Jump to content
formydocs

poweriso.exe from poweriso.com

Recommended Posts

Malwarebytes Premium blocks and quarantines the file poweriso.exe downloaded from poweriso.com.

However, on the website:

https://poweriso.en.lo4d.com/virus-malware-tests,

the author claims that, as of 11/28/2018, the file was tested using Malwarebytes and that "the PowerISO download tested clean 100% of the time." 

Malwarebytes blocks the install of PowerISO as well.

Which is true?

Is this a False Positive caught by Malwarebytes?

 

Edited by AdvancedSetup
removed live hyperlink

Share this post


Link to post
Share on other sites

Can you please post the log here showing the detection. I really dont have anything to go off of from your post.

 

 Did you download the 32 bit or the 64 bit?

 

 

Thanks!

 

Share this post


Link to post
Share on other sites
On 12/30/2018 at 4:12 PM, shadowwar said:

Can you please post the log here showing the detection. I really dont have anything to go off of from your post.

Did you download the 32 bit or the 64 bit?

Thanks!

Sorry, I managed to ignore the instructions to post here - my bad.

I'm on Windows 7 x64 - downloaded the powerISO x64 file. Please review the .log file below (also attached) and let me know if you need any further information - thanks:

--------------------------------------------------------

Malwarebytes
www.malwarebytes.com

-Log Details-
Protection Event Date: 12/30/18
Protection Event Time: 1:34 PM
Log File: 8ff6b67e-0c61-11e9-8936-e4115b2d7159.json

-Software Information-
Version: 3.6.1.2711
Components Version: 1.0.508
Update Package Version: 1.0.8555
License: Premium

-System Information-
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: System

-Blocked Malware Details-
File: 1
Generic.Malware/Suspicious, C:\Users\YouExYouEye\Downloads\POWERISO7-X64.EXE, Quarantined, [0], [392686],1.0.8555


(end)

--------------------------------------------------------

On 12/30/2018 at 4:12 PM, shadowwar said:

 

x

quarantined_PowerISO7-X64.log

Share this post


Link to post
Share on other sites
On 1/1/2019 at 3:35 AM, miekiemoes said:

Hi,

This is a valid detection and no False Positive.

As it also clearly states there:

 

2019-01-01 11_34_55-Window.png

 

This IS true for the demo, but this is NOT true for the registered version. It does not attempt to change the homepage, and does not ask you if it can install offers or whatnot. 

I was trying to install the registered version and MB has a fit and deletes it. 

So you need to update your filters to reflect the demo vs registered version. 

 

Share this post


Link to post
Share on other sites

Hi,

We only detect installer, which IS bundled with the additional offers. If you can send me an installer that doesn't have the additional bundle offers, then I'll be happy to look at it.

 

Share this post


Link to post
Share on other sites

Hi,

We have verified that the registered version doesn't have the additional bundles, so detection for the registered version has been removed.

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.