www.safecanadapro.info

North East Technology

Domain Information

This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in San Francisco, California within the United States which resides on the CloudFlare, Inc. network. The domain uses the CloudFlare CDN, a distributed domain name server service which utilizes a number of reverse proxy IP Addresses (see below).
Remove Malware from www.safecanadapro.info - Powered by Reason Core Security
Registrar:
Dynadot, LLC (R259-LRMS)

Server location:
California, United States (US)

ASN:
AS13335 CLOUDFLARENET - CloudFlare, Inc.

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
Adware.WebPick.Installer.U, PUP.Optional.Installer.T, PUP.Optional.Installer.U, Adware.WebPick.Installer.c, Adware.WebPick.Installer.d, Adware.WebPick.Installer.BB
100.00%

McAfee
PUP-FHQ!D6AAD1C6E22F
57.14%

Malwarebytes
PUP.Optional.InstalleRex, PUP.Optional.Installex, PUP.Optional.Installrex
57.14%

K7 Gateway Antivirus
Unwanted-File , Unwanted-Program
57.14%

Kaspersky
Trojan.Win32.AntiFW
57.14%

Comodo Security
Application.Win32.InstalleRex.KG
57.14%

McAfee Web Gateway
Heuristic.LooksLike.Win32.Suspicious.B, PUP-FHQ, BehavesLike.Win32.Downloader.fc
57.14%

Sophos
InstallRex
57.14%

Kingsoft AntiVirus
Win32.Troj.AntiFW.b.(kcloud), Win32.Troj.DownAdLoad.g.(kcloud), Win32.Troj.Undef.(kcloud)
57.14%

G Data
Gen:Variant.Kazy.348128, Trojan.Generic.11210459, Win32.Application.InstalleRex, Gen:Variant.Application.Strictor.55164
57.14%

AhnLab V3 Security
PUP/Win32.TSULoader
57.14%

Vba32 AntiVirus
Downloader.AdLoad, Downware.TSU
57.14%

MicroWorld eScan
Gen:Variant.Kazy.348128, Trojan.Generic.11210459, Gen:Variant.Application.Strictor.55164
42.86%

Bitdefender
Gen:Variant.Kazy.348128, Trojan.Generic.11210459, Gen:Variant.Application.Strictor.55164
42.86%

Lavasoft Ad-Aware
Gen:Variant.Kazy.348128, Trojan.Generic.11210459, Gen:Variant.Application.Strictor.55164
42.86%

The domain www.safecanadapro.info has been seen to resolve to the following 3 IP addresses.

September 5, 2014

(CloudFlare)
February 27, 2014

(CloudFlare)
February 27, 2014

File downloads found at URLs served by www.safecanadapro.info.

The following 2 files have been seen to comunicate with www.safecanadapro.info in live environments.

URL:
http://www.safecanadapro.info/

Web server:
nginx/1.7.5

Remove Malware from www.safecanadapro.info - Powered by Reason Core Security