ORG-Ss59-RIPE org-name: SuperNetwork s.r.o. org-type: LIR address: SuperNetwork s.r.o. Zdenek Cendra Bilejova 407 46303 Liberec CZECH REPUBLIC phone: +420296826296 fax-no: +420482731466 admin-c: DC1000-RIPE admin-c: ZC10-RIPE admin-c: JP4750-RIPE mnt-ref: SUPERNETWORK-MNT mnt-ref: RIPE-NCC-HM-MNT mnt-by: RIPE-NCC-HM-MNT source: RIPE # Filtered person: David Cermak address: PRO-ZETA a.s. address: Tiskarska 10/257 address: 108 00 Praha 10 address: Czech Republic phone: +420222742702 nic-hdl: DC1000-RIPE mnt-by: SUPERNETWORK-MNT source: RIPE # Filtered person: Jiri Prochazka address: SuperNetwork s.r.o. address: Na Safrance 33 address: Prague 10 address: 101 00 address: Czech Republic phone: +420296826296 nic-hdl: JP4750-RIPE mnt-by: supernetwork-mnt source: RIPE # Filtered person: Zdenek Cendra address: Na Safrance 33 address: Praha 10 address: 101 00 address: Czech Republic phone: +420296826296 nic-hdl: ZC10-RIPE mnt-by: SUPERNETWORK-MNT source: RIPE # Filtered % Information related to '46.234.96.0/20AS39392' route: 46.234.96.0/20 descr: SuperNetwork s.r.o. origin: AS39392 mnt-by: SUPERNETWORK-MNT source: RIPE # Filtered % This query was served by the RIPE Database Query Service version 1.69 (WHOIS1)
DNSアンプ攻撃観測 (pkts.asia)
数日引けなくなっていたpkts.asiaが復活していて,攻撃に使われている.
whois情報は登録されてない.
US, CA, California, Los Angeles
$ dig @::1 pkts.asia any ;; Truncated, retrying in TCP mode. ; <<>> DiG 9.7.6-P1 <<>> @::1 pkts.asia any ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 47514 ;; flags: qr rd ra; QUERY: 1, ANSWER: 245, AUTHORITY: 0, ADDITIONAL: 2 ;; QUESTION SECTION: ;pkts.asia. IN ANY ;; ANSWER SECTION: pkts.asia. 20867 IN NS ns2.pkts.asia. pkts.asia. 20867 IN NS ns1.pkts.asia. pkts.asia. 20867 IN A 1.1.1.14 pkts.asia. 20867 IN A 1.1.1.15 pkts.asia. 20867 IN A 1.1.1.16 pkts.asia. 20867 IN A 1.1.1.17 pkts.asia. 20867 IN A 1.1.1.18 pkts.asia. 20867 IN A 1.1.1.19 pkts.asia. 20867 IN A 1.1.1.20 pkts.asia. 20867 IN A 1.1.1.21 pkts.asia. 20867 IN A 1.1.1.22 pkts.asia. 20867 IN A 1.1.1.23 pkts.asia. 20867 IN A 1.1.1.24 pkts.asia. 20867 IN A 1.1.1.25 pkts.asia. 20867 IN A 1.1.1.26 pkts.asia. 20867 IN A 1.1.1.27 pkts.asia. 20867 IN A 1.1.1.28 pkts.asia. 20867 IN A 1.1.1.29 pkts.asia. 20867 IN A 1.1.1.30 pkts.asia. 20867 IN A 1.1.1.31 pkts.asia. 20867 IN A 1.1.1.32 pkts.asia. 20867 IN A 1.1.1.33 pkts.asia. 20867 IN A 1.1.1.34 pkts.asia. 20867 IN A 1.1.1.35 pkts.asia. 20867 IN A 1.1.1.36 pkts.asia. 20867 IN A 1.1.1.37 pkts.asia. 20867 IN A 1.1.1.38 pkts.asia. 20867 IN A 1.1.1.39 pkts.asia. 20867 IN A 1.1.1.40 pkts.asia. 20867 IN A 1.1.1.41 pkts.asia. 20867 IN A 1.1.1.42 pkts.asia. 20867 IN A 1.1.1.43 pkts.asia. 20867 IN A 1.1.1.44 pkts.asia. 20867 IN A 1.1.1.45 pkts.asia. 20867 IN A 1.1.1.46 pkts.asia. 20867 IN A 1.1.1.47 pkts.asia. 20867 IN A 1.1.1.48 pkts.asia. 20867 IN A 1.1.1.49 pkts.asia. 20867 IN A 1.1.1.50 pkts.asia. 20867 IN A 1.1.1.51 pkts.asia. 20867 IN A 1.1.1.52 pkts.asia. 20867 IN A 1.1.1.53 pkts.asia. 20867 IN A 1.1.1.54 pkts.asia. 20867 IN A 1.1.1.55 pkts.asia. 20867 IN A 1.1.1.56 pkts.asia. 20867 IN A 1.1.1.57 pkts.asia. 20867 IN A 1.1.1.58 pkts.asia. 20867 IN A 1.1.1.59 pkts.asia. 20867 IN A 1.1.1.60 pkts.asia. 20867 IN A 1.1.1.61 pkts.asia. 20867 IN A 1.1.1.62 pkts.asia. 20867 IN A 1.1.1.63 pkts.asia. 20867 IN A 1.1.1.64 pkts.asia. 20867 IN A 1.1.1.65 pkts.asia. 20867 IN A 1.1.1.66 pkts.asia. 20867 IN A 1.1.1.67 pkts.asia. 20867 IN A 1.1.1.68 pkts.asia. 20867 IN A 1.1.1.69 pkts.asia. 20867 IN A 1.1.1.70 pkts.asia. 20867 IN A 1.1.1.71 pkts.asia. 20867 IN A 1.1.1.72 pkts.asia. 20867 IN A 1.1.1.73 pkts.asia. 20867 IN A 1.1.1.74 pkts.asia. 20867 IN A 1.1.1.75 pkts.asia. 20867 IN A 1.1.1.76 pkts.asia. 20867 IN A 1.1.1.77 pkts.asia. 20867 IN A 1.1.1.78 pkts.asia. 20867 IN A 1.1.1.79 pkts.asia. 20867 IN A 1.1.1.80 pkts.asia. 20867 IN A 1.1.1.81 pkts.asia. 20867 IN A 1.1.1.82 pkts.asia. 20867 IN A 1.1.1.83 pkts.asia. 20867 IN A 1.1.1.84 pkts.asia. 20867 IN A 1.1.1.85 pkts.asia. 20867 IN A 1.1.1.86 pkts.asia. 20867 IN A 1.1.1.87 pkts.asia. 20867 IN A 1.1.1.88 pkts.asia. 20867 IN A 1.1.1.89 pkts.asia. 20867 IN A 1.1.1.90 pkts.asia. 20867 IN A 1.1.1.91 pkts.asia. 20867 IN A 1.1.1.92 pkts.asia. 20867 IN A 1.1.1.93 pkts.asia. 20867 IN A 1.1.1.94 pkts.asia. 20867 IN A 1.1.1.95 pkts.asia. 20867 IN A 1.1.1.96 pkts.asia. 20867 IN A 1.1.1.97 pkts.asia. 20867 IN A 1.1.1.98 pkts.asia. 20867 IN A 1.1.1.99 pkts.asia. 20867 IN A 1.1.1.100 pkts.asia. 20867 IN A 1.1.1.101 pkts.asia. 20867 IN A 1.1.1.102 pkts.asia. 20867 IN A 1.1.1.103 pkts.asia. 20867 IN A 1.1.1.104 pkts.asia. 20867 IN A 1.1.1.105 pkts.asia. 20867 IN A 1.1.1.106 pkts.asia. 20867 IN A 1.1.1.107 pkts.asia. 20867 IN A 1.1.1.108 pkts.asia. 20867 IN A 1.1.1.109 pkts.asia. 20867 IN A 1.1.1.110 pkts.asia. 20867 IN A 1.1.1.111 pkts.asia. 20867 IN A 1.1.1.112 pkts.asia. 20867 IN A 1.1.1.113 pkts.asia. 20867 IN A 1.1.1.114 