Hi, A friend has a Redmi Note 2 installed with your ROM. He ran AVG antivirus and there was an infected file called KeyChain.apk. I decided to dive in a little further and check it. I uploaded to VirusTotal the file from the original (en.miui.com) ROM and the file from your ROM and found that the original file is clean where the file from your ROM is being marked by (ONLY!) AVG as infected with "Android/Deng.PIP". Further checking the files showed that the file from your ROM contains the file "classes.dex" which is absent from the original APK and is the one that is marked as infected! I checked the versions 5.9.18 and 5.9.24 and it is the same. I haven't checked other devices' ROMs. Here is the original file check: https://www.virustotal.com/en/file/...b3a2e1185c2f084d95049bde/analysis/1443182383/ Here is your version check: https://www.virustotal.com/en/file/...40ccd06fe548eb74547abc09/analysis/1443184276/ Please check, acknowledge or calm me down... Thanks a lot!!! Elad.