Help jcase test out this great new application. It blocks ads in apps and the browser but it does not alter the hosts file. This is perfect for our phones since our nand is still locked. It also should not hinder browsing. Inside applications it actually reclaims the space taken up by the ad.
Get it while you still can.
http://forum.xda-developers.com/showthread.php?t=666328
sweet looks like version .06 will activate on boot, thanks
-EDIT-
Doesn't seem to be working.
Works great on some of my apps. I'll be sending reports on the apps that are not working. Very cool.
There is a rogue application in the Android Market, from the Android Central post:
Lookout says that one or more of these apps are stealing your data and sending it to an unknown person or persons in China. Yup, innocent looking wallpaper apps. According to Lookout, the app(s) in question are collecting:
* browsing history
* text messages
* your SIM card data
* subscriber ID
* voicemail password
Click to expand...
Click to collapse
Follow the link provided for full information and remember, keep an eye on the permissions screen whenever you install an application!
Reporting a maliciois app in Android Market
RE: Homerun 3D and Slice It
I searched for a proper place to ask this, and describe what I found, and found this thread. I am aware Google has a malicious app reporting process, but I was wondering if any of the great minds here know of a more efficient means to get an app scrutinized by the Market powers-that-be.
The App is a duo, really, that I know of so far. I did not go too far with my investigations once I determined this is a Chinese company (remember the lcd picture frame Trojan?) and once I saw what I did.
I downloaded "Homerun 3D" for my EVO 4G (cyanogen mod), a kick ass batting game to which I quickly was addicted. However, as is common with many apps, during transitions (ad breaks) it would overlay a large ad for various other apps, but the most heavily pushed app (by an estimated 9:1 ratio relative to other apps) was "Slice It", offering extra bonuses in the Homerun 3D game if you DL'd it. I dl'd it and installed it, but once I opened it, superuser notified me it was attempting root access. Of course, this is a HUGE deal, in fact I'd say (and request feedback from those in the know) that proves it is a malicious app, given that no where did it mention that it needed or would use root access. I can't fathom this being an 'honest' developer's mistake.
So I denied it root access and it launched anyway. Hm. In other words, an ingenious method to check for unlocked doors without having to set up a complex ruse of creating an app that notifies it will need to have root access to work. Just write a kick ass fun and addictive 'innocent' app, heavily push and offer incentives to dl and install a so-so app that checks for an exploits unprotected root access, and wah-la, due to the intensely developed dun and addictive nature of the 'innocent' app, you have a much wider distribution of your Trojan that ostensibly gets more chances of hitting an unlocked door. By adding the extra layer of an 'innocent' app, that high-end intensely developed app continues to be listed on the market and continues to push the simple trojan app and so only the trojan app gets removed once discovered. All that the devs need to do then is quickly hammer out another trojan simple app, and update the high-end app to push the new low-end app, instead of developing a whole different kick ass app each time they're discovered.
It's the equivalent of a legit door-to-door cable tv salesmen heavily referencing an unscrupulous installer who is known to sneak around the your house looking for unlocked drawers, cabinets, etc. The fact that the legit cable salesman heavily references him makes that cable salesman very suspicious.
So, while I suspected the Homerun 3D app was complicite given the heavy pushing of the 'Slice It' root checking app, I kept poking around. I looked at the "credits" and while seemingly not hiding the fact they all had Asian sounding names, the use of the middle name nick (as in Jung "Madman" Li) seemed overdone, as if they used corny English nicks, almost too corny to be real, to appear disarming.
But the final straw was when I looked at one of the standard banner ads that run along the bottom of the screen during gameplay. It was a generic Best Buy (low res graphics at that) ad for a $349 laptop. I clicked it and it took me to an ad proxy URL which reported it could not resolve the URL. But get this...the URL of the ad proxy showing in my browser window was:
fraud.mojility.com.
Hm. Not sure why mojility would redirect a banner add to land on a URL with "fraud" in its address, and yet not explain why, but all my circumstantial evidence put together (as if Slice It's secret root checking is not enough in and of itself) warrants a report, I think.
1. Homerun 3D app heavily pushes obvious Trojan app.
2. Homerun 3D app contains at least one banner that directs to a fraud URL.
3. Homerun 3D app credits seem concocted.
4. Slice it app SECRETLY checks for root access, works anyway when denied.
So, thoughts about my tentative conclusion? And if it's agreed, anyone know a more efficient means to alert of a potential malicious app than the Android process?
