Joy Launcher - No Joy - Onetouch Idol 3 Q&A, Help & Troubleshooting

This launcher app appeared in my update list (Idol 6045i, 5.5). Since it is not currently on my phone it is not really an update. Notice -there is no uninstall option.
Read a bunch of reviews - most were bad, very bad - and once it's on your phone you can't get rid of it so be warned!
It is pushed out by Alcatel.

catapp said:
This launcher app appeared in my update list (Idol 6045i, 5.5). Since it is not currently on my phone it is not really an update. Notice -there is no uninstall option.
Read a bunch of reviews - most were bad, very bad - and once it's on your phone you can't get rid of it so be warned!
It is pushed out by Alcatel.
Click to expand...
Click to collapse
My dad's pop4 plus got it too, and it's annoying as hell.
I hope somebody comes up with a way to remove it soon , or even better, a whole ROM fo the phone.

It brought lots of adware (bloatware) I tried to get rid of it but all settings of the desktop are now gone. I have to setup my settings again.

Form of malware
Same happened to my 3 family Alcatel phones this week. I didn't ask for this forced 'update', don't want it and it has totally destroyed my desktop, contacts and all shortcuts. I phoned Alcatel and complained that they don't offer an uninstall option and what they have done is, without permission, hijacked my phone.
They said they would look into it, but I am not convinced.
Will never get Alcatel again

I didn't install it on my phone and it disappeared from my update list quite awhile ago.
I don't allow automatic updates. That is crucial. I choose what updates to install.

Joy Launcher problem
I was able to swipe down from the top, I went into settings, to Apps, to Joy Launcher. I tried Force Stop & it didn't work. I then hit the 3 vertical buttons at upper right of screen. I then hit Uninstall Updates. This allowed me to get my screen back. It also returned my homescreen to factory settings. I had to add whatever icons I wanted to the homescreen. Note, I am not tech savvy but this gave me back my functional use of my cell phone.

Same here, I will never get Alcatel ever again because of this joy launcher crap

titaniummitch said:
I was able to swipe down from the top, I went into settings, to Apps, to Joy Launcher. I tried Force Stop & it didn't work. I then hit the 3 vertical buttons at upper right of screen. I then hit Uninstall Updates. This allowed me to get my screen back. It also returned my homescreen to factory settings. I had to add whatever icons I wanted to the homescreen. Note, I am not tech savvy but this gave me back my functional use of my cell phone.
Click to expand...
Click to collapse
Update: Joy Launcher returned. I repeated above actions & it again returned. On Joy Launcher I denied permissions and for a 3d time it took over my screen. I again repeated above actions and this time I was asked if I wanted to replace Joy Launcher with the factory settings. I clicked on yes and I again got my normal screen back. I don't know if Joy Launcher will return again, I'm waiting...

titaniummitch said:
Update: Joy Launcher returned. I repeated above actions & it again returned. On Joy Launcher I denied permissions and for a 3d time it took over my screen. I again repeated above actions and this time I was asked if I wanted to replace Joy Launcher with the factory settings. I clicked on yes and I again got my normal screen back. I don't know if Joy Launcher will return again, I'm waiting...
Click to expand...
Click to collapse
Are we sure this is Alcatel pushing this launcher? Or perhaps this is bundled with some other type software that persistently re-activates it.
This used to be a common practice for dev's of one program, to get extra revenue by bundling it with their own.
I myself havent installed the most recent update as I feel no need to at this time. I'm currently trying to get rid of that silly "File Manager" that just all of a sudden decided it needed to run actively!

Moscow Desire said:
Are we sure this is Alcatel pushing this launcher? Or perhaps this is bundled with some other type software that persistently re-activates it.
This used to be a common practice for dev's of one program, to get extra revenue by bundling it with their own.
I myself havent installed the most recent update as I feel no need to at this time. I'm currently trying to get rid of that silly "File Manager" that just all of a sudden decided it needed to run actively!
Click to expand...
Click to collapse
Thank you for commenting. As I previously wrote, I'm not very tech savvy.
I don't factually know that it comes from .Alcatel but since 8/14 this keeps returning. I haven't downloaded any new apps. I cannot use the phone until I figure out how to delete the Joy Launcher message from my screen. I refuse to allow the program's permission requests. I wrote to Alcatel on 8/14 & they gave me a case #. They haven't yet addressed the complaint.
Today it returned again yet it wasn't listed as 1 of my apps. I went into apps - permissions & I denied all permissions. Joy Launcher had some permissions even though it didn't appear on my list of apps. After I denied permissions I restarted the phone & it was gone. The problem is that it keeps returning. I don't know how to stop this from being re-installed.
Sorry you are having trouble with the File Manager, I haven't yet experienced problems.

titaniummitch said:
Thank you for commenting. As I previously wrote, I'm not very tech savvy.
I don't factually know that it comes from .Alcatel but since 8/14 this keeps returning. I haven't downloaded any new apps. I cannot use the phone until I figure out how to delete the Joy Launcher message from my screen. I refuse to allow the program's permission requests. I wrote to Alcatel on 8/14 & they gave me a case #. They haven't yet addressed the complaint.
Today it returned again yet it wasn't listed as 1 of my apps. I went into apps - permissions & I denied all permissions. Joy Launcher had some permissions even though it didn't appear on my list of apps. After I denied permissions I restarted the phone & it was gone. The problem is that it keeps returning. I don't know how to stop this from being re-installed.
Sorry you are having trouble with the File Manager, I haven't yet experienced problems.
Click to expand...
Click to collapse
On another site 1 guy claims he installed another launcher then used all in one toolbox to disable at startup

http://download.cnet.com/Joy-Launcher/3000-20432_4-77527969.html
It does seem to be an alcatel app

titaniummitch said:
Thank you for commenting. As I previously wrote, I'm not very tech savvy.
I don't factually know that it comes from .Alcatel but since 8/14 this keeps returning. I haven't downloaded any new apps. I cannot use the phone until I figure out how to delete the Joy Launcher message from my screen. I refuse to allow the program's permission requests. I wrote to Alcatel on 8/14 & they gave me a case #. They haven't yet addressed the complaint.
Today it returned again yet it wasn't listed as 1 of my apps. I went into apps - permissions & I denied all permissions. Joy Launcher had some permissions even though it didn't appear on my list of apps. After I denied permissions I restarted the phone & it was gone. The problem is that it keeps returning. I don't know how to stop this from being re-installed.
Sorry you are having trouble with the File Manager, I haven't yet experienced problems.
Click to expand...
Click to collapse
No problem mate. Been dealing with OEM crap since the HTC Desire days.
They put this stuff on for several reasons.
1) To give the device a unique feel different from other manufacturers
2) They get money from the developers of said applications to help for a larger profit margin
3) (and the 1 I think is the winner) They let their spouses or partners chose an app "cuz it's cute"
In actuality it's #1 and 2.
If you are rooted, try this app out from the play store. It's what I use.
https://play.google.com/store/apps/details?id=com.jumobile.manager.systemapp&hl=en
You can find all the apk's and "com.xxxxx.xxxxx" files. Ya should be able to locate that joy launcher easily. My guess it's re-installing from a couple locations.
As with that Alcatel File Manager, I use ES File Explorer or Root Explorer. I don't like the idea of a program running in memory like File Explorer does. U can tell cause it leaves icons on the notification bar. So I deleted it.

