Database Info

Remote task29 as security

Hi Guys
Is there a application that could execute a remote task29 if phone gets stolen?
Most of theves are dump so would not know how to put the OS back on.
The normal way of IMEI blocking does not work, some networks will not care to block, some will not communicate to others so it will be blocked for example on O2 but not t-mobile... We all also know that you just need to sell a IMEI blocked unit abroad.
Two functions would need to be present:
Function 1 a remote wipe so you send a txt message.
Function 2 is to wipe the phone if new sim is inserted and password is not provided. Such software would need to be able to cook itself in to rom.
Second possibility for Function 2 is each time new sim is inserted a txt message is sent on pre-arranged mobile number and then use remote wipe.

lookout mobile security has that feature of remote wipe.
www.mylookout.com
antivirus, remote wipe, and gps locator all work.

nrfitchett4 said:
lookout mobile security has that feature of remote wipe.
www.mylookout.com
antivirus, remote wipe, and gps locator all work.
Click to expand...
Click to collapse
It is not even remotely the same as even if you do wipe the device it is still usable, there is just you data erased. I am talking OS erased so phone does not work, so you can get it to bootloader and only if you know how.

ruscik said:
It is not even remotely the same as even if you do wipe the device it is still usable, there is just you data erased. I am talking OS erased so phone does not work, so you can get it to bootloader and only if you know how.
Click to expand...
Click to collapse
considering you cannot even task29 unless you are synced to a computer, how do you suppose this can be accomplished???

nrfitchett4 said:
considering you cannot even task29 unless you are synced to a computer, how do you suppose this can be accomplished???
Click to expand...
Click to collapse
I am not a software developer but I would say a app that works just before OS boots.
TBH task29 seems like the best idea as if you were to get the phone back you could get it back online but any app that would brick the phone remotely is what one needs.
I am quite certain something like that could be done.

why not have it flash a bricking radio from sd card or within the rom, if the command is send?

how about an app then makes the phone transform into a plane and fly back to you?
its impossible what you are asking for afaik

davidgk said:
how about an app then makes the phone transform into a plane and fly back to you?
its impossible what you are asking for afaik
Click to expand...
Click to collapse
Bolox I can flash radio or OS from SD card. All a app would need to do is get phone to bootloader on command and have, as suggested, a bricked rom for radio on SD card. A bricked radio rom would not need to be big in size so a cab installer would work.

Its a very good idea, hope some1 can do it..

my hats off to you sir, a very good idea!
Now if there is only a developer skilled enough to realise it!

ruscik said:
Bolox I can flash radio or OS from SD card. All a app would need to do is get phone to bootloader on command and have, as suggested, a bricked rom for radio on SD card. A bricked radio rom would not need to be big in size so a cab installer would work.
Click to expand...
Click to collapse
but what does this achieve for you???
A phone wiping program would wipe personal data.
What would bricking the phone do except make the phone unusable?
You'll still be out a phone...

nrfitchett4 said:
but what does this achieve for you???
A phone wiping program would wipe personal data.
What would bricking the phone do except make the phone unusable?
You'll still be out a phone...
Click to expand...
Click to collapse
Might be so, but if knowledge gets around that more and more phones can (and will) be bricked remotely once stolen, why steal?
I think it would be a very useful feature on any phone.
So I agree with the question for such an app.
Regards,

nrfitchett4 said:
but what does this achieve for you???
A phone wiping program would wipe personal data.
What would bricking the phone do except make the phone unusable?
You'll still be out a phone...
Click to expand...
Click to collapse
Well why do you fit a alarm on a car when it is gone it is gone, why do you put alarm in a house when they come they come.
Something odd with this statement. Why would you think it is ok for some one who stole my phone to use it when I had to work for it?
For me best solution would be to have it wired with C4 and 5s in to first phone call boom!!!
As that would be illegal second option brick the phone.

ruscik said:
Well why do you fit a alarm on a car when it is gone it is gone, why do you put alarm in a house when they come they come.
Something odd with this statement. Why would you think it is ok for some one who stole my phone to use it when I had to work for it?
For me best solution would be to have it wired with C4 and 5s in to first phone call boom!!!
As that would be illegal second option brick the phone.
Click to expand...
Click to collapse
Since when does a car alarm or home alarm burn down my house or car? That is essentially the same thing. If someone breaks into my house and steals my 60" dlp, I can't remote detonate it either.
I'm guessing that I don't understand. Maybe it is my long history with cdma phones that had esn's that could be blocked making the phones worthless (usually) once stolen.

