`evil.com`

DNSSEC	⚠️ Not signed
A	66.96.146.129^{🇺🇸 EIG-2987366.96.128.0/18 Endurance International Group, Inc}
		PTR	`129.146.96.66.static.eigbox.net`
NS	`ns1.verio.com` ⭐
		A	66.96.142.149^{🇺🇸 EIG-2987366.96.128.0/18 Endurance International Group, Inc}
			PTR	`149.142.96.66.static.eigbox.net`
NS	`ns2.verio.com`
		A	65.254.254.161^{🇺🇸 EIG-2987365.254.224.0/19 TML Customer}
			PTR	`65-254-254-161.yourhostingaccount.com`
MX	`mx.evil.com` ⭐
		A	66.96.140.158^{🇺🇸 EIG-2987366.96.128.0/18 Endurance International Group, Inc}
			PTR	`158.140.96.66.static.eigbox.net`
		A	66.96.140.159^{🇺🇸 EIG-2987366.96.128.0/18 Endurance International Group, Inc}
			PTR	`159.140.96.66.static.eigbox.net`
TXT	`v=spf1 ip4:66.96.128.0/18 include:websitewelcome.com ?all`
SOA	`ns1.verio.com`dnsadmin@verio.com 2016-11-17 #29

`com`

	DNSSEC	🔒 Signed (DS record present)
	NS	`a.gtld-servers.net` ⭐
	NS	`b.gtld-servers.net`
	NS	`c.gtld-servers.net`
	NS	`d.gtld-servers.net`
	NS	`e.gtld-servers.net`
	NS	`f.gtld-servers.net`
	NS	`g.gtld-servers.net`
	NS	`h.gtld-servers.net`
	NS	`i.gtld-servers.net`
	NS	`j.gtld-servers.net`
	NS	`k.gtld-servers.net`
	NS	`l.gtld-servers.net`
	NS	`m.gtld-servers.net`
	SOA	`a.gtld-servers.net`nstld@verisign-grs.com serial=1776985156

rank #227061 globally
rank #93852 in the tld
⚠️ On DNS blocklist: pro.plus, tif, ultimate
WOT: SAFE (67/100)
📈 Tranco rank: #498,714

Previously MX for

evil.com

www.evil.com

Subdomains

www.evil.com

mx.evil.com

relay.evil.com

c2-server.evil.com

Same first word

evil.lv

evil.ch

evil.us

evil.ltd

evil.dk

evil.domains

evil.pink

evil.ru

evil.wtf

evil.monster

evil.id

evil.academy

evil.net.nz

evil.kiwi

evil.io

evil.cx

evil.fish

evil.lt

evil.computer

evil.camera

evil.ventures

evil.sk

evil.works

evil.hu

evil.com.my

evil.org.ua

evil.onl

evil.media

evil.institute

evil.club

evil.life

evil.bz

evil.re

evil.su

evil.com.pl

evil.news

evil.cl

evil.pk

evil.be

evil.la

evil.co.ua

evil.church

evil.fr

evil.by

evil.at

evil.business

evil.solutions

evil.net.au

evil.tv

evil.community

evil.money

evil.ovh

evil.team

evil.fail

evil.co

evil.international

evil.org

evil.de

evil.today

evil.cat

evil.com.au

evil.ly

evil.tw

evil.so

evil.social

evil.clothing

evil.eu

evil.my

evil.agency

evil.exposed

evil.im

evil.cz

evil.biz

evil.nl

evil.pet

evil.net.pl

evil.me

evil.fi

evil.zone

evil.cn

evil.ca

evil.ie

evil.center

evil.restaurant

evil.pl

evil.cc

evil.is

evil.to

evil.no

evil.com

evil.red

evil.one

Similar names

live.systems

viel.de

live.inc

live.eu

live.trafficmanager.net

ilev.cn

levi.at

ivel.ru

levi.com.ve

live.ms

vile.de

liev.com

live.al

live.org.cn

elvi.co.uk

levi.eu

evli.org

live.sn.cn

live.ph

live.no

live.shopping

live.kr

ilve.fr

viel.at

vile.ee

live.com.br

live.lu

live.nl

live.ir

live.yn.cn

live.direct

elvi.hu

eliv.net

lvie.com.br

live.s3-website-us-east-1.amazonaws.com

leiv.de

live.limited

evli.fi

live.bi

evli.se

live.us.org

live.gr

veil.be

live.capital

ilve.no

vile.com.br

veil.mobi

live.tj.cn

live.mobi

eliv.cz

levi.lol

live.com.de

levi.co.cr

viel.ru

ivel.me

evli.de

ivel.at

live.tg

live.ae

levi.gr

vile.studio

vile.ru

veil.se

levi.mx

levi.com.br

levi.cz

levi.management

levi.lu

live.at

live.gs

vile.co

live.xz.cn

live.gz.cn

live.lt

live.in.th

live.or.jp

vile.net

live.sk

live.marketing

live.co.kr

evli.net

levi.foundation

live.pictures

eliv.nl

elvi.ch

levi.cn

levi.computer

DNS History

11 records (4 active, 7 former)

