home

maxactmon.exe

DoctoAV Software Active Monitor Service

AS INTERNET LTD

The executable maxactmon.exe has been detected as malware by 1 anti-virus scanner.
Publisher:
DoctoAV Software  (signed by AS INTERNET LTD)

Product:
DoctoAV Software Active Monitor Service

Version:
2, 0, 1, 0

MD5:
0290d925091985165bba40439a73cfc4

SHA-1:
586e586b2a3cd730a1e141083547b1b79f9cb7e0

SHA-256:
e7d87920eb394e7085713743ff4966f8f4c3f3a7611c779cae44473957899169

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
4/26/2024 9:23:47 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.3.5.11

File size:
662.5 KB (678,368 bytes)

Product version:
19, 0, 2, 1

Copyright:
(c) DoctoAV Software. All rights reserved.

Trademarks:
DoctoAV Software

Original file name:
SDActMonService.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\doctoantivirus\maxactmon.exe

Digital Signature
Signed by:
AS INTERNET LTD

Authority:
GlobalSign nv-sa

Valid from:
4/24/2013 11:14:58 AM

Valid to:
4/24/2016 11:14:58 AM

Subject:
CN=AS INTERNET LTD, O=AS INTERNET LTD, L=Tel Aviv, C=IL

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121E2858CCC5F8EA3765CA30CD1701D5B5E

File PE Metadata
Compilation timestamp:
4/28/2014 11:01:00 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

Entry address:
0x13E30

Entry point:
E8, 26, 60, 00, 00, E9, 79, FE, FF, FF, 3B, 0D, 20, FD, 49, 00, 75, 02, F3, C3, E9, A8, 60, 00, 00, 8B, FF, 55, 8B, EC, 8B, 45, 14, 56, 57, 33, FF, 3B, C7, 74, 47, 39, 7D, 08, 75, 1B, E8, 47, 45, 00, 00, 6A, 16, 5E, 89, 30, 57, 57, 57, 57, 57, E8, 46, 23, 00, 00, 83, C4, 14, 8B, C6, EB, 29, 39, 7D, 10, 74, E0, 39, 45, 0C, 73, 0E, E8, 22, 45, 00, 00, 6A, 22, 59, 89, 08, 8B, F1, EB, D7, 50, FF, 75, 10, FF, 75, 08, E8, 63, 61, 00, 00, 83, C4, 0C, 33, C0, 5F, 5E, 5D, C3, 8B, FF, 55, 8B, EC, 83, EC, 20, 56, 33...
 
[+]

Code size:
294 KB (301,056 bytes)

Remove maxactmon.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.