z4root tagged as rageagainstthecage (Trojan.Gen.2)

[Natey2]

A backup copy of z4root.1.3.0.apk got deleted by my Norton AntiVirus on my PC (see attached image).

I downloaded it fine on my DroidX (Lookout security did not flag it).
But many other security scanners out there do:

http://www.virustotal.com/file-scan...3ec1a86092a58da2faf81736cb17326d0d-1304279013

FYI.


Sent from my unrooted DroidX using DroidForums app

 

[spaz33g]

rageagainstthecage is the actual exploit that gains root. before z4root, i used it in terminal to manually gain root. i don't know why it gets flagged except maybe it self replicates as a part of the root process.

 

[dfuser312553]

& that is why anti virus is a joke.

 

[Droid DOES!!]

& that is why anti virus is a joke.

+1

This thread has been Thunder struck!

 

[Natey2]

& that is why anti virus is a joke.

Actually, it isn't, especially on Windows PCs.
This is probably a false positive.
The real virus out there probably shares a common byte-sequence as z4root.

Sent from my unrooted DroidX using DroidForums app

 

[Backnblack]

& that is why anti virus is a joke.

Actually, it isn't, especially on Windows PCs.

I believe poon was talking about Android....

 

[dfuser312553]

& that is why anti virus is a joke.

Actually, it isn't, especially on Windows PCs.
This is probably a false positive.
The real virus out there probably shares a common byte-sequence as z4root.

It's a good thing you had Norton to save your windows PC from z4root.

 

[AngryHatter]

& that is why anti virus is a joke.

Actually, it isn't, especially on Windows PCs.
This is probably a false positive.
The real virus out there probably shares a common byte-sequence as z4root.

Sent from my unrooted DroidX using DroidForums app

Virus free since 1979 with no AV.

 

[Natey2]

& that is why anti virus is a joke.

Actually, it isn't, especially on Windows PCs.
This is probably a false positive.
The real virus out there probably shares a common byte-sequence as z4root.

It's a good thing you had Norton to save your windows PC from z4root.

I will say that it does find a real threat a couple of times a year.

When you have people in the household downloading all kinds of things, it becomes necessary to use something like Norton.
Of course, there are many Windows users who don't have any AV, and think their systems are not compromised because things *look* ok to them.

Norton Internet Security is a firewall + antivirus.

Unless Norton/Symantec maintains separate AV databases for Windows and Android, z4root might get quarantined by Norton under Android as well until users report this as a false positive.

Sent from my unrooted DroidX using DroidForums app

 

[Natey2]

Got a copy of rageagainstthecage.zip from xda-developers, and Symantec does not tag it:

http://www.virustotal.com/file-scan...aa2f64165c058771ad81ed0b336c33a858-1304906066

Hmm...

Sent from my unrooted DroidX using DroidForums app

 

[AngryHatter]

And then there are people that are certain they are virus free.
Has nothing to do with looks okay to anyone.

 

[Xplorer4x4]

When you have people in the household downloading all kinds of things, it becomes necessary to use something like Norton.

Norton Internet Security is a firewall + antivirus.

Sent from my unrooted DroidX using DroidForums app

Something LIKE Norton is the keyword. Norton is junk. Nod32 or Kasperkey is about the best Anti Virus you can get, along with Comodo Firewall which is consistently ranked as a top three most secure firewall.


I actually wonder if this is just Moto throwing there wight/money around to scare people away from rooting there phones. My old phone used the rage root method to and noticed nod32 flagging this as a virus months ago.

 

[Natey2]

Nod32 or Kasperkey is about the best Anti Virus you can get ...

I used Kaspersky internet security until I ran into a virus that hit the MBR and prevented the laptop from booting. Even the KIS CD recovery methods failed. That's when I switched to Norton internet security, and it identified and fixed the MBR. Until Norton fails at recovery, I plan to stick with it.

Sent from my unrooted DroidX using DroidForums app