No Joy, (contiunued)
TheMadScientist said:
On another site 1 guy claims he installed another launcher then used all in one toolbox to disable at startup
Click to expand...
Click to collapse
Thanks for the suggestion, Mad Scientist, I'll look into the toolbox. It returned last night and I followed Moscow Desire's advice on preventing automatic updates. I had to search how to do prevent automatic updates, I didn't know I could disable them. I managed to accomplish disabling the auto updates. At some point the screen asked me "Do you want to replace with factory version" & I clicked on yes.
I hope I'm not violating protocol by going into lengthy detail. The inability to use my phone is frustrating. I'm writing about my attempts in case I succeed in regaining control of the phone & maybe my experience could be useful to somebody else. Thanks for the input & guidance.
---------- Post added at 03:45 PM ---------- Previous post was at 02:54 PM ----------
I like your #3.
I appreciate your generous assistance. This app remover might be the answer. I'll wait and if my refusing auto updates (done last night) doesn't solve the problem then I'll download this app remover.
Moscow Desire said:
No problem mate. Been dealing with OEM crap since the HTC Desire days.
They put this stuff on for several reasons.
1) To give the device a unique feel different from other manufacturers
2) They get money from the developers of said applications to help for a larger profit margin
3) (and the 1 I think is the winner) They let their spouses or partners chose an app "cuz it's cute"
In actuality it's #1 and 2.
If you are rooted, try this app out from the play store. It's what I use.
https://play.google.com/store/apps/details?id=com.jumobile.manager.systemapp&hl=en
You can find all the apk's and "com.xxxxx.xxxxx" files. Ya should be able to locate that joy launcher easily. My guess it's re-installing from a couple locations.
As with that Alcatel File Manager, I use ES File Explorer or Root Explorer. I don't like the idea of a program running in memory like File Explorer does. U can tell cause it leaves icons on the notification bar. So I deleted it.
Click to expand...
Click to collapse

titaniummitch said:
Thanks for the suggestion, Mad Scientist, I'll look into the toolbox. It returned last night and I followed Moscow Desire's advice on preventing automatic updates. I had to search how to do prevent automatic updates, I didn't know I could disable them. I managed to accomplish disabling the auto updates. At some point the screen asked me "Do you want to replace with factory version" & I clicked on yes.
I hope I'm not violating protocol by going into lengthy detail. The inability to use my phone is frustrating. I'm writing about my attempts in case I succeed in regaining control of the phone & maybe my experience could be useful to somebody else. Thanks for the input & guidance.
---------- Post added at 03:45 PM ---------- Previous post was at 02:54 PM ----------
I like your #3.
I appreciate your generous assistance. This app remover might be the answer. I'll wait and if my refusing auto updates (done last night) doesn't solve the problem then I'll download this app remover.
Click to expand...
Click to collapse
Not at all thats what we are here for. I'm trying to make mine better too just like you.

Hello All, I too was the victim of the rotten Joy Launcher. I think I have now stopped it and now we have a happy Alcatel cell phone.
I did a lot of things, but basically - sorry do not have the cell to hand.
I uninstalled Joy Launcher (from version 7.0 to version 5??) and clicked on Force Stop. Then I uninstalled Updates (from version 7.0 to version 5??) and clicked on Force Stop.
Within Play Store, I selected 'do not install when connected to Wireless' and 'manual install'.
There is one last 'manual install' option which I think is within settings.
The octopus is gone and Joy Launcher doesn't bug me anymore. Yippee!

Update it from Apkmirror site , you will find latest update ver 7.0.1.0.823 . It seems that play store removed it .

Response from Alcatel
As I mentioned in my earlier post I emailed Alcatel support. They did not respond so I wrote again, this was my email:
Subject:
Your malware - Joy Launcher
Message:
I have 3 pop4 Alcatel phones. You have forced an installation and update of 'Joy launcher' via Google Playstore.
It has totally removed all of my existing desktop, with its contacts, accounts and shortcuts, etc, which took months of usage and setting up. All is now wasted and lost.
I did not ask for this rubbish program. I do not want it. You have forced it on to me. You have deleted and corrupted my data without my permission.
I have made formal complaints to my network provider as I am most disappointed and angry with Alcatel and will certainly make my thoughts known, because this application is a form of malware.
=====================
I received a response today from Alcatel which was:
Dear customer,
Thank you for contacting us.
Regarding your issue, to deactivate Joy Launcher you need to connect to the internet ( wi-fi network) and a rollback that will remove the Octopus/Spider or any other such annoying features will set in.
What you will also need to do is to go to the settings and then to apps. There you will need to search for the joy launcher and then to click on it and if you see 3 vertical dots, please click on it and then unisntall updates(if not just disable it and uninstall it from the play store).
After you do this, please go to the play store and click on the 3 orizontal lines and settings-> auto-update and click on do not do auto-updates.
We also recommend to get a new launcher from the play store and set it as default in order to fix this.
Please consider rebooting your device if the change doesn't come through.
===
I though I ought to pass this 'fix' on in case it assists anyone. In any event, I will certainly not get an Alcatel phone again because of what they have done. I hate this type of intrusion with software/bloatware which constantly eats your data with spurious and dangerous ads and peaking at your data.
Good luck
Steve

The amount of bloatware (some of which is borderline malware) that has been silently installed since 6.0 is appalling. It renders the phone super sluggish.
If your phone is rooted you can uninstall most of it (at least Joy Launcher, File Manager and Weather) using a root system app remover.
Anything in the com.tct package namespace is a candidate for being eradicated.

How to root Alcatel Pop4 - 5051x
Yes, bloatware is verging on being criminal as the device has the memory stolen from it.
Thanks for informing me that rooting would allow me to get rid of unwanted stuff. The only problem is that I don't know how to do this. I have read different forums and followed numerous links but I have not found a step by step (idiots guide) to root my Alcatel pop4 (5051x) Android 6.0.1
If there is one specifically for that phone I would gratefull for assistance as I do not want to brick my device.
Thanks in advance
ps: I spent ages trying to prove I am not a robot and was about to give it up as a bad job. Is this normal or just me? For example when it asks for street signs does that include picture of the poles only holding the street signs above...? It just goes on and on. I suppose I need a guide to that now !