pkts.asia. 20867 IN A 1.1.1.115 pkts.asia. 20867 IN A 1.1.1.116 pkts.asia. 20867 IN A 1.1.1.117 pkts.asia. 20867 IN A 1.1.1.118 pkts.asia. 20867 IN A 1.1.1.119 pkts.asia. 20867 IN A 1.1.1.120 pkts.asia. 20867 IN A 1.1.1.121 pkts.asia. 20867 IN A 1.1.1.122 pkts.asia. 20867 IN A 1.1.1.123 pkts.asia. 20867 IN A 1.1.1.124 pkts.asia. 20867 IN A 1.1.1.125 pkts.asia. 20867 IN A 1.1.1.126 pkts.asia. 20867 IN A 1.1.1.127 pkts.asia. 20867 IN A 1.1.1.128 pkts.asia. 20867 IN A 1.1.1.129 pkts.asia. 20867 IN A 1.1.1.130 pkts.asia. 20867 IN A 1.1.1.131 pkts.asia. 20867 IN A 1.1.1.132 pkts.asia. 20867 IN A 1.1.1.133 pkts.asia. 20867 IN A 1.1.1.134 pkts.asia. 20867 IN A 1.1.1.135 pkts.asia. 20867 IN A 1.1.1.136 pkts.asia. 20867 IN A 1.1.1.137 pkts.asia. 20867 IN A 1.1.1.138 pkts.asia. 20867 IN A 1.1.1.139 pkts.asia. 20867 IN A 1.1.1.140 pkts.asia. 20867 IN A 1.1.1.141 pkts.asia. 20867 IN A 1.1.1.142 pkts.asia. 20867 IN A 1.1.1.143 pkts.asia. 20867 IN A 1.1.1.144 pkts.asia. 20867 IN A 1.1.1.145 pkts.asia. 20867 IN A 1.1.1.146 pkts.asia. 20867 IN A 1.1.1.147 pkts.asia. 20867 IN A 1.1.1.148 pkts.asia. 20867 IN A 1.1.1.149 pkts.asia. 20867 IN A 1.1.1.150 pkts.asia. 20867 IN A 1.1.1.151 pkts.asia. 20867 IN A 1.1.1.152 pkts.asia. 20867 IN A 1.1.1.153 pkts.asia. 20867 IN A 1.1.1.154 pkts.asia. 20867 IN A 1.1.1.155 pkts.asia. 20867 IN A 1.1.1.156 pkts.asia. 20867 IN A 1.1.1.157 pkts.asia. 20867 IN A 1.1.1.158 pkts.asia. 20867 IN A 1.1.1.159 pkts.asia. 20867 IN A 1.1.1.160 pkts.asia. 20867 IN A 1.1.1.161 pkts.asia. 20867 IN A 1.1.1.162 pkts.asia. 20867 IN A 1.1.1.163 pkts.asia. 20867 IN A 1.1.1.164 pkts.asia. 20867 IN A 1.1.1.165 pkts.asia. 20867 IN A 1.1.1.166 pkts.asia. 20867 IN A 1.1.1.167 pkts.asia. 20867 IN A 1.1.1.168 pkts.asia. 20867 IN A 1.1.1.169 pkts.asia. 20867 IN A 1.1.1.170 pkts.asia. 20867 IN A 1.1.1.171 pkts.asia. 20867 IN A 1.1.1.172 pkts.asia. 20867 IN A 1.1.1.173 pkts.asia. 20867 IN A 1.1.1.174 pkts.asia. 20867 IN A 1.1.1.175 pkts.asia. 20867 IN A 1.1.1.176 pkts.asia. 20867 IN A 1.1.1.177 pkts.asia. 20867 IN A 1.1.1.178 pkts.asia. 20867 IN A 1.1.1.179 pkts.asia. 20867 IN A 1.1.1.180 pkts.asia. 20867 IN A 1.1.1.181 pkts.asia. 20867 IN A 1.1.1.182 pkts.asia. 20867 IN A 1.1.1.183 pkts.asia. 20867 IN A 1.1.1.184 pkts.asia. 20867 IN A 1.1.1.185 pkts.asia. 20867 IN A 1.1.1.186 pkts.asia. 20867 IN A 1.1.1.187 pkts.asia. 20867 IN A 1.1.1.188 pkts.asia. 20867 IN A 1.1.1.189 pkts.asia. 20867 IN A 1.1.1.190 pkts.asia. 20867 IN A 1.1.1.191 pkts.asia. 20867 IN A 1.1.1.192 pkts.asia. 20867 IN A 1.1.1.193 pkts.asia. 20867 IN A 1.1.1.194 pkts.asia. 20867 IN A 1.1.1.195 pkts.asia. 20867 IN A 1.1.1.196 pkts.asia. 20867 IN A 1.1.1.197 pkts.asia. 20867 IN A 1.1.1.198 pkts.asia. 20867 IN A 1.1.1.199 pkts.asia. 20867 IN A 1.1.1.200 pkts.asia. 20867 IN A 1.1.1.201 pkts.asia. 20867 IN A 1.1.1.202 pkts.asia. 20867 IN A 1.1.1.203 pkts.asia. 20867 IN A 1.1.1.204 pkts.asia. 20867 IN A 1.1.1.205 pkts.asia. 20867 IN A 1.1.1.206 pkts.asia. 20867 IN A 1.1.1.207 pkts.asia. 20867 IN A 1.1.1.208 pkts.asia. 20867 IN A 1.1.1.209 pkts.asia. 20867 IN A 1.1.1.210 pkts.asia. 20867 IN A 1.1.1.211 pkts.asia. 20867 IN A 1.1.1.212 pkts.asia. 20867 IN A 1.1.1.213 pkts.asia. 20867 IN A 1.1.1.214 pkts.asia. 20867 IN A 1.1.1.215 pkts.asia. 20867 IN A 1.1.1.216 pkts.asia. 20867 IN A 1.1.1.217 pkts.asia. 20867 IN A 1.1.1.218 pkts.asia. 20867 IN A 1.1.1.219 pkts.asia. 20867 IN A 1.1.1.220 pkts.asia. 20867 IN A 1.1.1.221 pkts.asia. 20867 IN A 1.1.1.222 pkts.asia. 20867 IN A 1.1.1.223 pkts.asia. 20867 IN A 1.1.1.224 pkts.asia. 20867 IN A 1.1.1.225 pkts.asia. 20867 IN A 1.1.1.226 pkts.asia. 20867 IN A 1.1.1.227 pkts.asia. 20867 IN A 1.1.1.228 pkts.asia. 20867 IN A 1.1.1.229 pkts.asia. 20867 IN A 1.1.1.230 pkts.asia. 20867 IN A 1.1.1.231 pkts.asia. 20867 IN A 1.1.1.232 pkts.asia. 20867 IN A 1.1.1.233 pkts.asia. 20867 IN A 1.1.1.234 pkts.asia. 20867 IN A 1.1.1.235 pkts.asia. 20867 IN A 1.1.1.236 pkts.asia. 20867 IN A 1.1.1.237 pkts.asia. 20867 IN A 1.1.1.238 pkts.asia. 20867 IN A 1.1.1.239 pkts.asia. 20867 IN A 1.1.1.240 pkts.asia. 20867 IN A 1.1.1.241 pkts.asia. 20867 IN A 1.1.1.242 pkts.asia. 20867 IN A 1.1.1.1 pkts.asia. 20867 IN A 1.1.1.2 pkts.asia. 20867 IN A 1.1.1.3 pkts.asia. 20867 IN A 1.1.1.4 pkts.asia. 20867 IN A 1.1.1.5 pkts.asia. 20867 IN A 1.1.1.6 pkts.asia. 20867 IN A 1.1.1.7 pkts.asia. 20867 IN A 1.1.1.8 pkts.asia. 20867 IN A 1.1.1.9 pkts.asia. 20867 IN A 1.1.1.10 pkts.asia. 20867 IN A 1.1.1.11 pkts.asia. 20867 IN A 1.1.1.12 pkts.asia. 20867 IN A 1.1.1.13 pkts.asia. 20867 IN SOA ns1.pkts.asia. udp.pkts.asia. 2013300901 21600 21600 21600 21600 ;; ADDITIONAL SECTION: ns1.pkts.asia. 20867 IN A 69.42.219.74 ns2.pkts.asia. 20867 IN A 69.42.219.74 ;; Query time: 9 msec ;; SERVER: ::1#53(::1) ;; WHEN: Mon Oct 7 12:55:14 2013 ;; MSG SIZE rcvd: 4007
DNSアンプ攻撃観測 (irlwinning.com ANY)
irlwinning.com も数日引けなかったけれど,復活している.
