Related
Hello
10 months ago I switched from iPhone 5 to Sony Xperia Z1 Compact mobile (not rooted), with Android 4.4.4.
The phone was running great, I also tested it for developing some simple android projects. I enabled USB debugging and checked "allow installation from unknown sources".
But always keeping in mind that Android is not secure. And choosing carefully what to install. But I was also trusting CM Security as a protection.
1 month ago, I turned ON wifi and I was trying to open my email app to see if there is any new mail.
After the device connected to internet, I saw someone was scrolling controlling my screen and navigating. After he found the "CM Security" app he tried to uninstall it.
Luckily I was very concentrated at what was going on, so I clicked on the side of the screen to prevent it. He tried again to do the same thing, so I run and switched off my home wifi rooter in time.
After the internet was gone the mobile was returned behaving normally. So during connected to internet the phone was taking both commands from me and the attacker.
For my fortune I always leave OFF wifi, mobile data and Bluetooth when I don't need them.
Anyway I made a hard reset. I did it without using the Safe Mode.
The problem was solved.
I hoped that it happened because I connected to many unsecure public wifi networks during my trips out of country last month!
Since the "master/hard reset" I installed only applications very very popular and I never connected anymore to any public wifi.
Also I never enabled the USB debugging and never checked "allow installation from unknown sources".
So I was using my phone normally, until yesterday. It was protected through CM Security, AVAST, and CM Cleaner.
But here it comes again!!! I connected through the 3G internet and again the phone was remote controled.
So today I did a hard reset but this time in SAFE MODE.
Please can you suggest me what other can I do?
StevenTerman said:
Hello
10 months ago I switched from iPhone 5 to Sony Xperia Z1 Compact mobile (not rooted), with Android 4.4.4.
The phone was running great, I also tested it for developing some simple android projects. I enabled USB debugging and checked "allow installation from unknown sources".
But always keeping in mind that Android is not secure. And choosing carefully what to install. But I was also trusting CM Security as a protection.
1 month ago, I turned ON wifi and I was trying to open my email app to see if there is any new mail.
After the device connected to internet, I saw someone was scrolling controlling my screen and navigating. After he found the "CM Security" app he tried to uninstall it.
Luckily I was very concentrated at what was going on, so I clicked on the side of the screen to prevent it. He tried again to do the same thing, so I run and switched off my home wifi rooter in time.
After the internet was gone the mobile was returned behaving normally. So during connected to internet the phone was taking both commands from me and the attacker.
For my fortune I always leave OFF wifi, mobile data and Bluetooth when I don't need them.
Anyway I made a hard reset. I did it without using the Safe Mode.
The problem was solved.
I hoped that it happened because I connected to many unsecure public wifi networks during my trips out of country last month!
Since the "master/hard reset" I installed only applications very very popular and I never connected anymore to any public wifi.
Also I never enabled the USB debugging and never checked "allow installation from unknown sources".
So I was using my phone normally, until yesterday. It was protected through CM Security, AVAST, and CM Cleaner.
But here it comes again!!! I connected through the 3G internet and again the phone was remote controled.
So today I did a hard reset but this time in SAFE MODE.
Please can you suggest me what other can I do?
Click to expand...
Click to collapse
Hi, just a thought....maybe someone has your Google account, and that way has also access to your phone. I suggest you to create a new account, reset your phone, and use the newly created account for your phone (and keep it secret). Also, if and when you are going to use a public wifi, use also a vpn. Hope you'll solve the issue.
setmov said:
Hi, just a thought....maybe someone has your Google account, and that way has also access to your phone. I suggest you to create a new account, reset your phone, and use the newly created account for your phone (and keep it secret). Also, if and when you are going to use a public wifi, use also a vpn. Hope you'll solve the issue.
Click to expand...
Click to collapse
Hello and thank you for your time and help.
After it happened the first time and hard reseted the phone, I created a new gmail account.
So this second time it shouldn't have happened if the email was the reason.
setmov said:
Hi, just a thought....maybe someone has your Google account, and that way has also access to your phone. I suggest you to create a new account, reset your phone, and use the newly created account for your phone (and keep it secret). Also, if and when you are going to use a public wifi, use also a vpn. Hope you'll solve the issue.
