FORUMS

Cubot Manito (Real Reviews & Discussion) 5" HD, MT6737, 3Gb+16Gb, 2350mAh

1,370 posts
Thanks Meter: 654
 
By megthebest, Account currently disabled on 8th October 2016, 09:38 PM
Thread Closed Email Thread
18th January 2017, 06:07 PM |#11  
OP Account currently disabled
Thanks Meter: 654
 
Donate to Me
More
Quote:
Originally Posted by wurtelll

After updating to that version:

  • Android security patch level: 5 November 2016
  • Baseband version: MOLY.LR9.W1444.MD.LWTG.MP.V88.P17,2016/12/05 11:29
  • Kernel version: 3.18.19+ [email protected] #1 Tue May 17 10:40:28 CST 2016
  • Build number: CUBOT_6093C_MANITO_V11_20161205

Thanks, so is a good news, expecially for security patch update.. please check with malwarebytes if adups-fota is updated and no malware
19th January 2017, 06:46 AM |#12  
Junior Member
Thanks Meter: 6
 
More
I did a scan and malwarebytes found no problems.
I have since also noticed that after this update the notification LED is working! That was one thing I missed previously. It's still very dim but at least I can see if there are notifications without having to activate the screen.
19th January 2017, 02:07 PM |#13  
Junior Member
Thanks Meter: 14
 
More
Everything is ok now
I got my phone on 31/12/2016 and it had installed the previous ROM. After I used my phone for few hours I realized it was installing applications without my permission. Also every time I was using Chrome it was opening itself tabs with SMS premium services. I upgraded the ROM with the links provided on the Cubot forum and now everything seems ok.
Also take a look at that: If you use ES file explorer and search in system apps with the keyword "opera" you will find an application with the name "Opera Mobile Store" signed by *hanhai.hanhai_OHQ. It doesn't look like an official app from Opera. I did some research on google and found out it's probably something suspicious. Malwarebytes and AVG didn't show anything but just in case I deactivated this app. That was the least i could do because I didn't root my phone yet.
Opera Mobile Store
20th January 2017, 02:18 PM |#14  
Junior Member
Thanks Meter: 14
 
More
Quote:
Originally Posted by wurtelll

After updating to that version:

  • Android security patch level: 5 November 2016
  • Baseband version: MOLY.LR9.W1444.MD.LWTG.MP.V88.P17,2016/12/05 11:29
  • Kernel version: 3.18.19+ [email protected] #1 Tue May 17 10:40:28 CST 2016
  • Build number: CUBOT_6093C_MANITO_V11_20161205

I just realized that after this update my current ROM is "CUBOT_6093C_MANITO_V09_20161114_215728" and not the V11_20161205 like yours
Any idea why I didn't get the latest one although I downloaded the same link?

EDIT1: I forgot to mention that before this update I tried a couple days ago this method forum.cubot. net/viewtopic.php?f=21&t=1166 through my PC! (sorry for the spaces but forum security didn't let me post the link)

EDIT2: Finally I managed to update my ROM. The reason I couldn't do it before was because I had to clean the dalvik memory first. After that the update occured without problems.
Now I've got another question and if anyone knows I would happy to get an explanation. The dialer lacks the feature of direct video calls through the operator. I mean I want to video call someone without using my data plan and apps like Viber or Skype, etc. Why Cubot "forgot" to add this option? I believe it's something very important because front camera isn't for selfies only!
8th March 2017, 05:24 PM |#15  
Junior Member
Thanks Meter: 6
 
More
In February I got a notification on my phone that an update was available. "Great!" I thought. The upgrade rebooted during the "optimizing apps" phase after about every 20 apps, which I've never seen on any Android device before. After it finally completed, the version is shown as:
  • Android security patch level: 5 February 2017
  • Baseband version: MOLY.LR9.W1444.MD.LWTG.MP.V88.P27
  • Kernel version: 2.18.19+
  • Build number: CUBOT_6093C_MANITO_V14_20170214
which looked good.

HOWEVER!
After this update, I suddenly noticed popup ads appearing at the bottom of the screen, no matter what app was active, see the two screenshots. Also, about once a day some app I never asked for is installed automatically without any questions! The last couple of days it was UberEATS, before some so-called cleanup app that wanted to remove caches etc. I also get the setup opened on the Security page and a message "Please enable Unknown sources, thx"... the b*st*rds...

Any idea how to fix this? I first suspected a couple of apps I had installed after the upgrade, but those are gone now. Might a factory reset help, or could it really be that Cubot is doing this in the firmware?

