Malware not uninstalling.

[Zooferret]

I bought a tablet from **** Smith in December last year during their closing down sale. I bought it to use as an electronic flight bag for keeping documents for my flights on. After about a month I found some apps that I had not installed on my device. I downloaded AVG anti-virus and Malwarebytes to do a scan and I found a game was downloading Adware and there was some Malware. My anti-virus says that I am using a rooted system. I guess my tablet came rooted as I have not done anything to it. I took immediate action to try and delete the Malware in case some sensitive flight documents where released. I clicked uninstall and a Pop-up came up saying 'Are you sure you want to uninstall Online Update?'
I clicked OK and after a couple of seconds it comes back 'Uninstall unsuccessful'. I went to the settings and apps. I found Online Update and force stopped it but Disable was grayed out.

Is 'Online Update' a system program and why is it infected?

How do I fix it/uninstall it?

-Zooferret

P.S. I have attached a picture of my scan. I have slightly cropped it to hide and personal information

 

[Golfdriver97]

Welcome to the forums. This might be a false flag, but highly unlikely if both reported it. What device is it? You could try installing Titanium Backup from Play and freezing the app. This should stop it from doing anything else.

 

[kramer5150]

AVG and Malwarebytes are MUST HAVES for PC/windows... they both have saved many of my PCs numerous times. I would trust their findings. Is there a way to see the actual executable file name thats associated with this "Online Update"? You could then paste it into a google search and see what pops up. If it is indeed malicious there will be www discussions on the matter.

Is it possible to turn off its permissions?... That might help throttle down whatever its doing maliciously. If it is truly needed for Android system, you could one at a time turn back on those permissions that are truly needed.

 

[Zooferret]

I have a Lazer 10.1" tablet valued a $159 but was marked down to $60 due to their administration sale. I looked into Titanium Backup and that says I have not rooted my tablet.

Should I look into rooting it and having a go?

Thanks for your help,
-Zooferret

 

[Rukbat]

PUPs (potentially unwanted programs) are almost always false positives. Towel Root and Xposed are both listed by Avast (and they're not unwanted).

Online Update may be the tab's app to get over the air updates - a system app you don't want to get rid of.

Download Root Checker to see if the tab is actually rooted.

 

[Zooferret]

Yeah guys I have done some research into that virus and it turns out to be a virus that is 'IMPOSSIBLE' to remove.

Here is a link to the Daily Mail news report:
Hackers reveal Android trojan malware that is IMPOSSIBLE to remove | Daily Mail Online

Turns out it cant be removed...

Anyway, thankyou to all who have helped,
-Zooferret

 

[Golfdriver97]

Yeah guys I have done some research into that virus and it turns out to be a virus that is 'IMPOSSIBLE' to remove.

Here is a link to the Daily Mail news report:
Hackers reveal Android trojan malware that is IMPOSSIBLE to remove | Daily Mail Online

Turns out it cant be removed...

Anyway, thankyou to all who have helped,
-Zooferret

What app/game did this come from? I want to see if I can get my Nexus 5 infected and if reflashing a stock ROM will get rid of it.

 

[Zooferret]

I'm not sure. It was a new tablet and I basically went to my apps and went Install, Install, Install...

Sorry about that,
-Zooferret

 

[treetopsranch]

Malware "is then released to a third-party store" (Quote from above link)

Another reason to be careful about downloading stuff from third parties.