malware.lu - dns.ninja

`malware.lu`

DNSSEC	⚠️ Not signed
A	213.167.245.235^{🇫🇷 GANDI-AS213.167.240.0/20 GANDI is an ICANN accredited registrar and Cloud services provider}
		PTR	`xvm-245-235.dc2.ghst.net`
NS	`ns1.root.lu` ⭐
		A	2a01:608::3^{🇱🇺 ROOT2a01:608::/32 root SA}
			PTR	`a.root.lu`
		A	195.26.4.3^{🇱🇺 ROOT195.26.4.0/23 root SA}
			PTR	`a.root.lu`
NS	`alpha.ns.network.lu`
		A	2a05:93c0:1006:1010:f816:3eff:fe2e:1e52^{🇳🇱 SERVERS2a05:93c0::/32 .COM NL01}
		A	213.196.40.85^{🇳🇱 SERVERS213.196.40.0/24 .COM AMS1 CLOUD COMPUTING}
			PTR	`alpha.ns.network.lu`
NS	`ns2.root.lu`
		A	83.243.8.3^{🇱🇺 ROOT83.243.8.0/21 root SA}
			PTR	`b.root.lu`
MX	`malware-lu.mail.protection.outlook.com`⁽¹⁰⁰⁾
		A	2a01:111:f403:ca04::10^{🇮🇪 Microsoft2a01:111:f000::/36}
			PTR	`mail-dbapr03cu00100.inbound.protection.outlook.com`
		A	2a01:111:f403:ca09::7^{🇳🇱 Microsoft2a01:111:f000::/36}
			PTR	`mail-am9pr04cu00107.inbound.protection.outlook.com`
		A	2a01:111:f403:ca09::c^{🇳🇱 Microsoft2a01:111:f000::/36}
			PTR	`mail-as8pr05cu00304.inbound.protection.outlook.com`
		A	2a01:111:f403:ca09::f^{🇳🇱 Microsoft2a01:111:f000::/36}
			PTR	`mail-am7pr05cu00307.inbound.protection.outlook.com`
		A	52.101.68.5^{🇮🇪 Microsoft52.96.0.0/12 MICROSOFT}
			PTR	`mail-du2pr03cu00105.inbound.protection.outlook.com`
		A	52.101.68.15^{🇮🇪 Microsoft52.96.0.0/12 MICROSOFT}
			PTR	`mail-db6pr03cu00107.inbound.protection.outlook.com`
		A	52.101.68.29^{🇮🇪 Microsoft52.96.0.0/12 MICROSOFT}
			PTR	`mail-dbapr03cu00105.inbound.protection.outlook.com`
		A	52.101.68.32^{🇮🇪 Microsoft52.96.0.0/12 MICROSOFT}
			PTR	`mail-db3pr0202cu00200.inbound.protection.outlook.com`
TXT	`v=spf1 include:spf.protection.outlook.com -all`
TXT	`MS=ms64462126`
SOA	`ns1.root.lu`admin@root.lu serial=1690228057

`lu`

	DNSSEC	🔒 Signed (DS record present)
	NS	`1.ns.lu` ⭐
	NS	`g.dns.lu`
	NS	`i.dns.lu`
	NS	`j.dns.lu`
	NS	`k.dns.lu`
	NS	`p.dns.lu`
	NS	`r.ns.lu`
	TXT	`Exported: 2026-06-21 15:01:02`
	SOA	`1.ns.lu`noc@restena.lu serial=1782046872

🔒 HSTS Preload (+subdomains)

Subdomains

avcaesar.malware.lu

www.malware.lu

Same first word

malware.biz

malware.center

malware.se

malware.farm

malware.sx

malware.wtf

malware.cl

malware.directory

malware.su

malware.expert

malware.builders

malware.win

malware.mobi

malware.onl

malware.com.br

malware.zip

malware.ai

malware.xyz

malware.email

malware.ru

malware.guru

malware.tv

malware.fr

malware.ro

malware.nu

malware.lu

malware.community

malware.org

malware.re

malware.me

malware.boutique

malware.watch

malware.no

malware.cz

malware.careers

malware.forum

malware.report

malware.es

malware.at

malware.exposed

malware.hosting

malware.com

malware.solutions

malware.business

malware.services

malware.eu

malware.guide

malware.net

malware.pl

malware.fox

malware.be

malware.(0x706f726e)

malware.exchange

malware.today

malware.cn

malware.cc

Similar names

wealarm.com

malwear.co

malwear.org

realawm.com

amerlaw.com

reamlaw.net

reamlaw.com

meralaw.com

walmare.com

marwael.fr

malwear.wtf

amlware.com

elmarwa.com

malwear.com

amrelaw.com

rawmale.com

lawream.com

mawlare.net

DNS History

8 records (5 active, 3 former)

