home

d.highaa.com

Privacy Protection Service INC d/b/a PrivacyProtect.org  (Proxy Registrant)

Domain Information

The domain d.highaa.com is registered by proxy through PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM and was originally registered in December of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Belfast, Northern Ireland within United Kingdom which resides on the RIPE Network Coordination Centre network.
Registrar:
PDR LTD. D/B/A PUBLICDOMAINREGISTRY.COM

Server location:
Northern Ireland, United Kingdom (GB)

Create date:
Tuesday, December 9, 2014

Expires date:
Friday, December 9, 2016

Updated date:
Thursday, November 26, 2015

Root domain:
highaa.com

Whois:
2 highaa.com records

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Bundler.InstallCore, PUP.Installer.Bundler.Installer.Meta (M), PUP.InstallCore.Installer (M)
80.00%

Malwarebytes
PUP.Optional.InstallCore
33.33%

K7 AntiVirus
Trojan
33.33%

Agnitum Outpost
PUA.InstallCore
33.33%

Avira AntiVirus
APPL/InstallCore.QL, APPL/InstallCore.ZS
33.33%

Baidu Antivirus
Adware.Win32.InstallCore
33.33%

ESET NOD32
Win32/InstallCore.QL potentially unwanted application
26.67%

Comodo Security
Application.Win32.InstallCore.KK, UnclassifiedMalware
20.00%

McAfee
Artemis!97B74C1E0D92, RDN/Generic.dx!d2t
13.33%

Fortinet FortiGate
Riskware/InstallCore
13.33%

VIPRE Antivirus
Threat.4150696
13.33%

Dr.Web
Trojan.Packed.29973
13.33%

NANO AntiVirus
Riskware.Win32.InstallCore.dnajxq
13.33%

Vba32 AntiVirus
Malware-Cryptor.InstallCore.gen
13.33%

Trend Micro House Call
Suspicious_GEN.F47V0121
6.67%

The domain d.highaa.com has been seen to resolve to the following IP address.

92.242.140.21
unallocated.barefruit.co.uk
June 19, 2015

File downloads found at URLs served by d.highaa.com.

1 / 68      (PUP)
http://d.highaa.com/?ic_user_id=9289&data=P7TuySTc6V6kcVUdQCMPwGgq1S7cA8PE7rhOfjMDXWTqkNjnV2MzlmCWL3AZzfwRdONYg9DLnZdPeZFywUSupe0JrR6zeJNfQ7yNYwhrqr6 C3Za6CpTYyguabv5N80npN67ROoglYwhPzc/IKfoUOgN y7VoS6BcfXmd1 JX2VphIjwxzrCHfEvKl/JTsDkZfk8a/BgDNV7SDgWqcZ0UyTILTJ1wZf7T65qm2C3jTLlb2S37wF3rtaQxzL2hftmirfmNXL jSskKb3tPQ6VOaOJlMu3phix8YoEirvh81teiqfatlCJ8U 6xrUBQ kFVS aQ cRLzMMZlJ7FkR01 GCctIq1Ejo3GBFnoLmWmBCY NjTt2l/hqQ9cUQWg816Z7nQ8NiDVrXCSG35rtnEunq9aaNiId7bNGfGI3USwS1BmYizIiEm2n BeS2tJA2yDKCiI1BuEzoGodDdS5vE7eI1ymFZf074BWhk310ShThgUcF04TzTlz WgqeQIMmfy289pbs1pj40rj7tffkT3X258xyREb20Ra42nDlp vAOewWn3GobNwpdjC4sxiZ SnPKJ/.../Z5t6wYk42OqdvJxSfGSblCtTV8M7XXos0rKxeg7ipgTM3DWoWvDB1KnoOXmLCj EvAc2q7VPEoXdnaqD2gi98rcy9fxzaQGWU3qab73AOGqUm2XRA cgJvEJHLXx0wtRvE5P30MA7oKYjHOjI7Dxj9YSPWpfE14jTm7FcqbWgsUwN0V7bYXFo=&key=PF izy9rpbhXs61eZHHhTPuvgE0uduKSGCkBAg8jYhTKO7zM3eFlCIrpJiqBd7x6tdQDNcRVAydQiYP28qjIw8bvvg0STE24r bRoR61Yd7nQ6dRaY 83qXK9BD0 rkHGCC5UXDFc5utHdL2wRPzVp6mAPLVAJXi0Nbr98Vyd1XuYHlwQ  (baidu-pc-faster-5-0-9-107757-32-bits.exe)

