recently downloaded a zip file for a rom.
ran norton and it found a trojan.
norton dealt with the issue, all is clean now it says.
2?'s
is the rom safe to use now if norton gave the green light?
where did this trojan come from?
was it the dev? i have used his roms before, and no issues...
hard for me to think, as was said in another post that he would take the time to cook up the rom just to slip a trojan in. but i understand it's a possibility.
is there a chance that it was not injected by the dev though?
somehow in transit through the net or on the hosting site?
really would like to beleive it did not come from the dev but another source...
xda___ said:
recently downloaded a zip file for a rom.
ran norton and it found a trojan.
norton dealt with the issue, all is clean now it says.
2?'s
is the rom safe to use now if norton gave the green light?
where did this trojan come from?
was it the dev? i have used his roms before, and no issues...
hard for me to think, as was said in another post that he would take the time to cook up the rom just to slip a trojan in. but i understand it's a possibility.
is there a chance that it was not injected by the dev though?
somehow in transit through the net or on the hosting site?
really would like to beleive it did not come from the dev but another source...
Click to expand...
Click to collapse
- also, another idea... a "false positive"?
You are using windows pc, and a android device which is based on linux. Its not possible to run a windows program in linux based mobile platform. I think, the virus you have found,that must be entered when the rom is packed.
IsolatedKM said:
You are using windows pc, and android based on linux. Its not possible to run a windows program in linux based mobile platform. I think, the virus you have found,that must be entered when the rom is packed.
Click to expand...
Click to collapse
I downloaded the rom onto my pc and ran norton before putting onto my phone....
what would suggest a rom is packed with a virus vs. a false positive or coming from a different source?
xda___ said:
- also, another idea... a "false positive"?
Click to expand...
Click to collapse
AND, if i was able to clean the files, how do i know if norton removed something the rom needs to funtion?
can i tell by any code info. norton gives me on the virus?
flash it nothing will happen to your phone since it detects windows viruses + norton is crappy i suggest using kaspersky
Most likely a false positive.
Related
Has anyone ever tried to flash a rom or develop a rom that can be flashed by a Mac? I have Missing sync to sync my Tilt and to download .cabs and .exe's.
Works great by the way. I have flashed several roms from Windows XP on the " other side " of my Intel chip, so no problem there. Just wondering can it be done from the Mac side? And has anyone done it?
I have been using Macs and Apples for over 25 years ( started with Apple IIc) and never once had the urge to switch so comments from the "Apple Bashers" will mean nothing to me
Just curious.
no i'm not going bash apple but i haven't come across anything for mac and i believe the kaisercustomruu.exe can only be run only on windows
I have successfully flashed my Tilt using a Parallels install of XP Pro. Of course that requires an Intel Mac to accomplish...
NotATreoFan said:
I have successfully flashed my Tilt using a Parallels install of XP Pro. Of course that requires an Intel Mac to accomplish...
Click to expand...
Click to collapse
I have flashed several roms using both Parallels and Bootcamp on the other side of my Intel/Mac chip and .exe file will not run on OS X but is it possible to create a rom using say a .dmg package instead of an .exe package?
The problem is far beyond the fact that the package is in exe the tools to actually flash the rom are windows only
I'd just flash from the MicroSD card.
Read here:
http://forum.xda-developers.com/showthread.php?t=336158
AstainHellbring said:
The problem is far beyond the fact that the package is in exe the tools to actually flash the rom are windows only
Click to expand...
Click to collapse
Obviously you can't just re-package under a different file extension. What " tools " are you refering to? Kitchen tools? Again just re-packaging. Leopard can run on an intel chip. Word, Excel, etc, can run natively on a Mac. Can you put together a rom or write one from scratch that can be downloaded natively to a Mac and then flashed to a Kaiser? Even theoretically?
You can use whatever OS you want... Just do what Peterfnet suggested... Use the SD card method... It's safer and easier.
Just follow the link provided by Peterfnet!
Rayan said:
You can use whatever OS you want... Just do what Peterfnet suggested... Use the SD card method... It's safer and easier.
Just follow the link provided by Peterfnet!
Click to expand...
Click to collapse
It wasn't a "how do I flash a rom question " , I press a button and my screen twirls from OS X Leopard to Windows XP , I flash a new rom, press another button and my screen twirls back to Leopard and all my Mac apps. ( new Intel Chip for Mac)
The question was " what do the knowledgeable people here think? " Are there limitations of computer science that would prevent this or just limitations of available ground work that I could create?