Click to expand...
Click to collapse
I'm curious. How would anyone control the device remotely if they have access to one of the google accounts on the device?
shifter7 said:
I'm curious. How would anyone control the device remotely if they have access to one of the google accounts on the device?
Click to expand...
Click to collapse
Well, one of the "options" would be to push the installation of a "malicious" app through the "great" remote install feature in the store. The app installation would proceed without you knowing it. It's known that the Play Store is, sadly, vulnerable to malicious apps. It happened in the past and it will happen in the future. There is also ways to hack a phone through an update....some apps can gain root without even ask for it when you're updating your os. This is because the Android Package Management Service (PMS) and the way it handles the os update. It will allow a seemingly harmless malicious app to acquire significant capabilities without user consent once they upgrade to a newer version of Android. I can go on, but I suggest you to make a research by yourself. There is a lot to read on the internet and here on XDA. You can start from here: http://www.informatics.indiana.edu/xw7/papers/privilegescalationthroughandroidupdating.pdf
Try this application when you update your OS:
https://play.google.com/store/apps/details?id=com.iu.seccheck&hl=en
Do you know that installing system updates could result in your Android device being hacked? Recent investigation found six such vulnerabilities (called Pileup flaws) in Android OS. When you upgrade your device, a seemingly harmless app can exploit these vulnerabilities to get access of your voicemails, user credentials, call logs, notifications of other apps, Google Voice messages, etc. This security app scans your device to detect those malicious apps and guides you uninstall them once detected.
Generic security apps (e.g., Lookout, Avast!, Norton, etc.) cannot be easily tuned to detect Pileup threats.
I don't know if you updated recently your OS but it can be used in the future.
setmov said:
Well, one of the "options" would be to push the installation of a "malicious" app through the "great" remote install feature in the store. The app installation would proceed without you knowing it. It's known that the Play Store is, sadly, vulnerable to malicious apps. It happened in the past and it will happen in the future. There is also ways to hack a phone through an update....some apps can gain root without even ask for it when you're updating your os. This is because the Android Package Management Service (PMS) and the way it handles the os update. It will allow a seemingly harmless malicious app to acquire significant capabilities without user consent once they upgrade to a newer version of Android. I can go on, but I suggest you to make a research by yourself. There is a lot to read on the internet and here on XDA. You can start from here: http://www.informatics.indiana.edu/xw7/papers/privilegescalationthroughandroidupdating.pdf
Click to expand...
Click to collapse
Thank you for the explanation/clarification.
And that whitepaper, pretty scary stuff.
Pretty obvious too, but didn't think it could go that far.
Oh dear....
StevenTerman said:
Hello
10 months ago I switched from iPhone 5 to Sony Xperia Z1 Compact mobile (not rooted), with Android 4.4.4.
The phone was running great, I also tested it for developing some simple android projects. I enabled USB debugging and checked "allow installation from unknown sources".
But always keeping in mind that Android is not secure. And choosing carefully what to install. But I was also trusting CM Security as a protection.
1 month ago, I turned ON wifi and I was trying to open my email app to see if there is any new mail.
After the device connected to internet, I saw someone was scrolling controlling my screen and navigating. After he found the "CM Security" app he tried to uninstall it.
Luckily I was very concentrated at what was going on, so I clicked on the side of the screen to prevent it. He tried again to do the same thing, so I run and switched off my home wifi rooter in time.
After the internet was gone the mobile was returned behaving normally. So during connected to internet the phone was taking both commands from me and the attacker.
For my fortune I always leave OFF wifi, mobile data and Bluetooth when I don't need them.
Anyway I made a hard reset. I did it without using the Safe Mode.
The problem was solved.
I hoped that it happened because I connected to many unsecure public wifi networks during my trips out of country last month!
Since the "master/hard reset" I installed only applications very very popular and I never connected anymore to any public wifi.
Also I never enabled the USB debugging and never checked "allow installation from unknown sources".
So I was using my phone normally, until yesterday. It was protected through CM Security, AVAST, and CM Cleaner.
But here it comes again!!! I connected through the 3G internet and again the phone was remote controled.
So today I did a hard reset but this time in SAFE MODE.