The Following 2 Users Say Thank You to wurtelll For This Useful Post: [ View ] Gift wurtelll Ad-Free
8th March 2017, 05:32 PM |#16  
Junior Member
Thanks Meter: 14
 
More
Hello wurtelll. I did the same OTA upgrade and everything seems ok. No pop up ads or installing of unwanted apps without my permission. I would suggest you to hard reset. Also smth weird. Before this update, the OTA upgrade app was recognized as virus from the AVG antivirus, but now after the last update the OTA app is ok.
The Following 2 Users Say Thank You to beertodeath For This Useful Post: [ View ] Gift beertodeath Ad-Free
9th March 2017, 06:49 AM |#17  
Junior Member
Thanks Meter: 6
 
More
Hi beertodeath, good news that you don't have any problems, that's restored my faith in Cubot a bit. I only installed apps from the Google play store, so apparently that's not 100% safe... I've gone ahead and did a factory reset, and reinstalled my essential apps. Now I'll wait for a week to see if anything weird starts to reappear.
The Following User Says Thank You to wurtelll For This Useful Post: [ View ] Gift wurtelll Ad-Free
15th March 2017, 11:56 AM |#18  
Junior Member
Thanks Meter: 6
 
More
It's been about a week since I did the factory reset and I'm happy to say that I've not noticed any strange things going on, so apparently some app I had installed was the problem. Malwarebytes didn't see any problems though, and I only installed via the Googe Play Store, so that isn't a guarantee for safety, unfortunately...
The Following User Says Thank You to wurtelll For This Useful Post: [ View ] Gift wurtelll Ad-Free
17th March 2017, 06:31 PM |#19  
Junior Member
Thanks Meter: 14
 
More
That's strangely funny but now my phone has the same spam ads like wurtell's one. I didn't even download any new app and the last two days I get spam ads in my screen and in addition some times when I enter the PlayStore i get redirected to random apps like "Super File Manager (Explorer)". I also found on a Russian forum that many people have the same problem. It's pretty strange that almost all owners of Manito started having these spam ads at the same time. I started believing that Manito has built in malware scripts.

Anyway, I contacted with Cubot and they asked me the debugging and logs from MTKlogger and I already provided them with these. I don't want to factory reset my phone again because I already did many resets since December and I hate backing up from the beginning all my settings.
I hope they will find a solution soon and finally make a clean ROM, or even better Cubot will get Google certification (ho ho ho).
The Following User Says Thank You to beertodeath For This Useful Post: [ View ] Gift beertodeath Ad-Free
18th March 2017, 09:10 AM |#20  
Junior Member
Thanks Meter: 1
 
More
cubot manito is my fourth chinaphone
cubot manito is my fourth chinaphone. Only one of them (Oukitel u8) was clean. The other: umi diamond and THL T9 pro contained spy software in official updates. The same problem with Cubot Manito now.
The Following User Says Thank You to martin99999 For This Useful Post: [ View ] Gift martin99999 Ad-Free
19th March 2017, 12:05 AM |#21  
Junior Member
Thanks Meter: 1
 
More
Hi Wurtell,

Glad to read your post! I have exactly the same issue with Cubot Rainbow. Bought in November, and 1 month later I observed strange behaviour
--- App installed automatically, no confirmation by me (Wish was installed, later mobile.de)
--- Ad-Popups in WhatsApp, Messenger, Microsoft Outlook
--- Ad-Popups after unlocking the phone
--- Redirecting in Chrome, (i was opening wikipedia and redirect to some get-rich-really-fast page). The Redirecting was leading through multiple Sites (like I visisted Wikipedia, than Chrome opened page A for ~1 second, than page B for ~1 second and than it laneded on page C. One time i also got an error that Chrome could not open a News Website because it was "redirecting to much")
--- Everytime I opene play store I was automatically redirect to a random app page without any user interaction
--- I noticed strange file names in the internal downloads folder with random names like "SAJD2388KDASDLOP" that could not be opened. After deletion, files occured again on next day

I tried several Virus and Malewarescanner. One claimed that SystemUI is a maleware (but com.android.systemui is a legal system process, isn't it?), the other found nothing. Clearing Browser Cache and deleting all custom apps did nothing. I than decied to do a refactory reset.
Issues startet again after 1 month (I only installed WhatsApp, Microsofts HereMaps, and public transportation apps from official companies).

I did some research. The phone has a package com.adups.fota and onther adups package, which has been recently reported as malicious by kryptowire. They claim the app can install software from remote and is also sending back private data to chinese servers. I also read some reviews in Cubot Forum and on amazon.co.uk that are complaining about Maleware. There seemed to be a malicious YouTube app on another Cubot device and other people have complained about the FOTA app and suspicious network connections to China. I installed a monitoring tool and it showed several connections to Signapore and Amazon (i guess AWS instances), although i had not installed any Amazon app and was not browsing.

I did a factory reset again, and after reinstalling i have monitored that "com.mediatek.thermalmanager" was establishing internet connection. Why should a tool that should observe temperatures (at least that what it sounds like) establish internet connections? Thats also suspicious.

UPDATE: Just after posting this, NetGuard has notified me that it has blocked SystemUI from connection to some southeast Amazon Server with IP 54.169.134.231. Its trying to connect there every 10 seconds at the moment. Why is System UI connecting to Amazon Servers?

Based on my experience, and recent articles about malicious chinese phones I'm pretty shure the maleware was already on my phone when I bought it. It also seems to wait like a month till it gets activated, so it does not raise so much attention. As you said, your first thought that some malicious app might cause it ... i thought the same...

Im trying to resend back this thing. But i just realised that although I have purchased it was Amazons Prime Same Day Delivery in Europe the seller is placed in china . Guess I'm not getting my money back for this weird phone :/

I have now installed a firewall and opera and i'm blocking all app internet access by default. Hope that will prevent me from maleware till i get a new phone. If you have similiar observations please share!
The Following User Says Thank You to Silentium92 For This Useful Post: [ View ] Gift Silentium92 Ad-Free
Thread Closed Subscribe to Thread
Previous Thread Next Thread
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes