home

rt4.getdownload.net

Whois protection, this company does not own this domain name s.r.o.

Domain Information

The domain rt4.getdownload.net registered by Whois protection, this company does not own this domain name s.r.o. was initially registered in June of 2015 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Belfast, Northern Ireland within United Kingdom which resides on the RIPE Network Coordination Centre network.
Registrar:
HEBEI GUOJI MAOYI (SHANGHAI) LTD DBA HEBEIDOMAINS.COM

Server location:
Northern Ireland, United Kingdom (GB)

Create date:
Monday, June 29, 2015

Expires date:
Wednesday, June 29, 2016

Updated date:
Monday, June 29, 2015

Root domain:
getdownload.net

Whois:
4 getdownload.net records

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.New IT Limited.NewIT.Bundler (M), PUP.New IT Limited (M)
100.00%

The domain rt4.getdownload.net has been seen to resolve to the following 26 IP addresses.

51.254.28.162
September 1, 2016

158.69.143.113
September 1, 2016

158.69.143.112
August 29, 2016

158.69.145.50
May 23, 2016

158.69.143.96
May 21, 2016

149.202.120.32
May 21, 2016

158.69.145.48
May 19, 2016

109.201.135.34
.
May 18, 2016

158.69.145.49
May 18, 2016

158.69.143.98
May 16, 2016

158.69.143.97
May 15, 2016

95.211.219.65
April 16, 2016

69.162.80.60
60-80-162-69.static.reverse.lstn.net
April 11, 2016

95.211.219.66
April 6, 2016

69.162.80.61
61-80-162-69.static.reverse.lstn.net
April 3, 2016

95.211.117.215
February 13, 2016

69.162.80.58
58-80-162-69.static.reverse.lstn.net
January 31, 2016

69.162.80.53
53-80-162-69.static.reverse.lstn.net
January 30, 2016

69.162.80.59
59-80-162-69.static.reverse.lstn.net
January 28, 2016

69.162.80.55
55-80-162-69.static.reverse.lstn.net
October 12, 2015

69.162.80.54
54-80-162-69.static.reverse.lstn.net
September 1, 2015

103.224.182.226
July 7, 2015

92.242.140.21
unallocated.barefruit.co.uk
May 7, 2015

94.75.243.14
November 13, 2014

95.211.186.130
hosted-by.leaseweb.com
April 4, 2014

62.212.82.78
hosted-by.leaseweb.com
December 26, 2013

File downloads found at URLs served by rt4.getdownload.net.

