botnet.im - robtex.com
botnet.im
| DNSSEC | β οΈ Not signed | ||||||
| A | 2606:4700:3030::6815:4c95πΊπΈ Cloudflare2606:4700:3030::/48 , Inc. 101 Townsend Street, San Francisco, California 94107, US β In HTTPS hints | ||||||
| A | 2606:4700:3030::ac43:c440πΊπΈ Cloudflare2606:4700:3030::/48 , Inc. 101 Townsend Street, San Francisco, California 94107, US β In HTTPS hints | ||||||
| A | 104.21.76.149Cloudflare104.21.64.0/20 , Inc. 101 Townsend Street, San Francisco, California 94107, US β In HTTPS hints | ||||||
| A | 172.67.196.64πΊπΈ Cloudflare172.67.192.0/20 , Inc. 101 Townsend Street, San Francisco, California 94107, US β In HTTPS hints | ||||||
| NS | mitch.ns.cloudflare.com β | ||||||
| A | 2606:4700:58::adf5:3bd0πΊπΈ Cloudflare2606:4700:50::/44 , Inc. 101 Townsend Street, San Francisco, California 94107, US | ||||||
| PTR | mitch.ns.cloudflare.com | ||||||
| A | 2803:f800:50::6ca2:c1d0π¨π· Cloudflare2803:f800:50::/45 LACNIC generated route6 for CloudFlare Latin America S.R.L | ||||||
| PTR | mitch.ns.cloudflare.com | ||||||
| A | 2a06:98c1:50::ac40:21d0πΊπΈ Cloudflare2a06:98c1:50::/45 | ||||||
| PTR | mitch.ns.cloudflare.com | ||||||
| A | 108.162.193.208πΊπΈ Cloudflare108.162.193.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US | ||||||
| PTR | mitch.ns.cloudflare.com | ||||||
| A | 172.64.33.208πΊπΈ Cloudflare172.64.33.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US | ||||||
| PTR | mitch.ns.cloudflare.com | ||||||
| A | 173.245.59.208πΊπΈ Cloudflare173.245.59.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US | ||||||
| PTR | mitch.ns.cloudflare.com | ||||||
| NS | val.ns.cloudflare.com | ||||||
| A | 2606:4700:50::adf5:3aeaπΊπΈ Cloudflare2606:4700:50::/44 , Inc. 101 Townsend Street, San Francisco, California 94107, US | ||||||
| PTR | val.ns.cloudflare.com | ||||||
| A | 2803:f800:50::6ca2:c0eaπ¨π· Cloudflare2803:f800:50::/45 LACNIC generated route6 for CloudFlare Latin America S.R.L | ||||||
| PTR | val.ns.cloudflare.com | ||||||
| A | 2a06:98c1:50::ac40:20eaπΊπΈ Cloudflare2a06:98c1:50::/45 | ||||||
| PTR | val.ns.cloudflare.com | ||||||
| A | 108.162.192.234πΊπΈ Cloudflare108.162.192.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US | ||||||
| PTR | val.ns.cloudflare.com | ||||||
| A | 172.64.32.234πΊπΈ Cloudflare172.64.32.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US | ||||||
| PTR | val.ns.cloudflare.com | ||||||
| A | 173.245.58.234πΊπΈ Cloudflare173.245.58.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US | ||||||
| PTR | val.ns.cloudflare.com | ||||||
| HTTPS | HTTP/3, HTTP/2 β hints match | ||||||
| IPv4 hints | 104.21.76.149, 172.67.196.64 | ||||||
| IPv6 hints | 2606:4700:3030::6815:4c95, 2606:4700:3030::ac43:c440 | ||||||
| ECH | X25519, HKDF-SHA256 + AES-128-GCM draft, id=73, name=cloudflare-ech.com | ||||||