●NSalpha.ns.network.lu2026-02-16 → 2026-06-21 · 3 obs

○ 2015-07-09 06:05:46
● 2026-02-16 12:58:46
● 2026-06-21 13:10:58

●NSns1.root.lu2015-07-09 → 2026-06-21 · 2 obs

● 2015-07-09 06:05:46
● 2026-06-21 13:10:58

●NSns2.root.lu2015-07-09 → 2026-06-21 · 2 obs

● 2015-07-09 06:05:46
● 2026-06-21 13:10:58

○MXb.mx.root.lu2015-07-09 → 2018-07-08 · 4 obs

● 2015-07-09 06:05:46
● 2018-07-08 23:20:58
○ 2026-02-16 12:58:46
○ 2026-06-21 13:10:58

●MXmalware-lu.mail.protection.outlook.com2026-02-16 → 2026-06-21 · 3 obs

○ 2018-07-08 23:20:58
● 2026-02-16 12:58:46
● 2026-06-21 13:10:58

○A213.135.240.502017-11-02 → 2018-07-08 · 5 obs

○ 2016-12-28 15:55:14
● 2017-11-02 13:34:58
● 2018-07-08 23:20:58
○ 2026-02-16 12:58:46
○ 2026-06-21 13:10:58

●A213.167.245.2352026-02-16 → 2026-06-21 · 3 obs

○ 2018-07-08 23:20:58
● 2026-02-16 12:58:46
● 2026-06-21 13:10:58

○A31.22.124.182015-07-09 → 2016-12-28 · 4 obs

● 2015-07-09 06:05:46
● 2016-12-28 15:55:14
○ 2017-11-02 13:34:58
○ 2026-06-21 13:10:58

🔍 DNS Trace

📋 Delegation Chain

Zone	Nameservers	Glue
lu	g.dns.lu, i.dns.lu, j.dns.lu, k.dns.lu...	14 records
malware.lu	ns1.root.lu, ns2.root.lu, alpha.ns.network.lu	2 records

✅ Authoritative Response

Server:213.196.40.85

NS records: ns1.root.lu, ns2.root.lu, alpha.ns.network.lu

🔒 DNSSEC Status

⚠️ Insecure (no DNSSEC)

No DS record for malware.lu (unsigned zone)

⏱️ Timing

Total: 1136ms | Queries: -

📄 Records

Type	Count	Sample Data
A	1	`213.167.245.235`
NS	3	`ns2.root.lu, ns1.root.lu...`
MX	2	`malware-lu.mail.protection.outlook.com (, malware-lu.mail.protection.outlook.com (`
TXT	2	`v=spf1 include:spf.protection.outlook.co, MS=ms64462126`
SOA	1	`ns1.root.lu admin.root.lu`

📌 Glue Records Collected

Total: 16

In-bailiwick: 14 (g.dns.lu, i.dns.lu, j.dns.lu...)

Out-of-bailiwick: 2 (alpha.ns.network.lu, alpha.ns.network.lu)

Analysis

Hierarchy

avcaesar.malware.lu and www.malware.lu each fall under malware.lu as their parent domain.

IP Addresses

malware.lu resolves to just one IP address, 213.167.245.235.

Two other host names, along with avcaesar.malware.lu, www.itrust.lu and www.malware.lu, also share IP numbers with malware.lu.

Name Servers

The authoritative name servers for malware.lu are ns1.root.lu, ns2.root.lu and alpha.ns.network.lu — three in total.

There is at least partial name server overlap between malware.lu and other domains — alformec.lu, vermoplast.de, prestaplanning.com and two more among them.

These name servers frequently co-occur with the name servers ns1.fcs-it.com and ns2.fcs-it.com.

Host names that have two IP addresses:

ns1.root.lu directs traffic to 195.26.4.3 and 2a01:608::3.

alpha.ns.network.lu directs traffic to 213.196.40.85 and 2a05:93c0:1006:1010:f816:3eff:fe2e:1e52.

Host names that point to one IP address:

ns2.root.lu has the IP address 83.243.8.3.

Mail Servers

The sole mail server for malware.lu is malware-lu.mail.protection.outlook.com.

With 8 IP addresses total, malware-lu.mail.protection.outlook.com resolves to 52.101.68.5, 52.101.68.15, 52.101.68.29 and 5 others.