Is Fotaprovider a troyan?

[REDACTED]

I got a notification of malware found on Fotaprovider but I can't remove it with Avast Online Security or in Safe Mode. Is Fotaprovider a threat or is it just a false alarm?

[Asyn]

Test the app at VT (https://www.virustotal.com) and post the link to the result here.

[Eddy]

In order to remove Fotaprivider, you will need to root the phone.

It comes with phones made in China.

[polonus]

Eddy is 100% right, read here for the full story: https://forums.malwarebytes.com/topic/168824-malware-found-android-trojan-dropper-cant-be-removed/

Way to do it, credits go to "saidshow" there

Hi Guys,

I had the same issue. I used 'package name viewer' to identify a second name for the package. I then used the steps below to remove:

mobile@ubuntu:~/android/sdk/platform-tools$ adb shell

shell@klte:/ $ su

root@klte:/ # mount -o rw,remount /system

root@klte:/ # rm -rf /system/priv-apps/com.android.push.alarm.apk

root@klte:/ # rm -rf /system/priv-apps/com.android.dserw.ds.apk               

root@klte:/ # rm -rf /data/data/com.android.push.alarm                       

root@klte:/ # rm -rf /data/data/com.android.dserw.ds                         

root@klte:/ # mount -o ro,remount /system

root@klte:/ # exit

shell@klte:/ $ exit

Crap like this and/or insecure IoT devices should be taken from the market and the cybercriminals that allow such schemes punished by authorities.

polonus

[Pondus]

CHINESE ANDROID SMARTPHONES COME EQUIPPED WITH MALWARE
http://www.digitaltrends.com/mobile/chinese-android-smartphones-come-equipped-malware/

http://www.makeuseof.com/tag/chinese-smartphone-might-serious-security-problem/

http://news.softpedia.com/news/24-chinese-android-smartphones-models-come-with-pre-installed-malware-490930.shtml

Massive Amount of Users' Data Sent to Chinese Servers
http://forum.ulefone.com/thread-596-1-1.html

https://virustotal.com/en/file/cbdea7d48daf9448a931f6ae2acda5b9d756b38466c48f9467a618340f3b73e3/analysis/