malware.su - dns.ninja

`malware.su`

DNSSEC	⚠️ Not signed
A	2a00:f940:2:2:1:1:0:256^{🇷🇺 AS-REGRU2a00:f940:2::/48 Reg.Ru Hosting Route}
A	31.31.196.17^{🇷🇺 AS-REGRU31.31.196.0/24 Reg.Ru}
NS	`server256.hosting.reg.ru` ⭐
		A	31.31.196.17^{🇷🇺 AS-REGRU31.31.196.0/24 Reg.Ru}
			PTR	`server256.hosting.reg.ru`
NS	`ns1.hosting.reg.ru`
		A	31.31.194.245^{🇷🇺 AS-REGRU31.31.194.0/24 Reg.Ru}
			PTR	`ns1.hosting.reg.ru`
		A	31.31.194.251^{🇷🇺 AS-REGRU31.31.194.0/24 Reg.Ru}
			PTR	`ns17-1.hosting.reg.ru`
		A	31.31.196.37^{🇷🇺 AS-REGRU31.31.196.0/24 Reg.Ru}
			PTR	`ns18-2.hosting.reg.ru`
		A	31.31.196.52^{🇷🇺 AS-REGRU31.31.196.0/24 Reg.Ru}
			PTR	`ns1.hosting.reg.ru`
		A	31.31.196.61^{🇷🇺 AS-REGRU31.31.196.0/24 Reg.Ru}
			PTR	`ns30-2.hosting.reg.ru`
		A	31.31.196.180^{🇷🇺 AS-REGRU31.31.196.0/24 Reg.Ru}
			PTR	`ns31-1.hosting.reg.ru`
		A	31.31.198.177^{🇷🇺 AS-REGRU31.31.198.0/24 Reg.Ru}
			PTR	`ns2.hosting.reg.ru`
		A	37.140.192.20^{🇷🇺 AS-REGRU37.140.192.0/24 Reg.Ru}
			PTR	`ns29-1.hosting.reg.ru`
		A	37.140.192.93^{🇷🇺 AS-REGRU37.140.192.0/24 Reg.Ru}
			PTR	`ns32-1.hosting.reg.ru`
		A	37.140.193.121^{🇷🇺 AS-REGRU37.140.193.0/24 Reg.Ru}
			PTR	`ns2.hosting.reg.ru`
		A	37.140.196.144^{🇷🇺 AS-REGRU37.140.196.0/24 Reg.Ru}
			PTR	`ns37-1.hosting.reg.ru`
		A	194.58.91.38^{🇷🇺 AS-REGRU194.58.91.0/24 Reg.Ru}
			PTR	`ns38-1.hosting.reg.ru`
		A	194.67.73.6^{🇷🇺 AS-REGRU194.67.73.0/24 Reg.Ru-M9}
			PTR	`ns33-1.hosting.reg.ru`
		A	194.67.73.9^{🇷🇺 AS-REGRU194.67.73.0/24 Reg.Ru-M9}
			PTR	`ns34-2.hosting.reg.ru`
NS	`ns2.hosting.reg.ru`
		A	31.31.194.244^{🇷🇺 AS-REGRU31.31.194.0/24 Reg.Ru}
			PTR	`ns1.hosting.reg.ru`
		A	31.31.196.34^{🇷🇺 AS-REGRU31.31.196.0/24 Reg.Ru}
			PTR	`ns17-2.hosting.reg.ru`
		A	31.31.196.53^{🇷🇺 AS-REGRU31.31.196.0/24 Reg.Ru}
			PTR	`ns1.hosting.reg.ru`
		A	31.31.196.71^{🇷🇺 AS-REGRU31.31.196.0/24 Reg.Ru}
			PTR	`ns32-2.hosting.reg.ru`
		A	31.31.198.161^{🇷🇺 AS-REGRU31.31.198.0/24 Reg.Ru}
			PTR	`ns29-2.hosting.reg.ru`
		A	31.31.198.178^{🇷🇺 AS-REGRU31.31.198.0/24 Reg.Ru}
			PTR	`ns2.hosting.reg.ru`
		A	37.140.192.31^{🇷🇺 AS-REGRU37.140.192.0/24 Reg.Ru}
			PTR	`ns37-2.hosting.reg.ru`
		A	37.140.192.55^{🇷🇺 AS-REGRU37.140.192.0/24 Reg.Ru}
			PTR	`ns30-1.hosting.reg.ru`
		A	37.140.192.58^{🇷🇺 AS-REGRU37.140.192.0/24 Reg.Ru}
			PTR	`ns18-1.hosting.reg.ru`
		A	37.140.192.160^{🇷🇺 AS-REGRU37.140.192.0/24 Reg.Ru}
			PTR	`ns31-2.hosting.reg.ru`
		A	37.140.193.120^{🇷🇺 AS-REGRU37.140.193.0/24 Reg.Ru}
			PTR	`ns2.hosting.reg.ru`
		A	37.140.194.37^{🇷🇺 AS-REGRU37.140.194.0/24 Reg.Ru}
			PTR	`ns38-2.hosting.reg.ru`
		A	194.67.73.7^{🇷🇺 AS-REGRU194.67.73.0/24 Reg.Ru-M9}
			PTR	`ns33-2.hosting.reg.ru`
		A	194.67.73.8^{🇷🇺 AS-REGRU194.67.73.0/24 Reg.Ru-M9}
			PTR	`ns34-1.hosting.reg.ru`
SOA	`server256.hosting.reg.ru`support@reg.ru 2024-08-23 #12