Edit: I re-read this post and it sound kind of terse, I didn't meanit that way.
Thanks for your input Rayan
I see no reason why it would not be possible to flash a ROM natively inside Mac OS. But in order to do so, the flashing application written by HTC would need to be recoded to run on Mac.
If you extract the .exe file that is inside the rar file posted by the chefs here, you will see 5-10 files, one of which is the OS.nbh file. If you can write a program for Mac OS that can communicate with the Kaiser and call that file, then it would be possible. (DISCLAIMER: I am NOT a programmer, so it is a definite possibility that I could be talking out of my ass.)
Since flashing is not yet available to Linux users, then Mac is probably still a bit off.
peterfnet said:
I'd just flash from the MicroSD card.
Read here:
http://forum.xda-developers.com/showthread.php?t=336158
Click to expand...
Click to collapse
best option all around
Well, ever since I discovered the SD Card method I don't flash it through the PC anymore... No more fears of freezing up, power failures and such!
In fact, I carry several "test" ROMS in my card just to install them on the go whenever I'm bored! LOL...
Here's an answer from someone who is paid to write software....
You're correct there is no technical reason that you can't flash your phone from a Mac OS.
Basically the whole process is a few commands & responses sent across the USB port and then the nbh image streamed via the port to the waiting device.
Here's the bind: Microsoft is well known for not working well with others. Why would they be motivated to provide non-MS OS the ability to flash "Windows Mobile"? It's kind of like iTunes being able to integrate with non-iPod MP3 players as well as it works with iPods (or so I've heard).
Thanks all , it looks like I have my next project. Thanks for all your input. peterfnet and Rayan thanks when HTC comes out with their new rom update and new driver package at the end of the month I'm going the card method for a change.
Any one know if there exists tools to connect and burn roms from a linux box, instead of a windows? I'm not interested in burning a linux rom on to my tilt (not yet, anyway). Just using a linux desktop instead of windows. I have tried using windows from a vm, but had problems with the usb connection.
If you can point me to the source of the tools, I can, probably, help port them to linux. however, I'm guessing the tool that establishes the communication (handshaking) with the kaiser would be the bulk of the requirement.
Erol
If you mean flash ROMs, then use the sdcard method. Hope this helps.
You can also use WINE to run the app.
Kraize
if you actually searched you'd see there is already a tool, search for htcflasher. and its called flashing, not burning.
I flash off the card almost exclusively. I use the office computer for hardspl if there is an update, but a simple card reader and mepis is more than happy to help me swap roms.
vcysion said:
if you actually searched you'd see there is already a tool, search for htcflasher. and its called flashing, not burning.
Click to expand...
Click to collapse
While "flashing" is the term that correctly describes the process that loads software into the phone, "burning" has for a very long time been a verb that describes writing to ROM. It's actually the use of "ROM" that is incorrect because the phone's memory is not really read-only.
Kraize92 said:
You can also use WINE to run the app.
Kraize
Click to expand...
Click to collapse
Are you sure about that?
Just use Nero to burn ROM . LoL..
i think pof has released linux rom flasher..
HTC Flasher
http://forum.xda-developers.com/showthread.php?t=399762
you need to compile and insert the ipaq kernel module for it to work.
Personally, i still haven't got it working on gentoo (compiled from source) but im gonna try again later.
Havent had *any* luck using wine/vmware/virtualbox or any emulation as it messes with the USB. Active sync definitely doesn't work through wine.
NOTE: This is an older version of the driver, a newer version is available here.
This was pulled directly from the HTC Sync 3.3.21 installer.
HTCDriver_4.0.1.001_20121107.exe.part1.rar and HTCDriver_4.0.1.001_20121107.exe.part2.rar are the executable driver installer. The other files are the drivers for the individual platforms.
Note: The last zip is labeled Win2k, but I suspect it is also intended for use with Windows XP.
Note 2: The Windows 7 drivers are reported to work with Windows 8.
NOTE: This is an older version of the driver, a newer version is available here.
Wow almost four years and that was the first thing you decided to post?
Sent from my HTC One XL
954wrecker said:
Wow almost four years and that was the first thing you decided to post?
Sent from my HTC One XL
Click to expand...
