home

fvdbin.exe

FVDSuite

Kuzma Safonov

The application fvdbin.exe by Kuzma Safonov has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This file is typically installed with the program FVD Suite 3.0.2 by flashvideodownloader.org.
Publisher:
flashvideodownloader.org  (signed by Kuzma Safonov)

Product:
FVDSuite

Version:
2.7.6.0

MD5:
f623404f32052e2df542bef4c35ca4b4

SHA-1:
688eaff212dad62aadebe04c98ac71dd9f75b4a1

SHA-256:
c81d483b4afd8cb1424d98818cfea517e94d3e6eea597dc996b5c73c04e3be5f

Scanner detections:
1 / 68

Status:
Potentially unwanted

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
4/25/2024 7:43:31 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.KuzmaSafonov (M)
15.10.21.16

File size:
11.9 MB (12,474,480 bytes)

Product version:
2.7.6.0

Copyright:
flashvideodownloader.org

Original file name:
FVDSuite

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\fvd suite\fvdbin.exe

Digital Signature
Signed by:
Kuzma Safonov

Authority:
COMODO CA Limited

Valid from:
2/15/2012 2:00:00 AM

Valid to:
2/15/2013 1:59:59 AM

Subject:
CN=Kuzma Safonov, O=Kuzma Safonov, C=UZ

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00D5508D7420AEF0F616CAA5346E80B7E0

File PE Metadata
Compilation timestamp:
2/13/2010 12:50:22 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
6.0

CTPH (ssdeep):
196608:ECKPhRNn0juRzhItkziTlaYQnUr8wKNbg5SqkruxvMWghL99ZiNJh7:NKPhRNn0qRzhmymlaYQnU2Nbg5Sfcc9u

Entry address:
0x932A

Entry point:
55, 8B, EC, 6A, FF, 68, 88, D3, 40, 00, 68, 62, 94, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 20, 53, 56, 57, 89, 65, E8, 83, 65, FC, 00, 6A, 01, FF, 15, A8, C1, 40, 00, 59, 83, 0D, AC, F8, 40, 00, FF, 83, 0D, B0, F8, 40, 00, FF, FF, 15, B4, C1, 40, 00, 8B, 0D, B4, F7, 40, 00, 89, 08, FF, 15, B0, C1, 40, 00, 8B, 0D, B0, F7, 40, 00, 89, 08, A1, 94, C1, 40, 00, 8B, 00, A3, A8, F8, 40, 00, E8, C9, 00, 00, 00, 83, 3D, 90, E2, 40, 00, 00, 75, 0C, 68, 5E, 94, 40, 00, FF, 15, AC, C1...
 
[+]

Entropy:
7.5219

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
44 KB (45,056 bytes)

The file fvdbin.exe has been discovered within the following program.

FVD Suite 3.0.2  by flashvideodownloader.org
The setup program uses InstallIQ to bundle additional software including potentially unwanted programs as well as adware. "InstallIQ™, which manages your FVD Suite installation. Additional software may be offered to you via opt-in ads during the installation process."
flashvideodownloader.org
44% remove it
 
Powered by Should I Remove It?

Remove fvdbin.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.