malwarelibrary.com - robtex.com

malwarelibrary.com

DNSSEC⚠️ Not signed
A2606:4700:3034::ac43:885cπŸ‡ΊπŸ‡Έ Cloudflare2606:4700:3034::/48 , Inc. 101 Townsend Street, San Francisco, California 94107, US βœ“ In HTTPS hints
A2606:4700:3037::6815:50fdπŸ‡ΊπŸ‡Έ Cloudflare2606:4700:3037::/48 , Inc. 101 Townsend Street, San Francisco, California 94107, US βœ“ In HTTPS hints
A104.21.80.253Cloudflare104.21.80.0/20 , Inc. 101 Townsend Street, San Francisco, California 94107, US βœ“ In HTTPS hints
A172.67.136.92πŸ‡ΊπŸ‡Έ Cloudflare172.67.128.0/20 , Inc. 101 Townsend Street, San Francisco, California 94107, US βœ“ In HTTPS hints
NSkobe.ns.cloudflare.com ⭐
A2606:4700:58::a29f:2cc1πŸ‡ΊπŸ‡Έ Cloudflare2606:4700:50::/44 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRkobe.ns.cloudflare.com
A2803:f800:50::6ca2:c3c1πŸ‡¨πŸ‡· Cloudflare2803:f800:50::/45 LACNIC generated route6 for CloudFlare Latin America S.R.L
PTRkobe.ns.cloudflare.com
A2a06:98c1:50::ac40:23c1πŸ‡ΊπŸ‡Έ Cloudflare2a06:98c1:50::/45
PTRkobe.ns.cloudflare.com
A108.162.195.193πŸ‡ΊπŸ‡Έ Cloudflare108.162.195.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRkobe.ns.cloudflare.com
A162.159.44.193Cloudflare162.159.32.0/20 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRkobe.ns.cloudflare.com
A172.64.35.193πŸ‡ΊπŸ‡Έ Cloudflare172.64.35.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRkobe.ns.cloudflare.com
NSsierra.ns.cloudflare.com
A2606:4700:50::a29f:26f5πŸ‡ΊπŸ‡Έ Cloudflare2606:4700:50::/44 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRsierra.ns.cloudflare.com
A2803:f800:50::6ca2:c2f5πŸ‡¨πŸ‡· Cloudflare2803:f800:50::/45 LACNIC generated route6 for CloudFlare Latin America S.R.L
PTRsierra.ns.cloudflare.com
A2a06:98c1:50::ac40:22f5πŸ‡ΊπŸ‡Έ Cloudflare2a06:98c1:50::/45
PTRsierra.ns.cloudflare.com
A108.162.194.245πŸ‡ΊπŸ‡Έ Cloudflare108.162.194.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRsierra.ns.cloudflare.com
A162.159.38.245Cloudflare162.159.32.0/20 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRsierra.ns.cloudflare.com
A172.64.34.245πŸ‡ΊπŸ‡Έ Cloudflare172.64.34.0/24 , Inc. 101 Townsend Street, San Francisco, California 94107, US
PTRsierra.ns.cloudflare.com
MXeforward1.registrar-servers.com ⭐
A162.255.118.51πŸ‡ΊπŸ‡Έ NAMCHEAP-PH162.255.118.0/24 Namecheap, Inc. 11400 W. Olympic Blvd. Suite 200 Los Angeles, CA 90064 UNITED STATES
PTReforward1.registrar-servers.com
PTReforward3.registrar-servers.com
MXeforward2.registrar-servers.com ⭐
A162.255.118.52πŸ‡ΊπŸ‡Έ NAMCHEAP-PH162.255.118.0/24 Namecheap, Inc. 11400 W. Olympic Blvd. Suite 200 Los Angeles, CA 90064 UNITED STATES
PTReforward2.registrar-servers.com
MXeforward3.registrar-servers.com ⭐
A162.255.118.51πŸ‡ΊπŸ‡Έ NAMCHEAP-PH162.255.118.0/24 Namecheap, Inc. 11400 W. Olympic Blvd. Suite 200 Los Angeles, CA 90064 UNITED STATES
PTReforward1.registrar-servers.com
PTReforward3.registrar-servers.com
MXeforward4.registrar-servers.com(15)
A162.255.118.52πŸ‡ΊπŸ‡Έ NAMCHEAP-PH162.255.118.0/24 Namecheap, Inc. 11400 W. Olympic Blvd. Suite 200 Los Angeles, CA 90064 UNITED STATES
PTReforward2.registrar-servers.com
MXeforward5.registrar-servers.com(20)
A162.255.118.51πŸ‡ΊπŸ‡Έ NAMCHEAP-PH162.255.118.0/24 Namecheap, Inc. 11400 W. Olympic Blvd. Suite 200 Los Angeles, CA 90064 UNITED STATES
PTReforward1.registrar-servers.com
PTReforward3.registrar-servers.com
TXTv=spf1 include:spf.efwd.registrar-servers.com ~all
HTTPSHTTP/3, HTTP/2 βœ“ hints match
IPv4104.21.80.253, 172.67.136.92
IPv62606:4700:3034::ac43:885c, 2606:4700:3037::6815:50fd
SOAkobe.ns.cloudflare.comdns@cloudflare.com serial=2397826170

