home

download.hightech100.me

Xie Qiu Sheng

Domain Information

This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in San Jose, California within the United States which resides on the CDNetworks Inc. network.
Registrar:
HiChina Zhicheng Technology Ltd.

Server location:
California, United States (US)

ASN:
AS36408 CDNETWORKSUS-02 - CDNetworks Inc.,US

Root domain:
hightech100.me

Whois:
1 hightech100.me record

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.MEIXIAN, (M)
100.00%

AhnLab V3 Security
PUP/Win32.TopTool
40.00%

Rising Antivirus
Malware.Undefined!8.C-FtVGWtGr97G (Cloud)
20.00%

The domain download.hightech100.me has been seen to resolve to the following 7 IP addresses.

66.114.52.12
July 17, 2016

66.114.52.18
July 17, 2016

174.35.27.71
June 29, 2016

66.114.52.6
June 5, 2016

66.114.52.20
June 5, 2016

174.35.27.77
June 4, 2016

66.114.52.9
June 4, 2016

File downloads found at URLs served by download.hightech100.me.

2 / 68      (PUP)
http://download.hightech100.me/broadway_us.exe  (8tem1idby.exe)

1 / 68      (PUP)
http://download.hightech100.me/installmonetizer_uk.exe  (da5b56f22197dbb35b443245b09d9ed0)

1 / 68      (PUP)
http://download.hightech100.me/installmonetizer_sa.exe  (ab2a2337ff969ceb5ad65ba3c32eabe1)

1 / 68      (PUP)
http://download.hightech100.me/installmonetizer_egy.exe  (406b8639eb2cfb62bc05a112a09d4ca5)

3 / 68      (PUP)
http://download.hightech100.me/CalendarTool_clickmein01.exe  (toolmini.exe)

The following 33 files have been seen to comunicate with download.hightech100.me in live environments.

TCP » 66.114.52.9:80
1468567241.exe

TCP » 174.35.27.71:80
1stbrowser.exe (1stBrowser by The 1stBrowser Authors)

TCP » 66.114.52.12:80
new_chrome.exe (1stBrowser by The 1stBrowser Authors)

TCP » 66.114.52.20:80
Iminent.Messengers.exe (Iminent Messengers by Iminent)

TCP » 66.114.52.20:80
new_chrome.exe (1stBrowser by The 1stBrowser Authors)

TCP » 66.114.52.20:80
bobrowser.exe (BoBrowser by The BoBrowser Authors)

TCP » 66.114.52.18:80
1stbrowser.exe (1stBrowser by The 1stBrowser Authors)

TCP » 66.114.52.9:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 66.114.52.6:80
1stbrowser.exe (1stBrowser by The 1stBrowser Authors)

TCP » 174.35.27.71:80
1468567241.exe

TCP » 66.114.52.18:80
new_chrome.exe (1stBrowser by The 1stBrowser Authors)

TCP » 66.114.52.6:80
1468567241.exe

TCP » 66.114.52.20:80
tools_update.exe

TCP » 174.35.27.71:80
gamelogin.exe (gamelogin by 337 Technology Limited)

TCP » 66.114.52.12:80
umbrella282_upd.exe (Iminent Service by Iminent)

TCP » 66.114.52.20:80
1468567241.exe

TCP » 66.114.52.6:80
new_chrome.exe (1stBrowser by The 1stBrowser Authors)

TCP » 174.35.27.71:80
new_chrome.exe (1stBrowser by The 1stBrowser Authors)

TCP » 66.114.52.18:80
umbrella282_upd.exe (Iminent Service by Iminent)

TCP » 66.114.52.6:80
umbrella282_upd.exe (Iminent Service by Iminent)

 
Latest 20 of 140 files

URL:
http://download.hightech100.me/

Web server:
PWS/8.1.36

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.