I set a data usage limit in my phone, because I was using a lot of data. After doing it, it alerted me that my mobile data was about to go over and cut off. So scrolled down and discovered these 2 "Android " (looked like the little green Android robot ) and they are named "10193" & "10194" 10194 runs in the foreground all the time and 10193 runs in the background all the time. I was told these are "Kaspersky Mobile Security or Parental Control Monitor" I'm 34yrs old and my parents don't monitor me, please help...
Sent from my SCH-R530M using XDA Premium 4 mobile app
Do you have Kaspersky installed?
veeman said:
Do you have Kaspersky installed?
Click to expand...
Click to collapse
I do not think I did or ever had I looked at all the appsI have installed via play store under the all section of "my apps" and do not see it.
Why do you say it is Kaspersky? My phone has been having some really weird things happening to it. I went though 3 batteries in 2 months, its been using a ton of data. My data just reset on 10/29/13 and it is already at 5gb. Also we have been finding "duplicate processes" running in the application manager. I really don't know what to do, I have installed Avast, Look out, and some other antivirus apps nothing has helped. Reset a few times and it will help it for a little bit and then boom its right back
victhesunshine said:
I do not think I did or ever had I looked at all the appsI have installed via play store under the all section of "my apps" and do not see it.
Why do you say it is Kaspersky? My phone has been having some really weird things happening to it. I went though 3 batteries in 2 months, its been using a ton of data. My data just reset on 10/29/13 and it is already at 5gb. Also we have been finding "duplicate processes" running in the application manager. I really don't know what to do, I have installed Avast, Look out, and some other antivirus apps nothing has helped. Reset a few times and it will help it for a little bit and then boom its right back
Click to expand...
Click to collapse
I recommend wiping completely and start fresh with a new ROM. You could also install an app like Data Manager and see which app is using the most data and uninstall. Also, do not install apps that you download off the internet. Only download from reputable sources like the Play Store and Amazon app store.
veeman said:
I recommend wiping completely and start fresh with a new ROM. You could also install an app like Data Manager and see which app is using the most data and uninstall. Also, do not install apps that you download off the internet. Only download from reputable sources like the Play Store and Amazon app store.
Click to expand...
Click to collapse
this is going to sound crazy, but i just got that phone back up and running in January. But that is what I did,,,
The reason I said Kaspersky is because this guy I know said he "googled " those numbers and symptoms a
and deemed it that. IT did have a spy wear type thing on it but it was not Kaspersky. It was one that was
sent from a website and it has to be removed via the website. I don't remember the name. Anyhow I have
long since ditched that phone and on to bigger and better things. But w/ that phone it has sparked an interest
in this whole "development/modification" thing! Thanks for you help and advice and sorry it took me so long to
get back to you! Be blessed!:laugh:
Hi Everyone, I know this is a very old thread, but I want to give out a solution because I just encountered this 10194 app as well.
I would like to post this for future reference to other people who will encounter this since I've done searching around about this but I can't find any solution.
To remove this app you must:
1. Open Settings and tap [Security] or [Security and Finger Print] or any other name it might now posses.
2. Under this settings entry, you'll see [Device Administrators], tap that
3. Inside [Device Administrators] you'll see that there is a blank application containing a space as well and the indicator should be ticked, that means this app has administrator access to your phone, it has access to calls, messages, email accounts, etc. See: here
4. Tap this app and [Deactivate] or [De-authorize] it
5. Now go back to the main settings list and navigate to [Apps] or [Applications]
6. Tap the app and you can now uninstall it.
I highly recommend changing your passwords for any account that might have been on that phone, there is a high possibility that this app has gathered information on you.
This includes phone call lists, phone call recordings, your contacts, your messages, notes, emails, etc.
This is a speculation of course and will highly depend on the amount of data this application has passed to wherever it connected to but it is safe to assume that you have been infected by malware and your previous information has been compromised.
Related
Ok, maybe I'm in the wrong place. But here goes.
My phone is trying to send text to paid numbers behind my back. I'm using prepaid so it doesn't work. I get a "You have insufficient funds to send this text" message daily, at random times.
I have no pirated apps. Everything on my phone came straight from the market. However, I've not installed a single one of the apps that was on the recent list all over tech sites.
