suspiciousantwerp.com - robtex.com
suspiciousantwerp.com
com
| DNSSEC | ๐ Signed (DS record present) | ||||||
| NS | a.gtld-servers.net โญ | ||||||
| NS | b.gtld-servers.net | ||||||
| NS | c.gtld-servers.net | ||||||
| NS | d.gtld-servers.net | ||||||
| NS | e.gtld-servers.net | ||||||
| NS | f.gtld-servers.net | ||||||
| NS | g.gtld-servers.net | ||||||
| NS | h.gtld-servers.net | ||||||
| NS | i.gtld-servers.net | ||||||
| NS | j.gtld-servers.net | ||||||
| NS | k.gtld-servers.net | ||||||
| NS | l.gtld-servers.net | ||||||
| NS | m.gtld-servers.net | ||||||
| SOA | a.gtld-servers.netnstld@verisign-grs.com serial=1775935282 | ||||||
Subdomains
www.suspiciousantwerp.com |
Same first word
suspiciousantwerp.com |
DNS History
10 records (8 active, 2 former)
โNSns41.domaincontrol.com2017-01-04 โ 2026-04-11 ยท 2 obs
โ 2026-04-11 19:27:40
โNSns42.domaincontrol.com2017-01-04 โ 2026-04-11 ยท 2 obs
โ 2026-04-11 19:27:40
โMXalt1.aspmx.l.google.com2017-01-04 โ 2026-04-11 ยท 2 obs
โ 2026-04-11 19:27:40
โMXalt2.aspmx.l.google.com2017-01-04 โ 2026-04-11 ยท 2 obs
โ 2026-04-11 19:27:40
โMXaspmx.l.google.com2017-01-04 โ 2026-04-11 ยท 2 obs
โ 2026-04-11 19:27:40
โMXaspmx2.googlemail.com2017-01-04 โ 2026-04-11 ยท 2 obs
โ 2026-04-11 19:27:40
โMXaspmx3.googlemail.com2017-01-04 โ 2026-04-11 ยท 2 obs
โ 2026-04-11 19:27:40
โA184.168.221.432017-01-04 โ 2017-01-04 ยท 3 obs
โ 2020-03-16 01:57:14
โ 2026-04-11 19:27:40
โA23.227.38.322020-03-16 โ 2020-03-16 ยท 4 obs
โ 2020-03-16 01:57:14
โ 2026-03-06 10:10:18
โ 2026-04-11 19:27:40
โA23.227.38.652026-03-06 โ 2026-04-11 ยท 3 obs
โ 2026-03-06 10:10:18
โ 2026-04-11 19:27:40
๐ DNS Trace
๐ Delegation Chain
| Zone | Nameservers | Glue |
|---|---|---|
| com | i.gtld-servers.net, e.gtld-servers.net, g.gtld-servers.net, a.gtld-servers.net... | - |
| suspiciousantwerp.com | ns41.domaincontrol.com, ns42.domaincontrol.com | 4 records |
โ Authoritative Response
Server:173.201.68.21
NS records: ns41.domaincontrol.com, ns42.domaincontrol.com
๐ DNSSEC Status
โ ๏ธ Insecure (no DNSSEC)
No DS record for suspiciousantwerp.com (unsigned zone)
โฑ๏ธ Timing
Total: 171ms | Queries: -
๐ Records
| Type | Count | Sample Data |
|---|---|---|
| A | 1 | 23.227.38.65 |
| NS | 2 | ns41.domaincontrol.com, ns42.domaincontrol.com |
| MX | 5 | aspmx.l.google.com (pri: 1), alt1.aspmx.l.google.com (pri: 5)... |
| TXT | 5 | google-site-verification=rOGl-J4Z0I_SQ2q, v=spf1 include:mailgun.org include:spf.s... |
| SOA | 1 | ns41.domaincontrol.com dns.jomax.net |
๐ Glue Records Collected
Total: 4
Out-of-bailiwick: 4 (ns41.domaincontrol.com, ns41.domaincontrol.com, ns42.domaincontrol.com...)
Analysis
Hierarchy
www.suspiciousantwerp.com has suspiciousantwerp.com as its parent.
IP Addresses
suspiciousantwerp.com maps to IP address 23.227.38.65.
Other host names, for instance revlon-japan.com, sleequipment.com, flavourmakers.com.au, highlyglow.pk and metonboss.com share IP numbers with suspiciousantwerp.com.
Name Servers
Two name servers ns41.domaincontrol.com and ns42.domaincontrol.com are delegated to suspiciousantwerp.com.
suspiciousantwerp.com uses the same name server configuration as other domains, such as thetwinery.com, sisumind.com, resultsbytamela.com, hkmk.ca and coffeesh0p.com.
suspiciousantwerp.com shares name servers with other domains at least partially, for instance tecint.com and rogans.org.
these name servers are commonly used with the name servers ns3.secureserver.net.
Host names with two IPs:
ns41.domaincontrol.com points to 2603:5:2142::15 and 97.74.100.21.
ns42.domaincontrol.com points to 2603:5:2242::15 and 173.201.68.21.
Mail Servers
suspiciousantwerp.com is handled by five mail servers: aspmx2.googlemail.com, aspmx3.googlemail.com, aspmx.l.google.com, alt1.aspmx.l.google.com and alt2.aspmx.l.google.com.
suspiciousantwerp.com shares mail servers with other domains at least in part, for instance ns500742.ns500754.ns500731.ns500742.ns500742.ns500704.ns500731.ns500704.ns500704.ns500671.ns500705.ns500649.ns500649.ns500649.ns500666.tenderladiesbz.com, ns500754.ns500731.ns500731.ns500754.ns500731.ns500705.ns500688.ns500688.ns500688.ns500678.ns500688.ns500678.ns500649.ns500666.ns500653.ns500153.tenderladiesbz.com, ns500731.ns500742.ns500671.ns500671.ns500742.ns500704.ns500671.ns500704.ns500704.ns500649.ns500666.lustychickser.com, ns500698.ns500758.ns500698.ns500759.ns500736.ns500736.ns500736.ns500736.ns500698.ns500708.ns500619.ns500698.ns500619.ns500619.ns500652.tracksymphony.com and ns500759.ns500758.ns500698.ns500735.ns500698.ns500735.ns500698.ns500735.ns500698.ns500735.ns500576.ns500576.ns500576.ns500652.ns500619.ns500619.trackreceptor.com.
These mail servers are often used together with alt3.aspmx.l.google.com, alt4.aspmx.l.google.com, aspmx4.googlemail.com and aspmx5.googlemail.com.
Two IPs per host name:
aspmx2.googlemail.com points to: 2a00:1450:4025:402::1b and 142.250.102.26
aspmx3.googlemail.com points to: 2a00:1450:400b:c02::1a and 172.253.116.27
aspmx.l.google.com points to: 2607:f8b0:4023:c0b::1a and 142.250.141.27
alt1.aspmx.l.google.com points to: 2607:f8b0:4023:2801::1b and 192.178.128.26
alt2.aspmx.l.google.com points to: 2607:f8b0:4023:1015::1a and 172.253.135.27
Pattern: left IDs ascend by 9 (12, 21, 30, 39, 48); each pair of targets ascend by 9 (15/18, 24/27, 33/36, 42/45, 51/54)