Hey, well yesterday I got a notification saying "supercharge UR battery". I was pretty sceptical but I clicked on it not realising it would go to a website and apparently that website then downloads and installs something automatically that allows them to clone your contact etc, even your IMEI and they can put your number to go through premium calls to get money out of you.
Either way I need to know how to get rid of this. It's just come up again so I'm presuming it didn't install properly for them or something. It came just after I updated all my apps yesterday but I don't know which one would have caused it.
Do we think a full wipe and reinstall might do it?
:EDIT:
shocker that AVG antivirus didn't find anything. I've been looking through my apps, deleted some I don't use but none of them stand out as being dodgy, I don't even have many.
What makes you think it's cloning your device?
Are you sure it's not just a push notification advert, from something like airpush?
Remove all recent apps that you've installed since you started getting them, and when they stop install them one by one, seeing if they cause the notifications. Check all permissions very carefully.
If you are seriously worried, full wipe and start again but there shouldn't be a need for that.
That sounds slightly unlikely; not that there's malware out there that can do that sort of thing (there is), but that you can acquire it simply by visiting a site and somehow bypassing all the usual application access authorisations. All the instances I've heard of require an app to be installed (and access granted) which then runs off and does all this in the background. So if you could post your source for that it would be a great help.
(As to the "supercharge your battery" ad, I've definitely seen that somewhere recently as well, but I can't think where. In an app, but I'm struggling to think what it could have been. I just ignored it as per any other ad that sneaks past the hosts file).
If you're really worried then a full wipe would get rid of anything actually on your phone, but I'm not yet convinced that's necessary.
Edit: just noticed you said "notification" not "ad". Try downloading something like Airpush Detector from the market; sounds like you've got an app using Airpush to show ads in your notification area. Again, that's not necessarily something to be particularly concerned about (irritating though it is).
Edit2: curses, beaten to it while I was writing all this on my phone. Must learn to be more concise.
//sent from my Desire HD using Tapatalk; all errors entirely intentional.
Well I've been going through my apps and there isn't a single one in there that you would ever consider to be dodgy as I just stick to the main ones. I don't bother downloading games or anything like that.
Surely if it's just an ad I'd be able to find said app on the market place, but I can't. In fact google finds nothing for "supercharge UR battery".
I'll try airpush detector. Cheers.
Ok so airpush detector says:
Mysettings
jqsoft.apps.mysettings
Checked out the app on the market and turns out the update added airpush to it. Way to kill your market. I guess they want people to go "pro".
Cheers guys!
Related
So I need to know what the consequences are of removing market from the phone? The reason I ask is we are getting ready to issue these out as corporate phones, and other than the software we have on them, we don't want any additional software installed. The obvious easiest way is to just remove market, unless there is some app that can restrict market. I know that we will lose the ability to update apps, but other than that I don't see much else. The last thing I need is for them to download rogue software and charge up the company accounts. Thanks!
A better thing to do will be to block any new installations by some kind of administrator access rather than take out market. Taking out market is not at all harmful nor does it interfere with anything.
If i were you and I had to seriously limit the applications on the phone then I would at least find an app on market that can install only after putting in a password or someting like that. Uninstalling market will not do any good. People can still install by putting in an apk file to their sd card.
Ideally that would be the way that I would do it. Under Windows Mobile I could. Under Android..... I haven't found an app that's capable of doing so. I suppose I could start getting in and changing permissions on folders through root, but I really don't want to go down that road. I know they can search and download apps otherwise than the app market, but it removing the temptation that helps. You know how users can be.
You will need to rely on google then. Here is a sample of what might help you.
http://www.facebook.com/pages/Android-Parental-Control-App/123629131031273
Hope you find many more apps like these.
I saw that earlier, but its almost too Draconian. The hand holding Android would upset many of the Adult employees. Laughing. I think I may have found another way around it though. Remove the obvious Apps, but then I found an app called Droid wall which you can use to interface with IP tables to block access to market. They can view market, but you can't download. This prevents using the marketplace as well as trying to load from a website. It's password protected so it can be turned off easy enough if needed. It doesn't prevent side-loading the apps but I'm not to worried about my users doing that. If they do, it proves obvious intent to bypass company policy. Hoping this works.