1 / 68      (PUP)
http://d.highaa.com/?ic_user_id=9289&data=d43U3Bu9e/WYNFIBhgvYO5yn8mQCzmWueIh4gB4tlr/Hl0n2d7woN8t3pDyvYIEwyNrwsWHRJepe oy9Ezxw2NMHLVYA0ZzDTVhrAyKS YkuWP3jyQ6f/ZlzU8WzVTo8wxfsnTl1hTNT01ixaDNB4R SQ/pcXgc1AaP6L Y0F3H1Ay9fk/6ymu5j8Nfex8aXMRSg6gEeZd6Vcf 0 dRsEZpw7CESPpBqBtkbs8iR5YD3 4RjUtZsLyn0u owwcj1iI1C59swhc7xLuyLfyptRBaz5TNsnyNUVfYlnyzGrJ8 h0okepMhpyHJYjNNO0iaEYQ7pQS9MpVo5Oc0TfTe YxR8Nb2r9I2pTt6ZwEmFs7U0FXjdjob2QZkyBla x7GY28dPwiZs7ZuONtJIYzR5fyqHPqkNfqo/0jedTdp4psBK22ishlf6IdDQPh/uZVjVMOWcJBk/LoXHZL7oVQ1Ex6dXsXVF3QI4Ln6olmX6GBwYfewM2aQfQXcrtOYTvC9hIixhP5j/sqzds a2DS9R4JrQz4zMWGbeFPO/X9gTdfpu3E817gUNg6Od9JH QDrIdoghuFAPhHnu3T7lr9c57AGZPjGfe/wwguDPtbiTwn8WbZtZV7C5DSn7 6GyucDVH5BUAPUNr6xfs1FYDGcWaI52y5E y4IBAgYhIxF1nNT01g5U1XENF5pkebJh77KvSHqV5iBzbcl/.../O6aa5RXNljoW98RhzoUlDQkOCDil3mHlFClTTrU8JwJzu6v4MEYaeEVD5du4gBoTzzpEIcZT7HcA4CHNkP17fO3g  (videopad-video-editor-3-73-32-bits.exe)

11 / 68    (PUP)
http://d.highaa.com/?ic_user_id=9289&data=UDnG1jDudVgKrERyhpPEwuLY2IxFYNowNBJc soBmx7M2k4SCRccZEOag6u8fN89F9tev73ClPgupc/6WXAFcKWiLtl95Y O /MySIPtBB wWU86f71x5JWEs/voC4IcV7R9aztAfDz JkmFErgMMejF4wk9chctA68igPGQI5EIBkVqWN0NVQ3H/fblA0wwdmw8RcuMPZLBL6Q/VqUv/2kvPIL2grCYBmE7nj6adua8IlxP0am0SWoi83WTkP34HUvxz/GhSf/wOelf84t6jFIbphf rwF0j/ uqDUXhTXSlYa09GtGgs5unZ3f0efMYa2x796Wpb04gXBXJJcIW8q2EPgboVtfc4F7QGTbWgsTNMOLpK0CAMYZb21pNzxZBKoWpQpQTwghPw1FWvHMq1AxaLzQUBqx9EjBdokEMZXn22PKXMwLv986/19urCnO1GJvAp7y5HIs7IZsfM2dVR1YDKf8mkkHd 3GR2 x7U4ZM0b8bbt1sfrPl3dqFWZle8SEFYJit0GzsamXi w A8BGv9JWkJ4b8TvAPxTAVMn4EX3SGEta4mo0m2AbaKYdvQn7GtIi2/emdRf3Pz xFAGCcgY4BhvzcLkXKc3HbkK3Hcrt 43/ko2U0BoMpMVn34pjZSScq4Hjn72xWuvN/g0/M19YuN6p9kXXTmMEMwfTiyOMX0lv wm28bhRYmenvq 9FfrbH6PxqiGF/MItoFyHWMzRWdFrYGLoV3A65xowPjxmiIgeoxhj8R3K5wjJ8LL eo2c2yA2Mp m3FTKeGAOeAfCIWK1wBz/.../sGMeKTKd72QJKZqpJndi38 BUk7HPqGD2lnvIBqRl2  (mozilla-firefox-35-0-32-bits.exe)

1 / 68      (PUP)
http://d.highaa.com/?ic_user_id=9289&data=1w8tBW8OTKcbFfJ3p4VC7LsID69q7/DA8NJr4EVVnnAnIF7O/olrN1Lz7xLPTr jtseXvpsQV QE5hnCYqWu6wY5yosp05oUJsEKMEdE8SBi PN5Dkv7Iwdu76nhIHFv6NMzVeOr4XoMKQHccJsYqNHEV2tIGA51 NCxkMQw6R/yDcPkzncDgtq/X23fAuOAW9vYIOYCHUhGtXG0ZjIeQKXj8zsr11R7xPhrW1CmVT8hvAOc0/pOlSwHQsTyf34nZfl7eqRCcjgxmS5oZaVR5MR2xFqO6FRp/ATbM7CEFxjkOybIT7eTH5Wi9cXY8IFowLtt0SKEGTXNn7pn/3xq4oadcJGMOowt6gjr4g9O8MCzGknYM7CaNzbgPYD WyEuZW8jyPxAY4iChB9PruAE bW1tVsGzL C7S yPCJZmh INIi3Oz8IxNH5auzbUaiZG9HMFAhvCgCTRbXFi1r9G9ikYUYCFyxzh1ebbScGTTG78ufqSb4V wlxlRMbNhn6DbUxsIh7geozjrJ6sFMqNgsLqloqn5 u5j13oysjTO46ZPXpqD0sW2VcXtf5lqQmB9rSnMJ4MBSR9DHfUhYZN47NH9HYxHzNx501dnoizAvUKkArsSDFH2pcsTq1Zwfj2isW4f4qI7iv9P1s4MMI0skNrZNN9LnqbifYeFN6uJwSBSNL72swOR2dHeH8IE0Kw/.../73k utDU7pkL76t vcazfuUEXb82O1OwJ9DkGhMQrBfFgKiSNEm1  (sxe-injected-client-13-0-fix-3-32-bits.exe)

