Related
I own an HTC INCREDIBLE and I've been told to "root" my phone to get rid of all the bloatware. What is rooting and how do I do it? A lot of my apps and all of my music and all photos are saved to my mem card. There are some HTC apps I would actually like to keep. Also, is there anyway I could get swipe on my phone?
Yep - you can root your phone to get rid of bloatware and allow you to do all sorts of other things, basically, rooting the phone allows you to be the administrator of your phone, whereas now you just have a user account on it ... As for how to root, that's been done a lot of different ways and is explained in a number of places - you should read several how-tos so you'll have an idea of what you're getting yourself into (and whether you want to bother)... The contents of your memory card should be safe, but you should back them up anyway, since memory cards do fail during normal use. Simply rooting won't automatically remove any of your apps, so your good there, but it will give you the ability to remove apps, or even break (or even "brick") your phone, so take it easy and don't take any steps 'till you understand what you're about to do.
Here are some resources you can check out :
Ok, actually I'm not allowed to be helpful by posting links since I'm a new member, but google these terms: root droid incredible Jonamerica - that'll get you started...
As for swype the legit way to get it is to sign up for their beta (it's available on their website which I can't link you to) and go from there.
Thanks so much. I'll check it out!
Just a few newbie tips for you.
I'm new to all of this also.....rooting and flashing.
1. Read a lot before you do anything. Its not hard but readup first!
2. Be patient......2 or 3 times while I have rooted or flashed I have thought that maybe my phone is dead. Sometimes there is no visible indication that the phone is actually doing what you want it to do. Let it sit there and do its thing. DO NOT PANIC and pull the battery!
3. Backup backup backup backup BACKUP!
Have fun.....I am
wildland said:
Yep - you can root your phone to get rid of bloatware and allow you to do all sorts of other things, basically, rooting the phone allows you to be the administrator of your phone, whereas now you just have a user account on it ... As for how to root, that's been done a lot of different ways and is explained in a number of places - you should read several how-tos so you'll have an idea of what you're getting yourself into (and whether you want to bother)... The contents of your memory card should be safe, but you should back them up anyway, since memory cards do fail during normal use. Simply rooting won't automatically remove any of your apps, so your good there, but it will give you the ability to remove apps, or even break (or even "brick") your phone, so take it easy and don't take any steps 'till you understand what you're about to do.
Here are some resources you can check out :
Ok, actually I'm not allowed to be helpful by posting links since I'm a new member, but google these terms: root droid incredible Jonamerica - that'll get you started...
As for swype the legit way to get it is to sign up for their beta (it's available on their website which I can't link you to) and go from there.
Click to expand...
Click to collapse
Thank you for this search link. Guide is very helpful, fills in alot of the blanks I've been having.
You're welcome.
There are numerous other guides and threads out there, so googling and reading is a good idea... I just researched it again since I rooted my wife's Inc. last night and since it has an SLCD screen I wanted to make sure that unrevoked had been updated to work with these screens - turns out it has and it worked fine. I actually had a scary moment when the phone wouldn't boot into recovery (five vibrations and a blank screen) but a google search and a battery pull saved me and so far so good since then - and I was able to uninstall verizon's backup assistant which was killing her battery every day.
Is that the only reason you rooted your wife's phone, was to remove some of the bloat? I might end up doing the same.
ramma2 said:
Is that the only reason you rooted your wife's phone, was to remove some of the bloat? I might end up doing the same.
Click to expand...
Click to collapse
Yeah, that was the main reason - when she upgraded from her dumbphone, we used Backup Assistant to transfer her numbers over, but lately it's been hanging during sync and killing her battery (and/or it may be syncing over the poor 1x data connection rather than available wifi - not sure about that but it sounds like something Verizon would do (it would both be a bit more secure, and use more data they could bill us for)). Since Verizon in all their wisdom made it so you can't uninstall that app or disassociate it from your account, I figured the I'd use force and just root the phone - worked too, now her battery's lasting all day, no problem.
I also would recommend rooting to anyone concerned about certain apps wanting internet permissions - DroidWall is a great app allowing you to prevent apps from accessing the internet (or you can block just wifi or just 3g for a specific app, potentially allowing you to better manage your data usage).
make sure to read alot about what ur getting into.. And remember to always backup before you do anything (incase of errors/problems) you can always boot back to stock...happy rootin!
Check this out: http://wiki.cyanogenmod.com/index.php?title=Barebones.
That guide is specific to Cyanogenmod, and it's a little outdated, but it's a good starting point to learn what applications are required for the phone to run, and which applications are simply "extra."
I apologize for my English, I'm Brazilian, and they told me to go to XDA to solve my problem.
In this case, I'm using Google Translate.
Hello, I have an S4 Mini, which is behaving in a very strange way and I already tried to make the two solutions that I found, that would be to put the Stock Rom, and the Hard Reset but that did not solve.
The symptoms I have noticed in him so far are:
1 - Battery behaves strangely (Sometimes I turn on and off the battery comes back with another charge). And it gets very fast when I'm using it. But the battery is new.
Android takes actions alone, for example, it is 0% I connect it, it unlocks the screen alone, and opens the native browser the "Internet", and goes to a page that is like a map, and starts to Write random things, like, McFWjham; KAMV.
3- The use of data has remained high when it is active.
4- Sometimes when it is working normally, it opens native programs for no reason, the most common is the "Internet".
So I do not know what else to do, the cell phone is very well preserved, no visible problems, no crumple of drops, the problem is just in time to use kkk. Help me pls.
#Edit :The screen when active uses 40% to 50% of the battery according to Android.
The "Android System" occasionally gets to spend 60% of the battery.
When the battery is locked it tends to remain, but when I use the smartphone, the battery tends to decrease with the second ones very fast.
The battery is new.
