Installation from unknown sources, riskware

pdj

Have your try to insert not china sim into the smartphone?!? When u Will release the update for unknow source taggle?! And then you are not able to reproduce the problem but the First problem is that when a connection is enabled (wi-fi or 3g/4g) the taggle of unknow source magically enable the installation from unknow source. Same problem with London. As i already ask you, in the London Rom Thread, the problem of taggle of unknow source are now solved in the new versione of rom? Will you send that update via OTA? Thanks for the replay. Don't think only about umi z and umidigi z pro. IF it's only a taggle i think that is not too difficult to solve It.

joerg82

My Umi Diamond was updated direct after the first boot to the V7 Version. Since than I have had no problems for three weeks, except the unknown sources thing. But two days before, without doing anything special, the phone installed two apps, I have never heard about. I have uninstalled both, but minutes later tow other apps apear. After deactivating the unkonwn sources, I was able to clear the phone.
The appdata was not transfered by WLAN, but over mobile data.
I never installed any app that was not installed on my old samsung phone. Never had any problems like this.
This night I have flashed Ziggis clean ROM. It based on the V7 StockROM.
http://community.umidigi.com/thread-6536-1-1.html
Now I am asking UMI: How can one of your customers build a ROM which solves the problem just in a few days, while you need over a month?

Ziggy

First of all to say it as clear as possible @bencebacsi : The Malware is INSIDE THE FIRMWARE UMI OFFER ! Its still the same firmware thats there since December. You can flash it any way you want the Malwarefile inside the SystemUI.apk will not go away from a fresh flashing cause its build into the firmware and its in there on suppose, if not the phone would not decrypt it at startup. No phone does behave like this if its not planned!

Second: Please dont repeat over and over again that their is no Virus, its there and i have proven it, you are offending our intellect by still claiming there is nothing. What do you think the following lines of code in the f.class or f.java (the name depends on the decompiler you use) does :

private static boolean b(Context paramContext)
  {
    boolean bool = true;
    if (Settings.Secure.getInt(paramContext.getContentResolver(), "install_non_market_apps", 0) == 0) {
      bool = Settings.Secure.putInt(paramContext.getContentResolver(), "install_non_market_apps", 1);
    }
    return bool;
  }
Third : When where is nothing then why dont i or anyone using my version of the ROM does not have the problem anymore ?

Fourth : If its not there on suppose why cant someone not simply delete the file spende.zip from the SystemUI.apk, please dont answer because its needed by the System cause thats not true, make a file completly full of hex 00 with exact the same size make the first three bytes a PK Header und you can exchange it, so it cant be needed cause its empty this way.

Fifths : Why does Umi not release a new Rom or the Kernel Source so we can compile an AOSP or CM/LineageOS Rom ourself ?

My thoughts on this : Umi sells the Phones under price and tries to get some money back from advertisements from the installed apps. That would also explain why this file is in the lower priced phones but not in the Plus. That would also explain why Umi does not release a new Rom or the Sourcecode of the Rom.

@Joerg82 : Well maybe because i wanted the Rom to be clean and Umi has no interest in that ;)

FilSan

bencebacsi replied at 2017-3-1 13:25
Please all of you facing this adware/bloatware issue who have never flashed your phone with SP Flash ...

My UMI is new and is up to date. I did it in the normal way by OTA, this process seems to me that is something that it will void warranty and since there is people that already did it with no avail I prefer to wait for a formal update.
Also even if this process didn't void the warranty it seems to me that will compromise the current situation that we have. One of our claims is that we bought a new phone that after turned on will create this situation and that we never connected the phone with another device or allowed any other comand like usb debbug if we did this step it will mean that we connected for the first with another device and after that our claims wouldn't have any point.

martin9999

Ziggy replied at 2017-3-1 23:38
First of all to say it as clear as possible @bencebacsi : The Malware is INSIDE THE FIRMWARE UMI OFF ...

Zig You are absolutely correct. In my UMI Diamond X was the same file in another System image (Diamond has 64bit OS and Diamond X 32bit OS). The file spende.zip ist crypted in official ROM from UMI and also if you unpack the Partition SYSTEM.IMG you will not find it. This file will be decrypted in runtime and the result from virustotal is in image hier. I don't trust this phone and i sent it back to Amazon.

goldyau

So UMI...where is the new non-malvareous ROM??? Seriously this is bad bad PR for you...

Ziggy

Do you realy think they will release something like that ?

goldyau

Ziggy replied at 2017-3-16 03:11
Do you realy think they will release something like that ?

No , I am planning installation of your ROM during the weekend. But I still want to believe that they could be resonable and release new official ROM. And if they would do this, maybe I would buy some other phone from them or other chinese manuafacturer...

pdj

We are still waiting for unknow source taggle issue?! We are on March 2017!!!!!!!!!!!!!!! Is not possible!!!! When It Will be updable via OTA for everyone?!?!?!?!

martec

Ziggy replied at 2017-3-16 03:11
Do you realy think they will release something like that ?

problem that if not have new version we keep with security patch level of december forever.
google already released March 05 https://source.android.com/security/bulletin/2017-03-01.html