[Q] Kingoroot - malware? - General Questions and Answers

Hi
I just downloaded this app from the CNET link (following the link on www kingoapp.com/ android-root . htm) on the basis that CNET is reputable and that the app is likely to be safe.
Upon running the installer it connects to the internet and then downloads an app. My antivirus kicks in saying that the installer contains Pua.Adware.Proinstall
Has anyone experienced reviewed the rooting app and considered it safe? (I know that they issued an explanation, but not clear that they ever followed it up and fixed the issues that led to the initial banning here)

Ok - used the installer from their ftp, no suggestion of adware, but note that app still tries to connect to the internet when running. Why?
Also just ran it through virustotal:
CAT-QuickHeal (Suspicious) - DNAScan 20141210
Cyren W32/MalwareHiderPatched-based!M 20141210
F-Prot W32/MalwareHiderPatched-based!M 20141210
TrendMicro-HouseCall Suspicious_GEN.F47V1121 20141210

Because they are known to send you device I go to their server. Things like you IMEI and other device info

odywd
zelendel said:
Because they are known to send you device I go to their server. Things like you IMEI and other device info
Click to expand...
Click to collapse
I thought they stopped that?
What other root method is better?

I have use Kingoroot for my phone is work well

Kingoroot connects to the Internat because it checks for execuable scripts for this device.

Related

[Tool][Windows Only][Root] Android Reverse Tethering

CREDITS TO capslock66
ORIGINAL THREAD http://forum.xda-developers.com/showthread.php?t=1371345
Android Reverse Tethering for windows users.
Tethering is the ability to surf on your pc using the 3g of your phone
Reverse tethering is the opposite : surf on your phone using the ADSL of your PC.
This work only for rooted users !!!
For non rooted users, you can try my other solution, but require more manipulations and is limited to surf : http://www.codeproject.com/KB/androi...orwarding.aspx
Installation :
Unpack the zip file. This zip files contains the windows part, ADB and the android APK.
Before starting the tool :
Ensure you have debugging enabled on your phone :
Settings > Applications > Development > USB Debugging > Turn On
Ensure you have root access AND SuperUser application installed.
Change the superuser settings (Menu -> Preferences -> Notifications part) :
Uncheck "Notifications" label to display "Do not show notification when an app is granted Su Permissions"
AndroidTool
The AndroidTool.exe is the windows part
he low level communication tool (ADB) is included in the zip file.
AndroidTool will try to find ADB in c:\android-sdk-windows\platform-tools\adb.exe
If not found he will use the provided one.
The first time you use the program :
If you want to use another version of ADB, clik "config" and in the first tab enter the path to the ADB
Select the DNS server to use in the right list. On complex system, some dns can be detected.
Start reverse tethering
Just click “Connect”.
If it's the first time you use the program, This will install the latest android package and the dependencies (busybox and redsocks).
The SuperUser process may ask you to allow “Usb tunnel”
If the android process crash after receiving superuser rights, close the windows program and start again.
The android interface (first tab) will show connections forwarded to windows.
Others tabs are just for debugging (give information about system route tables and connections). Not yet finished.
Start your browser
Google chrome will complain that no connection is available. Don’t care. That work.
Firefox , opera and dolphin don’t have problem with that !!!
The current version of the application can’t forward low level ICMP packet (PING).
From Android Os point of vue, there is no internet connection.
Market :
The search market work, but due to the same connection problem, it’s not possible to download. I hope Google will fix the market.
Other apps :
The system detect automatically ports like http (80), https (443) , Market (5228) . UDP ports like DNS also work.
You don't need to add static ports in the windows program (config / ports).
Tested under :
Tested under more than 20 android model. Thanks for your feedback
I will update the tool every week.
Version 2.25 :
less traces
added upload / download / connections
some bug fixes
HIT THANKS BUTTON IF I HELPED U
this is not your work!!!
you should link to the original work, and qoute from there!!
Is the phone need be connected to computer when is installation?
old stuff...
a.cid said:
this is not your work!!!
you should link to the original work, and qoute from there!!
Click to expand...
Click to collapse
Hello ya its not my work i share this thread i mentioned credits to capslock66.First read thread fully
ZmisiS said:
Is the phone need be connected to computer when is installation?
Click to expand...
Click to collapse
Yes brother..In ur phone usb debugging enabled...i tested in fit its works fine but market not works
lomash said:
old stuff...
Click to expand...
Click to collapse
Yes brother i like to share friends so only i shared
janarthananfit said:
Hello ya its not my work i share this thread i mentioned credits to capslock66.First read thread fully
Click to expand...
Click to collapse
you should read my post more carefully...I never said you didn't give credits...
I said to link to his original work, and qoute from there...
a.cid said:
you should read my post more carefully...I never said you didn't give credits...
I said to link to his original work, and qoute from there...
Click to expand...
Click to collapse
Agreed. You link to the original dev work so he can monitor progress of how many downloads.
There is a new app called ReverseTether that allows you to do just that and it doesn't require any additional windows software or tech savviness, and it's very straight forward and simple to use.
Check this out:
offline?
hello ,
i tried your program version 2.25.
connected galaxy note 3 (rooted) with usb2-microcable to computer.
activated usb-tethering on note 3.
pressed "connect"
installing new package
error "device offline"
what can ido?
I was wondering why it doesn't work but i know why now my Android is a 5.1 then I will wait