Please help me T.T
Luan532 said:
I apologize for my English, I'm Brazilian, and they told me to go to XDA to solve my problem.
In this case, I'm using Google Translate.
Hello, I have an S4 Mini, which is behaving in a very strange way and I already tried to make the two solutions that I found, that would be to put the Stock Rom, and the Hard Reset but that did not solve.
The symptoms I have noticed in him so far are:
1 - Battery behaves strangely (Sometimes I turn on and off the battery comes back with another charge). And it gets very fast when I'm using it. But the battery is new.
Android takes actions alone, for example, it is 0% I connect it, it unlocks the screen alone, and opens the native browser the "Internet", and goes to a page that is like a map, and starts to Write random things, like, McFWjham; KAMV.
3- The use of data has remained high when it is active.
4- Sometimes when it is working normally, it opens native programs for no reason, the most common is the "Internet".
So I do not know what else to do, the cell phone is very well preserved, no visible problems, no crumple of drops, the problem is just in time to use kkk. Help me pls.
#Edit :The screen when active uses 40% to 50% of the battery according to Android.
The "Android System" occasionally gets to spend 60% of the battery.
When the battery is locked it tends to remain, but when I use the smartphone, the battery tends to decrease with the second ones very fast.
The battery is new.
Please help me T.T
Click to expand...
Click to collapse
Sounds like you have a malware infection (though can't be 100% sure) maybe adware, I would guess. Factory reset should have fixed it and reinstall stock rom would definitely fix it even if malware rooted your phone. So that means there is an easy way for reinfect to happen.
Reinfection can happen many ways eg via bad app, through your google account, cloud storage, wifi, other network you have joined etc. Unfortunately it can be very hard to stop if you don't know how it's happening.
1st lets assume it's a bad app you installed, try run a good antivirus like Avast, does it show malware? Clean anything it finds. If you are lucky it will only be adware app that you reinstalled yourself after the new rom, once removed you will be OK and phone clean. But if it comes back by itself then it will take more work to find how it happens.
[Note: You can also boot phone into safe mode which will only allow system apps to run, it is a way to test if it is a bad 3rd party app, is the problem stopped now 3rd party apps can't run?. (though if your phone has been rooted by malware and bad app installed as system app, then bad app will still run). If you think it might have been rooted, download a root checker app to test]
Change the software.
IronRoo said:
Sounds like you have a malware infection (though can't be 100% sure) maybe adware, I would guess. Factory reset should have fixed it and reinstall stock rom would definitely fix it even if malware rooted your phone. So that means there is an easy way for reinfect to happen.
Reinfection can happen many ways eg via bad app, through your google account, cloud storage, wifi, other network you have joined etc. Unfortunately it can be very hard to stop if you don't know how it's happening.
1st lets assume it's a bad app you installed, try run a good antivirus like Avast, does it show malware? Clean anything it finds. If you are lucky it will only be adware app that you reinstalled yourself after the new rom, once removed you will be OK and phone clean. But if it comes back by itself then it will take more work to find how it happens.
[Note: You can also boot phone into safe mode which will only allow system apps to run, it is a way to test if it is a bad 3rd party app, is the problem stopped now 3rd party apps can't run?. (though if your phone has been rooted by malware and bad app installed as system app, then bad app will still run). If you think it might have been rooted, download a root checker app to test]
Click to expand...
Click to collapse
I have avast installed, and cleaned, but not changed at all.
My device was already rooted by me, when I gave the hard reset and soon after the exchange of the rom stock, the root was undone,
I installed Root Checker and it said root was not properly installed.
And as for the security mode, I turned the phone on in safe mode, and when the screen was unlocked, it automatically opened the "internet" browser, on the same page as always.
What should I do?
Luan532 said:
I have avast installed, and cleaned, but not changed at all.
My device was already rooted by me, when I gave the hard reset and soon after the exchange of the rom stock, the root was undone,
I installed Root Checker and it said root was not properly installed.
And as for the security mode, I turned the phone on in safe mode, and when the screen was unlocked, it automatically opened the "internet" browser, on the same page as always.
What should I do?
Click to expand...
Click to collapse
ummm .... I was expecting it was just going to be a bad app serving ads, this is going to be hard
OK, that should rule out 3rd party apps (assuming you have avast set to find all PUP/PUA, etc & nothing white listed) but not finding anything may mean malware is embeded in ROM or malware was able to open port on your system but then uninstall itself or just that there is a line of code that points browser to a server that is serving adware so antivirus is not finding it. Some malware is able to hide from anti virus software in different ways. Try this app, it is not true antivirus, you run it manually, don't worry if one or two antivirus companies like white armour identify malware, they do often even on clean phone.
https://play.google.com/store/apps/details?id=com.funnycat.virustotal
You can also submit any unknown app to virus total white this app for testing. Also you must submit the bad url your browser is connecting to for testing, this will help it spread to all anti virus database.
Good news is you do not appear to be rooted. But the ROM you flashed may still be bad. Where did you get the stock ROM you flashed? I would only use a trusted source like sammobile.com/ but even that is no guarantee. You could try flash another ROM, though as this happened on previous ROM it's probably a good ROM, unless you are getting all your ROM from same site that is not well known as trusted.
So that would suggest they are able to get easy access to your phone either via your google account, cloud service, local network at home/work/public, or through your modem/router.
Check your local network doesn't have a neighbour or other unknown device connected with this app Fing
https://play.google.com/store/apps/details?id=com.overlook.android.fing
Of course even if you recognise all devices that doesn't mean your brothers etc phone is not the source.
Do the same with other networks you have access to.. Talk to work, any one else infected? Change you password. If using public wifi always use a vpn.
