Domain > ar.rghost.net

More information on this domain is in AlienVault OTX

Property	Value
Email	contact@realisticgroup.com
NameServer	JAKE.NS.CLOUDFLARE.COM
Created	2007-07-15 00:00:00
Changed	2014-05-21 00:00:00
Expires	2016-07-15 00:00:00
Registrar	REGTIME LTD.

DNS Resolutions

Date	IP Address
2013-08-10	217.199.218.100 (ClassC)
2013-10-19	217.199.218.102 (ClassC)
2014-02-19	89.248.225.50 (ClassC)
2014-10-19	89.248.225.50 (ClassC)
2014-10-26	89.248.225.51 (ClassC)
2019-09-05	104.28.14.51 (ClassC)
2025-08-02	172.67.212.239 (ClassC)
2025-08-06	104.21.50.229 (ClassC)

Port 443

HTTP/1.1 200 OKDate: Thu, 05 Sep 2019 15:20:51 GMTContent-Type: text/html; charsetutf-8Transfer-Encoding: chunkedConnection: keep-aliveSet-Cookie: __cfduidd4965611e0a0077cd24dd431c9eda8e241567696851;

!DOCTYPE html>html>head>meta contentwidthdevice-width, initial-scale1 nameviewport />title>PredictionMarkt | Prediction Markets Trading Platform/title>meta namedescription contentPredictionMarkt is a Ethereum-based trading platform for betting on the outcome of events in Business, Technology, Finance, Sports and Politics.>meta namekeywords contentprediction, market, trading, ethereum>meta propertyfb:app_id content500787713619031>meta propertyog:site_name contentPredictionMarkt>meta namecsrf-param contentauthenticity_token />meta namecsrf-token contentEAlDXMxXIJ/58fbQPXCU3nDsdGeMpnGijqnra7itwucZNstdbEU5t9ZFMm2EzDfDrHaeNbhEWYrty9e22uBfDg />meta nameturbolinks-cache-control contentno-preview />link relstylesheet mediaall href/assets/application-0b5accc0e0c6a23090c8aa99e024164cd2808dde544ec5f0c37c31c3a7e7e93d.css data-turbolinks-trackreload />script src/packs/application-2b1a98f1c8ef3864a7f1.js data-turbolinks-trackreload deferdefer>/script>script srchttps://www.googletagmanager.com/gtag/js?idUA-113929701-1 asyncasync>/script>link href/favicons/round-57.png relapple-touch-icon sizes57x57 />link href/favicons/round-57.png relicon sizes57x57 />link href/favicons/round-144.png relapple-touch-icon sizes144x144 />link href/favicons/round-144.png relicon sizes144x144 />link href/favicons/round-152.png relapple-touch-icon sizes152x152 />link href/favicons/round-152.png relicon sizes152x152 />link href/favicons/round-196.png relapple-touch-icon sizes196x196 />link href/favicons/round-196.png relicon sizes196x196 />link href/favicons/round-152.png relapple-touch-icon-precomposed />link relshortcut icon typeimage/x-icon href/favicon.ico?v2 sizes16x16 24x24 32x32 48x48 64x64 />link hrefhttps://twitter.com/predictionmarkt relme />/head>body>header classmdc-toolbar mdc-toolbar--fixed data-headroom>div classmdc-toolbar__row>section classheader-brand>a href/>div classheader-brand__large>img height40 altPredictionMarkt src/assets/logos/horizontal-white-bg-acff10ca3aa9cbd98a053d72000c990e65851c6eafec908186bf851abc8cee34.svg />/div>di

Subdomains

Date	Domain	IP
ipv6.rghost.net	2025-05-25	104.21.50.229
fa.rghost.net	2025-06-15	104.21.50.229
id.rghost.net	2025-05-25	104.21.50.229
pl.rghost.net	2025-06-27	104.21.50.229
ar.rghost.net	2013-08-10	217.199.218.100
tr.rghost.net	2025-06-29	172.67.212.239
www.rghost.net	2025-04-18	172.67.212.239

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

MD5	A/V
c185203cc781e769719054af61522222	[TR/Dldr.Bladabindi.A.88] [TrojanDownloader*MSIL/Bladabindi.A]
49debd97285c2374192e4561b00d97b0	[Artemis!49DEBD97285C] [Trojan.MSIL.S] [Variant.Adware.Barys] [Trojan.Win32.Llac.dbhuqk] [TrojanDownloader.J] [BehavesLike.Win32.Backdoor.dh] [Trojan.Inject] [Win32/Trojan.1c9]
fae1da877f5fc19e1b6742dadd38d07c
7a7f5361b575265c361383b725791b68
8243b610441dea895bb83290c209e1ab	[Artemis!8243B610441D] [Trojan.MSIL.UL] [BehavesLike.Win32.Trojan.mh] [Trojan.MSIL.Kryptik.bIC]
7d03e1fafcd85df8b2cbeddaea9be22f

Domain > ar.rghost.net

Is this malicious?

Files that talk to ar.rghost.net

Whois

DNS Resolutions

Port 443

Subdomains