Ill build it .... i just need a few beta testers?
Any takers?
jk.. i actually like the idea of disabling my phone if i knew it was gone for sure. .but i dont think i would be comfortable running around with this bomb in my phone unless i knew how to fix it.. and a bricked radio (easiest remote detonate solution) is obviously unfixable.

you know I was hoping this topic was headed in a different direction. like the phone company or microsoft running ras commands. like injecting and changing your files around so when you go to flash the seed will be planted for later execution. but dude if your phone gets stolen beat the punk bastards ass. or make sure you have handset protection. stupid topic. its just gonna add to the bricked my phone posts but not before they go on a couple of paragraphs of how they know what there doing but this and but that. wow then its gonna keep spreading like a ****ing plauge of dumb ass questions instead of keeping their cocksucker shut and read and learn. if your not f-ing it up, then your not learning.

i remember the sony ericsson p910, p990, and p1i could have set a sim password that works the same way the bios password works on most laptops with this feature... once the sim changed or the phone is flashed, the password must be entered to boot into the OS, personally i think this should be standard on every mobile OS...
and regardless how much times you reinstall windows, flash the bios, or remove the bios battery, the password remains, kinda annoying but at least it works

There are already some really good apps available for if your phone is lost or stolen. I don't know the names off the top of my head but I did some help on development on one 2 years ago and it was quite advanced and will send you silent text containing the new IME number if changed and the GPS location. Rendering the phone useless would be stupid in my opinion if you intend on retrieving it. let the security software do it's job and be happy to get your phone back.

qhusb_dload brick after bad vold.fstab edit

Sorry if this is the wrong place to post - just wanted to share my unpleasant experience.
I've bricked my phone in a peculiar way - it appears to be a hard brick, non-responsive to any buttons. Plugging in to the computer gets me the dreaded qhusb_dload QPST download mode. Not a good sign.
It wasn't due to faulty ROM flashing, either. I made a bad edit to /system/etc/vold.fstab fiddling with the way the internal and external SD cards get mounted - mmc1 instead of mmc2. After one reboot, I had some sd card corrupted errors. Proceeding to format the card may have been my fatal error. By the second reboot, I was bricked. D'oh. I imagine I had accidentally mounted a partition of the internal emmc that is critical to normal operations, then tried to wipe it.
From what I've read, a USB jig won't do much good, but it's worth a try.
Anyone messing around with their /system folder, be warned.

That's sux, but on a good note, $50 and a little waiting will get your phone back, or you could just warranty that sucker ;-) give more refurb units to some other xda members lol

I sense another refurb sale on ATT.com. Sorry to hear about that, sounds bad. No guts no glory right?

I purchased this as a refurb, too. The cycle continues...
Not sure how the whole exchange process will work in this case. I mean, I can exchange for a different phone, or a new Skyrocket and pay the difference, but I really had my heart set on a cheapo skyrocket. Perhaps if I take this up with Samsung instead?

Ur 90 warranty is over already? That sux then. I personally would pay $50 and get it de-bricked, its the cheapest/best option.

I didn't expect much in the way of warranties because I purchased this refurbished. With Samsung customer service I didn't have much luck. However, I just got off the phone with AT&T, and they're overnighting me a replacement, which is cool. They have a 30 day policy on any web store items, so I'm covered. Anyways, lesson learned

check this thread, please: http://forum.xda-developers.com/showthread.php?t=1522351

RussianBear said:
check this thread, please: http://forum.xda-developers.com/showthread.php?t=1522351
Click to expand...
Click to collapse
Are you in thw process of bringing that to the skyrocket?

silver03wrx said:
Are you in thw process of bringing that to the skyrocket?
Click to expand...
Click to collapse
we need all the help we can get. just a bunch of curious noobs, ya know
the main discovery we did with sensation was to make the emmc visible to any pc it's connected to, then overwriting whatever was messed up (like the hboot) with a stock version of that file.
in theory, you should be able to do this to any phone running on a qualcomm chipset once it's in the qhsusb_dload mode. still lots to test, but anyone is welcome to participate, of course!

Do you have a skyrocket that your testing on?
Obviously you know its much different then hboot
On htc.

silver03wrx said:
Do you have a skyrocket that your testing on?
Obviously you know its much different then hboot
On htc.
Click to expand...
Click to collapse
nope, just sensation. they both run on a qualcomm chipset though, so i'm just speculating here.
the bricks we're "saving" right now are for people that executed s-on without fully reading the instruction, thereby leaving them in qhsusb_dload mode. your cases might be specific to a different area, but the principal is still the same:
find what is messed up and replace it with the correct file via open emmc

Big progress made for APQ8060 and MSM86xx processors. Sensation hard brick solution coming very soon and SkyRocket/T-Mobile Galaxy S II solutions already solved...

