tls-attacker.com - robtex.com

tls-attacker.com

DNSSEC⚠️ Not signed
NSrenan.ns.cloudflare.com ⭐
A2606:4700:58::a29f:2c3eπŸ‡ΊπŸ‡Έ Cloudflare2606:4700:50::/44 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRrenan.ns.cloudflare.com
A2803:f800:50::6ca2:c33eπŸ‡¨πŸ‡· Cloudflare2803:f800:50::/45 LACNIC generated route6 for CloudFlare Latin America S.R.L
PTRrenan.ns.cloudflare.com
A2a06:98c1:50::ac40:233eπŸ‡ΊπŸ‡Έ Cloudflare2a06:98c1:50::/45
PTRrenan.ns.cloudflare.com
A108.162.195.62πŸ‡ΊπŸ‡Έ Cloudflare108.162.195.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRrenan.ns.cloudflare.com
A162.159.44.62Cloudflare162.159.32.0/20 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRrenan.ns.cloudflare.com
A172.64.35.62πŸ‡ΊπŸ‡Έ Cloudflare172.64.35.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRrenan.ns.cloudflare.com
NStreasure.ns.cloudflare.com
A2606:4700:50::a29f:2674πŸ‡ΊπŸ‡Έ Cloudflare2606:4700:50::/44 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRtreasure.ns.cloudflare.com
A2803:f800:50::6ca2:c274πŸ‡¨πŸ‡· Cloudflare2803:f800:50::/45 LACNIC generated route6 for CloudFlare Latin America S.R.L
PTRtreasure.ns.cloudflare.com
A2a06:98c1:50::ac40:2274πŸ‡ΊπŸ‡Έ Cloudflare2a06:98c1:50::/45
PTRtreasure.ns.cloudflare.com
A108.162.194.116πŸ‡ΊπŸ‡Έ Cloudflare108.162.194.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRtreasure.ns.cloudflare.com
A162.159.38.116Cloudflare162.159.32.0/20 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRtreasure.ns.cloudflare.com
A172.64.34.116πŸ‡ΊπŸ‡Έ Cloudflare172.64.34.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRtreasure.ns.cloudflare.com
MXmail.protonmail.ch ⭐ πŸ”’
A176.119.200.128πŸ‡¨πŸ‡­ Proton176.119.200.0/24
PTRmail.protonmail.ch
A185.70.42.128πŸ‡¨πŸ‡­ Proton185.70.42.0/24
PTRmail.protonmail.ch
A185.205.70.128πŸ‡«πŸ‡· Proton185.205.70.0/24
PTRmail.protonmail.ch
MXmailsec.protonmail.ch(20) πŸ”’
A176.119.200.129πŸ‡¨πŸ‡­ Proton176.119.200.0/24
PTRmailsec.protonmail.ch
A185.70.42.129πŸ‡¨πŸ‡­ Proton185.70.42.0/24
PTRmailsec.protonmail.ch
A185.205.70.129πŸ‡«πŸ‡· Proton185.205.70.0/24
PTRmailsec.protonmail.ch
TXTprotonmail-verification=fd3e47252a00aef446a74dc86c4da7ba0ca96ee5
TXTv=spf1 include:_spf.protonmail.ch ~all
SOArenan.ns.cloudflare.comdns@cloudflare.com serial=2399706429

com

DNSSECπŸ”’ Signed (DS record present)
NSa.gtld-servers.net ⭐
NSb.gtld-servers.net
NSc.gtld-servers.net
NSd.gtld-servers.net
NSe.gtld-servers.net
NSf.gtld-servers.net
NSg.gtld-servers.net
NSh.gtld-servers.net
NSi.gtld-servers.net
NSj.gtld-servers.net
NSk.gtld-servers.net
NSl.gtld-servers.net
NSm.gtld-servers.net
SOAa.gtld-servers.netnstld@verisign-grs.com serial=1771291435

Same first word

tls-attacker.com

DNS History

14 records (4 active, 10 former)

