hellomr.observer - dns.ninja

`hellomr.observer`

DNSSEC	⚠️ Not signed
A	52.16.171.153^{🇮🇪 Amazon52.16.0.0/15 EC2 DUB prefix}
		PTR	`ec2-52-16-171-153.eu-west-1.compute.amazonaws.com`
NS	`ns1.hellomr.observer` ⭐
		A	18.205.186.231^{🇺🇸 Amazon18.204.0.0/14 EC2 IAD prefix}
			PTR	`ec2-18-205-186-231.compute-1.amazonaws.com`
NS	`ns1.csof.net`
		A	18.205.186.231^{🇺🇸 Amazon18.204.0.0/14 EC2 IAD prefix}
			PTR	`ec2-18-205-186-231.compute-1.amazonaws.com`
NS	`ns2.csof.net`
		A	23.21.178.27^{🇺🇸 Amazon23.20.0.0/15 EC2 IAD prefix}
			PTR	`ec2-23-21-178-27.compute-1.amazonaws.com`
NS	`ns3.csof.net`
		A	3.214.185.54^{🇺🇸 Amazon3.208.0.0/12 EC2 IAD prefix}
			PTR	`ec2-3-214-185-54.compute-1.amazonaws.com`
NS	`ns4.csof.net`
		A	52.20.19.77^{🇺🇸 Amazon52.20.0.0/14 EC2 IAD prefix}
			PTR	`ec2-52-20-19-77.compute-1.amazonaws.com`
MX	`mx1.hellomr.observer` ⭐
		A	46.4.12.146^{🇩🇪 Hetzner46.4.0.0/16 HETZNER-RZ-FKS-BLK3}
			PTR	`static.146.12.4.46.clients.your-server.de`
MX	`mx2.hellomr.observer` ⭐
		A	46.4.10.173^{🇩🇪 Hetzner46.4.0.0/16 HETZNER-RZ-FKS-BLK3}
			PTR	`static.173.10.4.46.clients.your-server.de`
TXT	`v=spf1 include:_incspfcheck.mailspike.net ?all`
SOA	`ns1.hellomr.observer`hostmaster@hellomr.observer serial=1781322024

`observer`

	DNSSEC	🔒 Signed (DS record present)
	NS	`ns01.trs-dns.com` ⭐
	NS	`ns.trs-dns.com`
	NS	`ns01.trs-dns.net`
	NS	`ns10.trs-dns.info`
	NS	`ns10.trs-dns.org`
	SOA	`ns.trs-dns.com`trs-ops@tucows.com serial=1781319024

⚠️ On DNS blocklist: pro.plus, tif, ultimate
🦠 Blackbook: Known malware/C&C domain

Subdomains

www.hellomr.observer

Same first word

hellomr.observer

hellomr.tv

Similar names

mrhello.net

ollehmr.com

hollmer.de

hollmer.com

hmorell.net

🔍 DNS Trace

📋 Delegation Chain

Zone	Nameservers	Glue
observer	ns10.trs-dns.info, ns01.trs-dns.net, ns01.trs-dns.com, ns10.trs-dns.org	8 records
hellomr.observer	ns1.csof.net, ns2.csof.net, ns3.csof.net, ns4.csof.net	-

✅ Authoritative Response

Server:18.205.186.231

NS records: ns1.csof.net, ns2.csof.net, ns3.csof.net, ns4.csof.net

🔒 DNSSEC Status

⚠️ Insecure (no DNSSEC)

No DS record for hellomr.observer (unsigned zone)

⏱️ Timing

Total: 495ms | Queries: -

📄 Records

Type	Count	Sample Data
A	1	`52.16.171.153`
NS	4	`ns1.csof.net, ns2.csof.net...`
MX	2	`mx1.hellomr.observer (pri: 10), mx2.hellomr.observer (pri: 10)`
TXT	1	`v=spf1 include:_incspfcheck.mailspike.ne`
SOA	1	`ns1.hellomr.observer hostmaster.hellomr.`

📌 Glue Records Collected

Total: 8

Out-of-bailiwick: 8 (ns10.trs-dns.info, ns10.trs-dns.org, ns01.trs-dns.net...)

Analysis

Hierarchy

hellomr.observer is the parent zone for www.hellomr.observer.

IP Addresses

hellomr.observer points to a single IP number: 52.16.171.153.

Additional host names — 02398655d974ed544caf4ebd99c743ae.sbs, afc7924be7c805adbf51afbe1d748310.com, thickmarket.net and two others — share IP numbers with hellomr.observer.

Name Servers

Delegation for hellomr.observer is to five name servers: ns1.csof.net, ns2.csof.net, ns3.csof.net and two others.

hellomr.observer partially shares its NS delegation with several other domains, including xupiheham.biz, dbba5659e8cbc08351666e94f84c31bb.com, theseblack.net and two others.

These name servers are frequently paired with the name servers ns4.csof.net, ns5.csof.net, ns6.csof.net and two others.

Host names with one IP number:

ns1.csof.net directs to 18.205.186.231.

ns2.csof.net directs to 23.21.178.27.

ns3.csof.net directs to 3.214.185.54.

ns4.csof.net directs to 52.20.19.77.

ns1.hellomr.observer directs to 18.205.186.231.

Host names pointing to 18.205.186.231 IP addresses: ns1.csof.net and ns1.hellomr.observer.

Mail Servers

hellomr.observer has two mail servers: mx1.hellomr.observer and mx2.hellomr.observer.

hellomr.observer shares its mail server setup with other domains, such as www.hellomr.observer.

mx1.hellomr.observer resolves to 46.4.12.146. mx2.hellomr.observer resolves to 46.4.10.173. Both host names point to a single IP number.