What's this I smell? Possible de-brick
Sent from my SAMSUNG-SGH-I727

I also experience this problem on my xperia L
I messed up with vold.fstab and now my phone can't enter flashmode or it doesn't turn on also

amnher said:
I also experience this problem on my xperia L
I messed up with vold.fstab and now my phone can't enter flashmode or it doesn't turn on also
Click to expand...
Click to collapse
i have the same problem xperia miro
any updates ?

[Q] Nexus 5 MEID/Nandroid backup problems.

Hello, I was switching from my old Nexus5 to another N5 of the same color and storage capacity, I flashed an entire Nandroid backup to the phone and now its not displaying any Meid or imei, and my service which was activated before the backup is gone. I thought it was a problem with the backup, so I flashed stock using the tool on the android developers website And it still disappeared, but was at least able to recognize sprint service and my phone number, but I couldn't even get a signal.
What did I do wrong? Is there any solution? Because I have work in a few hours and I wanted to Get my phone working before then, thanks.

"Entire nandroid backup" - did you backup/restore the EFS partition too? If so, ouch..

The Nexus 5 has no built in EFS backup partitions. EFS contains things like your MEID or IMEI... your data profiles.. radio settings. The EFS cannot be replaced... it is unique to your phone only...
Never flash another phones EFS to your phone.

aramil said:
The Nexus 5 has no built in EFS backup partitions. EFS contains things like your MEID or IMEI... your data profiles.. radio settings. The EFS cannot be replaced... it is unique to your phone only...
Never flash another phones EFS to your phone.
Click to expand...
Click to collapse
So Am i completely SOL? and yes, i did restore everything using the Nexus5 Toolkit.
I've already contacted sprint, they cant do anything, and i contacted google via email and told them but haven't yet received a reply.
What should i do? Start Another RMA? Send them the replacement they sent me back? If they put the MEID and IMEI on it i'm sure someone between google and LG could fix it, they're the ones who put it on it.

TekMartian said:
So Am i completely SOL? and yes, i did restore everything using the Nexus5 Toolkit.
I've already contacted sprint, they cant do anything, and i contacted google via email and told them but haven't yet received a reply.
What should i do? Start Another RMA? Send them the replacement they sent me back? If they put the MEID and IMEI on it i'm sure someone between google and LG could fix it, they're the ones who put it on it.
Click to expand...
Click to collapse
You're sol. As you now know you can't restore an efs partition from another phone

TekMartian said:
So Am i completely SOL? and yes, i did restore everything using the Nexus5 Toolkit.
I've already contacted sprint, they cant do anything, and i contacted google via email and told them but haven't yet received a reply.
What should i do? Start Another RMA? Send them the replacement they sent me back? If they put the MEID and IMEI on it i'm sure someone between google and LG could fix it, they're the ones who put it on it.
Click to expand...
Click to collapse
Do an RMA, that's your best bet. They'll probably give it a new EFS or give you a new device entirely.

jabza said:
Do an RMA, that's your best bet. They'll probably give it a new EFS or give you a new device entirely.
Click to expand...
Click to collapse
i restored to stock, locked the bootloader, and removed the tampering files so there's no evidence of rooting, i'm just going to tell them it bottomed out when sprint was updating it, and try not to sound like i'm too technical so they just let me send the replacement back instead of my old phone, because everything except the speakers are working on my old phone, and i'll take that over no phone at all. i know it's not the most honest move, but this is the fifth nexus device i've bought, so i think my loyalty and my problem with my OG Nexus makes it at least a little better, not to mention that they could probably fix something like this in 5 minutes with $5 of labor, i'm not about to pay $400 for another device that bottomed out on me.
I'll make sure to let you guys know how everything goes, in case any of you have the same problem.
PS: google's customer service is pretty awesome now, literally as good if not better than apple's from personal experience.

[Q] IMEI is 0, no EFS backup

Recently, I RMA'd my Nexus. When I got the new one, I made a Nandroid backup of my old phone with TWRP, including my EFS. To make a folder for backups on the new Nexus (after rooting etc), I backed up my EFS folder. But, stupid me deleted the folder and then copied the backup of my old phone to the new folder. When I restored the backup, I didn't uncheck the EFS option and after the restore I wasn't getting anymore service. Immediatly I realized I had flashed the EFS from my old Nexus 5. My IMEI is 0, and the IMEI SV is 05 as of now. I tried a factory reset to no avail.
I have attemped to recover the deleted EFS files from my SD card (I used an SD card reader over OTG to backup), but it says they were only recovered partially. Is it worth it to attempt to restore these files, or will that mess up my device more?
Lastly, I still have the IMEI sticker on the back of my replacement. Is there anyway I could "rebuild" the EFS, or insert the IMEI into it to get it to work again?
Any kind of help would be appreciated. I have to send in my old phone in 2 days, so I don't have a lot of time to fix this. Not sure what I'm going to tell support when I say my replacement isn't working.
Thanks.