Bypassing VOIP (like viber) ban in KSA

Viber has been recently banned in Saudi Arabia (and some other middle east countries).
But there is a work-around for this.
I have done it only for android devices but it may be possible for iOS (jail-broken).
Requirement:
1. Rooted phone.
OR OR OR ---> unrooted phone IF you are running Android 4.0+ :good:
2. Installed viber (I have only tried this with viber already installed)
3. Psiphon 3 (circumvention system, way better than hotspot shield or any other i have tried) :angel:
Note: The website for psiphon download may be blocked by your ISP, but it can be downloaded in many ways. Also, there are versions for iOS and windows XP/Vista/7. Not sure about Win 8 though.
The steps are simple (assuming your phone has been rooted OR you are using android 4.0+).
1. just install the LATEST (client version 39) psiphon apk and run it.
2. In the options below, tick "Tunnel Whole Device"
3. You are now ready to use viber. As a bonus, you can browse any blocked website.
CAUTION: Psiphon 3 DOES NOT mask or hide your online actions/history. Use another app for that.
DISCLAIMER: Any app mentioned here is NOT MINE. I am just a happy user and am just recommending them to you.
If this method works for you, please hit the THANKS button below. Good Luck!
bump

[Q] Problems with M755 Kid

Hello,
I bought for my kid Q-MAX (unknown brand) M755 KID tablet. It seams to be the same as the one by the Beneve brand.
1. Google Play starts with the window "no connection". I tried removing cache, installing new one from the apk, changing the date and time, location, but nothing works.
2. Then I found solution that requires root. I tried towelroot but it does not work on the device. For another rooting methods, I need to enable USB debugging and root it from PC. I have found oneclickroot.
3. Unfortunately, Windows does not recognize my tablet. It displays that it is M755 KID (i can transfer files, but there is a yellow triangle with a ! in the device manager).
I even tried factory reset (I added my account several times), but that does not work either.
Help? I do not know where to go next.
spiralciric said:
Hello,
I bought for my kid Q-MAX (unknown brand) M755 KID tablet. It seams to be the same as the one by the Beneve brand.
1. Google Play starts with the window "no connection". I tried removing cache, installing new one from the apk, changing the date and time, location, but nothing works.
2. Then I found solution that requires root. I tried towelroot but it does not work on the device. For another rooting methods, I need to enable USB debugging and root it from PC. I have found oneclickroot.
3. Unfortunately, Windows does not recognize my tablet. It displays that it is M755 KID (i can transfer files, but there is a yellow triangle with a ! in the device manager).
I even tried factory reset (I added my account several times), but that does not work either.
Help? I do not know where to go next.
Click to expand...
Click to collapse
Yellow triangle in device manager, means drivers are not installed, could try installing generic adb drivers
see [Guide] Install drivers for any device using Pdanet by droidiser
Universal Naked Driver Solves Your ADB Driver Problems on Windows
There are several root methods here. http://www.xda-developers.com/root/
Google Play starts with the window "no connection". Check time zone, time and date.
Because there is not a specific forum for your device, this thread will be moved to general/help
I did manage to install the drivers in the meantime. It has rockchip chip, so somebody here: arctablet.com/blog/forum/firmware-development/rockchip-released-an-easy-driver-installer/[/url] gave the link to the drivers that work. Generic drivers don't.
I tried framaroot, oneclickroot, kinga root, towelroot and some more, all without success.
I did set date and time and time zone, but that does nothing. Automatic or manual, clearing cache...nothing - no connection.
The solution I have found is to write into hosts file: 127.0.0.1 localhost, but when I read that file, it has exactly that in it, so that does not work either. Maybe if I would delete the file, but I cannot gain root access.
So I am completely stuck.
spiralciric said:
I did manage to install the drivers in the meantime. It has rockchip chip, so somebody here: arctablet.com/blog/forum/firmware-development/rockchip-released-an-easy-driver-installer/[/url] gave the link to the drivers that work. Generic drivers don't.
I tried framaroot, oneclickroot, kinga root, towelroot and some more, all without success.
I did set date and time and time zone, but that does nothing. Automatic or manual, clearing cache...nothing - no connection.
The solution I have found is to write into hosts file: 127.0.0.1 localhost, but when I read that file, it has exactly that in it, so that does not work either. Maybe if I would delete the file, but I cannot gain root access.
So I am completely stuck.
Click to expand...
Click to collapse
RootMaster Links
Rootmaster apk or Here
and
Rootmaster.exe run from PC
Most android devices are rootable by one or both these options.
These are made by Chinese devs, not open source, so whether they are safe or not is Unknown.
Sent from my XT907 using Tapatalk
Can you please help me..
I'm kinda in a pickel here.
I don't have the right firmware for my china tablet M755 v2.5 (rk3126)
older version is not an option? found only one download link but seems dead. ask for reupload see page 71 post #702 or look for the file name on torrent
M755E7_RK3126B_V2.52_2650-120_703_20150910.rar
aIecxs said:
older version is not an option? found only one download link but seems dead. ask for reupload see page 71 post #702 or look for the file name on torrent
M755E7_RK3126B_V2.52_2650-120_703_20150910.rar
Click to expand...
Click to collapse
You are an absolute genius aIecxs to find such links and you are also very resorcefull....
MUCH THX to every1 who help.
aIecxs said:
older version is not an option? found only one download link but seems dead. ask for reupload see page 71 post #702 or look for the file name on torrent
M755E7_RK3126B_V2.52_2650-120_703_20150910.rar
Click to expand...
Click to collapse
The right firmware is in the link bellow.
The M755E7 kids tablet is unbricked and works fine. This firmware is for M755E7 with chip RK3126B V2.52
It will not work with any other tablet so pls don't try this with other tablets!
You can download via this torrent right here https://www.partis.si/torrent/podrobno/576284