Related

Locked droid

Not sure if this is the place to get an answer, but I have a big problem. HelixLauncher has locked my Droid Getting a pop-up message: "Helixlauncher has stopped unexpectedly, please try again" with a small command window that says "Force Close". Touching Force Close just brings back the message again and no other commands are possible. Tried removing battery, but same issue repeats. Phone is currently unusable until I find a solution. Please help.
You could use adb to remove helixlauncher. That is, if you didn't remove the stock launcher.
adb remount
adb shell
rm /system/app/ whatever the name of the helix launcher app is
Click to expand...
Click to collapse
sounds like someone should have nanded ..... if whats posted above doesn't work, re-flash your rom.....take it as a lesson, nanding is your best friend
Your, ah, Droid? Not that I think you should be stoned and chased out for posting about something non-N1, but...
That aside, were you using just plain HelixLauncher or HelixLauncher2? The latter was developed for the N1 and, as I understand, doesn't play nice with Droids.
N1 in same trouble
Although tech savvy, still new to Android & N1.
Thought I needed HelixLauncher and installed it on to my N1 w/ 2.1 u1. Was working ok, but I decided to drop screen size to 1.
It's also possible, but unsure about this, that I tried installing HL2.
In short ended up with unending prompt and the same issues as listed in original post.
Looking into resetting, using pwr+vol.dwn. Is that what was meant by re-flashing, or that's something harsher? Couldn't find what 'nanding' means.
Also, the N1 is not rooted, whatever that means again.
Ended up eventually resetting phone to factory values. Reconfiguring phone now..
Actually, if you're fast enough you can stop this fc loop.
You need to get to Settings | Applications | Manage Applications and then clear the defaults for HelixLauncher so that you can select the regular launcher.
But how with constant fc? I did it this way:
When HL fc's it will briefly throw you out to the last screen you had active before it tries to reload (you only get half a second or so). The time that you do get should be enough to enter one or so commands... so after fc #1, press close then quickly hit the menu button and 'Settings', HL will launch again and fc again, after pressing close you should see the settings page, hit Applications, HL will launch again and fc, press close and hit Manage Applications... etc, etc.
Painful but perhaps better than a rebuild if you have no other way.
YMMV
Yeah, I tried, but wasn't fast enough. It's like the wild wild west.. the slowest gun lost.
It seems either Android or the launcher should offer a more graceful bailout in scenarios like this. Seems like a serious bug to me. And I've written a few of those myself..
EkoTonic said:
Yeah, I tried, but wasn't fast enough. It's like the wild wild west.. the slowest gun lost.
It seems either Android or the launcher should offer a more graceful bailout in scenarios like this. Seems like a serious bug to me. And I've written a few of those myself..
Click to expand...
Click to collapse
lol, yeah, the gun slinging took me a bit of time!
And the problem is a recognised one BUT the instructions are clear... wipe the data before reverting from Helix to stock and when upgrading roms... the dev has tried to put failsafes in but short of deleting the data there are few options...
But, since the warning is in place, I don't think we can call it a bug, rather an understood limitation... painful nevertheless.
PS - if you've got Set CPU installed you could try and get to that and set your speeds a low as possible, this will give you more time... still requires the gun though.
Did you install it as a system app? Launcher2.apk ?
The suckiest option is to always do a factory reset, as long as you didn't flash the helix launcher. This will delete the Helix Rom, but it will also delete everything from your phone. Proceed with caution!
britoso said:
Did you install it as a system app? Launcher2.apk ?
Click to expand...
Click to collapse
Installed from app store. Went searching for Helix and got 2 versions. Installed 1st and was trying to figure out how much I liked it. Noticed it made things faster, so I was loving that. But then decided to see if settings->scrn size option allowed me to jam more apps on the front page. So, I was playing with that, I believe {set it to 1?}.
As I would be hitting the Home page, it kept asking me how I wanted to complete that action, Default or Helix? So, I made Helix the default action. Then at one point, I was unable to return to the Home page.
Misery followed..
Now, I see from djmcnz's posting that there is supposed to be some sort of warning somewhere, but none on the App store intro of the app.
In either case, imho, it's not ok for an app to risk this kind of loss of functionality, not to mention data.
FYI, I have not left any of the negative comments that show in the app store. I understand the developers behind this app are proud of their work and rightly so. I however will not risk it again. It's not that important to me to be bleeding edge.
EkoTonic said:
Now, I see from djmcnz's posting that there is supposed to be some sort of warning somewhere, but none on the App store intro of the app.
Click to expand...
Click to collapse
Yes, sorry I was referring to notices in this forum.

[Q] Package file is invalid...

Hello all.
I am new here and posted in the General folder because it wouldn't let me post in the android folder. My phone started doing this 2 months ago. Originally it started when I downloaded an app and then I got a window pop up and said 'Package file is invalid'. Now I am on my 3rd Triumph (returned for other issues) and the problem is still around. It seems like the problem follows my gmail account around. I only get this error with some of the apps. I need to know how to remedy this issue. I have read the other thread about this problem here
http://forum.xda-developers.com/showthread.php?t=674725
and it lost me after the fourth post.
Phone info:
My Triumph is fresh out of the box ( just got another one yesterday, 10/1).
Dont know what ROM I am using.
Not rooted ( and dont want to void any warranties)
If you need other info, just let me know.
Most of the things mentioned in that post regard a modified rom, which you probably don't have (in other words, "my phone is stock"). The biggest question is whether you have tried restarting your phone lately.
The second biggest question? Where are you installing your apps from? If from the market, here are my troubleshooting recommendations. If not, correct me here or feel free to PM me.
Market acts goofy on the Triumph, and for that I blame Android. Try going into Settings> Applications> Manage and go to Market (usually under Running apps). Clear cache and force close, then see if the problem continues. Second time around, clear cache and clear data and force close, and try again. If problems still persist, uninstall all your updates and then see what your phone does.
I rather like the old Market because it didn't have that overpriced junk in it. Either way that refresh might be necessary.
Sent from my ADR6400L using Tapatalk
I have not restarted the phone lately mainly because I just got a new one yesterday.
I use only the market to download apps.
I did all the things you said in the order you said them and I am now running the old market but it still doesn't let me download certain apps. With the old market the pop-up window doesn't say 'package file is invalid' it now says 'Download was unsuccessful, please try...' and I cant see the whole error message.
I haven't been using the Market long enough to know the one. I am new to the android game.
http://forum.xda-developers.com/showthread.php?t=674725
There is that way, but you will be breaking your warranty, since you need CWM and neeed to be rooted
Other Ways:
Go to settings, then applications, then go to market, uninstall updates(if you have)
or
Get titanium Backup(if you can), uninstall market, pull the Vending apk from http://forum.xda-developers.com/attachment.php?attachmentid=320287&d=1272913729 inside /system/apps, put on SD Card, and install it.
If titanium backup wont(MAYBE NOT FULLY SURE) let you uninstall, then you need to be rooted.
Absolute Last Option that probably won't do much good is, factory reset.
Titanium Backup requires root anyway. Becoming rooted isn't hard, as long as you can download and run the app Gingerbreak 1.2. It isn't on the market, of course.
Although still, I find it strange you cannot just open certain apps. Are there any specific ones that do or don't work?
Sent from my ADR6400L using Tapatalk
Yeah! If you use Gingerbreak V1.2, you can root, then unroot when you are done, they will never see it was rooted. ANYWAYS, they never check if your rooted when you return or exchange a smartphone, not even Virgin Mobile checks....
austrie said:
Yeah! If you use Gingerbreak V1.2, you can root, then unroot when you are done, they will never see it was rooted. ANYWAYS, they never check if your rooted when you return or exchange a smartphone, not even Virgin Mobile checks....
Click to expand...
Click to collapse
I got into crap with Best Buy because they checked, actually So yes, I would recommend getting rid of as many traces as possible... but yes, Gingerbreak is the meanest and cleanest method available on any of the three VM Android phones. At least, as of now.
They check WTH!?!?! What did they check for/what did you change?
I highly doubt that they dont check to see if someone did something to their phone that would void the warranty. Nevertheless I would like to not root the phone at least until I am sure I am keeping this one.
austrie said:
They check WTH!?!?! What did they check for/what did you change?
Click to expand...
Click to collapse
The convo went something like...
"Your last phone was rooted. We can't get money for rooted phones."
"Um, I can un-root it then."
"No, we already accepted it."
Click to expand...
Click to collapse