| SOA | mitch.ns.cloudflare.comdns@cloudflare.com serial=2401530720 | ||||||
im
| DNSSEC | β οΈ Not signed | ||||||
| NS | pebbles.iom.com β | ||||||
| NS | barney.advsys.co.uk | ||||||
| NS | hoppy.iom.com | ||||||
| NS | ns4.ja.net | ||||||
| SOA | pebbles.iom.comdnsadmin@advsys.co.uk serial=1776191401 | ||||||
Same first word
Similar names
DNS History
6 records (6 active, 0 former)
βNSmitch.ns.cloudflare.com2026-04-14 β 2026-04-14 Β· 2 obs
β 2026-04-14 19:04:18
βNSval.ns.cloudflare.com2026-04-14 β 2026-04-14 Β· 2 obs
β 2026-04-14 19:04:18
βA104.21.76.1492026-04-14 β 2026-04-14 Β· 2 obs
β 2026-04-14 19:04:18
βA172.67.196.642026-04-14 β 2026-04-14 Β· 2 obs
β 2026-04-14 19:04:18
βA2606:4700:3030::6815:4c952026-04-14 β 2026-04-14 Β· 2 obs
β 2026-04-14 19:04:18
βA2606:4700:3030::ac43:c4402026-04-14 β 2026-04-14 Β· 2 obs
β 2026-04-14 19:04:18
π DNS Trace
π Delegation Chain
| Zone | Nameservers | Glue |
|---|---|---|
| im | ns4.ja.net, pebbles.iom.com, barney.advsys.co.uk, hoppy.iom.com | 5 records |
| botnet.im | mitch.ns.cloudflare.com, val.ns.cloudflare.com | - |
β Authoritative Response
Server:108.162.193.208
NS records: mitch.ns.cloudflare.com, val.ns.cloudflare.com
π DNSSEC Status
β οΈ Insecure (no DNSSEC)
No DS record for im (unsigned zone)
β±οΈ Timing
Total: 797ms | Queries: -
π Records
| Type | Count | Sample Data |
|---|---|---|
| A | 2 | 104.21.76.149, 172.67.196.64 |
| AAAA | 2 | 2606:4700:3030::ac43:c440, 2606:4700:3030::6815:4c95 |
| NS | 2 | mitch.ns.cloudflare.com, val.ns.cloudflare.com |
| HTTPS | 1 | {"priority":1,"target":".","alpn":["h3", |
| SOA | 1 | mitch.ns.cloudflare.com dns.cloudflare.c |
π Glue Records Collected
Total: 5
Out-of-bailiwick: 5 (pebbles.iom.com, barney.advsys.co.uk, hoppy.iom.com...)
Analysis
IP Addresses
Four IP numbers are pointed to by botnet.im: 2606:4700:3030::6815:4c95, 2606:4700:3030::ac43:c440, 104.21.76.149 and 172.67.196.64.
other host names including hsib.com.tw, steeledefenselaw.com, phriosanrafael.com, vmiis.com and www.adultmee.space share IP numbers with botnet.im.
Name Servers
botnet.im is delegated to two name servers mitch.ns.cloudflare.com and val.ns.cloudflare.com.
botnet.im shares the same name server setup as other domains, for instance precisionwebwerks.com, kathleenandandrew.com, thegeekettespeaketh.com, industryweb.com and danielalegre.com.
botnet.im at least partially shares name servers with other domains, for instance datenrettung360.at, mixsale.ru, skinnypig.com, backfortyonline.com and redseal.net.
Host names with six IP numbers:
Host name mitch.ns.cloudflare.com points to: 2606:4700:58::adf5:3bd0, 2803:f800:50::6ca2:c1d0, 2a06:98c1:50::ac40:21d0, 108.162.193.208, 172.64.33.208 and 173.245.59.208.
Host name val.ns.cloudflare.com points to: 2606:4700:50::adf5:3aea, 2803:f800:50::6ca2:c0ea, 2a06:98c1:50::ac40:20ea, 108.162.192.234, 172.64.32.234 and 173.245.58.234.