11 / 68    (PUP)
http://d.highaa.com/?ic_user_id=9289&data=HC8lCFlY0Yu4fy HAdlM 39c utH6r1Xv3BkVIUHaE/wJYYvahpYb4 pTN4BPlV8fPa6YS9vuftkurcuMjm6Bbm9JnAfx3IBwFwY8TkHAoBiPqdnoVnLIdoljJF4MCWzRzd4kvmbytLg5jHDa3/lte6GqA MHbEB0vL VcSQwCLQ 2Zo24hxfJSko3hefYxx/gKARHt0yaFM PYdyjGgBScgkDIyvRsHM7q6Q2oK52gUrysA7Orm f6tRqzx4EcXfSOncwveBgbclpO1yxbljJGNChQwkcG IPAvWwmFjXf1mm1T/GaaYwe/klS0 ij/htcbKevnDpYEqv t8eRvSSmilN8vQC5r7He2ZbZeN3p3yMQBVQDbx8u303p8/A9V1qOb0Qd8iEodqNx6PAmsnGzjOkKTDgeyF4OFvObGpz59SeXRDcwT3IAyQILSCDLcOwLaSrz5JEmq3IAEfwRFZL/KxcRJ4oho37W4XHc4Tq6ExQRDMo6AQQHHcYXy1/6XZx3p9JZdhCNzvkTcm9ydqDYvmXLKsClNt59LK2/ShHZHJHLQrQG8pFzIzZ22oqwedUzpBBPFGnnF0u96Is6DJk sr7yPmAUKagokEVR1ZCaeOqP1cX kdUoFyJbuN8V8PL7U4/teLjfknFxWYqpd6o5VWmaEn3OrTWyj5Ls9HJOcqYF2/tp3XZjFAL u8CLVNWoWIlIC8uJTaJ0qRPVv5EE8IDvcFoKSIZUq0l82cMDYdgtTWHlfaxZv9NuQ9dyzeU5cP2/L9VAXdbIK8S1QPYoAYGKZabXjd3K5XyZgHfGOBpzXzBnpAR5i2uE=&key=cdOLnHTbAHmXWWy/8GMW7Nj/gKyWqnQ0VNyuQt9kOyIuczRmqcleYtl19HCfbvNKjHm35vbuByR8tmCKC/hPh3l//HifYn1Am3hXLRIXkNv o0IDXd3ohOkwkT6Wo  (mozilla-firefox-35-0-32-bits.exe)

1 / 68      (PUP)
http://d.highaa.com/?ic_user_id=9289&data=mLy4Koo6iAPjgN2eKgUISfWoNaCYVFkI3E0h5hQ3Rq34gfb o3k4QXEp dF9Aabi7eZ Qwg8KneeNjNaVTLZL/ROIwhEIRdG 4sRbJ6vDWycqEBQUQCs6RLB0HIeWpXMRaIfHNAnKaftgybra6ZrrS94N8YVwaGuhGgjniyBxSHa2xEeBAPOlmeQsGygQd/rSs7i75du9L9lkmCfIu1c/w06ZKBmt8j60bhKuyUg657/cS N92u9mlR0lwNY2VvdeCOkFP7yZInMmL84gD6NzpePrgs5cOqZhtpWeYciRWaNKGWrcXQMqc9G1z/tGWTJyJEO1NWF5pfUf 1 GiNjESmwx12TORiwJAE3t TYIZWMNQ0kMo69qhwBDwoBygjbbfdNSPbp3hf4u2k29cldRjUsC/A/Z53BXmICJKLfO1e0unFUsQ7VxIHayCx5oxVOzqmiVU46YF27lSUJ58fbKqkKhJGoGk4W AUtB4x3kEUQVpFEaEOseU30XSoP5rhHK4XiQcz/pdqSXz4ulst3XAhv9lEdVsvWxVMKmjhKWUU2gE 3pAUSx5sXTGt4J/H8RsUstmPU5jE98i08WJMP5vchYcdcZHz Cb3wQodh/h486cYt48h38zwc6Q1w qw5x 4wYJE8SFbVKmO5/ftuDxbhnJRDY/zqmyNIuoIstn73hvnV5lc2EsmpgfzDSkiLCt64FK 1nUd/.../2BsVezptM19k5gwa6 qDmBB6sUf  (music-mp3-downloader-5-6-2-6-32-bits.exe)

