amos-malware.ru - robtex.com

amos-malware.ru

DNSSEC⚠️ Not signed
A2600:1900:4001:96e:8000:1:190:5c85πŸ‡ΊπŸ‡Έ Google2600:1900:4000::/44
A34.41.139.193πŸ‡ΊπŸ‡Έ Google34.41.0.0/16
NSns1.hwrn.net ⭐
A2600:1900:4000:cb7c:8000::πŸ‡ΊπŸ‡Έ Google2600:1900:4000::/44
A2600:1900:4061:58e:8000::πŸ‡³πŸ‡± Google2600:1900:4060::/44
A2600:1900:4081:2f2:8000::πŸ‡ΈπŸ‡¬ Google2600:1900:4080::/44
A34.32.207.228πŸ‡³πŸ‡± Google34.32.128.0/17
PTR228.207.32.34.bc.googleusercontent.com
A34.46.191.171πŸ‡ΊπŸ‡Έ Google34.46.0.0/16
PTR171.191.46.34.bc.googleusercontent.com
A35.187.247.195πŸ‡ΈπŸ‡¬ Google35.187.240.0/20
PTR195.247.187.35.bc.googleusercontent.com
NSns2.hwrn.net
A2600:1900:4000:cb7c:8000:4::πŸ‡ΊπŸ‡Έ Google2600:1900:4000::/44
A2600:1900:4061:58e:8000:4::πŸ‡³πŸ‡± Google2600:1900:4060::/44
A2600:1900:4081:2f2:8000:4::πŸ‡ΈπŸ‡¬ Google2600:1900:4080::/44
A34.124.162.145πŸ‡ΈπŸ‡¬ Google34.124.160.0/20
PTR145.162.124.34.bc.googleusercontent.com
A34.136.0.93πŸ‡ΊπŸ‡Έ Google34.136.0.0/20
PTR93.0.136.34.bc.googleusercontent.com
A34.147.11.210πŸ‡³πŸ‡± Google34.147.0.0/20
PTR210.11.147.34.bc.googleusercontent.com
MXmx1.csof.net ⭐
A46.4.12.146πŸ‡©πŸ‡ͺ Hetzner46.4.0.0/16 HETZNER-RZ-FKS-BLK3
PTRstatic.146.12.4.46.clients.your-server.de
MXmx2.csof.net ⭐
A46.4.10.173πŸ‡©πŸ‡ͺ Hetzner46.4.0.0/16 HETZNER-RZ-FKS-BLK3
PTRstatic.173.10.4.46.clients.your-server.de
TXTv=spf1 include:_incspfcheck.mailspike.net -all
SOAns1.hwrn.nethostmaster@hwrn.net 2025-07-04 #1

ru

DNSSECπŸ”’ Signed (DS record present)
NSa.dns.ripn.net ⭐
NSb.dns.ripn.net
NSd.dns.ripn.net
NSe.dns.ripn.net
NSf.dns.ripn.net
SOAa.dns.ripn.nethostmaster@ripn.net serial=4068632
⚠️ On DNS blocklist: light, multi, pro, pro.plus, tif, ultimate
🦠 Blackbook: Known malware/C&C domain
πŸ“ˆ Tranco rank: #542,691

Subdomains

www.amos-malware.ru

Same first word

amos-malware.ru

DNS History

6 records (6 active, 0 former)

NSns1.hwrn.netns2.hwrn.netMXmx1.csof.netmx2.csof.netA2600:1900:4001:96e:8000:1:190:5c8534.41.139.193
●NSns1.hwrn.net2026-04-01 β†’ 2026-04-24 Β· 2 obs
● 2026-04-01 07:02:18
● 2026-04-24 14:29:52
●NSns2.hwrn.net2026-04-01 β†’ 2026-04-24 Β· 2 obs
● 2026-04-01 07:02:18
● 2026-04-24 14:29:52
●MXmx1.csof.net2026-04-01 β†’ 2026-04-24 Β· 2 obs
● 2026-04-01 07:02:18
● 2026-04-24 14:29:52
●MXmx2.csof.net2026-04-01 β†’ 2026-04-24 Β· 2 obs
● 2026-04-01 07:02:18
● 2026-04-24 14:29:52
●A2600:1900:4001:96e:8000:1:190:5c852026-04-01 β†’ 2026-04-24 Β· 2 obs
● 2026-04-01 07:02:18
● 2026-04-24 14:29:52
●A34.41.139.1932026-04-01 β†’ 2026-04-24 Β· 2 obs
● 2026-04-01 07:02:18
● 2026-04-24 14:29:52

πŸ” DNS Trace

πŸ“‹ Delegation Chain

ZoneNameserversGlue
rua.dns.ripn.net, b.dns.ripn.net, d.dns.ripn.net, e.dns.ripn.net...-
amos-malware.runs1.hwrn.net, ns2.hwrn.net-

βœ… Authoritative Response

Server:34.124.162.145

NS records: ns1.hwrn.net, ns2.hwrn.net

πŸ”’ DNSSEC Status

⚠️ Insecure (no DNSSEC)

No DS record for amos-malware.ru (unsigned zone)

⏱️ Timing

Total: 1167ms | Queries: -

πŸ“„ Records

TypeCountSample Data
A134.41.139.193
AAAA12600:1900:4001:96e:8000:1:190:5c85
NS2ns2.hwrn.net, ns1.hwrn.net
MX2mx2.csof.net (pri: 10), mx1.csof.net (pri: 10)
TXT1v=spf1 include:_incspfcheck.mailspike.ne
SOA1ns1.hwrn.net hostmaster.hwrn.net

Analysis

Hierarchy

amos-malware.ru is the parent of www.amos-malware.ru.

IP Addresses

amos-malware.ru points to two IPs: 2600:1900:4001:96e:8000:1:190:5c85 and 34.41.139.193.

Other host names including belili.matsuro.ru, myinnoshop.co, dovewood.tjww.net, jfaumr9bacu1nzdn7i07g2tvp.qwo231sdx.club and jpgmv.lherbierdesloufs.fr share IP numbers with amos-malware.ru.

Name Servers

amos-malware.ru's delegation uses two name servers, ns1.hwrn.net and ns2.hwrn.net.

amos-malware.ru shares the same name server setup as other domains, for example hrngw.lherbierdesloufs.fr, hmm.dedspac.ru, zein.dedspac.ru, zrgnjpqys.qwo231sdx.club and olds.dedspac.ru.

Host names with six IP numbers:

ns1.hwrn.net points to: 2600:1900:4000:cb7c:8000::, 2600:1900:4061:58e:8000::, 2600:1900:4081:2f2:8000::, 34.32.207.228, 34.46.191.171 and 35.187.247.195.

ns2.hwrn.net points to: 2600:1900:4000:cb7c:8000:4::, 2600:1900:4061:58e:8000:4::, 2600:1900:4081:2f2:8000:4::, 34.124.162.145, 34.136.0.93 and 34.147.11.210.

Mail Servers

amos-malware.ru is handled by two mail servers: mx1.csof.net and mx2.csof.net.

amos-malware.ru shares its mail server setup with other domains, including vps.sed-web.co.uk, yiffgallery.xyz, qaxqax.xyz, mons.dedspac.ru and 9oykdtbxhn2njam0yg6cn5o3qqw9.qwo231sdx.club.

Host names with a single IP:

mx1.csof.net points to 46.4.12.146.

mx2.csof.net points to 46.4.10.173.