Click to collapse
It was borne out of my own difficulty in finding the driver from HTC, rather than some random file host, so I figured I would share it with others and provide them with a means of obtaining it on their own.
i was going to download the new htc sync to grab the driver but didn't feel like wasting the time. thanks for this driver.
everyone seems to like to use HTCDriver3.0.0.007.exe though which must be modified since it doesn't pass digital signature.
954wrecker said:
Wow almost four years and that was the first thing you decided to post?
Click to expand...
Click to collapse
Would you rather his first post be "What's the best ROM" or "How do you root"?
Pretty awesome first post, if you ask me.
redpoint73 said:
Would you rather his first post be "What's the best ROM" or "How do you root"?
Pretty awesome first post, if you ask me.
Click to expand...
Click to collapse
It was a great first post, like you said most first posts are not as useful and it just caught me off guard
DvineLord said:
i was going to download the new htc sync to grab the driver but didn't feel like wasting the time. thanks for this driver.
everyone seems to like to use HTCDriver3.0.0.007.exe though which must be modified since it doesn't pass digital signature.
Click to expand...
Click to collapse
Here is version 3.0.0.007
xp314a said:
zipped for those not crazy about running an EXE found on the web.
Click to expand...
Click to collapse
But still cool with installing drivers that are executable code that is loaded with the operating system running as system instead of user, so in fact much much more dangerous.
twistedddx said:
But still cool with installing drivers that are executable code that is loaded with the operating system running as system instead of user, so in fact much much more dangerous.
Click to expand...
Click to collapse
The drivers are digitally signed.
xp314a said:
The drivers are digitally signed.
Click to expand...
Click to collapse
Is the exe not?
twistedddx said:
Is the exe not?
Click to expand...
Click to collapse
Yes, it is.
xp314a said:
Yes, it is.
Click to expand...
Click to collapse
So a reputable signature on a exe is less secure than a reputable signature on a driver?
Back to my original point drivers are more dangerous than a exe. There is a logic fail to someone not liking an exe but installing drivers from the same source.
Ps not knocking you supplying these drivers. Thanks for offering them. I just found the irony in your statement about why you are offering zip versions rather funny. And it is funnier that I agree that many users actually will think that the zip is somehow safer, when in fact installing untrusted drivers is far more dangerous than running untrusted exe's. Crazy users...
twistedddx said:
So a reputable signature on a exe is less secure than a reputable signature on a driver?
Back to my original point drivers are more dangerous than a exe. There is a logic fail to someone not liking an exe but installing drivers from the same source.
Ps not knocking you supplying these drivers. Thanks for offering them. I just found the irony in your statement about why you are offering zip versions rather funny. And it is funnier that I agree that many users actually will think that the zip is somehow safer, when in fact installing untrusted drivers is far more dangerous than running untrusted exe's. Crazy users...
Click to expand...
Click to collapse
wut
twistedddx said:
So a reputable signature on a exe is less secure than a reputable signature on a driver?
Back to my original point drivers are more dangerous than a exe. There is a logic fail to someone not liking an exe but installing drivers from the same source.
Ps not knocking you supplying these drivers. Thanks for offering them. I just found the irony in your statement about why you are offering zip versions rather funny. And it is funnier that I agree that many users actually will think that the zip is somehow safer, when in fact installing untrusted drivers is far more dangerous than running untrusted exe's. Crazy users...
Click to expand...
Click to collapse
I didn't to intend to suggest that the drivers were any less dangerous to install; although, re-reading my post, I can see how it could come across that way. Many users will, as you say, consider an EXE to be less trustworthy, which was the original purpose of my statement.
However, at least in Windows 7 (maybe even in XP, I don't remember), attempting to install drivers that are not digitally signed will result in a big, red, scary warning dialog; whereas, attempting to run an EXE that isn't digitally signed (like the HTC Sync installer, for example) will simply show a "The publisher could not be verified. Are you sure you want to run the software?" dialog, just like almost every other application you install. I know which one is more likely to get my attention.
Edit: Yes, the same warning appeared in XP, but did not have the scary, red band at the top of the dialog. Attaching a screenshot I found on Google Images from devicedriverfinder.com, for those unfamiliar with this red-banded dialog of which I speak.