1 / 68      (PUP)
http://d.highaa.com/?ic_user_id=9289&data=vIq0WyQQ2npi4bHG7rQMADSDp6H1DyeSTiOrZ eKZonKnbgvrrwMnFAjDBthuRE2/hERhNOov2kQ6 6GUjTVq0bMglPmaZ4TDdB8E8tzVdaS8L2MD4TmwbbNb3gFfTFHyDpgah89 9QvqWwkk7sDxM7uI4n/lFY5Lp7n2/KzX24KQ4X1at0jZ51VDvUvP18jP96KdtxEE9FJnKOY/LDTNjrN43c1o0thSpMW6wBJ7oi9RjBNFaiRN/3f oSUNxjglSFVtQngwdCQJ8atlhR2KmyVpGQyb7pm/2W8LkuEWusuZNvjDfOIQppiyD1iUJEPuwR0l cF/g6InBJtpTD5W5U8yxWa J5muZWKKbybgOb5VWJOCVYOy8/6J87UMpPehhN/O7vw8sEJpFPJ6BUouXcUgL57mpOAIOnUQqUlvF6t9o/aNWNnFz zIm6qca pV2M/aGAOWjUX0BGbDuuFrzGT2goxgOWH2AubKfew/e6qA8fVLRQYo ylyFQtCpXEfu1ZLgC4nHgv1FQLMOvBu3dQcsplDnsjkOiZGTLJzpr15FLYtRp R4Nn2 /.../xx1eglSJjOMYLVosffjebHxL0kU7hKt1HdRacH6U5b50Nx1hhtofEURwRND7DPD4K0DLCbpqlsEFDaEBlFaa0dvIu9bcrfA7wUKxiF0lhJytiCjVz SKLnTWX8kfxootUJ9iB2T4B82GU  (mozilla-firefox-beta-36-0-beta-2-32-bits.exe)

1 / 68      (PUP)
http://d.highaa.com/?ic_user_id=9289&data=Yvj6209MxqQT53vWurhPfpgu6728u j35bb8DiFmOPgSTXeXqLoG4MAEc6JzF3fA4TLURmz/NqokAeFe7nyv6/2Ou6N QCkUqJPGDchAaRxnuRGjPARJ2GZODMIbTzbh G61G5hiPxGn5E2HQKX7oYyBPulXEjLiI3PJEkCoK7pcr11OVFcqQLINsQMwnNBFyFNtB7qMJ0Eaa/oJGmhbBBWQzBW/ax7wJARtqsP3 nkkh8S3lf0zV/S5iRuONdKjyLaWijRzZOTENTOGymwNLBcy/KA I7nlZBQx8bT7QTVcRaW9hayN HswG/401gnopV4W9Ec4RoHjB9HW/WmqkNlu1v8Fb49wH0xQNpmb3qVcUXSJ/FR2gwFVLWtToIfR7s7Un 9X3W6 NaOp fcXxQNnV4umzdMXpTDbh24TaPV4BIFsZDMAjLdKAoSZwLaMIvtfyYETsddndE71khTC35ed8a2NcxiyzmsSWuqApwzgst9g8gdKrb/pnHWePSp/OjfqIxsl00Hxbbva9AIr06LM bjj9X65abN6j6EFITuUwB3spqhmbffh5rDx8QD HQ5QFT1846GAAXmWE4XBuXtMnSq1BPLg0YC8 Wg90PFLCsR7H9ufQkeYgUp0UGg0ywH5LH9YMYaDAMhITYDKD9VCK MB5Hky8EhWYTwnUXhPzrafVGoKp0 m4J59kCGymSRv6nfRqoj1dvUADhs L/Mv4tkUbz2FqQTDubt2C gbhDhuKPHC/NH6qznKZTwovgjt5YghfZWAZA0lDywO3dcJ/.../NSI   (microsoft-net-framework-4-0-30319-1-final-32-bits.exe)