Info please: How does malware attack on Android work

I have a tab Lenovo A5500-HV, recently it was malware compromised mostly in
/system/priv-app/*.apk
/system/app/*.apk
My tab is not rooted. I can no longer keep my Unknown devices installation (checked off) and if I connect to internet installation of file with weird names are installed which interrupt and disrupt normal functioning to standstill.
I wish to understand
a) How is trojan or backdoor infestation in android different from windows
b) Why isnt best known antivirus and anti- malwares of windows platform unable to neither detect or remove infected files (Device not rooted)
c) How can I protect my device as I tried hard reset but it did no good
So please share some application/s (apk) to detect infected files and hopefully remove (without rooting if possible and still securing default android). Norton/ AVG/ Avast failed to detect them but Malwarebytes detect but none could disinfect
Ashish1+1 said:
I have a tab Lenovo A5500-HV, recently it was malware compromised mostly in
/system/priv-app/*.apk
/system/app/*.apk
My tab is not rooted. I can no longer keep my Unknown devices installation (checked off) and if I connect to internet installation of file with weird names are installed which interrupt and disrupt normal functioning to standstill.
I wish to understand
a) How is trojan or backdoor infestation in android different from windows
b) Why isnt best known antivirus and anti- malwares of windows platform unable to neither detect or remove infected files (Device not rooted)
c) How can I protect my device as I tried hard reset but it did no good
So please share some application/s (apk) to detect infected files and hopefully remove (without rooting if possible and still securing default android). Norton/ AVG/ Avast failed to detect them but Malwarebytes detect but none could disinfect
Click to expand...
Click to collapse
a) The only differences are technical ones, such as executing exploits and creating the malware itself.
b) Because malware isn't nearly as popular on Android compared to Windows, so naturally less interest for security companies and less malware samples to analyse.
c) If you can't get it removed with a hard reset, either the company selling you the phone has infected the ROM, or an app has rooted your phone, injected itself onto /system and now you're screwed.
My advice: completely re-flash the stock (or more preferably) a stable custom tom. This does require you to root (or flash a custom recovery via fastboot).
janekmuric said:
a) The only differences are technical ones, such as executing exploits and creating the malware itself.
b) Because malware isn't nearly as popular on Android compared to Windows, so naturally less interest for security companies and less malware samples to analyse.
c) If you can't get it removed with a hard reset, either the company selling you the phone has infected the ROM, or an app has rooted your phone, injected itself onto /system and now you're screwed.
My advice: completely re-flash the stock (or more preferably) a stable custom tom. This does require you to root (or flash a custom recovery via fastboot).
Click to expand...
Click to collapse
Thanks for taking time. So this means if the app has rooted the phone does the phone stay rooted for the user (for removal) or for the device now is at the mercy of malware as any internet connectivity will re invite their infected downloads. And say, if its rooted please share few antivirus , antimalwares or apps that can assist in erasing trojan or backdoor through the path viewed.
Sent from my A0001 using XDA-Developers mobile app
Ashish1+1 said:
