rootkit.co - dns.ninja

rootkit.co

DNSSEC⚠️ Not signed
A13.248.169.48πŸ‡ΊπŸ‡Έ Amazon13.248.160.0/20
PTRa904c694c05102f30.awsglobalaccelerator.com
A76.223.54.146πŸ‡ΊπŸ‡Έ Amazon76.223.48.0/20
NSns1.afternic.com ⭐
A2603:5:2126::45πŸ‡ΊπŸ‡Έ GODADDY-DNS2603:5:2120::/44
PTRns1.afternic.com
A97.74.98.69πŸ‡ΊπŸ‡Έ GODADDY-DNS97.74.98.0/23
PTRns1.afternic.com
NSns2.afternic.com
A2603:5:2226::45πŸ‡ΊπŸ‡Έ GODADDY-DNS2603:5:2220::/44
PTRns2.afternic.com
A173.201.66.69πŸ‡ΊπŸ‡Έ GODADDY-DNS173.201.66.0/23
PTRns2.afternic.com
NSverification-f6mwz3yrfbsrgianrkzsq6.ns101.verify.hn ⚠️ Not in zone NS records
A13.248.169.48πŸ‡ΊπŸ‡Έ Amazon13.248.160.0/20
PTRa904c694c05102f30.awsglobalaccelerator.com
A76.223.54.146πŸ‡ΊπŸ‡Έ Amazon76.223.48.0/20
PTRa904c694c05102f30.awsglobalaccelerator.com
TXTv=spf1 -all
SOAns1.afternic.comdns@jomax.net serial=1

co

DNSSECπŸ”’ Signed (DS record present)
NSns0.centralnic.net ⭐
NSa.registrydns.co
NSb.registrydns.co
NSc.registrydns.co
NSd.registrydns.co
SOAns0.centralnic.nethostmaster@centralnic.net serial=1759681078

Same first word

rootkit.eu
rootkit.net.cn
rootkit.online
rootkit.it
rootkit.se
rootkit.io
rootkit.org
rootkit.hu
rootkit.me
rootkit.com.cn
rootkit.fr
rootkit.info
rootkit.finance
rootkit.dk
rootkit.ir
rootkit.nl
rootkit.es
rootkit.cc
rootkit.be
rootkit.ca
rootkit.one
rootkit.ru
rootkit.com
rootkit.co
rootkit.pl

Similar names

trikoto.com
irottko.com
tikroot.com
triokto.de
rikotto.nl
otkrito.lv
trikoto.de
ototrik.com
ortokit.com
kitroot.com
rotokit.com
trikoot.net
otkrito.com
tortiko.ru
otkrito.ru
irottko.hu
kotrito.com
kotorit.com

DNS History

33 records (5 active, 28 former)