dragon touch a1x 10.1 inch all winner quad rooting software

i found a program to root this device. i noticed it isnt easy to find anyone who can so i want to share
____mgyun____/en/GetVRoot
just make sure usb debugg is on and plug your phone to your pc and let the vroot do the rest
addy
just add wwwdot and dotcom to that addy where the ____ are
Dragon Touch A1X wont root?
metalicofage said:
i found a program to root this device. i noticed it isnt easy to find anyone who can so i want to share
____mgyun____/en/GetVRoot
just make sure usb debugg is on and plug your phone to your pc and let the vroot do the rest
Click to expand...
Click to collapse
Ive downloaded the iroot/vroot and when I try it it looks good for a few miniutes then downloads some Chinese app and that's about it. PLEASE HELP ME OUT ON THIS!!! I really need to root this tablet but cant seen to figure it out. I have the USB debug on. I have no idea what the problem is. Maybe its a different iroot/vroot version you used compared to what I downloaded from them today? hmmm
Thanks
BigBud
BigBud421 said:
Ive downloaded the iroot/vroot and when I try it it looks good for a few miniutes then downloads some Chinese app and that's about it. PLEASE HELP ME OUT ON THIS!!! I really need to root this tablet but cant seen to figure it out. I have the USB debug on. I have no idea what the problem is. Maybe its a different iroot/vroot version you used compared to what I downloaded from them today? hmmm
Thanks
BigBud
Click to expand...
Click to collapse
no that is the right app you just need to fig your way thru... there is no eng version. i got it to work but did not like the iroot app so i then installed "superSU" here is how i did it, when it installs iroot you first reboot then install superSU from the play store and reboot then run super su, it will launch iroot and give superSU root abilty. then reboot... then uninstall iroot/vroot... and reboot one last time and you have a dragon touch with root and superSU
I was looking for a solution to root a Dragon Touch y88x 7" tablet last night, and as seems to be the case with most Dragon Touch products, there just isn't a lot of specific information on how to root them.
Someone had mentioned a tool to download from the manufacturer's website, but unfortunately the link to it is dead, and a Google search linked to the same dead page.
Then, some assbandit/shill/idiot/troll (not sure which; could be all of the above) recommended vRoot/iRoot. I should have known better, but the last time I was an active user of the forums here, people that posted advice could be trusted.
I can't for the life of me find the thread this jerk posted the link and said something like, "There's some adware it will try to get you to install, but just hit no or decline and you'll be fine".
So I found the download page. A page entirely in Chinese but for the button saying "Download". I clicked it, like every other gullible, desperate, or lazy moron that's ever clicked the link.
I had both Malwarebytes and aVast up to date and running at this time, just to be clear.
Upon running the installer, I was in fact asked if i would like to try some unknown worthless adware that checks the weather and a few others. Clicked "No" on all of them.
When the installer was done, the window for vRoot popped up. Entirely written in Chinese, I followed the instructions someone had written and it said it was successful.
BS. No dice.
Then, on my computer, (Win 7 X64), i noticed the notification bar filling up with crap I wouldn't install to save my life.
- I have no fewer than 9 processes that start with Windows that I am unable to uninstall or disable effectively.
- No fewer than 13 pieces of unwanted software that all pop up with their nag screens as soon as I logon to Windows.
I ran a full scan with Malwarebytes and got a few hits. Quarantined them, and ran a deep scan with aVast! which included a boot time scan that took all day. It found tons of corrupted and problematic files as well as some of this new software that is obviously malware. To my chagrin, when the computer was restarted and I logged back in, I was once again greeted with the nagware as if it were giving me the middle finger. WTF.
At this point, I am sure it's done other terrible things to my Windows installation and I'll have to go through the incredible pain in the ass of wiping the drive and re-installing Windows.
So thank you, assbandits that keep trolling and trying to get people to install this trash. I hope enough people notice this issue, jump up and down and whine and scream for the mods to hear our cry, and automatically close threads where vRoot and iRoot are mentioned until this plague goes away.
Bottom line is that vRoot/iRoot is a virus...or, really more like a virus launcher that launches an ICBM that has a warhead full of lots of wizards and angry bees and bill collectors that all want to make you miserable.
---------- Post added at 03:35 AM ---------- Previous post was at 03:28 AM ----------
metalicofage said:
i found a program to root this device. i noticed it isnt easy to find anyone who can so i want to share
____mgyun____/en/GetVRoot
just make sure usb debugg is on and plug your phone to your pc and let the vroot do the rest
Click to expand...
Click to collapse
REPORTED.
I don't know what you personally gain from having people install this virus ridden piece of sh** but you have cost me alone a whole day of using my computer for work trying to rid it to this virus that just won't effing die. Avast didn't detect it. Malwarebytes didn't detect it. Neither will get rid of it.
SO I am reporting you and anyone else that promotes installing this horrible thing.
It does have malware, but!!!
xuul said:
I was looking for a solution to root a Dragon Touch y88x 7" tablet last night, and as seems to be the case with most Dragon Touch products, there just isn't a lot of specific information on how to root them.
Someone had mentioned a tool to download from the manufacturer's website, but unfortunately the link to it is dead, and a Google search linked to the same dead page.
Then, some assbandit/shill/idiot/troll (not sure which; could be all of the above) recommended vRoot/iRoot. I should have known better, but the last time I was an active user of the forums here, people that posted advice could be trusted.
I can't for the life of me find the thread this jerk posted the link and said something like, "There's some adware it will try to get you to install, but just hit no or decline and you'll be fine".
So I found the download page. A page entirely in Chinese but for the button saying "Download". I clicked it, like every other gullible, desperate, or lazy moron that's ever clicked the link.
I had both Malwarebytes and aVast up to date and running at this time, just to be clear.
Upon running the installer, I was in fact asked if i would like to try some unknown worthless adware that checks the weather and a few others. Clicked "No" on all of them.
When the installer was done, the window for vRoot popped up. Entirely written in Chinese, I followed the instructions someone had written and it said it was successful.
BS. No dice.
Then, on my computer, (Win 7 X64), i noticed the notification bar filling up with crap I wouldn't install to save my life.
- I have no fewer than 9 processes that start with Windows that I am unable to uninstall or disable effectively.
- No fewer than 13 pieces of unwanted software that all pop up with their nag screens as soon as I logon to Windows.
I ran a full scan with Malwarebytes and got a few hits. Quarantined them, and ran a deep scan with aVast! which included a boot time scan that took all day. It found tons of corrupted and problematic files as well as some of this new software that is obviously malware. To my chagrin, when the computer was restarted and I logged back in, I was once again greeted with the nagware as if it were giving me the middle finger. WTF.
At this point, I am sure it's done other terrible things to my Windows installation and I'll have to go through the incredible pain in the ass of wiping the drive and re-installing Windows.
So thank you, assbandits that keep trolling and trying to get people to install this trash. I hope enough people notice this issue, jump up and down and whine and scream for the mods to hear our cry, and automatically close threads where vRoot and iRoot are mentioned until this plague goes away.
Bottom line is that vRoot/iRoot is a virus...or, really more like a virus launcher that launches an ICBM that has a warhead full of lots of wizards and angry bees and bill collectors that all want to make you miserable.
---------- Post added at 03:35 AM ---------- Previous post was at 03:28 AM ----------
REPORTED.
I don't know what you personally gain from having people install this virus ridden piece of sh** but you have cost me alone a whole day of using my computer for work trying to rid it to this virus that just won't effing die. Avast didn't detect it. Malwarebytes didn't detect it. Neither will get rid of it.
SO I am reporting you and anyone else that promotes installing this horrible thing.
Click to expand...
Click to collapse
First And Foremost - DON'T Panic about the Malware it installed.
While it's true that iroot / vroot does install malware, it should be noted that it also does gain root access on most android device's.
Now the good news for those of you that have malware issues with vroot or any program that installed crapware. It's very easy to remove.
Download combofix from bleepingcomputers web page, place it on your desktop.
Open your controls panel and run programs and features. Remove any program that was just installed at about the same time as iroot/vroot.
Now close all programs that are running, and launch combofix.
Follow the prompts until it is done. It will reboot your computer and display a text file of what was done. It is finished, and your computer is now cleaned of all malware.
Enjoy.
Youtu.be/a5_iqHBjA7k root it with iroot just add http or www to the front of the link
Sent from my Dragon Touch M8 using XDA Free mobile app

