Twitter user Fennikami stirred up quite a storm by making the dylib code of AppValley and TweakBox public. Are these hacked app installers really safe? Let’s find out below.
Table of Contents
What Fennikami posted on Reddit
Heya, so I decided to do some digging on AppValley’s Spotify++ IPA comparing that to original Spotify++ IPA from Julio Verne (the actual dev behind Spotify++).
Well… F*CK.
AppValley team injected their own sketchy code into it.
AppValley’s IPA on the left, original IPA on the right. Files in red are these that are not in original IPA (hence the red \”X\” on the right, which means these files exist only in AppValley’s IPA).
See this “dylib.dylib” file on the left? That’s dynamic library, and that’s what developers (or hackers) use for code injection (among other sketchy things).
I currently don’t have a Mac (or Hackintosh, for that matter; will install macOS soon tho) so I can’t use dylib disassembler right now, but I tried to get at least some glance at what’s going on there.
And that’s what I found:
- \”Shenzhen Yunxun Technology Co., Ltd.\” certificate (the one AppValley uses) embedded into *.dylib for code signature reasons, probably.
- Bits of advertisement code (1)
- Bits of advertisement code (2)
- XCode user path (and username \”justin\”), header files (*.h), and dylib build references.
- Another \”justin\” username mention.
- Username \”justin\” is mentioned at least 14 times in this *.dylib.
So, as you can see, this dylib is mostly used for advertisement purposes (i. e. for injecting ads into AppValley’s apps), albeit there’s probably more to it (since I can’t reverse/disassemble entire dylib right now), and it was build by user named “justin” who keeps his builds and source code under “/Users/justin/Desktop/AppValley” (on macOS).
There’s a chance that this library could link to Apple’sprivate framework called IOSurface which allows it to record your entire screen without noticing you even when the app is running in background (this will get your app banned on App Store, but that’s the thing, it’s not App Store and there’s no moderation).
There’s a chance this app might collect your passwords. There’s a chance this app might do some sketchy s*it too.
So, what can I say?
Justin, it’s a really sketchy thing to do.
Draw your own conclusions, guys.
Fennikami also posted the following screenshots.
Fennikami warns AppValley and TweakBox users
If you use AppValley or TweakBox or used them before — you should remove every app you got from them, and then delete their profile at Settings — General — Profiles (under “Enterprise Apps”; if it’s there).
If you’re not on the latest iOS 11.4+ (or iOS 12 beta) — restore your iPhone via DFU mode (don’t reset it via Settings since you’ll have to enter your Apple ID password) and then change ALL of your passwords you ever used on your iPhone, and double-check your banking accounts.
If you believe your device was hacked or you need any type of support/help regarding AppValley and TweakBox (and other services too) — reach out to me via Reddit.
PMs/comments. Don’t hesitate to, I’ll reply ASAP.
Also, follow me on Twitter, I asked AppValley and TweakBox why they’re doing this sh*t there and I’ll keep you updated there too.
If you’re on iOS 11.2 — 11.3.1 (or any iOS version jailbreakable via iOS app) and you never used AppValley/TweakBox — stay away from ANY codesigning service, including AppValley and Tweakbox!
They might silently jailbreak your iPhone/iPad/iPod and gain full control over it. If you used AppValley/TweakBox and any other similar app — restore your device via DFU immediately and change all of your passwords you used on your device.
Tweakbox does the same thing, will make a similar post about it soon too.
- Update 1 – Just want to let you guys know — I backed up old AppValley and Tweakbox IPAs (before my post gained their attention and they had a chance to remove the shady code from their dylibs). PM me if you need one.
- Update 2 – So, AppValley just removed their tweet about my Reddit post. And TweakBox dude (the one who claimed they use safe ads) removed his comments too. Why would they?
- Update 3 – AppValley team just refused to give me their dylib source code so I can get it checked. And they also deleted that tweet. Shady af.
- Update 4 – TweakBox dev ItsNash0 won’t reply to my Reddit PM where I asked him to remove malicious dylibs from TweakBox apps.
- Update 5 – TweakBox team refused to give their dylib sources too.
Official AppValley and TweakBox statement regarding hacked dylibs
Colin, the administrator of AppValley, posted an official statement on behalf of AppValley and TweakBox regarding the hacked dylib fiasco.
Almost all of the popular installers, including AppValley and TweakBox, rely on advertisements to generate revenue.
Advertisement revenue allows them to cover hosting and server costs and keep the service free for everyone. For those who don’t know, enterprise certificates cost a bomb and allow the users to use signed apps without paying a penny.
Adding advertisements to apps involves manual injection of new code into existing applications and tweaks.
This method is perfectly safe and secure unless a developer decides to sneak in some shady code. Moreover, no service can hurt your iPhone or iPad without a powerful low-level exploit.