I'm planning on reflashing with a different rom and changing all the passwords that were stored on my phone.
BUT.
Before I do this, I want to find out which app is causing this behavior. Any Ideas on how to find out what is sending random text from my phone (they don't show up in the messaging app)
viogrep said:
Ok, maybe I'm in the wrong place. But here goes.
My phone is trying to send text to paid numbers behind my back. I'm using prepaid so it doesn't work. I get a "You have insufficient funds to send this text" message daily, at random times.
I have no pirated apps. Everything on my phone came straight from the market. However, I've not installed a single one of the apps that was on the recent list all over tech sites.
I'm planning on reflashing with a different rom and changing all the passwords that were stored on my phone.
BUT.
Before I do this, I want to find out which app is causing this behavior. Any Ideas on how to find out what is sending random text from my phone (they don't show up in the messaging app)
Click to expand...
Click to collapse
Install a android antivirus and firewall like Lookout.
Sent from my GingerBread Eris using XDA App
lookout finds nothing. All the other AV software fails to install. "Unknown error -18"
i have plenty of free space.
viogrep,
I wrote a novel, but then thought I should just ask a few preliminary questions:
Q1) does the error message contain any useful "hints", such as the destination number ?
Q2) if you use a logcat - capturing app, does anything show up in the logcat right around the time the message is generated which might provide some further clues?
There's a lot of different techniques you can use, but they require a bit of effort - not only to perform, but to explain, too.
Q3) Are you willing to post up the output of the "ps" command to a pastebin?
Q4) What apps on your phone request "SEND_SMS" privileges? You can find out with
Code:
strings /data/system/packages.xml > /sdcard/strings-pkgs-xml.txt
and then poking through the "strings-pkgs-xml.txt" file. When you see (for instance)
name="android.permission.SEND_SMS"
the immediately prior package is what requested it. Either that or you can do something tricky like
Code:
strings /data/system/packages.xml | awk '/<package name/{pkg=$2;}; /_SMS/{print pkg, $2;}'
bftb0
1. No destination number in the error. Sorry.
2. Also, no clues in logcat from what I've seen.
3. PS > http://pastebin.com/iUAfP9Yb
4. Besides the default gapps, the only other app with SEND_SMS priv. is Koxx Pure Messenger. (Purchased from the market, Have had for awhile, the sms sending is new)
Going to try to call my provider and see if I can get the number that's been denied because of funds.
*edit* No luck with provider.
I'd really like to know whats doing it so I don't install the same app once I flash. Luckily I keep nothing important on my phone. Its gmail account is actually a duplicate with my original forwarding to it. I'm a tiny bit overprotective over my email(address). :x
viogrep said:
4. Besides the default gapps, the only other app with SEND_SMS priv. is Koxx Pure Messenger. (Purchased from the market, Have had for awhile, the sms sending is new)
Click to expand...
Click to collapse
I know that it isn't necessarily this simple, but if that really is the only other app besides the GAPPs with SMS priveledges, especially coupled with the knowledge that the SMS capability is new, I think you have your answer.
If you tried a new ROM and restored all but that one app, and the problem never happens again then you can be 95% sure. Only way to be 100% sure is that after a certain length of time without a problem (a week?) you reinstall Koxx and then if the problem starts happening again.
I looked through your "ps" listing.
Didn't see anything too obvious sticking out at me; there were a couple of non-market apps running though. I know that there is no theoretical reason why non-market apps would be malicious - on the other hand, I sort of wonder why they are not on the market... you know what I mean? What is stopping them? (In the case of Tubemate - which was actually kicked off of Google's market, my suspicions are even higher. I realize it was not kicked off because of malware; but still...)
These were the only processes that were either not on my phone, or I didn't really recognize.
Code:
com.dylan.tube = [Non-Market App] Tubemate
com.gau.golauncherex.notification = GO Launcher EX (READ SMS)
com.levelup.beautifulwidgets = Beautiful Widgets (LevelUp)?
com.revsodev.volumecontrol = [Non-Market App] Volume Control (Cyrket?)
com.swype.android.inputmethod = Swype?
com.tencent.research.drop = QQPlayer (no perms req'd?)
net.bajawa.battery = BattStatt (no perms req'd?)
org.sipdroid.sipua = Sipdroid VoIP + video
The Road Warrior has an idea which is sort of useful; but I'll modify it to use binary division.