$ dig @::1 irlwinning.com any ;; Truncated, retrying in TCP mode. ; <<>> DiG 9.7.6-P1 <<>> @::1 irlwinning.com any ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 38409 ;; flags: qr rd ra; QUERY: 1, ANSWER: 244, AUTHORITY: 0, ADDITIONAL: 2 ;; QUESTION SECTION: ;irlwinning.com. IN ANY ;; ANSWER SECTION: irlwinning.com. 20371 IN NS ns1.irlwinning.com. irlwinning.com. 20371 IN NS ns2.irlwinning.com. irlwinning.com. 21600 IN A 1.1.1.147 irlwinning.com. 21600 IN A 1.1.1.148 irlwinning.com. 21600 IN A 1.1.1.149 irlwinning.com. 21600 IN A 1.1.1.150 irlwinning.com. 21600 IN A 1.1.1.151 irlwinning.com. 21600 IN A 1.1.1.152 irlwinning.com. 21600 IN A 1.1.1.153 irlwinning.com. 21600 IN A 1.1.1.154 irlwinning.com. 21600 IN A 1.1.1.155 irlwinning.com. 21600 IN A 1.1.1.156 irlwinning.com. 21600 IN A 1.1.1.157 irlwinning.com. 21600 IN A 1.1.1.158 irlwinning.com. 21600 IN A 1.1.1.159 irlwinning.com. 21600 IN A 1.1.1.160 irlwinning.com. 21600 IN A 1.1.1.161 irlwinning.com. 21600 IN A 1.1.1.162 irlwinning.com. 21600 IN A 1.1.1.163 irlwinning.com. 21600 IN A 1.1.1.164 irlwinning.com. 21600 IN A 1.1.1.165 irlwinning.com. 21600 IN A 1.1.1.166 irlwinning.com. 21600 IN A 1.1.1.167 irlwinning.com. 21600 IN A 1.1.1.168 irlwinning.com. 21600 IN A 1.1.1.169 irlwinning.com. 21600 IN A 1.1.1.170 irlwinning.com. 21600 IN A 1.1.1.171 irlwinning.com. 21600 IN A 1.1.1.172 irlwinning.com. 21600 IN A 1.1.1.173 irlwinning.com. 21600 IN A 1.1.1.174 irlwinning.com. 21600 IN A 1.1.1.175 irlwinning.com. 21600 IN A 1.1.1.176 irlwinning.com. 21600 IN A 1.1.1.177 irlwinning.com. 21600 IN A 1.1.1.178 irlwinning.com. 21600 IN A 1.1.1.179 irlwinning.com. 21600 IN A 1.1.1.180 irlwinning.com. 21600 IN A 1.1.1.181 irlwinning.com. 21600 IN A 1.1.1.182 irlwinning.com. 21600 IN A 1.1.1.183 irlwinning.com. 21600 IN A 1.1.1.184 irlwinning.com. 21600 IN A 1.1.1.185 irlwinning.com. 21600 IN A 1.1.1.186 irlwinning.com. 21600 IN A 1.1.1.187 irlwinning.com. 21600 IN A 1.1.1.188 irlwinning.com. 21600 IN A 1.1.1.189 irlwinning.com. 21600 IN A 1.1.1.190 irlwinning.com. 21600 IN A 1.1.1.191 irlwinning.com. 21600 IN A 1.1.1.192 irlwinning.com. 21600 IN A 1.1.1.193 irlwinning.com. 21600 IN A 1.1.1.194 irlwinning.com. 21600 IN A 1.1.1.195 irlwinning.com. 21600 IN A 1.1.1.196 irlwinning.com. 21600 IN A 1.1.1.197 irlwinning.com. 21600 IN A 1.1.1.198 irlwinning.com. 21600 IN A 1.1.1.199 irlwinning.com. 21600 IN A 1.1.1.200 irlwinning.com. 21600 IN A 1.1.1.201 irlwinning.com. 21600 IN A 1.1.1.202 irlwinning.com. 21600 IN A 1.1.1.203 irlwinning.com. 21600 IN A 1.1.1.204 irlwinning.com. 21600 IN A 1.1.1.205 irlwinning.com. 21600 IN A 1.1.1.206 irlwinning.com. 21600 IN A 1.1.1.207 irlwinning.com. 21600 IN A 1.1.1.208 irlwinning.com. 21600 IN A 1.1.1.209 irlwinning.com. 21600 IN A 1.1.1.210 irlwinning.com. 21600 IN A 1.1.1.211 irlwinning.com. 21600 IN A 1.1.1.212 irlwinning.com. 21600 IN A 1.1.1.213 irlwinning.com. 21600 IN A 1.1.1.214 irlwinning.com. 21600 IN A 1.1.1.215 irlwinning.com. 21600 IN A 1.1.1.216 irlwinning.com. 21600 IN A 1.1.1.217 irlwinning.com. 21600 IN A 1.1.1.218 irlwinning.com. 21600 IN A 1.1.1.219 irlwinning.com. 21600 IN A 1.1.1.220 irlwinning.com. 21600 IN A 1.1.1.221 irlwinning.com. 21600 IN A 1.1.1.222 irlwinning.com. 21600 IN A 1.1.1.223 irlwinning.com. 21600 IN A 1.1.1.224 irlwinning.com. 21600 IN A 1.1.1.225 irlwinning.com. 21600 IN A 1.1.1.226 irlwinning.com. 21600 IN A 1.1.1.227 irlwinning.com. 21600 IN A 1.1.1.228 irlwinning.com. 21600 IN A 1.1.1.229 irlwinning.com. 21600 IN A 1.1.1.230 irlwinning.com. 21600 IN A 1.1.1.231 irlwinning.com. 21600 IN A 1.1.1.232 irlwinning.com. 21600 IN A 1.1.1.233 irlwinning.com. 21600 IN A 1.1.1.234 irlwinning.com. 21600 IN A 1.1.1.235 irlwinning.com. 21600 IN A 1.1.1.236 irlwinning.com. 21600 IN A 1.1.1.237 irlwinning.com. 21600 IN A 1.1.1.238 irlwinning.com. 21600 IN A 1.1.1.239 irlwinning.com. 21600 IN A 1.1.1.240 irlwinning.com. 21600 IN A 1.1.1.241 irlwinning.com. 21600 IN A 1.1.1.1 irlwinning.com. 21600 IN A 1.1.1.2 irlwinning.com. 21600 IN A 1.1.1.3 irlwinning.com. 21600 IN A 1.1.1.4 irlwinning.com. 21600 IN A 1.1.1.5 irlwinning.com. 21600 IN A 1.1.1.6 irlwinning.com. 21600 IN A 1.1.1.7 irlwinning.com. 21600 IN A 1.1.1.8 irlwinning.com. 21600 IN A 1.1.1.9 irlwinning.com. 21600 IN A 1.1.1.10 irlwinning.com. 21600 IN A 1.1.1.11 irlwinning.com. 21600 IN A 1.1.1.12 irlwinning.com. 21600 IN A 1.1.1.13 irlwinning.com. 21600 IN A 1.1.1.14 irlwinning.com. 21600 IN A 1.1.1.15 irlwinning.com. 21600 IN A 1.1.1.16 irlwinning.com. 21600 IN A 1.1.1.17 irlwinning.com. 21600 IN A 1.1.1.18 irlwinning.com. 21600 IN A 1.1.1.19 irlwinning.com. 21600 IN A 1.1.1.20 irlwinning.com. 21600 IN A 1.1.1.21 irlwinning.com. 21600 IN A 1.1.1.22 irlwinning.com. 21600 IN A 1.1.1.23 irlwinning.com. 21600 IN A 1.1.1.24 irlwinning.com. 21600 IN A 1.1.1.25 irlwinning.com. 21600 IN A 1.1.1.26 irlwinning.com. 21600 IN A 1.1.1.27 irlwinning.com. 21600 IN A 1.1.1.28 irlwinning.com. 21600 IN A 1.1.1.29 irlwinning.com. 21600 IN A 1.1.1.30 irlwinning.com. 21600 IN A 1.1.1.31 irlwinning.com. 21600 IN A 1.1.1.32 irlwinning.com. 21600 IN A 1.1.1.33 irlwinning.com. 21600 IN A 1.1.1.34 irlwinning.com. 21600 IN A 1.1.1.35 irlwinning.com. 21600 IN A 1.1.1.36 irlwinning.com. 21600 IN A 1.1.1.37 irlwinning.com. 21600 IN A 1.1.1.38 irlwinning.com. 21600 IN A 1.1.1.39 irlwinning.com. 21600 IN A 1.1.1.40 irlwinning.com. 21600 IN A 1.1.1.41 irlwinning.com. 21600 IN A 1.1.1.42 irlwinning.com. 21600 IN A 1.1.1.43 irlwinning.com. 21600 IN A 1.1.1.44 irlwinning.com. 21600 IN A 1.1.1.45 irlwinning.com. 21600 IN A 1.1.1.46 irlwinning.com. 21600 IN A 1.1.1.47 irlwinning.com. 21600 IN A 1.1.1.48 irlwinning.com. 21600 IN A 1.1.1.49 irlwinning.com. 21600 IN A 1.1.1.50 irlwinning.com. 21600 IN A 1.1.1.51 irlwinning.com. 21600 IN A 1.1.1.52 irlwinning.com. 21600 IN A 1.1.1.53 irlwinning.com. 21600 IN A 1.1.1.54 irlwinning.com. 21600 IN A 1.1.1.55 irlwinning.com. 21600 IN A 1.1.1.56 irlwinning.com. 21600 IN A 1.1.1.57 irlwinning.com. 21600 IN A 1.1.1.58 irlwinning.com. 21600 IN A 1.1.1.59 irlwinning.com. 21600 IN A 1.1.1.60 irlwinning.com. 21600 IN A 1.1.1.61 irlwinning.com. 21600 IN A 1.1.1.62 irlwinning.com. 21600 IN A 1.1.1.63 irlwinning.com. 21600 IN A 1.1.1.64 irlwinning.com. 21600 IN A 1.1.1.65 irlwinning.com. 21600 IN A 1.1.1.66 