`su`

	DNSSEC	🔒 Signed (DS record present)
	NS	`a.dns.ripn.net` ⭐
	NS	`b.dns.ripn.net`
	NS	`d.dns.ripn.net`
	NS	`e.dns.ripn.net`
	NS	`f.dns.ripn.net`
	SOA	`a.dns.ripn.net`hostmaster@ripn.net serial=650209545

Same first word

malware.tv

malware.fr

malware.ro

malware.nu

malware.lu

malware.community

malware.org

malware.re

malware.me

malware.boutique

malware.watch

malware.no

malware.cz

malware.careers

malware.forum

malware.report

malware.es

malware.at

malware.exposed

malware.hosting

malware.com

malware.solutions

malware.business

malware.services

malware.eu

malware.guide

malware.net

malware.pl

malware.fox

malware.be

malware.(0x706f726e)

malware.exchange

malware.today

malware.cn

malware.cc

malware.biz

malware.center

malware.se

malware.farm

malware.sx

malware.wtf

malware.cl

malware.directory

malware.su

malware.expert

malware.builders

malware.win

malware.mobi

malware.onl

malware.com.br

malware.zip

malware.ai

malware.xyz

malware.email

malware.ru

malware.guru

Similar names

lawream.com

mawlare.net

wealarm.com

malwear.co

malwear.org

realawm.com

amerlaw.com

reamlaw.net

reamlaw.com

meralaw.com

walmare.com

marwael.fr

malwear.wtf

amlware.com

elmarwa.com

malwear.com

amrelaw.com

rawmale.com

DNS History

11 records (5 active, 6 former)

○NSns0.ns0.ru2015-07-16 → 2017-09-19 · 4 obs

● 2015-07-16 03:51:38
● 2017-09-19 23:18:14
○ 2026-02-20 11:21:34
○ 2026-06-20 14:26:40

●NSns1.hosting.reg.ru2026-02-20 → 2026-06-20 · 3 obs

○ 2017-09-19 23:18:14
● 2026-02-20 11:21:34
● 2026-06-20 14:26:40

○NSns1.ns0.ru2015-07-16 → 2017-09-19 · 4 obs

● 2015-07-16 03:51:38
● 2017-09-19 23:18:14
○ 2026-02-20 11:21:34
○ 2026-06-20 14:26:40

