Adhell 3 - KNOX

Search This thread

liamR

Senior Member
Feb 14, 2007
835
139
Screenshot_20210301-150857_Chrome.jpg

Doesn't look too good. But maybe it's for the app to use the new workaround? 🤔
 
Last edited:

arf8

Senior Member
Mar 30, 2014
623
71
I can confirm with a deep scan on malwarebytes it detected the trojan. On others like Eset, Kaspersky, AGV and a few others it did not. But one is too many so use caution.
 

Hansoliv

Senior Member
Jul 12, 2007
335
62
Crap :(.
If i knew how the guy acomplished the way to use the license of the other app, and samsung api, i would compile the apk myself, as fusionjack has all the tools in his github site.
Oh well, it was good while it lasted 😢. Back to Alliance Shield app again.
 

arf8

Senior Member
Mar 30, 2014
623
71
Crap :(.
If i knew how the guy acomplished the way to use the license of the other app, and samsung api, i would compile the apk myself, as fusionjack has all the tools in his github site.
Oh well, it was good while it lasted 😢. Back to Alliance Shield app again.

Have you read the privacy statement? You should if you have not.
 

Hansoliv

Senior Member
Jul 12, 2007
335
62
It detected Trojan Bankbot in my phone. I already uninstalled the app. I'm very sorry everyone for posting an infected app, it was not my intention to do so. 😓
Thank you mdc0ffey for warning us.
I deleted my posts before it does any harm.
Next step is factory reset the phone.
Sorry all once again.
 
Last edited:

arf8

Senior Member
Mar 30, 2014
623
71
Only a deep scan detected it, not to mention other AV apps did not detect it at all. One is too many if you ask me.

If you don't want to go the route of an app based disabler option, ADB is simple and does not require anything. PD and other apps allow on the fly changes which is beneficial for some.

Always read the privacy policy of any app you are installing and understand what data is requested from you.
 

Hansoliv

Senior Member
Jul 12, 2007
335
62
Just one question, after i backup my phone data to Samsung cloud (apps included, but not the infected one), and factory resetting the phone, is there a chance that after i restore the backup from the cloud, the malaware get in the phone again? 🤕
 

Hansoliv

Senior Member
Jul 12, 2007
335
62
Good day.
I know this brings nothing to the table, but, today as i was searching for a non infected version of the 'Ashell' app i posted earlier in this thread, i stumbled upon this topic in Malwarebytes forum about Adhell3, that got me even more confused.
It seems that the trojan ' Bankbot' was already a false positive in 'CitizenV' compiled files (https://www.mediafire.com/folder/sb37c6gmhqgbn/AdHell_3), also posted in this thread and the guys at malwarebytes corrected it in their database.
But i am still reluctant to install it.


 
Last edited:

arf8

Senior Member
Mar 30, 2014
623
71
Consider this I have 6 different version of Adhell from 3.1x to latest and a few forks on my phone and none of them are flagged as a trojan. So I would say they did fix the problem.

But this Ashell version is flagged as a trojan. The data speaks for itself.
 

liamR

Senior Member
Feb 14, 2007
835
139
Good day.
I know this brings nothing to the table, but, today as i was searching for a non infected version of the 'Ashell' app i posted earlier in this thread, i stumbled upon this topic in Malwarebytes forum about Adhell3, that got me even more confused.
It seems that the trojan ' Bankbot' was already a false positive in 'CitizenV' compiled files (https://www.mediafire.com/folder/sb37c6gmhqgbn/AdHell_3), also posted in this thread and the guys at malwarebytes corrected it in their database.
But i am still reluctant to install it.



Do you have a user at their forum? Maybe give them the link of the new "infected" version to test?
 

arf8

Senior Member
Mar 30, 2014
623
71
One thing to note for those who still have a working version. It appears the whitelist does not override your host list. Can be a problem if you rely on a host file on a server!!!
 
Last edited:

Hansoliv

Senior Member
Jul 12, 2007
335
62
Good day.
I have been searching for an alternative for 'ashell 3', and i found 2 other version, but all with the same trojan 🤬
One of those was compiled by a user in 4PDA forum and he says that he has the files in is phone an did not insert any malware. :(

 

Top Liked Posts

  • There are no posts matching your filters.
  • 40
    Very unfortunate about samsungs policy changes indeed, tried getting a partner account but was rejected... Might give it another try with some extended information (now as the bare basics, hoped it would be a semi-automatic thing but seems they actually properly check).

