nslookup returns same ip address

Lowyat.NET forums

Lowyat.NET Kopitiam Garage Sales

Lowyat.NET Rules and Regulations FAQ Help Search Members

Welcome Guest ( Log In | Register )

Lowyat.NET -> Software -> Security & Privacy

Bump Topic Add Reply RSS Feed

Outline · [ Standard ] · Linear+

nslookup returns same ip address, MITM?

views

SUSnix99	Mar 31 2016, 02:53 PM, updated 10y ago Show posts by this member only \| IPv6 \| Post #1
New Member Junior Member 44 posts Joined: Oct 2014	Is there a MITM or is this normal? QUOTE C:\windows\system32>nslookup gmail.com Server: UnKnown Address: fe80::1 Non-authoritative answer: Name: gmail.com.WirelessAP Address: 202.71.99.194 C:\windows\system32>nslookup google.com Server: UnKnown Address: fe80::1 Non-authoritative answer: Name: google.com.WirelessAP Address: 202.71.99.194 C:\windows\system32>nslookup lowyat.net Server: UnKnown Address: fe80::1 Non-authoritative answer: Name: lowyat.net.WirelessAP Address: 202.71.99.194 C:\windows\system32>nslookup yahoo.com Server: UnKnown Address: fe80::1 Non-authoritative answer: Name: yahoo.com.WirelessAP Address: 202.71.99.194
Card PM	Report Top Like Quote Reply

akamaru607	Mar 31 2016, 03:04 PM Show posts by this member only \| Post #2
New Member Junior Member 43 posts Joined: Jul 2012	what is ur dns setting? can u try nslookup google.com 8.8.8.8 but definitely somethings is not right since all server return same ip address
Card PM	Report Top Like Quote Reply

abubin	Mar 31 2016, 03:04 PM Show posts by this member only \| Post #3
10k Club All Stars 10,429 posts Joined: Jan 2003	what DNS server are you using? Looks like it is resolved to your localhost 127.0.0.1. So there is a layer of DNS serving in your PC. Could be some sort of antivirus or third party DNS service. It could very well be some rogue software intercepting your DNS resolutions. So they can actually direct you to somewhere else. For eg they can redirect you to a fake maybank2u site and steal your password.
Card PM	Report Top Like Quote Reply

SUSnix99	Mar 31 2016, 03:11 PM Show posts by this member only \| IPv6 \| Post #4
New Member Junior Member 44 posts Joined: Oct 2014	QUOTE(akamaru607 @ Mar 31 2016, 03:04 PM) what is ur dns setting? can u try nslookup google.com 8.8.8.8 but definitely somethings is not right since all server return same ip address QUOTE C:\windows\system32>nslookup google.com 8.8.8.8 Server: google-public-dns-a.google.com Address: 8.8.8.8 Non-authoritative answer: Name: google.com Addresses: 2404:6800:4003:c01::71 74.125.200.139 74.125.200.102 74.125.200.101 74.125.200.113 74.125.200.100 74.125.200.138 I use 8.8.8.8 DNS
Card PM	Report Top Like Quote Reply

mi-g	Mar 31 2016, 03:12 PM Show posts by this member only \| Post #5
Part-time Troll Senior Member 1,501 posts Joined: Oct 2004 From: ISA Detention Room -Port Valdez-	https://forum.lowyat.net/topic/2840467/all
Card PM	Report Top Like Quote Reply

FourZeroFour	Mar 31 2016, 04:23 PM Show posts by this member only \| Post #6
Getting Started Junior Member 176 posts Joined: Apr 2008	The devil is in the ~~details~~ hosts file, most probably
Card PM	Report Top Like Quote Reply

akamaru607	Mar 31 2016, 07:29 PM Show posts by this member only \| Post #7
New Member Junior Member 43 posts Joined: Jul 2012	QUOTE(nix99 @ Mar 31 2016, 03:11 PM) I use 8.8.8.8 DNS u may try flush ur dns ipconfig /flushdns if still can't solve then its either ur host file or affected by some malware because when u do nslookup its not refer to google dns
Card PM	Report Top Like Quote Reply

« Next Oldest · Security & Privacy · Next Newest »

Add Reply Options

Change to:

0.0167sec

0.46

5 queries

GZIP Disabled
Time is now: 21st December 2025 - 12:02 AM

All Rights Reserved © 2002- 2025 Vijandren Ramadass (~unite against racism~)

Removal Request

Powered by Invision Power Board © 2025 IPS, Inc.