1. tkix の毒

1.1. whois

   Domain Name: TKIX.NET
   Registry Domain ID: 2178693317_DOMAIN_NET-VRSN
   Registrar WHOIS Server: whois.jprs.jp
   Registrar URL: http://jprs.jp/registrar/
   Updated Date: 2020-10-25T09:01:14Z
   Creation Date: 2017-10-25T10:44:18Z
   Registry Expiry Date: 2021-10-25T10:44:18Z
   Registrar: Japan Registry Services Co., Ltd.
   Registrar IANA ID: 1485
   Registrar Abuse Contact Email: gtld-abuse@jprs.jp
   Registrar Abuse Contact Phone: +81.352158457
   Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
   Name Server: FAKE.SPAM18.NET
   Name Server: NS.TKIX.NET
   DNSSEC: unsigned
   URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
>>> Last update of whois database: 2021-05-19T14:53:09Z <<<

1.2. history

$ dig -t ns tkix.net @a.gtld-servers.net

; <<>> DiG 9.16.1-Ubuntu <<>> -t ns tkix.net @a.gtld-servers.net
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 21510
;; flags: qr rd cd; QUERY: 1, ANSWER: 0, AUTHORITY: 2, ADDITIONAL: 3
;; WARNING: recursion requested but not available

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
; NSID: 6e 6e 6e 31 2d 73 66 6f 33 ("nnn1-sfo3")
;; QUESTION SECTION:
;tkix.net.                      IN      NS

;; AUTHORITY SECTION:
tkix.net.               172800  IN      NS      ns.tkix.net.
tkix.net.               172800  IN      NS      fake.spam18.net.

;; ADDITIONAL SECTION:
ns.tkix.net.            172800  IN      A       150.42.6.4
fake.spam18.net.        172800  IN      A       14.192.44.1

;; Query time: 119 msec
;; SERVER: 192.5.6.30#53(192.5.6.30)
;; WHEN: 水  5月 19 23:54:05 JST 2021
;; MSG SIZE  rcvd: 125

1.3. fake.spam18.net の A は偽

fake.spam18.net.        60      IN      A       150.42.6.4

;; AUTHORITY SECTION:
spam18.net.             3600    IN      NS      a.ns.spam18.net.

;; ADDITIONAL SECTION:
a.ns.spam18.net.        3600    IN      A       153.126.134.222

問題はこのレコードを誰が登録したのか。


CategoryDns CategoryWatch CategoryTemplate

MoinQ: watchNS/net/tkix.net (last edited 2022-04-05 11:32:42 by ToshinoriMaeno)