rt4.getdownload.net

Whois protection, this company does not own this domain name s.r.o.

Domain Information

The domain rt4.getdownload.net registered by Whois protection, this company does not own this domain name s.r.o. was initially registered in June of 2015 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Belfast, Northern Ireland within United Kingdom which resides on the RIPE Network Coordination Centre network.
Remove Malware from rt4.getdownload.net - Powered by Reason Core Security
Registrar:
HEBEI GUOJI MAOYI (SHANGHAI) LTD DBA HEBEIDOMAINS.COM

Server location:
Northern Ireland, United Kingdom (GB)

Create date:
Monday, June 29, 2015

Expires date:
Wednesday, June 29, 2016

Updated date:
Monday, June 29, 2015

Root domain:

Scanner detections:
Detections  (61% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.NewITLimited.EE, PUP.Installer.NewITLimited.L, PUP.NewITLimited.T, PUP.Installer.NewITLimited.V, PUP.Installer.NewITLimited.a, PUP.Installer.NewITLimited.R, PUP.Installer.NewITLimited.b, PUP.Installer.NewITLimited.P, PUP.Installer.NewITLimited.X, PUP.Installer.New IT Limited, Threat.New IT Limited.Bundler, PUP.New IT Limited.NewIT.Bundler (M)
93.75%

Rising Antivirus
PE:Malware.XPACK/RDM!5.1, PE:PUF.4Shared!1.9C25
59.38%

McAfee
PUP-FEP!9C6B05D95C89, Artemis!A8563F17A5F3, PUP-FEP!BE811763E6AD, PUP-FEP!394D1952BD96, Program.PUP-FEP
56.25%

Malwarebytes
PUP.Optional.4Shared
56.25%

Dr.Web
Trojan.StartPage.55728, Adware.Downware.1417, Trojan.StartPage.56682, Trojan.StartPage.55729, Adware.Downware.2538, Trojan.StartPage.56988
56.25%

McAfee Web Gateway
PUP-FEP!9C6B05D95C89, Artemis!A8563F17A5F3, PUP-FEP!BE811763E6AD, PUP-FEP!394D1952BD96, Heuristic.BehavesLike.Win32.Suspicious.H
56.25%

Agnitum Outpost
PUA.4Shared, PUA.Toolbar.Ask, Adware.4Shared
53.13%

NANO AntiVirus
Trojan.Win32.StartPage.crgjiq, Trojan.Win32.Downware.cumjmn, Trojan.Win32.StartPage.cqhqit, Trojan.Win32.StartPage.cqhrkh
53.13%

Comodo Security
Application.Win32.4Shared.G, Application.Win32.NewIT.B, Application.Win32.NewIT.A
53.13%

avast!
Win32:FourShared-D [PUP], Win32:PUP-gen [PUP], Win32:Toolbar-N [PUP]
50.00%

Trend Micro House Call
TROJ_SPNR.08J813, TROJ_GEN.F47V0831, TSPY_DOWNLOADER_CK200005.UVPA, Suspicious_GEN.F47V1104
43.75%

Bkav FE
W32.Clod979.Trojan, W32.HfsAdware
40.63%

ESET NOD32
Win32/4Shared.D potentially unwanted application, Win32/Bundled.Toolbar.Ask.D potentially unsafe application, Win32/4Shared.AU potentially unwanted application
40.63%

VIPRE Antivirus
Unnamed.Threat, Trojan.Win32.Generic, 4Shared, Threat.4788236, Threat.4150696
34.38%

Sophos
4Share Downloader, PUA '4Share Downloader'
34.38%

The domain rt4.getdownload.net has been seen to resolve to the following 11 IP addresses.

February 13, 2016

58-80-162-69.static.reverse.lstn.net
January 31, 2016

53-80-162-69.static.reverse.lstn.net
January 30, 2016

59-80-162-69.static.reverse.lstn.net
January 28, 2016

55-80-162-69.static.reverse.lstn.net
October 12, 2015

54-80-162-69.static.reverse.lstn.net
September 1, 2015

July 7, 2015

unallocated.barefruit.co.uk
May 7, 2015

November 13, 2014

hosted-by.leaseweb.com
April 4, 2014

hosted-by.leaseweb.com
December 26, 2013

File downloads found at URLs served by rt4.getdownload.net.

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/trinity2240_th/SOnCgGnj/.../??????????(??????,??????)????? 01.exe  (เสียงนกตูม(ตะลุ่ม,อีลุ้ม)รีนิว 01.exe)

1 / 68      (Adware)

1 / 68      (Adware)

27 / 68    (Adware)
http://rt4.getdownload.net/downloadhelper/named/xerox3240_th/jA3BPol0/.../??????????????????.exe  (ขอใจเทอแลกเบอร์โทร.exe)

1 / 68      (Adware)

19 / 68    (Adware)

13 / 68    (Adware)

24 / 68    (Adware)

 
Latest 30 of 170 download URLs

The following 137 files have been seen to comunicate with rt4.getdownload.net in live environments.

 
Latest 20 of 138 files

URL:
http://rt4.getdownload.net/

Title:
“Loading....”

Title (12/26/2013):
“4shared.com - free file sharing and storage”

Title (1/10/2014):
“GetPortal CDN Network”

Description:
“This website is for sale! getdownload.net is your first and best source for all of the information you’re looking for. From general topics to more of what you would expect to find here, getdownload.net has it all. We hope you find what you are s...”

Web server:
Microsoft-IIS/7.5 (ASP.NET) (Version: 4.0.30319)

Remove Malware from rt4.getdownload.net - Powered by Reason Core Security