home

download.driverrestore.com

383 Media, Inc

Domain Information

The domain download.driverrestore.com registered by 383 Media, Inc was initially registered in November of 2009 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dulles, Virginia within the United States which resides on the Limelight Networks, Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
Virginia, United States (US)

Create date:
Saturday, November 7, 2009

Expires date:
Monday, November 7, 2016

Updated date:
Saturday, November 7, 2015

ASN:
AS22822 LLNW-AS Limelight Networks, INC. proxy AS object

Root domain:
driverrestore.com

Whois:
4 driverrestore.com records

Scanner detections:
Detections  (94% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.Installer.N, Optional.DriverWhiz.383MEDIA.Installer.Meta (L), PUP.Optional.1NSTALL383MEDIA.Installer, PUP.Air Software.SecureInstaller.Installer (M), PUP.Optional.383Media.Installer, PUP.Air Software.SecureIn.Bundler (M), PUP.Optional.1NSTALL3.Installer, PUP.Adknowledge.WARPINST.Bundler (M), PUP.Adknowledge.FUSIONIN.Bundler (M), PUP.Air Software (M)
97.87%

Dr.Web
Program.Unwanted.90, Program.Unwanted.448, Program.Unwanted.796
12.77%

Clam AntiVirus
Win.Trojan.11518096, Win.Adware.Agent-59058
6.38%

ESET NOD32
Detection.Undefined, Win32/Delf.NRJ worm
6.38%

Qihoo 360 Security
HEUR/QVM42.1.Malware.Gen
2.13%

Trend Micro House Call
Suspicious_GEN.F47V0327
2.13%

Microsoft Security Essentials
Threat.Undefined
2.13%

VIPRE Antivirus
Threat.4775899
2.13%

Norman
Worm.Generic.377772
2.13%

F-Prot
W32/Renamer.A.gen
2.13%

avast!
Win32:Agent-AODJ [Trj]
2.13%

AVG
Worm/Delf.KHX
2.13%

The domain download.driverrestore.com has been seen to resolve to the following 4 IP addresses.

208.111.160.6
cdn-208-111-160-6.iad.llnw.net
September 4, 2014

208.111.161.254
cdn-208-111-161-254.iad.llnw.net
September 4, 2014

208.111.128.6
February 2, 2014

208.111.128.7
February 2, 2014

File downloads found at URLs served by download.driverrestore.com.

1 / 68      (PUP)
http://download.driverrestore.com/dr2/fionred/dr2.3/.../DriverRestore.exe  (0098a28b5e7e24756bf0a59dc362975b)

1 / 68      (PUP)
http://download.driverrestore.com/dr2/drinternal2/dr2.6.5/.../DriverRestore.exe  (9dbbc228ddbc3cce1ee78a1a09e42068)

1 / 68      (PUP)
http://download.driverrestore.com/dr2/drinternal2/dr2.5.6/.../DriverRestore.exe  (91801e6bc1cdf47ea261b87c5c9ccd38)

1 / 68      (PUP)
http://download.driverrestore.com/dr2/drinternal2/dr2.5.6/.../DriverRestore.exe  (8e90e285875abf44d53045f8417f092f)

7 / 68      (Malware)
http://download.driverrestore.com/dr2/drinternal2/dr2.6.1/.../DriverRestore.exe  (02962fe00a3366d974e7d923077da493)

1 / 68      (PUP)
http://download.driverrestore.com/dr2/srosfgttodnziocxcipc/dr2.3/.../DriverRestore.exe  (driverrestore_es.exe)

1 / 68      (Adware)
http://download.driverrestore.com/dr2/ayiymeedio/dr2.5.6/.../DriverRestore.exe  (driverrestore_es.exe)

1 / 68      (Adware)
http://download.driverrestore.com/dr2/drinternal2/dr2.4.2/.../DriverRestore.exe  (driverrestore_fr.exe)

1 / 68      (Adware)
http://download.driverrestore.com/dr2/drinternal2/dr2.6.4/.../DriverRestore.exe  (d82b2ac78609821be234fe126f3aecf5)

1 / 68      (PUP)
http://download.driverrestore.com/dr2/fionred/dr2.5.6/.../DriverRestore.exe  (591168eff1f2478374e03a9e37c8b867)

1 / 68      (Adware)
http://download.driverrestore.com/dr2/ayiymeedio/dr2.5.6/.../DriverRestore.exe  (71cd2ae4db0f5caa76b8a497a5c78ebc)

1 / 68      (PUP)
http://download.driverrestore.com/dr2/drinternal2/dr2.3/.../DriverRestore.exe  (0a7a88a679ae644fd7d84ae3a2fbf4ce)

1 / 68      (Adware)
http://download.driverrestore.com/dr2/drinternal2/dr2.6.6/.../DriverRestore.exe  (2dbe58dfa303e7596ba9ea29faf47a74)