irlwinning.com. 21600 IN A 1.1.1.67 irlwinning.com. 21600 IN A 1.1.1.68 irlwinning.com. 21600 IN A 1.1.1.69 irlwinning.com. 21600 IN A 1.1.1.70 irlwinning.com. 21600 IN A 1.1.1.71 irlwinning.com. 21600 IN A 1.1.1.72 irlwinning.com. 21600 IN A 1.1.1.73 irlwinning.com. 21600 IN A 1.1.1.74 irlwinning.com. 21600 IN A 1.1.1.75 irlwinning.com. 21600 IN A 1.1.1.76 irlwinning.com. 21600 IN A 1.1.1.77 irlwinning.com. 21600 IN A 1.1.1.78 irlwinning.com. 21600 IN A 1.1.1.79 irlwinning.com. 21600 IN A 1.1.1.80 irlwinning.com. 21600 IN A 1.1.1.81 irlwinning.com. 21600 IN A 1.1.1.82 irlwinning.com. 21600 IN A 1.1.1.83 irlwinning.com. 21600 IN A 1.1.1.84 irlwinning.com. 21600 IN A 1.1.1.85 irlwinning.com. 21600 IN A 1.1.1.86 irlwinning.com. 21600 IN A 1.1.1.87 irlwinning.com. 21600 IN A 1.1.1.88 irlwinning.com. 21600 IN A 1.1.1.89 irlwinning.com. 21600 IN A 1.1.1.90 irlwinning.com. 21600 IN A 1.1.1.91 irlwinning.com. 21600 IN A 1.1.1.92 irlwinning.com. 21600 IN A 1.1.1.93 irlwinning.com. 21600 IN A 1.1.1.94 irlwinning.com. 21600 IN A 1.1.1.95 irlwinning.com. 21600 IN A 1.1.1.96 irlwinning.com. 21600 IN A 1.1.1.97 irlwinning.com. 21600 IN A 1.1.1.98 irlwinning.com. 21600 IN A 1.1.1.99 irlwinning.com. 21600 IN A 1.1.1.100 irlwinning.com. 21600 IN A 1.1.1.101 irlwinning.com. 21600 IN A 1.1.1.102 irlwinning.com. 21600 IN A 1.1.1.103 irlwinning.com. 21600 IN A 1.1.1.104 irlwinning.com. 21600 IN A 1.1.1.105 irlwinning.com. 21600 IN A 1.1.1.106 irlwinning.com. 21600 IN A 1.1.1.107 irlwinning.com. 21600 IN A 1.1.1.108 irlwinning.com. 21600 IN A 1.1.1.109 irlwinning.com. 21600 IN A 1.1.1.110 irlwinning.com. 21600 IN A 1.1.1.111 irlwinning.com. 21600 IN A 1.1.1.112 irlwinning.com. 21600 IN A 1.1.1.113 irlwinning.com. 21600 IN A 1.1.1.114 irlwinning.com. 21600 IN A 1.1.1.115 irlwinning.com. 21600 IN A 1.1.1.116 irlwinning.com. 21600 IN A 1.1.1.117 irlwinning.com. 21600 IN A 1.1.1.118 irlwinning.com. 21600 IN A 1.1.1.119 irlwinning.com. 21600 IN A 1.1.1.120 irlwinning.com. 21600 IN A 1.1.1.121 irlwinning.com. 21600 IN A 1.1.1.122 irlwinning.com. 21600 IN A 1.1.1.123 irlwinning.com. 21600 IN A 1.1.1.124 irlwinning.com. 21600 IN A 1.1.1.125 irlwinning.com. 21600 IN A 1.1.1.126 irlwinning.com. 21600 IN A 1.1.1.127 irlwinning.com. 21600 IN A 1.1.1.128 irlwinning.com. 21600 IN A 1.1.1.129 irlwinning.com. 21600 IN A 1.1.1.130 irlwinning.com. 21600 IN A 1.1.1.131 irlwinning.com. 21600 IN A 1.1.1.132 irlwinning.com. 21600 IN A 1.1.1.133 irlwinning.com. 21600 IN A 1.1.1.134 irlwinning.com. 21600 IN A 1.1.1.135 irlwinning.com. 21600 IN A 1.1.1.136 irlwinning.com. 21600 IN A 1.1.1.137 irlwinning.com. 21600 IN A 1.1.1.138 irlwinning.com. 21600 IN A 1.1.1.139 irlwinning.com. 21600 IN A 1.1.1.140 irlwinning.com. 21600 IN A 1.1.1.141 irlwinning.com. 21600 IN A 1.1.1.142 irlwinning.com. 21600 IN A 1.1.1.143 irlwinning.com. 21600 IN A 1.1.1.144 irlwinning.com. 21600 IN A 1.1.1.145 irlwinning.com. 21600 IN A 1.1.1.146 irlwinning.com. 900 IN SOA ns1.irlwinning.com. packets.irlwinning.com. 2013230901 900 900 900 900 ;; ADDITIONAL SECTION: ns1.irlwinning.com. 20371 IN A 94.102.56.150 ns2.irlwinning.com. 20371 IN A 94.102.56.150 ;; Query time: 16 msec ;; SERVER: ::1#53(::1) ;; WHEN: Mon Oct 7 13:04:20 2013 ;; MSG SIZE rcvd: 4000
$ whois 94.102.56.150 # # ARIN WHOIS data and services are subject to the Terms of Use # available at: https://www.arin.net/whois_tou.html # # # Query terms are ambiguous. The query is assumed to be: # "n 94.102.56.150" # # Use "?" to get help. # # # The following results may also be obtained via: # http://whois.arin.net/rest/nets;q=94.102.56.150?showDetails=true&showARIN=false&ext=netref2 # NetRange: 94.0.0.0 - 94.255.255.255 CIDR: 94.0.0.0/8 OriginAS: NetName: 94-RIPE NetHandle: NET-94-0-0-0-1 Parent: NetType: Allocated to RIPE NCC Comment: These addresses have been further assigned to users in Comment: the RIPE NCC region. Contact information can be found in Comment: the RIPE database at http://www.ripe.net/whois RegDate: 2007-07-30 Updated: 2009-05-18 Ref: http://whois.arin.net/rest/net/NET-94-0-0-0-1 OrgName: RIPE Network Coordination Centre OrgId: RIPE Address: P.O. Box 10096 City: Amsterdam StateProv: PostalCode: 1001EB Country: NL RegDate: Updated: 2013-07-29 Ref: http://whois.arin.net/rest/org/RIPE ReferralServer: whois://whois.ripe.net:43 OrgAbuseHandle: ABUSE3850-ARIN OrgAbuseName: Abuse Contact OrgAbusePhone: +31205354444 OrgAbuseEmail: abuse@ripe.net OrgAbuseRef: http://whois.arin.net/rest/poc/ABUSE3850-ARIN OrgTechHandle: RNO29-ARIN OrgTechName: RIPE NCC Operations OrgTechPhone: +31 20 535 4444 OrgTechEmail: hostmaster@ripe.net OrgTechRef: http://whois.arin.net/rest/poc/RNO29-ARIN # # ARIN WHOIS data and services are subject to the Terms of Use # available at: https://www.arin.net/whois_tou.html # % This is the RIPE Database query service. % The objects are in RPSL format. % % The RIPE Database is subject to Terms and Conditions. % See http://www.ripe.net/db/support/db-terms-conditions.pdf % Note: this output has been filtered. % To receive output for a database update, use the "-B" flag. % Information related to '94.102.56.0 - 94.102.56.255' inetnum: 94.102.56.0 - 94.102.56.255 netname: NL-ECATEL descr: AS29073, Ecatel LTD country: NL admin-c: EL25-RIPE tech-c: EL25-RIPE status: ASSIGNED PA mnt-by: ECATEL-MNT mnt-lower: ECATEL-MNT mnt-routes: ECATEL-MNT source: RIPE # Filtered role: Ecatel LTD address: P.O.Box 19533 address: 2521 CA The Hague address: Netherlands abuse-mailbox: abuse@ecatel.info remarks: ---------------------------------------------------- remarks: ECATEL LTD remarks: Dedicated and Co-location hosting services remarks: ---------------------------------------------------- remarks: for abuse complaints : abuse@ecatel.info remarks: for any other questions : info@ecatel.info remarks: ---------------------------------------------------- admin-c: EL25-RIPE tech-c: EL25-RIPE nic-hdl: EL25-RIPE mnt-by: ECATEL-MNT source: RIPE # Filtered % Information related to '94.102.48.0/20AS29073' route: 94.102.48.0/20 descr: AS29073 Route object origin: AS29073 mnt-by: ECATEL-MNT source: RIPE # Filtered % This query was served by the RIPE Database Query Service version 1.69 (WHOIS3)
DNSアンプ攻撃観測 4
sandia.gov と sema.cz がセキュリティ意識が高くて DNSSEC を使っているおかげで大変なことになっている.まだ攻撃に使われた形跡はない.