On a somewhat related note, I actually installed the androidusb driver from the files I zipped, rather than using the installer, as I have no need for media sharing or USB tethering.
xp314a said:
attempting to run an EXE that isn't digitally signed (like the HTC Sync installer, for example) will simply show a "The publisher could not be verified. Are you sure you want to run the software?" dialog, just like almost every other application you install. I know which one is more likely to get my attention.
Click to expand...
Click to collapse
Hmm cant remember exact Windows 7, it has been so long.
On a default install of Windows 8, you end up with all of these prompts for random unsigned exe's before you can run the app.
"Windows protected your PC. Windows SmartScreen prevented an unrecognized application from starting. Running this application could put your PC at risk." dims the screen and is in the foreground, you have to click "more info" and "Run anyway" and then get the UAC warning.
Nearly all exe's from any reputable company are signed these days.
Edit: the last picture is running the exe you posted. This was the only message that appeared.
Still all this seems to be a whole lot of noise for what started as me simply laughing that users would trust drivers over exe's because in their head only exe's are bad. Microsoft make the driver warning big and red because bad drivers are worse than bad exe's.
So do these have HBOOT drivers that work with win8
Master_falco said:
So do these have HBOOT drivers that work with win8
Click to expand...
Click to collapse
I'm not familiar with HBOOT drivers, but a Google search seems to indicate that they are a modified USB driver by unrEVOked. The ones posted in this thread were pulled directly from the HTC Sync installer.
Someone else will have to comment if these will work in Windows 8, as I am still on Windows 7.
Edit: There is, though, an Android Bootloader Interface driver provided by the Google USB Driver package in the Android SDK, which may be for what you are looking. Again, I can't say if it will work in Windows 8, though a few threads here on XDA seem to indicate that it will.
Edit 2: You can download the Google USB Driver 7.0.0000.00001 (2012-08-27) directly from Google here (ZIP).
nice thread stater
Very usefull threads
I realy like read this threads post.
the zips for win7 worked with win8. wohoo
I have a tab Lenovo A5500-HV, recently it was malware compromised mostly in
/system/priv-app/*.apk
/system/app/*.apk
My tab is not rooted. I can no longer keep my Unknown devices installation (checked off) and if I connect to internet installation of file with weird names are installed which interrupt and disrupt normal functioning to standstill.
I wish to understand
a) How is trojan or backdoor infestation in android different from windows
b) Why isnt best known antivirus and anti- malwares of windows platform unable to neither detect or remove infected files (Device not rooted)
c) How can I protect my device as I tried hard reset but it did no good
So please share some application/s (apk) to detect infected files and hopefully remove (without rooting if possible and still securing default android). Norton/ AVG/ Avast failed to detect them but Malwarebytes detect but none could disinfect
Ashish1+1 said:
I have a tab Lenovo A5500-HV, recently it was malware compromised mostly in
/system/priv-app/*.apk
/system/app/*.apk
My tab is not rooted. I can no longer keep my Unknown devices installation (checked off) and if I connect to internet installation of file with weird names are installed which interrupt and disrupt normal functioning to standstill.
I wish to understand
a) How is trojan or backdoor infestation in android different from windows
b) Why isnt best known antivirus and anti- malwares of windows platform unable to neither detect or remove infected files (Device not rooted)
c) How can I protect my device as I tried hard reset but it did no good
So please share some application/s (apk) to detect infected files and hopefully remove (without rooting if possible and still securing default android). Norton/ AVG/ Avast failed to detect them but Malwarebytes detect but none could disinfect
Click to expand...
Click to collapse
a) The only differences are technical ones, such as executing exploits and creating the malware itself.
b) Because malware isn't nearly as popular on Android compared to Windows, so naturally less interest for security companies and less malware samples to analyse.
c) If you can't get it removed with a hard reset, either the company selling you the phone has infected the ROM, or an app has rooted your phone, injected itself onto /system and now you're screwed.
My advice: completely re-flash the stock (or more preferably) a stable custom tom. This does require you to root (or flash a custom recovery via fastboot).
janekmuric said:
a) The only differences are technical ones, such as executing exploits and creating the malware itself.
b) Because malware isn't nearly as popular on Android compared to Windows, so naturally less interest for security companies and less malware samples to analyse.
c) If you can't get it removed with a hard reset, either the company selling you the phone has infected the ROM, or an app has rooted your phone, injected itself onto /system and now you're screwed.
My advice: completely re-flash the stock (or more preferably) a stable custom tom. This does require you to root (or flash a custom recovery via fastboot).