○NSns1.best.com2008-08-18 → 2008-08-18 · 3 obs

● 2008-08-18 22:12:10
○ 2015-08-01 13:48:38
○ 2026-04-23 23:25:58

○NSns1.secure.net2015-08-01 → 2016-10-11 · 5 obs

○ 2008-08-18 22:12:10
● 2015-08-01 13:48:38
● 2016-10-11 08:04:52
○ 2017-01-04 01:54:12
○ 2026-04-23 23:25:58

●NSns1.verio.com2017-01-04 → 2026-04-23 · 3 obs

○ 2016-10-11 08:04:52
● 2017-01-04 01:54:12
● 2026-04-23 23:25:58

○NSns2.best.com2008-08-18 → 2008-08-18 · 3 obs

● 2008-08-18 22:12:10
○ 2015-08-01 13:48:38
○ 2026-04-23 23:25:58

○NSns2.secure.net2015-08-01 → 2016-10-11 · 5 obs

○ 2008-08-18 22:12:10
● 2015-08-01 13:48:38
● 2016-10-11 08:04:52
○ 2017-01-04 01:54:12
○ 2026-04-23 23:25:58

●NSns2.verio.com2017-01-04 → 2026-04-23 · 3 obs

○ 2016-10-11 08:04:52
● 2017-01-04 01:54:12
● 2026-04-23 23:25:58

○NSns3.best.com2008-08-18 → 2008-08-18 · 3 obs

● 2008-08-18 22:12:10
○ 2015-08-01 13:48:38
○ 2026-04-23 23:25:58

○MXevil.com2008-08-18 → 2016-10-11 · 4 obs

● 2008-08-18 22:12:10
● 2016-10-11 08:04:52
○ 2017-01-04 01:54:12
○ 2026-04-23 23:25:58

●MXmx.evil.com2017-01-04 → 2026-04-23 · 3 obs

○ 2016-10-11 08:04:52
● 2017-01-04 01:54:12
● 2026-04-23 23:25:58

○A192.220.74.1792008-08-18 → 2016-10-11 · 4 obs

● 2008-08-18 22:12:10
● 2016-10-11 08:04:52
○ 2017-01-04 01:54:12
○ 2026-04-23 23:25:58

●A66.96.146.1292017-01-04 → 2026-04-23 · 3 obs

○ 2016-10-11 08:04:52
● 2017-01-04 01:54:12
● 2026-04-23 23:25:58

🔍 DNS Trace

📋 Delegation Chain

Zone	Nameservers	Glue
com	i.gtld-servers.net, h.gtld-servers.net, m.gtld-servers.net, f.gtld-servers.net...	-
evil.com	ns1.verio.com, ns2.verio.com	2 records

✅ Authoritative Response

Server:65.254.254.161

NS records: ns1.verio.com, ns2.verio.com

🔒 DNSSEC Status

⚠️ Insecure (no DNSSEC)

No DS record for evil.com (unsigned zone)

⏱️ Timing

Total: 208ms | Queries: -

📄 Records

Type	Count	Sample Data
A	1	`66.96.146.129`
NS	2	`ns1.verio.com, ns2.verio.com`
MX	1	`mx.evil.com (pri: 30)`
TXT	1	`v=spf1 ip4:66.96.128.0/18 include:websit`
SOA	1	`ns1.verio.com dnsadmin.verio.com`

📌 Glue Records Collected

Total: 2

Out-of-bailiwick: 2 (ns1.verio.com, ns2.verio.com)

Analysis

Hierarchy

evil.com is a parent of www.evil.com, mx.evil.com, relay.evil.com and c2-server.evil.com.

IP Addresses

evil.com points to an IP address: 66.96.146.129.

other host names include whippleware.com, worlddystoniacongress.org, mail.recordboard.com, mail.mail.golfun.net and trantor.com; they share IP numbers with evil.com.

Name Servers

Two name servers ns1.verio.com and ns2.verio.com handle the delegation for evil.com.

evil.com shares the same name server setup as other domains, for instance zumak.net, silentrazor.com, theciderroom.com, wilsonmanagement.com and brianlamprell.com.

evil.com at least partially shares name servers with other domains, for instance africaneastern.com, bassettassoc.com, online-work-order-software.com, interviewvillage.net and binaryprairie.org.

These name servers are commonly used with the following: ns1.yourhostingaccount.com, ns2.yourhostingaccount.com, ns100.apollohosting.com and ns101.apollohosting.com.

Host names with one IP:

ns1.verio.com points to: 66.96.142.149

ns2.verio.com points to: 65.254.254.161

Mail Servers

evil.com is handled by a single mail server, mx.evil.com.

evil.com shares the same mail server setup as other domains such as relay.evil.com, c2-server.evil.com and www.evil.com.

mx.evil.com resolves to two IPs: 66.96.140.158 and 66.96.140.159.

evil.com - robtex.com

evil.com

com

Previously MX for

Subdomains

Same first word

Similar names

DNS History

🔍 DNS Trace

📋 Delegation Chain

✅ Authoritative Response

🔒 DNSSEC Status

⏱️ Timing

📄 Records

📌 Glue Records Collected

Analysis

Hierarchy

IP Addresses

Name Servers

Mail Servers

`evil.com`

`com`