Likely source is your modem/router, Log into your modem router check for updates for it, (if old and not supported you may need a new one), update or if latest firmware do a factory reset, now reboot and use a new password (do this at the same time you reset ALL your passwords, or you might just allow them to find new passwords and reinfect you)
Check your goggle account does not have someone else set for account recovery and/or two factor authentication. (set it up if not already on) Change password and ALSO change password on any other recovery account (write them down )
do the same for cloud storage, and scan storage for virus if possible eg dropbox local folder on pc. Unlink cloud storage from mobile until you are clean to block this route of reinfection.
Update any other device software & change passwords eg xbox, printers etc
I think there's something I'm forgetting
Now reflash stock ROM ( I would also suggest then flashing an up to date custom ROM with most recent security patches)
Things you can do that may help temporarily .....
Install a firewall app like netguard and block internet access to browser, through may not work as root etc is open by default. Oh yes, that reminds me of one thing I forgot, check your DNS has not been hijacked, netguard shows dns url in settings, change if you cannot find who dns server your phone is using, use google 8.8.8.8 & 8.8.4.4 if you don't know what to set.
Use an app like Link2SD, Titanium Pro to freeze apps, but you will need root for this.
It's a lot of work (& I think there is something I am forgetting), you may get away with just factory resetting your modem or something as it appears to just be adware so they probably don't have access to your accounts etc, but I tried to cover everything.
Hope I'm making sense through goggle translate!
Phone with mind of its own may not be hacked or haunted. It can in fact happen when it's exposed to moisture or water. Try putting the phone in a bag of rice for several hours, this will draw out all moisture. Hairdrayer may damage electronics because overheating.
If hacked, I would do following steps:
- modem update with odin (manuals search XDA)
- update latest TWRP (dito on XDA)
- start phone in Recovery mode and wipe everything, also Format Data on SD and external SD. Simple Factory reset my not delete it (use Advaced wipe)
- Install LOS14.1 from arco (check compatibility first, other version available for double SIM) It comes with latest security patches.
- Install Open GApps nano or pico. Install other Gapps later if you need.
- start phone, skip setting for WLan to see if everything works without Network.
Does it work? ...then an open WLan could be hacked, try a secure first or mobile network.
Good luck
Hello guys!
The battery drop problem is a common failure with this i9195 phone. I did a research but you have to help me as well by providing IMEI S/N (located under the battery) in PM to me!
New battery doesn't helps!
My current research: If your phone made in Vietnam in the 1-line ~2013, then you will have a dead motherboard soon, before that battery issue is occuring.
So please give me your details and I will look after it.
Do anyone know when they stopped producing i9195 and i9195i ? I need to buy the latest version, because my i9195 was made in 2013 and have that battery drain issue even with new batteries...
Thanks.
So, since I've got this over monster I've had a shocking number of issues. From sudden influx of crap followers online, people sending photos of some of those little people some people keep as pets.
But, it was probably a month in kept getting restarts that left my wall paper different, noticed key guard was in the running processes and Samsung wasn't able to give me much info at all.
Frequently my antivirus Would randomly flag some huge archive that would appear in Google vending folder and for some reason my weather app for my gear fit updated EVERYDAY
Today a series of unfortunate events and my phone did a factory reset shortly after a drop. I actually find that interesting because I don't know the drop or one of my...well call them gremlins. (Let's face it most of things i have attributed are probably just me going into PTSD blah blah blah... )
But today Turn process I did streamline to get Nic cards logging up and go and build to set up a good firewall get ad blockers going but I wanted to see what happened. And I go my weather app eventually.
And for some reason over in reddit they tend to think permissions like this are normal (I know Samsung's calculator is more than a calculator but mine once had almost every permission with about 800MB storage taken up.
So, This weather app seemed a little abnormal look up the IP address, looked up the company and, I looked furlough their partners for Samsung and Knox (didnt Find the one)
Just a quick assumption;
This module has the Hotspot 2.0 and REALLY likes its certificates. I noticed the option to share Your Wi-Fi with someone is always default toggle on.
If you scroll through the websites what we do you see that they are very proud that they have the edge one of the largest threat assessments for everybody when hop away from 1 of their servers , how many of them there are etc. And I Have this feeling that my device is actually just a nice little go between allowing others access to the internet while gathering their data points.
I can't actually post links but if you do their site plus this thing takes you right to the talk about their platform. Gove the data that goes through phones, that is good for anything from Cambridge analytica code level stealing countries to just figuring out how stable and great 5G is
/us/en/
what-we-do/intelligent-platform
I've seen the Address actually go by in my primary bp and add blocker but that 1 doesn't give me per app metrics so not sure what else goes to them.
Also, suddenly I think I know at least partially why they don't want flashed ROMS(?), at least yet.
I'd actually really like to know if anyone else, specifically related to 5G sees these also. Given the timing of that release device and anal FMRi weather app there. And for some reason even though I use a little cheaper company gives me unlimited data they have swapped my network several times between bigger company the smaller company. Its same towers and stuff usually so no big deal but, doesn't normally do that. (Have noticed that actually from the Galaxy store I see that quite often, but the "same" download from play store different version number less permissions)
(By the way hello this is the 1st device actually looking to rooting, prior the risk of that access to someone else was too much. Thanks for letting me join the community, I do hope I catch on quick ans don't drive any one too crazy)
(I tried to add in pictures of the weather app permissions and everything but can't post pictures either)
A drop shouldn't cause a factory reset... if it was caused by software you have an apk(s) that are trashware.
A 3rd party launcher put mine in a boot loop... twice.
If you did a recent firmware update it may have corrupted that load, reload as you did.
A virus or trojan are suspect as well. Run Malwarebytes and Trojan scanner. Some malware may not always be detected.
