plott.co.jp ransomware attack
inactive
ns1.nameserver.ne.jp. 60 IN A 210.239.33.2 ns2.nameserver.ne.jp. 60 IN A 210.239.33.3
1. whois
nameserver.ne.jp. 86400 IN NS ns02.idc.jp. nameserver.ne.jp. 86400 IN NS ns3.nameserver.ne.jp. nameserver.ne.jp. 86400 IN NS ns2.nameserver.ne.jp. nameserver.ne.jp. 86400 IN NS ns1.nameserver.ne.jp. nameserver.ne.jp. 86400 IN NS ns4.nameserver.ne.jp. nameserver.ne.jp. 86400 IN NS ns03.idc.jp. ns03.idc.jp. 86400 IN A 158.205.198.214 ns02.idc.jp. 86400 IN A 64.56.165.91 ns4.nameserver.ne.jp. 86400 IN A 121.83.254.252 ns3.nameserver.ne.jp. 86400 IN A 121.83.254.253 ns2.nameserver.ne.jp. 86400 IN A 210.239.33.3 ns1.nameserver.ne.jp. 86400 IN A 210.239.33.2 ns03.idc.jp. 86400 IN AAAA 2001:d88:a001:8:158:205:198:214 ns02.idc.jp. 86400 IN AAAA 2001:d88:a001:7:64:56:165:91
2. history
$ dig ns ns1.nameserver.ne.jp @210.239.33.2 ;; communications error to 210.239.33.2#53: timed out ;; communications error to 210.239.33.2#53: timed out ;; communications error to 210.239.33.2#53: timed out $ dig ns ns1.nameserver.ne.jp @210.239.33.3 ;; communications error to 210.239.33.3#53: timed out ;; communications error to 210.239.33.3#53: timed out ;; communications error to 210.239.33.3#53: timed out ; <<>> DiG 9.18.12-0ubuntu0.22.04.1-Ubuntu <<>> ns ns1.nameserver.ne.jp @210.239.33.3
ns101.nameserver.ne.jp. 60 IN A 121.83.254.243 $ dig ns beanscoffee.co.jp @121.83.254.243 ; <<>> DiG 9.18.12-0ubuntu0.22.04.1-Ubuntu <<>> ns beanscoffee.co.jp @121.83.254.243 ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 4397 ;; flags: qr aa rd; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 4 ;; WARNING: recursion requested but not available ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ; COOKIE: bdefe65d7a0753a893bdd100648a3d250bcc6c1279be4c46 (good) ;; QUESTION SECTION: ;beanscoffee.co.jp. IN NS ;; ANSWER SECTION: beanscoffee.co.jp. 3600 IN NS ns101.nameserver.ne.jp. beanscoffee.co.jp. 3600 IN NS ns1.nameserver.ne.jp. beanscoffee.co.jp. 3600 IN NS ns2.nameserver.ne.jp. ;; ADDITIONAL SECTION: ns1.nameserver.ne.jp. 60 IN A 210.239.33.2 ns2.nameserver.ne.jp. 60 IN A 210.239.33.3 ns101.nameserver.ne.jp. 60 IN A 121.83.254.243 ;; Query time: 16 msec ;; SERVER: 121.83.254.243#53(121.83.254.243) (UDP) ;; WHEN: Thu Jun 15 07:20:21 JST 2023 ;; MSG SIZE rcvd: 192