$ dig Sandia.gov any ;; Truncated, retrying in TCP mode. ; <<>> DiG 9.8.1-P1 <<>> Sandia.gov any ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 11505 ;; flags: qr rd ra; QUERY: 1, ANSWER: 24, AUTHORITY: 0, ADDITIONAL: 6 ;; QUESTION SECTION: ;Sandia.gov. IN ANY ;; ANSWER SECTION: Sandia.gov. 3472 IN SOA taurus.Sandia.gov. dnsadmin.Sandia.gov. 449996 1800 900 604800 3600 Sandia.gov. 3472 IN RRSIG SOA 7 2 3600 20131102235002 20131003225002 30602 sandia.gov. EmxyiE9dfwkVCL/GM3r1uFz45YCx5w9UW8esR0su2vT4OCGYKVuuEseu JtUfV3UNm5L8I9O5uJWfMXHeZei3F632eXG7zKVlT9Y2RrDQXcNADbV+ 4JYdFsr5J4EUjGbXq33D8iThZIoQ8RQIdhODszBDXcExhfn4lOjIxS+K YCKTFpO3/S6mHH9c2FL4x//Yukt+eTmxKF6br/5l/MLxr8X7mdF7ckhC bxXWGjfT7ooTz7rIdJnr07C31CxQKDpZPQgt+rinm6w92xlKrWB1F/pH 5xORExb7k9OaqOWMz+PgwQX+a9872zO87qR4iOmWqXGSEj/QtbvRrFOA 6AZviQ== Sandia.gov. 3472 IN NS ns8.Sandia.gov. Sandia.gov. 3472 IN NS ns2.ca.Sandia.gov. Sandia.gov. 3472 IN NS ns1.ca.Sandia.gov. Sandia.gov. 3472 IN NS ns9.Sandia.gov. Sandia.gov. 3472 IN RRSIG NS 7 2 3600 20131102090234 20131003090234 30602 sandia.gov. 0wPMa1i72vM+yrcyXkfwql8KH2Hd+Nctdey0mFAUkckDNm+NpuF4pBP8 Yk0Vj65C60tQ/cJqrdVSAlkDue61x3x4AUbxB8rzUrbl2KJsWX1u5gxi qfSlHUg7+oBtccX8REGwLdBNntYhDCzkIEpKaTjIv9v35Wt3lMX/DUtH ItKUjf0o6azTsYXo/8lZogftQlluWRfn0hc0qcObjHHgkRW35JQI3VKv HEGa0Paxi++s+RXjljNP2iOTH33/OmG4GuQC9o6VPlnI8EmC8FZtzkW5 Y4+Xy6DQesdxlJjm9XKJnZjvB+RwaB4PzNozLkgJVfER7CYCSJgXwIHq CuMrog== Sandia.gov. 3472 IN A 132.175.81.4 Sandia.gov. 3472 IN RRSIG A 7 2 3600 20131102090234 20131003090234 30602 sandia.gov. 5q/Ocao/toVG/aZLKsxJIVUzJ0nUXDFHNRqXQ9bFzq4igjUhPit+2kW3 X1r+u+3tnwDWZkIMyqFmMsGcbNwCkS+PqchZbNAvdMEzC1v5P5ZmSjbP S03OSaQ5kkY1X0a3Qremsa+oa2M8WYbCa73pK2Et/7co5UHTQzjs/KQ3 W1uBSyEAVKgG0FWf+oTTKiKpxEelLVVhAVMbQbBdPxs77Nl2DTcUaBDL e9qiH1CHne8oMVODe2aMPVuu0Qjr82LI5/DcA/QY05ncjveocNjdwaFR Ih5qpduXLfra9GtqbGcQfyIa84/9FwnJvVX0AbWUcgnJ4NDkw+uEbqQS uO7ClA== Sandia.gov. 1200 IN MX 10 sentry-two.Sandia.gov. Sandia.gov. 1200 IN MX 10 sentry-three.Sandia.gov. Sandia.gov. 1200 IN MX 30 hubble.ca.Sandia.gov. Sandia.gov. 1200 IN RRSIG MX 7 2 1200 20131102090234 20131003090234 30602 sandia.gov. FIWolkIWPF+0WvHXm0aDoeMaeNsUdJ3ohg/0ZQrOTzqKJOFM6Mhg9gRG bi2zgwpzD2lRScxtx0mkWGnMLYmCWqUgkWc3xTM6fAh3fJ4rkAfIoISJ vDathKLlx5nWIBTVhg8RPwVpFim9SfUPN9ERrcn8cX5dp/sNTLtUb4oH 5vpvN0JHCdSwuhTfK7swz302Ocaol5cfj9NWb5f+qFiCBIeRuE4KQijf lCryr3h8HUA9n8hsWjk/zbR+A/FhOxJTxcFN5gTHWg0F+FPFXntYUNK4 63XIJ/dI6gef+CO++9ukSsGVuM7uL5c5sNtAjj5UyLZ+tRQM5Dnz3p9M pwwkwQ== Sandia.gov. 3472 IN TXT "v=spf1 mx ip4:132.175.109.20 ip4:132.175.109.21 ip4:132.175.109.1 ip4:132.175.109.4 ~all" Sandia.gov. 3472 IN RRSIG TXT 7 2 3600 20131102090234 20131003090234 30602 sandia.gov. ouohX+BvaXUOP9vGw3Ca6x0kocB4qzrybNhIBwp5sxfsMCo3HkPHsi9Y tHPPoYsfoaV1Po0zO8udJ9scuxmH6VXT04Wrh5IqphjPQr58lIgLiv6I M9n1GZhM0+grfOVXKCAQHJwMtMYc73kXat35FQc69F2Sfk4wutARTezR gp/xnDHSwYfH4gzDLeKzCz9HRMTI+LrKuxQoDgBYSy58Vp7FsomwAbqs aTHJOI5NEyLUDfoGAjF9vcpmvrjvnOiPcMDNdMPSdtDErAgLw2R5fsDN 4zUPBUpC58gZt9YfbGTWwOWLle2DNbUNi78crppFpr+EykptUNZmNj8D fCVkfw== Sandia.gov. 3600 IN DNSKEY 257 3 7 AwEAAeWCWZhMfUwZSU+3Sqqk3OvDCDPw9sBWL7HioNjo8FI90QdbNYRh 6z9Ks2fEoguMRHlTobVbptJ2wlRQPWTyC8qlaWnT82hdj5tpOzNlfuWy wRu7Yw+DOBJUT1d1ygwGVl9YbNl2gw4JCbVjqyZl2SogXAXWJecQKrJZ gToYW/hkoTUWEnW80j60wwXyeBR6TExVNTsuimV4vNas1nDqKd3jf8fS pszH5CFR/Ytw29f4qaZRxGfgtQf05AwMLrKNfiHXjRnhQ/Wc4irjW4o6 J07xJumdVm2edvevOwPc5HvoTcHKueBn+8cyq7FDc0pwutB190FV8WU6 XTTQMJQpOAE= Sandia.gov. 3600 IN DNSKEY 256 3 7 AwEAAZ0oH+W7xJXP7f/O7J25tQQEG9xqj6LecK9pESLccr0MwEO+Xha9 4qMClFvQ8uCjogyPuFizBNk0s0WjOa+XyBVzhZg2djpqARmq8VmPMXEx GpkDgkP1ukdoTESrc1XC+Sbi0uE8tRGmu+eus4n3Yk/+tS9L3ka3daOZ CJuaCV0Om9XTnDP+m8ElUdHju0RUFN63hKdx++/7PNzTw6prj2ddeKW6 Zao3naBvYsGbfzKpAd1d7NDK29QYh+MFUe1s3ccBhTmgvCiRjsl1LAAQ jaZ9KZYOPT0JJZQ9Qtlxmj6enQtdIPOYzyjALkIv193dXlE+G0S5Arr9 fjMaf7lEyNc= Sandia.gov. 3600 