home

us01.procloudstorage.com

WHOISGUARD, INC.  (Proxy Registrant)

Domain Information

The domain us01.procloudstorage.com is registered by proxy through ENOM, INC. and was originally registered in August of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Providence, Utah within the United States which resides on the Hosting Services, Inc. network.
Registrar:
ENOM, INC.

Server location:
Utah, United States (US)

Create date:
Tuesday, August 5, 2014

Expires date:
Friday, August 5, 2016

Updated date:
Monday, July 6, 2015

ASN:
AS29854 WESTHOST - WestHost, Inc.,US

Root domain:
procloudstorage.com

Whois:
2 procloudstorage.com records

Google Safe Browsing:
unwanted

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Avira AntiVirus
ADWARE/InstallCore.Gen9, Adware/InstallCore.A.194, ADWARE/InstallCore.Gen7, Adware/InstallCore.737512, Adware/InstallCore.736776
100.00%

Reason Heuristics
PUP.Installer.Fileorg.R, PUP.Installer.Fileorg.CC, PUP.Installer.Fileorg.f, PUP.Installer.Fileorg.X, PUP.Installer.Fileorg.Z, PUP.Installer.Fileorg.e, PUP.Installer.Fileorg.U, PUP.Installer.Fileorg.c, PUP.installCore.Fileorg.Installer (M)
100.00%

Sophos
Install Core Click run software, PUA 'Install Core Click run software'
100.00%

K7 AntiVirus
Trojan , Adware , Unwanted-Program
96.00%

ESET NOD32
Win32/InstallCore.PR (variant), Win32/InstallCore.QH (variant), Win32/InstallCore.RR (variant), Win32/InstallCore.QF (variant)
90.00%

Dr.Web
Adware.Downware.4757, Trojan.InstallCore.24
88.00%

VIPRE Antivirus
Trojan.Win32.Generic, Threat.4150696
74.00%

Qihoo 360 Security
Win32/Virus.Adware.f22, Win32/Virus.Adware.94c, Win32/Virus.Adware.e85, Win32/Virus.Adware.8dd, Win32/Virus.Adware.3a7
62.00%

AhnLab V3 Security
PUP/Win32.Downloader
56.00%

Baidu Antivirus
Adware.Win32.Agent, Adware.Win32.InstallCore, Trojan.Win32.InstallCore
54.00%

Zillya! Antivirus
Adware.InstallCore.Win32.200
44.00%

McAfee
Artemis!FD9F49D84AB9, Artemis!7EAF2FA87B26, Artemis!5EC8CC403128, Artemis!46EB10D38CB0, Artemis!BA0FC11AEC2B, Artemis!33CBD52DF665, Artemis!AC493ED6BFF6, Artemis!E42268AEEEA4, Artemis!DB66E5312BE2, Artemis!4EA04542D8CF, Artemis!27599B5E868E
42.00%

herdProtect (fuzzy)
a variant of 36e9d2ccdd9d371bac59be2e2e19e9f0f1386724, a variant of a8089520aa79c7ad5d02b21a10e9d5f9af9673da, a variant of eb176f5446661e963824b63a8ca7bd8ca92b0de3
34.00%

Fortinet FortiGate
Riskware/InstallCore, Adware/InstallCore
34.00%

Malwarebytes
PUP.Optional.Installcore, PUP.Optional.InstallCore
34.00%

The domain us01.procloudstorage.com has been seen to resolve to the following IP address.

206.190.138.54
206.190.138.54.static.midphase.com
September 2, 2014

File downloads found at URLs served by us01.procloudstorage.com.

20 / 68    (PUP)
http://us01.procloudstorage.com/.../ThunderbirdSetup-20212178.exe  (thunderbirdupdatesetup.exe)

1 / 68      (PUP)
http://us01.procloudstorage.com/.../SysToolsOSTViewerversionSysToolsOSTViewerSetup-22156058.exe  (2309fc74f8c5bcb8f47d29eb9fa008d6)

14 / 68    (PUP)
http://us01.procloudstorage.com/.../SkypeSetup-23721231.exe  (icreinstall_skypeupdatesetup.exe)

12 / 68    (PUP)
http://us01.procloudstorage.com/.../AdobeAIRSetup-24010494.exe  (adobeairupdatesetup.exe)

10 / 68    (PUP)
http://us01.procloudstorage.com/.../AdobeFlashPlayerPluginSetup-22555508.exe  (62c84f0d84683894742fe4fb83e6a67c)