201820192020202120222023202420252026NSrenan.ns.cloudflare.comtreasure.ns.cloudflare.comns1.noez.dens1.prepaiddomain.dens2.prepaiddomain.dens3.prepaiddomain.dens4.prepaiddomain.dens5.prepaiddomain.deMXmail.protonmail.chmailsec.protonmail.chws1.noez.deA134.147.198.48192.30.253.11387.98.150.101
β—‹NSns1.noez.de2020-07-21 β†’ 2020-07-21 Β· 4 obs
β—‹ 2019-09-22 15:45:02
● 2020-07-21 20:22:12
β—‹ 2026-03-24 02:12:56
β—‹ 2026-03-24 08:22:00
β—‹NSns1.prepaiddomain.de2017-09-28 β†’ 2019-09-22 Β· 4 obs
● 2017-09-28 01:14:20
● 2019-09-22 15:45:02
β—‹ 2020-07-21 20:22:12
β—‹ 2026-03-24 08:22:00
β—‹NSns2.prepaiddomain.de2017-09-28 β†’ 2019-09-22 Β· 4 obs
● 2017-09-28 01:14:20
● 2019-09-22 15:45:02
β—‹ 2020-07-21 20:22:12
β—‹ 2026-03-24 08:22:00
β—‹NSns3.prepaiddomain.de2017-09-28 β†’ 2019-09-22 Β· 4 obs
● 2017-09-28 01:14:20
● 2019-09-22 15:45:02
β—‹ 2020-07-21 20:22:12
β—‹ 2026-03-24 08:22:00
β—‹NSns4.prepaiddomain.de2017-09-28 β†’ 2019-09-22 Β· 4 obs
● 2017-09-28 01:14:20
● 2019-09-22 15:45:02
β—‹ 2020-07-21 20:22:12
β—‹ 2026-03-24 08:22:00
β—‹NSns5.prepaiddomain.de2017-09-28 β†’ 2019-09-22 Β· 4 obs
● 2017-09-28 01:14:20
● 2019-09-22 15:45:02
β—‹ 2020-07-21 20:22:12
β—‹ 2026-03-24 08:22:00
●NSrenan.ns.cloudflare.com2026-03-24 β†’ 2026-03-24 Β· 3 obs
β—‹ 2020-07-21 20:22:12
● 2026-03-24 02:12:56
● 2026-03-24 08:22:00
●NStreasure.ns.cloudflare.com2026-03-24 β†’ 2026-03-24 Β· 3 obs
β—‹ 2020-07-21 20:22:12
● 2026-03-24 02:12:56
● 2026-03-24 08:22:00
●MXmail.protonmail.ch2026-03-24 β†’ 2026-03-24 Β· 3 obs
β—‹ 2020-07-21 20:22:12
● 2026-03-24 02:12:56
● 2026-03-24 08:22:00
●MXmailsec.protonmail.ch2026-03-24 β†’ 2026-03-24 Β· 3 obs
β—‹ 2020-07-21 20:22:12
● 2026-03-24 02:12:56
● 2026-03-24 08:22:00
β—‹MXws1.noez.de2017-09-28 β†’ 2019-09-22 Β· 4 obs
● 2017-09-28 01:14:20
● 2019-09-22 15:45:02
β—‹ 2020-07-21 20:22:12
β—‹ 2026-03-24 08:22:00
β—‹A134.147.198.482019-08-23 β†’ 2019-09-22 Β· 5 obs
β—‹ 2017-09-28 01:14:20
● 2019-08-23 22:46:44
● 2019-09-22 15:45:02
β—‹ 2020-07-21 20:22:12
β—‹ 2026-03-24 08:22:00
β—‹A192.30.253.1132017-09-28 β†’ 2017-09-28 Β· 3 obs
● 2017-09-28 01:14:20
β—‹ 2019-08-23 22:46:44
β—‹ 2026-03-24 08:22:00
β—‹A87.98.150.1012017-09-28 β†’ 2019-09-22 Β· 4 obs
● 2017-09-28 01:14:20
● 2019-09-22 15:45:02
β—‹ 2020-07-21 20:22:12
β—‹ 2026-03-24 08:22:00

πŸ” DNS Trace

πŸ“‹ Delegation Chain

ZoneNameserversGlue
comc.gtld-servers.net, k.gtld-servers.net, m.gtld-servers.net, a.gtld-servers.net...-
tls-attacker.comtreasure.ns.cloudflare.com, renan.ns.cloudflare.com12 records

βœ… Authoritative Response

Server:108.162.194.116

NS records: treasure.ns.cloudflare.com, renan.ns.cloudflare.com

πŸ”’ DNSSEC Status

⚠️ Insecure (no DNSSEC)

No DS record for tls-attacker.com (unsigned zone)

⏱️ Timing

Total: 175ms | Queries: -

πŸ“„ Records

TypeCountSample Data
NS2renan.ns.cloudflare.com, treasure.ns.cloudflare.com
MX2mail.protonmail.ch (pri: 10), mailsec.protonmail.ch (pri: 20)
TXT2protonmail-verification=fd3e47252a00aef4, v=spf1 include:_spf.protonmail.ch ~all
SOA1renan.ns.cloudflare.com dns.cloudflare.c

πŸ“Œ Glue Records Collected

Total: 12

Out-of-bailiwick: 12 (treasure.ns.cloudflare.com, treasure.ns.cloudflare.com, treasure.ns.cloudflare.com...)

Analysis

Name Servers

tls-attacker.com's delegation uses two name servers: renan.ns.cloudflare.com and treasure.ns.cloudflare.com.

tls-attacker.com uses the same name server setup as other domains, such as suespeaks.org, oliver.ca, keokuk.net, hivedatacenter.com and bongja.net.

tls-attacker.com at least partially shares name servers with other domains, including alexasurfing.com, heyhookup.com, japanbaidu.com, modedbazar.com and aoxubook.com.

These name servers are commonly used together with the name servers andronicus.ns.cloudflare.com, mike.ns.cloudflare.com, hal.ns.cloudflare.com and sierra.ns.cloudflare.com.

Host names with six IP numbers:

renan.ns.cloudflare.com points to 2606:4700:58::a29f:2c3e, 2803:f800:50::6ca2:c33e, 2a06:98c1:50::ac40:233e, 108.162.195.62, 162.159.44.62 and 172.64.35.62.

treasure.ns.cloudflare.com points to 2606:4700:50::a29f:2674, 2803:f800:50::6ca2:c274, 2a06:98c1:50::ac40:2274, 108.162.194.116, 162.159.38.116 and 172.64.34.116.

Mail Servers

tls-attacker.com is served by two mail servers mail.protonmail.ch and mailsec.protonmail.ch.

tls-attacker.com shares the same mail server setup as other domains, for instance brookspire.com, suit.gg, lella.in, umda.net and zero9.com.

tls-attacker.com shares at least some mail servers with other domains, for example main.lv, norin.eu, gregorykelleher.com, doriankarter.com and mkemail.com.

Host names with three IP numbers:

The host name mail.protonmail.ch resolves to 176.119.200.128, 185.70.42.128 and 185.205.70.128.

The host name mailsec.protonmail.ch resolves to 176.119.200.129, 185.70.42.129 and 185.205.70.129.