If you do not have a jailbreak, you shouldn’t worry too much about these hacked apps.
Our take
AppValley and TweakBox are tried-and-tested package managers and shouldn’t pose any threat to your device.
TutuApp and other Chinese installers do harvest user data through spyware so I suggest staying away from them for obvious reasons.
With that being said, the safest route is obviously to use paid signing services or jailbreak tweaks.
If you already have a jailbreak, you can simply install Ext3nder Installer tweak and use it in conjunction with AppSync for all your signing needs.
As always, don’t forget to perform your due diligence before you download a shiny new installer on your iPhone.
If you are still unsure which installers are safe, just drop a comment below.
For more sideloading news and updates, follow us on Twitter and Facebook.
hey g, a few weeks ago i downloaded appvalley, downloaded and trusted its profile, and downloaded and trusted app on there such as spotify++ and minecraft. a week after using appvalley i deleted the apps and appvalley profile.. as far as reading from the comments, you responded to most of them by saying to deleting appvalley/apps and it should be fine. but in the article you also stated that i should perform a dfu and change my passwords if i ever used appvalley, which i did. you also said you don’t recommend downloading from any of these installers in one of the comments, yet you were saying appvalley/tweakbox were safe. responses were inconsistent and left me confused.
so what do i really do ??
Safe or not, there are two sides of it
1.You download the application in unsafe places, then of course you will feel frustrated.
2. You download TweakBox and AppValley on tutu application in prestigious places. Then of course you will have a good experience.
Ignition still safe? What about iosninja?
Yes, Ignition is still alive and kicking and, of course, safe.
Sorry but recently i had downloaded Minecraft for my brother by appvalley, what should i do now?
I already deleted appvalley and minecraft is it safe now?
iOS Ninja is safe because they don’t inject any ads or their own dylibs.
So i just downloaded a game app(clash of clans) from TweakBox, forced me to log-in iosgg(this is where i find the game) while i launch the game. Do you think that this app is safe? Or in any condition, is it possible for them to get photos or any personal info from my iphone remotely just by downloading these apps?
Thank you,
Please don’t download anything from the TweakBox. They have been hella shady of late.
I have a friend who downloaded all sorts of apps from appvalley, and had it for a month. She deleted the profiles and such, but should she have to reset her phone via DFU Mode? I think she should, but checking with you to make sure
No, deleting them should be fine.
Hey man, you said that I could leave a reply and that you’ll respond, so I decided to give it a try. I’m not going to lie to you, I’m really scared. I was downloading my regular emulators again after their certification was revoked, but the iNDS emulator wouldn’t download, I tried many times, but still nothing. I came across TweakBox, and decided to download it, I accepted the terms and went into setting to verify everything. The app was downloaded and ready to use but I had second thoughts and deleted it before even opening it or downloading anything from it. Am I still at risk for any viruses? I have my banking info, as well as other personal information on my phone, and not only am I scared because of this whole TweakBox thing, but the iNDS not downloading after trying many times is also odd. A quick reply would be much appreciated, I feel as thought I’m in hot water right now.
An app not downloading is fine. Try using other installers.
So if i understand correctly. You are completely safe if you jailbreak your device and install tweaks/ hacked apps through cydia/sileo. Or is it better to just install them from tweakbox without jailbreak?
Also what is the best and safest source to download the uncover jailbreak 12.4 app if tweakbox isnt safe?
Thanks in advance
Jailbreaking is superior to sideloading/installers. If you have a jailbreakable firmware, then, by all means, jailbreak your iPhone. You can download it through Ignition.fun or just sideload the IPA using Impactor.
Can you please explain to us in detail why it’s safe to use the 2 apps that you mention because I’m still not convince.. after I downloaded app valley my phone got hot. is that normal?
Because they are run by legitimate developers.
hi there, why do you think that ignition is safe? on the other hand, rocket and cercube’s dev trusts tweakbox app to share his sideload apps. why do you think that tweakbox is unsafe?
Yes, Ignition is safe and has received no complaints so far. A lot of users, on the other hand, have noticed shady behavior after installing it.
My phone is not jail broken but the day after installing Tweakbox, all my games slowed down drastically. Is this linked ?
No, I don’t think game performance is affected by an external app. Try deleting TweakBox and retry.
Beware I used Spotify ++ from TweakBox b4. And only after I got it that after a while someone was using my account becuz it disconnects when I listen and onto the other user. Idk what it is, but raise some alarm for me.
That sounds creepy! Don’t use any of these installers, they have been very shady lately.
Is it safe to download MovieBoxPro and Spotify ++ from AppValley? Can either app spy on my screen while app is installed?
I have iPhone 8. Software version 12.2
iPhone is not jailbroken or anything..