1 / 68      (PUP)
http://d.highaa.com/?ic_user_id=9289&data=xdh3JwB7oVDByUG/W7SaMHd47PNzgONPDcvsTYqfE859a75WTHAGbwmvfrMZm/o9t8o/DgspcYkpLpuXu5CpqOkGwk/1Z6Zj1fO4ZTFemnKVATzhdPmeZt3Vaka6sQ2fBCTvnU6aHKSq5LS1zIm0qEmgVzoJeV5JAdblyYc0SQGNc1PE Cq Q1G4APxRhQ8nG7HuqvIAoK0Vu6Dd7rz5DVXScm4mT4LtnVtuiWMTIBDAY/lrNpUMpkfUDhQQZi3vhg9WpUKZdF/8LxUrHgJIYrb/3eHdzwXiJ1aIbIbodVTs NrXNjcTZFzBRiaK8zZs9OL4ySkQHLErmsTH81wjfsgj7olgxz0HEy29a6qlIuU14Nq7GQ2nl0bkJf3vzxD2Mqoi/2f8CGpwpM7ZyhSoOt2tX3L0/qG/S5f5m6jTt9escxTQnyMEq3/0d1ll6cgRb8riGMN7wqXKgs8Rh1DLr4yjHJszUY29w23MwAZNhIgzUuaABloc1NBCOm8l9px7AfPJ2E1HvHBCLQrVzSNo6wwg9qyf9FUSY1JcdmCOo1Av9qlsKHpBF5614balB88ccVrs3L9J26 kG3EyvQT5iTuV5Y7RDEtNkn2eggm9k68Pdst5smezsZ7t8M92Zq46NoZSRiRBPxuysu7Vy6/nwjDRY5Nem v31lbM9a32P/NnCUYNsYTX5HTB0AHDj1oEruXPQzSXxNFoIISLtJmnt5d1FAIeCrH5HcK5AJ5mNzjaYoraeXWlPfzovtXeOmOX&key=XGqTU/gJIv/qP8NXPd75yCaFiSnpSMvpndy8UPForDHA4p4lR5nLEczPZG7hnQqxs9nOfvzDSr4gVI2flHIVZj1Jvmth10l24/.../kMxS7APoEdIHdbTDnqrSK4  (microsoft-powerpoint-2010-32-bits.exe)

1 / 68      (PUP)
http://d.highaa.com/?ic_user_id=9289&data=1L8/m4acW5Mvz82y3qdA8OosZTihzDrwsayzIcazOxk6NRDA8Y3cmckqS61xtrnifTfTbIOjSIjHP2Wx3iEayjXErfAqHWZQglgdq6qTsQ56aT u 4y GVvgkWGvFzOngk11LqJyvLJhbXraleyHomqMZhZecX0KgqxwBeByjH0VapMBUxwNNKHi vSmtznoqE2Ne9V35U637ejfwDNlHJyi3HEklKI2TxfH7h bvf8k5hVBhHVtYMccJeUUwa9EfxR3UGBJJz7IKUe 7dz8JB 8nNI9pfZqEYXgHlVSJ99eOgFZqTabmnsayS1 zPxsnzPG L FlJoHb9nBq2PJtJUpZZ9dOyp3dvb2TVe6cyu Zsalf7xPvkTYP2j0LQ2to57xssv jr8swOF9KhPtHxV6v3W2r3r q2YMoR7oCM2YTUC702FGtVsa Ak1sHTkpoAjBjeg GIj3XQtUtsyQ1ezO6a2fkFnMGGNJ L9ChU5MS4C nDfp/DSy64lIi2OJ7qM ejoH6hcpYUuGunmUaA1o3y1YZLgEuDp1Edgso40iYT9 fL2uH QtxfsPx 2PDHzw0RVVU3X11pVuGk45JMG6JKSSQkPqwR4 40Imj3hoWsDxMJQDTf8MStiDjukB8TTMdsyYAJnPlif6htvueCeWs wSAFWdpzY7y G80rvDHDBn/O46WKWFuOzLAsHG2biczEDPUwYCmYiaMf3ztwK3LAzzpyPKqzGw==&key=Tjv8 rgClapZDa2Q9wf6E4uUrdAKEjCN/bjx43FYQ6Y5fKDvKVHnE3GgXCeJuVPIr V3W2 /Gm84wEvdnrKuaS5d6NQu3zO/zwP1jVTX3QkFjopxvUSJKlGZECbbGfebleD5YxFdz4/g0jMVY4BMFNm9GfQ7/.../xc3gr6gkNakoQK95R4FhnzLmsMSl9po6x2EqIaj1Ni33zS4  (a-bootable-usb-0-9-5-471-32-bits.exe)