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/desktop_4031/1FrYxrcG/.../paldf.exe  (041b266147bb5486ffd837548ac3af4d)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/desktop_4031/aoJGYxws/.../Swedish House Mafia - Don't You Worry Child ft. John Martin Radio Edit.exe  (37427c94b2a9ff7f9f3c79d488e105e6)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/desktop_4031/IsVvNxu4/.../Sorriso Maroto - Ainda Existe Amor Em Nos.exe  (f49b34597ccbb0208f4c82598097da48)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/trinity2240_br/u6Nms3gZ/.../RollerCoaster Tycoon 1.exe  (459e0d9c7adedb445686a4ff9334e671)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/trinity2233_sa/SI2veTnx/.../???? 102.exe  (مقرر 102.exe)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/desktop_4031/bnSKSiem/.../My_Talking_Tom_v1.2.1_mod.m00nweb.exe  (f6fad4855806114b7d9feaf284672d66)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/xerox3233_sa/QenPGT_w/.../Infotech english for computer users - Student's Book 4th Edition.exe  (2d783c441bbfbcfac88aabad1625e1c0)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/xerox3244_br/at2_fMR1/.../Crack.Fix.exe  (91d4d2bd852f0e0e329b0b5655b6d3dd)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/xeroxep3290_all/Wd1kp_PP/.../Foundation_Analysis_and_Design-(Bowles_5ed).exe  (188828e52520f7a6879931fa7703e437)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/desktop_4031/J_uemEnp/.../Neurología & Neurocirugía CTO 8.exe  (8bf0bb6b585f9fccd0557122e1e482f9)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/desktop_4031/K2Rs2fO-/.../Ib game.exe  (9fe78f150315d6cd392106a560246f94)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/desktop_4031/60Q9mmD2/.../Manual Motor 2L-T 3L.exe  (5b7419d8faa5bb8a828cfa4809a43078)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/trinityep22330_th/0OWfg7LD/.../?????? - ???????.exe  (สายน้ำ - ลาบานูน.exe)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/trinityep22190_br/giBmLXKK/.../Sons MUHIT.exe  (3db750cabb4c0086159ddc46a01df1e9)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/desktop_4031/_LwR-tGj/.../cd completo de paula fernandes - BAIXAR - CD - 2013.exe  (0c132a2f6fb90be023b08505682a79f2)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/trinity2244_br/Bk6hzPjJ/.../limite maximo corporal (1).exe  (limite maximo corporal.exe)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/xerox32330_th/yZLN0bUc/.../Track5.exe  (ed43cb5869cd8f5e2ead080761c3ffc6)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/trinity/9F0phZ-B/.../doscuments.exe  (4b8850c29f9e8ec8e5308b721ebff23c)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/desktop_4031/aNvXT3Gl/.../minecraft.jar.exe  (4b4a22d2dc43fb8464584dfd4f1e2e0a)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/xerox3244_br/mVgDw_q-/.../07 príncipe de vento - anitta cd.exe  (luciana mello - simples desejo.exe)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/desktop_4031/FLa_yzvL/.../Grand Theft Auto San Andreas por Bradn002.exe  (c22a3004f8966a5d7e1cd6d76653f43d)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/xerox3233_sa/xRKvuW-e/.../?? ????? ????.exe  (ما مرتاح قلبي.exe)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/xeroxep3297_all/xNiEmsSA/.../pivot stickfigure animator beta 4 pro.exe  (d2364ba0ac8395266175f5583e3f4071)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/desktop_4031/I43lzBT0/.../Quantum Mechanics - Vol 1 - Cohen-Tannoudji.exe  (70f3f2f793dc3b4cf466e6464de0eb17)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/desktop_4031/8VWr5HhW/.../Connectify Hotspot PRO v3.7.1.25486 Cracked-Raj.NewEra.exe  (7bee65c67d881ba177aefadc223c6181)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/xerox3233_sa/3f82zPbv/.../Al7ll-com-HP1320pcl5win2kxp.exe  (93c02e3c75c1587ffd711902f022c252)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/desktop_4031/0e_dZNBY/.../???? ??? - ???? ?????? .exe  (سورة نوح - احمد العجمي.exe)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/trinity2240_th/ZDFw2mAk/.../JP_108.exe  (16a4dbe48d558c1b08c09163aa55a33f)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/trinity2240_th/HfCVZa0c/.../font - khom.exe  (f0938cc875ea07b272534f5dc559187b)

1 / 68      (Adware)
http://rt4.getdownload.net/downloadhelper/named/desktop_4031/S601B3YT/.../Google Chrome_New full Latest Version setup-BY_YRS_.exe  (23ffba0ee6e504103c40bd849fcb4fec)

 
Latest 30 of 377 download URLs

The following 239 files have been seen to comunicate with rt4.getdownload.net in live environments.

TCP » 92.242.140.21:80
smelled.exe (Smelled)

TCP » 69.162.80.55:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 92.242.140.21:443
dca-monitoring.exe (Compete DCA Monitoring Tool by Compete)

TCP » 69.162.80.61:80
browser.exe (speed browser by Fast Applications)

TCP » 92.242.140.21:80
marini.exe (Marini)

TCP » 103.224.182.226:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 69.162.80.59:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 69.162.80.59:80
citrio.exe (Citrio by CatalinaGroup)

TCP » 92.242.140.21:443
client.exe (ClientWrapper)

TCP » 92.242.140.21:80
thebrowser.exe (TheBrowser by Goobzo)

TCP » 69.162.80.59:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 92.242.140.21:443
dca-monitoring.exe (Compete DCA Monitoring Tool by Compete)

TCP » 69.162.80.55:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 69.162.80.60:25
init.exe

TCP » 92.242.140.21:443
WindowService.exe (WindowService)

TCP » 92.242.140.21:443
ciuninstall.exe

TCP » 92.242.140.21:1866
jutched.exe

TCP » 92.242.140.21:443
dca-monitoring.exe (Compete DCA Monitoring Tool by Compete)

TCP » 92.242.140.21:80
masterupdater.exe

TCP » 158.69.145.50:80
torrenthandler.crx

 
Latest 20 of 246 files

URL:
http://rt4.getdownload.net/

Title:
“Loading....”

Title (12/26/2013):
“4shared.com - free file sharing and storage”

Title (1/10/2014):
“GetPortal CDN Network”

Description:
“This website is for sale! getdownload.net is your first and best source for all of the information you’re looking for. From general topics to more of what you would expect to find here, getdownload.net has it all. We hope you find what you are s...”

Web server:
Apache-Coyote/1.1

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.