[MOD][GUIDE]How To Enable The Hidden Alternate SystemUI In Note5

Not sure how many of you are aware, but there is a completely different user interface built into the Note5 that's hidden. I thought maybe some of you might like to check it out just for fun. It allows you to place widgets and apps on the lockscreen and has a bunch of cool lockscreen effects. Also, the "notifications panel" and the "recents" page are totally different, as well as many other interesting features. I added some screenshots for you guys to check out in this post.
Here are the steps to activating it:
1) First, anytime you're playing around with the SystemUI, even if it's a built in feature, it's a good idea to do a full system backup in TWRP. Not necessary, but recommended.
2) Next, you will need to have the Galaxy Apps store installed on your device. If you happened to have deleted it like I did, then I've attached the APK to this post for anyone that needs to reinstall it.
3) Open the Galaxy Apps store and update it if/when it prompts you.
4) Once the store has loaded, search for the words "Good Lock". Click on the app and click "Update", then "Install" and reboot the device when it prompts you.
(This is the hidden SystemUI that you already have on your device, but it needs the current update to work.)
5) Once rebooted into the new SystemUI, it will begin walking you through all of your new customization options. You can change any of these anytime you want by opening the "Good Lock" app in your applications list.
NOTE: If you decide that you want to deactivate the alternate SystemUI at any point, then you can just open up the "Good Lock" app and click on "Uninstall" too. You can also uninstall the Galaxy Apps store at any time and features like the new "Recents" page, if you don't like it, can be toggled off in the app as well.
Anyhow, I hope you guys have some fun with this. I'm trying it out for awhile just for kicks. Be sure to let everyone know what you thought of the new SystemUI in the comments too!
Just installed this running N5 Express ROM with no issues yet. Really like being able to have Tasker widget shortcuts on the lockscreen.
catchjeff said:
Just installed this running N5 Express ROM with no issues yet. Really like being able to have Tasker widget shortcuts on the lockscreen.
Click to expand...
Click to collapse
That's a really good idea. Been trying to think of a more useful widget to use on the lock screen. So far I've only added a fancy clock/weather widget. [emoji14] Maybe I'll give it a try.
Cool cant wait to try it out!
Sent from my SM-N920T using Tapatalk
For this you dont need a root or twrp its official from samsung
mirketos said:
For this you dont need a root or twrp its official from samsung
Click to expand...
Click to collapse
TWRP is mentioned for backing up your current configuration of TouchWiz(and your device in general) if you can before using Good Lock in case anything goes wrong. Obviously backing up your device is never required, but definitely always recommended when altering the system in any way, regardless of where it comes from. It's important to understand that Good Lock isn't just some Samsung app in the app store or just another launcher that changes the home screen, apps page, etc. It tweaks the system ui itself, including the look and function of the notifications panel, lock screen capabilities and more. It's true that you can just revert back to TW whenever you want pretty easily from within Good Lock, but the process isn't perfect. In fact, I myself applied it and reverted back only 2 times and the second time something went terribly wrong during the reversion and the system halted and it would no longer boot after that, so I had to restore a previous backup which I was glad to have had. All the data that I hadn't recently backed up though was of course lost, so yes...a TWRP backup is recommended when using Good Lock.
Also worth mentioning is the fact that if you're not running a compatible version of the stock firmware or at least a compatible TouchWiz rom, it will try to prevent you from installing it by not showing it in an app store search or by blocking access to the app's page(if you're following a link) in the Galaxy Apps store. For instance, it was there when I was on stock Marshmallow, but does not allow me to access it on stock Nougat. Instead I get error messages saying the app is not supported on my device when trying to load the Good Lock page.
Here is the link btw in case anyone can't find Good Lock in a search and wants to check if it can be used on their device. If it shows it, then it's compatible, if it doesn't then it's likely not. Just open the link in a mobile browser and click "OK" if prompted.
https://apps.samsung.com/jupiter/appquery/appDetail.as?appId=com.android.systemui
bogarty said:
TWRP is mentioned for backing up your current configuration of TouchWiz(and your device in general) if you can before using Good Lock in case anything goes wrong. Obviously backing up your device is never required, but definitely always recommended when altering the system in any way, regardless of where it comes from. It's important to understand that Good Lock isn't just some Samsung app in the app store or just another launcher that changes the home screen, apps page, etc. It tweaks the system ui itself, including the look and function of the notifications panel, lock screen capabilities and more. It's true that you can just revert back to TW whenever you want pretty easily from within Good Lock, but the process isn't perfect. In fact, I myself applied it and reverted back only 2 times and the second time something went terribly wrong during the reversion and the system halted and it would no longer boot after that, so I had to restore a previous backup which I was glad to have had. All the data that I hadn't recently backed up though was of course lost, so yes...a TWRP backup is recommended when using Good Lock.
Also worth mentioning is the fact that if you're not running a compatible version of the stock firmware or at least a compatible TouchWiz rom, it will try to prevent you from installing it by not showing it in an app store search or by blocking access to the app's page(if you're following a link) in the Galaxy Apps store. For instance, it was there when I was on stock Marshmallow, but does not allow me to access it on stock Nougat. Instead I get error messages saying the app is not supported on my device when trying to load the Good Lock page.
Here is the link btw in case anyone can't find Good Lock in a search and wants to check if it can be used on their device. If it shows it, then it's compatible, if it doesn't then it's likely not. Just open the link in a mobile browser and click "OK" if prompted.
https://apps.samsung.com/jupiter/appquery/appDetail.as?appId=com.android.systemui
Click to expand...
Click to collapse
Ok! Haha!! You dont need a make backup or something IT'S OFFICIAL YOU FOOL MAN
mirketos said:
Ok! Haha!! You dont need a make backup or something IT'S OFFICIAL YOU FOOL MAN
Click to expand...
Click to collapse
WTF dude? Seriously. Stop being an ass and actually read what I wrote. It's the least you can do after I typed all that out. You're not helping anyone by TROLLING this thread and repeatedly mentioning something so extremely redundant. If you don't want to backup then don't backup. I clearly said that it was obviously not required to do a backup and that I was only recommending to do it because I lost data and couldn't boot after selecting the option to revert back one time. Stop wasting people's time with your pointless comments. NOWHERE does it say in my post that making a backup is Required, so get over yourself. Either stop being a destructive ass or go and troll someone else! Your negative comments are not welcome here.