Please can you suggest me what other can I do?
Click to expand...
Click to collapse
Oh no! Did you create a BackUp before you did this?
I think the good members of this forum fell victims to an Apple troll. The key to his unscientific fiction is this: 10 months ago I switched from Iphone to Xperia and I knew android was insecure. He also claims he is a developer, but his phone is not rooted. 10 months ago Xperia z1c did not have kitkat on newly released units and the announcement for kitkat update was made on March 19 of last year. If he bought his phone 10 months ago, he couldn't have kitkat. Most likely the troll googled the date of the announcement and this is how it became a part of this fairytale. Also note that when he says he noticed his phone was taken over, he ran to shut off his wifi router. Why not shut off wifi on the phone, especially that he says the phone was accepting his commands? Now, suppose it is true that the phone was taken over through his e-mail account, then what's the probability of this happening again with a new account? Well, the underlying message is: people, don't switch from iphones to android, android is not secure, it is only good if you don't connect to the internet.
Mr. Cook, next time hire someone with higher IQ, so that your pitch sticks...
Tell you what, optimumpro, the bold letters gave it away for me. We're tech-Support here - so, why bold letters? Just advertisers are in the habit of using bold letters all over the place.
no further questions
optimumpro said:
I think the good members of this forum fell victims to an Apple troll. The key to his unscientific fiction is this: 10 months ago I switched from Iphone to Xperia and I knew android was insecure. He also claims he is a developer, but his phone is not rooted. 10 months ago Xperia z1c did not have kitkat on newly released units and the announcement for kitkat update was made on March 19 of last year. If he bought his phone 10 months ago, he couldn't have kitkat. Most likely the troll googled the date of the announcement and this is how it became a part of this fairytale. Also note that when he says he noticed his phone was taken over, he ran to shut off his wifi router. Why not shut off wifi on the phone, especially that he says the phone was accepting his commands? Now, suppose it is true that the phone was taken over through his e-mail account, then what's the probability of this happening again with a new account? Well, the underlying message is: people, don't switch from iphones to android, android is not secure, it is only good if you don't connect to the internet.
Mr. Cook, next time hire someone with higher IQ, so that your pitch sticks...
Click to expand...
Click to collapse
Hahaha, I love your way optimum....I am the first that fells, if your theory is right, but, even if I am the first, I am not going to buy this ****ty apple phone....and will keep my android....hmmm who knows...maybe blackberry?
My question or rather my pleed for answers does not just pertain to android os but I have relied on this site for many answers and have always found a solution just from searching around on here so I know there are very capable members on this site that can help. My problem began over 4 months ago when my home computers were compromised. I assumed it was just a simple virus but soon learned that someone had actually hacked into my home network for what I believe is or was an attempt to retrieve trade secrets. Shortly after i realized that data was being sent to someone through the fax system on my pc and data distribution software had been installed along with a large amount of .dll and legacy items, The admin rights were taken from me and the registry was completely modified which disabled me from having any permissions and kept me from doing anything on the pc. I went out and purchased a new router, got out an older pc, and I put a password of around 20 mixed numbers and letters. 5 minutes after I had set up the new router and pc I noticed through the network map that there was someone else on what I assumed was a secured network. The router was a netgear. First thing I done was change the default password and block any remote access in the network wizard. My next step was to pay the so-called experts (Geek Squad) to solve the security issue. I purchased their 1 month special that entitled me to 1 month of tech support and 3 free pc fixes. after purchasing a windows 7 restore disk I took 3 pc's to a local Geek Squad location to have them restore the Pc's and install what was suppose to be a hack proof software. They only fixed 1 pc, told me the software would keep the hacker out. 5 minutes after i logged into my network here comes all the windows updates (around 50) along with numerous programs. Needless to say I lost my admin rights within an hr. Here we are now, only using cell phones on my network and I am sure the hacker is retrieving my data off of my g vista d6301. My new email that I set up and have only used from the vista has been compromised and although no logins appear in the history but my vista, someone had enabled POP on Dec 28th. I have enabled the developer mode on my phone which allows me to view the process stats. It states that google play service runs 100% and Google Cloud Messaging runs 100%...I have never used any cloud service