Start with a freshly installed, clean ROM, and only install half of your apps. (I would put all of your most frequently used apps in the first half, and delay any non-market apps as long as possible). Here's how this goes:
- if the "half" you put on the phone is trouble-free (long enough to know the SMS popup thing is not going on), then, install half of the remaining apps, and wait again to see if there is a problem.
- if the "half" you put on the phone develops trouble, then you know that the problem app is in that group. Wipe the phone and re-install all prior "halves" (that caused no trouble), but split the current half (the group containing the suspect app) in half, and only install that. Proceed in this fashion until you are down to the app which causes the trouble.
If you have 128 apps on your phone, and you wait 1 day between installations, it will take 7 days to find the malicious app. (And if you don't get a failure within the first two days, your phone will have 3/4s of it's apps installed - that's not too bad).
The thing is though, even if you had an app compromise your phone, it might not be an "app" that is doing the dirty work any longer. For example, the most recently discovered malware ran rooting exploits against the device, and once successful, downloaded and installed "other stuff". That "other stuff" could be native binaries. So, examining permissions in the system manifest doesn't necessarily guarantee that you have exhaustively looked at your phone, or discovered all possible means of interacting with the SMS system.
It might be "just an app", though - and if it were me, the first ones that I would suspect are non-Market apps, or apps that *cough* got downloaded from "freeware" sites.
Thanks for the responses. I actually did a fresh flash last night. First thing I installed was tubemate (running through non market apps) and it did it. Ironically I added some money to my account to see if I could get the number it was trying to text. Apparently it still couldn't go through.
Sent from my FroShedYo V10-ERIS using XDA App
I had a game from a Chinese developer that stole my gmail. Log into yours from the website and see if you get a red warning.
Sent from my GSBv1.9 ERIS using XDA App
viogrep said:
Thanks for the responses. I actually did a fresh flash last night. First thing I installed was tubemate (running through non market apps) and it did it. Ironically I added some money to my account to see if I could get the number it was trying to text. Apparently it still couldn't go through.
Sent from my FroShedYo V10-ERIS using XDA App
Click to expand...
Click to collapse
I'm always amazed when something I suggested actually works. LOL. It's just that I'm used to things being more complicated than I hope.
Glad you figured out the trouble!
Thanks bt and RW for the help.
As far as the gmail thing... I use a different gmail address on my phone with email forwarded (different pass)...
If it gets taken I just stop the forwarding and make a new one. Makes things a more simple. Sure, they can see past emails, but they cant request passes/info from other sites... (I also monitor the login IPs in gmail, religiously. Just a habbit.)
viogrep said:
Thanks bt and RW for the help.
As far as the gmail thing... I use a different gmail address on my phone with email forwarded (different pass)...
If it gets taken I just stop the forwarding and make a new one. Makes things a more simple. Sure, they can see past emails, but they cant request passes/info from other sites... (I also monitor the login IPs in gmail, religiously. Just a habbit.)
Click to expand...
Click to collapse
You're welcome. You could just change your password from the web if your phone gets stolen.
Especially since it's the gmail address you use on your phone that everything is sync'd to, not the one that's forwarding to it. So if you got another Android phone you'd lose all your contact info and bought and installed apps info, calendar and such. Unless you sync them manually which is so much harder in my experience.
Or you could use one of the many free apps out there that would let you remotely do many things to your phone. Turn the GPS on, triangulate your phone, make your phone scream, do a factory reset to erase everything...
Just a suggestion.
I have noticed these chinese apps some how self installing on my S2.
Any idea how to get to the source of these unauthorized installs? (Lookout & AVG & NetQin don't detect them as malicious or find any reason for how they are getting on there).
Currently using KH3 + CFRoot.
Why do people give so little information when they post?
What Chinese apps? (Please provide a screen shot if the app name is in Chinese) .
This sounds really really bad.
Has this happened to any one else?
It should not be possible for this to happen.
Does your phone have any connection with China or have you installed any Chinese software?
If this is happening then you must have done something yourself to start the process. Nothing can install itself without your consent, unless there's malicious software that's bypassing the system and installing for you, but you would have had to install that first.
