`phishingcloud.com`

DNSSEC	⚠️ Not signed
A	43.135.12.150^{🇭🇰 TENCENT-NET-AP-CN43.135.0.0/18 ACEVILLE PTE.LTD. 16 COLLYER QUAY 18-29 INCOME AT RAFFLES}
NS	`ns1.alidns.com` ⭐
		A	2408:4009:501::1^{🇨🇳 Alibaba-Cloud2408:4009:501::/48}
		A	39.96.153.45^{🇨🇳 Alibaba-Cloud39.96.0.0/14 CT BeiJing IDC}
		A	39.96.153.55^{🇨🇳 Alibaba-Cloud39.96.0.0/14 CT BeiJing IDC}
		A	47.118.199.205^{🇨🇳 Alibaba-Cloud47.118.128.0/17 Alibaba (US) Technology Co., Ltd.}
		A	47.118.199.215^{🇨🇳 Alibaba-Cloud47.118.128.0/17 Alibaba (US) Technology Co., Ltd.}
		A	120.76.107.45^{🇨🇳 Alibaba-Cloud120.76.0.0/17}
		A	120.76.107.55^{🇨🇳 Alibaba-Cloud120.76.0.0/17}
		A	139.224.142.115^{🇨🇳 Alibaba-Cloud139.224.128.0/17 China Internet Network Information Center Floor1, Building No.1 C/-Chinese Academy of Sciences 4, South 4th Street Haidian District,}
		A	139.224.142.125^{🇨🇳 Alibaba-Cloud139.224.128.0/17 China Internet Network Information Center Floor1, Building No.1 C/-Chinese Academy of Sciences 4, South 4th Street Haidian District,}
NS	`dns27.hichina.com`
		A	2408:4009:501::35^{🇨🇳 Alibaba-Cloud2408:4009:501::/48}
		A	39.96.153.39^{🇨🇳 Alibaba-Cloud39.96.0.0/14 CT BeiJing IDC}
		A	39.96.153.59^{🇨🇳 Alibaba-Cloud39.96.0.0/14 CT BeiJing IDC}
		A	47.118.199.199^{🇨🇳 Alibaba-Cloud47.118.128.0/17 Alibaba (US) Technology Co., Ltd.}
		A	47.118.199.219^{🇨🇳 Alibaba-Cloud47.118.128.0/17 Alibaba (US) Technology Co., Ltd.}
		A	120.76.107.39^{🇨🇳 Alibaba-Cloud120.76.0.0/17}
		A	120.76.107.59^{🇨🇳 Alibaba-Cloud120.76.0.0/17}
		A	139.224.142.99^{🇨🇳 Alibaba-Cloud139.224.128.0/17 China Internet Network Information Center Floor1, Building No.1 C/-Chinese Academy of Sciences 4, South 4th Street Haidian District,}
		A	139.224.142.109^{🇨🇳 Alibaba-Cloud139.224.128.0/17 China Internet Network Information Center Floor1, Building No.1 C/-Chinese Academy of Sciences 4, South 4th Street Haidian District,}
NS	`dns28.hichina.com`
		A	2408:4009:501::36^{🇨🇳 Alibaba-Cloud2408:4009:501::/48}
		A	39.96.153.37^{🇨🇳 Alibaba-Cloud39.96.0.0/14 CT BeiJing IDC}
		A	39.96.153.62^{🇨🇳 Alibaba-Cloud39.96.0.0/14 CT BeiJing IDC}
		A	47.118.199.197^{🇨🇳 Alibaba-Cloud47.118.128.0/17 Alibaba (US) Technology Co., Ltd.}
		A	47.118.199.221^{🇨🇳 Alibaba-Cloud47.118.128.0/17 Alibaba (US) Technology Co., Ltd.}
		A	120.76.107.37^{🇨🇳 Alibaba-Cloud120.76.0.0/17}
		A	120.76.107.62^{🇨🇳 Alibaba-Cloud120.76.0.0/17}
		A	139.224.142.102^{🇨🇳 Alibaba-Cloud139.224.128.0/17 China Internet Network Information Center Floor1, Building No.1 C/-Chinese Academy of Sciences 4, South 4th Street Haidian District,}
		A	139.224.142.107^{🇨🇳 Alibaba-Cloud139.224.128.0/17 China Internet Network Information Center Floor1, Building No.1 C/-Chinese Academy of Sciences 4, South 4th Street Haidian District,}
MX	`mx.phishingcloud.com` ⭐
		A	103.39.220.211^{🇨🇳 CHINANET-Guangdong-ShenZhen-IDC103.39.208.0/20 Shenzhen Qianhai bird cloud computing Co. Ltd. -SZIDC-BGP}
			PTR	`mail.phishingcloud.com`
TXT	`v=spf1 ip4:103.39.220.211 ~all`
SOA	`ns1.alidns.com`hostmaster@hichina.com 2026-01-09 #13