on this phone. Another thing is that certain system apps that I have never activated are accumulating a decent amount of data. This phone is used only for wifi and has no service plan attached. bluetooth, email, qrtunnel, near field communication all turn on from time to time. Google play also shows something called clearcutlogger running but was unable to find any info on that. I also installed a mic block that has a "spying app catcher" that logs when a app uses your phones mic while the phone is in sleep or idle mode. when the app is on block mic then there are no problems but when I unblock the mic I get countless log entries that an app with net access has gained access to my mic. Its always the same few apps that show up as a potential culprit so I cant pinpoint exactly what app is using the mic. not sure if any of this has anything to do with someone messing around with my phone, just trying to think of some of the things that could help. There is no doubt that this phone along with a pile of now useless computers have indeed been compromised. What I really need help with is how to get this bastard out of my life and secure my network before the new semester begans b/c there is no way I can have my daughter use her new pc on the network knowing its just going to end up like the rest of computers in my new pc graveyard. I know there are quite a few other sites I could have reached out to but there is something about the comradery on this site that has always drawn me to it. 1 more thing fellas, how bout that one touch root for the LG G Vista D6301's? that sure would come in handy right now lol. My apologies for the long read. Any details you need to know to try and help me figure things out, I would gladly assist as long as my knowledge permits.
I understand that the question or article that I posted is quite vast so I will start off with this simple question. Is there a server that I can disable in the LG hidden menu to stop unauthorized use of my GCM, or any other way than simply just disabling Google Play? I have read a couple of recent articles on how hackers are utilizing gcm to gain access to personal info. I just was curious about the server b/c I see many different server acc in the hidden menu such as ATTLABa, Cingular, Mformation, and Funambol. I wasnt sure if these servers or acc could possibly help or be a potential threat.
Sent from my LG-D631 using XDA Free mobile app
Pr1n6/of\Jerusalem said:
My question or rather my pleed for answers .........
Click to expand...
Click to collapse
Pr1n6/of\Jerusalem said:
I understand that the question or article ............
Click to expand...
Click to collapse
First thing you have to be sure that no one has physical access to your gadgets. Second, find a router suitable to be modified with new firmware from http://www.dd-wrt.com/site/index or https://openwrt.org/.
In case you can buy a hardware network firewall and with proper installation and settings you should be able to keep away any threat.
A good idea would be to use a good VPN service, that way you can add a layer of security on your networking habits.
Lastly, check this thread http://forum.xda-developers.com/general/security/tuto-how-to-secure-phone-t2960077 and if you have any question, ask there.
Good luck
Hi
To what extent can employers control an android company phone? I'm sure they could just disable the SIM, but will they be able to:
access the device storage (whether internal or external)?
access call logs etc. and contacts? I guess they'd be able to view texts via the phone company?
disable the phone remotely so that it doesn't turn on?
Thanks for any advice
BLu8i said:
Hi
To what extent can employers control an android company phone? I'm sure they could just disable the SIM, but will they be able to:
access the device storage (whether internal or external)?
access call logs etc. and contacts? I guess they'd be able to view texts via the phone company?
disable the phone remotely so that it doesn't turn on?
Thanks for any advice
Click to expand...
Click to collapse
Depends on the MDM the IT department is using. I use Google Admin Console. I can remotely wipe and lock my company-owned Android devices. GAC has started playing nicely with Apple devices, so I can do the same to iOS device we own, too. Seeing files, though? Yeah, if they're using some beefy MDM and it has full device permissions, anything goes if it's set up that way. But then again, if it's a company-owned device, there's no expectation of privacy, and all data on the device is the company's.
BLu8i said:
Hi
To what extent can employers control an android company phone? I'm sure they could just disable the SIM, but will they be able to:
access the device storage (whether internal or external)?
access call logs etc. and contacts? I guess they'd be able to view texts via the phone company?
disable the phone remotely so that it doesn't turn on?
Thanks for any advice
Click to expand...
Click to collapse
Best bet, just don't use it for anything that you want to keep to yourself.
Sent from my SM-S767VL using Tapatalk
Thanks guys.
I'm not sure if it's related, but my old company phone has recently decided not to turn on. I thought it might be something that was controlled by previous employer. Data hasn't been switched on, so can they actually disable the phone via the sim?