So, as above, a lot more information is needed. Personally, I'd just do a complete wipe and hard reset and never install anything from untrusted sources again, including warez, 3rd party app stores and the Chinese Market, which is known to have had dodgy software before now.
My friend got an S2 from China and it was preloaded with all those Chinese apps. Examples include QQ Security Suite and some other apps. I used Titanium Backup to uninstall but after each restart, the app re-appears!
I was surprised that Titanium couldn't uninstall. It says it uninstalled successfully but it just re-appears. The only thing I could do is to do a re-flash to a Hong Kong firmware without all those pre-loaded Chinese apps.
But before you wipe everything, please help us try and find out how it happened?
Again has this happened to any one else? Because I want to know if this could happen to my phone!
Mine also did this on stock rom i would uninstall samsung apps reboot and it would reappear on my menu. Is it possible the rom comes with an auto install script for the preloaded apps?
Sent from my GT-I9100 using XDA App
otester said:
I have noticed these chinese apps some how self installing on my S2.
Any idea how to get to the source of these unauthorized installs? (Lookout & AVG & NetQin don't detect them as malicious or find any reason for how they are getting on there).
Currently using KH3 + CFRoot.
Click to expand...
Click to collapse
If you have CF-Root, you have super user installed. Review your permissions. You can also install LBE privacy guard and set permissions for all apps as well, including many system apps (you'll need to 'untrust' them first).
Sent from my GT-I9100 using XDA App
Sorry for the little information guys, was 5am and very tired
I deleted the second incarnation of the app as soon as I saw it (worried about personal details being taken etc.) however it if it reappears again then I will screenshot it.
Virus scanners don't detect them as malicious, when the program opened (after stealth install) I went through it, albeit in Chinese it looked like a legit program and the menu worked etc.
I have market 3.1.3 installed (got the apk off the internet) and a few apps that got removed from the market place (torrent clients and certain games I couldn't find etc.) so it could well have been put in them.
I'm thinking about a hard reset, not using titan backup to avoid it coming back and a re-flash.
Also my phone has no connection with China (purchased in the UK), this has only happened recently.
Is there any more info needed before reset etc.?
Looks like the suspect apps removed from the market may have been the cause.
Does anybody know if running as root alows all download apps to run with root permissions?
LouisJB said:
Looks like the suspect apps removed from the market may have been the cause.
Does anybody know if running as root alows all download apps to run with root permissions?
Click to expand...
Click to collapse
Issue is the damage seems to have been done, looks like I have no choice but to reflash etc. Need a virus scanner that has root so it can do a deeper scan.
Superuser is a lot like UAC on Windows Vista/7, it will popup and ask you to allow/deny.
Also is there any way to wipe the device while re flashing to ensure this gets removed?
I found a folder on my Internal Storage "QinqiQuan" (Google Image search pinpoints this as one of the apps) which translates in Chinese to English as "Infringement", however the app itself appears to be a legitimate Chinese social app so I'm not sure of my original concern regarding "Infringement" being copyright related etc.
Another few suspicious folders were "the9GameCenter" & "waze".
In future I'll be sticking the Market and official sites, even if that means doing without certain apps that aren't available on my handset/region
Isnt waze a community based sat nav app?
poults said:
Isnt waze a community based sat nav app?
Click to expand...
Click to collapse
The apps themselves appear legitimate, but I didn't authorize the installs which is what worries me.
I wiped internal storage, wiped data and then re-flashed + CFRooted.
Hopefully what ever it was, won't come back
And how about the security in your computer? As we know, you can install an app in your phone via your market account using your computer. Perhaps someone is playing around with your market account. If this is the case, changing your password would be a good idea.
Sent from my GT-I9100 using XDA App
angelomaldito said:
And how about the security in your computer? As we know, you can install an app in your phone via your market account using your computer. Perhaps someone is playing around with your market account. If this is the case, changing your password would be a good idea.
Sent from my GT-I9100 using XDA App
Click to expand...
Click to collapse
Yeah I have changed my password and turned on all the Google security settings, albeit a bit of pain, does give peace of mind
Sent from my GT-I9100 using xda premium
I just went from Paranoid Android to CyanogenMod, and expected to have to re-add several apps. If I go from an AOSP ROM back to a TouchWiz ROM, it is treated as a different device, and I get an app list months old. I was pleased to see Android attempting to download my newest set of apps...
