» activerisam.exe
Overview
Analysis
File Details
Programs (1)

activerisam.exe

Activeris AntiMalware

Fiorentino Media Inc.

The application activerisam.exe by Fiorentino Media has been detected as a potentially unwanted program by 3 anti-malware scanners. The program is a setup application that uses the Inno Setup installer. This file is typically installed with the program Activeris AntiMalware by Activeris Software LLC which is a potentially unwanted software program.

File name:

activerisam.exe

Publisher:

Activeris (signed by Fiorentino Media Inc.)

Product:

Activeris AntiMalware

Version:

Activeris AntiMalwar

MD5:

81b090dd3a35f0ee74ab31d830033299

SHA-1:

bfe3234945793eb563413192be43a4a14b90ed6e

SHA-256:

d33bbc369442f3060bd5be7c7e5e2c502908683c129a48b8698b079130873562

Scanner detections:

3 / 68

Status:

Potentially unwanted

Analysis date:

4/16/2024 3:29:41 PM UTC (today)

Scan engine

Detection

Engine version

Comodo Security

Heur.Suspicious

19535

Reason Heuristics

PUP.Optional.FiorentinoMedia.L

14.4.24.9

Sophos

Activeris Freemium Software

4.98

File size:

594 KB (608,296 bytes)

Product version:

1.0.0.1

File type:

Executable application (Win32 EXE)

Installer:

Inno Setup

Language:

Language Neutral

Common path:

C:\Program Files\activeris antimalware\activerisam.exe

Digital Signature

Signed by:

Fiorentino Media Inc.

Authority:

COMODO CA Limited

Valid from:

1/24/2012 7:00:00 PM

Valid to:

1/24/2013 6:59:59 PM

Subject:

CN=Fiorentino Media Inc., O=Fiorentino Media Inc., STREET=7904 E. Chaparral Road, STREET=STE A110-430, L=Scottsdale, S=AZ, PostalCode=85250, C=US

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

009CB8D8E313806C1914ADA02E4DB86602

File PE Metadata

Compilation timestamp:

12/20/2011 9:16:50 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

12288:a3Mjhvtf888888888888W88888888888YAP7miQhlomzB8dLXB40Q4ksgBljomFZ:kMjhga7mimWd+ZXR/DfR

Entry address:

0x16478

Entry point:

55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, B0, 52, 41, 00, E8, AC, 03, FF, FF, 33, C0, 55, 68, 45, 6B, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 01, 6B, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, AB, 41, 00, E8, 4E, EC, FF, FF, E8, F5, E7, FF, FF, 8D, 55, EC, 33, C0, E8, 7F, 84, FF, FF, 8B, 55, EC, B8, AC, D6, 41, 00, E8, E2, E9, FE, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, AC, D6, 41, 00, B2, 01... 
[+]

Entropy:

7.7522

Developed / compiled with:

Microsoft Visual C++

Code size:

84 KB (86,016 bytes)

The file activerisam.exe has been discovered within the following program.

Activeris AntiMalware by Activeris Software LLC

Activeris AntiMalware is bundled with the FastAgain PC Booster program. In addition it is bundled through third party download managers such as AirInstaller which distributes ad-supported web browser toolbars.

www.activeris.com

73% remove it

Remove activerisam.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.