Trojan infected recovery phone partition

Hi,
I'm new to XDA. I think I'm in the right forum for my issue. My phone was infected with what I think is a type of auto rooting trojan. I was looking for info on an app I'm using called Duraspeed. I came across this website that started throwing popups at me saying my phone had tons of viruses, which was a lie. By the time I could break free from the drive by attacks, it was too late. I started getting sluggish performance on my phone and popup ads randomly. Even though it somehow gained root access, my phone is not rooted. Never was. Its still not! Because I checked with several apps off the playstore to confirm this. Long story short:
It put a file called "ads_popup-release.apk"
in my root folder /system/priv-app/
And modified a file called "8e710bb7.0"
in root folder /system/etc/security/cacerts/
or put (installed) the file there I'm not sure.
The file running on the phone as a system app is called "ad_surface"
I can only force stop and disable ad_surface without the ability to uninstall. I have to repeat this process every time I reboot. This stops the ads from popping up. Funny thing is, even though the force stop button in app settings is greyed meaning it was stopped and disabled, my OS Monitor app that shows running processes shows ad_surface is still running. Yet, it does stop the random popup ads by doing it this way. I've tried 360 AV, Avast, AVG, Malwarebytea, Kaspers, stubborn rootkit remover, a lot of antivirus programs but nothing detects it. I'm using Total Commander File Manager to view the device system partitions. I even copied the two trojan files to a folder on the user partition to see if any of the antivirus programs could check them there away from the root areas. But nothing. My guess is that I need to root my phone so I can gain access to the apk file and delete it. I haven't done a factory reset because I realize that apk file is in the recovery partition in order to reinstall itself. I've never rooted a phone before, but I have Kingroot installed. I downloaded it from XDA. I just don't have the guts to use it in fear of bricking. Do you think it would work with my phone? Does it abort the root procedure if it can't do it? Here are my phone specs:
Vortex Beat 8
Software build: 8_V1.5_20171011
Chipset: MT6580M Cortex-A7
CPU Architecture: ARMv7 Processor Rev 3(V71)
Cores: 4 1300MHz
Kernal Version: 3.18.19
Total Ram: 459MB
Internal ROM: 8GB (4GB for user)
That's about it. If there's anything anybody who could recommend how to go about this I would greatly appreciate the help. Thank you...
Go try factory resetting it, doesn't hurt to try.
If the "virus" is still there you can always re-flash the phones os. Here is the link to the stock ROM ---> http://www.needrom.com/wp-content/uploads/2017/04/BEAT-8_V1.06_20170413.rar
The below link is a tutorial on how to flash the phones ROM.
https://www.getdroidtips.com/stock-rom-vortex-beat-8/#How_to_Download_Stock_ROM_on_VORTEX_Beat_8
In mtkdroid tools, Have all the boxes unchecked, and make sure you only have "ANDRIOD" and "RECOVERY" checked marked. The other boxes are just about the phones information and properties. Theses shouldn't be checked because it might erase your imei/drivers or other stuff. After flashing the rom make sure you do a complete factory rest + cache. Erase whatever you have on ur sd cards or micro sd cards.
Just do this and call it a day
Good luck
Cool
Hi, thank you! I will try this. I will have to borrow someone's computer like my nephews. I did try Kingroot and OneClickRoot but they both failed. Perhaps due to a locked bootloader. Or the evil trojan that made itself super user blocking them. I did do a factory reset, but the trojan persist. My mistake was forgetting to turn off unknown sources in security settings. I think that's how it got in... I'll keep checking back on this thread in the meantime to see if someone knows a tool that can kill the trojan, but I doubt it. Cheers!
SecretSociety68 said:
Hi, thank you! I will try this. I will have to borrow someone's computer like my nephews. I did try Kingroot and OneClickRoot but they both failed. Perhaps due to a locked bootloader. Or the evil trojan that made itself super user blocking them. I did do a factory reset, but the trojan persist. My mistake was forgetting to turn off unknown sources in security settings. I think that's how it got in... I'll keep checking back on this thread in the meantime to see if someone knows a tool that can kill the trojan, but I doubt it. Cheers!
Click to expand...
Click to collapse
I'm having similar troubles I somehow believe I have an entire infected Network from Windows 10 to iOS and all the cell phones even two 3-g flip even the Smart car has been recognized I communicated with the virus / hacker Network I have no idea how to get rid of it I give his self super user privileges without quite rooting the phone and hides itself in system apps so it's virtually impossible to get rid of at least for me it is I have post here called wading deep Waters please do check it out
sassyfrassy said:
I'm having similar troubles I somehow believe I have an entire infected Network from Windows 10 to iOS and all the cell phones even two 3-g flip even the Smart car has been recognized I communicated with the virus / hacker Network I have no idea how to get rid of it I give his self super user privileges without quite rooting the phone and hides itself in system apps so it's virtually impossible to get rid of at least for me it is I have post here called wading deep Waters please do check it out
Click to expand...
Click to collapse
It isn't unheard of for a router to get infected with a virus/malware, rare, but not exactly impossible. I've run across others here over the years that have discussed this issue. I don't remember any specifics, tools or methods to fix the issue though, but you can probably find info on removing malware from a router.
Sent from my LGL84VL using Tapatalk
Droidriven said:
It isn't unheard of for a router to get infected with a virus/malware, rare, but not exactly impossible. I've run across others here over the years that have discussed this issue. I don't remember any specifics, tools or methods to fix the issue though, but you can probably find info on removing malware from a router.
Click to expand...
Click to collapse
Thank you for your prompt response I'm not positive that the router and modem are infected more or less they are overloaded from the amount of leeches in hitchhiker's I have from this awful network of hackers and code running through my TV's my cars for god sakes I read one of their lauder's I got in somehow and I could see that they were logging how many seconds it took me from getting out of the car to getting in my home that was just one scary example they could tell when my phone was in my pocket and if I was walking and how many people were with me this is just my cell phone not to mention my TV's the laptops I have no idea what to do
sassyfrassy said:
