JavaScript is required to use the scan form. Reading existing reports works without it.

recoverysupport[.]top

Category: Phishing

Scanned: May 2, 2026, 03:27 PM UTC · First seen: May 2, 2026 · Threat Engines: 1 / 91 · Times Scanned: 1

24 / 100 Trust Score Based on scan findings at the time of analysis

Potentially Suspicious

0 - High Risk50 - Moderate100 - No Threats

Fresh scan recommended

Last scanned 10 days ago - security status may have changed since then.

Not scanned has not been scanned yet. Hit Scan Now to check it.

Scans can take up to 5 minutes to complete. Please keep this tab open - we'll redirect you to the report when it's ready.

Failed

Scan unavailable

Scan failed

Protect yourself from potentially harmful websites

Combo Cleaner's real-time web protection module actively blocks access to scam, phishing & malware-infected websites.

★★★★★ 4.8 / 5 Recommended by PCrisk.com editors Windows · Mac · Android · iOS

Download Combo Cleaner Free scan · no signup

To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.

Screenshot of recoverysupport[.]top Captured May 2, 2026

https://recoverysupport[.]top

This website has been flagged as potentially harmful

Screenshot blurred for safety. Multiple security engines flagged potential threats at the time of scanning.

Domain Age 10 months

Popularity Rank Not Ranked - This website does not appear in the Tranco top list

Threat Databases Flagged by 1 of 91 engine

SSL Certificate ✓ Valid (TLS)

Hosting Provider AWS EC2 (eu-central-1)

Server Location Frankfurt am Main, Germany

Web Server Netlify

CMS Platform Unknown

IP Address 63.176.8.218

Domain & WHOIS Information

Registrar Openprovider

Registered July 4, 2025

Expires July 4, 2026

Name Servers dns1.p07.nsone.net.

DNSSEC Unsigned

Hosting AWS EC2 (eu-central-1)

Reputation & Threat Check 91 security engines checked

1 of 91 engines flagged this website Flagged by 1 security vendor at the time of scanning

Not flagged Flagged

Flagged by 1 of 91 engines

Direct Threat Database Sources

Google Not listed Spamhaus DBL Not listed SURBL Not listed Spamhaus ZEN Not listed Barracuda Not listed SpamCop Not listed Spamhaus ZRD Not listed URLhaus Not listed Phishtank Not listed QBMA Not listed

View detailed engine results on VirusTotal

File Scan Summary Powered by Quttera Engine

2 files scanned

No threats

Low Risk

Medium Risk

High Risk

No threats Low Risk Medium Risk High Risk

recoverysupport.top/# 43.1 KB No threats

unpkg.com/%40walletconnect/web3-provider%401.8.0/dist/umd/index.min.js 729.9 KB No threats

External Links & Domains

External Links

All Clean

Iframes

Clean

Referenced Domains

All Clean

Flagged Resources

None Detected

https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/css/bootstrap.min.cssNot flagged

https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.bundle.min.jsNot flagged

https://cdn.jsdelivr.net/npm/ethers@5.7.2/dist/ethers.umd.min.jsNot flagged

https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.cssNot flagged

https://etherscan.io/tx/${tx.hash}Not flagged

https://unpkg.com/@walletconnect/web3-provider@1.8.0/dist/umd/index.min.jsNot flagged

cdn.jsdelivr.netNot flagged

cdnjs.cloudflare.comNot flagged

etherscan.ioNot flagged

unpkg.comNot flagged

recoverysupport[.]top Overview

Description of recoverysupport[.]top

The website appears to present itself as a cryptocurrency asset-recovery or escrow-withdrawal service under the title "Secure Asset Recovery." Based on the page content, it asks visitors to connect a crypto wallet in order to request a withdrawal, and it references Ethereum Mainnet, gas fees, and wallet pop-ups. The domain name and on-page wording suggest a service aimed at users who believe they have funds available for recovery or release from an escrow-like account.

The site does not appear to represent a well-known financial institution or established recovery provider based on the available scan data. Its structure looks like a single-purpose landing page rather than a full corporate website, and the use of wallet-connection libraries indicates that its main function may be to prompt direct blockchain wallet interaction. Multiple web-classification sources categorize the domain as phishing or fraud-related at the time of this scan, which is notable given the financial theme of the page.

Safety Assessment for recoverysupport[.]top

This domain shows mixed signals, but the overall risk profile appears elevated. Although only 1 out of 91 security engines flagged it directly, multiple web-classification providers categorized it as phishing or fraud-related at the time of this scan. In addition, the page design centers on persuading users to connect a cryptocurrency wallet to "recover" or withdraw assets, which is a pattern commonly associated with wallet-draining or social-engineering schemes.

Other scan elements were cleaner: the malware scan did not detect malicious files, external links were limited to common content-delivery and crypto-related libraries, and blacklist checks did not show listings at the time of review. However, a clean file scan does not rule out credential theft, deceptive wallet prompts, or malicious transaction requests delivered through client-side scripts.

Given the site’s young age, lack of broad reputation signals, phishing-related categorization by multiple sources, and the sensitive nature of wallet-connection requests, visitors should treat it with caution. Based on these findings, this website may pose potential risks to visitors.

Technical Description

The domain uses a valid Let's Encrypt TLS certificate and is hosted on Netlify infrastructure backed by AWS EC2 in Frankfurt, Germany. It resolves through NS1 nameservers, and the site loads common third-party JavaScript and CSS resources including Bootstrap, Font Awesome, WalletConnect, ethers.js, and a blockchain explorer link template. DNSSEC appears to be unsigned.

From a technical standpoint, the hosting and certificate setup are fairly standard and do not by themselves indicate legitimacy or abuse. No malicious files or flagged outbound links were identified in the provided scan results, but the inclusion of wallet-connection tooling is significant because it enables direct interaction with users' crypto wallets. In this context, the primary concern appears to be potential phishing or deceptive transaction approval rather than conventional malware delivery.

HTTP Redirect Chain

No redirects detected - direct connection to destination

Website Insights

Popularity

Not Ranked

Tranco Rank

Not in Top 1M

Visitors Unknown

Category: Phishing

Rank History (30 days)

No rank data available

No cookies data available

Dispute This Score For website owners

Believe this score is inaccurate?

If you are the website owner and believe the scan results contain errors or false positives, you can submit a dispute for manual review. Our team typically responds within 1-2 business days.

Your Email *

Your Name

Domain *

Dispute Reason *

Additional Details *

You will be asked to verify your email before the dispute can be processed.

By submitting this form, you confirm that the information provided is accurate. Disputes are reviewed manually and results may take up to 48 hours to update.

One more step..

To submit your dispute for recoverysupport[.]top, please click the verification link we just emailed you. Once verified, we'll review it within 1–2 business days.

This report was generated automatically and is provided for informational purposes only. Results are based on a point-in-time scan and may contain false positives or incomplete data. This does not constitute a security audit or certification. No vendor in the market can guarantee a 100% detection rate. If you believe this report is inaccurate, please submit a dispute.

Similar Recently Scanned