UMI Rome: malware bytes reports 1 malware detected

tr131 Post time 2016-1-6 21:01:55 | Show all posts  Close [Copy link]
7 4725
Return to list new topic
View: 4725|Reply: 7

UMI Rome: malware bytes reports 1 malware detected

 Close [Copy link]
tr131

1

threads

3

posts

16

credits

New Member

Rank: 1

credits
16
Post time 2015-12-30 09:31:03 | Show all posts |Read mode
Edited by tr131 at 2015-12-30 09:35 \n\nHi Guys,

Received my Rome in the mail yesterday and started setting it up. I installed MalwareBytes and ran a scan. It's reporting one malware detected:

Android/PUP.HackTool.MgYun.a

in /data/app/com.mgyun.shua.protector-1/base.apk


Is this a false positive? Or did I get malware with my phone? If so, what should I do?

Thanks in advance for your help.

Edit: oh, also, the phone came with an app called SuperSU installed. Is this right? What's it for?
Reply

Use magic Report

King_of_Portman

0

threads

2

posts

11

credits

New Member

Rank: 1

credits
11
Post time 2017-5-11 22:36:29 | Show all posts
Phones, like computers, are vulnerable to malware. The most important thing is that it is not ransomware (http://soft2secure.com/knowledgebase/cry128-cry9)
Read the article, here is described the main method of removing ransomware - a free version of emsisoft
Reply Support 1 Not support 0

Use magic Report

zgf

2

threads

58

posts

335

credits

Platinum Member

Rank: 3Rank: 3

credits
335
Post time 2015-12-30 16:30:29 | Show all posts
Phone is pre-rooted (isn't it, test eg by installing Root Checker) and SuperSU is the famous root access manager. You can find the both mentioned apps on Google Play. Searching on Google can provide you tons of materials about SuperSU, particularly a devoted discussion on XDA.
Reply Support Not support

Use magic Report

tr131

1

threads

3

posts

16

credits

New Member

Rank: 1

credits
16
 Author| Post time 2015-12-30 16:46:07 | Show all posts
zgf replied at 2015-12-30 16:30
Phone is pre-rooted (isn't it, test eg by installing Root Checker) and SuperSU is the famous root ac ...

Thank you! Okay, so the superSU is okay. Now hopefully the malware report is a flase positive, then I can relax.


Thanks again.
Reply Support Not support

Use magic Report

tr131

1

threads

3

posts

16

credits

New Member

Rank: 1

credits
16
 Author| Post time 2015-12-31 15:01:59 | Show all posts
So, an update. Flashed the phone using Umi's RootJoy and the rom that it's now offering - version 3.01 1229.

No malware this time. So, I guess I had malware on the new phone that arrived. Interesting.
Reply Support Not support

Use magic Report

Pilantra

2

threads

15

posts

73

credits

Senior Member

Rank: 2

credits
73
Post time 2015-12-31 20:13:46 | Show all posts
I'll do it too, to see in my rome.
Reply Support Not support

Use magic Report

Saschimi

0

threads

11

posts

65

credits

Senior Member

Rank: 2

credits
65
Post time 2016-1-2 00:18:12 | Show all posts
tr131, where did you buy your phone? I heard some reseller install malware on phones, but it´s just a rumor...

My Rome came from efox-shop, it had the version 3.01 already installed.
Reply Support Not support

Use magic Report

overrid3

7

threads

76

posts

336

credits

Platinum Member

Rank: 3Rank: 3

credits
336
Post time 2016-1-6 21:01:55 | Show all posts
mgyun offers a root tool for android smartphones (see VRoot or iRoot). rooting often uses an exploit in the android system, therefore it might be detected as malware (especially on PC). PUP stands for potentially unwanted program which might be true, sometimes, depending on phone model the iRoot app installs some adware app to show you ads on your phone, maybe so they can make a buck.
Google for mgyun root.

Reply Support Not support

Use magic Report

Advanced Mode
B Color Image Link Quote Code Smilies
You have to log in before you can reply Login | WELCOME TO UMIDIGI COMMUNITY

Points Rules

Quick Reply Top Back to list