I’ve already downloaded both 3 days ago. Any suggestions? I’m also new to all this so I just wanna know what I should do. Thanks
I would recommend using PandaHelper or Ignition. TweakBox and AppValley have become very shady lately.
OK. Thank you. What do I need to do now to get the 2 apps and AppValley off my phone permanently and keep them out of my business like credit card numbers and passwords ETC..
You can follow this tutorial.
Hi, Gian. I’ve done jailbreak and used these installers before. You mention Panda Helper and Ignition a lot. Are they the safest ones, can/should you download their requested profile? Please let me know, thank you.
Hello, Sebastian. Yes, Panda Helper is good but Ignition is the best by far. So I recommend using Ignition.
It says that the profile for panda helper lite is not verified. What do I do? Here is the signature: m.pandahelp.vip
i downloaded appvalley just a few days ago and download minecraft.. but i did not press trust on minecraft. does it mean my apple device is safe? or is it dooped?
Your device is safe if you didn’t press trust.
i downloaded tweakbox too and did the same thing at appvalley. is my device safe or dooped?
Your device is safe but delete both the apps before anything weird happens.
there is an app on tutuapp that is ONLY distributed via tutuapp it seems….
I’ve managed to find a ‘plist” file from their webpage that links to the IPA file…..
https://www.tutuapp.com/installn/2549820/en-us/2232312150f1909d877153cef38f8241.plist but when i download that IPA file and try to run it through cydia impactor it will not install….something about “improper arguments” or something…? Is there an alternative to get this app sideloaded without using tutuapp….?
No, TutuApp doesn’t have an official IPA file available anywhere on their website. So you will have to install the app from their website.
Hi, I just stumbled on TweakBox and AppValley a few days ago while looking for an alternative to Tutuapp. I’ve just deleted and removed their profiles from my phone. What safe method would you suggest that I use to get a duplicate WhatsApp. I really really need it and had been using Tutuapp before now.
I would suggest using Panda Helper.
What is panda helper? What does that do?
It’s an installer app like TutuApp.
Hi,
I’ve been using TweakBox apps for almost a year now and I’m personally huge on my privacy and after reading this article I’m very concerned and don’t know what to do here, Has my security been breached? If so, what can I do to make sure that people don’t spy on my phone?
I recommend deleting that app from your device. That’s all you need to do really.
I would really appreciate your help if you could.
So basically i ve been banned on instagram (and I need access to it ASAP) the thing is that, unless I factory reset my device, the error “sorry there was a problem with your request” will keep ok showing. Do you have any idea of what trusted alternatives I could use? Currently i tried using tutuapp. Thanks for your time!
It looks like the ban is server-side. Hacked apps will not work since you will still be logging into Instagram’s servers.
Am I fine if I use my fingerprint to sign into everything on my phone or is there a way they can use that to get into my stuff?
If you are using a fingerprint, you should be fine. However, I would still recommend sideloading apps manually if you want full security.
From where I can get ipa to side loud them using cidya impactor
You can use this link – https://github.com/ipasigner/PPAppsIPARepo
Helloo is it possible to get the ipas of the old tweatbox? Thank youu
NO, that’s not possible since they don’t distribute IPAs of their installer on their website.
I’m really scared now because I can’t delete any tweakbox apps on my iphone at all. I tried going to settings and deleting the app but it doesn’t work at all. I also tried deleting the app manually from home screen but it doesn’t work too. I’m scared will my iPhone become vulnerable and can people hack into it or anything???? And most importantly how do I delete the apps??? Pls reply quickly tysm ( iPhone 6s Plus iOS 12.1.4)
Alright I restarted my iPhone and managed to delete the apps I think it’s becuse I downloaded to many at one shot but thx anyway. I read your article and I think I’m just not going to use third party apps anymore.
I recommend using Ignition or Panda Helper. If you are on a jailbreakable iOS version, a jailbreak is vastly superior to any sideloaded app.
Follow this guide – https://yalujailbreak.net/remove-appvalley-profile/
I downloaded spotify++ from appvalley-apk.com.after downloading i opended the app.im on 12.1jb .i tried shifting the app from my last page to first page on my home screen.first it froze my device while doing it.then i turn on mydevice again n could finish what i was trying to accomplish.but my phone started getting so hot so quickly i dont onow why.i wasnt doing any other thing.i deleted the app right away.by that time i didiny type any passoword anywhere else other than unlocking my phone with passcode.do u think the app was coping my documents ?? Please suggest.you know how hard it is to restore my whole device when im already jailbroken n all setting have been made for quiet a lot of time.
Thanks in advance
No. Simply moving the app in wiggle mode won’t cause your device to heat up, it must have been something else. As far as security goes, I would recommend using Ignition or using a jailbreak for a secure experience.