As I said, the phone did not want to switch on, so I decided to charge it for some time. Sometimes, it would power on the splash screen, but just does not go any further. It doesn't boot but just sits on the splash screen for over an hour. I was thinking of buying a replacement battery, but it seems it might not have any effect?
Perhaps it's something to do with the phone's IC on its way out?
I used to work for a major phone carrier as a store manager. And if we wanted our work email on our personal devices we had to grant it admin rights on our device and agree to a long list of things that no one read. I however read it and it literally said if they ever thought my device was comprised they'd remote wipe it without even telling me.
I straight up did not have my work email on my device and I was always taking flack from supervisors that I didn't respond to their emails unless I was in my office. And I always told them why and finally one day I received an email saying that as of X date (like a week later) that no employee could have their work email on a personal device.
I laughed my ass off at everyone who complained about it and asked several bosses what happened... Apparently some really high up dude had his phone get wiped and he lost a ton of pictures of his kids that weren't in the cloud and he raged at IT about it and they changed email permissions
Sent from my OnePlus7Pro using XDA Labs
So far he has deleted all the bookmarks that I saved from this site. The phone RCS doesn't work anymore. They can listen to phone call and terminate them and spoof incoming calls. I sent one phone to Samsung to be reviewed. At the end of 3 week review they sent me a check for the phone and I bought another one from ATT and I still have this problem. So I would appreciate it if someone could give me some direction for this Flip 3. I like the phone. I am a engineer and designed a few devices using ESP32's. So I know how to flash. I just need to lock this phone down and I will deal with the computer problem later...
Infections across multiple platforms is almost unheard of... what did Samsung find?
It isn't an infection. They are exploiting both devices. I run Norton 360 on both systems. It only slowed them down. And they are 24/7 on me like ex NSA. They haven't stolen anything but they are malicious. Samsung never said. The only thing that said is to buy a different phone. ATT has a open fraud case open because they saw the Tag phone and I changed the phone number several times like some drug dealer with different sim cards.
I feel like I am in the movie Enemy of the State except I am Will Smith and Gene Hackman rolled up into one.
cjdee1 said:
It isn't an infection. They are exploiting both devices. I run Norton 360 on both systems. It only slowed them down. And they are 24/7 on me like ex NSA. They haven't stolen anything but they are malicious. Samsung never said. The only thing that said is to buy a different phone. ATT has a open fraud case open because they saw the Tag phone and I changed the phone number several times like some drug dealer with different sim cards.
Click to expand...
Click to collapse
AT&T has an open fraud case on you... or "them"?
Did malicious things? Losing bookmarks is pretty common and usually has nothing to do with being hacked.
Change Google account and password.
Reset all other accounts the same way on a clean Android. Allow no one physical access to the device and most importantly be careful what you install and download.
Most users don't need a hacker to stalk them; they do it themselves by careless installs and downloads. I'll remind you that XDA is a site filled with hackers... mostly peaceful.
I'm sorry for your troubles, most days hacking isn't needed. Really to get into someone's account these days you need personal information which is freely givin on social media and whatnot. You should get with Google and do a massive security checkup. Change password turn on 2FA...the whole swizzle. If all else fails, create a new account completely separate from the affected account/device and start fresh
I opened the Fraud case. They provided the documentation. This has been going on since last year. There was a white paper that came out in November how the media player was being use to hack in. I deal with this problem every day. One would think they would give up. I have another 20 computers in my office that I am replacing once I get my end under control.
Hmm... maybe move all your info to a new account (make the account on a different IP address so like have a friend make it maybe) cuz from my understanding- the hacker finds you on even a new phone? delete the accounts that are being hacked and uh- idk what else really
delete the apps that are being infected
Purge everything from everywhere and start fresh. Honestly Norton and other programs for virus protection aren't really helpful anymore. I do not see a point in using them when Microsoft does a great job just on their own. It's possible that it could be the cause most of the time anti-virus programs that aren't part of the main OS are the problem
Also another note, anything with a Snapdragon and made for the US is locked down. Means no flashing no anything. Best bet for a device us find a good old phone that has a lot of support and flash anything on it
Dr.Lost said:
Also another note, anything with a Snapdragon and made for the US is locked down. Means no flashing no anything. Best bet for a device us find a good old phone that has a lot of support and flash anything on it
Click to expand...
