`phishpharm.com`

DNSSEC	⚠️ Not signed
A	75.2.103.23^{🇺🇸 Amazon75.2.96.0/20}
		PTR	`a4cb49e867d48f5ad.awsglobalaccelerator.com`
NS	208.91.197.91 ⭐
NS	`ns5.domainmonger.com` ⚠️ Not in zone NS records
		A	162.251.82.122^{🇺🇸 Cloudflare162.251.82.0/24 PDR}
			PTR	`162.251.82.122.reverse.myorderbox.com`
		A	162.251.82.123^{🇺🇸 Cloudflare162.251.82.0/24 PDR}
			PTR	`162.251.82.123.reverse.myorderbox.com`
		A	162.251.82.250^{🇺🇸 Cloudflare162.251.82.0/24 PDR}
			PTR	`162.251.82.250.reverse.myorderbox.com`
		A	162.251.82.251^{🇺🇸 Cloudflare162.251.82.0/24 PDR}
			PTR	`162.251.82.251.reverse.myorderbox.com`
NS	`ns6.domainmonger.com` ⚠️ Not in zone NS records
		A	162.251.82.120^{🇺🇸 Cloudflare162.251.82.0/24 PDR}
			PTR	`162.251.82.120.reverse.myorderbox.com`
		A	162.251.82.121^{🇺🇸 Cloudflare162.251.82.0/24 PDR}
			PTR	`162.251.82.121.reverse.myorderbox.com`
		A	162.251.82.248^{🇺🇸 Cloudflare162.251.82.0/24 PDR}
			PTR	`162.251.82.248.reverse.myorderbox.com`
		A	162.251.82.249^{🇺🇸 Cloudflare162.251.82.0/24 PDR}
			PTR	`162.251.82.249.reverse.myorderbox.com`
NS	`ns7.domainmonger.com` ⚠️ Not in zone NS records
		A	162.251.82.118^{🇺🇸 Cloudflare162.251.82.0/24 PDR}
			PTR	`162.251.82.118.reverse.myorderbox.com`
		A	162.251.82.119^{🇺🇸 Cloudflare162.251.82.0/24 PDR}
			PTR	`162.251.82.119.reverse.myorderbox.com`
		A	162.251.82.246^{🇺🇸 Cloudflare162.251.82.0/24 PDR}
			PTR	`162.251.82.246.reverse.myorderbox.com`
		A	162.251.82.247^{🇺🇸 Cloudflare162.251.82.0/24 PDR}
			PTR	`162.251.82.247.reverse.myorderbox.com`
NS	`ns8.domainmonger.com` ⚠️ Not in zone NS records
		A	162.251.82.124^{🇺🇸 Cloudflare162.251.82.0/24 PDR}
			PTR	`162.251.82.124.reverse.myorderbox.com`
		A	162.251.82.125^{🇺🇸 Cloudflare162.251.82.0/24 PDR}
			PTR	`162.251.82.125.reverse.myorderbox.com`
		A	162.251.82.252^{🇺🇸 Cloudflare162.251.82.0/24 PDR}
			PTR	`162.251.82.252.reverse.myorderbox.com`
		A	162.251.82.253^{🇺🇸 Cloudflare162.251.82.0/24 PDR}
			PTR	`162.251.82.253.reverse.myorderbox.com`
SOA	`208.91.197.91`hostmaster@phishpharm.com serial=1777150906

`com`

	DNSSEC	🔒 Signed (DS record present)
	NS	`a.gtld-servers.net` ⭐
	NS	`b.gtld-servers.net`
	NS	`c.gtld-servers.net`
	NS	`d.gtld-servers.net`
	NS	`e.gtld-servers.net`
	NS	`f.gtld-servers.net`
	NS	`g.gtld-servers.net`
	NS	`h.gtld-servers.net`
	NS	`i.gtld-servers.net`
	NS	`j.gtld-servers.net`
	NS	`k.gtld-servers.net`
	NS	`l.gtld-servers.net`
	NS	`m.gtld-servers.net`
	SOA	`a.gtld-servers.net`nstld@verisign-grs.com serial=1777150856

Same first word

phishpharm.com

DNS History

13 records (6 active, 7 former)

●NS208.91.197.912026-03-27 → 2026-04-25 · 3 obs

○ 2018-01-29 20:11:30
● 2026-03-27 09:49:16
● 2026-04-25 21:01:46

○NS208.91.197.912018-01-29 → 2018-01-29 · 4 obs

○ 2015-06-28 07:35:44
● 2018-01-29 20:11:30
○ 2026-03-27 09:49:16
○ 2026-04-25 21:01:46

