Toasted Dolphin

Domain ID: 2123519849_DOMAIN_COM-VRSN
Registrar WHOIS Server: whois.namecheap.com
Registrar URL: http://www.namecheap.com
Updated Date: 2017-05-12T15:08:10.00Z
Creation Date: 2017-05-12T15:08:04.00Z
Registrar Registration Expiration Date: 2018-05-12T15:08:04.00Z
Registrar: NAMECHEAP INC
Registrar IANA ID: 1068
Registrar Abuse Contact Email: abuse@namecheap.com
Registrar Abuse Contact Phone: +1.6613102107
Reseller: NAMECHEAP INC
Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
Domain Status: addPeriod https://icann.org/epp#addPeriod
Registry Registrant ID:
Registrant Name: Botnet Sinkhole
Registrant Organization:
Registrant Street: Botnet Sinkhole
Registrant City: Los Angeles
Registrant State/Province: CA
Registrant Postal Code: 00000
Registrant Country: US
Registrant Phone: +0.00000000000
Registrant Phone Ext:
Registrant Fax:
Registrant Fax Ext:
Registrant Email: BotnetSinkhole@gmail.com

In a centralized botnet, sinkholing is straightforward. The discovery of a C&C (command and control) server makes it possible to redirect DNS requests for that server to a law enforcement computer or other analyzing machine. The specially configured DNS server can simply route the requests of the bots to a faked C&C server, where the requests provide information to researchers about the nature of the botnet. To establish this type of botnet sinkhole, researchers need the cooperation of the owner of the DNS used by the botnet, as well as knowledge of the botnet and its C&C server.

Since there is no C&C server in a decentralized or P2P botnet (peer-to-peer botnet), the researcher has to detect its method of picking up owner commands before any attempt can be made to block or analyze the botnet's communication.

Other methods used to effectively sinkhole botnet DDoS (distributed denial of service) traffic include locally rerouting traffic through changes via Windows updates or to a hosts file.

http://whatis.techtarget.com/definition/botnet-sinkhole