Click to collapse
If you go below Android 9 you will introduce a slew of high risk vulnerabilities including some the worst rootkits. If you're really concerned use the latest version of 12 with fully active scoped storage and the mess that it is...
In general don't use wifi on Androids.
Keep bluetooth off if not using.
Install only vetted apps. Scan with online Virustotal.
Keep all downloads in the download folder until vetted. Scripted malware jpegs, pngs are real and may evaded conventional detection. If they get into a database they will raise hell until deleted; open all jpegs in download folder before transferring them and check for changes in that folder
Keep all email in the cloud, avoid downloading any attachments unless absolutely necessary.
If malware is suspected, delete it or factory reset within 2 hours. Reset passwords.
Time stagger backups so they don't all get infected if there is an incident. Backup redundantly to 2 or more hdds that are physically and electronically isolated from each other and the PC. Use only a known clean PC to access those backups... cross platform malware jumping is rare, cross drive jumping is not.
blackhawk said:
Infections across multiple platforms is almost unheard of... what did Samsung find?
Click to expand...
Click to collapse
Unheard of? Absolutely not, rare on a cell phone, maybe? I don't know really but it is possible especially if OP pissed off the government
Good luck OP
When it comes time to switch to a new phone, ATT should be moving you to a new account with a fresh SIM. Don't transfer anything. Install anything you had fresh and set it up fresh. If they are giving you a new SIM or attaching the new phone to the same account and someone gained access to the account, they're still being fed every new number and IMEI.
As for pictures and stuff, get a USB-C compatible hard drive. Move it to that. Make sure your virus scanner on the computer is updated and either yank the LAN cable or turn off the router before connecting and scanning it. Once it's clean, connect the drive to the new phone and not the computer.
Sounds like someone cloned your ESN and SIM based on what they were doing. Synced items could be manipulated through a PC hack and one good run of the right software with your phone on the same network made it a phone issue.
Oh, and if they didn't or don't already do it, make sure ATT logs your previous devices "lost or stolen" to blacklist the IMEI. That should also make a clone useless for as long as it's a clone.
if you are suspecting a hack, then report to samsung members app > get help > error report asap for help from samsung's hacking issue team
luigi90210 said:
Unheard of? Absolutely not, rare on a cell phone, maybe? I don't know really but it is possible especially if OP pissed off the government
Good luck OP
Click to expand...
Click to collapse
If you download malware files a PC is suspectable to, yes, but generally an infection on an Android doesn't cross platform infect a PC.
It's important to nip any malware in the bud and to isolate that device immediately to limit damage. Any device with malware that I can't erraticate completely within 1 to 2 hours gets nuked, data and all, factory reset. Data is restored then via offline backups.
My PC never has internet access and that's one less huge vector for infection. Even then my backup data drives are isolated from the PC unless in use... multilayered security.
If the DOD, AEC, FBI etc are interested in you, you'll never know it unless they want you to know. When on stake out they always operate as teams. One team is high exposure to gain maximum information and maybe detected but a second picket fence approach team is already in place if the primary team is exposed. Of course they share all knowledge gleaned. The second team you will likely never detect.
Fun fact; field FBI Agents blend in, can be wearing blue jeans, orange vest, 3 piece, anything but low key and drive midrange priced cars that are slightly dirty. The way you ID them is by their behavior and at times location.
If you're not on their menu they may even have a benign friendly conversation with you. They are interesting to chat with.
There is an app on the phone com.qualcomm.atfwd Is that a valid program for this phone. I got my old CDMA phone up on t mobile I had the data turned off because it was useless to me. I came back home and I saw the 2 forks moving. The data was turned on and Norton firewall blocked entry and I had the wifi in airplane mode on the computer. Now I have skills, the average person would never know. This is why I need a phone that I can lock down.
I believe it started with the phone and then I used samsung pc software which hacked the computers that I used. I have all the 25 zip files from one phone before it got a change to load. Anybody interested in them?