If you suspect a virus after a reload be careful what you load and bring into the system including the on SD card and any backups. Start with the base load and add only apps from Playstore at first. Go from there if it runs ok. Be wary of updates, one at a time, look for issues as you progress.
Same with backup data... if it's there you'll need to isolate it or dump all the data.
Use a package disabler like PD MDM to block bloatware from running and to troubleshoot.
blackhawk said:
A 3rd party launcher put mine in a boot loop... twice.
If you did a recent firmware update it may have corrupted that load, reload as you did.
Click to expand...
Click to collapse
I was worried so, as I'd never seen it i just know these things actually include that hardware backed encryption. I had worries that I had knocked that loose and might have issues with it later. (Accelerometer is off bit it seems now)
I can say likely:
1. Third party lock screen with data wipe. Not highly reviewed but was but trashy. May have accidently in the tussle woke the screen with motion and performed a wipe.
2. Package disabled. I play with what I can get away with disabling. Some Knox stuff is bit touchy.
3. I'd managed to start process of adding a second secure folder on a secondary profile. It hadn't like it but stayed working.
Or combo 2 & 3 but lock screen most likely I'd say
HungryRobotics said:
I was worried so, as I'd never seen it i just know these things actually include that hardware backed encryption. I had worries that I had knocked that loose and might have issues with it later. (Accelerometer is off bit it seems now)
I can say likely:
1. Third party lock screen with data wipe. Not highly reviewed but was but trashy. May have accidently in the tussle woke the screen with motion and performed a wipe.
2. Package disabled. I play with what I can get away with disabling. Some Knox stuff is bit touchy.
3. I'd managed to start process of adding a second secure folder on a secondary profile. It hadn't like it but stayed working.
Or combo 2 & 3 but lock screen most likely I'd say
Click to expand...
Click to collapse
Get a good case like the Bolt. High G impacts can cause internal damage but usually not especially if in a case.
I don't use secure folder, encryption or any screen lock especially 3rd party. Any apk you give administrator rights to lock the phone can effectively trash your OS load in a heartbeat.
Have had passwords get corrupted (rare) before and gotten totally locked out on a laptop bios.
That machine is now useless.
On Androids you can reload to recover if all else fails but a reload takes a lot of work...
If you still use oppo f1s in 2021 or 2022+ go throw it away RIGHT NOW . your phone is fully spying on you and somebody inside or outside of oppo is fully viewing your actions andde things u perform on your device here is why
First after using the phone for 4 years i found out that it has a spyware built into the system that allow a person to fully see every action you perform on the android os
My oppo phone had android 6 with no malware or ADB enabled . And what happened to me is so crazy
One day i booted into my computer with a usb stick that had manjaro linux . So i booted into live persistence mode then i connected my computer to my wifi then when i turned my oppo f1s phone
and after the phone connected to the same wifi as my computer
Somebody hacked the linux os and started writing words on my screen then targeted a company from the USA by writing its name on a wifi login interface
So the person who control the spyware tried to say that the name of the company he wrote is responsible on the hack while it is actually not
The good thing is that i took a picture ofof the words this person wrote on my screen as you can see on the attachements
so after i wiped the data of my phone . Somebody played the google ring sound on the phone when the phone had no google accounts connected on it .
On that time i realised that the phone had a built in spyware used by oppo in order to monitor user activites and it has full access to the system and camera and microphone and your process list does not display it and u can not toggle its permissions or even detect it or remove it .
Just get another phone because the oppo f1s is not safe at all as i saw somebody gained access to my computer through the phone itself
While the phone had no running services at the start except of google services and messenger and facebook . And for messenger and facebook they were installed from the playstore
And the phone had no malware detections at all .
it has something unormal built into it
So if you still own a oppo f1s you better throw it away and switch away to another phone
This is not the complet story of the phone still more
Malware on Chinese phones?
X-helper may be present...
Reflash with a clean rom.
So why do you think hacker attacks are related to mobile phones?
mlgmxyysd said:
So why do you think hacker attacks are related to mobile phones?
Click to expand...
Click to collapse
Some of these phones were preloaded with malware apparently.
blackhawk said:
Some of these phones were preloaded with malware apparently.
Click to expand...
Click to collapse
it's impossible
mlgmxyysd said:
it's impossible
Click to expand...
Click to collapse
Stop that you...
The fact is that the only running processes on the phone were system processes , messenger , facebook , and google services .
So after i wiped the data and after all installed apps were removed i did not enter my google account on the phone so the ring audio appeared and happened when the phone had no google accounts connected and no installed applications at all . Means that somebody played the google ring sound on the oppo phone after i wiped the data
So how somebody can ring your phone when your phone has nothing on it . And has no google accounts connected to it . So the spyware take part of the system
and for changing the rom or getting Twrp on it is a very hard mission . even when i tried flashing it with a pc and following most tutorials it, failed .
So oppo actually did something unormal with this phone . Also its a phone that was released on august 2016 so imagine what may happened with phone made on 2022 and 2021
This is quite serious accusation.
How did your Manjaro Linux get hacked while your phone was connected to the same wifi? I find it very strange to see Linux operating system can be easily hacked. From your screenshot, it even showed the X Windows hacked similar to remote desktop.
x3r0.13urn said:
This is quite serious accusation.
How did your Manjaro Linux get hacked while your phone was connected to the same wifi? I find it very strange to see Linux operating system can be easily hacked. From your screenshot, it even showed the X Windows hacked similar to remote desktop.
Click to expand...
Click to collapse
Yeah I was surprised too. I was running it on live persistence mode directly from the usb . So it was not installed on the hard drive also it had the default kernel and the default installation environment
So I did not install it and
I ran a command to install an application then the person who gained access to the linux os Canceled the installation and wrote ";6OR" then pasted "The Global broadband Speed test " on a wifi login interface .
He actually tried to target ookla speedtest company while ookla is fully out of the situation .
