cryptowall.app - robtex.com

cryptowall.app

DNSSEC⚠️ Not signed
A2606:4700:3030::6815:3305πŸ‡ΊπŸ‡Έ Cloudflare2606:4700:3030::/48 , Inc. 101 Townsend Street, San Francisco, California 94107, US βœ“ In HTTPS hints
A2606:4700:3030::ac43:d825πŸ‡ΊπŸ‡Έ Cloudflare2606:4700:3030::/48 , Inc. 101 Townsend Street, San Francisco, California 94107, US βœ“ In HTTPS hints
A104.21.51.5Cloudflare104.21.48.0/20 , Inc. 101 Townsend Street, San Francisco, California 94107, US βœ“ In HTTPS hints
A172.67.216.37πŸ‡ΊπŸ‡Έ Cloudflare172.67.208.0/20 , Inc. 101 Townsend Street, San Francisco, California 94107, US βœ“ In HTTPS hints
NSmark.ns.cloudflare.com ⭐
A2606:4700:58::adf5:3b82πŸ‡ΊπŸ‡Έ Cloudflare2606:4700:50::/44 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRmark.ns.cloudflare.com
A2803:f800:50::6ca2:c182πŸ‡¨πŸ‡· Cloudflare2803:f800:50::/45 LACNIC generated route6 for CloudFlare Latin America S.R.L
PTRmark.ns.cloudflare.com
A2a06:98c1:50::ac40:2182πŸ‡ΊπŸ‡Έ Cloudflare2a06:98c1:50::/45
PTRmark.ns.cloudflare.com
A108.162.193.130πŸ‡ΊπŸ‡Έ Cloudflare108.162.193.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRmark.ns.cloudflare.com
A172.64.33.130πŸ‡ΊπŸ‡Έ Cloudflare172.64.33.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRmark.ns.cloudflare.com
A173.245.59.130πŸ‡ΊπŸ‡Έ Cloudflare173.245.59.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRmark.ns.cloudflare.com
NSrita.ns.cloudflare.com
A2606:4700:50::adf5:3a8cπŸ‡ΊπŸ‡Έ Cloudflare2606:4700:50::/44 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRrita.ns.cloudflare.com
A2803:f800:50::6ca2:c08cπŸ‡¨πŸ‡· Cloudflare2803:f800:50::/45 LACNIC generated route6 for CloudFlare Latin America S.R.L
PTRrita.ns.cloudflare.com
A2a06:98c1:50::ac40:208cπŸ‡ΊπŸ‡Έ Cloudflare2a06:98c1:50::/45
PTRrita.ns.cloudflare.com
A108.162.192.140πŸ‡ΊπŸ‡Έ Cloudflare108.162.192.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRrita.ns.cloudflare.com
A172.64.32.140πŸ‡ΊπŸ‡Έ Cloudflare172.64.32.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRrita.ns.cloudflare.com
A173.245.58.140πŸ‡ΊπŸ‡Έ Cloudflare173.245.58.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRrita.ns.cloudflare.com
MXspool.mail.gandi.net ⭐
A2001:4b98:e00::1πŸ‡«πŸ‡· GANDI-AS2001:4b98::/32 GANDI is an ICANN accredited registrar GANDI is a virtual server provider for more information: Web: http://www.gandi.net
PTRspool.mail.gandi.net
A217.70.178.1πŸ‡«πŸ‡· GANDI-AS217.70.176.0/20 GANDI is an ICANN accredited registrar for more information: Web: http://www.gandi.net
PTRspool.mail.gandi.net
MXfb.mail.gandi.net(50)
A2001:4b98:dc4:8::215πŸ‡«πŸ‡· GANDI-AS2001:4b98::/32 GANDI is an ICANN accredited registrar GANDI is a virtual server provider for more information: Web: http://www.gandi.net
PTRspool6.mail.gandi.net
A2001:4b98:dc4:8::216πŸ‡«πŸ‡· GANDI-AS2001:4b98::/32 GANDI is an ICANN accredited registrar GANDI is a virtual server provider for more information: Web: http://www.gandi.net
PTRspool7.mail.gandi.net
A2001:4b98:dc4:8::217πŸ‡«πŸ‡· GANDI-AS2001:4b98::/32 GANDI is an ICANN accredited registrar GANDI is a virtual server provider for more information: Web: http://www.gandi.net
PTRspool8.mail.gandi.net
A217.70.178.215πŸ‡«πŸ‡· GANDI-AS217.70.176.0/20 GANDI is an ICANN accredited registrar for more information: Web: http://www.gandi.net
PTRspool6.mail.gandi.net
A217.70.178.216πŸ‡«πŸ‡· GANDI-AS217.70.176.0/20 GANDI is an ICANN accredited registrar for more information: Web: http://www.gandi.net
PTRspool7.mail.gandi.net
A217.70.178.217πŸ‡«πŸ‡· GANDI-AS217.70.176.0/20 GANDI is an ICANN accredited registrar for more information: Web: http://www.gandi.net
PTRspool8.mail.gandi.net
TXTgoogle-site-verification=gnvD79d9bOstcCiiWXIE0Ls7i9q9N_3FJGV1cwQBh1g
TXTv=spf1 include:_mailcust.gandi.net ?all
HTTPSHTTP/3, HTTP/2 βœ“ hints match
IPv4 hints104.21.51.5, 172.67.216.37
IPv6 hints2606:4700:3030::6815:3305, 2606:4700:3030::ac43:d825
ECHX25519, HKDF-SHA256 + AES-128-GCM draft, id=3, name=cloudflare-ech.com
SOAmark.ns.cloudflare.comdns@cloudflare.com serial=2398842187

