You are here

Home » Forums » Support Forums » Music & Video Apps Support

CDex version 2.21 installs spyware/malware

7 posts / 0 new
Log in or register to post comments
Last post
August 13, 2019 - 4:34pm
#1
shockeymoe
Offline
Last seen: 5 years 3 months ago
Joined: 2012-06-23 01:19
CDex version 2.21 installs spyware/malware

I just did an upgrade for CDex software and it installed spyware PUA.Win32.FusionCore.SMBD.
It comes in the form of a dll called fusion.dll which is copied to the CDex Apps folder in the PortablePlatform path.
My TrendMicro scan caught it and killed it.
Can someone from PortableApps investigate?

Top
August 13, 2019 - 4:40pm
Gizmokid2005
Gizmokid2005's picture
Offline
Last seen: 3 weeks 5 days ago
Developer
Joined: 2007-01-17 19:24
False Positive

Please see the support page, this is a false positive.

https://portableapps.com/support#false_positive

Top
August 13, 2019 - 4:47pm
(Reply to #2)
shockeymoe
Offline
Last seen: 5 years 3 months ago
Joined: 2012-06-23 01:19
You seem very confident in

You seem very confident in your reply so I will take your word for it although the TrendMicro write up seems to be accurate.
At any rate my software caught it. It seems strange to me that CDex would include a dll that can be removed without consequence.
Here is the TrendMicro page: https://www.trendmicro.com/vinfo/us/threat-encyclopedia/malware/pua.win3...

I try to tell the truth, it's easier to remember.

Top
August 13, 2019 - 4:50pm
(Reply to #3)
John T. Haller
John T. Haller's picture
Offline
Last seen: 2 hours 57 min ago
AdminDeveloperModeratorTranslator
Joined: 2005-11-28 22:21
Licensing

CDex is freeware (no longer open source) and can only be distributed in its binary installer. Repackaging without permission of the publisher is illegal. So, the portable version is a live version that downloads the installer and pulls the files out. As to the claims, you can verify them below.

Sometimes, the impossible can become possible, if you're awesome!

Top
August 13, 2019 - 4:50pm
(Reply to #4)
John T. Haller
John T. Haller's picture
Offline
Last seen: 2 hours 57 min ago
AdminDeveloperModeratorTranslator
Joined: 2005-11-28 22:21
Licensing

CDex is freeware (no longer open source) and can only be distributed in its binary installer. Repackaging without permission of the publisher is illegal. So, the portable version is a live version that downloads the installer and pulls the files out.

Sometimes, the impossible can become possible, if you're awesome!

Top
August 13, 2019 - 4:44pm
John T. Haller
John T. Haller's picture
Offline
Last seen: 2 hours 57 min ago
AdminDeveloperModeratorTranslator
Joined: 2005-11-28 22:21
Explained on page

It's explained on the app's homepage: https://portableapps.com/apps/music_video/cdex_portable#app-notes

And no it doesn't install malware. No releases here ever do.

Sometimes, the impossible can become possible, if you're awesome!

Top
August 13, 2019 - 4:50pm
(Reply to #6)
shockeymoe
Offline
Last seen: 5 years 3 months ago
Joined: 2012-06-23 01:19
Closed, thanks

Ok John, I should have investigated further. The explanation is spot-on.
Thanks for all of the good work you all do here. I have another question but I will post it in the appropriate section.

I try to tell the truth, it's easier to remember.

Top
Log in or register to post comments