I'm in contact with someone at Google about this, ohiojoe.
according to a post in a german forum the su request is caused by moblix ad sdk. Imho that doesn't make it any better but the contrary.
I reported them to Google. For me Com2us is dead, will ignore all their games from now on.
Damn, that's scary, thanks for the heads up!
There was some game I installed that was made by some Chinese company. Shortly after people on my gmail contacts started getting spam from me.
I logged into gmail and had a red bar that said my account was being frequently accessed from china.
I quickly changed the password and uninstalled the app.
Stonent said:
There was some game I installed that was made by some Chinese company...
Click to expand...
Click to collapse
Remember the name?
Sent from my Evo using mikfroyo 4.5
Yea, Android is so vulnerable, they should implement into the OS a tool that manages what parmissions a user allows or denies from an app. Like in the old times with Sony Ericsson Walkman phones.
Here in android you install and app, and everything it comes with it...
There an app called Permission WatchDog it's useful it identifies the permissions of apps, but just that.
I haven't been hacked on sending SMS spam, but I have received some spam, only in SMS thought. And just that thanks God.
Mostly after I had installed an app of galleries of pictures...
And what's obiously suspecious, are those.
And those that shows you a picture after you finish a call...-.- WHAT THA FCK!! How ridiculous!
Why tha #$%& would you ever install such crap app?
I ve never installed those, except the galleries ones (asian girls gotta say), but for some reason they're not working for me anymore, I wonder why?..
Neighter I install those crappy ass games, only Raging Thunder and such, which are worth of being developed for a "smart phone"....
Sent from my T-Mobile myTouch 3G Slide using XDA App
Damn,better install an antivirus...
thx for the heads up
Thank for the heads up!!!!
ohiojoe said:
RE: Homerun 3D and Slice It
I searched for a proper place to ask this, and describe what I found, and found this thread. I am aware Google has a malicious app reporting process, but I was wondering if any of the great minds here know of a more efficient means to get an app scrutinized by the Market powers-that-be.
The App is a duo, really, that I know of so far. I did not go too far with my investigations once I determined this is a Chinese company (remember the lcd picture frame Trojan?) and once I saw what I did.
I downloaded "Homerun 3D" for my EVO 4G (cyanogen mod), a kick ass batting game to which I quickly was addicted. However, as is common with many apps, during transitions (ad breaks) it would overlay a large ad for various other apps, but the most heavily pushed app (by an estimated 9:1 ratio relative to other apps) was "Slice It", offering extra bonuses in the Homerun 3D game if you DL'd it. I dl'd it and installed it, but once I opened it, superuser notified me it was attempting root access. Of course, this is a HUGE deal, in fact I'd say (and request feedback from those in the know) that proves it is a malicious app, given that no where did it mention that it needed or would use root access. I can't fathom this being an 'honest' developer's mistake.
So I denied it root access and it launched anyway. Hm. In other words, an ingenious method to check for unlocked doors without having to set up a complex ruse of creating an app that notifies it will need to have root access to work. Just write a kick ass fun and addictive 'innocent' app, heavily push and offer incentives to dl and install a so-so app that checks for an exploits unprotected root access, and wah-la, due to the intensely developed dun and addictive nature of the 'innocent' app, you have a much wider distribution of your Trojan that ostensibly gets more chances of hitting an unlocked door. By adding the extra layer of an 'innocent' app, that high-end intensely developed app continues to be listed on the market and continues to push the simple trojan app and so only the trojan app gets removed once discovered. All that the devs need to do then is quickly hammer out another trojan simple app, and update the high-end app to push the new low-end app, instead of developing a whole different kick ass app each time they're discovered.
It's the equivalent of a legit door-to-door cable tv salesmen heavily referencing an unscrupulous installer who is known to sneak around the your house looking for unlocked drawers, cabinets, etc. The fact that the legit cable salesman heavily references him makes that cable salesman very suspicious.
