Post: WARNING For Jailbroken iOS Users..
Options
04-18-2014, 07:05 PM
#1
Pixie Lott
Keep it MeLLo
Some pirate cydia repos have started to have something that sends your Apple ID n Pass to some randy site... THought i would post it in GD to get it out more
Context: Unflod.dylib is a malicious piece of software (that tries to steal your Apple ID and password) that has shown up on a few jailbroken devices, and everyone suspects that it's installed with pirated packages, but nobody yet knows where it comes from.
Copy n Paste from the Cydia Dev Via Reddit - You must login or register to view this content.
1- Use iFile (or another way to access your filesystem) to navigate to /Library/MobileSubstrate/DynamicLibraries/ and check to see if Unflod.dylib and Unflod.plist are in the list of files in that directory. (If you aren't used to navigating the filesystem with iFile: open iFile, tap the back button at top left until you no longer get a back button, and then tap Library, tap MobileSubstrate, tap DynamicLibraries, and scroll down to see if the files Unflod.dylib and Unflod.plist are there.) If they exist, continue with the rest of these instructions. If you only see other .dylib and .plist files with other names, that's fine and normal.
2- Open up Cydia and install OpenSSH, if you don't have it installed already. Follow these instructions to SSH into your device from your computer, and then follow these instructions to change your root and mobile passwords. (I would like to recommend using MobileTerminal from your device instead, since that's easier, but it doesn't seem to support copy and paste.)
3- At the command line, preferably as root, paste this command (which is basically a special search command): grep -Eri "P5KFURM8M8|Unflod" /System /Library /usr /var
4- Tap Return, and wait for several minutes. Don't let the phone go to sleep (or the search may stop), just let the results happen - it'll print out a bunch of messages.
-5 After it stops printing out messages (you can tell because you'll get a command prompt again, or if you don't know what a command prompt looks like, you can just tell because it'll stop printing out messages every few seconds), then select all of the results and copy them.
6- Paste these results into an email to yourself (or something like that). On your device, copy and paste the results into a new page in your Notes app.
7- Open up iFile (or another way to access your filesystem) and go to /var/lib/cydia/metadata.plist. Open this and copy and paste it into your Notes page along with the search results. Then select your whole Notes page and copy it.
8- Open up Cydia and search for Cyntact (or another package by saurik). Tap "Author" at the top of the page, and tap one of the options to email saurik. In this email, change the subject line to "Unflod data", and then paste your collected info at the top of the email. Paste it carefully so that you don't accidentally delete the log files that Cydia has already automatically attached to the email. Send it!
9- Use iFile (or another way to access your filesystem) to delete Unflod.dylib and Unflod.plist in /Library/MobileSubstrate/DynamicLibraries/
Context: Unflod.dylib is a malicious piece of software (that tries to steal your Apple ID and password) that has shown up on a few jailbroken devices, and everyone suspects that it's installed with pirated packages, but nobody yet knows where it comes from.
Copy n Paste from the Cydia Dev Via Reddit - You must login or register to view this content.
1- Use iFile (or another way to access your filesystem) to navigate to /Library/MobileSubstrate/DynamicLibraries/ and check to see if Unflod.dylib and Unflod.plist are in the list of files in that directory. (If you aren't used to navigating the filesystem with iFile: open iFile, tap the back button at top left until you no longer get a back button, and then tap Library, tap MobileSubstrate, tap DynamicLibraries, and scroll down to see if the files Unflod.dylib and Unflod.plist are there.) If they exist, continue with the rest of these instructions. If you only see other .dylib and .plist files with other names, that's fine and normal.
2- Open up Cydia and install OpenSSH, if you don't have it installed already. Follow these instructions to SSH into your device from your computer, and then follow these instructions to change your root and mobile passwords. (I would like to recommend using MobileTerminal from your device instead, since that's easier, but it doesn't seem to support copy and paste.)
