For years, millions of Android users installed a single app without a second thought. It helped them move files, organize photos, clean storage, and manage folders that Android itself struggled to handle. It was recommended everywhere—by YouTubers, tech blogs, forums, and power users alike. It felt safe. It felt essential.
What almost no one realized was that, behind this innocent interface, the app was slowly turning phones into money-making machines for someone else.
This is the story of ES File Explorer—how it rose to become Android’s most trusted file manager, how it quietly crossed the line into spyware and fraud, and how Google only reacted when the damage was already massive.
Let’s rewind to where it all began.
🚀 Android’s Early Days and the Problem ES File Explorer Solved
Back in 2010, Android was still finding its footing. Apple’s iPhone dominated the market, and Android phones were rapidly spreading across manufacturers. But there was one glaring issue that frustrated users daily.
Android’s built-in file management was, frankly, terrible.
Moving files, browsing folders, accessing network storage, or managing downloads felt incomplete—almost like having a computer without proper file access. Power users especially felt restricted.
That’s when a company called Estrongs stepped in.
They launched ES File Explorer on the Google Play Store, and it immediately felt revolutionary.
🗂️ Why ES File Explorer Became an Instant Hit
ES File Explorer didn’t just fix Android’s file problem—it redefined what users expected from a file manager.
For the first time, Android users could:
- Browse files in tabs, like a desktop web browser
- Access shared folders on their home network
- Manage cloud storage such as Google Drive and Dropbox
- Perform advanced file operations easily
And perhaps most importantly, it was completely free.
No ads.
No subscriptions.
No pop-ups.
It simply worked.
By 2013, ES File Explorer had become the default recommendation on Android forums. Tech blogs called it “essential.” If you were serious about Android, this app was almost mandatory.
📈 500 Million Downloads and Absolute Trust
By 2014, the numbers told the story clearly.
ES File Explorer crossed 500 million downloads.
That’s half a billion people trusting a single app with:
- Photos
- Documents
- Downloads
- App data
- Potentially sensitive files
And honestly, why wouldn’t they? The app was fast, reliable, and delivered exactly what it promised. Users recommended it enthusiastically, often without hesitation.
But that trust would soon be abused.
⚠️ The First Warning Signs Appear (2015)
In 2015, users began noticing something unsettling.
The once clean and minimal interface started showing ads.
Not subtle banner ads—but aggressive, intrusive pop-ups that appeared unexpectedly. Complaints started appearing on forums and reviews, but the ads didn’t stop.
Then things got stranger.
🌐 Hidden Connections and Silent Data Transfers
More tech-savvy users began monitoring their phone’s network activity. What they discovered raised serious red flags.
Even when ES File Explorer wasn’t open, it was:
- Sending data in the background
- Communicating with remote servers in China
- Transmitting app usage data and file-related information
Digging deeper, researchers found a mysterious internal folder named “Dianin”.
Firewall users reported blocking hundreds of connection attempts per day, all originating from ES File Explorer—even when the app was idle.
Many of these connections traced back to China Unicom, a state-linked telecom provider.
At this point, trust was already cracking. But the worst was yet to come.
🔒 Lock Screen Hijacking: The Breaking Point (2016)
In May 2016, ES File Explorer pushed an update that enraged users across the internet.
The app silently installed DU Charge Booster, which:
- Hijacked the lock screen
- Displayed ads when users unlocked their phones
- Operated without clear consent
Imagine unlocking your phone and being greeted by ads—ads you never agreed to see, from an app you once trusted.
The backlash was immediate.
- Tech websites withdrew their recommendations
- XDA Developers warned users to uninstall immediately
- Long-time supporters turned into vocal critics
Under pressure, ES File Explorer removed the lock-screen ads a few weeks later. But by then, the damage was irreversible.
🧩 The Ownership Change That Changed Everything
Users started asking an important question:
What happened to ES File Explorer?
The answer lay in its ownership.
Around 2015–2016, the original developers at Estrongs were gone. The app became part of ES Global, which was owned by a Chinese company called DO Global.
DO Global was partially backed by Baidu (BU)—one of China’s largest tech giants.
Overnight, ES File Explorer stopped being a passion project and became a monetization asset.
And DO Global had a clear business model:
Buy popular apps → inject ads → maximize revenue.
🧱 From Lightweight Tool to Bloated Mess (2017)
By 2017, ES File Explorer was almost unrecognizable.
The once fast and lightweight app became:
- Bloated
- Slow
- Resource-hungry
- Packed with unnecessary features
So many users were frustrated that they began sharing version 3.2.5.5—the last “clean” version—like underground software.
One XDA user summed it up perfectly:
“ES File Explorer has become bloated. It was great in 2013, but recent changes forced me to find something else.”
Yet, this was only the beginning.
🚨 A Massive Security Flaw Exposed (January 2019)
On January 16, 2019, security researcher Baptiste Robert dropped a bombshell.
He revealed that anyone on the same Wi-Fi network could access files on your phone if ES File Explorer had ever been opened—even once.
This meant:
- Public Wi-Fi hotspots
- Cafés
- Airports
- Hotels
…all became potential data theft zones.
ES File Explorer rushed out a fix within two days, but the damage was severe. Antivirus company Avast later found over 60,000 users still running the vulnerable version weeks later.
Shockingly, Google did not remove the app at this stage.
💰 The Click Fraud Scheme That Ended Everything (April 2019)
The final nail in the coffin came on April 17, 2019.
BuzzFeed News, along with researchers from Check Point and Method Media Intelligence, published an investigation that exposed DO Global’s true operation.
ES File Explorer wasn’t just spying.
It was committing click fraud.
Hidden code inside the app:
- Generated fake ad clicks
- Worked even when the screen was off
- Used users’ phones to steal advertiser money
Advertisers thought real users were clicking ads. In reality, malicious code was doing it silently.
BuzzFeed estimated the fraud involved millions of dollars.
Even worse, DO Global hid behind fake developer names like:
- “Pick Tools Group”
- “Photo Artist Studio”
At least six DO Global apps were caught running similar fraud schemes.
🛑 Google’s Final Decision and the End of ES File Explorer
After being confronted with the evidence, Google confirmed policy violations.
On April 26, 2019, Google:
- Banned DO Global from the Play Store
- Removed nearly 100 apps
- Eliminated over 600 million combined installs
ES File Explorer was officially dead.
DO Global issued a carefully worded apology, accepting responsibility—but the damage was irreversible.
🇮🇳 India’s Ban and the Final Chapter (2020)
In June 2020, the Government of India banned ES File Explorer along with dozens of other Chinese apps over data privacy and national security concerns.
That was the final confirmation that ES File Explorer was no longer just a bad app—it was a threat.
Today, it still exists on sketchy websites and third-party app stores. But installing it now would be a serious mistake.
⚠️ Disclaimer
This article is for educational and awareness purposes. Installing apps from unofficial sources or using discontinued software can pose serious security risks. Always rely on trusted developers and official app stores.
🧠 Final Thoughts: A Lesson Android Users Should Never Forget
ES File Explorer’s story is a powerful reminder.
Popularity does not guarantee safety.
Past trust does not ensure future integrity.
An app with 500 million downloads exploited users, advertisers, and platform trust—right under everyone’s nose.
If there’s one takeaway, it’s this:
Always question what an app does behind the scenes—and never blindly trust reputation alone.
#AndroidSecurity #ESFileExplorer #Spyware #MobilePrivacy #CyberAwareness #AppScandal