I’ve been using tweakbox for a weeks and download emulator GBA4ios to play pokemon fire red on my iPhone 8+ with iOS 12.1.4
For starters, the game works really fine until the day it keep telling to verify the app on the iPhone and not able to verify it anymore instead I need to re downloaded the new GBA4ios with different enterprise whatsoever, and the game now is gone…very stupid apps…all my progress playing pokemon with tweakbox come into vain…really disappointed…thumbs down for you tweakbox & GBA4ios👎🏻👎🏻👎🏻👎🏻👎🏻👎🏻
I would recommend sideloading GBA4iOS using Impactor. That way, you will be able to keep your progress but it will require weekly resigning.
So if i downloaded Spotify ++, but I used my official account to sing and I happened to have my credit card regestered in that account, could they have a way to obtain that infl from Spotify ++ from tweak box?
Yes, they could. Please remove your account asap and create a new one if possible.
Does using Spotify++ on tweakbox affect iPhone preformance or battery in any way?
No, it doesn’t as it only runs the hacks on top of the app.
Hello,i am using iphone x and i jailbreaked it.i did not fill any bank detail in apple id,should I need to restore my device.
No, you don’t need to restore your iPhone in that case.
hello, i have tweakbox for two years and i used to use moviebox but not anymore now i use mediabox and spotify ++ on a daily basics and i don’t have any issues but i’m extremely curious if it can mess up my phone (i have a iphone 8 plus on the latest ios version) and i have my debt card on my apple pay can someone hack into it? Can they hack into my phone by having spotify ++ or other apps from tweakbox?
Hello, Danny. Having a third-party profile on your device won’t leave your device open to attacks. However, some users have reported phantom charges on their debit cards after using TweakBox and AppValley.
To be safe from any attacks, I would highly recommend sideloading Spotify++ using Panda Helper or manually by Cydia Impactor.
If l download WhatsApp++ from tweak box, will my iPad crush?
No, you should be fine.
I’ve been using tweakbox for a while now and as i was using youtube, I had the tweakbox version of youtube, i realized my phone was at 1%. After that my phone started to glitch out and the video that was playing was lagging very badly. I was wondering if this had anything to do with tweakbox or just my phone.
This has nothing to do with TweakBox as far as I know. Charge your battery and check again.
Hello
I have Spotify ++ installed on one device and I’d like to use the same Spotify account on a different device that has the regular Spotify app from the App Store. Is this safe to do ? Can any malware/spyware be transmitted through the account that was used with ++ to the other device ? The other device doesn’t have app valley or any of those tweaked apps on it.
Thanks
Is it safe to use the same account used on Spotify ++ on a different device ? I have Spotify ++ on one device and I’d like to use the same account on a different device through the regular Spotify app. Can any malware/spyware be transmitted through the account ?
Hello
On my phone I am using Spotify through app valley. On a different device, I logged into my Spotify account using the same Account I used with the app valley Spotify. Is this safe to do or should I use a new account that wasn’t used with app valley ? Is it possible that the same account used through app valley Spotify could comprise/spy on my other device when using normal Spotify app ? Wondering if they could have installed something in the account itself that will compromise different devices or will it not matter since those devices don’t have app valley installed ?
Hey so I was using Spotify through app valley; I then deleted the app and installed Spotify from the App Store but I signed in with the same Spotify account that I was using with app valley. Is this safe to do ? Is there any risk to my phone if I use the regular Spotify app with the same account that I used the app valley Spotify on ? My phone is not jail broken
Why the hell do you keep repeating yourself
Nope, the code can’t be changed unless you create your own app, not just for accounts.
Hi I was wondering if there is a way that I can delete other apps on my ipad because since I downloaded tweakbox, I can’t delete normal apps. ^-^
Remove TweakBox’s profile from your device.
Is iOsGods safe to use? Or download the iosgods apps?
Sorry, I haven’t used the app so far.
Hi I just wanted to let u know. I have had tweak box for about a week now and today my Apple ID was disabled due to suspicious activity on my account. I have a great suspicion that this was TweakBox and I just wanted to let u know. I have removed the app and profile. Just wondering if I need to to anything else.
Quick question. I have TweakBox on my phone and I’m just using spotify from it. Does it have access to the rest of my phone and if so, should I be worried something will happen?
If you don’t have your credit card details on your iPhone, there’s nothing you need to worry about.
Hey!
I want to know if it’s safe to use the same Spotify account used on Spotify ++ from app valley and tweak box on a different device that has the Spotify from the App Store.
Could any malware/spyware be placed on the account itself that when you use it on a different device it can spread to it ?
Yes, I would recommend using a separate “dummy” account created specifically for hacked Spotify apps.
Thanks
So yes, it’s possible that malware and spyware could be transferred to a different device just by using the account used with hacked Spotify ? The other device is using Spotify from the App Store and it doesn’t have app valley on it.
Should I change any passwords used on that device and should I restore it ?