Last night I noticed Play asking me to update an app called Smart Device Manager. Having no idea what the app was, or why it was on my phone, I read the description:
OVERVIEW
Smart Device Manager is an app that runs on the “child” phone in order to power two family safety services on the Sprint Network, Drive First and Mobile Controls. These services allow parents to automatically lock a phone when driving or to prevent phone usage during school hours.
Click to expand...
Click to collapse
With a bit more searching, it looks like it's a background utility that comes preinstalled on our phones. It's a helper for parental controls to manage what your children (or employees, I suppose) are doing, as well as lock your phone when you're driving to discourage talking or texting while driving. Accomplishing this requires some pretty nasty permissions. Granted, it's obviously not CIQ, and it shouldn't be doing anything at all unless you activate and pay for the appropriate services, but I still don't want it on my phone, if for no other reason than it may be using up some juice.
It appears there was some sort of bug with the change to Google Play that prompted many (everyone?) with the app to update it, even though you have no reason to update it unless you're actually using the service(s) (Source). As it's a system app, you can uninstall it with Titanium if you are rooted. I've done so and it hasn't hurt anything thus far.
Just figured I'd let a few people know what was up, in case they get the notification as well. And if it's already common knowledge, *shrug* I guess I wasted a few minutes of my life
interesting...
Just read about this.
http://phandroid.com/2012/03/28/spr...are-to-android-devices-heres-how-to-avoid-it/
Thank goodness for custom roms and their bloatware removal.
What's weird is that I'm running Blazer Rom, have never installed this service and google play is reminding me every day that I need to "upgrade it."
Somehow must have been left in Blazer.....
wotan2525 said:
What's weird is that I'm running Blazer Rom, have never installed this service and google play is reminding me every day that I need to "upgrade it."
Somehow must have been left in Blazer.....
Click to expand...
Click to collapse
I think it's a Sprint/Google agreement that is going to show up in our market suggestions no matter what ROM we run, the key is just ignore the suggestion and don't install.
Thanks for the info. I missed this one when I was getting rid of the bloatware. Even if it's not activated on my end, I'd rather not give them one more route of easy access to controlling my device. I suppose it's a good feature for parents/employers, but can you imagine if service providers started shutting down your phone (essentially airplane mode) if your were traveling over a certain speed?
You can delete this from system/app and it will stop alerting you in the market. Its actually labelled smartdevicemamager.apk in system/app.
Edit: Pointless post. Sorry.
When i had this app on it would give me slow data then i disable it and now i have full speeds
Sent from my SPH-D710 using xda premium
Sycobob said:
Last night I noticed Play asking me to update an app called Smart Device Manager. Having no idea what the app was, or why it was on my phone, I read the description:
With a bit more searching, it looks like it's a background utility that comes preinstalled on our phones. It's a helper for parental controls to manage what your children (or employees, I suppose) are doing, as well as lock your phone when you're driving to discourage talking or texting while driving. Accomplishing this requires some pretty nasty permissions. Granted, it's obviously not CIQ, and it shouldn't be doing anything at all unless you activate and pay for the appropriate services, but I still don't want it on my phone, if for no other reason than it may be using up some juice.
It appears there was some sort of bug with the change to Google Play that prompted many (everyone?) with the app to update it, even though you have no reason to update it unless you're actually using the service(s) (Source). As it's a system app, you can uninstall it with Titanium if you are rooted. I've done so and it hasn't hurt anything thus far.
Just figured I'd let a few people know what was up, in case they get the notification as well. And if it's already common knowledge, *shrug* I guess I wasted a few minutes of my life
Click to expand...
Click to collapse
updated it last night as well running blazer 4.0, didn't know what it was just don't like "updates available" popping up on boot
Sent from my SPH-D710 using XDA
I just deleted it through titanium backup
Sent from my SPH-D710 using Tapatalk
Codename havent ever seen it lol
Sent from my SPH-D710 using XDA
More info here:
http://community.sprint.com/baw/thread/87271?start=0&tstart=0
Sprint reps said the service has always been on the phone but the recent Google Play Store update caused the update to show up. Supposedly Location Labs (the company created the software) is looking into why it is showing up as an update....