app

DNSSECπŸ”’ Signed (DS record present)
NSns-tld1.charlestonroadregistry.com ⭐
NSns-tld2.charlestonroadregistry.com
NSns-tld3.charlestonroadregistry.com
NSns-tld4.charlestonroadregistry.com
NSns-tld5.charlestonroadregistry.com
SOAns-tld1.charlestonroadregistry.comcloud-dns-hostmaster@google.com serial=101427
⚠️ On DNS blocklist: tif
πŸ”’ HSTS Preload (+subdomains)

Same first word

cryptowall.online
cryptowall.app
cryptowall.net

DNS History

8 records (8 active, 0 former)

NSmark.ns.cloudflare.comrita.ns.cloudflare.comMXfb.mail.gandi.netspool.mail.gandi.netA104.21.51.5172.67.216.372606:4700:3030::6815:33052606:4700:3030::ac43:d825
●NSmark.ns.cloudflare.com2026-03-26 β†’ 2026-04-15 Β· 2 obs
● 2026-03-26 03:37:38
● 2026-04-15 12:05:08
●NSrita.ns.cloudflare.com2026-03-26 β†’ 2026-04-15 Β· 2 obs
● 2026-03-26 03:37:38
● 2026-04-15 12:05:08
●MXfb.mail.gandi.net2026-03-26 β†’ 2026-04-15 Β· 2 obs
● 2026-03-26 03:37:38
● 2026-04-15 12:05:08
●MXspool.mail.gandi.net2026-03-26 β†’ 2026-04-15 Β· 2 obs
● 2026-03-26 03:37:38
● 2026-04-15 12:05:08
●A104.21.51.52026-03-26 β†’ 2026-04-15 Β· 2 obs
● 2026-03-26 03:37:38
● 2026-04-15 12:05:08
●A172.67.216.372026-03-26 β†’ 2026-04-15 Β· 2 obs
● 2026-03-26 03:37:38
● 2026-04-15 12:05:08
●A2606:4700:3030::6815:33052026-03-26 β†’ 2026-04-15 Β· 2 obs
● 2026-03-26 03:37:38
● 2026-04-15 12:05:08
●A2606:4700:3030::ac43:d8252026-03-26 β†’ 2026-04-15 Β· 2 obs
● 2026-03-26 03:37:38
● 2026-04-15 12:05:08