afff53 said:
Recently, I RMA'd my Nexus. When I got the new one, I made a Nandroid backup of my old phone with TWRP, including my EFS. To make a folder for backups on the new Nexus (after rooting etc), I backed up my EFS folder. But, stupid me deleted the folder and then copied the backup of my old phone to the new folder. When I restored the backup, I didn't uncheck the EFS option and after the restore I wasn't getting anymore service. Immediatly I realized I had flashed the EFS from my old Nexus 5. My IMEI is 0, and the IMEI SV is 05 as of now. I tried a factory reset to no avail.
I have attemped to recover the deleted EFS files from my SD card (I used an SD card reader over OTG to backup), but it says they were only recovered partially. Is it worth it to attempt to restore these files, or will that mess up my device more?
Lastly, I still have the IMEI sticker on the back of my replacement. Is there anyway I could "rebuild" the EFS, or insert the IMEI into it to get it to work again?
Any kind of help would be appreciated. I have to send in my old phone in 2 days, so I don't have a lot of time to fix this. Not sure what I'm going to tell support when I say my replacement isn't working.
Thanks.
Click to expand...
Click to collapse
So far you are in trouble, sadly.
read this thread with your same issue http://forum.xda-developers.com/google-nexus-5/help/messed-n5-imei-0-t2750697

Yep the phone is screwed without a service centre fixing it.

As I thought. I will try to restore my EFS with the files I got but I doubt it will work.
Looks like I'll have to relock my bootloader and send it back, hoping they won't notice. Is there any specific things you would recommend doing before sending it back in.

afff53 said:
Is there any specific things you would recommend doing before sending it back in.
Click to expand...
Click to collapse
The honest thing to do would be to send it to LG for warranty repair., They can repair it, rather than sending it to google as an RMA. They can never resell it as new so they lose money on what is essentially your mistake.

rootSU said:
The honest thing to do would be to send it to LG for warranty repair., They can repair it, rather than sending it to google as an RMA. They can never resell it as new so they lose money on what is essentially your mistake.
Click to expand...
Click to collapse
I understand it isn't morally correct, but I won't have any phone for however long it takes for them to repair if I send it back. May be selfish, but they make plenty of money anyways. I RMA'd from TMobile, and they said they repair RMA'd phones and then send them to people who request RMAs. You don't think they would be able to do anything to fix it? Also, I thought LG warranty doesn't cover "tampering"?

afff53 said:
I understand it isn't morally correct, but I won't have any phone for however long it takes for them to repair if I send it back. May be selfish, but they make plenty of money anyways. I RMA'd from TMobile, and they said they repair RMA'd phones and then send them to people who request RMAs. You don't think they would be able to do anything to fix it? Also, I thought LG warranty doesn't cover "tampering"?
Click to expand...
Click to collapse
Yes it can be fixed quite easily, which is why an RMA is a waste of a perfectly good phone. It just cant be fixed by you as it requires equipment.

afff53 said:
I understand it isn't morally correct, but I won't have any phone for however long it takes for them to repair if I send it back. May be selfish, but they make plenty of money anyways. I RMA'd from TMobile, and they said they repair RMA'd phones and then send them to people who request RMAs. You don't think they would be able to do anything to fix it? Also, I thought LG warranty doesn't cover "tampering"?
Click to expand...
Click to collapse
What you're talking about is essentially fraud and no they don't make "plenty of money" but even if they did that is beside the point. Every case of fraud costs them money which they in turn pass on to consumers. Why should I or anyone else have to pay for your negligence?

You made the mistake not Google or LG. Be a man and own up to your mistake instead of trying to "pass the buck". I'm sure you understood rooting and modding phones voids warranties. I'm sure you weren't planning on making a mistake. You did though. You and only you. Pay LG to fix it for you.

theesotericone said:
You made the mistake not Google or LG. Be a man and own up to your mistake instead of trying to "pass the buck". I'm sure you understood rooting and modding phones voids warranties. I'm sure you weren't planning on making a mistake. You did though. You and only you. Pay LG to fix it for you.
Click to expand...
Click to collapse
Suppose you're right. How am I supposed to get LG to fix it?

afff53 said:
Suppose you're right. How am I supposed to get LG to fix it?
Click to expand...
Click to collapse
Call Google and explain exactly what you did. They will refer you to LG for warranty. After that put it in a box and wait to get it back. I doubt the charge will be that much. At the end of the whole thing you'll feel like a better person. And next time back up your EFS first.

There's also the possibility that "your local friendly mobile repair store" can fix it.
Sent from my Nexus 5 using Tapatalk

You need box to generate new EFS with your imei. Some repair shops have it.