Link is already in the OP
Is there are anyway to force a marketplace update check? If there is no manual way, would it be possible to make an app to have the marketplace check for updates?
I've searched all over, but never really found a solid answer on this. Thanks for any help!
Krowebar said:
Is there are anyway to force a marketplace update check? If there is no manual way, would it be possible to make an app to have the marketplace check for updates?
I've searched all over, but never really found a solid answer on this. Thanks for any help!
Click to expand...
Click to collapse
"Just go in the Marketplace, search for the app, open the description, then back out...wait a second and go back in. "
https://www.youtube.com/watch?feature=player_embedded&v=RO50rTb5AeU
Ahh I see. I knew about that lil trick, but it is a lil inconvenient to check several apps with this method. That at least gets the job done though. I was hoping there was a method that would check everything on the phone at once. Not sure how the OS does the app checking, but I've heard it just does it 'periodically". Not sure how often that is, but I have seen where it find updates for certain apps, but it didn't on others when there was an update for it. Kinda strange however it does it's checks.
Would it be possible to make an app that forces the marketplace to do a full check on apps?
Krowebar said:
Ahh I see. I knew about that lil trick, but it is a lil inconvenient to check several apps with this method. That at least gets the job done though. I was hoping there was a method that would check everything on the phone at once. Not sure how the OS does the app checking, but I've heard it just does it 'periodically". Not sure how often that is, but I have seen where it find updates for certain apps, but it didn't on others when there was an update for it. Kinda strange however it does it's checks.
Would it be possible to make an app that forces the marketplace to do a full check on apps?
Click to expand...
Click to collapse
Yeah some have said turning wifi on and leaving to charger (this keeps wifi on in some phones?) helps the phone getting updates.
I'm guessing it is not possible to make such app, due to limitations of the platform. But maybe one could make an app which checks the selected apps from marketplace, lets say once in an hour, and then notifies the user if the app has been updated. How this would be better than let the marketplace check for updates? Dunno, maybe in some cases little bit faster, but it would be wasting resources (battery) in my option.
Maybe its just better to let the marketplace check for updates
Thanks for the info/help. I understand what you mean. I guess I'm a lil impatient with certain apps and their frequent updates. So the entire problem here is me.
Does WP8 have the same issue of delayed and overlooked update on certain apps?
Hi,
I got this phone recently, and noticed that my chrome browser kept opening up a pop up every time I opened it, often managing to install battery pro app or something similar.
I tried almost all anti malware apps to no avail, and after searching vigorously, I found the source.
It seems the phone came pre installed stock with a rogue YouTube app, which appears as an old version, and which you can't update from the playstore.
Check out the thread below, thats how I good to the bottom of it. You need to root your phone to remove it. I was actually being taken to the same website as the author of the blog, and for him it was YouTube as well, so seems this is common practice among foreign cheap phones.
http://blog.teamleadnet.com/2015/06/how-to-remove-adware-browser-hijack-or.html?m=1
deniso177 said:
Hi,
I got this phone recently, and noticed that my chrome browser kept opening up a pop up every time I opened it, often managing to install battery pro app or something similar.
I tried almost all anti malware apps to no avail, and after searching vigorously, I found the source.
It seems the phone came pre installed stock with a rogue YouTube app, which appears as an old version, and which you can't update from the playstore.
Check out the thread below, thats how I good to the bottom of it. You need to root your phone to remove it. I was actually being taken to the same website as the author of the blog, and for him it was YouTube as well, so seems this is common practice among foreign cheap phones.
http://blog.teamleadnet.com/2015/06/how-to-remove-adware-browser-hijack-or.html?m=1
Click to expand...
Click to collapse
I had the same problem, and solved it by finding the same site you linked. However I had further problems later, apps installing themselves without asking permission. The trojan also changed the install apps from unknown sources setting. Christ only knows what else it was doing.
The apps that installed were SuperB Cleaner, Super File Manager, Browser, Facebook Updater and others installed automatically.
After running all anti virus to no avail I found this
https://play.google.com/store/apps/details?id=com.cleanmaster.security.stubborntrjkiller&hl=en
Which seems to work eventually. However that app interacts strangle with SuperSU, killing it, requiring and update to the binary.
