home

dc153.4shared.com

New IT Solutions Ltd.

Domain Information

The domain dc153.4shared.com registered by New IT Solutions Ltd. was initially registered in January of 2005 through GODADDY.COM, LLC. The domain hosts various software downloads. The hosted servers are located in Fort Lauderdale, Florida within the United States which resides on the WZ Communications Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
Florida, United States (US)

Create date:
Tuesday, January 11, 2005

Expires date:
Friday, January 11, 2019

Updated date:
Thursday, January 23, 2014

ASN:
AS40824 WZCOM-US - WZ Communications Inc.,US

Root domain:
4shared.com

Whois:
1 4shared.com record

Scanner detections:
Detections  (60% detected)

Scan engine
Details
Detections

VIPRE Antivirus
Conduit, Threat.4657539, Trojan.Win32.Generic
57.14%

Reason Heuristics
PUP.Installer.NewITLimited.T, PUP.New IT Limited.NewIT.Bundler (M)
57.14%

avast!
Win32:Malware-gen, Win32:Evo-gen [Susp]
42.86%

ESET NOD32
Win32/Toolbar.Conduit (variant), Win32/HackTool.Inject (variant)
42.86%

Dr.Web
Adware.Conduit.35, Trojan.DownLoader8.62080, Trojan.Popuper.40681
42.86%

Malwarebytes
PUP.Optional.4Shared
28.57%

Trend Micro House Call
TROJ_GEN.F47V1115, Suspici.3DDF1A39
28.57%

Comodo Security
Application.Win32.NewIT.B, UnclassifiedMalware
28.57%

G Data
Win32.Adware.Conduit, Gen:Variant.Strictor.3898
28.57%

Panda Antivirus
PUP/Conduit.A, Trj/Genetic.gen
28.57%

McAfee
Trojan.Artemis!6D6D15C1BDD9, Generic PUP.z!ny
28.57%

Sophos
PUA 'CrackTool' (of type Hacktool), Generic PUA IP
28.57%

F-Prot
W32/Conduit.A.gen
14.29%

Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h
14.29%

Baidu Antivirus
PUA.Win32.Conduit
14.29%

The domain dc153.4shared.com has been seen to resolve to the following IP address.

208.88.227.185
c-n160-uc0603-185.webazilla.com
December 1, 2014

File downloads found at URLs served by dc153.4shared.com.

0 / 68
http://dc153.4shared.com/download/.../keyremapper_setup.exe  (f9e2f2ae09d6dd27a425626e86234099)

0 / 68
http://dc153.4shared.com/download/.../12_-_Anjo.mp3?tsid=20160717-031654-a540d8f2&sbsr=812ea3b9bc96178a9d8aec8b77fc536297c&lgfp=2000  (b21839b1-6582-4f62-4807-3a96ecd7c51c_1d1e0a3245bb649)

23 / 68    (PUP)
http://dc153.4shared.com/download/.../pb_kaybo_v4.exe  (PB Kaybo V4.exe)

0 / 68
http://dc153.4shared.com/download/.../modul_AGOY.rar?tsid=20160414-110427-98ce7984&sbsr=63b8dd4d514c10bff6b1eea662333f1296f&lgfp=2000  (modul agoy.rar)

1 / 68
http://dc153.4shared.com/download/.../___online.exe  (رحلة الخط العربي.exe)

5 / 68      (Adware)
http://dc153.4shared.com/download/50786419/.../4shared_Desktop_3.3.1.exe  (4shared_desktop_3.3.4.exe)

12 / 68    (Adware)
http://dc153.4shared.com/download/50786419/.../4shared_Desktop_3.3.1.exe  (4shared_desktop_3.3.2.exe)

1 / 68      (Adware)
http://dc153.4shared.com/download/.../4shared_Desktop_332.exe  (4shared_desktop_3.3.5.exe)

1 / 68      (Adware)
http://dc153.4shared.com/download/.../4shared_Desktop_332.exe  (4shared_desktop_3.3.5.exe)

7 / 68      (PUP)
http://dc153.4shared.com/download/.../P8_v25.exe  (346d67aeeea3ee0bff5f4be5a4bc2c1b)

5 / 68      (Adware)
http://dc153.4shared.com/download/.../4shared_Desktop_332.exe  (4shared_desktop_3.3.4.exe)

The following file have been seen to comunicate with dc153.4shared.com in live environments.

TCP » 208.88.227.185:443
desktop.exe (Desktop by New IT Solutions)

URL:
http://dc153.4shared.com/

Google Analytics:
UA-306602

Title:
“4shared.com - free file sharing and storage”

SSL certificate subject:
CN=*.4shared.com, OU=Domain Control Validated

SSL certificate issuer:
CN=Go Daddy Secure Certificate Authority - G2, OU=http://certs.godaddy.com/repository/, O="GoDaddy.com, Inc."

Web server:
571

4shared-china.com

4sharedhelper.com

4sync.com

getdownload.net

qip.ru

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.