evilgroup.com - robtex.com

evilgroup.com

DNSSEC⚠️ Not signed
A3.33.251.168πŸ‡ΊπŸ‡Έ Amazon3.33.240.0/20
PTRaec037177372cc6cd.awsglobalaccelerator.com
A15.197.225.128πŸ‡ΊπŸ‡Έ Amazon15.197.224.0/20
NSns15.domaincontrol.com ⭐
A2603:5:21b0::8πŸ‡ΊπŸ‡Έ GODADDY-DNS2603:5:21b0::/44
PTRns15.domaincontrol.com
A97.74.107.8πŸ‡ΊπŸ‡Έ GODADDY-DNS97.74.106.0/23
PTRns15.domaincontrol.com
NSns16.domaincontrol.com
A2603:5:22b0::8πŸ‡ΊπŸ‡Έ GODADDY-DNS2603:5:22b0::/44
PTRns16.domaincontrol.com
A173.201.75.8πŸ‡ΊπŸ‡Έ GODADDY-DNS173.201.74.0/23
PTRns16.domaincontrol.com
MXsmtp.secureserver.net ⭐
A216.69.141.71πŸ‡ΊπŸ‡Έ AS398101216.69.140.0/22
PTRosplibsmtp01-v01.prod.phx3.secureserver.net
A216.69.141.84πŸ‡ΊπŸ‡Έ AS398101216.69.140.0/22
PTRosplibsmtp02-v01.prod.phx3.secureserver.net
A216.69.141.113πŸ‡ΊπŸ‡Έ AS398101216.69.140.0/22
PTRosplibsmtp03-v01.prod.phx3.secureserver.net
MXmailstore1.secureserver.net(10)
A216.69.141.78πŸ‡ΊπŸ‡Έ AS398101216.69.140.0/22
PTRosplibsmtp01-v02.prod.phx3.secureserver.net
A216.69.141.114πŸ‡ΊπŸ‡Έ AS398101216.69.140.0/22
PTRosplibsmtp03-v02.prod.phx3.secureserver.net
A216.69.141.162πŸ‡ΊπŸ‡Έ AS398101216.69.140.0/22
PTRosplibsmtp02-v02.prod.phx3.secureserver.net
SOAns15.domaincontrol.comdns@jomax.net 2026-01-30 #3

com

DNSSECπŸ”’ Signed (DS record present)
NSa.gtld-servers.net ⭐
NSb.gtld-servers.net
NSc.gtld-servers.net
NSd.gtld-servers.net
NSe.gtld-servers.net
NSf.gtld-servers.net
NSg.gtld-servers.net
NSh.gtld-servers.net
NSi.gtld-servers.net
NSj.gtld-servers.net
NSk.gtld-servers.net
NSl.gtld-servers.net
NSm.gtld-servers.net
SOAa.gtld-servers.netnstld@verisign-grs.com serial=1776003327

Same first word

evilgroup.com

Similar names

grouplive.com
livegroup.md
grupolive.es
livegroup.net
livegroup.ru
livegroup.com
purvigoel.com
livegroup.at
grupolive.com.ar
grouplive.net
groupeivl.com
livegroup.co.za
livegroup.com.au
livegroup.co.jp
grupolive.com
grupovile.com
grupolive.com.br
levigroup.net
groupelvi.com
veligroup.com
vielgroup.com
livegroup.co.uk
livegroup.ca
grupolive.net
livegroup.com.hk

DNS History

15 records (6 active, 9 former)

