fdm.exe

Free Download Manager

FreeDownloadManager.ORG

It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘Free Download Manager’.
Publisher:
FreeDownloadManager.ORG

Product:
Free Download Manager

Version:
3.9.1360.0

MD5:
67bf0e50657de1243d40fe58bb2c54d3

SHA-1:
2b34a5ea94b2a68beb7eeb29c8bad76b68a9f980

SHA-256:
929ea6e9150d37b5a06d74db2cf14efdcd5da746896d9c860172653f8a719002

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/23/2024 2:54:48 AM UTC  (today)

Scan engine
Detection
Engine version

Boost by Reason
Optional.Startup.FreeDownloadManagerORG.D
188163

File size:
6.6 MB (6,950,400 bytes)

Product version:
3.9.3

Copyright:
Copyright © 2003-2013

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\free download manager\fdm.exe

File PE Metadata
Compilation timestamp:
10/25/2013 12:00:32 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
196608:6e4LAhFN8fLoLPUeGZ3q0oGdV25Q/z333333313333333q3333333nDt:TwkFe0wwGAD

Entry address:
0x3E7BE6

Entry point:
E8, 36, 3C, 01, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 56, 57, 8B, 7D, 10, 8B, C7, 83, E8, 00, 0F, 84, B7, 14, 00, 00, 48, 0F, 84, 9F, 14, 00, 00, 48, 0F, 84, 6C, 14, 00, 00, 48, 0F, 84, 21, 14, 00, 00, 48, 0F, 84, 99, 13, 00, 00, 8B, 4D, 0C, 8B, 45, 08, 53, 6A, 20, 5A, E9, 32, 04, 00, 00, 8B, 30, 3B, 31, 74, 74, 0F, B6, 30, 0F, B6, 19, 2B, F3, 74, 13, 33, DB, 85, F6, 0F, 9F, C3, 8D, 74, 1B, FF, 85, F6, 0F, 85, 2B, 04, 00, 00, 0F, B6, 70, 01, 0F, B6, 59, 01, 2B, F3, 74, 13, 33, DB, 85, F6, 0F, 9F, C3...
 
[+]

Entropy:
6.5787

Code size:
4.3 MB (4,512,256 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Free Download Manager

Command:
"C:\logiciels\internet et réseau\téléchargement\free download manager\fdm.exe" -autorun


The file fdm.exe has been discovered within the following programs.

Free Download Manager 3.9  by FreeDownloadManager.ORG
Publisher's description - “Free Download Manager downloads files and converts videos (including flash) faster with open-source Free Download Manager.”
www.freedownloadmanager.org
56% remove it
ViddyHD  by ViddyHD.com
Bundles the Searchqu Toolbar. From teh websites FAQ section: "The toolbar has a very useful Searchqu feature that will make searching for video links much easier. You won't have search and copy links manually.
www.viddyhd.com
62% remove it
 
Powered by Should I Remove It?

The executing file has been seen to make the following network communications in live environments.

TCP:
Connects to x1-6-c4-3d-c7-b4-8c-8a.cpe.webspeed.dk  (87.52.30.13:28681)

TCP:
Connects to x1-6-20-4e-7f-5c-6c-a2.cpe.webspeed.dk  (87.60.158.150:62381)

TCP (HTTP):
Connects to www.krannert.purdue.edu  (128.210.131.36:80)

TCP (HTTP):
Connects to webs1149.aruba.it  (62.149.131.159:80)

TCP (HTTP):
Connects to vs44.fex.net  (213.133.191.81:80)

TCP (HTTP):
Connects to uclon130004.ucs.cogentco.com  (149.11.44.86:80)

TCP (HTTP):
Connects to tracker.openbittorrent.com  (31.172.63.252:80)

TCP:
Connects to ti0098a400-0532.bb.online.no  (83.108.153.24:23220)

TCP:
Connects to ti0059a400-3171.bb.online.no  (83.108.135.109:43033)

TCP:
Connects to tgn.149.1.34.dts.mg  (197.149.14.34:56041)

TCP:
Connects to ten.emfme.net  (77.234.45.130:55918)

TCP:
Connects to tb213-185-225-43.cust.teknikbyran.com  (213.185.225.43:42190)

TCP:
Connects to stip-1-ip244.rybnet.ru  (46.47.1.244:1300)

TCP:
Connects to staticline-31-182-76-171.toya.net.pl  (31.182.76.171:55199)

TCP:
Connects to static-host119-73-97-125.link.net.pk  (119.73.97.125:56667)

TCP:
Connects to static-host119-73-100-76.link.net.pk  (119.73.100.76:16272)

TCP:
Connects to static.204.28.251.148.clients.your-server.de  (148.251.28.204:34042)

TCP (HTTP):
Connects to sourceforge.free.org  (158.255.96.7:80)

TCP:
Connects to SOL-FTTB.158.80.118.46.sovam.net.ua  (46.118.80.158:46213)

TCP:
Connects to SOL-FTTB.148.11.119.46.sovam.net.ua  (46.119.11.148:57678)

Scan fdm.exe - Powered by Reason Core Security