My neighbor has lots of jewellery, I have none. So what's so wrong with me taking some of theirs???

Alright, thanks for the help

afff53 said:
Alright, thanks for the help
Click to expand...
Click to collapse
Can you help me?
http://forum.xda-developers.com/google-nexus-5/general/pls-help-pls-imei0-network-t3028916

mnhs1010 said:
Can you help me?
http://forum.xda-developers.com/google-nexus-5/general/pls-help-pls-imei0-network-t3028916
Click to expand...
Click to collapse
Like what was already said, there is no way to fix it yourself. You need to get it repaired either at a repair shop or google.
This thread should be closed, not really gonna help anyone.

There IS a solution!
See my answer at http://android.stackexchange.com/questions/85807/nexus-5-imei-0-how-to-restore-imei (at the bottom of the page).
It really works, I just done it, and my phone gets original IMEI and can 3G/LTE.

thx but .rar file gone - can you repost it for me?
I'm suffering from IMEI=0 after phone went into weird boot loop. I'm hoping your solution will work, but the file on the russian forum is 404... Can you repost it?
Thanks!

payz said:
I'm suffering from IMEI=0 after phone went into weird boot loop. I'm hoping your solution will work, but the file on the russian forum is 404... Can you repost it?
Thanks!
Hello! Just register there and you will can download files.
Click to expand...
Click to collapse

My device was destroyed by something that I flashed here on the threads.

I can't say when it happed. Evidently, it has been on my phone for a long time. I can remember seeing some of this funny crap months ago when I first rooted my phone. One of the mods here has a surfaceflinger hack that will take over your entire system. Your accounts will get hacked. First it was my Google drive. There was a zip file in there that I did not place. It said it was a Metro PCS Note5 zip. It was shared to my drive by someone else, and I could not remove it. So any time I did a factory reset and logged into my Google account, it would be loaded onto my phone. I finally got that cleaned up, but they had moved to my OneDrive storage with the same thing under a different file name. This hack is so smooth, that your phone won't even hesitate. It is disguised as Android OS, but if you check the battery stats, it says surfaceflinger. It is located in your data partition. It is a add on script, and it will eventually infect about 20 more apps with add on scripts. It will load up tons of /data/data along with a recovery from boot script, and..... I just discovered a little too late that there is a script that will destroy your device if you remove it the wrong way. I think the name of it is sec_device_destroy but I can't be sure. I saw the code in a system log file, but I do not know what it is yet. I am 100% positive that some of you have the same problem, you just don't know it. I'm gonna start taking apart every singe file in the development threads until I find it. As for now.... My device is stuck in a infinite bootloop. It won't recover from ODIN, and I have a new LED llight that is white. I can answer any questions and provide screenshots, and system logs if anyone wants to help uncover this beast. It is super legit. Best Android hack I've ever seen. It does every thing. Who is gonna help me locate this b.s? My Note 5 is useless now. Somebody here has it, I assure you, and when you discover it, you should ask for help. If you don't remove every bit of it, the device will not boot again. I'm gonna keep playing with mine, but I'm pretty sure it is toast. ( EDIT---> I was able to get to boot again by flashing TWRP and using the wipe option to repair each partition. I had to change them to exFAT then back to EXT4 to get them to mount.)

Sounds like my boot loop of death. Where everything was Odin flashed and still wouldnt load. Quick question when you were on Odin did you select the band erase all option? And do you still have acesss to recovery? Was all this weird stuff going on when you firmware was load? Did anything strange happen while in recovery? And why didn't u send it back to sprint)
---------- Post added at 10:22 PM ---------- Previous post was at 10:19 PM ----------
If I was in your shoes I would select the band erase all and repartition option. Re download stock firmware from sammobile, go back to Odin to root and add twrp, select the erase button again to flash moar ROM and see what happens. If it's a hack like u said then I'd use my insurance

The potential for having your personal security and financial disaster that something like this could cause is why i stopped rooting.
Rumning other none store apps is like letting a guy you dont know come over and say "hey, i have these cool mods i can do to your car's brakes! I take out a few parts, replace others with parts I made in my garage, and load my own software into your anti-lock brake system".
Sent from my SM-N920P using Tapatalk

You can't blame no one if your phone gets fried or blown up, you take the risk at your own discretion . No one force you to flash anything. To avoid any problems don't flash anything your not sure what's going to happen. If i see someone post a s7 edge port, I'm not gonna flash it until i get some good feedback or take one for the team and hope it don't destroy my phone. Goodluck fixing your phone don't seem like it's too hard to fix depending your experience . I would help but it's too time consuming helping fix a phone i can't even see or test out.
Sent from my SM-N920P using XDA-Developers mobile app

