Automatic

F-Secure's Mobile Security product blocks installation of this program with default settings (starting from database version 362).

Manual Removal

Monitoring-Tool:Android/SpyBubble.A can be uninstalled by following the steps below:

• Go to Settings
• Go to Applications
• Go to Manage Applications
• Select "radio"
• Press "Clear data"
• Press "Uninstall"
• Select "OK" when asked for confirmation and wait

click on image for a larger view

Monitoring-Tool:Android/SpyBubble.A monitors incoming and outgoing phone calls and SMS messages, as well as the contact information of other parties.

It can also monitor added photos, visited URLs, and the GPS location of the phone. All this information may be uploaded to a remote server.

Installation

Upon installation, the application waits for the next reboot of the device to activate all of its components.

On reboot, it prompts the user with the terms and conditions, as well requesting the license key for the product, before it actually starts all the monitoring components.

click on image for a larger view

If the installation is successful, the program does not display an icon in the phone's application menu. Users may detect its presence by checking the "Manage applications" menu under Settings for the application name radio.

Activity

Once active, the monitoring components will silently run in the background as services.

click on image for a larger view

The program uses the following permissions to perform these activities:

click on image for a larger view

The application gathers a lot of information from the phone, as well as about the user's activities:

All the gathered information may be sent at interval to a remote server (http://[...].spybubble.com/[...]) using a HTTP post operation without the users knowledge.

The information may also be accessed by the party that installed the app on the phone (if it was not installed by the primary user).