●NSns2.hosting.reg.ru2026-02-20 → 2026-06-20 · 3 obs

○ 2017-09-19 23:18:14
● 2026-02-20 11:21:34
● 2026-06-20 14:26:40

●NSserver256.hosting.reg.ru2026-02-20 → 2026-06-20 · 3 obs

○ 2017-09-19 23:18:14
● 2026-02-20 11:21:34
● 2026-06-20 14:26:40

○MXmail.ru.gw0.ru2015-07-16 → 2017-09-19 · 4 obs

● 2015-07-16 03:51:38
● 2017-09-19 23:18:14
○ 2026-02-20 11:21:34
○ 2026-06-20 14:26:40

○MXmx1.hosting.reg.ru2026-02-20 → 2026-02-24 · 5 obs

○ 2017-09-19 23:18:14
● 2026-02-20 11:21:34
● 2026-02-24 07:33:20
○ 2026-02-25 07:08:24
○ 2026-06-20 14:26:40

○MXmx2.hosting.reg.ru2026-02-20 → 2026-02-24 · 5 obs

○ 2017-09-19 23:18:14
● 2026-02-20 11:21:34
● 2026-02-24 07:33:20
○ 2026-02-25 07:08:24
○ 2026-06-20 14:26:40

●A2a00:f940:2:2:1:1:0:2562026-02-20 → 2026-06-20 · 3 obs

○ 2017-09-19 23:18:14
● 2026-02-20 11:21:34
● 2026-06-20 14:26:40

●A31.31.196.172026-02-20 → 2026-06-20 · 3 obs

○ 2017-09-19 23:18:14
● 2026-02-20 11:21:34
● 2026-06-20 14:26:40

○A88.151.116.72015-07-16 → 2017-09-19 · 4 obs

● 2015-07-16 03:51:38
● 2017-09-19 23:18:14
○ 2026-02-20 11:21:34
○ 2026-06-20 14:26:40

🔍 DNS Trace

📋 Delegation Chain

Zone	Nameservers	Glue
su	a.dns.ripn.net, b.dns.ripn.net, d.dns.ripn.net, e.dns.ripn.net...	10 records
malware.su	ns1.hosting.reg.ru, ns2.hosting.reg.ru	-

✅ Authoritative Response

Server:31.31.194.245

NS records: ns1.hosting.reg.ru, ns2.hosting.reg.ru

🔒 DNSSEC Status

⚠️ Insecure (no DNSSEC)

No DS record for malware.su (unsigned zone)

⏱️ Timing

Total: 1438ms | Queries: -

📄 Records

Type	Count	Sample Data
A	1	`31.31.196.17`
AAAA	1	`2a00:f940:2:2:1:1:0:256`
NS	2	`ns1.hosting.reg.ru, ns2.hosting.reg.ru`
SOA	1	`server256.hosting.reg.ru support.reg.ru`

📌 Glue Records Collected

Total: 10

Out-of-bailiwick: 10 (a.dns.ripn.net, a.dns.ripn.net, b.dns.ripn.net...)

Analysis

IP Addresses

malware.su directs to two IP numbers, 31.31.196.17 and 2a00:f940:2:2:1:1:0:256

Additional host names — www.interfactor.ru, strunin.org, pop.dalee-20.ru and two others — share IP numbers with malware.su.

Name Servers

malware.su has three name servers — ns1.hosting.reg.ru, ns2.hosting.reg.ru and server256.hosting.reg.ru.

malware.su has at least partial name server overlap with other domains, such as svetobox.ru, yalf.ru, madmuazel.club and two others.

server279.hosting.reg.ru, server55.hosting.reg.ru and server62.hosting.reg.ru — plus 3 other name servers — are commonly paired with these name servers.

Host names with 14 IP numbers:

ns1.hosting.reg.ru points to 31.31.194.245, 31.31.194.251, 31.31.196.37 and 11 other IP addresses.

ns2.hosting.reg.ru points to 31.31.194.244, 31.31.196.34, 31.31.196.53 and 11 other IP addresses.

Host names pointing to a single IP address:

server256.hosting.reg.ru resolves to 31.31.196.17.