The phones have 422 files installed.
cjdee1 said:
There is an app on the phone com.qualcomm.atfwd Is that a valid program for this phone. I got my old CDMA phone up on t mobile I had the data turned off because it was useless to me. I came back home and I saw the 2 forks moving. The data was turned on and Norton firewall blocked entry and I had the wifi in airplane mode on the computer. Now I have skills, the average person would never know. This is why I need a phone that I can lock down.
Click to expand...
Click to collapse
WiFi Screen mirroring.
cjdee1 said:
There is an app on the phone com.qualcomm.atfwd Is that a valid program for this phone. I got my old CDMA phone up on t mobile I had the data turned off because it was useless to me. I came back home and I saw the 2 forks moving. The data was turned on and Norton firewall blocked entry and I had the wifi in airplane mode on the computer. Now I have skills, the average person would never know. This is why I need a phone that I can lock down.
I believe it started with the phone and then I used samsung pc software which hacked the computers that I used. I have all the 25 zip files from one phone before it got a change to load. Anybody interested in them?
The phones have 422 files installed.
Click to expand...
Click to collapse
Interested in potentiality infected files?
Wanna do malware jpeg swap?
Seriously... scan them with online Virustotal.
I guess that could start over as a last resort. The funny thing is I don't do anything illegal. Who ever it is will be wasting time and costing me time. I am sure they are getting screenshots but I don't think that they do it live. On the PC I have zero'd out the drive but the bios is another way. It started when I backup the phone using different computers on my network.
cjdee1 said:
I guess that could start over as a last resort. The funny thing is I don't do anything illegal. Who ever it is will be wasting time and costing me time. I am sure they are getting screenshots but I don't think that they do it live. On the PC I have zero'd out the drive but the bios is another way. It started when I backup the phone using different computers on my network.
Click to expand...
Click to collapse
Is the router updated and secured? Lock it down even if you need help to set it up.
On the PC you should try to ID what the malware is and make sure the databases are clean of it before reloading. Protect all backup drives until the PC is known clean.
The bios can easily be reflashed.
So here's the deal. I'm very smart.. but this is not my forte.(phones) my daughter has screwed up My wife and I phone. Along with my other kids phones as well. She has a school Chromebook and somehow we started getting games installed on our phones from the playstore and some weird rogue games. Looking at the permissions they have access to everything any anything in our phones. I did a little research after probing through hidden files on her Chromebook she stays on gotcha cc. And all types of http only gaming sites. I we have to constantly turn off our camera and Bluetooth bc it turns on automatically. I found out she can access everyone's phone and has also somehow made like 2 networks on my router when she was grounded and was getting free data while her phone was off?? I can't delete this crap. Anti virus scans are useless. I noticed Android developer in her cookies and also some studio. I have this **** attached to my bootloader and no reset can remove it. We have a moto g stylus 5g (xt2131Dl) and anything I put in to remove via my computer/USB cable it instantly corrupts it. She also had a bunch of wallpaper apps that seem to migrate to our phones.calendars clocks and things have these crazy permissions. I noticed my email now is workspace..? Or work profile. Can somebody hit me up and help me get rid of this ****. Oh by the way. It's on my PC desktop now and laptop. It's like my whole phone is a virtual machine.. everybodys. I can't update past anything released in 2019 and 2020. Help!
Churchisat9 said:
So here's the deal. I'm very smart.. but this is not my forte.(phones) my daughter has screwed up My wife and I phone. Along with my other kids phones as well. She has a school Chromebook and somehow we started getting games installed on our phones from the playstore and some weird rogue games. Looking at the permissions they have access to everything any anything in our phones. I did a little research after probing through hidden files on her Chromebook she stays on gotcha cc. And all types of http only gaming sites. I we have to constantly turn off our camera and Bluetooth bc it turns on automatically. I found out she can access everyone's phone and has also somehow made like 2 networks on my router when she was grounded and was getting free data while her phone was off?? I can't delete this crap. Anti virus scans are useless. I noticed Android developer in her cookies and also some studio. I have this **** attached to my bootloader and no reset can remove it. We have a moto g stylus 5g (xt2131Dl) and anything I put in to remove via my computer/USB cable it instantly corrupts it. She also had a bunch of wallpaper apps that seem to migrate to our phones.calendars clocks and things have these crazy permissions. I noticed my email now is workspace..? Or work profile. Can somebody hit me up and help me get rid of this ****. Oh by the way. It's on my PC desktop now and laptop. It's like my whole phone is a virtual machine.. everybodys. I can't update past anything released in 2019 and 2020. Help!