15 / 68    (PUP)
http://d.highaa.com/?ic_user_id=9289&data=Y/kQ/YkKwROf1 TH1NViKZVnzgNc1zOoGsnRQ3IoNWRhrN960yqRf4yzHiQAAfO2RSIcQ3rXdYZBw2QlDJqPORGk8D/XFPbhC6q6PCOFYSYUKTtIjYH6x4lPla6BRetZbkyll737pKIIyF0ZHgIcrcm19WOHgD1JOd10epjl kJyrDUlZgNrimf4RZjzsbbgstsPiKzSY/PAh6twn5NvVmYoTn/oCgyycc72O4YL7dYoYQddTgsQZn2XUs2HoVikj6o/2CYzRtaTZKKp6d8JiS651eIwedCYhNZrfcDFc J5Q05JBHgXxuWyQnAO0HVnb1jDrCkARlcT9VPhRYnTzOaqzQ4/0CosL/F6mCagr8SiBtnOz/Gy2JeyjJj8cqtSApp0jHnSxmuoLxtPpaTejWqoYuseMlMBZ0Z/mQWEYGnKpZLDLFH7kgnH/35TNXaRbDzsi1n7XRTVg3vGwddPZaWu8YVtabNdGPRg/dFm/WJSqRx2O3NKG9 qpEhoySQ9TeeyxPqqb3i5bCraZUBxv9/pS4sj xJ6TCPfvzK7sgJOy2tL5wU2KvIKo9oAVEdKXFt5jOTnxJjr/F8ZxmhH0toz7X6X/4GlN3etrNuqGV4Kk9l2DVn7bnP7T4Rk27/WdRUpsEtwJNhnMqcRtDvuMYYLoHT7ZlVm5bWBoyFOyvwaGfg757wYRU CiNi9FjwZxCi3/Giczd2hzHL2MlaERvI32hk2bzMJVI1H89297alxuC0sRBWF08QJO8uIg5mfP4=&key=cl4tK2tteLT6e V9XAW6JgHF3KhVEekrX9nDrV8Ifbk2mbx6mvTm0uj/.../OMJOS N4qRykKh7epLrizweovNlvLjf2TmjLb16eGf2IMOXgfgJmMAI GTW3PvlPTTqWfu0xopJN8u7dD rSd85t2Bbr85fZIO19YWxXa8ehJK1TDwes  (drivereasy-4-9-0-12289-32-bits.exe)

1 / 68      (Adware)
http://d.highaa.com/?ic_user_id=9289&data=naSl/gOhyEoEIEURirwRxCI2bMxcsRplqMvim7DnOx4Crh9Tidi41vflZZuLqRpJ5oWPpXsN76dCYus5QVscdI1soxe6kocnPdSQaYteHunhNhE8FPCETAJlQ0//nkdc7SpPJjK8HYA1oHxzSg5/jbHyJ8P0v0AL2OegWmtGMh4ddENWfxIjLDKsyU6PjmFKWXYfUpklnsVQwbcV2KUMW23en7N iYsl0gJYawyBJdNVAVFcHFtLXKvOfJbyEItAWWyBkV87ILpVaV2pLqYPQ7xuJ9z9SDHZMoaCiXI yb9w1jhIhqJAoAhTa5WtYGEz5OGic7H58v2kk CLztRQy7I1zxJvu3TouVjSWdbpWbPAGOZOVyEGxR8DyU4IlY7BR8OgyT9D7hpCi3RmApIs c3ZFNh0n2BtgCKChY1ODNgmIx/oo8L7fd8Wi5IaowjdO FzPzy9lwDl4EYOt7m6eAZXCUQWoXmZsjCgNLjtzMAR2UuHI1q2aXz23GzZsYkfzPrloAurNw6crM0 WNbeA1Q7UpxDCZpZ6bNguI1YT7/ KD81ulcN4w0Pp83nutgEqNO9fzpWmGc0Wx2guQQj7S eAi192qg5aTAlaTjsLWV3ijKNN8DORiwQ4EJLUhJwzkHtpAEPIgM/JvBjIy5ZVa471Huh2L3i6d3gnL3I43sD57vEHyCWsEaXbKYK60MbNy1DRjFIZD4v&key=rsxpDeNxfpRpvNewcWLC/9047DNAf9VD2CzsDnj 5qLAQmzqmBtdzhAWjNiIXudyra/.../8PlYcRcPu4rPVG6yYKQIxuDaegzF7uXA9zWpioPO7dVSNpeWJXDWHv8w4V5Fa1WFs3Kgz7sozlhyaTac0jCgBoKtvPbeokTrc9jeFQQ 0PX3XogqISapFfeh4ahKCUKTUu4T1Yq5yLls  (icreinstall_videospin-2-0-32-bits.exe)