However, the sync failed like it does 50% of the time (every app individually fails). Now when I visit the Google Play store, I see my 'new' phone with only a couple of apps installed. I just lost the entire list. Since there's no way to batch install apps with the Play Store, I get to spend a looooong time looking up and reinstalling them by clicking around like an idiot.
Am I missing something? Every element of the story I just described seems like awful design. I'd really not like to resort to AppBrain or something like it. It's incredibly stupid that if the Play Store has some error syncing apps, it makes the new short list the new goal for syncing (so, it won't even try next time).
In short, it would be ideal to have my list of installed apps tied to my account, so that in the event of a problem, I could just push a large "Yes, download ****ing everything" button. Apps that aren't compatible with THIS device can just be skipped I guess. Why is this so hard? Instead I'm going down my 'All' list on my phone, tapping 5 times per app to install them one by ****ing one.
Why don't you just backup apps with titanium and then restore them when you flash a new rom? Titanium has batch commands so it's pretty much one click for each. You can also set up a back up schedule so things are always backed up
Aside from my hesitation to use another app to perform a function that is already supported...
Is Titanium storing the apps themselves, or a list of apps? I really really really do not want to store several MB/GB of data which may or may not be corrupted. If anything, I want to simply store a list of apps, which will all re-download upon restoring the backup.
AndrewZorn said:
Aside from my hesitation to use another app to perform a function that is already supported...
Is Titanium storing the apps themselves, or a list of apps? I really really really do not want to store several MB/GB of data which may or may not be corrupted. If anything, I want to simply store a list of apps, which will all re-download upon restoring the backup.
Click to expand...
Click to collapse
Yea it will store all the apps. But if they are working, they probably aren't corrupt.
Also, I have had a few phones over the years linked to my Google account and the play store is never segmented by phone. All my apps that I have been using since my OG Droid show up on my note 2. The times I have let the play store sync my apps they all downloaded fine as long as your screen doesn't turn off which you can force to stay on in the dev settings
I have been using titanium for 5 years now. And have restored my apps literally hundreds of times. Never once did it not work. Never had a single failure. I also have only had the play store re install my apps once. That was the very first time time I flashed a rom back on my droid. That was the first and only time it did that.
Sent from my SCH-I605 using xda premium
Simply as a matter of principle, I am not concerned with storing the apps themselves. The entire point of the app sync is to keep track of what I have installed. Backing up the apps themselves strikes me as a different goal entirely.
I've had many successful restores myself, but just as many failures. It isn't that difficult of a task... and if it does fail, when every app for some reason (even if it is a legitimate one) isn't installed , there's no way to retry the process. Your new list of synced apps is now the tiny amount that succeeded, the rest are lost to needing to manually reselect. This is absurd.
Multiple phones are definitely treated as separate app lists. I have 5 devices on my Play Store account; each has its own list of associated apps.
This is because every time you flash your phone, or factory reset for that matter, your phone gets a new device ID. That makes it look like a new device to the play store. This will happen anytime you flash a ROM and wipe data. Dirty flashes do not change the ID.
If you use titanium back up, it automatically stores your device ID, so it will prompt you to revert it back the first time opening it after flashing the ROM. This will allow you to maybe reinstall apps through play store, or at least keep the "app list".
I personally think you are being petty about this. It's not Google's fault you are constantly flashing your phone and creating new app ID's.
Sent from my SCH-I605 using Tapatalk 2
I have had the play store fail upon sync before, but it has never failed to keep the list of all the apps I've installed on any device tied to my google account. Strange that said list got wiped for you.
I'd just install a backup app and call it a day. I use Ultimate Backup Pro, by Jrummy. The newest version will sync your apps (a list, or the data) to Dropbox, Box, or Google Drive.
^^^ +1 for this
nrfitchett4 said:
This is because every time you flash your phone, or factory reset for that matter, your phone gets a new device ID. That makes it look like a new device to the play store. This will happen anytime you flash a ROM and wipe data. Dirty flashes do not change the ID.
If you use titanium back up, it automatically stores your device ID, so it will prompt you to revert it back the first time opening it after flashing the ROM. This will allow you to maybe reinstall apps through play store, or at least keep the "app list".
I personally think you are being petty about this. It's not Google's fault you are constantly flashing your phone and creating new app ID's.
Sent from my SCH-I605 using Tapatalk 2
Click to expand...
Click to collapse
I'd like to agree that it is petty, or believe the terms of the problem as you describe them.
It isn't petty that a feature is not working correctly. Flashing a phone gives a new device ID, but so does losing it, or replacing it. You're passing off the lack of harmony as my mistake.
The mere fact none of us can find a way to retry the app sync proves my point; this argument alone brings me a bit of closure, because at least I am not the only one with the issue. If you are all happy with backing up actual program data instead of realizing the power of a synced list, fine. To suggest this behavior is the intention of Google, however, is nonsense.
...and one last word: if it were as simple as getting a new device ID upon each flash, surely I'd be able to log in to the Play Store and view the list of apps on my 'old' device, right? How does Google know that device no longer exists? How are the two ideas of "syncing apps, but not across different devices" and "getting a new ID upon flash, then attempting to sync" both able to exist?
Perhaps I'm wrong about all of this, but can you really say using 3rd party software to remedy a failed sync is not noteworthy? I specifically remember myself mocking the idea of avoiding 3rd party software when a user wanted to solve a problem... this is much different. This is a legitimate issue with an existing feature.
AndrewZorn said:
If you are all happy with backing up actual program data instead of realizing the power of a synced list, fine.
Click to expand...
Click to collapse
No one said you should backup/restore app data, just the app itself. The app data is actually frowned upon for the most part. Although I have done it numerous times and have never had an issue, but that's a whole different can of worms
But in the end, you do what you want to do.
You are tilting at windmills.
There is a reason everyone uses an app backup program like Titanium or My Backup Pro (those are the two I use). It's the easiest/fastest way to restore apps. Google backup and restore was not intended for 'us' who root. No amount of believing its wrong the way it works is going to change that.
There are apps that will only backup the market link (to your storage) but the only one I know of does not have a one button restore. But it's called App List Backup if you want to check it out.
Sent from my SCH-I605 using xda premium
I love titanium backup. The fact that I can backup all of my apps and restore them plus restore data, such as the music that's already buffered on Google play music is great. Is a time saver! Imop
Sent from my SCH-I605 using xda app-developers app
I still feel like you guys are misunderstanding me (mostly, yes, I've tried App List Backup, and it's alright, "Google should already do this better" aside)...
Backing up programs themselves to create some huge file is a completely different thing than maintaining a list of installed apps on Google's servers. Completely different things. You may be willing to say they accomplish the same goal, something I disagree with. Let's stop talking about rooting and flashing, and start considering the idea of a lost/broken/corrupted phone. If the Google app sync worked better (in terms of reliability or feature set), it would be a painless task to have a new phone redownload all apps installed on the old one.
Please read forum rules before posting
Questions and help issues go in Q&A
Thread moved
Thank you for your cooperation
Friendly Neighborhood Moderator
AndrewZorn said:
I still feel like you guys are misunderstanding me (mostly, yes, I've tried App List Backup, and it's alright, "Google should already do this better" aside)...
Backing up programs themselves to create some huge file is a completely different thing than maintaining a list of installed apps on Google's servers. Completely different things. You may be willing to say they accomplish the same goal, something I disagree with. Let's stop talking about rooting and flashing, and start considering the idea of a lost/broken/corrupted phone. If the Google app sync worked better (in terms of reliability or feature set), it would be a painless task to have a new phone redownload all apps installed on the old one.
Click to expand...
Click to collapse
You like to find problems instead of solutions. Sure it's a little bit of work to go down the Google Play list and install the one you want but how often are you planning to break/lose/corrupt your phone?
Backup file size. Backup to dropbox. Backup to your SDCard. Move your backup file to your PC.
Restoring a device to the way it was. Do a nandroid. Use your extSDCard. Root the new phone and restore. Boom exactly the way you left it.
I think you already mentioned that you didn't want to use AppBrain. But that is another potential solution.
I realize you want a perfect native Google solution but we are not the ones who can solve that for you. It would be a nice feature, but I still wouldn't use it. App backup gives me more control with really no downside. And nandroid is a perfect system restore with data intact.
Sent from my SCH-I605 using xda premium
Hi All
Since a day I have a sort of leadbolt virus that opens my browser and shows the website like below:
ad.leadboltads.net with Top Apps/Offers of the Day
This happens when I download something from the playstore or when I delete apps.
It Makes crazy and I have tried some things alrdy so fix it without any succes.
- Downloaded and installed virusscannen, no succes
- Downloaded and installed ad detector, found a app with leadbolt, deleted it but didn't solve the problem
Hopefully someone can help me too fix this annoying problem
Me too!!!
This is so annoying! My browser keeps opening to the leadbolts site with a bunch of apps on it....Please someone help!
+1. From where come this shlt ?
Shaundiesel said:
Me too!!!
This is so annoying! My browser keeps opening to the leadbolts site with a bunch of apps on it....Please someone help!
Click to expand...
Click to collapse
I'm also having the problem and have not found a solution yet.
The only difference for me is I have adaway installed so the webpage never gets to display. Just opens the browser.
I've tried different ad detector apps from google play, but nothing is fixed this problem. Almost ready to reflash the rom and start from scratch.
UPDATE: I fixed the problem.
When the browser hijacking occurred, it happened after installing or updating a program from any source. Google Play, Amazon or a standalone APK. That meant the virus had control over my installer.
Using Lookout's Ad Detector, I identified some potential culprits (Go Launcher EX being at the top of the list) and uninstalled them. That didn't work.
What actually fixed the problem was resetting the defaults for all the apps. Settings > More > Application Manager. Hit the menu key and choose Reset app preferences.
You don't loose any data. You just get prompted for choosing a default app when you run certain applications. I choose to use Lookout's installer instead of the default android installer when I got prompted to install updates.
Haven't had the issue since. Hope this helps.
markmi300 said:
What actually fixed the problem was resetting the defaults for all the apps. Settings > More > Application Manager. Hit the menu key and choose Reset app preferences.
You don't loose any data. You just get prompted for choosing a default app when you run certain applications. I choose to use Lookout's installer instead of the default android installer when I got prompted to install updates.
Haven't had the issue since.
Click to expand...
Click to collapse
Hi everybody. (First sorry for my english but I speak french)
This is a solution but it workn't very good.
After the downloading and installation from a update or a program, AndroƮd ask me if I want to finish the task with the default browser or Chrome ? So I can't see this f*cking page more but I must always put my choice between the 2 browsers.
I thank you for your solutions....
+1 to lookout fixing. Had the same problem, ripped it right out.
Sent from carbon note 2 on XDA premium app
shbaldw said:
+1 to lookout fixing. Had the same problem, ripped it right out.
Sent from carbon note 2 on XDA premium app
Click to expand...
Click to collapse
Glad I was able to help.
See the solution at
http://forum.xda-developers.com/showthread.php?t=2525965
#@!%&#! 'ad.leadboltads.net' Malware
shbaldw said:
+1 to lookout fixing. Had the same problem, ripped it right out.
Click to expand...
Click to collapse
Lookout Security & Antivirus found mine in ChargeBar Free Edition,
ChargeBar came embedded in the NottachTrix 2.3.0 ROM.
I installed it (NottachTrix) and it (ChargeBar) didn't update for 3 months, then, BANG.
I've deleted ChargeBar's update, moved it from system apps to apps, deleted it, and the browser pop open 'ad.leadboltads.net' still persists.
Lookout Security & Antivirus can not find the new location of the malware, they do not have a forum.
By the very definition and behaviour, this is malware, and, ChargeBar (Asgard Casino Apps) is involved in the distribution of malware.
Asgard Casino Apps distributes 34 apps that behave this way.
They are using Google to distribute this malware, abet, that app is benign in its origin, its a pipeline, or conduit for malware.
Sneaky F##kers aren`t they.........
#1) I would like to get this crap off my phone.
#2) I need to bring this to Google's attention, and have the developer and apps banned from the Play store.
Sooo, starting with #1,,,how do I get this crap off my phone!