No, that’s not necessary.
Sorry, but just to clarify
Even if you use the normal Spotify app from the App Store it’s possible that a Spotify account that was used on a hacked app could put malware/spyware on the phone with the normal app? So the account itself can transfer malware even without the hacked app/ no profile configuration to app valley ?
No, that’s not possible since your data is stored on Spotify’s servers. The normal app is separate from the official application that’s available on the App Store.
is iemulators.com safe?
Yes.
Hey, Gian. I’m on 11.2.6 and installed the unc0ver jailbreak from TweakBox to use the MP exploit option. I deleted TweakBox and the app, is there a risk that anyone see my photos and password? I want to keep my IOS version and jailbreak, is there any way to restore (when I have to) without updating? What would i do, is the a danger? Thank you for your article! Tom (:
No. Once you’ve deleted it, there’s nothing you need to worry about. You can use Cydia Eraser or other such tools to restore without upgrading.
Hi so i tried installing app valley again and it asked for my passcode. I entered it without knowing thst it just changed my passcode into a 6-digit code. Now i cant open my phone and according to what ive searched I have to restart it. Is there any way for me to fix my phone??
Yes, hard reset your device. It can’t change your passcode.
hey Gian! so i recently reset my phone to erase appvalley from my phone, because it would not let me delete it no matter what. So, i deleted iit and profiles still show up in my settings but there’s nothing in it. Does this mean I’m safe?? thank you so much for your help i’m really worried and don’t want my family to lose their money
Follow this tutorial to remove Appvalley from your iPhone.
Is it safe to download popcorn time?
No, I wouldn’t recommend doing that, to be honest. However, if you still want to install that app, go with Panda Helper.
Is it safe to install popcorn time?
Thanks
I wouldn’t recommend downloading any app from these installers.
So I had AppValley installed for a couple of minutes on a non-jailbroken device (iOS 1.2.6) and then I removed the app and the profile completely, however I’ve entered some passwords including the Apple ID pass while the profile was “trusted”, so my question is purely technical, is it possible that AppValley somehow fetched those passes? What about wallet and credit card info?
If everything seems to be fine after a couple days, then they didn’t do anything.
Thank you for your reply, however what I was asking is the technical possibility. The device is not jailbroken so I assume there is no way an external app could fetch a pass for the Apple ID. Then again, I’ve heard you can do a lot shady stuff with objective C, that’s why I’m asking this.
Welcome, Bogdan. Profiles are considered a grey area and can fetch user data without proper permissions. Though sandboxing prevents that from happening, it’s best to keep your device safe by uninstalling apps with a dubious reputation.
Um how do I restore devicerestore your device via DFU? I’m scared
Why are you scared? Just remove these apps and you should be good to go.
I only had it for a few minutes and deleted the profile and apps…Yea this kinda scares me too.
I still can’t get onto two apps on my phone, and it’s asking me for my Apple ID, is there any advice for that?
Does that mean it’s hacked?
If I can’t get on some apps and it’s asking for my Apple ID?
No, that doesn’t mean you’re hacked.
Hey Gian, I only have YouTube (cercube) and spotify ++ downloaded through tweakbox and I haven’t connected any banking account or debit or whatever through those apps, I do my banking through an app I downloaded in the Appstore, am I safe here?
Yes, you’re safe.
Hey, I downloaded tweakbox (for the first time) for moviebox (which didn’t work) so I tried popcorn time (which worked, but didn’t load what I wanted to watch). I deleted the apps via settings – general etc, but would I need to do anything else? Like, reset my phone using DFU mode?
No, just delete the app and you should be good. Don’t restore your device via DFU mode.
So I was a bit confused after reading this. So is using tweekbox safe?if I install it will they hack me or something?
As for me, I have never had anything bad happen to my device. Some users, however, have complained about their bank/card accounts being accessed by someone else.
Hi so ive used tutu and appvalley for a long time. Last night i had to reinstall both and they are all so much jankier. Half the apps i would regularly use are not functioning correctly. I deleted everything and my safari history and data. Anyways i have ios 11.4 not jailbroken. Should i be worried or not?
No, you’re good. Uninstallation is enough.
I installed appvalley vip and it won’t uninstall It doesn’t give me the option to delete the profile from the settings or hold the icon to delete should I reset my device or is there another way ?
No, don’t reset your device. Just hold the icon in wiggle mode and remove it. Hope this helps.
I installed Appvalley awhile ago and I’ve been using it. One day it asked me if to make appvalley a profile in order to keep suing the app and me not knowing what it meant I just liked accept. I recently got a new credit card and tried to type my information in on my phone in order to have an online banking account on my phone. I was never able to get into my account because I need to call a number to confirm my identity. Will it still be possible for someone to take money from that account through appvalley because I have $180 missing that was previously on my bank account?