I'm really sorry that this happened to you. But @bonebeatz1234 is right. There is a disclaimer at the beginning of every rom, feature add-on, theme, kernel, etc. The whole point of Q&A & replys are so you can find out if something is "okay" to flash. There are so many known developers that have built stuff for so many devices. Its rare to find something on XDA that is "unsafe." I can't even remember ever finding anything that is "unsafe" or nearly as bad as you are describing. Especially for the Sprint Note 5. I'm assuming you have a SM-N920P do to the fact that you're posting it here. There have only been a few roms for this device & maybe a couple handfuls of add-ons. The one or two things I've seen that have caused problems with this device, they were removed with-in a few hours. You weren't very clear on where you got this hack at all. Are you saying it was something you downloaded from one of the Sprint Galaxy Note 5 threads? You are a Senior Member. So, I'm assuming you know what you are talking about. I believe that it is very possible you did get it from some place on here. But, in order for me to believe that, I have to also believe that it is just as possible that it could have came form anywhere else on the web via public WiFi connection, email, file download, text message, USB connection or at least 100 other ways. @DAvid_B made a point about the risk of rooting your device. Although the risk can go up for threats. The same rules apply for rooted device as they do for non-rooted devices. BE CAREFUL! Use software to protect yourself, read reviews, don't be the guinea pig. If you are like me & are addicted to putting yourself at some (if even the smallest) amount of risk, HAVE INSURANCE! Most if not all people have to agree that it's worth the $11 a months & $200 deductible to have as much fun as we all do. Its a hobby. People spend more money on model airplanes, playing golf & hunting. I haven't had to file a claim in over 6 years. I say all that to say this... Anyone that see's this thread & decides its too much of a risk to root, I promise you, IT ISN'T! The advantages out way the risk by about a 1000! The members of XDA are here to help with any issues you may have. There are VERY FEW things that are UNFIX-ABLE! And when I say "very few" I mean little to non! When I say little to non, I mean NONE! AT ALL! Even the problem he described IS FIXABLE! Like he stated, ask for help. @Sleepycloud, I pray you get this resolved. Even if you have to Odin back to stock & backup/wipe your Google Drive & OneDrive account, I know you can fix this. Please don't think that I meant any disrespect for posting this. I just want people to know this is extremely rare & only a one in a million chance it could happen.

Sleepycloud said:
I can't say when it happed. Evidently, it has been on my phone for a long time. I can remember seeing some of this funny crap months ago when I first rooted my phone. One of the mods here has a surfaceflinger hack that will take over your entire system. Your accounts will get hacked. First it was my Google drive. There was a zip file in there that I did not place. It said it was a Metro PCS Note5 zip. It was shared to my drive by someone else, and I could not remove it. So any time I did a factory reset and logged into my Google account, it would be loaded onto my phone. I finally got that cleaned up, but they had moved to my OneDrive storage with the same thing under a different file name. This hack is so smooth, that your phone won't even hesitate. It is disguised as Android OS, but if you check the battery stats, it says surfaceflinger. It is located in your data partition. It is a add on script, and it will eventually infect about 20 more apps with add on scripts. It will load up tons of /data/data along with a recovery from boot script, and..... I just discovered a little too late that there is a script that will destroy your device if you remove it the wrong way. I think the name of it is sec_device_destroy but I can't be sure. I saw the code in a system log file, but I do not know what it is yet. I am 100% positive that some of you have the same problem, you just don't know it. I'm gonna start taking apart every singe file in the development threads until I find it. As for now.... My device is stuck in a infinite bootloop. It won't recover from ODIN, and I have a new LED llight that is white. I can answer any questions and provide screenshots, and system logs if anyone wants to help uncover this beast. It is super legit. Best Android hack I've ever seen. It does every thing. Who is gonna help me locate this b.s? My Note 5 is useless now. Somebody here has it, I assure you, and when you discover it, you should ask for help. If you don't remove every bit of it, the device will not boot again. I'm gonna keep playing with mine, but I'm pretty sure it is toast.
Click to expand...
Click to collapse
If you are willing to send me the phone, I could probably fix it for you and send it back. I know it's hard to trust people these days so it's totally up to you.