This seems to have found something as well
https://www.avira.com/en/free-antivirus-android
It's also being discussed here
http://forum.xda-developers.com/lee...version-youtube-problem-t3408009#post67587785
http://forum.le.com/us/index.php?threads/letv-x800-1pro-how-to-update-eu-rom.455/page-2
http://forum.le.com/us/index.php?threads/open-support-for-model-letv-le1-x800-pro_us.1614/page-5
I'm worried now the phone is permanently compromised without flashing a new rom. And all the US versions seem to have issues.
cormacfitz said:
I had the same problem, and solved it by finding the same site you linked. However I had further problems later, apps installing themselves without asking permission. The trojan also changed the install apps from unknown sources setting. Christ only knows what else it was doing.
The apps that installed were SuperB Cleaner, Super File Manager, Browser, Facebook Updater and others installed automatically.
After running all anti virus to no avail I found this
https://play.google.com/store/apps/details?id=com.cleanmaster.security.stubborntrjkiller&hl=en
Which seems to work eventually. However that app interacts strangle with SuperSU, killing it, requiring and update to the binary.
This seems to have found something as well
https://www.avira.com/en/free-antivirus-android
It's also being discussed here
http://forum.xda-developers.com/lee...version-youtube-problem-t3408009#post67587785
http://forum.le.com/us/index.php?threads/letv-x800-1pro-how-to-update-eu-rom.455/page-2
http://forum.le.com/us/index.php?threads/open-support-for-model-letv-le1-x800-pro_us.1614/page-5
I'm worried now the phone is permanently compromised without flashing a new rom. And all the US versions seem to have issues.
Click to expand...
Click to collapse
I had the same problem with foreign apps being installed, but removing the rogue YouTube solved it.
Had no issues for 2 months now
cormacfitz said:
I had the same problem, and solved it by finding the same site you linked. However I had further problems later, apps installing themselves without asking permission. The trojan also changed the install apps from unknown sources setting. Christ only knows what else it was doing.
The apps that installed were SuperB Cleaner, Super File Manager, Browser, Facebook Updater and others installed automatically.
After running all anti virus to no avail I found this
https://play.google.com/store/apps/details?id=com.cleanmaster.security.stubborntrjkiller&hl=en
Which seems to work eventually. However that app interacts strangle with SuperSU, killing it, requiring and update to the binary.
This seems to have found something as well
https://www.avira.com/en/free-antivirus-android
It's also being discussed here
http://forum.xda-developers.com/lee...version-youtube-problem-t3408009#post67587785
http://forum.le.com/us/index.php?threads/letv-x800-1pro-how-to-update-eu-rom.455/page-2
http://forum.le.com/us/index.php?threads/open-support-for-model-letv-le1-x800-pro_us.1614/page-5
I'm worried now the phone is permanently compromised without flashing a new rom. And all the US versions seem to have issues.
Click to expand...
Click to collapse
I had the same problem with foreign apps being installed, but removing the rogue YouTube solved it.
Had no issues for 2 months now
So, since I've got this over monster I've had a shocking number of issues. From sudden influx of crap followers online, people sending photos of some of those little people some people keep as pets.
But, it was probably a month in kept getting restarts that left my wall paper different, noticed key guard was in the running processes and Samsung wasn't able to give me much info at all.
Frequently my antivirus Would randomly flag some huge archive that would appear in Google vending folder and for some reason my weather app for my gear fit updated EVERYDAY
Today a series of unfortunate events and my phone did a factory reset shortly after a drop. I actually find that interesting because I don't know the drop or one of my...well call them gremlins. (Let's face it most of things i have attributed are probably just me going into PTSD blah blah blah... )
But today Turn process I did streamline to get Nic cards logging up and go and build to set up a good firewall get ad blockers going but I wanted to see what happened. And I go my weather app eventually.
And for some reason over in reddit they tend to think permissions like this are normal (I know Samsung's calculator is more than a calculator but mine once had almost every permission with about 800MB storage taken up.