●NSns5.domainmonger.com2026-03-27 → 2026-04-25 · 3 obs

○ 2018-01-29 20:11:30
● 2026-03-27 09:49:16
● 2026-04-25 21:01:46

○NSns53.domaincontrol.com2008-03-08 → 2008-03-08 · 3 obs

● 2008-03-08 03:28:24
○ 2015-06-28 07:35:44
○ 2026-04-25 21:01:46

○NSns54.domaincontrol.com2008-03-08 → 2008-03-08 · 3 obs

● 2008-03-08 03:28:24
○ 2015-06-28 07:35:44
○ 2026-04-25 21:01:46

●NSns6.domainmonger.com2026-03-27 → 2026-04-25 · 3 obs

○ 2018-01-29 20:11:30
● 2026-03-27 09:49:16
● 2026-04-25 21:01:46

●NSns7.domainmonger.com2026-03-27 → 2026-04-25 · 3 obs

○ 2018-01-29 20:11:30
● 2026-03-27 09:49:16
● 2026-04-25 21:01:46

●NSns8.domainmonger.com2026-03-27 → 2026-04-25 · 3 obs

○ 2018-01-29 20:11:30
● 2026-03-27 09:49:16
● 2026-04-25 21:01:46

○MXmailstore1.secureserver.net2008-03-08 → 2008-03-08 · 3 obs

● 2008-03-08 03:28:24
○ 2015-06-28 07:35:44
○ 2026-04-25 21:01:46

○MXsmtp.secureserver.net2008-03-08 → 2008-03-08 · 3 obs

● 2008-03-08 03:28:24
○ 2015-06-28 07:35:44
○ 2026-04-25 21:01:46

○A208.91.197.912018-01-29 → 2018-01-29 · 4 obs

○ 2015-06-28 07:35:44
● 2018-01-29 20:11:30
○ 2026-03-27 09:49:16
○ 2026-04-25 21:01:46

○A68.178.232.1002008-03-08 → 2008-03-08 · 3 obs

● 2008-03-08 03:28:24
○ 2015-06-28 07:35:44
○ 2026-04-25 21:01:46

●A75.2.103.232026-03-27 → 2026-04-25 · 3 obs

○ 2018-01-29 20:11:30
● 2026-03-27 09:49:16
● 2026-04-25 21:01:46

🔍 DNS Trace

📋 Delegation Chain

Zone	Nameservers	Glue
com	a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net...	-
phishpharm.com	ns5.domainmonger.com, ns6.domainmonger.com, ns7.domainmonger.com, ns8.domainmonger.com	16 records

✅ Authoritative Response

Server:162.251.82.124

NS records: ns5.domainmonger.com, ns6.domainmonger.com, ns7.domainmonger.com, ns8.domainmonger.com

🔒 DNSSEC Status

⚠️ Insecure (no DNSSEC)

No DS record for phishpharm.com (unsigned zone)

⏱️ Timing

Total: 272ms | Queries: -

📄 Records

Type	Count	Sample Data
A	1	`75.2.103.23`
SOA	1	`208.91.197.91 hostmaster.phishpharm.com`

📌 Glue Records Collected

Total: 16

Out-of-bailiwick: 16 (ns5.domainmonger.com, ns5.domainmonger.com, ns5.domainmonger.com...)

Analysis

IP Addresses

phishpharm.com points to a single IP address: 75.2.103.23.

Other host names such as midastips.com, bajanicho.com, anushreeconstructions.com, mx.risendream.com and favotek.net share IP numbers with phishpharm.com.

Name Servers

phishpharm.com is delegated to five name servers: ns5.domainmonger.com, ns6.domainmonger.com, ns7.domainmonger.com, ns8.domainmonger.com and 208.91.197.91.

At least part of the name servers for phishpharm.com are shared with other domains, for instance nissinbetslot.com, snackwala.com, taxiaustin.com, help-coinbase.expert and dinkydonkeyproducts.com.

these name servers are often used together with the name servers ns1.whois.com, ns2.whois.com, ns3.whois.com, ns4.whois.com, dns1.bigrock.in, dns2.bigrock.in, dns3.bigrock.in and dns4.bigrock.in.

Host names with four IP numbers:

ns5.domainmonger.com points to: 162.251.82.122, 162.251.82.123, 162.251.82.250 and 162.251.82.251.

ns6.domainmonger.com points to: 162.251.82.120, 162.251.82.121, 162.251.82.248 and 162.251.82.249.

ns7.domainmonger.com points to: 162.251.82.118, 162.251.82.119, 162.251.82.246 and 162.251.82.247.

ns8.domainmonger.com points to: 162.251.82.124, 162.251.82.125, 162.251.82.252 and 162.251.82.253.

phishpharm.com - robtex.com

phishpharm.com

com

Same first word

DNS History

🔍 DNS Trace

📋 Delegation Chain

✅ Authoritative Response

🔒 DNSSEC Status

⏱️ Timing

📄 Records

📌 Glue Records Collected

Analysis

IP Addresses

Name Servers

`phishpharm.com`

`com`