phishingmails.de - robtex.com
phishingmails.de
| DNSSEC | โ ๏ธ Not signed | ||||||
| A | 202.61.246.146๐ฆ๐น netcup-AS202.61.244.0/22 | ||||||
| PTR | v220210262663144333.megasrv.de | ||||||
| NS | ns1.resellerinterface.de โญ | ||||||
| A | 2001:67c:1bc::21๐ฆ๐น RCODEZERO-ANYCAST-SEC1-TLD2001:67c:1bc::/48 IPCom-NET Anycast | ||||||
| PTR | ns1.mainns.de | ||||||
| A | 192.174.68.21๐ฆ๐น RCODEZERO-ANYCAST-SEC1-TLD192.174.68.0/24 NICat-anycast-net | ||||||
| PTR | ns1.mainns.de | ||||||
| NS | ns2.resellerinterface.de | ||||||
| A | 2001:67c:10b8::21๐จ๐ญ RCODEZERO-ANYCAST-SEC22001:67c:10b8::/48 IPCOM-anycast-net | ||||||
| PTR | ns2.mainns.eu | ||||||
| A | 176.97.158.21๐ฆ๐น RCODEZERO-ANYCAST-SEC2176.97.158.0/24 NICat-anycast-net | ||||||
| PTR | ns2.mainns.eu | ||||||
| NS | ns3.resellerinterface.de | ||||||
| A | 2001:67c:1bc::20๐ฆ๐น RCODEZERO-ANYCAST-SEC1-TLD2001:67c:1bc::/48 IPCom-NET Anycast | ||||||
| PTR | ns3.mainns.net | ||||||
| A | 192.174.68.20๐ฆ๐น RCODEZERO-ANYCAST-SEC1-TLD192.174.68.0/24 NICat-anycast-net | ||||||
| PTR | ns3.mainns.net | ||||||
| SOA | ns1.resellerinterface.dezoltan\@kovacsnies.googlemail.com serial=1773273600 | ||||||
de
| DNSSEC | ๐ Signed (DS record present) | ||||||
| NS | f.nic.de โญ | ||||||
| NS | a.nic.de | ||||||
| NS | l.de.net โ ๏ธ Not in parent delegation | ||||||
| NS | n.de.net โ ๏ธ Not in parent delegation | ||||||
| NS | s.de.net โ ๏ธ Not in parent delegation | ||||||
| NS | z.nic.de | ||||||
| SOA | f.nic.dedns-operations@denic.de serial=1771291602 | ||||||
DNS History
14 records (4 active, 10 former)
โNSns-de.1and1-dns.biz2015-07-09 โ 2017-01-31 ยท 4 obs
โ 2017-01-31 20:55:08
โ 2026-03-13 22:49:14
โ 2026-03-13 22:49:16
โNSns-de.1and1-dns.com2015-07-09 โ 2017-01-31 ยท 4 obs
โ 2017-01-31 20:55:08
โ 2026-03-13 22:49:14
โ 2026-03-13 22:49:16
โNSns-de.1and1-dns.de2015-07-09 โ 2017-01-31 ยท 4 obs
โ 2017-01-31 20:55:08
โ 2026-03-13 22:49:14
โ 2026-03-13 22:49:16
โNSns-de.1and1-dns.org2015-07-09 โ 2017-01-31 ยท 4 obs
โ 2017-01-31 20:55:08
โ 2026-03-13 22:49:14
โ 2026-03-13 22:49:16
โNSns1.resellerinterface.de2026-03-13 โ 2026-03-13 ยท 3 obs
โ 2026-03-13 22:49:14
โ 2026-03-13 22:49:16
โNSns2.resellerinterface.de2026-03-13 โ 2026-03-13 ยท 3 obs
โ 2026-03-13 22:49:14
โ 2026-03-13 22:49:16
โNSns3.resellerinterface.de2026-03-13 โ 2026-03-13 ยท 3 obs
โ 2026-03-13 22:49:14
โ 2026-03-13 22:49:16
โMXmx00.kundenserver.de2015-07-09 โ 2017-01-31 ยท 4 obs
โ 2017-01-31 20:55:08
โ 2026-03-13 22:49:14
โ 2026-03-13 22:49:16
โMXmx01.kundenserver.de2015-07-09 โ 2017-01-31 ยท 4 obs
โ 2017-01-31 20:55:08
โ 2026-03-13 22:49:14
โ 2026-03-13 22:49:16
โA2001:8d8:100f:f000::27b2016-05-29 โ 2017-01-31 ยท 5 obs
โ 2016-05-29 09:25:04
โ 2017-01-31 20:55:08
โ 2026-03-13 22:49:14
โ 2026-03-13 22:49:16
โA2001:8d8:964:295f:c4fc:87d9:e610:02015-07-09 โ 2016-02-09 ยท 4 obs
โ 2016-02-09 12:14:24
โ 2016-05-29 09:25:04
โ 2026-03-13 22:49:16
โA202.61.246.1462026-03-13 โ 2026-03-13 ยท 3 obs
โ 2026-03-13 22:49:14
โ 2026-03-13 22:49:16
โA212.227.137.1972015-07-09 โ 2016-02-09 ยท 4 obs
โ 2016-02-09 12:14:24
โ 2016-05-29 09:25:04
โ 2026-03-13 22:49:16
โA217.160.0.1462016-05-29 โ 2017-01-31 ยท 5 obs
โ 2016-05-29 09:25:04
โ 2017-01-31 20:55:08
โ 2026-03-13 22:49:14
โ 2026-03-13 22:49:16
๐ DNS Trace
๐ Delegation Chain
| Zone | Nameservers | Glue |
|---|---|---|
| de | a.nic.de, f.nic.de, z.nic.de | - |
| phishingmails.de | ns2.resellerinterface.de, ns3.resellerinterface.de, ns1.resellerinterface.de | - |
โ Authoritative Response
Server: 176.97.158.21
NS records: ns2.resellerinterface.de, ns3.resellerinterface.de, ns1.resellerinterface.de
๐ DNSSEC Status
โ ๏ธ Insecure (no DNSSEC)
No DS record for phishingmails.de (unsigned zone)
โฑ๏ธ Timing
Total: 665ms | Queries: -
๐ Records
| Type | Count | Sample Data |
|---|---|---|
| A | 1 | 202.61.246.146 |
| NS | 3 | ns1.resellerinterface.de, ns2.resellerinterface.de... |
| SOA | 1 | ns1.resellerinterface.de zoltan\.kovacsn |
Analysis
IP Addresses
phishingmails.de resolves to one IP number: 202.61.246.146.
other host names including mail.byowner.de, chirurg-online.de, mail.conita.de, einstand.de and coveru.de share IP numbers with phishingmails.de.
Name Servers
phishingmails.de is delegated to three name servers ns1.resellerinterface.de, ns2.resellerinterface.de and ns3.resellerinterface.de.
phishingmails.de at least partially shares name servers with other domains, for instance webserviceberlin.de, snut2008.de, leadassemblyofgod.com, 22d.de and vetipedia.net.
Host names with two IP numbers:
ns1.resellerinterface.de points to: 2001:67c:1bc::21 and 192.174.68.21.
ns2.resellerinterface.de points to: 2001:67c:10b8::21 and 176.97.158.21.
ns3.resellerinterface.de points to: 2001:67c:1bc::20 and 192.174.68.20.