20162017201820192020202120222023202420252026NSns1.afternic.comns2.afternic.comverification-f6mwz3yrfbsrgianrkzsq6.ns101.verify.hnns1.dyna-ns.netns2.dyna-ns.netns57.domaincontrol.comns58.domaincontrol.comns67.domaincontrol.comns68.domaincontrol.comMXmailstore1.secureserver.netsmtp.secureserver.netA13.248.169.4876.223.54.146184.168.221.2184.168.221.22184.168.221.23184.168.221.27184.168.221.49184.168.221.534.195.60.13950.63.202.150.63.202.1550.63.202.1850.63.202.250.63.202.2850.63.202.3150.63.202.5550.63.202.650.63.202.852.202.24.10652.202.70.60CNAMEpr-co-suspensions.go.coreg-pr-web-suspensionpages-go-co-1680484254.us-east-1.elb.amazonaws.com
●NSns1.afternic.com2026-04-06 β†’ 2026-06-13 Β· 3 obs
β—‹ 2018-10-09 05:18:24
● 2026-04-06 15:22:52
● 2026-06-13 05:39:26
β—‹NSns1.dyna-ns.net2026-04-06 β†’ 2026-06-13 Β· 2 obs
β—‹ 2026-04-06 15:22:52
β—‹ 2026-06-13 05:39:26
●NSns2.afternic.com2026-04-06 β†’ 2026-06-13 Β· 3 obs
β—‹ 2018-10-09 05:18:24
● 2026-04-06 15:22:52
● 2026-06-13 05:39:26
β—‹NSns2.dyna-ns.net2026-04-06 β†’ 2026-06-13 Β· 2 obs
β—‹ 2026-04-06 15:22:52
β—‹ 2026-06-13 05:39:26
β—‹NSns57.domaincontrol.com2016-12-23 β†’ 2018-10-09 Β· 5 obs
β—‹ 2016-04-24 17:51:24
● 2016-12-23 05:48:14
● 2018-10-09 05:18:24
β—‹ 2026-04-06 15:22:52
β—‹ 2026-06-13 05:39:26
β—‹NSns58.domaincontrol.com2016-12-23 β†’ 2018-10-09 Β· 5 obs
β—‹ 2016-04-24 17:51:24
● 2016-12-23 05:48:14
● 2018-10-09 05:18:24
β—‹ 2026-04-06 15:22:52
β—‹ 2026-06-13 05:39:26
β—‹NSns67.domaincontrol.com2015-08-03 β†’ 2016-02-09 Β· 4 obs
● 2015-08-03 07:30:48
● 2016-02-09 13:40:28
β—‹ 2016-04-24 17:51:24
β—‹ 2026-06-13 05:39:26
β—‹NSns68.domaincontrol.com2015-08-03 β†’ 2016-02-09 Β· 4 obs
● 2015-08-03 07:30:48
● 2016-02-09 13:40:28
β—‹ 2016-04-24 17:51:24
β—‹ 2026-06-13 05:39:26
●NSverification-f6mwz3yrfbsrgianrkzsq6.ns101.verify.hn2026-04-06 β†’ 2026-06-13 Β· 3 obs
β—‹ 2018-10-09 05:18:24
● 2026-04-06 15:22:52
● 2026-06-13 05:39:26
β—‹MXmailstore1.secureserver.net2015-08-03 β†’ 2018-10-09 Β· 7 obs
● 2015-08-03 07:30:48
● 2016-02-09 13:40:28
β—‹ 2016-04-24 17:51:24
● 2016-12-23 05:48:14
● 2018-10-09 05:18:24
β—‹ 2026-04-06 15:22:52
β—‹ 2026-06-13 05:39:26
β—‹MXsmtp.secureserver.net2015-08-03 β†’ 2018-10-09 Β· 7 obs
● 2015-08-03 07:30:48
● 2016-02-09 13:40:28
β—‹ 2016-04-24 17:51:24
● 2016-12-23 05:48:14
● 2018-10-09 05:18:24
β—‹ 2026-04-06 15:22:52
β—‹ 2026-06-13 05:39:26
●A13.248.169.482026-04-06 β†’ 2026-06-13 Β· 3 obs
β—‹ 2018-10-09 05:18:24
● 2026-04-06 15:22:52
● 2026-06-13 05:39:26
β—‹A184.168.221.22018-10-09 β†’ 2018-10-09 Β· 4 obs
β—‹ 2017-12-28 23:49:24
● 2018-10-09 05:18:24
β—‹ 2026-04-06 15:22:52
β—‹ 2026-06-13 05:39:26
β—‹A184.168.221.222018-10-09 β†’ 2018-10-09 Β· 4 obs
β—‹ 2017-12-28 23:49:24
● 2018-10-09 05:18:24
β—‹ 2026-04-06 15:22:52
β—‹ 2026-06-13 05:39:26
β—‹A184.168.221.232017-12-28 β†’ 2017-12-28 Β· 4 obs
β—‹ 2016-12-23 05:48:14
● 2017-12-28 23:49:24
β—‹ 2018-10-09 05:18:24
β—‹ 2026-06-13 05:39:26
β—‹A184.168.221.272017-12-28 β†’ 2017-12-28 Β· 4 obs
β—‹ 2016-12-23 05:48:14
● 2017-12-28 23:49:24
β—‹ 2018-10-09 05:18:24
β—‹ 2026-06-13 05:39:26
β—‹A184.168.221.492015-08-03 β†’ 2016-02-09 Β· 4 obs
● 2015-08-03 07:30:48
● 2016-02-09 13:40:28
β—‹ 2016-04-24 17:51:24
β—‹ 2026-06-13 05:39:26
β—‹A184.168.221.52018-10-09 β†’ 2018-10-09 Β· 4 obs
β—‹ 2017-12-28 23:49:24
● 2018-10-09 05:18:24
β—‹ 2026-04-06 15:22:52
β—‹ 2026-06-13 05:39:26
β—‹A34.195.60.1392026-04-06 β†’ 2026-06-13 Β· 2 obs
β—‹ 2026-04-06 15:22:52
β—‹ 2026-06-13 05:39:26
β—‹A50.63.202.12017-12-28 β†’ 2018-10-09 Β· 5 obs
β—‹ 2016-12-23 05:48:14
● 2017-12-28 23:49:24
● 2018-10-09 05:18:24
β—‹ 2026-04-06 15:22:52
β—‹ 2026-06-13 05:39:26
β—‹A50.63.202.152017-12-28 β†’ 2017-12-28 Β· 4 obs
β—‹ 2016-12-23 05:48:14
● 2017-12-28 23:49:24
β—‹ 2018-10-09 05:18:24
β—‹ 2026-06-13 05:39:26
β—‹A50.63.202.182018-10-09 β†’ 2018-10-09 Β· 4 obs
β—‹ 2017-12-28 23:49:24
● 2018-10-09 05:18:24
β—‹ 2026-04-06 15:22:52
β—‹ 2026-06-13 05:39:26
β—‹A50.63.202.22017-12-28 β†’ 2017-12-28 Β· 4 obs
β—‹ 2016-12-23 05:48:14
● 2017-12-28 23:49:24
β—‹ 2018-10-09 05:18:24
β—‹ 2026-06-13 05:39:26
β—‹A50.63.202.282017-12-28 β†’ 2017-12-28 Β· 4 obs
β—‹ 2016-12-23 05:48:14
● 2017-12-28 23:49:24
β—‹ 2018-10-09 05:18:24
β—‹ 2026-06-13 05:39:26
β—‹A50.63.202.312018-10-09 β†’ 2018-10-09 Β· 4 obs
β—‹ 2017-12-28 23:49:24
● 2018-10-09 05:18:24
β—‹ 2026-04-06 15:22:52
β—‹ 2026-06-13 05:39:26
β—‹A50.63.202.552016-12-23 β†’ 2016-12-23 Β· 4 obs
β—‹ 2016-04-24 17:51:24
● 2016-12-23 05:48:14
β—‹ 2017-12-28 23:49:24
β—‹ 2026-06-13 05:39:26
β—‹A50.63.202.62018-10-09 β†’ 2018-10-09 Β· 4 obs
β—‹ 2017-12-28 23:49:24
● 2018-10-09 05:18:24
β—‹ 2026-04-06 15:22:52
β—‹ 2026-06-13 05:39:26
β—‹A50.63.202.82018-10-09 β†’ 2018-10-09 Β· 4 obs
β—‹ 2017-12-28 23:49:24
● 2018-10-09 05:18:24
β—‹ 2026-04-06 15:22:52
β—‹ 2026-06-13 05:39:26
β—‹A52.202.24.1062016-04-24 β†’ 2016-04-24 Β· 4 obs
β—‹ 2016-02-09 13:40:28
● 2016-04-24 17:51:24
β—‹ 2016-12-23 05:48:14
β—‹ 2026-06-13 05:39:26
β—‹A52.202.70.602016-04-24 β†’ 2016-04-24 Β· 4 obs
β—‹ 2016-02-09 13:40:28
● 2016-04-24 17:51:24
β—‹ 2016-12-23 05:48:14
β—‹ 2026-06-13 05:39:26
●A76.223.54.1462026-04-06 β†’ 2026-06-13 Β· 3 obs
β—‹ 2018-10-09 05:18:24
● 2026-04-06 15:22:52
● 2026-06-13 05:39:26
β—‹CNAMEpr-co-suspensions.go.co2016-04-24 β†’ 2016-04-24 Β· 3 obs
● 2016-04-24 17:51:24
β—‹ 2016-12-23 05:48:14
β—‹ 2026-06-13 05:39:26
β—‹CNAMEreg-pr-web-suspensionpages-go-co-1680484254.us-east-1.elb.amazonaws.com2016-04-24 β†’ 2016-04-24 Β· 3 obs
● 2016-04-24 17:51:24
β—‹ 2016-12-23 05:48:14
β—‹ 2026-06-13 05:39:26

