phishing.watch - robtex.com

phishing.watch

DNSSEC⚠️ Not signed
A192.64.119.240πŸ‡ΊπŸ‡Έ NAMCHEAP-PH192.64.119.0/24 Namecheap, Inc. 11400 W. Olympic Blvd. Suite 200 Los Angeles, CA 90064 UNITED STATES
NSdns1.registrar-servers.com ⭐
A2610:a1:1024::200πŸ‡ΊπŸ‡Έ MAINT-ID-120082610:a1:1024::/48 Neustar
PTRdns1.namecheaphosting.com
PTRdns1.registrar-servers.com
A156.154.132.200πŸ‡ΊπŸ‡Έ MAINT-ID-12008156.154.132.0/24 Neustar
PTRdns1.namecheaphosting.com
PTRdns1.registrar-servers.com
NSdns2.registrar-servers.com
A2610:a1:1025::200πŸ‡ΊπŸ‡Έ MAINT-ID-120082610:a1:1025::/48 Neustar
PTRdns2.namecheaphosting.com
PTRdns2.registrar-servers.com
A156.154.133.200πŸ‡ΊπŸ‡Έ MAINT-ID-12008156.154.133.0/24 Neustar
PTRdns2.namecheaphosting.com
PTRdns2.registrar-servers.com
MXmx.yandex.net ⭐
A2a02:6b8::311πŸ‡·πŸ‡Ί TELETECH2a02:6b8::/32 Yandex network
PTRmxfront.stable.qloud-b.yandex.net
A77.88.21.249πŸ‡·πŸ‡Ί TELETECH77.88.0.0/18 Yandex enterprise network
PTRmxfront.stable.qloud-b.yandex.net
SOAdns1.registrar-servers.comhostmaster@registrar-servers.com serial=1629289010

watch

DNSSECπŸ”’ Signed (DS record present)
NSv0n0.nic.watch ⭐
NSv0n1.nic.watch
NSv0n2.nic.watch
NSv0n3.nic.watch
NSv2n0.nic.watch
NSv2n1.nic.watch
SOAv0n0.nic.watchhostmaster@donuts.email serial=1777020535

Same first word

phishing.ru
phishing.hu
phishing.guru
phishing.pro
phishing.ch
phishing.de
phishing.dk
phishing.domains
phishing.es
phishing.id
phishing.co.uk
phishing.site
phishing.at
phishing.be
phishing.ro
phishing.com
phishing.co.il
phishing.army
phishing.eu
phishing.watch
phishing.biz
phishing.services
phishing.fr
phishing.org
phishing.net
phishing.cc

Similar names

hipshing.biz
pingshih.com
hipshing.com
highspin.org
highpins.com
highspin.com
highspin.de
spinhigh.com

DNS History

5 records (4 active, 1 former)

2017201820192020202120222023202420252026NSdns1.registrar-servers.comdns2.registrar-servers.comMXmx.yandex.netA192.64.119.240162.255.119.249
●NSdns1.registrar-servers.com2016-12-11 β†’ 2026-04-24 Β· 2 obs
● 2016-12-11 00:28:58
● 2026-04-24 09:00:52
●NSdns2.registrar-servers.com2016-12-11 β†’ 2026-04-24 Β· 2 obs
● 2016-12-11 00:28:58
● 2026-04-24 09:00:52
●MXmx.yandex.net2016-12-11 β†’ 2026-04-24 Β· 2 obs
● 2016-12-11 00:28:58
● 2026-04-24 09:00:52
β—‹A162.255.119.2492016-12-11 β†’ 2018-05-21 Β· 4 obs
● 2016-12-11 00:28:58
● 2018-05-21 22:43:26
β—‹ 2026-04-23 11:17:10
β—‹ 2026-04-24 09:00:52
●A192.64.119.2402026-04-23 β†’ 2026-04-24 Β· 3 obs
β—‹ 2018-05-21 22:43:26
● 2026-04-23 11:17:10
● 2026-04-24 09:00:52

πŸ” DNS Trace

πŸ“‹ Delegation Chain

ZoneNameserversGlue
watchv0n2.nic.watch, v2n0.nic.watch, v0n0.nic.watch, v2n1.nic.watch...12 records
phishing.watchdns2.registrar-servers.com, dns1.registrar-servers.com-

βœ… Authoritative Response

Server:156.154.132.200

NS records: dns2.registrar-servers.com, dns1.registrar-servers.com

πŸ”’ DNSSEC Status

⚠️ Insecure (no DNSSEC)

No DS record for phishing.watch (unsigned zone)

⏱️ Timing

Total: 475ms | Queries: -

πŸ“„ Records

TypeCountSample Data
A1192.64.119.240
NS2dns1.registrar-servers.com, dns2.registrar-servers.com
MX1mx.yandex.net (pri: 10)
SOA1dns1.registrar-servers.com hostmaster.re

πŸ“Œ Glue Records Collected

Total: 12

In-bailiwick: 12 (v2n1.nic.watch, v2n0.nic.watch, v0n3.nic.watch...)

Analysis

IP Addresses

phishing.watch resolves to one IP number: 192.64.119.240.

other host names including netscope.ai, ewilliams.net, math-rpg.com, michart.net and hingewriter.com share IP numbers with phishing.watch.

Name Servers

phishing.watch is delegated to two name servers dns1.registrar-servers.com and dns2.registrar-servers.com.

phishing.watch shares the same name server setup as other domains, for instance bronline.net, saviorofether.xyz, vglrk.com, yercard.com and passivehunters.com.

phishing.watch at least partially shares name servers with other domains, for instance zacharynoguera.com, zerotier.org, findthebestmed.com, pcpartpicker.tv and akasha.media.

These name servers are commonly used with dns3.registrar-servers.com, dns4.registrar-servers.com and dns5.registrar-servers.com.

Host names with two IP numbers:

The host name dns1.registrar-servers.com points to 2610:a1:1024::200 and 156.154.132.200; the host name dns2.registrar-servers.com points to 2610:a1:1025::200 and 156.154.133.200.

Mail Servers

phishing.watch is handled by a single mail server, mx.yandex.net.

phishing.watch shares the same mail server setup as other domains, for instance asfaltok.ru, mantalk.ru, hardrockfm.ru, mail.zc812.ru and taud.ru.

phishing.watch shares some mail servers with other domains, at least partially, for instance hack.id, refrozen.ru, skolkovogolf.com, istrendbul.com and egetrend.com.

mx.yandex.net resolves to two IP numbers: 2a02:6b8::311 and 77.88.21.249.