ms12hinet.com - robtex.com
ms12hinet.com
| DNSSEC | β οΈ Not signed | ||||||
| A | 44.244.22.128πΊπΈ Amazon44.224.0.0/11 EC2 PDX prefix | ||||||
| PTR | ec2-44-244-22-128.us-west-2.compute.amazonaws.com | ||||||
| NS | ns4.csof.net β | ||||||
| A | 52.20.19.77πΊπΈ Amazon52.20.0.0/14 EC2 IAD prefix | ||||||
| PTR | ec2-52-20-19-77.compute-1.amazonaws.com | ||||||
| NS | ns1.csof.net | ||||||
| A | 18.205.186.231πΊπΈ Amazon18.204.0.0/14 EC2 IAD prefix | ||||||
| PTR | ec2-18-205-186-231.compute-1.amazonaws.com | ||||||
| NS | ns2.csof.net | ||||||
| A | 23.21.178.27πΊπΈ Amazon23.20.0.0/15 EC2 IAD prefix | ||||||
| PTR | ec2-23-21-178-27.compute-1.amazonaws.com | ||||||
| NS | ns3.csof.net | ||||||
| A | 3.214.185.54πΊπΈ Amazon3.208.0.0/12 EC2 IAD prefix | ||||||
| PTR | ec2-3-214-185-54.compute-1.amazonaws.com | ||||||
| MX | mx1.ms12hinet.com β | ||||||
| A | 46.4.12.146π©πͺ Hetzner46.4.0.0/16 HETZNER-RZ-FKS-BLK3 | ||||||
| PTR | static.146.12.4.46.clients.your-server.de | ||||||
| MX | mx2.ms12hinet.com β | ||||||
| A | 46.4.10.173π©πͺ Hetzner46.4.0.0/16 HETZNER-RZ-FKS-BLK3 | ||||||
| PTR | static.173.10.4.46.clients.your-server.de | ||||||
| TXT | v=spf1 include:_incspfcheck.mailspike.net ?all | ||||||
| SOA | ns4.csof.nethostmaster@ms12hinet.com serial=1776602720 | ||||||
com
| DNSSEC | π Signed (DS record present) | ||||||
| NS | a.gtld-servers.net β | ||||||
| NS | b.gtld-servers.net | ||||||
| NS | c.gtld-servers.net | ||||||
| NS | d.gtld-servers.net | ||||||
| NS | e.gtld-servers.net | ||||||
| NS | f.gtld-servers.net | ||||||
| NS | g.gtld-servers.net | ||||||
| NS | h.gtld-servers.net | ||||||
| NS | i.gtld-servers.net | ||||||
| NS | j.gtld-servers.net | ||||||
| NS | k.gtld-servers.net | ||||||
| NS | l.gtld-servers.net | ||||||
| NS | m.gtld-servers.net | ||||||
| SOA | a.gtld-servers.netnstld@verisign-grs.com serial=1776601537 | ||||||
π¦ Blackbook: Known malware/C&C domain
WOT: SUSPICIOUS (19/100)
Same first word
ms12hinet.com |
π DNS Trace
π Delegation Chain
| Zone | Nameservers | Glue |
|---|---|---|
| com | k.gtld-servers.net, f.gtld-servers.net, i.gtld-servers.net, d.gtld-servers.net... | - |
| ms12hinet.com | ns1.csof.net, ns2.csof.net, ns4.csof.net, ns3.csof.net | - |
β Authoritative Response
Server:3.214.185.54
NS records: ns1.csof.net, ns2.csof.net, ns4.csof.net, ns3.csof.net
π DNSSEC Status
β οΈ Insecure (no DNSSEC)
No DS record for ms12hinet.com (unsigned zone)
β±οΈ Timing
Total: 330ms | Queries: -
π Records
| Type | Count | Sample Data |
|---|---|---|
| A | 1 | 44.244.22.128 |
| NS | 4 | ns4.csof.net, ns2.csof.net... |
| MX | 2 | mx2.ms12hinet.com (pri: 10), mx1.ms12hinet.com (pri: 10) |
| TXT | 1 | v=spf1 include:_incspfcheck.mailspike.ne |
| SOA | 1 | ns4.csof.net hostmaster.ms12hinet.com |
Analysis
IP Addresses
ms12hinet.com resolves to one IP number: 44.244.22.128.
other host names including www.1c0580563c7233db533fc51789fef808.com, 65b4d.cnhkwy.com, www.073ef1d4f2bfe5be15f7a65f3d0819d9.org, 75836.cnhkwy.com and 535aa.cnhkwy.com share IP numbers with ms12hinet.com.
Name Servers
ms12hinet.com is delegated to four name servers: ns1.csof.net, ns2.csof.net, ns3.csof.net and ns4.csof.net.
ms12hinet.com at least partially shares name servers with other domains, for instance ra.mailrover.net, 240b1b2e778a9d40a7266662f993ce23.net, alifmedical.shop, aegieuueueuuruia.ru and brokensoul.ga.
these name servers are often used together with ns5.csof.net, ns6.csof.net, ns7.csof.net and ns8.csof.net.
Host names with one IP number: ns1.csof.net points to 18.205.186.231; ns2.csof.net points to 23.21.178.27; ns3.csof.net points to 3.214.185.54; ns4.csof.net points to 52.20.19.77.
Mail Servers
Two mail servers handle ms12hinet.com: mx1.ms12hinet.com and mx2.ms12hinet.com.
Host names with one IP number:
mx1.ms12hinet.com points to 46.4.12.146
mx2.ms12hinet.com points to 46.4.10.173