rghost.net

Realistic Group

Domain Information

The domain rghost.net registered by Realistic Group was initially registered in July of 2007 through REGTIME LTD.. The hosted servers are located in Moscow, Moscow City within Russia which resides on the RIPE Network Coordination Centre network.
Registrar:
REGTIME LTD.

Server location:
Moscow City, Russia (RU)

Create date:
Sunday, July 15, 2007

Expires date:
Friday, July 15, 2016

Updated date:
Wednesday, May 21, 2014

ASN:
AS34221 QL-AS JSC QUICKLINE

The domain rghost.net has been seen to resolve to the following 7 IP addresses.

July 18, 2016

ns3388511.ip-37-59-33.eu
June 7, 2016

163-172-19-203.rev.poneytelecom.eu
June 4, 2016

February 8, 2016

February 8, 2016

LXXXIX.CCXLVIII.CCXXV.L.quickline.ru
February 27, 2014

quadra102.mastak.net
December 26, 2013

File downloads found at URLs served by rghost.net.

23 / 68    (Malware)

0 / 68
http://rghost.net/download/53091497/.../HOTEL.exe  (25648b8c3896db7d3d33d058c41308ca)

0 / 68
http://rghost.net/download/39696744/.../NetMari0.exe  (e64cb3ca2610b4b366c3abb4ad715557)

16 / 68    (Malware)

12 / 68    (Malware)

0 / 68

1 / 68      (inconclusive)
http://rghost.net/download/56116268/.../LaunchBNS.exe  (ac38732fbd7b65c07d15775c55ae1dd8)

1 / 68      (inconclusive)

2 / 68      (inconclusive)
http://rghost.net/download/7DX7D5gTY/.../BruteCrack.exe  (5da633bc57aada9a14d2f578c8ab123b)

0 / 68
http://rghost.net/download/656lLYMhr/.../patcher_cf2.exe  (91a3d805f55e49d08a9dcb436ea9f2ae)

4 / 68      (inconclusive)

 
Latest 30 of 246 download URLs

The following 3 files have been seen to comunicate with rghost.net in live environments.

May 15, 2014

URL:
http://rghost.net/

Google Analytics:
UA-15644263

Title:
“RGhost — файлообменник”

Description:
“Бесплатный хостинг файлов без ожидания скачивания и капчи. Превью изображений, медиафайлов, документов и архивов. RGhost — быстрый и удобный файлообменник.”

SSL certificate subject:
CN=sni44416.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated

SSL certificate issuer:
CN=COMODO ECC Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Web server:
cloudflare-nginx

Facebook:
Likes:  184
Shares:  1,108
Comments:  154

Statistics above are for the previous month of March 2017.