πŸ” DNS Trace

πŸ“‹ Delegation Chain

ZoneNameserversGlue
coa.registrydns.co, b.registrydns.co, c.registrydns.co, d.registrydns.co-
rootkit.cons2.afternic.com, verification-f6mwz3yrfbsrgianrkzsq6.ns101.verify.hn, ns1.afternic.com-

βœ… Authoritative Response

Server:173.201.66.69

NS records: ns2.afternic.com, verification-f6mwz3yrfbsrgianrkzsq6.ns101.verify.hn, ns1.afternic.com

πŸ”’ DNSSEC Status

⚠️ Insecure (no DNSSEC)

No DS record for rootkit.co (unsigned zone)

⏱️ Timing

Total: 3129ms | Queries: -

πŸ“„ Records

TypeCountSample Data
A276.223.54.146, 13.248.169.48
NS2ns1.afternic.com, ns2.afternic.com
MX1. (pri: 0)
TXT1v=spf1 -all
SOA1ns2.afternic.com dns.jomax.net

Analysis

IP Addresses

rootkit.co points to two IP numbers: 13.248.169.48 and 76.223.54.146.

prospecta.org, host.negomedia.com, urdibs.com plus two other host names have IP numbers in common with rootkit.co.

Name Servers

rootkit.co is delegated to three name servers: ns1.afternic.com, ns2.afternic.com and verification-f6mwz3yrfbsrgianrkzsq6.ns101.verify.hn.

rootkit.co has at least partial name server overlap with other domains, such as womansure.com, ns1.dinmark.com, www.grantoninstitute.com and two others.

It is common to find these name servers paired with the name servers verification-d3jclucsp89ganyqbydeny.ns101.verify.hn.

ns1.afternic.com, ns2.afternic.com and verification-f6mwz3yrfbsrgianrkzsq6.ns101.verify.hn each resolve to two IP addresses: ns1.afternic.com resolves to 97.74.98.69 and 2603:5:2126::45; ns2.afternic.com resolves to 173.201.66.69 and 2603:5:2226::45; verification-f6mwz3yrfbsrgianrkzsq6.ns101.verify.hn resolves to 13.248.169.48 and 76.223.54.146.