0 / 68
http://download.driverrestore.com/dr2/drinternal2/dr2.5.7/.../DriverRestore.exe  (a1c9f7aa99df1ba8f324e0cabfe70245)

1 / 68      (PUP)
http://download.driverrestore.com/dr2/rauplsimo/.../DriverRestore.exe  (0e12793b92a7ca718100ca302f02b675)

1 / 68      (Adware)
http://download.driverrestore.com/dr2/xiqrmopn0s3rycp15d1ay/dr2.5.6/.../DriverRestore.exe  (driverrestore_fr.exe)

1 / 68      (Adware)
http://download.driverrestore.com/dr2/xiqrmopn0s3rycp15d1ay/dr2.5.6/.../DriverRestore.exe  (f6717f0fd0fc9478e621a781ca49cfb5)

1 / 68      (Adware)
http://download.driverrestore.com/dr2/xiqrmopn0s3rycp15d1ay/dr2.5.4/.../DriverRestore.exe  (driverrestore_bp.exe)

1 / 68      (Adware)
http://download.driverrestore.com/dr2/drinternal2/dr2.5.3/.../DriverRestore.exe  (driverrestore_fr.exe)

1 / 68      (Adware)
http://download.driverrestore.com/dr2/1n5tall3rt3c4/dr2.5.6/.../DriverRestore.exe  (drinstall.exe)

1 / 68      (Adware)
http://download.driverrestore.com/DriverRestore.exe  (setup.exe)

4 / 68      (PUP)
http://download.driverrestore.com/dr2/debxme2/.../DriverRestore.exe  (be6f355b7ced3ece2f732e87f867cfad)

4 / 68      (PUP)
http://download.driverrestore.com/dr2/marmedi/dr2.3/.../DriverRestore.exe  (052a3e9a8ec42f6630b1fa05255dcd66)

1 / 68      (Adware)
http://download.driverrestore.com/dr2/xiqrmopn0s3rycp15d1ay/dr2.5.6/.../DriverRestore.exe  (21155d07e1244c01cbeabf474876c989)

1 / 68      (Adware)
http://download.driverrestore.com/dr2/drinternal2/dr2.6.1/.../DriverRestore.exe  (driverrestore_de.exe)

1 / 68      (PUP)
http://download.driverrestore.com/dr2/drinternal2/.../DriverRestore.exe  (a917cdbea25abbf89c14e87998baa0d7)

1 / 68      (PUP)
http://download.driverrestore.com/dr2/drinternal2/dr2.5.6/.../DriverRestore.exe  (a046f9d3d37b0b9245cf3c40795b77fa)

1 / 68      (Adware)
http://download.driverrestore.com/dr2/ayiymeedio/dr2.5.6/.../DriverRestore.exe  (bb4a2fe66e449a1324e70728e006508d)

1 / 68      (Adware)
http://download.driverrestore.com/dr2/drinternal2/dr2.5.4/.../DriverRestore.exe  (9bd4e252a744889bf0cef588bbc234c5)

1 / 68      (PUP)
http://download.driverrestore.com/dr2/sqoefqtqoenqiqcmadio/dr2.3/.../DriverRestore.exe  (6999757c069d3abbb1ae175c9e09c761)

 
Latest 30 of 237 download URLs

The following 150 files have been seen to comunicate with download.driverrestore.com in live environments.

TCP » 208.111.161.254:80
AppVerifierapc.exe (AppApcVerifier)

TCP » 208.111.160.6:80
AppVerifierapc.exe (AppApcVerifier)

TCP » 208.111.128.6:80
AppVerifierapc.exe (AppApcVerifier)

TCP » 208.111.128.7:80
AppVerifierapc.exe (AppApcVerifier)

TCP » 208.111.128.7:80
k9pcp.exe (k9pcp by K9Tools)

TCP » 208.111.161.254:80
crossbrowse.exe (Crossbrowse)

TCP » 208.111.128.7:80
Patcher.exe (Audition Patcher by Axeso5.com)

TCP » 208.111.160.6:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 208.111.128.6:80
sysmon.exe (SysMon)

TCP » 208.111.128.6:80
pcsp.exe (PC Speedup Pro by pcspeeduppro.com)

TCP » 208.111.161.254:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 208.111.128.7:80
sysmon.exe (SysMon)

TCP » 208.111.128.6:80
asc.exe (Advance-System Care by advancedpctools.com)

TCP » 208.111.128.7:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 208.111.161.254:80
browserairexec.exe (BrowserAir by Goobzo)

TCP » 208.111.128.6:80
Patcher.exe (Audition Patcher by Axeso5.com)

TCP » 208.111.160.6:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 208.111.160.6:80
1stbrowser.exe (1stBrowser by The 1stBrowser Authors)

TCP » 208.111.128.7:80
AdvancedSystemProtector.exe (ASP)

TCP » 208.111.160.6:80
UCBrowser.exe (UC Browser by UCWeb)

 
Latest 20 of 292 files

URL:
http://download.driverrestore.com/

Web server:
Apache

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.