3- At the command line, preferably as root, paste this command (which is basically a special search command): grep -Eri "P5KFURM8M8|Unflod" /System /Library /usr /var
4- Tap Return, and wait for several minutes. Don't let the phone go to sleep (or the search may stop), just let the results happen - it'll print out a bunch of messages.
-5 After it stops printing out messages (you can tell because you'll get a command prompt again, or if you don't know what a command prompt looks like, you can just tell because it'll stop printing out messages every few seconds), then select all of the results and copy them.
6- Paste these results into an email to yourself (or something like that). On your device, copy and paste the results into a new page in your Notes app.
7- Open up iFile (or another way to access your filesystem) and go to /var/lib/cydia/metadata.plist. Open this and copy and paste it into your Notes page along with the search results. Then select your whole Notes page and copy it.
8- Open up Cydia and search for Cyntact (or another package by saurik). Tap "Author" at the top of the page, and tap one of the options to email saurik. In this email, change the subject line to "Unflod data", and then paste your collected info at the top of the email. Paste it carefully so that you don't accidentally delete the log files that Cydia has already automatically attached to the email. Send it!
9- Use iFile (or another way to access your filesystem) to delete Unflod.dylib and Unflod.plist in /Library/MobileSubstrate/DynamicLibraries/
The following 6 users say thank you to Pixie Lott for this useful post:
04-18-2014, 07:12 PM
#2
Eon
Little One
Originally posted by Pixie
Some pirate cydia repos have started to have something that sends your Apple ID n Pass to some randy site... THought i would post it in GD to get it out more
Context: Unflod.dylib is a malicious piece of software (that tries to steal your Apple ID and password) that has shown up on a few jailbroken devices, and everyone suspects that it's installed with pirated packages, but nobody yet knows where it comes from.
Copy n Paste from the Cydia Dev Via Reddit - You must login or register to view this content.
1- Use iFile (or another way to access your filesystem) to navigate to /Library/MobileSubstrate/DynamicLibraries/ and check to see if Unflod.dylib and Unflod.plist are in the list of files in that directory. (If you aren't used to navigating the filesystem with iFile: open iFile, tap the back button at top left until you no longer get a back button, and then tap Library, tap MobileSubstrate, tap DynamicLibraries, and scroll down to see if the files Unflod.dylib and Unflod.plist are there.) If they exist, continue with the rest of these instructions. If you only see other .dylib and .plist files with other names, that's fine and normal.
2- Open up Cydia and install OpenSSH, if you don't have it installed already. Follow these instructions to SSH into your device from your computer, and then follow these instructions to change your root and mobile passwords. (I would like to recommend using MobileTerminal from your device instead, since that's easier, but it doesn't seem to support copy and paste.)
3- At the command line, preferably as root, paste this command (which is basically a special search command): grep -Eri "P5KFURM8M8|Unflod" /System /Library /usr /var
4- Tap Return, and wait for several minutes. Don't let the phone go to sleep (or the search may stop), just let the results happen - it'll print out a bunch of messages.
-5 After it stops printing out messages (you can tell because you'll get a command prompt again, or if you don't know what a command prompt looks like, you can just tell because it'll stop printing out messages every few seconds), then select all of the results and copy them.
6- Paste these results into an email to yourself (or something like that). On your device, copy and paste the results into a new page in your Notes app.
7- Open up iFile (or another way to access your filesystem) and go to /var/lib/cydia/metadata.plist. Open this and copy and paste it into your Notes page along with the search results. Then select your whole Notes page and copy it.
8- Open up Cydia and search for Cyntact (or another package by saurik). Tap "Author" at the top of the page, and tap one of the options to email saurik. In this email, change the subject line to "Unflod data", and then paste your collected info at the top of the email. Paste it carefully so that you don't accidentally delete the log files that Cydia has already automatically attached to the email. Send it!