bonebeatz1234 said:
You can't blame no one if your phone gets fried or blown up, you take the risk at your own discretion . No one force you to flash anything. To avoid any problems don't flash anything your not sure what's going to happen. If i see someone post a s7 edge port, I'm not gonna flash it until i get some good feedback or take one for the team and hope it don't destroy my phone. Goodluck fixing your phone don't seem like it's too hard to fix depending your experience . I would help but it's too time consuming helping fix a phone i can't even see or test out.
Sent from my SM-N920P using XDA-Developers mobile app
Click to expand...
Click to collapse
I'm not mad. Lol Not at all. I am a true geek to the heart. This is fun stuff to me. You learn more when you are challenged beyond your current skillset. I'm just putting everybody up to the fact that there is something malicious here in the threads. I have a strong feeling of where it came from. I already to apart the "Stock" .tar and found 3 extra files in it. A param.bin file, a carrier .img and a PIT file. I am one hundred percent sure that when I take that PIT file apart later that I will be able to confirm my suspicions. According to the thread here by @tdunham in this thread; http://forum.xda-developers.com/spr...sprint-galaxy-note-5-sm-n920p-partition-There are 19 partitions. I believe that I have 24 or 25. I'll have to get back with y'all on this one. Can anybody confirm that this partition table is still viable for Marshmallow? I'll post screenshots in about an hour or two for everyone to examine. I would love some help on this. I have never removed partitions before and my knowledge on how to go about it is limited. I'm reading, but most of it is unrelated garbage. If anyone has a link that will help me educate myself and remove these partitions, I would be super thankful.

MrMike2182 said:
If you are willing to send me the phone, I could probably fix it for you and send it back. I know it's hard to trust people these days so it's totally up to you.
Click to expand...
Click to collapse
That is pretty awesome of you bro. I am pretty sure I have correctly identified the problem. I have 4 or 5 extra partitions. This is why it keeps coming back, and that is why ODIN and Smart Swithc does not fix it. They are only going to see the 19 partitions they are supposed to see and they will not even look anywhere else. I bought a root partition app on Google Play for $9.99 and that is how I saw the extra partitions. This has been on my phone for a long time. A very long time. Like 6 months, but I never knew it. I can remember seeing about 5 USB folders that I could not open. They are labeled as external usb storage. I'll post screen shots later. So now that I know what the problem is, I see a bright side coming soon. lol

Sleepycloud said:
That is pretty awesome of you bro. I am pretty sure I have correctly identified the problem. I have 4 or 5 extra partitions. This is why it keeps coming back, and that is why ODIN and Smart Swithc does not fix it. They are only going to see the 19 partitions they are supposed to see and they will not even look anywhere else. I bought a root partition app on Google Play for $9.99 and that is how I saw the extra partitions. This has been on my phone for a long time. A very long time. Like 6 months, but I never knew it. I can remember seeing about 5 USB folders that I could not open. They are labeled as external usb storage. I'll post screen shots later. So now that I know what the problem is, I see a bright side coming soon. lol
Click to expand...
Click to collapse
Some times when a Samsung device gets bricked you need whats called a PIT that can reflash the partitions. It's on here somewhere or I have one.

MrMike2182 said:
Some times when a Samsung device gets bricked you need whats called a PIT that can reflash the partitions. It's on here somewhere or I have one.
Click to expand...
Click to collapse
I have one. It doesnt work because a PIT file will only reset the factory image partitions. When there are additional partitions, it does not touch them. I have one extended partition after boot. Everything gets rearranged under /sys/dev/block/8:0 have you ever heard of that? Me neither. Lol I need to disect this and remove the script after a fresh flash before the first boot. Something tells me that it would be easier to deal with then. Ill post some pics from my computer here in a bit. I dont have the option on my phone

Here are some pics of the new extended partition and the logical partitions within.

Sleepycloud said:
I have one. It doesnt work because a PIT file will only reset the factory image partitions. When there are additional partitions, it does not touch them. Inhave one extended partition after boot. Everything gets rearranged under /sys/dev/block/8:0 have you ever heard of that? Me neither. Lol I need to disect b this and remove the script after a fresh flash before the firsy boot. Something tells me that it would be easier to deal with then. Ill post some pics from my computer here in a bit. I dont have the option on my phone
Click to expand...
Click to collapse
I've seen some pretty crazy partition set ups the HTC Desire for instance has over 20 partitions and all of them have close to 200MB of free space on them that you can't even use! Talk about a waste of space lol.. But /sys/dev/block/8:0?!?! The fuuu... What kind of partition is that?!
Damn, your phones using almost all the ram/memory that you have.. Are you running a lot of apps or something else that's memory intensive?

So now the million dollar question is..... What is it gonna take to remove this b.s. from my phone. Removing the folders does not work. They get reinstalled upon every boot. I need to find the script(s) and where they are hidden, and delete them, then remove the partitions form the logical folder. I am tempted to just wipe the logical partition it its entirety then create a whole new partition table based on my unrooted Note 5. However, I am going to wait until I get some solid feedback from one of y'all. Who has an idea of what I need to do here. Repartitioning with a PIT file does not work. IT does not touch these extra partitions. I think they are labeled, sdb, sdc, and sdd.

