fdiag.exe not malware

CIS detects the file fdiag.exe (from FreshDiagnose a product by FreshDevices) as being the malware Anti.Fdiag.02[ at ]57609

I guess that’s a false positive.

Did you zip & send to the labs?


Yes, I’ve send it to labs by using CIMA.
CIMA generates a report which I don’t quite understand (I’ve attached it).
It seems that the final verdict is “suspicious”, if I’ve read it correctly.

[attachment deleted by admin]

it looks Freshdiagnose install a kernel driver named FreshIO.sys.

I guess after analysis if that driver could be misused by other 3rd party apps it will be classified as potentially dangerous like Easy Desk Utilities Key.dll.