1 / 68      (PUP)
http://d.highaa.com/?ic_user_id=9289&data=loukmlOIP5h1obaa84xlu04LEHaZ08Lkq1vVATk2sxyEWIVfcwMwJTRy7uVnCA5ir38q9HXiBggpGIetEGa8RCImWOz5g8 uDprNVo0CyocKa59XWTneuhbNn1cHIZ1qMWil3EBpajak0HDaIxy3xasFg03wnNshTdis smRVQ0u7/fbcTni SnZKBeC0N6/IIU42EhV46F/MgW4Q/xeW8ntp5Cs 4D92Kq0xoIxQydklVI63h3IFUWsuEObD JLnMzNXcz0xbrCiGfrtQrsnrt/S8/lTQQTn2ZCCnhYz4WAOwsogs3Br0cgnmYa4viSuoef1ilfhlquQvrEqkm05MHK/S9gG70cVRLsCTPRdn9oO24bDKB7gAjNvyeI nqA3213qCCb20NABfD7Dck8d1EMD7/o3Bcg9sizoyPUP83Olx020bMdAWl6kHOmWe5fL5ayruIQ9eeECBHUI908UB/cCmHaiUVmTeKms5ykl7Dd7YUVLwGYo2vNQLB35wyFgMthSdPUJ1ffFnPfUCldpnZiU4N7DPR3 mbtLo9tN/Fs9wEjXA97HF1yYCfYVFxzGKvXMfQR65MH4K5jhb6w3jl1psgT4gs2MemBE60rDFY01PY8zvKLtWZTzKzY77vox2f7f8nTbQAxH2j/p62VUSxkTAlOh YU2UGsn YBzKgJX6FiEw8CN8qPNzpfQLVG9nSf91uOFrFjc4LH/crTazCe/1ngdFjUIuj0l6E MLA=&key=H kx9 KQFfNWanh/ySfsfTAQ7Qv95sv7L eDqo32ePRnRw I8c3d sirZPtPOf97HR581caJ2hecSBF5e63KMYgECKBTNUMbsl8Va9VTLwYr/.../CeiXHr4DrdvO7BcPTzG6RtENf9pGQBvAH  (vegas-pro-13-0-build-373-32-bits.exe)

11 / 68    (PUP)
http://d.highaa.com/?ic_user_id=9289&data=sl6YZkSpRvxev5Q6nnW0WT3eVc A//yW0udVKetKImVF9zZEwKlvUKRjSlmShkNVSCYQPVZ7xnWGxzNdZjyJz48FM4JxA40XpHUWzBEmJCf6OVR3/Xf0Sx6gMEZqLt kzWCZIP9JBSUydMmyusED03YkDlcTui3aTiVk y uHUhI9YL1ZkoaRqB/YPyhYdfBaZkpYCMGdNcqP4UVvZTVLh5xR/BOpZ2 iCrCoePFlSFk5xHTMcKvtV1giKMZIa2L4 Kx10hknUYLD2vEM4LTDg9deIskXMHQxe/s5V9XtjEvQZCnNaYpDs34Mrvv7lB7e7M0k1enEwk3XcDjovhVbKXgvm/vXsoECQGrpOFV1gNbDMfGNvrUd5nH 7dlYJA6hyo4jbaTPWLG Py1eUkN67xjiaPFsYEPqNUejkLbXWnPg8BWRdRf4tK8yjgzmdZHInyHvoesPKH2X3MLB B/n0z7/osqGau47bJLALX/nluQF7WZXO6JDM4TOrUVhGFatF1jp6N0OPKfbEdswiPxGjr66I/QB/LLpatAiUgWDfb8xO3HpqrlGJoe/5r9jjUpyOK3gwia8n4ay35zBNWF5YTVnNqaM2v1c/5SX1UmkplciMDmRhNpNBUTrxXLVc1y/rFhNw PxPHE0OXT3tFZ2k4p0DqkaFwufR8OYWW/htti3IomzdHKlUQTeFfUyWx5mxUSNPhDVSZuga6HjLSgv7JaGCywvT3C9ICuo9/jnMmJjDABHAocVBb1PT FKiGmnM/B&key=HW1OVLjc/aaOXMfPUTlKCho8jrRWCvEXHLqcu2JaNKZNdPiboJSOzgE2gjxnP5QU0Dti6FAYonZBnnL8TwmE6Arp7z9QMNKgW5/.../6oD8py x2tm7trI  (dvd-shrink-3-2-0-15-32-bits.exe)

6 / 68      (PUP)
http://d.highaa.com/?ic_user_id=9289&data=hoIYo//rOF cIOK2aIvIWHuRyQ5LWzVrTU4FbWnEB9/reqJ/M6gou vXMwT2OyHZFyW78omVei0C0ANOM1NCX/Qx702vaDE4ZqAtDxKjBEirE3EvY6lBk3efqL2VQ5CopOjV1AOw8dUjB bRDNzbvv1jiCP/WvA4CxZox6dwEYWoZTB3/d8Eug/2urFds4uSl6QCZIRWG2m5jq7qtr/vJYfAo17VlB77n/PJCbObrLEtTbBMONak91FjANBiDC2R2Y24BdL0/0k LHLUyG8vkqpGOqFHXeeQD/DCjlXYhvz8jw8igOTxofV4a9RddTpGWEJ aL76o5eI9amHXtv5BBJNbXNviLs2tLBqlmfoem9M/luI/iLYesu5Ffxj8PReNuKuYVm42Mdn0/wDPOKv1qx7acNda4DxTA13DCD5z7Y1/9jYmE091Ia8Hxkysmw6sAPqhKCn iVGYzVemTQ7xQmor7mNoCWvyYI2wOq4ZZVnqHthM85aiq7NNDk DElJwrMy2MmX2c3RmW7xeY7FOGJwEODqZ4gilCj 0/Z5qkPj YVdeKCv0fyXr9Bywb9qvHHhC2Fz 6wOJXls Ur/SiV/XHrGAmzUqAUSFVqqzyEPVWDr61c5r8NfXh8zC21nB7TjrBRDw1a0g2AJLGDKCWz4tiBl/1lhQRrpzpTfdlsqoLIPuxkONTQYm7iHUvcbtHDhh6MHRzPIH0lpSMQICnhkMI6YXIMHqCz6hiNx8tMNQWXuSHHtSvIp2pk4LARZeLPagSCT9A==&key=KuhK 0JRetsy3E3FcGNLMUjCjPrtVrAkv9OYSOVQoOn9obbNQg5Aprm/.../KWa9S3TYV  (tor-browser-4-0-3-32-bits.exe)