9- Use iFile (or another way to access your filesystem) to delete Unflod.dylib and Unflod.plist in /Library/MobileSubstrate/DynamicLibraries/
Context: Unflod.dylib is a malicious piece of software (that tries to steal your Apple ID and password) that has shown up on a few jailbroken devices, and everyone suspects that it's installed with pirated packages, but nobody yet knows where it comes from.
Copy n Paste from the Cydia Dev Via Reddit - You must login or register to view this content.
1- Use iFile (or another way to access your filesystem) to navigate to /Library/MobileSubstrate/DynamicLibraries/ and check to see if Unflod.dylib and Unflod.plist are in the list of files in that directory. (If you aren't used to navigating the filesystem with iFile: open iFile, tap the back button at top left until you no longer get a back button, and then tap Library, tap MobileSubstrate, tap DynamicLibraries, and scroll down to see if the files Unflod.dylib and Unflod.plist are there.) If they exist, continue with the rest of these instructions. If you only see other .dylib and .plist files with other names, that's fine and normal.
2- Open up Cydia and install OpenSSH, if you don't have it installed already. Follow these instructions to SSH into your device from your computer, and then follow these instructions to change your root and mobile passwords. (I would like to recommend using MobileTerminal from your device instead, since that's easier, but it doesn't seem to support copy and paste.)
3- At the command line, preferably as root, paste this command (which is basically a special search command): grep -Eri "P5KFURM8M8|Unflod" /System /Library /usr /var
4- Tap Return, and wait for several minutes. Don't let the phone go to sleep (or the search may stop), just let the results happen - it'll print out a bunch of messages.
-5 After it stops printing out messages (you can tell because you'll get a command prompt again, or if you don't know what a command prompt looks like, you can just tell because it'll stop printing out messages every few seconds), then select all of the results and copy them.
6- Paste these results into an email to yourself (or something like that). On your device, copy and paste the results into a new page in your Notes app.
7- Open up iFile (or another way to access your filesystem) and go to /var/lib/cydia/metadata.plist. Open this and copy and paste it into your Notes page along with the search results. Then select your whole Notes page and copy it.
8- Open up Cydia and search for Cyntact (or another package by saurik). Tap "Author" at the top of the page, and tap one of the options to email saurik. In this email, change the subject line to "Unflod data", and then paste your collected info at the top of the email. Paste it carefully so that you don't accidentally delete the log files that Cydia has already automatically attached to the email. Send it!
9- Use iFile (or another way to access your filesystem) to delete Unflod.dylib and Unflod.plist in /Library/MobileSubstrate/DynamicLibraries/
Thanks man. Appreciate the info. Good to know with my JB iPad Mini.
04-18-2014, 08:04 PM
#3
TheMightyMoJo
Rookie
Originally posted by Pixie
Some pirate cydia repos have started to have something that sends your Apple ID n Pass to some randy site... THought i would post it in GD to get it out more
Context: Unflod.dylib is a malicious piece of software (that tries to steal your Apple ID and password) that has shown up on a few jailbroken devices, and everyone suspects that it's installed with pirated packages, but nobody yet knows where it comes from.
Copy n Paste from the Cydia Dev Via Reddit - You must login or register to view this content.
1- Use iFile (or another way to access your filesystem) to navigate to /Library/MobileSubstrate/DynamicLibraries/ and check to see if Unflod.dylib and Unflod.plist are in the list of files in that directory. (If you aren't used to navigating the filesystem with iFile: open iFile, tap the back button at top left until you no longer get a back button, and then tap Library, tap MobileSubstrate, tap DynamicLibraries, and scroll down to see if the files Unflod.dylib and Unflod.plist are there.) If they exist, continue with the rest of these instructions. If you only see other .dylib and .plist files with other names, that's fine and normal.
2- Open up Cydia and install OpenSSH, if you don't have it installed already. Follow these instructions to SSH into your device from your computer, and then follow these instructions to change your root and mobile passwords. (I would like to recommend using MobileTerminal from your device instead, since that's easier, but it doesn't seem to support copy and paste.)