So, while I suspected the Homerun 3D app was complicite given the heavy pushing of the 'Slice It' root checking app, I kept poking around. I looked at the "credits" and while seemingly not hiding the fact they all had Asian sounding names, the use of the middle name nick (as in Jung "Madman" Li) seemed overdone, as if they used corny English nicks, almost too corny to be real, to appear disarming.
But the final straw was when I looked at one of the standard banner ads that run along the bottom of the screen during gameplay. It was a generic Best Buy (low res graphics at that) ad for a $349 laptop. I clicked it and it took me to an ad proxy URL which reported it could not resolve the URL. But get this...the URL of the ad proxy showing in my browser window was:
fraud.mojility.com.
Hm. Not sure why mojility would redirect a banner add to land on a URL with "fraud" in its address, and yet not explain why, but all my circumstantial evidence put together (as if Slice It's secret root checking is not enough in and of itself) warrants a report, I think.
1. Homerun 3D app heavily pushes obvious Trojan app.
2. Homerun 3D app contains at least one banner that directs to a fraud URL.
3. Homerun 3D app credits seem concocted.
4. Slice it app SECRETLY checks for root access, works anyway when denied.
So, thoughts about my tentative conclusion? And if it's agreed, anyone know a more efficient means to alert of a potential malicious app than the Android process?
Click to expand...
Click to collapse
Hmm. SliceIt does request root. That must be a new thing because it's never done it in the past. Its permissions don't look like anything serious, though.
stupid asians always wanna give us some viruses
Thanks for the look out, bro. What's the point of third party sabotage anywhays, haha
Sent from my HTC Desire Z / T-Mobile G2 (HTC Vision)
If u remove the app does it get rid of it all together r is it to late?
Sent from my SGH-T959 using XDA App
jstevenson1017 said:
If u remove the app does it get rid of it all together r is it to late?
Sent from my SGH-T959 using XDA App
Click to expand...
Click to collapse
In my case, I had removed the app already, I received like 2 or 3 sms spam messages but it later stopped.
Sent from my T-Mobile myTouch 3G Slide using XDA App
I better watch myself.
I'm the OP. Sorry just now getting back this. As I said before, I did not grant Slice It the access it wanted, and it launched anyway (meaning, it didn't need it....just 'wanted' it) but did NOT have any access to my root, so I had no issues.
However, Googling it I saw at least one nit wit (read: a text book example of why not just ANYone should root their phones) report that he gave the Slice It app Su access and was posting that he dint see why it needed it. So, Slice It apparently targets unprotected root phones and nit wit owners of Su protected root phones.
Sent from a corrective lens wearing eskimo translating Turkish smoke signals viewed over a streaming webcam at 640x480 resolution via a U.S. Robotics 14.4 Hayes compatible modem.
By now I'm sure you guys have heard of Koush's DeskSMS application. If you haven't check it out, it's an awesome app.
So anyway, I'm a heavy user of the app. However, the notifications and the fact that the web client lives inside a browser is unproductive for me. Hence, I decided to run the web client as a Fluid app and created my own userscript for it.
Current feature of the userscript:
- Growl support
- Dock Badge support
- "Ping" sound on Notification
- Note: Due to limitations, the badge can only show unread conversations and not unread messages
Download [v1.0]: http://dl.dropbox.com/u/6418171/desksms.js
How to configure Fluid app for DeskSMS:
I haven't slept for the night so I'm just gonna leave the other forumers to help fill this portion out. It's easy though, so even if you have never used Fluid before, just give it a try
Screenshots: Below
Howdy, any chance you've gotten this to work with the new DeskSMS site?
Would really like to get this working! Fluidapp seems to hang at the "windows.opendatabase" command when loading the Desksms site.
I contacted him a while ago and he told me, that he was working on a native mac app. But I have never heard something since then.
Great userscript! I use DeskSMS all the time, so I'd also love to see an updated version or even a native app.
What goes on mate?
ive been looking up how to get this to work?