Yes, you need to resign the app by installing it again from their website. If your bank details were tampered with, I highly recommend removing Appvalley et al and doing a full reset.
I can’t delete my appvalley apps…
How to delete it???
Please help me…
You can remove the certificate they are signed with from Settings > General > Profiles & Device Management.
App valley has lefted a profile on my iPhone and it says that it can’t be removed is there any way to remove it?
Are you talking about the certificate present in Settings > General > Profiles & Device Management?
Thanks for the heads up. Anyway, what is the safest Appvalley or tweakbox?
And what tool can I use to prevent being revoke. Thanks in advance.
Hello, Chris. The safest way to sideload is to use Cydia Impactor, which is developed by Jay Freeman, who’s the most trusted developer on the scene. You can check this article out to make your own custom anti-revoke setup – Stop App Revokes on iOS 12.
I had downloaded App Valley about less than a month ago for Spotify ++. I deleted it today because the Spotify was acting up. I ended up getting a notification saying “In order for this app to work, it’ll need to be a permanent app which you cannot delete.” And since I did it out of stupidity, I now cannot delete it. what do I do?? How do I delete this app?
Try deleting the certificate from Settings > General > Profiles & Device Management. If that’s not possible, back up your data and perform a clean restore.
I downloaded app valley on my phone as a profile and it won’t delete, I’m scared now. What should I do???
I am preparing a new tutorial for that. Just wait for it.
I have an iPhone 8+ and software 12.1, is Spotify premium downloaded from tweakbox safe? I’ve never logged into a bank account on my phone
It should be safe then, Kylie.
Hi im currently trying to figure out how to delete my appvalley profile off of my iPhone and it’s saying that it can’t be removed off of my phone what should I do ?
Hello I need help!!! App valley installed itself on my phone and it says the app is now nonremoveble what should I do!?!
I m unable to delete AppValley as it creates profile and it doesn’t show any delete option pls tell me wht to do
Hello my daughter accidentally downloaded appvalley that wasn’t signed on my phone she says a warning message came up saying once it’s downloaded it can’t be deleted I tried deleting it through the home screen but the X doesn’t show up next to the app and I tried deleting it in my iCloud and iPhone storage but it doesn’t show up I also went to my profile management and there is no way of deleting it please help!!!!
So I just tried opening ++Spotify app that I downloaded from AppValley but it would just crash every time. I decided to delete all of them including AppValley. When I tried redownloading AppValley it asked me to install a profile for it but it warned me that doing so would be permanent (like I could never delete it once installed). What does this mean exactly? Should I trust it?
Hello, hi. I recently downloaded app valley and I got MovieBox so I could binge watch shows and that, I then took app valley off. However, it’s stopped working so I moviebox off and redownloaded app valley and it won’t delete it says its not removable on the settings part and moviebox doesn’t work either aha. Should I be worried?
Hello today I downloaded app valley like always except this time I can’t delete it it’s forvever in my profile and I don’t want it I know I should have payed more attention but will it affect my phone and will I be able to delete it soon please help me
Appvalley just became an unremovable profile/app what does this mean? Is it bad :(?
AppValley just got a new update and after downloading it it has now become an unremovable app/profile. A lot of users are complaining and worried. I am a bit nervous is this bad??? What can happen to my phone or info? Thanks in advance.
Thanks for the heads up.. anyway, what is better to use Appvalley or tweakbox for none jail broken. Also what can u suggest for not getting revoke, What is the best tool for that? Please help. Thanks in advance.
Hi, i recently downloaded tweakbox and i was wondering if it is safe or if i should uninstall it. Ive read some of the comments but im sort of confused if it is or isnt safe to download spotify++ and/or instagram++. Btw i have an iphone 7 that isnt jailbreaked.
You can use it if you don’t have any sensitive data like bank account details on your iPhone.
I installed both AppValley and TutuApp on my iphone lately. I figured any major problem (spywares, etc.) would come from the configuration profile that asks for me to trust them. But, when I opened profiles and management, I see that both AppValley and TutuApp are using the same configuration profile called “China Mobile Group Heilongjiang Company Limited.” You’re telling me AppValley is safe but TutuApp is dangerous…. I’m not sure what to believe..
So installing TweakBox cannot jailbreak your phone?
TweakBox doesn’t jailbreak your device, it’s just a third-party installer that lets you install tweaked apps.
Hello sir o downloaded the appvalley but i press the verification an suddenly i deleted the app.. im asking if they still can ha ked my personal info? Ios? And those pictures,conversations, whatsapp or what so ever? But after a minute i change my apple Id password. They can still access my personal info? It’s scarying me.. thatk u
No, they can’t hack into your personal information. I will soon post an in-depth guide on uninstalling it.
I’m confused. In the article, you advise to uninstall Spotify++ immediately, but you then follow up by saying that you believe it is perfectly safe to use. Which is it?
