mbam_mtbr

Hi @uniguy, Well, that's a clever method to figure out the issue Glad you figured it out! Nathan

Hi @TheBeast, Timeline: ASAP Our developers are on the case. Hoping to have a solution as soon as we can. Sorry this isn't more exact. Nathan

HI @Daniel3618, Step one would be to uninstall/reinstall to see if that resolves the issue. If you are still having issues after that, let me know. Nathan

Hi @TheBeast, This is a known issue that we are diligently working on resolving. We apologize for the inconvenience. Nathan

Hi @uniguy, Are these ads appearing without an app, or out of no where? If you could send an Apps Report, I can look for Adware on your device. To send an Apps Report with Malwarebytes for Android use the following instructions. 1.Open the Malwarebytes for Android app. 2.Tap the Menu icon. 3. Tap Your apps. 4. Tap three lines icon in upper right corner. 5. Tap Send to support Choose an email app to send Apps Report. Your email app will open with the Apps Report included. Send the Apps Report to create a ticket. Private Message (PM) me the email used and/or the ticket number assigned. Nathan

Thanks for the Apps Report @MarcelBurger, @MAM is right, Adups is most likely the culprit. You can use this method to uninstall for current user (details in link below): https://forums.malwarebytes.com/topic/216616-removal-instructions-for-adups/ Warning: Make sure to read Restoring apps onto the device (without factory reset) in the rare case you need to revert/restore app. Use this/these command(s) during step 7 under Uninstalling Adups via ADB command line to remove: adb shell pm uninstall -k --user 0 com.adups.fota adb shell pm uninstall -k --user 0 com.adups.fota.sysoper Nathan

Hi @L_Wolf, Thanks for bringing this to our attention. I tracked down the issue and it has been resolved. It will no longer be detected in future database versions. Thanks again, Nathan

Hey Everyone, Official blog about this subject: Awakening the beast: BatMobi adware Nathan

Hi @MarcelBurger, If you could send me an Apps Report, I can look further into this issue. To send an Apps Report with Malwarebytes for Android use the following instructions. 1.Open the Malwarebytes for Android app. 2.Tap the Menu icon. 3. Tap Your apps. 4. Tap three lines icon in upper right corner. 5. Tap Send to support Choose an email app to send Apps Report. Your email app will open with the Apps Report included. Send the Apps Report to create a ticket. Private Message (PM) me the email used and/or the ticket number assigned. Nathan

Hi @L_Wolf, I checked all the latest versions of Adhell 3 from link provided, and nothing was detected. Any idea what version # you may have had installed? Nathan

Hi @MAM, Although unsupported, I don't see why it wouldn't work. Nathan

Hi @Lines, @kirklaz, and anyone else with a Xiaomi Redmi Note 5, I found two apps preinstalled on the Xiaomi Redmi Note 5 with BatMobi within the apps. The apps are: com.mi.android.globalpersonalassistant | App vault com.android.providers.downloads.ui | Downloads If you are still having issues with Ads in Google PLAY, you can use this method to uninstall for current user (details in link below): https://forums.malwarebytes.com/topic/216616-removal-instructions-for-adups/ Warning: Make sure to read Restoring apps onto the device (without factory reset) in the rare case you need to revert/restore app. Use this/these command(s) during step 7 under Uninstalling Adups via ADB command line to remove: adb shell pm uninstall -k --user 0 com.mi.android.globalpersonalassistant adb shell pm uninstall -k --user 0 com.android.providers.downloads.ui Nathan

Hi @jansen, Thanks for bringing this to our attention. This will be detected as Android/Adware.RXDroid in future database versions. Unfortunately, it's unrelated to the ad issues we have been having here. BUT, I'm getting a lot closer and hoping to find time to do some work on it soon here. Nathan

Hi Everyone, Just wanted to let everyone know I'm still looking into all the many layers of this issue. Just wondering though, are people still having this issue? It seems that for some it just went dark — suddenly no more ads. Nathan

Hi @jansen, The developers aren't necessarily at fault. It's not uncommon to add an Ad SDK to an app to help create revenue when the app is free. I think BatMobi just started acting aggressively out of the blue. This would explain why developers are unaware, and why many antimalware vendors don't detect. Nathan