CF1760425506916-tsm20251012143351

MXLIST.NET - malware.wtf

Search for IP or hostnames:

malware.wtf checked at 2025-10-14T07:05:06.864Z 322ms 79/79/79 100% R:8

malware.wtf

NSgeorge.ns.cloudflare.com
A2606:4700:58::adf5:3ba7 🇺🇸 Cloudflare
PTRgeorge.ns.cloudflare.com
A2803:f800:50::6ca2:c1a7 🇨🇷 Cloudflare
PTRgeorge.ns.cloudflare.com
A2a06:98c1:50::ac40:21a7 🇺🇸 Cloudflare
PTRgeorge.ns.cloudflare.com
A108.162.193.167🇺🇸 Cloudflare
PTRgeorge.ns.cloudflare.com
A172.64.33.167🇺🇸 Cloudflare
PTRgeorge.ns.cloudflare.com
A173.245.59.167🇺🇸 Cloudflare
PTRgeorge.ns.cloudflare.com
NSlily.ns.cloudflare.com
A2606:4700:50::adf5:3a82 🇺🇸 Cloudflare
PTRlily.ns.cloudflare.com
A2803:f800:50::6ca2:c082 🇨🇷 Cloudflare
PTRlily.ns.cloudflare.com
A2a06:98c1:50::ac40:2082 🇺🇸 Cloudflare
PTRlily.ns.cloudflare.com
A108.162.192.130🇺🇸 Cloudflare
PTRlily.ns.cloudflare.com
A172.64.32.130🇺🇸 Cloudflare
PTRlily.ns.cloudflare.com
A173.245.58.130🇺🇸 Cloudflare
PTRlily.ns.cloudflare.com

wtf

NSv0n0.nic.wtf
NSv0n1.nic.wtf
NSv0n2.nic.wtf
NSv0n3.nic.wtf
NSv2n0.nic.wtf
NSv2n1.nic.wtf

Starts with same word

Starts similarily

AI analysis

Two name servers george.ns.cloudflare.com and lily.ns.cloudflare.com handle the delegation for malware.wtf.

malware.wtf shares the same name server setup as other domains, for instance hypecase.com, certimail.ca, ruststake.com, pf1.co.il and caixas.com.

malware.wtf at least partially shares name servers with other domains, for instance rewu.net, leg.co.za, iqnu.com, skycop.lt and comlapcloud.com.

These name servers are commonly used alongside ian.ns.cloudflare.com, perla.ns.cloudflare.com and amanda.ns.cloudflare.com.

Six IP addresses per host:

george.ns.cloudflare.com points to 2606:4700:58::adf5:3ba7, 2803:f800:50::6ca2:c1a7, 2a06:98c1:50::ac40:21a7, 108.162.193.167, 172.64.33.167 and 173.245.59.167; lily.ns.cloudflare.com points to 2606:4700:50::adf5:3a82, 2803:f800:50::6ca2:c082, 2a06:98c1:50::ac40:2082, 108.162.192.130, 172.64.32.130 and 173.245.58.130

Perform reverse DNS lookup as well as normal forward DNS. Check Autonomous System Numbers (ASNs) and BGP connections between Internet Service Providers.
dbq

iEKCzOR CF johedugfp 2025-10-14