12 / 68    (PUP)
http://us01.procloudstorage.com/.../WinRARSetup-20958618.exe  (eba880ef90e88acc8365f949bfe4730b)

10 / 68    (PUP)
http://us01.procloudstorage.com/.../iLividDownloadManagerSetup-19119734.exe  (8f2f7f8c913b8d363e0cc1841540ab38)

12 / 68    (PUP)
http://us01.procloudstorage.com/.../PhotoScapeSetup-4793172.exe  (1f2a341719378371debd3e0bc18d33d4)

13 / 68    (PUP)
http://us01.procloudstorage.com/.../calibre-E-bookmanagementSetup-23766725.exe  (27599b5e868ed3b1c8f47d93c2fdd79f)

8 / 68      (PUP)
http://us01.procloudstorage.com/.../VLCmediaplayerSetup-15872931.exe  (a067cfa5b746752f1369644250ffd578)

13 / 68    (PUP)
http://us01.procloudstorage.com/.../FirefoxSetup-23660676.exe  (firefoxupdatesetup.exe)

5 / 68      (PUP)
http://us01.procloudstorage.com/.../OpenOfficeWriterSetup-10585466.exe  (bf35f05d5d0b5ad27c5db242c916edcd)

7 / 68      (PUP)
http://us01.procloudstorage.com/.../MicrosoftSilverlightSetup-20234373.exe  (f7aabffbc9cfdcb89f2bef19e7a24a7b)

12 / 68    (PUP)
http://us01.procloudstorage.com/.../QuickTimeSetup-21908437.exe  (icreinstall_quicktimesetup-21908437.exe)

10 / 68    (PUP)
http://us01.procloudstorage.com/.../FileZillaClientSetup-17639521.exe  (filezillaclientupdatesetup.exe)

16 / 68    (PUP)
http://us01.procloudstorage.com/.../GoogleEarthSetup-13016887.exe  (googleearthupdatesetup.exe)

12 / 68    (PUP)
http://us01.procloudstorage.com/.../PowerArchiverSetup-21400988.exe  (d51cbc048a23ea28f14aa18c114ffa19)

16 / 68    (PUP)
http://us01.procloudstorage.com/.../AdobeFlashPlayerActiveXSetup-21754881.exe  (adobeflashplayeractivexupdatesetup.exe)

16 / 68    (PUP)
http://us01.procloudstorage.com/.../GoogleChromeSetup-21538072.exe  (googlechromeupdatesetup.exe)

14 / 68    (PUP)
http://us01.procloudstorage.com/.../SkypeSetup-22193450.exe  (skypeupdatesetup.exe)

9 / 68      (PUP)
http://us01.procloudstorage.com/.../FirefoxSetup-22333601.exe  (af6cd3e8c0377647de6e0c9a7ccd817b)

7 / 68      (PUP)
http://us01.procloudstorage.com/.../AdobeAIRSetup-22256851.exe  (9c866726fbfa20700a3e449e13828beb)

23 / 68    (PUP)
http://us01.procloudstorage.com/.../AdobeShockwavePlayerSetup-19816499.exe  (adobeshockwaveplayerupdatesetup.exe)

9 / 68      (PUP)
http://us01.procloudstorage.com/.../AdobeAIRSetup-21107145.exe  (icreinstall_adobeairupdatesetup.exe)

13 / 68    (PUP)
http://us01.procloudstorage.com/.../GoogleChromeSetup-21764720.exe  (googlechromeupdatesetup.exe)

14 / 68    (PUP)
http://us01.procloudstorage.com/.../MalwarebytesAnti-MalwareSetup-6395173.exe  (c1230f409fb0570ebe0ec70e1455dc1b)

10 / 68    (PUP)
http://us01.procloudstorage.com/.../WinZipSetup-18695441.exe  (4bb1aa4506541f60bda74e2e67ea3bb9)

11 / 68    (PUP)
http://us01.procloudstorage.com/.../AdobeAIRSetup-20580485.exe  (adobeairupdatesetup.exe)

10 / 68    (PUP)
http://us01.procloudstorage.com/.../GoogleChromeSetup-21409441.exe  (ef23d6576ad9122f468313cbabcd3786)

7 / 68      (PUP)
http://us01.procloudstorage.com/.../WinRARSetup-19431955.exe  (winrarupdatesetup.exe)

 
Latest 30 of 56 download URLs

URL:
http://us01.procloudstorage.com/

Web server:
Apache

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.