IN DNSKEY 256 3 7 AwEAAfaaLgwMLLou2EXeq0lw3dHUos46XgWEGczA2xz1r2RttO8ATyrR gx4rW+MaIyLLO5es0Et8Fum5qRHa9uwAqkrF5mNC2o05HyA4lv8zr9Px Q6xWDBlvkQMSBVmfgyMT0hLBt4wwrKycYsDEpxJFuQcZih8lZaInSRG2 RNZL7ThwycRawvgKMDWO59giOcU51AWAks8BQN5z/33jvFgbPwYJObV1 CytBZlyDdLlCryOn+xRKZKtF6TTCzOfvlquKcEeqzfhGNn5nUquZWAay klBDYM6NnSjmui2482/KRImoygE8DayJ9aN9BIH5v+ehdegWsRtX/U8m HIA4/E/2//U= Sandia.gov. 3600 IN DNSKEY 257 3 7 AwEAAb80HHQXbrsrmm8L5T1V3QDoXEEDJpts4S6ttkFVOa+fb4anMU3B 7KNK4jgg8sDXMhDfgTWHOc9EEAuy3Obv/6ArD4+385P+EuH5NGLd5f/l Wl8GC9S24mDTpe2sNKi4AHJQxnREuI8Oxr/Mh92W5+HWDdIBt5IKH/nu 9Wlf76Yg3x8jHZYgxVBMgPGF+UYUMQLKAjtJ/XFRObLLL+RQNdNkBqrQ LDkPBxbG1m8rDNa+uCbBiOWGBjZxrjEyQCA/2ZAKQ9lhVFZWuxb8DA3m eiu8sfhWb3tbuZHhCb2HniV43oPKICN4GdIDrHQkZCUOzEMKLSyX98VW QoHdaaOT1is= Sandia.gov. 3600 IN RRSIG DNSKEY 7 2 3600 20131102090234 20131003090234 20739 sandia.gov. IID+aXzkgY0720Qa/9jhpriKqoS49d5PAdATiNaE3j2FO/trKUT3uS91 trZZGtbgO77e+Iyf6qfWSXIqT/KvwEgaGCQsjF4/qlIIW8IQIGNMmXbf TvnQjNBOa4TqhTM4jiDafSJ7yYS9vQfgRJK9cStjzoZ0czbmUbelBQnl 3vr1x4euoHadD/tx/dG1ZPuxjn3kveMK3dsrE3p3qnkXCoxx4YImySzR SnnKG4EltErShGr13bXFBLKC1tMjTowDOMLQPJugAg5bXKBwEWeSFGi0 LFXYpC7D9s7b394ouApSIx6Sgb142YOWdK2FtLYCdJTTs/PAu/l3SXif hMumnQ== Sandia.gov. 3600 IN RRSIG DNSKEY 7 2 3600 20131102090234 20131003090234 30602 sandia.gov. ITeMpSh4Lwz0GGI4LrowGZ2kQ3DJoL0LTKE0L5Edg4NUVB8iRxdjxl+d 1krlfxgMv8YYwQPtav+aQce7jlloyqJon41BFfbZw4eYylDZdgbd3yLP iDy5ZDAJ7qJLkfViBaeMSb3bogLDfxvYeqj4L1M4VQ+OH4e9AEheIwKN y0pKPrbKUnPkm/mbY2dvlOjN94ygPY/GmyAiPIsbfwsJdtStmS8eGa7e ivu5t5eRZCesy1EANhuALpbtOshfug20fgWcgx1nX98WFsVmim6cbwHz 12YgvkjdNUwYTRXNw84y5E0RXUvuBsBhK6FFCiAu+P0qB558F+0510yl 0UfgiQ== Sandia.gov. 3600 IN RRSIG DNSKEY 7 2 3600 20131102090234 20131003090234 36033 sandia.gov. Pdsp5PMvbAkjMsc+ybTVu2fOXSz29Cg41mGGw0b7gxCQUh1RdkeqATTn T6Qp4pxpNVYuWsPBiogDrT5O0OwUhF/5EQcmWR46HmayZGVHi+o/NjPj olDLBWmPvX/UBrOvLYJyyhZTBx4c6BaBldL7ab6EZWvS0/4X4AxjkYNs H7s+cgVKOmlVq+ACgpG4ot/tFjL0bDl8im6ZtBDODvDhsVw6O7GtykOo /+3JgDOZg9lIaSelbLYA6v3kXlIBnrXAUS5bDN+mO0NSLu38/K+VCw/n MusyK//MNF4windXS/8RsaLSfqLdg9it+dI50ZNy7We0z29oYe7zqxIw fi1eYw== Sandia.gov. 3600 IN NSEC3PARAM 1 0 2 7F9416 Sandia.gov. 3600 IN RRSIG NSEC3PARAM 7 2 0 20131102090234 20131003090234 30602 sandia.gov. gWhJlIWH/M+rZ/F4R5kL25BnLvvXHwihqw65MPKu6Ty0J3o+DP1pC5tE 3N3ghpAFi2C1yTvsjVZhdTyQYnID0s2haolyqWKkkqsXoVYzmpb0TLjW mgGe25eH6ZQC4MNpfVGmLOSI+1EuNq+/W1DsOAESM0hlEfCPdOmkvJa3 lf6wYW3pz0moCF9F2xmWKtgjEEb4L126uVCaaIuBPT5EfTNqg6xWs80I RPpbRBJrzohcrvzyOgYkLd21W9Qo4cS5C7DQ9u4P1ImaLuf0JfLvCrtL FdyvgNDUWUhhew3dZIMffSa+qH8N/64/yLIDChxTgUpWeMbBfA3MJiEC 5emlZQ== ;; ADDITIONAL SECTION: ns8.Sandia.gov. 2978 IN A 132.175.7.209 ns8.Sandia.gov. 3472 IN AAAA 2620:106:6008:7::209 ns9.Sandia.gov. 2977 IN A 132.175.7.210 ns9.Sandia.gov. 3472 IN AAAA 2620:106:6008:7::210 sentry-two.Sandia.gov. 3472 IN A 132.175.109.14 sentry-three.Sandia.gov. 3472 IN A 132.175.109.17 ;; Query time: 0 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: Fri Oct 4 21:08:38 2013 ;; MSG SIZE rcvd: 4279
$ dig sema.cz any ;; Truncated, retrying in TCP mode. ; <<>> DiG 9.8.1-P1 <<>> sema.cz any ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 15276 ;; flags: qr rd ra; QUERY: 1, ANSWER: 16, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;sema.cz. IN ANY ;; ANSWER SECTION: sema.cz. 1800 IN SOA ns.gransy.com. root.gransy.com. 2013092015 86400 900 1209600 1800 sema.cz. 1800 IN RRSIG SOA 7 2 1800 20140920015233 20130920015233 56890 sema.cz. gEKAYBdXxvB7d5yFDpwQG4dWlKGcPXuRfaDrKeszGdAj8+kBzARDhMKK 9KRr82TsencgMTq2jeGhwn62yD6zB2koS0+pBt8Po2LIc3E4RrufxnCy 7cdBXW3xywvXbu0zkY0sPvjFBzpdYDCORBZv+Xfyl3ntuttS5N0kTAyZ 2Ict7yS4YBU10QNFfgWrVX7N3fbftEF9bdbeSgPjuMNKMwY0oFZ4SQbI eTson8mQ9AO6MjdPCkoKmsVFpCGcZOhj6U84Gf5o4NShaC7oOR2/7nZo V56iVreMb0QWdQDgbw9sCI+ART6c5/k0fK1KtfvNb7MlhlGr4wWyt403 B2ZzSXtTV+OAzB/ZA4Hkk7uskCR5tOHVcoF8tZHr5Au4NkDjSIJbjqjx