Even the ookla speedtest app that I had was installed from the playstore and was not running on the background and had no permissions at all
Just the person saw me running ookla on my oppo device did something smart and wrote it on my computer's screen after 4 years of spying as a way to hide or to cover what he did
Thats kinda weird
So malware also allow the attacker to gain remote access to other connected devices while having full access on the device . And the applications manager does not display it or even allow the user to modify its permission .
So the user will notice nothing at all
x3r0.13urn said:
This is quite serious accusation.
How did your Manjaro Linux get hacked while your phone was connected to the same wifi? I find it very strange to see Linux operating system can be easily hacked. From your screenshot, it even showed the X Windows hacked similar to remote desktop.
Click to expand...
Click to collapse
Android is a modified Linux platform. I feel safer running Windows on the PC to backup an Android. As a further safeguard the PC can't be connected to wifi or the internet.
A Android to PC infection could get very ugly if it was able breach the backup data drives. It's one of the reasons I have many backup data hdds that are time staggered up to years apart and physically isolated from each other and the PC.
XDA gets delusional people here weekly that think they been hacked. Sadly it's their own brain that's been hacked by biology or skewed thinking.
That doesn't mean that real infections and hacking don't happen. Documenting them is tedious and the last thing I care about doing when faced with an active infection or tainted file. My only concern is damage control and repairing the damage already done.
I really don't care if someone doesn't believe me when I tell them about a malware jpeg that damaged files in my download folder. I found that jpeg, successfully deleted it and repaired the damage... that's all that matters to me. That's the worst I've seen in 2 years running on Pie. Took about an hour to clean up, whatever.
I downloaded that jpeg, my bad. Fortunately I discovered it in the download folder by opening it there and seeing the changes made in that folder immediately afterwards. That's the second tainted jpeg I've encountered in over a decade.
If it had been a preloaded infected apk (or one I inadvertently installed) with full Administrator privileges the outcome would have been much worse.
This OP may actually have software issue not a soft tissue issue... just saying
blackhawk said:
"XDA gets delusional people here weekly that think they been hacked. Sadly it's their own brain that's been hacked by biology or skewed thinking. "
Click to expand...
Click to collapse
I was shocked by the title so I clicked in.....
Ummm,
Isn't all the firmware packages are downloadable? Where is the malware file located in the firmware exactly? Where is the related payload file?
Isn't it necessary to provide the malware file from the firmware to point out the malware was made by the vendor? How can you be so sure you're not hacked by somewhere else?
This story looks really like this: I think he or she is having an affair with one's wife or husband. Where's the proof? Sorry, I don't have proof, I simply think it happened.
Well, looks like no problem at all...
evilhawk00 said:
I was shocked by the title so I clicked in.....
Ummm,
Isn't all the firmware packages are downloadable? Where is the malware file located in the firmware exactly? Where is the related payload file?
Isn't it necessary to provide the malware file from the firmware to point out the malware was made by the vendor? How can you be so sure you're not hacked by somewhere else?
This story looks really like this: I think he or she is having an affair with one's wife or husband. Where's the proof? Sorry, I don't have proof, I simply think it happened.
Well, looks like no problem at all...
Click to expand...
Click to collapse
if I can find a way to get TWRP flashed on the phone I ll be able to take a backup ZIP file and send it here
so anyone here will be able to even try the infected OS on a test phone
by flashing the backup zip file on the "restore" feature of TWRP
And this is not the complet story ,
because when I got that phone for the first time on 2017 and when I was a kid , I was recording the sea on a boat then a girl came up and told me to take a look on her phone , then she showed me that the same video I was recording is present on a adult website and because of my age that time I did not understand what she wanted to say and that the video was getting streamed from my oppo f1s phone's camera and until this day I did not find myself even on the that website , and from 2017 until 2021 I keept using the phone which was the biggest mistake ever of my life until I realized that it was it was not only infecting my devices , it was also streaming me without my permission to an adult website while nothing on the phone is having camera permission
And the process used or I can confirm as the tool used by oppo is the "Android OS" itself because it has already full permissions and access on the phone that the user can not even toggle
Also I did never use the phone on a wifi having somebody connected with a Pc with such tools so I can confirm that it nobody has the ability to try hacking it ,
and for that story upside still more.... more..... like one time I went into a livestream video on youtube then the person that I started watching said
"Omg he is watching this video" and "Dude your ISP is spying on you and your whole country wont tell you and yeah they are streaming on P###hub and everyone think that they are making fun of you while they are actually not they are actually spying on you"
then the guy next to this streamer told him "Dude its not ISP basically nobody know why"
And there is another youtuber who showed the same reaction on one of his livestream videos
but the problem is that when I keept searching for the stream , they were deleted , I spent like months searching dor myself on the internet and I found nothing
A process called "Android OS" the one that the process bar display as system app ,
CESTRayCRYSTAL said:
if I can find a way to get TWRP flashed on the phone I ll be able to take a backup ZIP file and send it here
so anyone here will be able to even try the infected OS on a test phone
by flashing the backup zip file on the "restore" feature of TWRP
And this is not the complet story ,
because when I got that phone for the first time on 2017 and when I was a kid , I was recording the sea on a boat then a girl came up and told me to take a look on her phone , then she showed me that the same video I was recording is present on a adult website and because of my age that time I did not understand what she wanted to say and that the video was getting streamed from my oppo f1s phone's camera and until this day I did not find myself even on the that website , and from 2017 until 2021 I keept using the phone which was the biggest mistake ever of my life until I realized that it was it was not only infecting my devices , it was also streaming me without my permission to an adult website while nothing on the phone is having camera permission
And the process used or I can confirm as the tool used by oppo is the "Android OS" itself because it has already full permissions and access on the phone that the user can not even toggle
Also I did never use the phone on a wifi having somebody connected with a Pc with such tools so I can confirm that it nobody has the ability to try hacking it ,
and for that story upside still more.... more..... like one time I went into a livestream video on youtube then the person that I started watching said
"Omg he is watching this video" and "Dude your ISP is spying on you and your whole country wont tell you and yeah they are streaming on P###hub and everyone think that they are making fun of you while they are actually not they are actually spying on you"
then the guy next to this streamer told him "Dude its not ISP basically nobody know why"
And there is another youtuber who showed the same reaction on one of his livestream videos
but the problem is that when I keept searching for the stream , they were deleted , I spent like months searching dor myself on the internet and I found nothing
Click to expand...
