home

d3.cardrecoverypro.com

Whois Privacy Protection Service, Inc.  (Proxy Registrant)

Domain Information

The domain d3.cardrecoverypro.com is registered by proxy through NAME.COM, INC. and was originally registered in March of 2012. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Brea, California within the United States which resides on the New Dream Network, LLC network.
Registrar:
NAME.COM, INC.

Server location:
California, United States (US)

Create date:
Thursday, March 29, 2012

Expires date:
Wednesday, March 29, 2017

Updated date:
Thursday, October 8, 2015

ASN:
AS26347 DREAMHOST-AS - New Dream Network, LLC,US

Root domain:
cardrecoverypro.com

Whois:
2 cardrecoverypro.com records

Scanner detections:
Detections  (67% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.Installer.LionSeaSoftwarecoltd.F, PUP.Optional.Installer.F
100.00%

Dr.Web
Program.Unwanted.79
50.00%

AVG
LionSea Software co.
50.00%

The domain d3.cardrecoverypro.com has been seen to resolve to the following 2 IP addresses.

69.163.152.47
apache2-emu.strauss.dreamhost.com
April 3, 2016

173.236.243.32
apache2-lip.pride.dreamhost.com
April 14, 2014

File downloads found at URLs served by d3.cardrecoverypro.com.

3 / 68      (PUP)
http://d3.cardrecoverypro.com/.../setup.exe  (75b9457bb7bb3f0dcd065c67823bf743)

0 / 68
http://d3.cardrecoverypro.com/.../setup.exe  (7e7575fa985ef6390db42279eee29cf2)

1 / 68      (PUP)
http://d3.cardrecoverypro.com/.../setup.exe  (9defd8631098bc0cefacbf45b4a9a68b)

justfix.org

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.