W64zoB35ZBRSoR5sbw80A0S2D6vSaEcnEFEboOCZpiQmvpnxvTGyzZU2 jubA6uxyyqwVuNcIPCGS/DTH+gVhjw9W2FdXDqyF3306idjqh9sFuYyk kcG6l9EurIKmh/CertpLGZmky6xNZJwuB8F86K2HRNejqiLZh7B6L7JT ajBNXQvuwgrgsNawB4E8itFyKG/bkMIzgl7jyJFeqR/P755X5E2x9SeF 3RJeEvaRsjaklaLgkT7ZBAVoocUTolwvKqwfFa4Y09QjnAI61LA98TNV KnnmNoSZLrA= sema.cz. 1800 IN NS ns3.gransy.com. sema.cz. 1800 IN NS ns.gransy.com. sema.cz. 1800 IN NS ns2.gransy.com. sema.cz. 1800 IN NS ns4.gransy.com. sema.cz. 1800 IN NS ns5.gransy.com. sema.cz. 1800 IN RRSIG NS 7 2 1800 20140920015233 20130920015233 56890 sema.cz. afZ5GUWIbBF+wccnW7vbXlB749O1fMecV5ADqZXDdgy0R33X++9BSq94 FeKBHbEN9wU6Sygbxx87ii6/T/HRnQv0/Utf4sfeVCuVrt5N3q6luf3b sdxzl+SVuVcTFCHqvDz2QHypvyUzxUAW8tlJ/WpbkbBdwT0stdil98fj PhhWc2kg3ks3DbuP04XRfAIjT5rB5BgxMA70xrLPS05Li2A2QNIKajuR QbTh4l0DZnsOEMBU3F8zzdQ18o65cWYqUOAIVimSyzBYGVz0dyLnO9F+ 8CGKuNh6ERrjm6Q1yNBf2XT/V2EAaecfo3vz2MRg6xAft6G6fbOm5vtd CFvpews9pb0WgYst9siuC6lgrpf8Te2f3K56T+/vkn/yfqdIHJ+0LxHC LfSey+N0zECgTjBFNDU/hFWFBDtria5s41BnzaO8y10pJC7ndfrowkiy KtvA6vaL9iL8YRhrZ+6z78HsgVo9lws8D4XoQ4SoeosOuJEjVAt9fSvZ GHbrVjhszIpuLwJjvqbcEr6khUAqsPVjRRrnIb2GYOrWMx+UAJhaZe+H M2dPeDQWetEZ6QE9ZFxX5WLR1uUWrxULZjmmamyCHxeqqjLr+cpiTJsF rIgR9Ce2FssQEUbY6fDDxbcwx82gvjWe5zXilUDhawlv9NE+f1FnXILF 0+AAEytY+Mc= sema.cz. 1800 IN A 31.31.74.149 sema.cz. 1800 IN RRSIG A 7 2 1800 20140920015233 20130920015233 56890 sema.cz. MNVC2Yu7dJygM0mfO5jWTgr2tNmKmTv/ZBzLcNAMVLtPgvTnBT8/eoGs 6dpn65DdhoVpD09+mam2iCKmEqLh7GT0mR3LE2THh6zi3Fl1ntSRp1/T o/cASqCeC00WQ8O9JUtgiyr96Wts4GmFPhA8djrY3SumKZ+CM1Im4W2r XzrIkduqEBynIQwasuDibHVPWC+aY+FUjIEB6FV4ac92K48QwujOmvw5 gIZZbfjK3bTqmqm7Ep9gUHRC5GdGL4dABg3aj9ST6CkV3b/cknYc4g2H 7mXPPZucPhym8uYMb6T2FaRZKfQKz2Zeczvl/D8iyEfyAqzdNFqTn47j eAd/v0UrOsGZBtDWpoX2fTvMxLF/4wp7t2tlQOKvpKJgjdJy3OyHGB0T K2XxNmiROGV4JemBl5R2UnAGQyGzIHxVSqszvhQF/c6kppZzhdRCFeCQ Sb7p24Sz6asFd1HRGeZGPLDQ7HXnHiLm9bHZ6ZLLk7Q0386VeB5In7eW +6E09npd26G3urjbEtHiLsioLGECHZDhjVnCm6YwZjqfpN2CzUAfvJTz JbiiDGmvlj7AgFKHhd6vQho6/r9+4I1Mb6E4hXUC07w79nP9D4W4eKib TUO4CDFfrTwvSYpRy4uFtncrml3u9FDH/yGCNdDtvZEFlz09ZVQ1fG7K xCS1TokOsZY= sema.cz. 1800 IN NSEC *.sema.cz. A NS SOA RRSIG NSEC DNSKEY sema.cz. 1800 IN RRSIG NSEC 7 2 1800 20140920015233 20130920015233 56890 sema.cz. AMrRJ8zNJYp6LWqaOWrq/xBqiGMAzzKzyvlTgLzITOIubEGykQX9XPc3 HnPp1h9j3GBnWUEr0R8BhHjLXWXpleh+tnxDUSIbwGxDtKX0Apy6wD/2 Pa2CTXRR8GoNGMM87F+D+Okn2Kyg48bZqioSEcOsrDa+Tt3Oy+vLNCuf P+BdSjcyUYdzZQPqP+VuB7TbOwnuM5UQJ8N4Rc9AzyOy9HKVuIA/Wz2t FO6BWfsb19EcxiTxx0W0fefkC6XZGitUPtjFjU+vspSbw4J3HhOTFuM7 RckKiJ8ey5IUYzzjC9lDKnPJ9uc5MdaJPJ2+Q8au00olhGjx9UKfxTRi 0vpQFd8+B+1j0NnquzubhBKfNoW0vrZPAA55jkKNVO/xBTTmd4iBCpLq Wtbm7S6aMRiFndxRrAlgHr57GNPGUoN1peFqIqF+RMbP4hn8AsGYh46X 6I49Oz/X623xAwscr1s6nE77Fjlw8z59YxhqtRt3b2I+5hctqsFea4t1 uY07UK9a92SnwgeV1vYuQwuqOvl5zUqx8eahi6MkyG3wS6gFrbZjB+5W qiUeaTYNVt7zoxEybdSH92+HtgyYyzOQF5fykGStm3F4wVe7juSjV9oD v0cIG11J/nkOOXxF1XBvVZXC7+uTNwKT8VTyNTzR3idXnyobeIOYgRE2 mbdyp+2YzM8= sema.cz. 1800 IN DNSKEY 256 3 7 BQEAAAAB9QdSKCeptWzBV1tlAFU+AaiSGgU7XaUY6YHgtUQ1ggPvJApl v3N9Xt8vB+z7/FThK4gxzQ3xZ+Y0xZ0sEnQVdl05XTfrrOGjwr6x3Pwx wepWONVZ6FXDb+LhEFx95kYOIjhLnyr5UvOHu9vFOEu1mMENo9gdg00D MBX+tXNBxiHIXzsFUE90QmXBro2GH4EHqTX+4ZVuNCOFhzAnp3h+O7SQ TR8npmdRrmWJvC42uT6ODGEFOnstZ+vJDQnc3ZLvzJvuaXK9pUGJmIQ7 5MEs9xcngf7JXRmW/FqsTph0ZcAXUoad8+Tu43Z0+V1Znf7WtCfODqqj KsKklt7CdY7R6NzEV9b5F//rvG88wZeg+PKXNVbQFFSzyguEsFrvjrTT hdKjyDPfbMRl/vMeoB/dfnB1VP5Ds1zMpqqYqiPPVLBmCjuRC2EalK3t Ph3y9U2xE+A2vytXETew+T+nX9ZG62rS7YnKwsMYrSzUPDTXYgCVwsDM /2Ecl5XEpemOnTvMmQGh7LUuYs/kK2hImPew5ntAQC6jnGr37xC3xtBf kFQN4sV5iSOvZWs5mjP2iEhGEFl5fRqU0Zvck0vOCHBBU0oRj8k4VUpU KSFe2W4iKolj2VS9Jr7S5WIFGFMHUfhyC1j5FVAqSyLBnEKOWper3O+d MQrtWTRl5L1H7v96O/E= sema.cz. 1800 IN DNSKEY 257 3 7 BQEAAAABw0H2Xb7JjIuMMVRD3oqWpoXsriUK4sCT2B0TAc9b6v7K+gEI fhtrQ+LImQ/yY4VLZ1z88RDe48LvV2kA3fjB+4tFJTsgmgxCAg29skRN