NOTE:
I will be linking to this post in the NottachTrix post, I'm asking the developers to to move ChargeBar from the ROM zip.
My MBAM forum post: https://forums.malwarebytes.org/index.php?showtopic=138306#entry764184
I think I have got a virus in my phone. Sometimes when I open any link in Chrome, a random popup opens which usually redirects to the play store somewhere. Once I opened 9gag.com and it opened 9gag's play store link. It even happened with android authority blogs that when I interact with the page i.e touch or scroll anywhere, a random ad link just pops up. Not only this but the original page is replaced by a facebook page whose URL contains something about a campaign i.e its ID etc. History shows a website terraclicks.com and google search on terraclicks shows that it's a PC virus.
Not only with Chrome, I even got the same popup while opening a link using facebook's own default internal browser.
I used Avast to scan for viruses including all files but it found no virus. The same thing is also happening in my brother's phone and we don't share anything between phones. There's a laptop in my home which also shows terraclicks in its history. So I think the virus is spread over all the devices, but I am still unsure as to how to remove it while mobile's antivirus detects nothing.
ad virus
Yes i have the same problem.Please help.
well I installed ccleaner and cleared three things:
All apps cache, chrome history and empty folders. It disappeared for some days but last night it came again to me. Now I have repeated the process again, let's see what happens now..
Usman i have factory restored my phone but it is still there. I dont know what to do now
khan khan said:
Usman i have factory restored my phone but it is still there. I dont know what to do now
Click to expand...
Click to collapse
which internet are you using? I am using PTCL
Do you also have this on another mobile or on computer?
no, there is only one mobile and it is only happening with it.
It's most likely a simple ad that is displayed when they detect your device and want you to download their app I stead. Use an ad blocker and you will be fine.
zelendel said:
It's most likely a simple ad that is displayed when they detect your device and want you to download their app I stead. Use an ad blocker and you will be fine.
Click to expand...
Click to collapse
It's also appearing on computers. And I can say it's not coming from the website's owner because I personally work on a website and one time clicking on its logo triggered the ad. That website would never put an onClick ad on its logo.
terraclicks ad virus
You should install a new window on your computer which will definitely remove these ads but what to do with this in the android. I have installed every antivirus , antimalware and have performed a reset too but no effect.
OMG, I was also infected with Terraclicks. All I can find is removal guides that have nothing to say about Android system.. Can I just reinstall by browser or reset my phone to factory settings? I would prefer the second option because I have lots of photos that are important to me on my device. thanks
It's almost a year since the original post on this thread, and still searches for info on this insidious malware, Terraclicks shows just non-android solutions and generic adware removal info.
Like several other posters I have tried dozens of AV and anti-malware apps but nothing works so far.
Has anyone found a solution??
Clear all apps cache, browser cookies (it will log you out of all websites in the browser), and browser history (only if needed).
Try the above steps one by one and give some time between them to see if the problem goes away without doing the other steps.
It probably comes from visiting cheap websites like those sharing apk files or songs etc. They don't give a damn about the users.
For me this was solved by making uTorrent pro inactive, the adds stopped.
Once I uninstalled it they never came back.
Assuming you have cleared your Chrome cache etc, I suspect you have an app which has been installed which is causing this. In my case it was an .APK which I had downloaded externally (because I couldn't get it from the Play Store). As it happened, this particular app made itself a device administrator (you can check by going into Security, Device Administrators) and it also had greyed out the ability to uninstall it. The app was also running as a background process which is how it keeps spawning those ads. Nothing picked it up as Malware (Malware Bytes, Trend, CCleaner). That was the giveaway to me, that something wasn't right with this app. This would also explain why a phone reset wouldn't remove it, because that typically reinstalls all your apps (except in your case) the app would have probably come from the Play Store. Since removing the app, I've had no problems and the dreaded problem has gone away. Now I am a lot more careful about which APKs I loaded. Good luck
I had this issue and it ended up being one of the apps I downloaded. Once in uninstalled the correct app the problem ended. If you do factory reset, then redownload all your apps, then the problem would come back because you redownloaded all the apps you originally had. This is especially true if you use an app that's not in googles playstore so what he is saying sounds almost exactly the same as what happen to me.
Thank you that fixed it. I downloaded showbox of a site. N it messed up my phone.