So, This weather app seemed a little abnormal look up the IP address, looked up the company and, I looked furlough their partners for Samsung and Knox (didnt Find the one)
Just a quick assumption;
This module has the Hotspot 2.0 and REALLY likes its certificates. I noticed the option to share Your Wi-Fi with someone is always default toggle on.
If you scroll through the websites what we do you see that they are very proud that they have the edge one of the largest threat assessments for everybody when hop away from 1 of their servers , how many of them there are etc. And I Have this feeling that my device is actually just a nice little go between allowing others access to the internet while gathering their data points.
I can't actually post links but if you do their site plus this thing takes you right to the talk about their platform. Gove the data that goes through phones, that is good for anything from Cambridge analytica code level stealing countries to just figuring out how stable and great 5G is
/us/en/
what-we-do/intelligent-platform
I've seen the Address actually go by in my primary bp and add blocker but that 1 doesn't give me per app metrics so not sure what else goes to them.
Also, suddenly I think I know at least partially why they don't want flashed ROMS(?), at least yet.
I'd actually really like to know if anyone else, specifically related to 5G sees these also. Given the timing of that release device and anal FMRi weather app there. And for some reason even though I use a little cheaper company gives me unlimited data they have swapped my network several times between bigger company the smaller company. Its same towers and stuff usually so no big deal but, doesn't normally do that. (Have noticed that actually from the Galaxy store I see that quite often, but the "same" download from play store different version number less permissions)
(By the way hello this is the 1st device actually looking to rooting, prior the risk of that access to someone else was too much. Thanks for letting me join the community, I do hope I catch on quick ans don't drive any one too crazy)
(I tried to add in pictures of the weather app permissions and everything but can't post pictures either)
A drop shouldn't cause a factory reset... if it was caused by software you have an apk(s) that are trashware.
A 3rd party launcher put mine in a boot loop... twice.
If you did a recent firmware update it may have corrupted that load, reload as you did.
A virus or trojan are suspect as well. Run Malwarebytes and Trojan scanner. Some malware may not always be detected.
If you suspect a virus after a reload be careful what you load and bring into the system including the on SD card and any backups. Start with the base load and add only apps from Playstore at first. Go from there if it runs ok. Be wary of updates, one at a time, look for issues as you progress.
Same with backup data... if it's there you'll need to isolate it or dump all the data.
Use a package disabler like PD MDM to block bloatware from running and to troubleshoot.
blackhawk said:
A 3rd party launcher put mine in a boot loop... twice.
If you did a recent firmware update it may have corrupted that load, reload as you did.
Click to expand...
Click to collapse
I was worried so, as I'd never seen it i just know these things actually include that hardware backed encryption. I had worries that I had knocked that loose and might have issues with it later. (Accelerometer is off bit it seems now)
I can say likely:
1. Third party lock screen with data wipe. Not highly reviewed but was but trashy. May have accidently in the tussle woke the screen with motion and performed a wipe.
2. Package disabled. I play with what I can get away with disabling. Some Knox stuff is bit touchy.
3. I'd managed to start process of adding a second secure folder on a secondary profile. It hadn't like it but stayed working.
Or combo 2 & 3 but lock screen most likely I'd say
HungryRobotics said:
I was worried so, as I'd never seen it i just know these things actually include that hardware backed encryption. I had worries that I had knocked that loose and might have issues with it later. (Accelerometer is off bit it seems now)
I can say likely:
1. Third party lock screen with data wipe. Not highly reviewed but was but trashy. May have accidently in the tussle woke the screen with motion and performed a wipe.
2. Package disabled. I play with what I can get away with disabling. Some Knox stuff is bit touchy.
3. I'd managed to start process of adding a second secure folder on a secondary profile. It hadn't like it but stayed working.
Or combo 2 & 3 but lock screen most likely I'd say
Click to expand...
Click to collapse
Get a good case like the Bolt. High G impacts can cause internal damage but usually not especially if in a case.
I don't use secure folder, encryption or any screen lock especially 3rd party. Any apk you give administrator rights to lock the phone can effectively trash your OS load in a heartbeat.
Have had passwords get corrupted (rare) before and gotten totally locked out on a laptop bios.
That machine is now useless.
On Androids you can reload to recover if all else fails but a reload takes a lot of work...