I mean some users experienced their bank accounts getting hacked into while I personally didn’t. The best course of action, of course, is using Cydia Impactor.
I downloaded tweakbox and when I downloaded Spotify it says I have to say I trust the third party called Shenzhen diexun network technology idt. Should I trust it?
Yes, you should. That’s the name of the enterprise certificate and you will have to trust it in order to install apps on your device from an app installer.
Hey, I have had appvalley downloaded and have been using spotify, no problems. Just have to occassionally redownload the app. But now I looked in my settings and it says that I have a configuration profile for AppValley and it won’t let me delete it. Is it dangerous?
What message does it display when you try to remove the certificate? It’s not dangerous per se but some users have experienced bank/card issues so make of that what you will.
Any app I download from TweakBox is safe?
Yes, I have tried it recently and it’s working fine to be honest.
i’ve been reading a lot of articles about tweakbox and wondering if i should get it. are there any risks if i do get it?
One of our readers reported that something was wrong with her bank account after she installed Spotify from TweakBox so make of that what you will. I would recommend installing IPA files via Impactor the old-fashioned way.
Is it safe to run spotify++ on a non-jailbreaked ios9 iPhone 6s through tweakbox/AppValley?
I assume this so referred to as sideloading.
Is Unding Cydia impactor equal to jailbreaking your device?
What are the advantages in jailbreaking in regards to tweaked apps?
Sorry for all the questions, nee to ios:)
1. Since I tested it on my jailbroken device, I’d say yes.
2. Yes.
3. No.
4. Jailbreaking lets you use tweaks “natively”/system-wide, meaning Spotify++ will be integrated with the stock Spotify app and you won’t need to install or sideload it separately.
No problem, feel free to ask as many questions as you want to. Cheer!.
hey so i want to download cute cut pro (for free) off tweakbox, but after reading this article, do i do it? it’s just to make edits and all that
Yes, you can download it safely.
I installed Spotify++ in August. It was working fine, sometimes I needed to reinstall the app. Today I saw that every 5th day of the month someone was taking money from my bank account for Spotify, even though I didn’t give there my bank account code or card number.
I don’t know what to do. Is it wise to wait until the end of the month to remove the application? Since they have already charged me for November, I could take advantage of this premium. But it scares me that they have my card number…
+ Is reinstalling TweakBox and Spotify++ enough? Which passwords should I change? Apple ID?
Thanks in advance!
Hello, Ada. I would suggest removing both of these applications immediately from your iPhone. If you really want them, get their IPA and install them manually via Cydia Impactor and change your Spotify account. Also, contact your bank and get recent transactions reversed. This is not a thing to be taken lightly.
Also, are you being charged for Spotify Premium?
Hi,
I’m being charged for:
Spotify P081BCFA48 Stockho
Spotify P074EDF01B Stockho
Spotify P07B50AD0B Stockho
I’m not sure if my bank is able to reverse these transactions, but I’ll try anyway. I removed all applications and installed Spotify via Cydia Impactor and logged on a different account, as you suggested.
Thank you so much!
You’re welcome, Ada. Glad you got it fixed. I guess Spotify is automatically charging your card. Try contacting their support.
Sooo I downloaded the spotify ++ from tweak box, but after reading this I decided to take no chances and delete all the apps and to restore my phone via dfu mode. Is my Iphone and system
free from any forms of hacking? I’m kinda confused
Yes, you should now be free of any form of hacks. The best way to keep your device secure is to use jailbreak tweaks only.
Hi, I downloaded AppValley via appvalley.vip, the Device Management Profile is now i-MD Holdings (Hong Kong) Limited. Am I safe trusting this developer?
Thanks
Yes, you are safe.
hey,
I downloaded spotify+++ from tutapps & appvalley, does that mean my iphone is jailbroken?
I also deleted the apps and the trusted enterprise entailed in it. Is my phone safe?
[downloaded on 11.4.1 software(as far as I can remember)]
No, that doesn’t mean your phone is jailbroken. You can run tweaked apps in non-jailbreak mode. Yes, your phone is safe.
tweakbox is asking to set a profile in my phone? just double-checking, is it safe?
Yes, you are safe.
How would I delete the profile if it doesn’t let me remove
That’s weird. I would suggest performing a clean restore in this case (be sure to back your data up).
So recently i tried to download tweakbox and it asked for my password but then when i typed it in it said it was incorrect, which is odd because i made sure that i typed it in correctly letter for letter. My phone is now locked and im worried they hacked into my phone? Any help?
No, TweakBox doesn’t have that level of access to your details. Are you talking about entering the passcode while installing its profile?
Hey!
