`suspiciouslogin.net`

DNSSEC	⚠️ Not signed
A	2606:4700:3031::6815:2c93^{🇺🇸 Cloudflare2606:4700:3031::/48 , Inc. 101 Townsend Street, San Francisco, California 94107, US} ✓ In HTTPS hints
A	2606:4700:3035::ac43:c8e2^{🇺🇸 Cloudflare2606:4700:3035::/48 , Inc. 101 Townsend Street, San Francisco, California 94107, US} ✓ In HTTPS hints
A	104.21.44.147^{Cloudflare104.21.32.0/20 , Inc. 101 Townsend Street, San Francisco, California 94107, US} ✓ In HTTPS hints
A	172.67.200.226^{🇺🇸 Cloudflare172.67.192.0/20 , Inc. 101 Townsend Street, San Francisco, California 94107, US} ✓ In HTTPS hints
NS	`natasha.ns.cloudflare.com` ⭐
		A	2606:4700:50::a29f:2675^{🇺🇸 Cloudflare2606:4700:50::/44 , Inc. 101 Townsend Street, San Francisco, California 94107, US}
			PTR	`natasha.ns.cloudflare.com`
		A	2803:f800:50::6ca2:c275^{🇨🇷 Cloudflare2803:f800:50::/45 LACNIC generated route6 for CloudFlare Latin America S.R.L}
			PTR	`natasha.ns.cloudflare.com`
		A	2a06:98c1:50::ac40:2275^{🇺🇸 Cloudflare2a06:98c1:50::/45}
			PTR	`natasha.ns.cloudflare.com`
		A	108.162.194.117^{🇺🇸 Cloudflare108.162.194.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US}
			PTR	`natasha.ns.cloudflare.com`
		A	162.159.38.117^{Cloudflare162.159.32.0/20 , Inc. 101 Townsend Street, San Francisco, California 94107, US}
			PTR	`natasha.ns.cloudflare.com`
		A	172.64.34.117^{🇺🇸 Cloudflare172.64.34.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US}
			PTR	`natasha.ns.cloudflare.com`
NS	`venkat.ns.cloudflare.com`
		A	2606:4700:58::a29f:2cfe^{🇺🇸 Cloudflare2606:4700:50::/44 , Inc. 101 Townsend Street, San Francisco, California 94107, US}
			PTR	`venkat.ns.cloudflare.com`
		A	2803:f800:50::6ca2:c3fe^{🇨🇷 Cloudflare2803:f800:50::/45 LACNIC generated route6 for CloudFlare Latin America S.R.L}
			PTR	`venkat.ns.cloudflare.com`
		A	2a06:98c1:50::ac40:23fe^{🇺🇸 Cloudflare2a06:98c1:50::/45}
			PTR	`venkat.ns.cloudflare.com`
		A	108.162.195.254^{🇺🇸 Cloudflare108.162.195.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US}
			PTR	`venkat.ns.cloudflare.com`
		A	162.159.44.254^{Cloudflare162.159.32.0/20 , Inc. 101 Townsend Street, San Francisco, California 94107, US}
			PTR	`venkat.ns.cloudflare.com`
		A	172.64.35.254^{🇺🇸 Cloudflare172.64.35.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US}
			PTR	`venkat.ns.cloudflare.com`
HTTPS	HTTP/3, HTTP/2 ✓ hints match
		IPv4 hints	104.21.44.147, 172.67.200.226
		IPv6 hints	2606:4700:3031::6815:2c93, 2606:4700:3035::ac43:c8e2
		ECH	X25519, HKDF-SHA256 + AES-128-GCM draft, id=184, name=cloudflare-ech.com
SOA	`natasha.ns.cloudflare.com`dns@cloudflare.com serial=2401396507