orVLnb6ztSqZO3FuTYgH3yywEw3W4rTkPfthNhiaMEVXVrFDDU4dGhiJ mvIa9mkaPOkIKeRV4gJqs2YSEIhCKeMxkNNGLn1CIXAiFjVbVDcYFv0n 1bBY2iDUllDIRZapMfoSwJMnHI6VXz3CGjxIfcFcr+BUfVFhobqyV848 n4HJcHKMgErtC8xFmRD++Pq/isLbNs48zDSZQY5jJvD30anwzZnzhWJJ 2ZlirUm6pIazB3a6A7V3c381TsRAyY8suy5pkEriSVs4wSfHkiiwd3Z1 sHCTHgefwyRrArFycXR4bvz9sSFOCjbZfJ4S2RFchQa2D+IJsea+kXa+ LGOi2enMd6Jaq5+WB6dUkgWz+9a0/xqCC2ShywyWeazuoLaaejL8NUDf sGj4TEHfkXX+/BodFl6SicWsQEZuNU44/+pyyFqgDKsHu9t8mDtz/IGR Z/Duj9GKTQ4j953Czkic0thvFwqqd6Xm+C48K1qIB1vWqV4AinXDVf/q jbkPxGP01P+riUs5E0zTEoJOtyTtm/xoV5lTwe2PvhysrtGmcTdyqZXD Z6DQnUgkO7BUjlprbnk= sema.cz. 1800 IN RRSIG DNSKEY 7 2 1800 20140920015233 20130920015233 52247 sema.cz. bSutWVtDlTvcOt8kbf9K9b1ioi2YV3lysC+Z1YqZS99jgAMKoPjJoxV9 O3lKr0yhP2AHLk+8WFj84uFMCipEOU8Tu4NbXhyMnT30MqZMyAK1wefl uE3kcD1+Aqon0XAKUKDDaNbp7EE5B5b14glW20gkLxeYGrD9h6Fa89AF P+xqGlYiyJu4xn8hIYXX3SHzTqg6x1Hxyg7CA5En3zXVKiLjNuDdPzWW 6WFL/HZ25sS7UZf34H3/yjq+M2UNuFN+B0HbliFPBhR4aXtL5XVheAg5 EKSbc/qp9UGGh6ZbvovnkybFQXqqlk6csK+GKqCGCb1vuOCEY1k4iABk kVh6DzBFowjEo9GT5HKJdPxKkxaJR+vubQTIU6dbwPCZx0TyECrULaHF tXDIk7oEdBrXM0V/yy3yuunzhYCUgC/grC4ULvxJdhD37Vv1dzUWo/ds tdQiAcl9fi2QyQqVXvK25TxBd0KlbDBXYhIhTulIKCfjFExHllcdgNaX iTDvviEurV9wbwlGDGSd6qUyPR4RN1IGiCgQPPRDk31R5wep/0JqIu8y IVFRDBgbiS5kxvWiue7MD0v3NmNiYM2E4ZjtD3akVhUi5ryO91BJzQLy ALGyZFK7HEsEidd9P2YTUjW5igvgKM7r2F2HYffvqIQwdO7gGCts+5To MWxJJxY2TlE= sema.cz. 1800 IN RRSIG DNSKEY 7 2 1800 20140920015233 20130920015233 56890 sema.cz. KeDGJMcGR9YKva7xxkgBzUlIel31wb1DxEhpiYOUZAuiuK0gNfeR3GjH i8UgMR38dWjTcs98CB5AzypbJYXTQ9V3OvyL+eFJrEWeiDXjn5OljSQG hWNhL/MjEn75Tg11w0N3BM0BqMKy53FkpxkYI/X5+hB+LL2/S4hw22G7 oM5OnUDWyI9d8mqGbzmxf0KfZwsi0FjCRG8VNMKjyrjk0jeZaM1Fb3/D 4n7wFG1r/c366uhM4hRT6fUlerGB6gi7T4jntm8YEsPlki+OVZaFFA2U O0OBImg0SZm8EyKhChioFORmKp6QfoumTOzGxuryyMAgdbygcEnQqbkC QFwOW1HD0V8Wy+7P0mwtrpUyqOKRF+gbQOICcp4P51WVw2yDpqxr/gO1 2ykHk4vhwMGoyewhrck3hHCR43n0b9LqR04em9W1eZ5v5IHUN+Xx7Ff4 R93hU7n0iSvPB+1rvFzpZElj5Ce93Z3r1qdIm5UC4AhajRUhDxwmnjlJ AIiZdbYMj0oH8huln929SQFwSKnLrmESBV+t3PjrQp1A4z5nM7EdCIwp 6xyjyOLLZe0TuQFms3M350P/RdqHmLCku7Nf9FMSGEnUR9cNRtoX/NCj 7KOob5KsBJYoHXJJhbOM1xWb3x8RptdUugszdfEyxOop2QlN5mOSXY6g odG88jJOgeY= ;; Query time: 0 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: Fri Oct 4 21:29:10 2013 ;; MSG SIZE rcvd: 4587
DNSアンプ攻撃観測 3
zaikapaika.com のレスポンスが短くなってた.
$ dig @8.8.8.8 zaikapaika.com any ; <<>> DiG 9.9.2-P1 <<>> @8.8.8.8 zaikapaika.com any ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 503 ;; flags: qr rd ra; QUERY: 1, ANSWER: 7, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 512 ;; QUESTION SECTION: ;zaikapaika.com. IN ANY ;; ANSWER SECTION: zaikapaika.com. 10087 IN NS a.dns.gandi.net. zaikapaika.com. 10087 IN NS b.dns.gandi.net. zaikapaika.com. 10087 IN NS c.dns.gandi.net. zaikapaika.com. 10087 IN A 217.70.184.38 zaikapaika.com. 10087 IN MX 10 spool.mail.gandi.net. zaikapaika.com. 10087 IN MX 50 fb.mail.gandi.net. zaikapaika.com. 10087 IN SOA a.dns.gandi.net. hostmaster.gandi.net. 1349871047 10800 3600 604800 10800 ;; Query time: 47 msec ;; SERVER: 8.8.8.8#53(8.8.8.8) ;; WHEN: Fri Oct 4 12:15:01 2013 ;; MSG SIZE rcvd: 213
irlwinning.com と pkts.asia は引けなくなってる.
$ dig pkts.asia any ; <<>> DiG 9.9.2-P1 <<>> pkts.asia any ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 24288 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 512 ;; QUESTION SECTION: ;pkts.asia. IN ANY ;; Query time: 46 msec ;; SERVER: 8.8.8.8#53(8.8.8.8) ;; WHEN: Fri Oct 4 12:10:13 2013 ;; MSG SIZE rcvd: 38
$ dig @8.8.8.8 irlwinning.com any ; <<>> DiG 9.9.2-P1 <<>> @8.8.8.8 irlwinning.com any ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 34610 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 512 ;; QUESTION SECTION: ;irlwinning.com. IN ANY ;; Query time: 53 msec ;; SERVER: 8.8.8.8#53(8.8.8.8) ;; WHEN: Fri Oct 4 12:21:41 2013 ;; MSG SIZE rcvd: 43