20162017201820192020202120222023202420252026NSns15.domaincontrol.comns16.domaincontrol.comMXmailstore1.secureserver.netsmtp.secureserver.netA15.197.225.1283.33.251.168184.168.221.65184.168.221.75184.168.221.76184.168.221.83184.168.221.88184.168.221.90184.168.221.9350.63.202.7150.63.202.88
●NSns15.domaincontrol.com2015-05-29 β†’ 2026-04-12 Β· 2 obs
● 2015-05-29 14:20:10
● 2026-04-12 14:16:08
●NSns16.domaincontrol.com2015-05-29 β†’ 2026-04-12 Β· 2 obs
● 2015-05-29 14:20:10
● 2026-04-12 14:16:08
●MXmailstore1.secureserver.net2015-05-29 β†’ 2026-04-12 Β· 5 obs
● 2015-05-29 14:20:10
● 2017-02-12 08:56:54
β—‹ 2018-11-16 20:07:20
● 2026-04-10 12:29:32
● 2026-04-12 14:16:08
●MXsmtp.secureserver.net2015-05-29 β†’ 2026-04-12 Β· 5 obs
● 2015-05-29 14:20:10
● 2017-02-12 08:56:54
β—‹ 2018-11-16 20:07:20
● 2026-04-10 12:29:32
● 2026-04-12 14:16:08
●A15.197.225.1282026-04-10 β†’ 2026-04-12 Β· 3 obs
β—‹ 2018-11-16 20:07:20
● 2026-04-10 12:29:32
● 2026-04-12 14:16:08
β—‹A184.168.221.652018-11-16 β†’ 2018-11-16 Β· 4 obs
β—‹ 2015-05-29 14:20:10
● 2018-11-16 20:07:20
β—‹ 2026-04-10 12:29:32
β—‹ 2026-04-12 14:16:08
β—‹A184.168.221.752018-11-16 β†’ 2018-11-16 Β· 4 obs
β—‹ 2015-05-29 14:20:10
● 2018-11-16 20:07:20
β—‹ 2026-04-10 12:29:32
β—‹ 2026-04-12 14:16:08
β—‹A184.168.221.762018-11-16 β†’ 2018-11-16 Β· 4 obs
β—‹ 2015-05-29 14:20:10
● 2018-11-16 20:07:20
β—‹ 2026-04-10 12:29:32
β—‹ 2026-04-12 14:16:08
β—‹A184.168.221.832018-11-16 β†’ 2018-11-16 Β· 4 obs
β—‹ 2015-05-29 14:20:10
● 2018-11-16 20:07:20
β—‹ 2026-04-10 12:29:32
β—‹ 2026-04-12 14:16:08
β—‹A184.168.221.882018-11-16 β†’ 2018-11-16 Β· 4 obs
β—‹ 2015-05-29 14:20:10
● 2018-11-16 20:07:20
β—‹ 2026-04-10 12:29:32
β—‹ 2026-04-12 14:16:08
β—‹A184.168.221.902015-05-29 β†’ 2018-11-16 Β· 4 obs
● 2015-05-29 14:20:10
● 2018-11-16 20:07:20
β—‹ 2026-04-10 12:29:32
β—‹ 2026-04-12 14:16:08
β—‹A184.168.221.932018-11-16 β†’ 2018-11-16 Β· 4 obs
β—‹ 2015-05-29 14:20:10
● 2018-11-16 20:07:20
β—‹ 2026-04-10 12:29:32
β—‹ 2026-04-12 14:16:08
●A3.33.251.1682026-04-10 β†’ 2026-04-12 Β· 3 obs
β—‹ 2018-11-16 20:07:20
● 2026-04-10 12:29:32
● 2026-04-12 14:16:08
β—‹A50.63.202.712018-11-16 β†’ 2018-11-16 Β· 4 obs
β—‹ 2015-05-29 14:20:10
● 2018-11-16 20:07:20
β—‹ 2026-04-10 12:29:32
β—‹ 2026-04-12 14:16:08
β—‹A50.63.202.882018-11-16 β†’ 2018-11-16 Β· 4 obs
β—‹ 2015-05-29 14:20:10
● 2018-11-16 20:07:20
β—‹ 2026-04-10 12:29:32
β—‹ 2026-04-12 14:16:08

πŸ” DNS Trace

πŸ“‹ Delegation Chain

ZoneNameserversGlue
comg.gtld-servers.net, c.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net...-
evilgroup.comns15.domaincontrol.com, ns16.domaincontrol.com4 records

βœ… Authoritative Response

Server:173.201.75.8

NS records: ns15.domaincontrol.com, ns16.domaincontrol.com

πŸ”’ DNSSEC Status

⚠️ Insecure (no DNSSEC)

No DS record for evilgroup.com (unsigned zone)

⏱️ Timing

Total: 122ms | Queries: -

πŸ“„ Records

TypeCountSample Data
A215.197.225.128, 3.33.251.168
NS2ns15.domaincontrol.com, ns16.domaincontrol.com
MX2mailstore1.secureserver.net (pri: 10), smtp.secureserver.net (pri: 0)
SOA1ns15.domaincontrol.com dns.jomax.net

πŸ“Œ Glue Records Collected

Total: 4

Out-of-bailiwick: 4 (ns15.domaincontrol.com, ns15.domaincontrol.com, ns16.domaincontrol.com...)

Analysis

IP Addresses

evilgroup.com points to two IPs: 3.33.251.168 and 15.197.225.128.

Other host names, for instance allenkw.com, hoppmann.com, lawmarketing.biz, e-comvids.com and wetapus.com share IP numbers with evilgroup.com.

Name Servers

Two name servers ns15.domaincontrol.com and ns16.domaincontrol.com are delegated to evilgroup.com.

evilgroup.com uses the same name server configuration as other domains, such as digitalbizcoach.com, rospins.com, ohnotype.com, angel-breeze.com and kiwibeer.com.

Host names with two IPs:

ns15.domaincontrol.com points to 2603:5:21b0::8 and 97.74.107.8.

ns16.domaincontrol.com points to 2603:5:22b0::8 and 173.201.75.8.

Mail Servers

Two mail servers handle evilgroup.com: mailstore1.secureserver.net and smtp.secureserver.net.

evilgroup.com shares the same mail server setup as other domains, including urbanbog.com, transitpros.us, callinoffer.com, rmbwn.com and weeklyhairstyles.com.

evilgroup.com shares some mail servers with other domains, for instance ute-symanski.de, zaun-sicherheit.com and yorkvillecapitalmanagement.com.

Host names with three IP numbers:

mailstore1.secureserver.net points to 216.69.141.78, 216.69.141.114 and 216.69.141.162; smtp.secureserver.net points to 216.69.141.71, 216.69.141.84 and 216.69.141.113.