6 / 68      (PUP)
http://d.highaa.com/?ic_user_id=9289&data=krhaPO8/bh5IdLt9v r6iGBYE3Rs9VgdfeLsJ2TY6VTQm3Zu8eF5wUcsSa D6NQgSM3GK8dS8Dr1ocTwAeL9b2Bux01jPCzlPvT059Phf b5ua33v7JqzjJk2mMNQDhF/DMfLGlvF0P7126rPDDiBqx2RJu3zGmCQsv0zutsESFeg9GQxznMEntIbOEwwt0FadLKwNAD bcoZqUSrNjTIGZxg9lAm9bm6jNLq22FOoP/3hZMj3Fs2DaabewIcepqjqqGY6QL3s/dfWPjLizQatEpTpG8CUvUMTa5vQpmhLynSgxT4hN6nmyvo3heuSLnZXzqVt1cIE8CL5FoHAu/ehX0Ahw2CpTVx51kFWrlGN6eBmFvxIQc5nX2Z19JVR6DiWqSwljuFVT/twy9LHDlp8QjxGMyj8HxF6Gcc064u7p 7kHqLh4ClqLRkEu6r1CJ2tnQn18vcN0rp8DjAHxzIm3vkn5nWTBGv5wIHBmYBr1WQkKr5tggtyMHK 007CkeWtys25IVMiogqLRb4qD8jhUKAENYoG4/agY oy1EPDXOz0lMl n8ZjV6rZnCOaST8Mu9CAp26io3fH5U/4DuxudqvREeeWFEsDG3wwIi/lmTZ0N KhGAZ2EF6p EaEcaKeLBgrdtTO8 9uA6YquSXFh7cQva9MU/YRmWoPlwc2EaGk74e1TVbh CbNgEeT9AtDeM9ymCixq/rFcwsnML6BNC1C2tkAg3SN8TXt5C/efOtHYd7d88cYu3IciZwEEkLyyKZ9BoT4d6BZCC7OGMG6 JvF9ZyBuMxA==&key=TgO5Q/yFeUQS6vCwPOwD1y1pyhbAOLEOlpypSQXppzk2qc2wF7r8YDYFCYOOfnebQVlK760UuAI4bk/.../GJ  (pc-inspector-file-recovery-4-0-32-bits.exe)

The following 230 files have been seen to comunicate with d.highaa.com in live environments.

TCP » 92.242.140.21:80
smelled.exe (Smelled)

TCP » 92.242.140.21:443
dca-monitoring.exe (Compete DCA Monitoring Tool by Compete)

TCP » 92.242.140.21:80
marini.exe (Marini)

TCP » 92.242.140.21:443
client.exe (ClientWrapper)

TCP » 92.242.140.21:80
thebrowser.exe (TheBrowser by Goobzo)

TCP » 92.242.140.21:443
dca-monitoring.exe (Compete DCA Monitoring Tool by Compete)

TCP » 92.242.140.21:443
WindowService.exe (WindowService)

TCP » 92.242.140.21:443
ciuninstall.exe

TCP » 92.242.140.21:1866
jutched.exe

TCP » 92.242.140.21:443
dca-monitoring.exe (Compete DCA Monitoring Tool by Compete)

TCP » 92.242.140.21:80
masterupdater.exe

TCP » 92.242.140.21:80
pricemeterexpress.crx

TCP » 92.242.140.21:80
chrome.crx

TCP » 92.242.140.21:80
app-center.crx

TCP » 92.242.140.21:80
ntp.crx

TCP » 92.242.140.21:80
3dayinvite.crx

TCP » 92.242.140.21:80
twitter.crx

TCP » 92.242.140.21:80
viewlater.crx

TCP » 92.242.140.21:80
rss.crx

TCP » 92.242.140.21:80
datapump.crx

 
Latest 20 of 230 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.