So I recently installed spotify++ from tutuapp.vip. I did this through iOS safari, here’s the link: https://www.tutuapp .vip/index.php?r=shareAppVip/index&lang=en&type=zb&appId=2722673
I also downloaded youtube++ IPA file from iosninja’s website and installed it using cydia impactor from a mac.
My question would be whether you think I have anything to worry about or they are safe to use on my iPhone? Are these trustworthy sites?
Any help regarding this would be appreciated!
Hey!
So I recently installed spotify++ from tutuapp.vip. I did this through iOS safari, here’s the link: https://www.tutuapp .vip/index.php?r=shareAppVip/index&lang=en&type=zb&appId=2722673
I also downloaded youtube++ IPA file from iosninja’s website and installed it using cydia impactor from a mac.
My question would be whether you think I have anything to worry about or they are safe to use on my iPhone? Are these trustworthy sites?
Any help regarding this would be appreciated!
Osy
TutuApp is fine except for their advertisements. iOS Ninja is totally legit and you have nothing to worry about.
Does iOS Ninja allow to install apps similar to Popcorn TIme.
If so, how do you install iOS Ninja?
Thanks
iOS Ninja only lets you download IPA files to your computer or Apple device. You must install them manually using either Cydia Impactor or Ext3nder (only works for jailbreak users).
Does TweakBox give your phone viruses? Because recently I’ve been experiencing some lag. Is that Tweakbox or just something else?
It’s something else most probably. I suggest removing the app and then checking the performance of the device.
I cant remove app valley helppp
bruhhh…. ur article is kinda misleading, after reading a portion of your article i immediately deleted all my ++apps, tweakbox and appvalley. after reading the last part and finding out its safe made me have to download everything again.. damn… dont play us like that. change ur article title before someone else falls for it.
The bottom portion is based on my personal experience. Some users have still removed Tweakbox and Appvalley apps entirely from their device due to security issues. I would recommend re-installing each app via Impactor or ReProvision.
So is it safe to have tweak box and the ++ apps on ur phone if it isnt jailbroken ?
Yes, it’s safe.
I fell for it and gave me a near heart attack. I deleted it and have no intentions of getting it back thanks to you. Change your title instead of adding notes on the end. Definitely not getting the apps anymore.
hahahah ikr same XD now i am too scared to get it back xd
I used Tweakbox on iOS 12.0 is there any problem?
No.
I’m thinking about downloading appvalley, is it really that safe? I don’t mind a few ads, but having my bank account broken into isn’t very appealing..,
Yes, it’s safe but it does have advertisements.
I just use tweaked app for pubg..but i then i cannot spectate the game after killed..so i reinstalled original pubg apps form AppStore..now i even have same issues..help me
The tweaked app might have altered your system files. Do you have Filza?
If my phone is jailbroken, and I have used AppValley, should I reset it?
No, it can’t steal any sensitive data.
I am new on iOS. I bought a new iPad and installed AppValley and then popcorn, but after reading this article I delete appvaley and popcorn. The popcorn was very often showing ads. Do I have to do something else to be sure I am safe?
Appvalley is legitimate, you can use it freely. They show ads to keep their service running. Hope this helps.
So, can I use AppValley and the apps there without worries? I don’t have my iPad jailbreaked. I understood different from the article.
Yes, you can use it freely without any worries.
Thank you very much
Welcome.
Quite ironically after looking up AppValley’s newest certificate after it lost the last one, I came upon this, and the first part I saw of this article is stating that AV is pretty bad, but it turns out to just be the Chinese installers, so is AppValley’s installers for the ++ tweaks safe or no? I’m just kinda confused, cause I just got YouTube++ a few minutes ago from CyrusHub (Which has both TweakBox and AppValley installers)
Yes, AppValley is very safe especially if you are not running a jailbreak.
So should I keep using TweakBox? My phone is not jailbroken. Is it safe to still be using the ++ apps?
Yes, you can keep using it and ++ apps are safe to install and use.
Still i cannot able to install Electra online tool from tweak box. Hay admin please guide to me install Electra online
Install using Ignition. Read the full tutorial here.
Can TweakBox hack your phone even if it’s not a jailbreak phone?
No, it can’t.
So appvalley is safe for nonjail broken phones then?
Yes, it’s pretty much safe.
I have no way of knowing if its even related but after I downloaded a fee apps from appvalley there was an attempt into my bank account after a day or so, thankfully after reading this article I realized that I had logged in on my phone I changed my password on the computer in time before someone tried to log in, it could have been another app I downloaded from tgere or it could be unrelated all together and the apps do what they promised definitely but if you download I would say watch what personal information you put on the screen while they are trusted apps
That’s scary! I would recommend getting a premium Sideload.me license (10 bucks per year).
I’m on ios 11.3.1 and I’ve used tweak box but I still want jailbreak so what should I do ?
Keep using TweakBox and wait for Coolstar to release Electra. Hope this helps.