`com`

	DNSSEC	🔒 Signed (DS record present)
	NS	`a.gtld-servers.net` ⭐
	NS	`b.gtld-servers.net`
	NS	`c.gtld-servers.net`
	NS	`d.gtld-servers.net`
	NS	`e.gtld-servers.net`
	NS	`f.gtld-servers.net`
	NS	`g.gtld-servers.net`
	NS	`h.gtld-servers.net`
	NS	`i.gtld-servers.net`
	NS	`j.gtld-servers.net`
	NS	`k.gtld-servers.net`
	NS	`l.gtld-servers.net`
	NS	`m.gtld-servers.net`
	SOA	`a.gtld-servers.net`nstld@verisign-grs.com serial=1777344181

⚠️ On DNS blocklist: tif

Subdomains

mx.phishingcloud.com

mail.phishingcloud.com

Same first word

phishingcloud.com

DNS History

6 records (5 active, 1 former)

●NSdns27.hichina.com2026-04-22 → 2026-04-28 · 3 obs

○ 2026-03-13 05:29:58
● 2026-04-22 10:37:00
● 2026-04-28 02:57:28

●NSdns28.hichina.com2026-04-22 → 2026-04-28 · 3 obs

○ 2026-03-13 05:29:58
● 2026-04-22 10:37:00
● 2026-04-28 02:57:28

●NSns1.alidns.com2026-03-13 → 2026-04-28 · 2 obs

● 2026-03-13 05:29:58
● 2026-04-28 02:57:28

○NSns2.alidns.com2026-03-13 → 2026-03-13 · 3 obs

● 2026-03-13 05:29:58
○ 2026-04-22 10:37:00
○ 2026-04-28 02:57:28

●MXmx.phishingcloud.com2026-03-13 → 2026-04-28 · 2 obs

● 2026-03-13 05:29:58
● 2026-04-28 02:57:28

●A43.135.12.1502026-03-13 → 2026-04-28 · 2 obs

● 2026-03-13 05:29:58
● 2026-04-28 02:57:28

🔍 DNS Trace

📋 Delegation Chain

Zone	Nameservers	Glue
com	a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net...	-
phishingcloud.com	dns27.hichina.com, dns28.hichina.com	18 records

✅ Authoritative Response

Server:120.76.107.39

NS records: dns27.hichina.com, dns28.hichina.com

🔒 DNSSEC Status

⚠️ Insecure (no DNSSEC)

No DS record for phishingcloud.com (unsigned zone)

⏱️ Timing

Total: 3808ms | Queries: -

📄 Records

Type	Count	Sample Data
A	1	`43.135.12.150`
NS	2	`dns27.hichina.com, dns28.hichina.com`
MX	1	`mx.phishingcloud.com (pri: 5)`
TXT	1	`v=spf1 ip4:103.39.220.211 ~all`
SOA	1	`ns1.alidns.com hostmaster.hichina.com`

📌 Glue Records Collected

Total: 18

Out-of-bailiwick: 18 (dns27.hichina.com, dns27.hichina.com, dns27.hichina.com...)

Analysis

Hierarchy

phishingcloud.com is parent of mx.phishingcloud.com and mail.phishingcloud.com.

IP Addresses

phishingcloud.com resolves to a single IP address: 43.135.12.150.

Name Servers

phishingcloud.com is delegated to three name servers: ns1.alidns.com, dns27.hichina.com and dns28.hichina.com.

phishingcloud.com at least partially shares name servers with other domains, including my510.com, b2l.com.cn, quantongsheng.com, xzlqq.com and weboss.cn.

these name servers are commonly used with ns2.alidns.com, ns7.alidns.com, ns8.alidns.com, expirens3.hichina.com and expirens4.hichina.com.

Host names with nine IP numbers

ns1.alidns.com points to 2408:4009:501::1, 39.96.153.45, 39.96.153.55, 47.118.199.205, 47.118.199.215, 120.76.107.45, 120.76.107.55, 139.224.142.115 and 139.224.142.125.

dns27.hichina.com points to 2408:4009:501::35, 39.96.153.39, 39.96.153.59, 47.118.199.199, 47.118.199.219, 120.76.107.39, 120.76.107.59, 139.224.142.99 and 139.224.142.109.

dns28.hichina.com points to 2408:4009:501::36, 39.96.153.37, 39.96.153.62, 47.118.199.197, 47.118.199.221, 120.76.107.37, 120.76.107.62, 139.224.142.102 and 139.224.142.107.

Mail Servers

phishingcloud.com is handled by a single mail server, mx.phishingcloud.com.

mx.phishingcloud.com points to a single IP: 103.39.220.211.

phishingcloud.com - robtex.com