Click to expand...
Click to collapse
Wow....
First I take away her phones and laptops so she couldn't interfere.
Try factory resetting start with a router then the phones,
Motorola does have a recovery program for the phones,
rescue-and-smart-assistant - Motorola
#hellomoto | Discover our new unlocked Android phones from motorola and stay informed about our offers and promotions.
www.motorola.com
Then install an antivirus like Norton or something like that and let it run,
In the case of the laptops I pulled and trashed the hard drives get new ones and default the BIOS before you put it all back together,
If you're using Microsoft get the installation ISO on a thumb drive if the PCS are major manufacturers like Dell, the BIOS contains the licensing key so you won't have to buy it again
Good luck if she's old enough I'd ever arrested.
Just my two cents.....
And change all your passwords once you've got a good clean PC to do it from.
Ps dont connect anything back to the internet to your done sanitizing it all.
maddog3030 said:
Wow....
First I take away her phones and laptops so she couldn't interfere.
Try factory resetting start with a router then the phones,
Motorola does have a recovery program for the phones,
rescue-and-smart-assistant - Motorola
#hellomoto | Discover our new unlocked Android phones from motorola and stay informed about our offers and promotions.
www.motorola.com
Then install an antivirus like Norton or something like that and let it run,
In the case of the laptops I pulled and trashed the hard drives get new ones and default the BIOS before you put it all back together,
If you're using Microsoft get the installation ISO on a thumb drive if the PCS are major manufacturers like Dell, the BIOS contains the licensing key so you won't have to buy it again
Good luck if she's old enough I'd ever arrested.
Just my two cents.....
And change all your passwords once you've got a good clean PC to do it from.
Ps dont connect anything back to the internet to your done sanitizing it all.
Click to expand...
Click to collapse
Maddog 3030 thanks brother! Yeah it's ridiculous. Like my mind is blown completely.. i definitely confiscated the two phone/laptop. You'll never believe what happened.. she freaking signed in through Roku on her tv.. the only thing I left in her room electronically. Furious. But I'm very grateful for you response I'm definitely doing that step by step. I can't believe we have to run our phones in safe mode in my own house 24/7. I'll see if I can grab some more verbage from some of the things I find. Alot of it is encrypted copy pasted on blank notepad on the laptop. However I did see chrome://sysinternals and flags in the browser history. She had been on. I'm just lost as to how.. is it all the Google cloud developer stuff or Microsoft or azure..what else.. the Roblox/gotcha stuff which the files are being put into.. like everyday our phones have like "software" update at the top of the screen . Like no matter what I turn off it automatically turns it back on I'm thinking through Bluetooth. Hey Ive searched and searched is there any possible way to run the Microsoft tool without a PC? And only on my phone? The laptop I have is a hp and the desktop is the windows all in one 27in. Completely knocked windows defender out. Funny thing is she's never once had possession of or even used our phones before. Hadn't sent anything to us that we've opened to give it access. Sorry to make this so long lol. But I know you guys are the ones to explain this to. I've googled/duckduckgo/chat gpt/YouTube and searched hours and days for an answer. I get anything from the tct malware to the developers of multiple platforms accounts. Each have pieces that are spot on. But nothing exact. Our phones are straight talk. I've even called them. No help. Caught my attention when she was having data somehow at school and her phone wasn't even active. But the data on my wife and I phones were crazy high. The usuage from multiple apps were around 900mb each in the span of a week.. just didn't think there was any way Bluetooth had anything to do with it because of the distance from her school at the time to our home was way too far. But whatever it is it definitely calls for our Bluetooth to be turned on and our hotspot also comes on too. EVERYTIME. It's some feature of it. And also was a dead giveaway after so long of it happening. Everytime our Bluetooth , hotspot and mic access would pop on she would be in the house on her phone being sneaky.. recently when I had enough and took the electronics and discovered all this stuff on it.