com

DNSSECπŸ”’ Signed (DS record present)
NSa.gtld-servers.net ⭐
NSb.gtld-servers.net
NSc.gtld-servers.net
NSd.gtld-servers.net
NSe.gtld-servers.net
NSf.gtld-servers.net
NSg.gtld-servers.net
NSh.gtld-servers.net
NSi.gtld-servers.net
NSj.gtld-servers.net
NSk.gtld-servers.net
NSl.gtld-servers.net
NSm.gtld-servers.net
SOAa.gtld-servers.netnstld@verisign-grs.com serial=1771291435

Same first word

malwarelibrary.com

DNS History

16 records (11 active, 5 former)

20162017201820192020202120222023202420252026NSkobe.ns.cloudflare.comsierra.ns.cloudflare.comns43.domaincontrol.comns44.domaincontrol.comMXeforward1.registrar-servers.comeforward2.registrar-servers.comeforward3.registrar-servers.comeforward4.registrar-servers.comeforward5.registrar-servers.commailstore1.secureserver.netsmtp.secureserver.netA104.21.80.253172.67.136.922606:4700:3034::ac43:885c2606:4700:3037::6815:50fd184.168.221.54
●NSkobe.ns.cloudflare.com2026-02-17 β†’ 2026-03-02 Β· 3 obs
β—‹ 2015-11-19 04:37:34
● 2026-02-17 09:42:44
● 2026-03-02 10:02:56
β—‹NSns43.domaincontrol.com2015-07-31 β†’ 2015-07-31 Β· 3 obs
● 2015-07-31 20:33:02
β—‹ 2015-11-19 04:37:34
β—‹ 2026-03-02 10:02:56
β—‹NSns44.domaincontrol.com2015-07-31 β†’ 2015-07-31 Β· 3 obs
● 2015-07-31 20:33:02
β—‹ 2015-11-19 04:37:34
β—‹ 2026-03-02 10:02:56
●NSsierra.ns.cloudflare.com2026-02-17 β†’ 2026-03-02 Β· 3 obs
β—‹ 2015-11-19 04:37:34
● 2026-02-17 09:42:44
● 2026-03-02 10:02:56
●MXeforward1.registrar-servers.com2026-02-17 β†’ 2026-03-02 Β· 3 obs
β—‹ 2015-11-19 04:37:34
● 2026-02-17 09:42:44
● 2026-03-02 10:02:56
●MXeforward2.registrar-servers.com2026-02-17 β†’ 2026-03-02 Β· 3 obs
β—‹ 2015-11-19 04:37:34
● 2026-02-17 09:42:44
● 2026-03-02 10:02:56
●MXeforward3.registrar-servers.com2026-02-17 β†’ 2026-03-02 Β· 3 obs
β—‹ 2015-11-19 04:37:34
● 2026-02-17 09:42:44
● 2026-03-02 10:02:56
●MXeforward4.registrar-servers.com2026-02-17 β†’ 2026-03-02 Β· 3 obs
β—‹ 2015-11-19 04:37:34
● 2026-02-17 09:42:44
● 2026-03-02 10:02:56
●MXeforward5.registrar-servers.com2026-02-17 β†’ 2026-03-02 Β· 3 obs
β—‹ 2015-11-19 04:37:34
● 2026-02-17 09:42:44
● 2026-03-02 10:02:56
β—‹MXmailstore1.secureserver.net2015-07-31 β†’ 2015-07-31 Β· 3 obs
● 2015-07-31 20:33:02
β—‹ 2015-11-19 04:37:34
β—‹ 2026-03-02 10:02:56
β—‹MXsmtp.secureserver.net2015-07-31 β†’ 2015-07-31 Β· 3 obs
● 2015-07-31 20:33:02
β—‹ 2015-11-19 04:37:34
β—‹ 2026-03-02 10:02:56
●A104.21.80.2532026-02-17 β†’ 2026-03-02 Β· 3 obs
β—‹ 2015-11-19 04:37:34
● 2026-02-17 09:42:44
● 2026-03-02 10:02:56
●A172.67.136.922026-02-17 β†’ 2026-03-02 Β· 3 obs
β—‹ 2015-11-19 04:37:34
● 2026-02-17 09:42:44
● 2026-03-02 10:02:56
β—‹A184.168.221.542015-07-31 β†’ 2015-07-31 Β· 3 obs
● 2015-07-31 20:33:02
β—‹ 2015-11-19 04:37:34
β—‹ 2026-03-02 10:02:56
●A2606:4700:3034::ac43:885c2026-02-17 β†’ 2026-03-02 Β· 3 obs
β—‹ 2015-11-19 04:37:34
● 2026-02-17 09:42:44
● 2026-03-02 10:02:56
●A2606:4700:3037::6815:50fd2026-02-17 β†’ 2026-03-02 Β· 3 obs
β—‹ 2015-11-19 04:37:34
● 2026-02-17 09:42:44
● 2026-03-02 10:02:56