πŸ” DNS Trace

πŸ“‹ Delegation Chain

ZoneNameserversGlue
appns-tld1.charlestonroadregistry.com, ns-tld2.charlestonroadregistry.com, ns-tld3.charlestonroadregistry.com, ns-tld4.charlestonroadregistry.com...-
cryptowall.apprita.ns.cloudflare.com, mark.ns.cloudflare.com-

βœ… Authoritative Response

Server:172.64.32.140

NS records: rita.ns.cloudflare.com, mark.ns.cloudflare.com

πŸ”’ DNSSEC Status

⚠️ Insecure (no DNSSEC)

No DS record for cryptowall.app (unsigned zone)

⏱️ Timing

Total: 752ms | Queries: -

πŸ“„ Records

TypeCountSample Data
A2172.67.216.37, 104.21.51.5
AAAA22606:4700:3030::6815:3305, 2606:4700:3030::ac43:d825
NS2mark.ns.cloudflare.com, rita.ns.cloudflare.com
MX2spool.mail.gandi.net (pri: 10), fb.mail.gandi.net (pri: 50)
TXT2google-site-verification=gnvD79d9bOstcCi, v=spf1 include:_mailcust.gandi.net ?all
HTTPS1{"priority":1,"target":".","alpn":["h3",
SOA1mark.ns.cloudflare.com dns.cloudflare.co

Analysis

IP Addresses

Four IP numbers are pointed to by cryptowall.app: 2606:4700:3030::6815:3305, 2606:4700:3030::ac43:d825, 104.21.51.5 and 172.67.216.37.

other host names including museum.football, 3066ss.com, egyptianfalcon.com, m.kmnq.shop and abnormalstudio.co share IP numbers with cryptowall.app.

Name Servers

cryptowall.app is delegated to two name servers mark.ns.cloudflare.com and rita.ns.cloudflare.com.

cryptowall.app shares the same name server setup as other domains, for instance foodfromtheheart.sg, supremedestiny.in, nodetwo.com, socialflare.de and dtromero.com.

cryptowall.app at least partially shares name servers with other domains, for instance opsstart.org, dl4u.xyz, realadvanceonline.info, touzidailiwang.com and jojorecipes.com.

These name servers are commonly used alongside princess.ns.cloudflare.com and leah.ns.cloudflare.com.

Host names with six IP numbers:

Host name mark.ns.cloudflare.com points to: 2606:4700:58::adf5:3b82, 2803:f800:50::6ca2:c182, 2a06:98c1:50::ac40:2182, 108.162.193.130, 172.64.33.130 and 173.245.59.130.

Host name rita.ns.cloudflare.com points to: 2606:4700:50::adf5:3a8c, 2803:f800:50::6ca2:c08c, 2a06:98c1:50::ac40:208c, 108.162.192.140, 172.64.32.140 and 173.245.58.140.

Mail Servers

Two mail servers handle cryptowall.app: fb.mail.gandi.net and spool.mail.gandi.net.

cryptowall.app shares the same mail server setup as other domains, for instance chateaugaillard01.fr, erp-cs.com, kakou.fr, nediyor.com and babala-costa.com.

cryptowall.app shares at least partially some mail servers with other domains, including bkmtech.com, analogyc.com and drwolff.fr.

Host names with six IPs: fb.mail.gandi.net points to 2001:4b98:dc4:8::215, 2001:4b98:dc4:8::216, 2001:4b98:dc4:8::217, 217.70.178.215, 217.70.178.216 and 217.70.178.217.

Host names with two IPs: spool.mail.gandi.net points to 2001:4b98:e00::1 and 217.70.178.1.