ad-file.com

Realistic Group

Domain Information

The domain ad-file.com registered by Realistic Group was initially registered in November of 2014 through REGTIME LTD.. The hosted servers are located in Roubaix, Nord-Pas-De-Calais within France which resides on the RIPE Network Coordination Centre network.
Registrar:
REGTIME LTD.

Server location:
Nord-Pas-De-Calais, France (FR)

Create date:
Friday, November 7, 2014

Expires date:
Monday, November 7, 2016

Updated date:
Monday, May 25, 2015

ASN:
AS16276 OVH OVH SAS, FR

Google Safe Browsing:
phishing

Scan engine
Details
Detections

MicroWorld eScan
Gen:Variant.Symmi.37096, Trojan.GenericKD.3014353, Trojan.Generic.14673106
21.43%

McAfee
Artemis!D2C210780627, Artemis!5A034A49A715, Artemis!055B3B95BD83
21.43%

Bitdefender
Gen:Variant.Symmi.37096, Trojan.GenericKD.3014353, Trojan.Generic.14673106
21.43%

avast!
Win32:Evo-gen [Susp], Win32:Malware-gen
21.43%

Lavasoft Ad-Aware
Gen:Variant.Symmi.37096, Trojan.GenericKD.3014353, Trojan.Generic.14673106
21.43%

F-Secure
Gen:Variant.Symmi.37096, Trojan.GenericKD.3014353, Trojan.Generic.14673106
21.43%

Emsisoft Anti-Malware
Gen:Variant.Symmi.37096, Trojan.GenericKD.3014353, Trojan.Generic.14673106
21.43%

Arcabit
Trojan.Symmi.D90E8, Trojan.Generic.D2DFED1, Trojan.Generic.DDFE4D2
21.43%

G Data
Gen:Variant.Symmi.37096, Trojan.GenericKD.3014353, Trojan.Generic.14673106
21.43%

AVG
Generic13_c, ILCrypt, Luhe.Fiha.A
21.43%

Qihoo 360 Security
HEUR/QVM19.1.Malware.Gen, Win32/Trojan.eb7, HEUR/QVM03.0.Malware.Gen
21.43%

ESET NOD32
Win32/Packed.Themida suspicious (variant), MSIL/DllInject.AI potentially unsafe (variant)
14.29%

Sophos
Mal/EncPk-DW, Mal/MsilInj-G
14.29%

Avira AntiVirus
TR/Symmi.3067904.1, TR/Dldr.Delphi.Gen4
14.29%

Reason Heuristics
PUP.AnchorFree.Installer.Meta (L), Threat.Win.Reputation.IMP
14.29%

The domain ad-file.com has been seen to resolve to the following 6 IP addresses.

July 13, 2016

ns3388511.ip-37-59-33.eu
June 8, 2016

163-172-19-203.rev.poneytelecom.eu
June 4, 2016

February 26, 2016

February 26, 2016

LXXXIX.CCXLVIII.CCXXV.L.quickline.ru
May 7, 2015

File downloads found at URLs served by ad-file.com.

0 / 68

11 / 68    (Malware)

0 / 68

0 / 68

0 / 68

0 / 68

19 / 68    (Malware)

0 / 68
http://ad-file.com/torrent/.../MultiPackBase.exe.torrent  (7389a841ce656c68e0fb97176bdc84c7)

0 / 68

6 / 68      (Malware)

0 / 68

1 / 68      (PUP)

 
Latest 30 of 37 download URLs

The following 3 files have been seen to comunicate with ad-file.com in live environments.

URL:
http://ad-file.com/

Google Analytics:
UA-15644263

Title:
“RGhost — file sharing”

Description:
“Free file hosting without waiting and captcha. Preview for images, media, documents and archives. RGhost — fast and easy file sharing.”

SSL certificate subject:
CN=sni44416.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated

SSL certificate issuer:
CN=COMODO ECC Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Web server:
cloudflare-nginx

Facebook:
Likes:  183
Shares:  1,104
Comments:  153

Statistics above are for the previous month of October 2024.