Thanks
hello everyone,
I am still learning about programming stuff but I use android daily and there are my favourite apps which get worse after every update like UC Browser. This is the best app I've ever had to make use of. The most functional browser and also very convenient, but the way it gets annoying after every update is why I post this question today. I want to remove some features of an application and make it run like nothing happened. UC browser has just way too many ads like:
1- One the top of homepage of the browser
2- Adding sponsored speed dials automatically
3- Notifications about the news
4- Banner pops up anytime when using any application and UC running in the background
5- A whole scrolling feed of news and sponsored content on the home page of the browser
6- Automatically enables its own lock screen saver function
7- Adds widget or floating bubble/icon on its own which is rip off of iOS control centre
8- Asks for too many permissions which it does not even have features of or not required by a browser
Now many of you will say that they can all be disabled or just go with it if you want to use it so bad or suggest alternatives but UC browser is really good if we remove all the things mentioned above and I ask for help on removing these features manually from the apk resource itself.
I've heard about deconstructing apk and editing it but I need some proper instructions from someone to work on this or let someone else do it. If we can achieve this we might be able to remove annoyance from really nice applications like UC browser which will be beautiful and neat.
Thank You
ZekromInfinity said:
hello everyone,
I am still learning about programming stuff but I use android daily and there are my favourite apps which get worse after every update like UC Browser. This is the best app I've ever had to make use of. The most functional browser and also very convenient, but the way it gets annoying after every update is why I post this question today. I want to remove some features of an application and make it run like nothing happened. UC browser has just way too many ads like:
1- One the top of homepage of the browser
2- Adding sponsored speed dials automatically
3- Notifications about the news
4- Banner pops up anytime when using any application and UC running in the background
5- A whole scrolling feed of news and sponsored content on the home page of the browser
6- Automatically enables its own lock screen saver function
7- Adds widget or floating bubble/icon on its own which is rip off of iOS control centre
8- Asks for too many permissions which it does not even have features of or not required by a browser
Now many of you will say that they can all be disabled or just go with it if you want to use it so bad or suggest alternatives but UC browser is really good if we remove all the things mentioned above and I ask for help on removing these features manually from the apk resource itself.
I've heard about deconstructing apk and editing it but I need some proper instructions from someone to work on this or let someone else do it. If we can achieve this we might be able to remove annoyance from really nice applications like UC browser which will be beautiful and neat.
Thank You
Click to expand...
Click to collapse
Go here and find an older version, they have older versions of all kinds of apps.
https://www.apkmirror.com/
Other than that, you're on your own. We are all volunteers here in our free time, no one has the kind of time to help you learn your way through this, you'll have to research and learn how to do it yourself. If it means that much to you then you'll do what it takes, if you aren't willing then it doesn't really matter to you to begin with.
DO NOT CONTACT ME VIA PM TO RECEIVE HELP, YOU WILL BE IGNORED. KEEP IT IN THE THREADS WHERE EVERYONE CAN SHARE
If you're rooted, just install an ad filtering app
To decompile an app is very tough, if you are not used to it, forget
Sent from this galaxy
pr1jker said:
If you're rooted, just install an ad filtering app
To decompile an app is very tough, if you are not used to it, forget
Sent from this galaxy
Click to expand...
Click to collapse
Ad blockers don't really help very much with ads that run in-app in my experience. Ad blockers are more effective when browsing the web via the various mobile browsers.
DO NOT CONTACT ME VIA PM TO RECEIVE HELP, YOU WILL BE IGNORED. KEEP IT IN THE THREADS WHERE EVERYONE CAN SHARE
Thank you for the reply. it really means a lot to me to actually get rid of all the annoyance from that app which does not even offer a cleaner one which can be bought separately and it would be great if you could recommend me from where to start because this is what i came here for in the first place :].
ZekromInfinity said:
Thank you for the reply. it really means a lot to me to actually get rid of all the annoyance from that app which does not even offer a cleaner one which can be bought separately and it would be great if you could recommend me from where to start because this is what i came here for in the first place :].
Click to expand...
Click to collapse
You can use APKTool to decompile the app then modify it. Where and what you need to edit is something you'll have to figure out. After editing to suit your purposes, re-sign and re-compile the apk then use the app.
I would recommend using an older version of the app from APK mirror that wasn't such a pain. Then add the newer features from the current version that want to keep if you are going to go through the trouble of modifying an app, it may be easier this way instead of trying to remove things from the newer version.
DO NOT CONTACT ME VIA PM TO RECEIVE HELP, YOU WILL BE IGNORED. KEEP IT IN THE THREADS WHERE EVERYONE CAN SHARE
Thank you very much. This some proper direction i can work on. I will try the other method you recommended. Im glad i asked here