    Using Adguard premium in the meantime, but adhell would be my preferred choice. Unfortunately no valid license anymore so too bad...

    Let's try a quick reality check about basic blocking of ads and tracking servers on unlocked Samsung phones. A lot depends on your actual needs and mostly paranoia level, but it's a lot easier than often assumed.

    - If you have a functional adhell, do nothing and keep using it. Nobody can predict the future, but when your key expires, you'll have other options. Just relax and have a pleasant day.

    - No adhell but you're on Pie? Set your Private DNS to "dns.adguard.com". Just relax and have a pleasant day.

    - No adhell and still on Nougat or Oreo? Grab Intra and set the DNS to "https://dns.adguard.com/dns-query". Just relax and have a pleasant day.

    - Want more control over what you block? Use a VPN such as VPN Hosts which supports wildcards and local hosts file. Just relax and have a pleasant day.

    - Don't like any of those? Grab any DNS server or VPN that strikes your fancy but please use your own judgement about what actually works for you, not what someone online somewhere (myself included) says you should do.

    Those are not formal recommendations or endorsements of any specific product or approach, merely a realistic assessment of simple alternatives with a minimal amount of confusing technobabble.

    For most users, any of the above options will be more than sufficient and chances are you won't notice any actual difference in battery use or speed. Try them for yourself, it's easy! ;)
    24
    Adhell 3.1.x – KNOX AdBlocker for Samsung Galaxy devices and Package Disabler
    . Adhell is a Samsung Knox based application which can Block system-wide Ads, trackers, analytics from applications without root. It has more functionalities than just Ad-Blocker including Package Disabler, Mobile Restricter, App Permissions controller

    Z6PkxmJm.jpg


    Features
    • Pre-Activated KNOX ELM Licence (Must be renewed every 3 months, and can be generated from url below)
    • Domain Limit Size Increase (50,000)
    • Disable Apps Enabled by default
    • Apps Component Enabled by default
    ADHell v3.1.1 - Download
    The APK provided my cease to function at any time, due to the restrictions put in place by Samsung Knox key validation and not due to the fault of my own doing.
    I hold zero responsibility for the use of this app in any liable circumstance.
    *Unknown Apps must be enabled to install third-party APK files.

    If you don't wish to use the above download you may compile your own APK from the source below




    WHAT TO DO WHEN IT DOES NOT ACTIVATE/BYOA (Build Your Own App)
    Error: 102
    This appears due to the Licence being activated more than six times with the same package name while using a developer ELM key and not a commercial partner unlimited use ELM key (Samsung KNOX restriction not the App)
    You have a couple of options -
    • Change the ELM Key pre-installed by opening the app and going to the settings menu of the Adhell3 then scroll to the bottom of the menu and you will find the button to change the key to your own Knox ELM you generated.
    • Use an APK editor to make a change to the installed package name so that it is unique which should allow the pre-installed key to activate (ask others how to do that, but this might bypass the six activation limit under the same package name)
    • Compile your own version of Adhell3, instructions to do so are below.
    Please note as of this time if you don't already have a Knox ELM key generated from some previous use of Knox API applications you will have to wait as ELM key generations have been removed from SEAP for non-partner developers until further notice.

    How to compile your own version of Adhell3
    1. First grab the KNOX SDK and LIB you want the Knox SDK 3.3 (API level 28) & supportlib.jar (Dec 17/18, for older devices)
    2. Get yourself a new KNOX ELM Key from here, It should look something like this.
    3. Grab the Adhell3 Scripts from here, and follow the instructions which are clearly written for your operating system. (Note: you may need to type
      Code:
      adhell3.cmd setup
      under windows 10)
    4. When you are done you should be left with a folder looking like this which has your built APK package file ready to be moved to your device for install.
      If you struggle to understand how to modify the app before compile I have a ready to go app.properties you can use as a base, just be sure to place the file where the instructions say and to add your OWN KEY in the
      Code:
      skl.key=yourkeyhere

      An example app.properties file could look like this -
      Code:
      package.name=com.adhell3.12345
      domain.limit=100000
      enable.disableApps=true
      enable.appComponent=true
      appComponent.showSytemApps=false
      skl.key=D39335379587987309734637654687675985678078960879789057y58659867967890876706780670





    Compiled from Sources -
    Fusion Jack- Adhell 3 GitLab Source
    Generate Samsung ELM KNOX Licence Key - SIGN IN FIRST then click the link and it should take you right to it.
    11
    Folks, I see LOTS of misinformation in this thread. I strongly suggest that you look at the "official" AdHell3 GitLab repo and associated discordapp support area. At the very least, check the README on GItLab.