`net`

	DNSSEC	🔒 Signed (DS record present)
	NS	`a.gtld-servers.net` ⭐
	NS	`b.gtld-servers.net`
	NS	`c.gtld-servers.net`
	NS	`d.gtld-servers.net`
	NS	`e.gtld-servers.net`
	NS	`f.gtld-servers.net`
	NS	`g.gtld-servers.net`
	NS	`h.gtld-servers.net`
	NS	`i.gtld-servers.net`
	NS	`j.gtld-servers.net`
	NS	`k.gtld-servers.net`
	NS	`l.gtld-servers.net`
	NS	`m.gtld-servers.net`
	SOA	`a.gtld-servers.net`nstld@verisign-grs.com serial=1775946787

Same first word

suspiciouslogin.net

suspiciouslogin.com

DNS History

6 records (6 active, 0 former)

●NSnatasha.ns.cloudflare.com2026-03-07 → 2026-04-11 · 2 obs

● 2026-03-07 16:38:22
● 2026-04-11 22:51:22

●NSvenkat.ns.cloudflare.com2026-03-07 → 2026-04-11 · 2 obs

● 2026-03-07 16:38:22
● 2026-04-11 22:51:22

●A104.21.44.1472026-03-07 → 2026-04-11 · 2 obs

● 2026-03-07 16:38:22
● 2026-04-11 22:51:22

●A172.67.200.2262026-03-07 → 2026-04-11 · 2 obs

● 2026-03-07 16:38:22
● 2026-04-11 22:51:22

●A2606:4700:3031::6815:2c932026-03-07 → 2026-04-11 · 2 obs

● 2026-03-07 16:38:22
● 2026-04-11 22:51:22

●A2606:4700:3035::ac43:c8e22026-03-07 → 2026-04-11 · 2 obs

● 2026-03-07 16:38:22
● 2026-04-11 22:51:22

🔍 DNS Trace

📋 Delegation Chain

Zone	Nameservers	Glue
net	a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net...	-
suspiciouslogin.net	venkat.ns.cloudflare.com, natasha.ns.cloudflare.com	-

✅ Authoritative Response

Server:172.64.35.254

NS records: venkat.ns.cloudflare.com, natasha.ns.cloudflare.com

🔒 DNSSEC Status

⚠️ Insecure (no DNSSEC)

No DS record for suspiciouslogin.net (unsigned zone)

⏱️ Timing

Total: 492ms | Queries: -

📄 Records

Type	Count	Sample Data
A	2	`104.21.44.147, 172.67.200.226`
AAAA	2	`2606:4700:3031::6815:2c93, 2606:4700:3035::ac43:c8e2`
NS	2	`natasha.ns.cloudflare.com, venkat.ns.cloudflare.com`
HTTPS	1	`{"priority":1,"target":".","alpn":["h3",`
SOA	1	`natasha.ns.cloudflare.com dns.cloudflare`

Analysis

IP Addresses

Four IP numbers are pointed to by suspiciouslogin.net: 2606:4700:3031::6815:2c93, 2606:4700:3035::ac43:c8e2, 104.21.44.147 and 172.67.200.226.

other host names including pl-oferta6482538.click, jvds.be, app.fuellead.com, ak-ca.ru and www.blueorangebank.com share IP numbers with suspiciouslogin.net.

Name Servers

suspiciouslogin.net is delegated to two name servers natasha.ns.cloudflare.com and venkat.ns.cloudflare.com.

suspiciouslogin.net shares the same name server setup as other domains, for instance ajwroughtiron.com, pavetechnologyco.com, pavetechnology.com, rls.tv and world-new.today.

suspiciouslogin.net at least partially shares name servers with other domains, for instance ikqreau.cv, sktopup.com, betking-de.com, trap.com and ns1.w3host.co.uk.

these name servers are commonly used alongside deb.ns.cloudflare.com.

Host names with six IP numbers:

Host name natasha.ns.cloudflare.com points to: 2606:4700:50::a29f:2675, 2803:f800:50::6ca2:c275, 2a06:98c1:50::ac40:2275, 108.162.194.117, 162.159.38.117 and 172.64.34.117.

Host name venkat.ns.cloudflare.com points to: 2606:4700:58::a29f:2cfe, 2803:f800:50::6ca2:c3fe, 2a06:98c1:50::ac40:23fe, 108.162.195.254, 162.159.44.254 and 172.64.35.254.

suspiciouslogin.net - robtex.com