πŸ” DNS Trace

πŸ“‹ Delegation Chain

ZoneNameserversGlue
comc.gtld-servers.net, d.gtld-servers.net, h.gtld-servers.net, l.gtld-servers.net...-
malwarelibrary.comkobe.ns.cloudflare.com, sierra.ns.cloudflare.com12 records

βœ… Authoritative Response

Server: 108.162.194.245

NS records: kobe.ns.cloudflare.com, sierra.ns.cloudflare.com

πŸ”’ DNSSEC Status

⚠️ Insecure (no DNSSEC)

No DS record for malwarelibrary.com (unsigned zone)

⏱️ Timing

Total: 160ms | Queries: -

πŸ“„ Records

TypeCountSample Data
A2104.21.80.253, 172.67.136.92
AAAA22606:4700:3034::ac43:885c, 2606:4700:3037::6815:50fd
NS2kobe.ns.cloudflare.com, sierra.ns.cloudflare.com
MX5eforward1.registrar-servers.com (pri: 10, eforward2.registrar-servers.com (pri: 10...
TXT1v=spf1 include:spf.efwd.registrar-server
HTTPS1{"priority":1,"target":".","alpn":["h3",
SOA1kobe.ns.cloudflare.com dns.cloudflare.co

πŸ“Œ Glue Records Collected

Total: 12

Out-of-bailiwick: 12 (kobe.ns.cloudflare.com, kobe.ns.cloudflare.com, kobe.ns.cloudflare.com...)

Analysis

IP Addresses

malwarelibrary.com resolves to four IPs: 2606:4700:3034::ac43:885c, 2606:4700:3037::6815:50fd, 104.21.80.253 and 172.67.136.92.

Other host names, for instance kfzwaermespeicher.com, bobangles.com.au, jasabuat.web.id, kalto-97mexurn.click and oracleepm.guide share IP numbers with malwarelibrary.com.

Name Servers

malwarelibrary.com has two name servers: kobe.ns.cloudflare.com and sierra.ns.cloudflare.com.

malwarelibrary.com shares the same name server setup as other domains, for example chxun.com, multicarelegacy.org, traningspuls.se, yamidi.com and uscasinofinder.com.

malwarelibrary.com shares some name servers with other domains, for example sidat.digital, schwabeindia.net, jasnowidz.net, quartzweald.ru and vspro.fi.

These name servers are often used together with finley.ns.cloudflare.com, gwen.ns.cloudflare.com and paityn.ns.cloudflare.com.

Host names with six IP numbers: kobe.ns.cloudflare.com points to: 2606:4700:58::a29f:2cc1, 2803:f800:50::6ca2:c3c1, 2a06:98c1:50::ac40:23c1, 108.162.195.193, 162.159.44.193 and 172.64.35.193; sierra.ns.cloudflare.com points to: 2606:4700:50::a29f:26f5, 2803:f800:50::6ca2:c2f5, 2a06:98c1:50::ac40:22f5, 108.162.194.245, 162.159.38.245 and 172.64.34.245.

Mail Servers

malwarelibrary.com is handled by five mail servers: eforward1.registrar-servers.com, eforward2.registrar-servers.com, eforward3.registrar-servers.com, eforward4.registrar-servers.com and eforward5.registrar-servers.com.

malwarelibrary.com shares some mail servers with other domains, at least partially; for instance mccullararchitects.com, waddle.cloud, badideabox.com, improv.monster and worldlinkuk.org.

these mail servers are commonly used alongside eforward6.registrar-servers.com and eforward7.registrar-servers.com.

Host names with a single IP:

Host eforward1.registrar-servers.com points to 162.255.118.51.

Host eforward2.registrar-servers.com points to 162.255.118.52.

Host eforward3.registrar-servers.com points to 162.255.118.51.

Host eforward4.registrar-servers.com points to 162.255.118.52.

Host eforward5.registrar-servers.com points to 162.255.118.51.

Host names pointing to 162.255.118.51: eforward1.registrar-servers.com, eforward3.registrar-servers.com and eforward5.registrar-servers.com.

Host names pointing to 162.255.118.52: eforward2.registrar-servers.com and eforward4.registrar-servers.com.