Click to collapse
This is nonsense. You don't need TWRP to get the infected file. If it is made by vendor just like you said, simply download the official firmware from oppo and point out which file it is. Then analysis the file with rever engineering, this is how you can proof it is made by oppo
Anything grabbed from your phone can't proof anything. Anyone can insert malware into your phone. Even a local reseller can do that. The bootloader is not locked, even an APK that uses exploit to get root access can replace the system file of your phone. Your system might have been modified by some malicious APKs.
For example, if you use KingRoot, they insert su.kud file into your /system partition. Any malware that has the ability to root the phone can do that. Since the firmware is outdated without getting any security patch, any malware with ability to root the phone can insert dirty things into your phone. I think this may be the case on your phone.
CESTRayCRYSTAL said:
Somebody hacked the linux os and started writing words on my screen then targeted a company from the USA by writing its name on a wifi login interface
So the person who control the spyware tried to say that the name of the company he wrote is responsible on the hack while it is actually not
Click to expand...
Click to collapse
Why would a hacker do that? It's silly. A hacker would use your wifi connection without advertising its presence like that.
CESTRayCRYSTAL said:
The good thing is that i took a picture ofof the words this person wrote on my screen as you can see on the attachements
Click to expand...
Click to collapse
Yes I saw that attachment but you know it doesn't prove anything.
Look :
"Oh no! XDA is infected! I was trying to enter my password when the spy started to write this words before me. Please, delete all your accounts!"
(Disclaimer: it's a joke, don't take it seriously).
CESTRayCRYSTAL said:
I was recording the sea on a boat then a girl came up and told me to take a look on her phone , then she showed me that the same video I was recording is present on a adult website and because
Click to expand...
Click to collapse
Mm, yeah ok. It totally happened.
Seems legit.
Guys, let's help him to clean up his infected Oppo!
I suggest we put on our red dresses and dance in circle singing the "Consummatum est. Diabolo fuge. Diabolo fuge!" incantation.
I know its kinda weird but... the last time I used it on I picked it up after booting it and I tried to talk next to it as if there is something that start running on the phone directly after turning it ON and that start streaming..
After I booted it I started explaining the situation and saying "bla bla bla the phone is hacked and the person who may be streaming the audio etc is a criminal bla bla this phone has nothing installed on it etc nothing is running on the background except of google services and some system apps bla bla if you can get him arrested etc.."
And after I finished speaking I went into the factory reset and I wiped all the data of the phone
and when it booted up again I wiped the data again ...
And after this when the phone booted up I did not enter my google account into the phone , so the phone had completly no google accounts connected to it
and here is the craziest thing that blew my mind
right after booting it , somebody played the "Google ring sound" on the phone while having no google accounts connected to it
That google ring sound is the one that anyone can play after getting into a google account and clicking on the "RING THE PHONE" option on
like there is no way for somebody to do such thing while no google accounts are connected to phone
so I was extremely shocked like how this can happend , I did not enter any google account to the phone...
I tried even to check my google account using another device and it was not connected to any device ,
So somehow that malware allow its owner to play such audio on the victim device...
like this is something that I found no explanation for
And As I remember this is the last thing that happened before I gave up using that oppo phone ,
I know im not writing this to get a wizard up to fix the phone or something , just trying to say that oppo phones in general are not that much private or safe at all after I experienced all this
also im not a professional or somebody familiar with malware reverse engineering , im just seeing the malware impact by its behaviour as any normal user ,
also I dont have that magical test environment to crop each part of the firmware and look into it , im still even scared from getting it connected to any wifi , like if it is going to explode
But the fact that 5 years from my life were getting streamed to an adult website by that malware .. hurt so much... , not only this but watching a livestream using the infected phone and hearing the streamers screaming loudly and showing that reaction
then finding out that many faces from people in real life start changing and hearing unexpected reactions as if they know something and they wont tell you about is something that is hard to understand
like yeah as u said , why would someone spend his life or do that or even use a malware in order to ruin somebody's life by streaming him into an adult website and doing all the possible to dont let him know about it ,
And ending up getting bullied in real life by unknown persons in a daily way for something u dont know and just hearing a few words from them that explain a small part of the whole story
anyway thanks just tried to share my experience
CESTRayCRYSTAL said:
And after I finished speaking I went into the factory reset and I wiped all the data of the phone
and when it booted up again I wiped the data again ...
And after this when the phone booted up I did not enter my google account into the phone , so the phone had completly no google accounts connected to it
and here is the craziest thing that blew my mind
right after booting it , somebody played the "Google ring sound" on the phone while having no google accounts connected to it
Click to expand...
Click to collapse
Factory reset is not enough to remove malware inserted into your firmware via root. Factory reset doesn't reset to factory state in your case because factory reset doesn't really rewrite /system partition, it just deletes /data partition. So any modification in /system partition still remains. If you run SafetyNet check on your device you will find out it fails to pass SafetyNet. How to find out? You can use YASNAC to check it. If your phone fails to pass Safetynet, that means your device doesn't have the same software as the stock one. And that means you need to use another method to reset your device.