I'm just gonna go ahead and let the world know who the piece of crap is. Here... go take a look for yourself. Download the "stock" tar and extract it, then extract the .tar itself. You'll find the extra files there. It contains a param.bin file, a carrier.img, and a modified PIT file that will give you the crap on my phone. If I could be my hands on this dude, I would choke him until he was purple. This has been a major pain in my ass for over 3 months now. My accounts were hacked, all of them, files were deleted, and I had no privacy what so ever. Here... This is where it came from. http://forum.xda-developers.com/note5/general/project-noble-firmware-pit-file-galaxy-t3179529

Sleepycloud said:
So now the million dollar question is..... What is it gonna take to remove this b.s. from my phone. Removing the folders does not work. They get reinstalled upon every boot. I need to find the script(s) and where they are hidden, and delete them, then remove the partitions form the logical folder. I am tempted to just wipe the logical partition it its entirety then create a whole new partition table based on my unrooted Note 5. However, I am going to wait until I get some solid feedback from one of y'all. Who has an idea of what I need to do here. Repartitioning with a PIT file does not work. IT does not touch these extra partitions. I think they are labeled, sdb, sdc, and sdd.
Click to expand...
Click to collapse
Deleting them is not going to work no matter which way you remove them they'll come right back after a reboot and the only way to stop that from happening is to flash a custom kernel/boot that's got write protection off. If you don't have that they just keep coming back no matter what.. All the apps are usually always in these 2 places /system/apps and /system/priv-apps
---------- Post added at 11:00 AM ---------- Previous post was at 10:55 AM ----------
Sleepycloud said:
I'm just gonna go ahead and let the world know who the piece of crap is. Here... go take a look for yourself. Download the "stock" tar and extract it, then extract the .tar itself. You'll find the extra files there. It contains a param.bin file, a carrier.img, and a modified PIT file that will give you the crap on my phone. If I could be my hands on this dude, I would choke him until he was purple. This has been a major pain in my ass for over 3 months now. My accounts were hacked, all of them, files were deleted, and I had no privacy what so ever. Here... This is where it came from. http://forum.xda-developers.com/note5/general/project-noble-firmware-pit-file-galaxy-t3179529
Click to expand...
Click to collapse
I'd report this to one of the moderators if I was you so they can check it out and remove it if it's harmful to people's devices I don't think xda would be happy hosting that type of ****!

MrMike2182 said:
Deleting them is not going to work no matter which way you remove them they'll come right back after a reboot and the only way to stop that from happening is to flash a custom kernel/boot that's got write protection off. If you don't have that they just keep coming back no matter what.. All the apps are usually always in these 2 places /system/apps and /system/priv-apps
Click to expand...
Click to collapse
I hava already tried that. These are add on scripts. They work on any kernel. I have to delete the partions themselves but I'm not exactly sure which ones or how to do it without bricking my phone. I'm gonna move slow on this one until I am sure that II have the right solution. I'm certain it is the sda, sdb, sdc, and sdd partitions that need to be deleted. First I need to know if this partition table is still valid for Marshmallow. http://forum.xda-developers.com/note5/general/sprint-galaxy-note-5-sm-n920p-partition-t3190326 Once I know that, I can proceed. Is this PIT still the same in marshmallow?

Sleepycloud said:
I hava already tried that. These are add on scripts. They work on any kernel. I have to delete the partions themselves but I'm not exactly sure which ones or how to do it without bricking my phone. I'm gonna move slow on this one until I am sure that II have the right solution. I'm certain it is the sda, sdb, sdc, and sdd partitions that need to be deleted. First I need to know if this partition table is still valid for Marshmallow. http://forum.xda-developers.com/note5/general/sprint-galaxy-note-5-sm-n920p-partition-t3190326 Once I know that, I can proceed. Is this PIT still the same in marshmallow?
Click to expand...
Click to collapse
Yeah that PIT is fine but if I were you I'd try to flash a different kernel because I had the same problems with apps returning after a reboot and the only way to stop that from happening again was to flash the custom kernel. That stopped them from coming back. <----This was on an HTC device so maybe Samsung is different?

This b.s. has my ADB disabled somehow. Even when I open the IOT Menu and switch from MTP to MTP+ADB it still does not work. It does work upon a fresh flash if I let the stock recovery update the system image then immediately go back into download mode before it boots up. After that, I have no ADB capabilities. Would that be a build.prop issue?

So was my advice useless oo?

djhulk2 said:
So was my advice useless oo?
Click to expand...
Click to collapse
No. It was pretty good, but I already have a good Note 5. I'm trying to learn more about Android bro. I wanna fix this one, not replace it. Give me some more solid ideas!!! I'm open to suggestion. Thank you.