Thank you for your prompt response I'm not positive that the router and modem are infected more or less they are overloaded from the amount of leeches in hitchhiker's I have from this awful network of hackers and code running through my TV's my cars for god sakes I read one of their lauder's I got in somehow and I could see that they were logging how many seconds it took me from getting out of the car to getting in my home that was just one scary example they could tell when my phone was in my pocket and if I was walking and how many people were with me this is just my cell phone not to mention my TV's the laptops I have no idea what to do
Click to expand...
Click to collapse
It sounds to me like their hold over you has more to do with your personal information than with your devices. With certain pieces of your info, they can gain access to any device that you sign into, login to or even just enter information in while using, even if it isn't yours.
If your network provider randomly cycles IP addresses among its users, it could be that the hacker has previously hijacked that IP address while another user was using it and his access carried over to you when the IP was assigned to you. If this is so, a new IP and changing all of your account info among all of the various accounts you have would cut him off, maybe?
I'm not the best at network security issues that go that deep. My network management/LAN Admin days were a very long time ago, too many things have changed.
Sent from my LGL84VL using Tapatalk
Droidriven said:
It sounds to me like their hold over you has more to do with your personal information than with your devices. With certain pieces of your info, they can gain access to any device that you sign into, login to or even just enter information in while using, even if it isn't yours.
If your network provider randomly cycles IP addresses among its users, it could be that the hacker has previously hijacked that IP address while another user was using it and his access carried over to you when the IP was assigned to you. If this is so, a new IP and changing all of your account info among all of the various accounts you have would cut him off, maybe?
I'm not the best at network security issues that go that deep. My network management/LAN Admin days were a very long time ago, too many things have changed.
Click to expand...
Click to collapse
Thank you I really appreciate you taking the time to think about my situation I have had no one to talk to about this for 2 months
sassyfrassy said:
Thank you I really appreciate you taking the time to think about my situation I have had no one to talk to about this for 2 months
Click to expand...
Click to collapse
Not sure how much help I'll be to you. I'm no expert in what you're dealing with. I'm just telling you some possibilities that I've seen others dealing with over the years.
Sent from my LGL84VL using Tapatalk
Droidriven said:
It sounds to me like their hold over you has more to do with your personal information than with your devices. With certain pieces of your info, they can gain access to any device that you sign into, login to or even just enter information in while using, even if it isn't yours.
If your network provider randomly cycles IP addresses among its users, it could be that the hacker has previously hijacked that IP address while another user was using it and his access carried over to you when the IP was assigned to you. If this is so, a new IP and changing all of your account info among all of the various accounts you have would cut him off, maybe?
I'm not the best at network security issues that go that deep. My network management/LAN Admin days were a very long time ago, too many things have changed.
Click to expand...
Click to collapse
You hit the nail on the head! Told me "unfortunately we have met"
Sent from my LGE LGL158VL using XDA Labs
SecretSociety68 said:
It put a file called "ads_popup-release.apk"
in my root folder /system/priv-app/
Click to expand...
Click to collapse
translation it installed itself to the privilege app section on your phone which does not delete with a reset (new rom does) this also gives the app more power
it can only be done with root so the app rooted your phone (at least temp) here is a app that removes it but it needs root
https://f-droid.org/en/packages/de.j4velin.systemappmover/
And a system priv app has AFAIK full power however as of Oreo thier is another file to give it permisions so says google https://source.android.com/devices/tech/config/perms-whitelist namely
/etc/permissions/privapp-permissions-OEM_NAME.xml
/etc/permissions/privapp-permissions-DEVICE_NAME.xml
check these files and see what you find
SecretSociety68 said:
And modified a file called "8e710bb7.0"
in root folder /system/etc/security/cacerts/
or put (installed) the file there I'm not sure.
Click to expand...
Click to collapse
translation installed a CA certificate that enables them to have a SSL connection or with this certificate can spoof websites
of course this should be deleted but again you will need root (or new Rom)
SecretSociety68 said:
The file running on the phone as a system app is called "ad_surface"
Click to expand...
Click to collapse
The app has to be running with a linux GUID so you can check with that
the apps can not find root this can be because the program used root once to get a elevated status (temporary root) and then does not need it anymore
so you cannot find it. The question still remains how they did that but right now you need to get out.
Waiting for other response. Hehe.
I had this take control of multiple devices and 2 computers. 3 android phones and an apple iphone and 2 windows computers. I countless hours going through logs and data. On my android devices it even made a cloned version of TWRP so it would reinstall itself through recovery. I spent hours on the phone with samsung and apple senior advisors. I viewed the analytic data on the apple device over and over. Extremely werid things were running. Constantly writting system wwrites on a stock apple phone. It was able to transfer from device to device over wifi hotspot. It went on for over two months. I had a roku tv also become monitored. It was the craziest **** ive ever had happen to me. It litterally almost drove me insane and I thought I was going crazy. Ive never seen anything like it. Even google reaults were completely false and fake sites. I disnt know this happened to anyone else. Ive got countless logs and screenshots saved in case I ever needed to share the info. It even remotely sipped my desktop hard drives and had me connecring to a remote server on boot.
---------- Post added at 07:48 PM ---------- Previous post was at 07:37 PM ----------
I could make a phone call and hear breathing in the background. Id make a call and touch tone sounds would go off after the first ring. I was getting constant interference through my phone. It connected all my devices to a home group I never created. I literally had to destroy the devices
---------- Post added at 08:15 PM ---------- Previous post was at 07:48 PM ----------
Applied protocal - makes sense man, in juat glad I got it off my back. On the iphone, when yyou would install a new app from the "app store" it would run a wake up over 4000 times a second to wake up an unknown app in system files . im assuming this was to clone the app or change some code in it when it was installed. The app name was ??? In the analytic logs and it was an "event write system". This was some dirty stuff man. Is this something that is common right now? This exploit across so many devices? Id love to share some of these logs and screenshots if anyone is interested.