    Compiling: AdHell's current dev has provided convenient scripts for Windows/MacOS/Linux that make creating/updating your own copy a trivial matter. You can also use Android Studio or git, but the scripts are probably by far the easiest approach for most casual users.

    Using precompiled APKs: Your only choice if you don't have access to a computer, but tread very carefully. You MUST change the package ID (with APK Editor?) and understand which buid and options whoever created that APK was using. This should be only a last resort. Compiling is a lot safer, easier and faster than you might think (updating and installing to a new build only takes seconds on most computers).

    The Knox key: Read the instructions carefully. Create/use a Samsung developer acount, revoke any previous keys you may have, and get a new EDU key (it's 128 bytes long). If you can't create a key or your key is rejected, that simply means you made a mistake. Re-read the instructions and try again. Your Samsung developer account can use any email address and is unrelated to your "real" Samsung user account. After 90 days, your key will expire. Revoke it or switch to a new dev account, then get a new EDU key for another 90 days, no need to change your AdHell settings besides entering the new key when prompted.

    Remember, AdHell is basically a tool to configure the Knox firewall included with our Samsung devices (not just S10). Pick the correct block lists and settings for your personal needs, and once that's done you don't even need to run AdHell at all, not even in background, until you need to change something.
    5
    I confirm that is a legitimate new version that works with kpe key and not only for partners. Anyway I would represent the question as quoted because I have the same issue. Is there any way to make it working?

    I know to. But how make this to work ?

    This again?? Please quit blindly spreading misinformation and repeating unsubstanciated rumors here. Check your sources!

    It's not a new version, merely ongoing code tweaks. If you'll simply look at the adhell3 repo, you'll see that the current source for build 3.2.309 is freely available, ready for YOU to compile and use with YOUR partner-issued ELM or KPE key. You don't have to "make it work", it "works" just fine with a legitimate key. Any other use, if any, would be illegal and clearly not appropriate for XDA.

    Anybody who signs up as a Samsung developer (free) can compile the source for personal use. Anybody who is a licensed B2B Partner can create a suitable key for use with adhell3. Everybody else should forget about adhell and simply use one of the many alternatives for domain blocking, apps/components disabling, etc. .

    I sincerely wish I had never gotten involved with making adhell, SABS, and adhell3 available back before Samsung fixed the key loophole. Mea culpa!
    4
    Interested in AdHell3? Some clarifications might be useful:

    AdHell3 is an ongoing project using the Knox APIs publicly available to SEAP (Samsung Enterprise Alliance Program) developers. It is officially distributed solely as open source code, but NOT as binaries (APKs - a practice to which Samsung would object). It is NOT an application that you can merely download and directly install on your device. It is NOT officially supported here on XDA. Note that the official AdHell3 support areas cannot help you with questions or concerns specific to this thread's OP.

    Useful AdHell3 links:

    Some dependable (yet unofficial) precompiled APKs and instructions are currently available for people who don't have computer access but still want to try AdHell3 for testing.

    Once you have AdHell properly installed, you need to decide which domains to block. Most all publicly available "block lists" on the net are emphatically NOT designed for use with Knox (they typically don't even use wildcards). Loading bigger "universal" lists (containing up to an outrageous 100K entries?) won't make them any more appropriate but merely waste memory and other system resources. We recommend that you start at most with the default lists suggested in the GitLab repo. FYI, some of us successfully use tiny lists of less than 100 entries (as discussed in the support channel) as our sole provider. The bottom line is that only YOU know which domains YOU want/need to block even though we probably all prefer not so see ads served from places that can be expressed as, for example, "ads.*" (a valid AdHell3 entry!), an obvious candidate for blocking. Resist the temptation to burden AdHell3 with unnecessary and often detrimental block files intended for generic "ad blockers" or cosmetic blockers, or meant as hosts file replacements for rooted device, or for other platforms besides Android, etc.
Our Apps
Get our official app!
The best way to access XDA on your phone
Nav Gestures
Add swipe gestures to any Android
One Handed Mode
Eases uses one hand with your phone