WWW.RTSAK.COM - malicious.me

Search for IP or hostnames:

malicious.me checked at 2025-10-03T19:09:11.519Z 267ms 148/148/148 100% R:17

`malicious.me`

NS	`ns-206.awsdns-25.com`
		A	2600:9000:5300:ce00::1 ^{🇺🇸 Amazon}
			PTR	`ns-206.awsdns-25.com`
		A	205.251.192.206^{🇺🇸 Amazon}
			PTR	`ns-206.awsdns-25.com`
MX	`aspmx2.googlemail.com`
		A	2a00:1450:4013:c1e::1b ^{🇳🇱 Google}
			PTR	`yugrqzs-in-f27.1e100.net`
		A	192.178.213.27^{🇺🇸 Google}
			PTR	`yugrqzs-in-f27.1e100.net`
MX	`aspmx3.googlemail.com`
		A	2a00:1450:4025:c01::1b ^{🇵🇱 Google}
			PTR	`rd-in-f27.1e100.net`
		A	142.250.147.26^{🇺🇸 Google}
			PTR	`rd-in-f26.1e100.net`
NS	`ns-645.awsdns-16.net`
		A	2600:9000:5302:8500::1 ^{🇺🇸 Amazon}
			PTR	`ns-645.awsdns-16.net`
		A	205.251.194.133^{🇺🇸 Amazon}
			PTR	`ns-645.awsdns-16.net`
NS	`ns-1253.awsdns-28.org`
		A	2600:9000:5304:e500::1 ^{🇺🇸 Amazon}
			PTR	`ns-1253.awsdns-28.org`
		A	205.251.196.229^{🇺🇸 Amazon}
			PTR	`ns-1253.awsdns-28.org`
MX	`aspmx.l.google.com`
		A	2607:f8b0:4023:c0b::1a ^{🇺🇸 Google}
			PTR	`dd-in-f26.1e100.net`
		A	142.251.2.26^{🇺🇸 Google}
			PTR	`dl-in-f26.1e100.net`
NS	`ns-1549.awsdns-01.co.uk`
		A	2600:9000:5306:d00::1 ^{🇺🇸 Amazon}
			PTR	`ns-1549.awsdns-01.co.uk`
		A	205.251.198.13^{🇺🇸 Amazon}
			PTR	`ns-1549.awsdns-01.co.uk`
MX	`alt1.aspmx.l.google.com`
		A	2607:f8b0:4023:100f::1b ^{🇺🇸 Google}
			PTR	`yudfwra-in-f27.1e100.net`
		A	192.178.220.26^{🇺🇸 Google}
			PTR	`yudfwra-in-f26.1e100.net`
MX	`alt2.aspmx.l.google.com`
		A	2607:f8b0:4003:c30::1a ^{🇺🇸 Google}
			PTR	`yutulis-in-f26.1e100.net`
		A	74.125.27.26^{🇺🇸 Google}
			PTR	`yutulis-in-f26.1e100.net`
A	3.221.27.20^{🇺🇸 Amazon}
		PTR	`ec2-3-221-27-20.compute-1.amazonaws.com`
A	52.44.152.152^{🇺🇸 Amazon}
		PTR	`ec2-52-44-152-152.compute-1.amazonaws.com`
A	52.70.109.128^{🇺🇸 Amazon}
		PTR	`ec2-52-70-109-128.compute-1.amazonaws.com`

`me`

	NS	`a0.nic.me`
	NS	`a2.nic.me`
	NS	`b0.nic.me`
	NS	`b2.nic.me`
	NS	`c0.nic.me`

Starts with same word

malicious.ws

malicious.me

malicious.group

malicious.azurewebsites.net

malicious.life

malicious.domains

malicious.org

malicious.net

malicious.link

malicious.ru

malicious.systems

malicious.it

malicious.codes

malicious.com.au

malicious.co.uk

malicious.com

malicious.cc

malicious.co

Starts similarily

AI analysis

malicious.me points to IPs: 3.221.27.20, 52.44.152.152 and 52.70.109.128.

Other host names for instance ec2-52-44-152-152.compute-1.amazonaws.com and ec2-3-221-27-20.compute-1.amazonaws.com share IP numbers with malicious.me.

malicious.me is delegated to four name servers: ns-206.awsdns-25.com, ns-645.awsdns-16.net, ns-1253.awsdns-28.org and ns-1549.awsdns-01.co.uk.

malicious.me at least partially shares name servers with other domains such as humanitiestexas.org, d25mv5u262gol2.cloudfront.net, stagepa.com, adaptiveaudience.com and boulderfreshgardenco.com.

these name servers are commonly used with ns-287.awsdns-35.com, ns-170.awsdns-21.com, ns-292.awsdns-36.com, ns-1173.awsdns-18.org, ns-284.awsdns-35.com and ns-434.awsdns-54.com.

Host names with two IP numbers:

ns-206.awsdns-25.com points to 2600:9000:5300:ce00::1 and 205.251.192.206

ns-645.awsdns-16.net points to 2600:9000:5302:8500::1 and 205.251.194.133

ns-1253.awsdns-28.org points to 2600:9000:5304:e500::1 and 205.251.196.229

ns-1549.awsdns-01.co.uk points to 2600:9000:5306:d00::1 and 205.251.198.13

malicious.me is handled by five mail servers: aspmx2.googlemail.com, aspmx3.googlemail.com, aspmx.l.google.com, alt1.aspmx.l.google.com and alt2.aspmx.l.google.com.

malicious.me shares mail servers with other domains at least in part, for instance ghumc.org, micatch.net, good-focus.com, bargainbooksy.com and slaveryfootprint.org.

These mail servers are often used together with aspmx4.googlemail.com, aspmx5.googlemail.com, alt3.aspmx.l.google.com and alt4.aspmx.l.google.com.

Two IPs per host name:

aspmx2.googlemail.com points to: 2a00:1450:4013:c1e::1b and 192.178.213.27

aspmx3.googlemail.com points to: 2a00:1450:4025:c01::1b and 142.250.147.26

aspmx.l.google.com points to: 2607:f8b0:4023:c0b::1a and 142.251.2.26

alt1.aspmx.l.google.com points to: 2607:f8b0:4023:100f::1b and 192.178.220.26

alt2.aspmx.l.google.com points to: 2607:f8b0:4003:c30::1a and 74.125.27.26

Pattern: left IDs ascend by 9 (12, 21, 30, 39, 48); each pair of targets ascend by 9 (15/18, 24/27, 33/36, 42/45, 51/54)

dbq