You need to reinstall stock firmware with recovery or use DownloadTool to reset your device.
Seeing how you fix your phone, I think you really lack basic knowledge of Android or even cyber security. I suggest you remove this ridiculous thread because your accusation is actually based on nothing, but only with personal experience which was actually caused by misconception due to the lack of basic Android knowledge.
evilhawk00 said:
Factory reset is not enough to remove malware inserted into your firmware via root. Factory reset doesn't reset to factory state in your case because factory reset doesn't really rewrite /system partition, it just deletes /data partition. So any modification in /system partition still remains. If you run SafetyNet check on your device you will find out it fails to pass SafetyNet. How to find out? You can use YASNAC to check it. If your phone fails to pass Safetynet, that means your device doesn't have the same software as the stock one. And that means you need to use another method to reset your device.
You need to reinstall stock firmware with recovery or use DownloadTool to reset your device.
Seeing how you fix your phone, I think you really lack basic knowledge of Android or even cyber security. I suggest you remove this ridiculous thread because your accusation is actually based on nothing, but only with personal experience which was actually caused by misconception due to the lack of basic Android knowledge.
Click to expand...
Click to collapse
I know that a factory reset or even doing it billion of times can not solve the problem
I was just explaining that the whole thing going on here is not caused by user interaction , it means that I did not M I s t a k e l y end up here by doing a mistake like getting something to run on the os and giving it wide access on the device
And this is not the way I fix any phone , im not like the smart guy who says "hey go format your device and everything will be fine"
I know it will change nothing on this case
evilhawk00 said:
SafetyNet check on your device you will find out it fails to pass SafetyNet. How to find out? You can use YASNAC to check it. If your phone fails to pass Safetynet, that means your device doesn't have the same software as the stock one. And that means you need to use another method to reset your device
Click to expand...
Click to collapse
it passes safetynet, and all these problems keep going on , the problen is not caused by an app that had root access on the device
its caused by the stock firmware itself
Can anyone help me carrier unlock my Verizon phone? My phone has been hacked and I hope being able to flash it will help me to get rid of whatever they have done to it. Can anyone tell me why I get this message when I reset my phone? Any help would be greatly appreciated
there is no carrier unlock for VZW models. if you can boot into recovery, sideload the OTA version that was last on your device.
What did you do that resulted in the phone being hacked? With the sectors being wiped that are shown in the images, it looks like you have provided total device access to something whilst having an unlocked bootloader or something similar. If you let us know what happened, it might help us to figure out what options you may still have.
But definitely see if you can do what @uicnren mentioned first.
Im not sure who or how they wiped anything. It happened one day after connecting to my girlfriends wifi. I got ahold of Verizon and they sent me a new phone and as soon as I started it the same thing happened to it also
How do I find what OTA version was used on my phone?
Nothing hacked here... this is an error when wiping the Secure Element (the trusted secure module).
(https://android-review.linaro.org/p...cure_element/1.0/SecureElementHalCallback.cpp line #66)
Are you initiating the wipe from the recovery? If so, that's likely the reason. If there is an account attached to the device, a wipe must first be initiated from within Android (Settings)
Woodruff87 said:
Im not sure who or how they wiped anything. It happened one day after connecting to my girlfriends wifi. I got ahold of Verizon and they sent me a new phone and as soon as I started it the same thing happened to it also
Click to expand...
Click to collapse
what symptoms were you seeing that made you think you were hacked?
Those errors are normal in Recovery Mode. I see them all the time, sometimes they don't appear, usually they do.
Did you remove your google accounts from settings, do a factory reset from the reset menu and lastly in recovery mode where you posted the screenshots from.
Your Account might be hacked but the phone is unlikely hacked. You would get a message at boot telling you that the device has been modified. With a locked bootloader its extremely unlikely (unless NSO Group is targeting you).
Woodruff87 said:
Can anyone help me carrier unlock my Verizon phone? My phone has been hacked and I hope being able to flash it will help me to get rid of whatever they have done to it. Can anyone tell me why I get this message when I reset my phone? Any help would be greatly appreciated
Click to expand...
Click to collapse
Did you unlock the bootloader? Have custom firmware/kernel installed?
A "hacker" wins nothing by resetting/wiping your phone. They want data, and that only works if the phone can turn on and works. This looks like a wipe/factory reset gone wrong, which spells user error or software error and less likely a "hacker" attack. Most hacks you will never notice. A hacker that makes you notice that something went wrong, is either an amateur or did it on purpose. Ergo, he wants you to know that something went wrong, which usually only happens in order to extort you. If there is no extortion, then an obvious act by a hacker is highly unlikely.
We need some more information. What firmware had you installed? What happened exactly when. Did you install any new apps recently? What did you do prior to something going wrong? All the information that could help us troubleshoot your issue.
You said your phone wiped itself a day after connecting to your girlfriends wifi, and that a replacement device that you got sent by your carrier, did the same. Did you check your Google account? Do you have two factor authentication activated? It sounds like your phone got wiped over wifi, which would require access to your Google account. It's just odd that you get errors, which normally shouldn't happen if someone would use the erase a lost Android device function.
It's also possible that your backup from your GAccount is simply corrupted (many people had issues with random reboots). You should try and set up your (replacement) phone anew without any backup, maybe that can fix your issue.
Beyond that Google account thing-y, anything else is highly unlikely. Even specialized companies have serious issues getting into a modern smartphone, lest alone an Android 12 phone with a Google Server grade Titan m2 chip. The newer the firmware, the less likely the chance that someone from the outside could get in, especially with a phone like a Pixel that isn't very common. Most security firms/govermental agencies can only abuse older, known security loopholes. It's more likely that very popular phones like a Samsung or IPhone are targets from "the bad guys", since there will be bigger payoff for breaking the security of those phones, since there is a greater pool of users to target. Most hacks I've witnessed weren't random, they were targeted. Ask yourself: Am I worth the trouble of getting hacked? Do you have anything of interest on your phone that would warrant an excessive use of resources? Managing to hack a Pixel is not only unlikely in terms of the security you need to breach, but also in terms of the potential payoff in relation to the necessary knowhow and resources. It's just "not worth it".