Thanks for taking time. So this means if the app has rooted the phone does the phone stay rooted for the user (for removal) or for the device now is at the mercy of malware as any internet connectivity will re invite their infected downloads. And say, if its rooted please share few antivirus , antimalwares or apps that can assist in erasing trojan or backdoor through the path viewed.
Sent from my A0001 using XDA-Developers mobile app
Click to expand...
Click to collapse
You cannot use the root exploit to remove the malware. There is NO antivirus app that can remove that malware because it's on a partition the antivirus can't access.
Only way to remove the threat for sure is to flash a new rom on the phone, but this requires root.
If you guys don't know how to root, you can try the new Dirty Cow exploit. There aren't any one click apps yet, but you can compile it as the source code is on GitHub.
So this means after flashing, need to search for stable custom ROM which has to be compatible with
Sent from my A0001 using XDA-Developers mobile app
Had a good read but from an old article on "android has a big security problem, but antivirus apps can't do much to help" but was posted on Oct 29, 2015. Is it still valid
Sent from my A0001 using XDA-Developers mobile app
Ashish1+1 said:
Had a good read but from an old article on "android has a big security problem, but antivirus apps can't do much to help" but was posted on Oct 29, 2015. Is it still valid
Sent from my A0001 using XDA-Developers mobile app
Click to expand...
Click to collapse
Yes, it's still valid as apps will always be sandboxed in Android so security apps can't access malware in most of the partitions on your phone if they have managed to install themselves there, but AV can still identify malware (in some partitions at least, I think there are some they cannot read), so I think they have their uses, but they are limited by the very thing that makes Android more secure than Windows out the box, ie how apps are sandboxed. One thing that has changed though since that was written is there are a number of new exploits that can gain root, when it was written I think it was generally considered unlikely a malicious app could gain access to root, now I would say it's not on older versions of Android.
ANd just to clarify what has been said above by Janek, you should install stock ROM first then a custom ROM if you want one, as stock will overwrite all partitons while most custom ROMs will not!
Thanks for the info. Another quert, any suggestion for sandboxes browser that can be recommended
Sent from my A0001 using XDA-Developers mobile app

[ROOT] Blocked from internet? Renew trial for free limited WiFi access? *Solution*

WARNING: THIS IS ILLEGAL IN SOME PLACES.
If you are blocked from the internet at any place like the library, or school, or anywhere else here is the solution to getting unblocked.
First, you MUST be rooted to even attempt to do this. If you aren't rooted use Kingo root or Iroot. If neither work then just PM me and i will help you.
Second, after you are rooted you go to the app store and download the app Mac Changer .
When the app is finished downloaded make sure that you have backed up everything n your device via recovery on a SD CARD (regular storage can be used).
What this app does is change you MAC address and changing your MAC address can mess your device up in a way if done incorrectly.
An issue that some people have are bootloops or bricks etc.
If you follow everything in this guide then you will be fine. Third open the app and Grant SU access then it is pretty straight forward after that put in a new Mac Address
and Save. ONCE YOU RESTART OLD MAC ADDRESS WILL RESTORE
That's it thanks for reading my guide

Categories

Resources