3- At the command line, preferably as root, paste this command (which is basically a special search command): grep -Eri "P5KFURM8M8|Unflod" /System /Library /usr /var
4- Tap Return, and wait for several minutes. Don't let the phone go to sleep (or the search may stop), just let the results happen - it'll print out a bunch of messages.
-5 After it stops printing out messages (you can tell because you'll get a command prompt again, or if you don't know what a command prompt looks like, you can just tell because it'll stop printing out messages every few seconds), then select all of the results and copy them.
6- Paste these results into an email to yourself (or something like that). On your device, copy and paste the results into a new page in your Notes app.
7- Open up iFile (or another way to access your filesystem) and go to /var/lib/cydia/metadata.plist. Open this and copy and paste it into your Notes page along with the search results. Then select your whole Notes page and copy it.
8- Open up Cydia and search for Cyntact (or another package by saurik). Tap "Author" at the top of the page, and tap one of the options to email saurik. In this email, change the subject line to "Unflod data", and then paste your collected info at the top of the email. Paste it carefully so that you don't accidentally delete the log files that Cydia has already automatically attached to the email. Send it!
9- Use iFile (or another way to access your filesystem) to delete Unflod.dylib and Unflod.plist in /Library/MobileSubstrate/DynamicLibraries/
Context: Unflod.dylib is a malicious piece of software (that tries to steal your Apple ID and password) that has shown up on a few jailbroken devices, and everyone suspects that it's installed with pirated packages, but nobody yet knows where it comes from.
Copy n Paste from the Cydia Dev Via Reddit - You must login or register to view this content.
1- Use iFile (or another way to access your filesystem) to navigate to /Library/MobileSubstrate/DynamicLibraries/ and check to see if Unflod.dylib and Unflod.plist are in the list of files in that directory. (If you aren't used to navigating the filesystem with iFile: open iFile, tap the back button at top left until you no longer get a back button, and then tap Library, tap MobileSubstrate, tap DynamicLibraries, and scroll down to see if the files Unflod.dylib and Unflod.plist are there.) If they exist, continue with the rest of these instructions. If you only see other .dylib and .plist files with other names, that's fine and normal.
2- Open up Cydia and install OpenSSH, if you don't have it installed already. Follow these instructions to SSH into your device from your computer, and then follow these instructions to change your root and mobile passwords. (I would like to recommend using MobileTerminal from your device instead, since that's easier, but it doesn't seem to support copy and paste.)
3- At the command line, preferably as root, paste this command (which is basically a special search command): grep -Eri "P5KFURM8M8|Unflod" /System /Library /usr /var
4- Tap Return, and wait for several minutes. Don't let the phone go to sleep (or the search may stop), just let the results happen - it'll print out a bunch of messages.
-5 After it stops printing out messages (you can tell because you'll get a command prompt again, or if you don't know what a command prompt looks like, you can just tell because it'll stop printing out messages every few seconds), then select all of the results and copy them.
6- Paste these results into an email to yourself (or something like that). On your device, copy and paste the results into a new page in your Notes app.
7- Open up iFile (or another way to access your filesystem) and go to /var/lib/cydia/metadata.plist. Open this and copy and paste it into your Notes page along with the search results. Then select your whole Notes page and copy it.
8- Open up Cydia and search for Cyntact (or another package by saurik). Tap "Author" at the top of the page, and tap one of the options to email saurik. In this email, change the subject line to "Unflod data", and then paste your collected info at the top of the email. Paste it carefully so that you don't accidentally delete the log files that Cydia has already automatically attached to the email. Send it!
9- Use iFile (or another way to access your filesystem) to delete Unflod.dylib and Unflod.plist in /Library/MobileSubstrate/DynamicLibraries/
Thanks for the info Pixie :luv: Didnt have it on my device thank god
04-19-2014, 08:09 AM
#8
FoolishAmoeba
Banned
Copyright © 2026, NextGenUpdate.
All Rights Reserved.
