Hey all, just wanted to let the community know that the current 'tr.apk' download from Towelroot.com (filesize 103003 bytes, md5 of 59193b68a8a2a9a2e6fc898df81e491b) trips my ClamScan virus scanner. I got impatient trying to get it to download on my phone via Firefox, so I downloaded it via my desktop and emailed it to myself. I happen to run a virus scanner on all incoming mail, and it went crazy with this message:
A virus was found: Andr.Exploit.Ratc
Scanner detecting a virus: ClamAV-clamscan
Content type: Virus
Internal reference code for the message is 31908-19/qifk-moTWpxp
First upstream SMTP client IP address: [173.160.x.x]
173-160-x-x-Washington.hfc.comcastbusiness.net
According to a 'Received:' trace, the message apparently originated at:
[173.160.x.x], laws-mbp.mydomain.lan
173-160-x-x-Washington.hfc.comcastbusiness.net [173.160.x.x]
Return-Path: <law@mydomain.org>
From: Lee Whalen <law@mydomain.org>
Message-ID: <539DF04C.8000905@mydomain.org>
Subject: tr
The message has been quarantined as: q/virus-qifk-moTWpxp
The message WAS NOT relayed to:
<law@mydomain.org>:
250 2.7.0 Ok, discarded, id=31908-19 - INFECTED: Andr.Exploit.Ratc
Virus scanner output:
p008: OK
p009: OK
p006: OK
p012: Andr.Exploit.Ratc FOUND
p004: OK
p011: OK
p010: OK
p005: OK
p007: OK
p001: OK
Perhaps that's part of the exploit route, but I'm personally going to hold off on installing this APK until I learn more. If anyone could shed some light on this, that'd be super. I'm EXTREMELY eager to root my S5, and hope to get this straightened out soon!
A virus was found: Andr.Exploit.Ratc
Scanner detecting a virus: ClamAV-clamscan
Content type: Virus
Internal reference code for the message is 31908-19/qifk-moTWpxp
First upstream SMTP client IP address: [173.160.x.x]
173-160-x-x-Washington.hfc.comcastbusiness.net
According to a 'Received:' trace, the message apparently originated at:
[173.160.x.x], laws-mbp.mydomain.lan
173-160-x-x-Washington.hfc.comcastbusiness.net [173.160.x.x]
Return-Path: <law@mydomain.org>
From: Lee Whalen <law@mydomain.org>
Message-ID: <539DF04C.8000905@mydomain.org>
Subject: tr
The message has been quarantined as: q/virus-qifk-moTWpxp
The message WAS NOT relayed to:
<law@mydomain.org>:
250 2.7.0 Ok, discarded, id=31908-19 - INFECTED: Andr.Exploit.Ratc
Virus scanner output:
p008: OK
p009: OK
p006: OK
p012: Andr.Exploit.Ratc FOUND
p004: OK
p011: OK
p010: OK
p005: OK
p007: OK
p001: OK
Perhaps that's part of the exploit route, but I'm personally going to hold off on installing this APK until I learn more. If anyone could shed some light on this, that'd be super. I'm EXTREMELY eager to root my S5, and hope to get this straightened out soon!