rt3.getdownload.net

Whois protection, this company does not own this domain name s.r.o.

Domain Information

The domain rt3.getdownload.net registered by Whois protection, this company does not own this domain name s.r.o. was initially registered in June of 2015 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Belfast, Northern Ireland within United Kingdom which resides on the RIPE Network Coordination Centre network.
Remove Malware from rt3.getdownload.net - Powered by Reason Core Security
Registrar:
HEBEI GUOJI MAOYI (SHANGHAI) LTD DBA HEBEIDOMAINS.COM

Server location:
Northern Ireland, United Kingdom (GB)

Create date:
Monday, June 29, 2015

Expires date:
Wednesday, June 29, 2016

Updated date:
Monday, June 29, 2015

Root domain:

Scanner detections:
Detections  (62% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.NewITLimited.?, PUP.NewITLimited.FF, PUP.NewITLimited.b, PUP.Installer.NewITLimited.l, PUP.NewITLimited.T, PUP.NewITLimited.s, PUP.NewITLimited.L, PUP.NewITLimited.a, PUP.Installer.NewITLimited.Q, PUP.Installer.New IT Limited, Threat.New IT Limited.Bundler, PUP.New IT Limited.Bundler, PUP.New IT Limited.NewIT.Bundler (M)
96.55%

Dr.Web
Adware.Downware.1417, Trojan.StartPage.55728, Threat.Undefined, Trojan.StartPage.56682, Adware.Downware.2538, Trojan.StartPage.57018
75.86%

McAfee Web Gateway
Artemis!A8563F17A5F3, PUP-FEP!9C6B05D95C89, PUP-FEP!394D1952BD96, Heuristic.BehavesLike.Win32.Suspicious.H, BehavesLike.Win32.Downloader.tc
72.41%

Rising Antivirus
PE:PUF.4Shared!1.9C25
72.41%

Malwarebytes
PUP.Optional.4Shared
68.97%

NANO AntiVirus
Trojan.Win32.Downware.cumjmn, Trojan.Win32.StartPage.crgjiq, Trojan.Win32.StartPage.cqhqit, Trojan.Win32.StartPage.cqzbfz
68.97%

Comodo Security
Application.Win32.NewIT.B, Application.Win32.4Shared.G, Application.Win32.NewIT.A, Application.Win32.4Shared.C
68.97%

McAfee
Artemis!A8563F17A5F3, PUP-FEP!9C6B05D95C89, PUP-FEP!394D1952BD96, Program.PUP-FEP
65.52%

Agnitum Outpost
PUA.Toolbar.Ask, PUA.4Shared
65.52%

avast!
Win32:FourShared-D [PUP], Win32:Toolbar-N [PUP], PUP-gen [PUP], Win32:FourShared-T [PUP]
62.07%

Sophos
4Share Downloader, PUA '4Share Downloader'
55.17%

VIPRE Antivirus
Trojan.Win32.Generic, 4Shared, Threat.4788236, Threat.4150696
51.72%

K7 AntiVirus
Trojan , Unwanted-Program
48.28%

K7 Gateway Antivirus
Unwanted-Program , Trojan
48.28%

Avira AntiVirus
APPL/Downloader.Gen6, APPL/NewIT.A, APPL/Maxiget.eonb
48.28%

The domain rt3.getdownload.net has been seen to resolve to the following 10 IP addresses.

55-80-162-69.static.reverse.lstn.net
February 13, 2016

60-80-162-69.static.reverse.lstn.net
February 9, 2016

58-80-162-69.static.reverse.lstn.net
February 1, 2016

53-80-162-69.static.reverse.lstn.net
January 27, 2016

59-80-162-69.static.reverse.lstn.net
January 6, 2016

August 11, 2015

lb-182-239.above.com
July 1, 2015

unallocated.barefruit.co.uk
May 6, 2015

November 3, 2014

hosted-by.leaseweb.com
December 26, 2013

File downloads found at URLs served by rt3.getdownload.net.

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

2 / 68      (Adware)

26 / 68    (Adware)
http://rt3.getdownload.net/downloadhelper/named/trinityep22330_th/nLYs5PxL/.../??????..??????? -? ???? ???????.exe  (ไม่รัก..อย่าฝืน -- เป๊ก ผลิตโชค.exe)

16 / 68    (Adware)

15 / 68    (Adware)

24 / 68    (Adware)

37 / 68    (Adware)

 
Latest 30 of 150 download URLs

The following 137 files have been seen to comunicate with rt3.getdownload.net in live environments.

 
Latest 20 of 137 files

URL:
http://rt3.getdownload.net/

Google Analytics:
UA-43967021

Title:
“Loading....”

Title (12/26/2013):
“4shared.com - free file sharing and storage”

Title (1/10/2014):
“GetPortal CDN Network”

Web server:
Apache-Coyote/1.1

Remove Malware from rt3.getdownload.net - Powered by Reason Core Security