download.activeris.com

Fiorentino Media Inc.

Domain Information

The domain download.activeris.com registered by REACTIVATION PERIOD was initially registered in December of 2011 through ENOM, INC.. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Cloudfront CDN service which utilizes a number of proxy IP Addresses (see below). The domain is associated with the publisher Fiorentino Media Inc. who is located in Scottsdale, Arizona in the United States.
Remove Malware from download.activeris.com - Powered by Reason Core Security
Registrar:
ENOM, INC.

Server location:
Virginia, United States (US)

Create date:
Friday, December 16, 2011

Expires date:
Friday, December 16, 2016

Updated date:
Friday, December 18, 2015

ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US

Root domain:

Scanner detections:
Detections  (89% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.FiorentinoMedia.V, PUP.Optional.FiorentinoMedia.W, PUP.Optional.Installer.k, PUP.Optional.SmartPCSolutions.T, PUP.Optional.FiorentinoMedia.a, PUP.Optional.Installer.O
100.00%

ESET NOD32
MSIL/AdvancedSystemProtector (variant)
37.50%

Comodo Security
ApplicUnwnt
12.50%

McAfee
Artemis!DAC34D8F024E
12.50%

McAfee Web Gateway
Artemis!DAC34D8F024E
12.50%

AVG
Skodna.Generic_c
12.50%

Trend Micro House Call
Suspicious_GEN.F47V0612
12.50%

Dr.Web
Program.Unwanted.40
12.50%

Baidu Antivirus
PUA.MSIL.AdvancedSystemProtector
12.50%

The domain download.activeris.com has been seen to resolve to the following 56 IP addresses.

February 1, 2016

server-54-230-103-103.iad2.r.cloudfront.net
September 2, 2014

server-54-230-103-93.iad2.r.cloudfront.net
September 2, 2014

server-54-230-102-160.iad2.r.cloudfront.net
September 2, 2014

server-54-230-100-143.iad2.r.cloudfront.net
September 2, 2014

server-54-230-100-134.iad2.r.cloudfront.net
September 2, 2014

server-216-137-33-124.iad2.r.cloudfront.net
September 2, 2014

server-216-137-33-105.iad2.r.cloudfront.net
September 2, 2014

server-54-230-103-197.iad2.r.cloudfront.net
September 2, 2014

server-54-230-20-220.ewr2.r.cloudfront.net
August 1, 2014

server-216-137-41-252.ewr2.r.cloudfront.net
August 1, 2014

server-54-230-21-229.ewr2.r.cloudfront.net
August 1, 2014

server-54-230-23-141.ewr2.r.cloudfront.net
August 1, 2014

server-54-230-22-178.ewr2.r.cloudfront.net
August 1, 2014

server-54-230-20-48.ewr2.r.cloudfront.net
August 1, 2014

server-54-230-23-30.ewr2.r.cloudfront.net
August 1, 2014

server-54-230-20-33.ewr2.r.cloudfront.net
August 1, 2014

server-54-230-49-126.jfk5.r.cloudfront.net
May 31, 2014

server-54-230-49-221.jfk5.r.cloudfront.net
May 31, 2014

server-54-230-48-88.jfk5.r.cloudfront.net
May 31, 2014

server-54-230-49-197.jfk5.r.cloudfront.net
May 31, 2014

server-54-230-51-148.jfk5.r.cloudfront.net
May 31, 2014

server-54-230-50-41.jfk5.r.cloudfront.net
May 31, 2014

server-54-230-51-214.jfk5.r.cloudfront.net
May 31, 2014

server-54-230-49-79.jfk5.r.cloudfront.net
May 31, 2014

server-54-230-50-25.jfk5.r.cloudfront.net
May 30, 2014

server-205-251-251-124.jfk5.r.cloudfront.net
May 30, 2014

server-205-251-251-30.jfk5.r.cloudfront.net
May 30, 2014

server-54-230-49-176.jfk5.r.cloudfront.net
May 30, 2014

server-205-251-251-64.jfk5.r.cloudfront.net
May 30, 2014

 
Showing 30 of 56 IP Addresses

File downloads found at URLs served by download.activeris.com.

1 / 68      (PUP)

2 / 68      (PUP)

0 / 68
http://download.activeris.com/AntiMalware-Installer.exe  (mbam-setup-consumer-2.0.2.1012.exe)

5 / 68      (PUP)
http://download.activeris.com/AntiMalware-Installer.exe  (2b761e219c1792fe16f780d410330d75)

1 / 68      (PUP)
http://download.activeris.com/FastAgain-Installer-s2.exe  (b5b0a95ec9dbbf6c0794a6f99cf83d51)

1 / 68      (PUP)
http://download.activeris.com/FastAgain-Installer-s4.exe  (0e0bd3567ba5af0151b267ca233111db.exe)

1 / 68      (PUP)
http://download.activeris.com/SmartPrivacyCleaner.exe  (42079e7169e1d225a63485e22b76cbc6)

1 / 68      (PUP)
http://download.activeris.com/FastAgain-Installer-s2.exe  (08fe8dd846d84b1953dbff75ee1cfe5c)

6 / 68      (PUP)
http://download.activeris.com/AntiMalware-Installer.exe  (dac34d8f024eeec687ac435d151f24f4)

The following 16 files have been seen to comunicate with download.activeris.com in live environments.

URL:
http://download.activeris.com/

Google Analytics:
UA-2249740

Title:
“Activeris.com”

Description:
“Find Cash Advance, Debt Consolidation and more at Activeris.com. Get the best of Insurance or Free Credit Report, browse our section on Cell Phones or learn about Life Insurance. Activeris.com is the site for Cash Advance.”

Network:
Amazon Cloudfront

Web server:
Microsoft-IIS/8.5 (ASP.NET) (Version: 4.0.30319)

30 of 298 related domains

Remove Malware from download.activeris.com - Powered by Reason Core Security