What you should do immediately, just in case, is secure your Google account. Change your password. Maybe even change your two-factor authentication, if you have one (sms is not secure, use a token generating software/device). Change the wifi password from your girlfriend and check the list of connected devices. make a list of these connected devices + history (find that in the rooter software) and check them against the devices you know of. Also check the list of connected devices to your GAccount. Use the option to log out ALL devices from your Google account, so only your device is connected.
Do any other people have access to your phone? Do any other people know your passwords? Does your girlfriend has access? Do any other people have biometric security saved on your phone? Do you trust your girlfriend completely?
Make sure you use a special, new password for your GAccount, never reuse old ones that you have used somewhere else. Also check your emails on https://haveibeenpwned.com/
Beyond that, if you are not doing already, use a password manager.
Woodruff87 said:
Im not sure who or how they wiped anything. It happened one day after connecting to my girlfriends wifi. I got ahold of Verizon and they sent me a new phone and as soon as I started it the same thing happened to it also
Click to expand...
Click to collapse
Wait a sec. Verizon sent you a new (refurbished probably but new nonetheless) phone and when you turned it on weren't you greeted with the startup menu? Am I missing something?
Morgrain said:
Did you unlock the bootloader? Have custom firmware/kernel installed?
A "hacker" wins nothing by resetting/wiping your phone. They want data, and that only works if the phone can turn on and works. This looks like a wipe/factory reset gone wrong, which spells user error or software error and less likely a "hacker" attack. Most hacks you will never notice. A hacker that makes you notice that something went wrong, is either an amateur or did it on purpose. Ergo, he wants you to know that something went wrong, which usually only happens in order to extort you. If there is no extortion, then an obvious act by a hacker is highly unlikely.
We need some more information. What firmware had you installed? What happened exactly when. Did you install any new apps recently? What did you do prior to something going wrong? All the information that could help us troubleshoot your issue.
You said your phone wiped itself a day after connecting to your girlfriends wifi, and that a replacement device that you got sent by your carrier, did the same. Did you check your Google account? Do you have two factor authentication activated? It sounds like your phone got wiped over wifi, which would require access to your Google account. It's just odd that you get errors, which normally shouldn't happen if someone would use the erase a lost Android device function.
It's also possible that your backup from your GAccount is simply corrupted (many people had issues with random reboots). You should try and set up your (replacement) phone anew without any backup, maybe that can fix your issue.
Beyond that Google account thing-y, anything else is highly unlikely. Even specialized companies have serious issues getting into a modern smartphone, lest alone an Android 12 phone with a Google Server grade Titan m2 chip. The newer the firmware, the less likely the chance that someone from the outside could get in, especially with a phone like a Pixel that isn't very common. Most security firms/govermental agencies can only abuse older, known security loopholes. It's more likely that very popular phones like a Samsung or IPhone are targets from "the bad guys", since there will be bigger payoff for breaking the security of those phones, since there is a greater pool of users to target. Most hacks I've witnessed weren't random, they were targeted. Ask yourself: Am I worth the trouble of getting hacked? Do you have anything of interest on your phone that would warrant an excessive use of resources? Managing to hack a Pixel is not only unlikely in terms of the security you need to breach, but also in terms of the potential payoff in relation to the necessary knowhow and resources. It's just "not worth it".
What you should do immediately, just in case, is secure your Google account. Change your password. Maybe even change your two-factor authentication, if you have one (sms is not secure, use a token generating software/device). Change the wifi password from your girlfriend and check the list of connected devices. make a list of these connected devices + history (find that in the rooter software) and check them against the devices you know of. Also check the list of connected devices to your GAccount. Use the option to log out ALL devices from your Google account, so only your device is connected.
Do any other people have access to your phone? Do any other people know your passwords? Does your girlfriend has access? Do any other people have biometric security saved on your phone? Do you trust your girlfriend completely?
Make sure you use a special, new password for your GAccount, never reuse old ones that you have used somewhere else. Also check your emails on https://haveibeenpwned.com/
Beyond that, if you are not doing already, use a password manager.
Click to expand...
Click to collapse
Thanks I really appreciate the help and all the advice. I checked https://haveibeenpwned.com/ and my account has been pawned in 1 data breach... I will deactivate the Google account and start over fresh. Thanks again for all the info
bencozzy said:
Two things are they refurbished? And do they work without signing into google?
Click to expand...
Click to collapse
The first one was new, but the one I got from Google as a replacement was refurbished. Ill try resetting through the settings and deactivating all my accounts.
Woodruff87 said:
Thanks I really appreciate the help and all the advice. I checked https://haveibeenpwned.com/ and my account has been pawned in 1 data breach... I will deactivate the Google account and start over fresh. Thanks again for all the info
Click to expand...
Click to collapse
This, among many other things, is one of the reasons I use GrapheneOS and NO gooble services (despite all the attention they give to sandboxed gooble services).
Woodruff87 said:
Thanks I really appreciate the help and all the advice. I checked https://haveibeenpwned.com/ and my account has been pawned in 1 data breach... I will deactivate the Google account and start over fresh. Thanks again for all the info
Click to expand...
Click to collapse
your google address was found on that site for another service and you used the same password for both services, correct?
despite what some believe, your google account will not get hacked unless your password is insecure (ie. leaked or insufficient with 2FA). anything less and your asking for trouble (also using GrapheneOS).