SecretSociety68 said:
Hi,
I'm new to XDA. I think I'm in the right forum for my issue. My phone was infected with what I think is a type of auto rooting trojan. I was looking for info on an app I'm using called Duraspeed. I came across this website that started throwing popups at me saying my phone had tons of viruses, which was a lie. By the time I could break free from the drive by attacks, it was too late. I started getting sluggish performance on my phone and popup ads randomly. Even though it somehow gained root access, my phone is not rooted. Never was. Its still not! Because I checked with several apps off the playstore to confirm this. Long story short:
It put a file called "ads_popup-release.apk"
in my root folder /system/priv-app/
And modified a file called "8e710bb7.0"
in root folder /system/etc/security/cacerts/
or put (installed) the file there I'm not sure.
The file running on the phone as a system app is called "ad_surface"
I can only force stop and disable ad_surface without the ability to uninstall. I have to repeat this process every time I reboot. This stops the ads from popping up. Funny thing is, even though the force stop button in app settings is greyed meaning it was stopped and disabled, my OS Monitor app that shows running processes shows ad_surface is still running. Yet, it does stop the random popup ads by doing it this way. I've tried 360 AV, Avast, AVG, Malwarebytea, Kaspers, stubborn rootkit remover, a lot of antivirus programs but nothing detects it. I'm using Total Commander File Manager to view the device system partitions. I even copied the two trojan files to a folder on the user partition to see if any of the antivirus programs could check them there away from the root areas. But nothing. My guess is that I need to root my phone so I can gain access to the apk file and delete it. I haven't done a factory reset because I realize that apk file is in the recovery partition in order to reinstall itself. I've never rooted a phone before, but I have Kingroot installed. I downloaded it from XDA. I just don't have the guts to use it in fear of bricking. Do you think it would work with my phone? Does it abort the root procedure if it can't do it? Here are my phone specs:
Vortex Beat 8
Software build: 8_V1.5_20171011
Chipset: MT6580M Cortex-A7
CPU Architecture: ARMv7 Processor Rev 3(V71)
Cores: 4 1300MHz
Kernal Version: 3.18.19
Total Ram: 459MB
Internal ROM: 8GB (4GB for user)
That's about it. If there's anything anybody who could recommend how to go about this I would greatly appreciate the help. Thank you...
Click to expand...
Click to collapse
Definitely malmare! Mine was called "Ad-Time", like a kid's show or something, but either way, very persistent and pervasive! I have 2 roms, (v 1.5 & 1.6), in img format, easy fastboot flash. Look at this phone wrong and it's rooted. Anybody interested, hit me up, I even got the couple-line script to install SuperSU /system (beat 8 doesn't like Magisk). A simple su.d script to enable permissive selinux, build.prop changes, and you have a $30 Nexus via MTK. I also ported TWRP 3.2.1(no bugs) & Philz, but TWRP is my comfort-zone.
Sent from my ZTE Sapphire 3G using XDA Labs
---------- Post added at 02:03 AM ---------- Previous post was at 01:48 AM ----------
sameboat said:
I had this take control of multiple devices and 2 computers. 3 android phones and an apple iphone and 2 windows computers. I countless hours going through logs and data. On my android devices it even made a cloned version of TWRP so it would reinstall itself through recovery. I spent hours on the phone with samsung and apple senior advisors. I viewed the analytic data on the apple device over and over. Extremely werid things were running. Constantly writting system wwrites on a stock apple phone. It was able to transfer from device to device over wifi hotspot. It went on for over two months. I had a roku tv also become monitored. It was the craziest **** ive ever had happen to me. It litterally almost drove me insane and I thought I was going crazy. Ive never seen anything like it. Even google reaults were completely false and fake sites. I disnt know this happened to anyone else. Ive got countless logs and screenshots saved in case I ever needed to share the info. It even remotely sipped my desktop hard drives and had me connecring to a remote server on boot.
---------- Post added at 07:48 PM ---------- Previous post was at 07:37 PM ----------
I could make a phone call and hear breathing in the background. Id make a call and touch tone sounds would go off after the first ring. I was getting constant interference through my phone. It connected all my devices to a home group I never created. I literally had to destroy the devices
---------- Post added at 08:15 PM ---------- Previous post was at 07:48 PM ----------
Applied protocal - makes sense man, in juat glad I got it off my back. On the iphone, when yyou would install a new app from the "app store" it would run a wake up over 4000 times a second to wake up an unknown app in system files . im assuming this was to clone the app or change some code in it when it was installed. The app name was ??? In the analytic logs and it was an "event write system". This was some dirty stuff man. Is this something that is common right now? This exploit across so many devices? Id love to share some of these logs and screenshots if anyone is interested.
Click to expand...
Click to collapse
Typical Chinese ad/malware/surveillance. If you visit china, you turn over your devices for "inspection", so they can sideload some state-sponsored goodies. A lot of these Chinese roms have the ads baked-in, like mine. Whoever's listening and seeing my pics is gonna need therapy, because I filled the phone up with some STRANGE s*** Remove the apk, but there's several .xml's and .jar's that gotta go, too.
Sent from my ZTE Sapphire 3G using XDA Labs
What is the best way to counter this problem?
Dassote said:
What is the best way to counter this problem?
Click to expand...
Click to collapse
Root, and remove all traces of the " ad_* " app and even the duraspeed app if you want, but I didn't see anything untrustworthy about that. Duraspeed is in the default.prop (running booster), so it's in the kernel. Root uninstall just leaves you no way to control, kuz the PROCESS will go and go, unless you're willing to play with the kernel. Not for amateurs like myself My Beat 8 has been flashed or fastboot-booted more times than I can count. Good times.
Once your Chinese spyware is uninstalled, delete build.prop lines with "running booster", /system/lib's with it, and I think it was in the /system/bin, and /vendor/app had one. Clear them all, and you'll need to tweak the build.prop some more. debug.qemu.kernel=1, ro.secure_storage.support=0, ro.debuggable=1, then reboot AFTER you chmod 644 the build.prop! The "debug.qemu.kernel=1" was what made the rest stick. ADD those props, but don't change the existing ones (kernel). I just deleted the default values, replaced with "" . Fits the whole debug vibe. I should upload a copy of my final build.prop, cheap-a** phone runs like a champ.
Sent from my LG G Stylo using XDA Labs

Categories

Resources