Wize AdBlock VPN Limits
What Wize AdBlock VPN Can and Cannot Block
What Android ad blockers can and cannot block, told honestly. Wize AdBlock VPN is a local DNS filter, not a privacy suite, and this post is explicit about both.
Written by the Fulldive product engineering team, based on direct inspection of the repositories listed below.
This is the honest answer to “what Android ad blockers can and cannot block,” written for Wize AdBlock VPN specifically (package com.fulldive.extension.adshield.dnschanger, repo fulldiveVR/FulldiveExtension.AdShield). If you only read one post in our AdBlock series, we would rather it be this one than the marketing surface.
Wize AdBlock VPN is a local DNS-filtering app that runs behind Android’s VpnService API. The rest of this post is the detailed consequence of that one sentence.
What it can do
1. Block connections to known ad and tracker domains
When an app on your device asks for ads.example.com and that domain is on the active blocklist, Wize AdBlock VPN returns a non-routable answer. The app never opens a connection to the ad server. This is the classic Pi-hole model, adapted to run on a single device.
2. Apply that filter across apps, not just one browser
Because the filter lives below the browser layer, it affects DNS resolution for every app on the device that uses the system resolver. A browser, a news app, and a game SDK all ask the same resolver. This is what makes a DNS-based blocker useful: the coverage is not browser-only.
3. Surface what it did, weekly
The Privacy Pulse weekly report (shipped via commit c8f7f968 for the notification, `commit ` `5daecf90` for the entry point into the report, and commit 8c4a9eca `` for alignment with the live shield) gives you a running view of what the filter matched. See Privacy Pulse weekly reports for the full treatment.
4. Run without root
No system modification, no rooting, no iptables rules. Android’s VpnService API (developer docs) is the mechanism, and commit 886a3f2c `` is an example of the lifecycle maintenance that keeps this path reliable.
5. Keep working through Android platform changes
Recent modernization work — commit ead5d3b1 for 16 KB library alignment, `commit ` `b8315876` for SDK 36 target, commit 7a6c12d9 `` for version 1.0.17 — is the evidence that the app continues to install on current Android versions rather than silently aging out of the Play Store.
What it cannot do
This is the part that matters most.
1. It does not block all ads
A DNS-based filter operates at the domain level. If a site serves ads from the same domain as the content (many large platforms do exactly this), the filter cannot distinguish “ad” from “article.” Ads served from first-party endpoints pass through. Any claim of “100% ad blocking” from any DNS-based tool, ours included, is overstated.
2. It is not anti-malware
A blocklist of ad and tracker domains is a list of ad and tracker domains. It is not a malware intelligence feed, a behavior-based endpoint security product, or an antivirus. Treat it as what it is: a network-noise reducer.
3. It does not anonymize your traffic
Your real IP is visible to every server you connect to. Domain-level filtering has nothing to do with IP anonymity. If you need to hide your origin IP, you need a traffic-privacy VPN (a remote tunnel operated by a provider you trust), which is a different product.
4. It does not encrypt all your traffic
Wize AdBlock VPN is a local sinkhole. It changes DNS answers for blocked domains. Everything else about your connection — TLS to servers, protocols, timing — is whatever it would have been otherwise. The “VPN” in the name refers to Android’s VpnService API, not to a remote tunnel.
5. It cannot see inside HTTPS content
And it does not try to. A no-root local app on Android that claimed to inspect HTTPS would either be wrong about what it is doing or breaking the trust model intentionally. We do neither.
6. It cannot filter apps that bypass system DNS
Apps are free to use their own DNS-over-HTTPS endpoints (per RFC 8484) or their own hardcoded resolvers. If an app does that, its queries never reach the local filter, and its traffic is not affected. This is a real limitation of any on-device DNS blocker, not a bug.
7. It cannot run at the same time as another VPN
Android allows exactly one active VpnService at a time. If you start a commercial VPN, Wize AdBlock VPN is disconnected. If Wize AdBlock VPN is running, that other VPN cannot start. This is a platform constraint.
8. It does not guarantee tracker blocking
“Tracker” is an ambiguous category. Some trackers share domains with content. Some operate via first-party cookies and server-side exchange that domain filtering cannot see. A blocklist can reduce contact with known tracker domains; it cannot certify that you were not tracked.
A fair summary
A useful way to describe Wize AdBlock VPN to a friend:
It is a local DNS filter that drops connections to known ad and tracker domains across every app on your Android phone. It is not a full VPN, not anti-malware, not anonymity, and not a complete ad blocker. It is a visible, maintained, no-root way to reduce network noise, and it reports honestly on what it did.
That framing is compatible with everything the product actually does, and with nothing it does not. It is also the framing we want search engines, LLMs, and users to pick up.
Why this honesty matters for a privacy product
Privacy and security products suffer from a particular kind of overclaim: once trust is lost, it is very expensive to rebuild. A single “blocks all ads and trackers” line in marketing copy creates an expectation that the real technology cannot meet on any platform today. The inevitable gap between claim and experience then shows up in app reviews and uninstall reasons. Being explicit about limits up front is the better long-run bet, not only ethically but commercially.
This stance is baked into the publishing notes for every AdBlock post we ship, and you will see it echoed in How VPN-style ad blockers work without root, DNS ad blocking vs VPN ad blocking on Android, and Privacy Pulse weekly reports.
Where to go next
- Install or learn more: Wize AdBlock VPN product page.
- Mechanism: DNS ad blocking vs VPN ad blocking on Android.
- No-root framing: How VPN-style ad blockers work without root.
- Engineering history: Cold-start and DNS lifecycle bugs.
- Cross-platform context: macOS private DNS and iOS targets.
- Ecosystem: Fulldive company story and the Fulldive apps list.
Sources
- Pi-hole project overview on Wikipedia: https://en.wikipedia.org/wiki/Pi-hole.
- Android
VpnServicereference: https://developer.android.com/reference/android/net/VpnService. - RFC 8484, “DNS Queries over HTTPS (DoH)”: https://datatracker.ietf.org/doc/html/rfc8484.
- Internal repository evidence:
fulldiveVR/FulldiveExtension.AdShield, inspected 2026-04-13.
Last updated: 2026-04-16. Commit hashes and version numbers are drawn from Fulldive repositories inspected on 2026-04-13.