Click to expand...
Click to collapse
Thanks for taking time. So this means if the app has rooted the phone does the phone stay rooted for the user (for removal) or for the device now is at the mercy of malware as any internet connectivity will re invite their infected downloads. And say, if its rooted please share few antivirus , antimalwares or apps that can assist in erasing trojan or backdoor through the path viewed.
Sent from my A0001 using XDA-Developers mobile app
Ashish1+1 said:
Thanks for taking time. So this means if the app has rooted the phone does the phone stay rooted for the user (for removal) or for the device now is at the mercy of malware as any internet connectivity will re invite their infected downloads. And say, if its rooted please share few antivirus , antimalwares or apps that can assist in erasing trojan or backdoor through the path viewed.
Sent from my A0001 using XDA-Developers mobile app
Click to expand...
Click to collapse
You cannot use the root exploit to remove the malware. There is NO antivirus app that can remove that malware because it's on a partition the antivirus can't access.
Only way to remove the threat for sure is to flash a new rom on the phone, but this requires root.
If you guys don't know how to root, you can try the new Dirty Cow exploit. There aren't any one click apps yet, but you can compile it as the source code is on GitHub.
So this means after flashing, need to search for stable custom ROM which has to be compatible with
Sent from my A0001 using XDA-Developers mobile app
Had a good read but from an old article on "android has a big security problem, but antivirus apps can't do much to help" but was posted on Oct 29, 2015. Is it still valid
Sent from my A0001 using XDA-Developers mobile app
Ashish1+1 said:
Had a good read but from an old article on "android has a big security problem, but antivirus apps can't do much to help" but was posted on Oct 29, 2015. Is it still valid
Sent from my A0001 using XDA-Developers mobile app
Click to expand...
Click to collapse
Yes, it's still valid as apps will always be sandboxed in Android so security apps can't access malware in most of the partitions on your phone if they have managed to install themselves there, but AV can still identify malware (in some partitions at least, I think there are some they cannot read), so I think they have their uses, but they are limited by the very thing that makes Android more secure than Windows out the box, ie how apps are sandboxed. One thing that has changed though since that was written is there are a number of new exploits that can gain root, when it was written I think it was generally considered unlikely a malicious app could gain access to root, now I would say it's not on older versions of Android.
ANd just to clarify what has been said above by Janek, you should install stock ROM first then a custom ROM if you want one, as stock will overwrite all partitons while most custom ROMs will not!
Thanks for the info. Another quert, any suggestion for sandboxes browser that can be recommended
Sent from my A0001 using XDA-Developers mobile app
Can somebody please provide a link for the drivers for the Poco x3 ? I am using Windows 7 and I cannot get shot of the yellow exclamation ! in the device manager. If there is an 'exe' version that would be great as I have had numerous attempts at trying to manually installing but to no avail. Thanks !
Have you tried to install Xiaomi PC Suite? It'll install the drivers for you.
MocnePifko said:
Have you tried to install Xiaomi PC Suite? It'll install the drivers for you.
Click to expand...
Click to collapse
I didn't know this, I will give it a try! Thanks
Well I tried the Xiaomi PC suite , the PC suite does not connect. Says to update my device. Still got the yellow exclamation mark in device manager, but at least I can drag and drop to my phone. I think it's odd they don't provide a driver tho?
Have you uninstalled it first? The driver that was installed by the system I mean. If not try and do it in the Device Manager then reboot your PC with the phone connected. If this doesn't work try a different USB port (all the standard stuff, you know). I'd really suggest that you upgrade that windows to win10. MS has dropped the support for 7. So no more security updates. Also you can still upgrade for free.
MocnePifko said:
Have you uninstalled it first? The driver that was installed by the system I mean. If not try and do it in the Device Manager then reboot your PC with the phone connected. If this doesn't work try a different USB port (all the standard stuff, you know). I'd really suggest that you upgrade that windows to win10. MS has dropped the support for 7. So no more security updates. Also you can still upgrade for free.
Click to expand...
Click to collapse
I am still getting security updates for my W7 machine that ain't a problem. I will uninstall all drivers and see what happens. Thanks for your help.
MocnePifko said:
I'd really suggest that you upgrade that windows to win10. MS has dropped the support for 7. So no more security updates. Also you can still upgrade for free.
Click to expand...
Click to collapse
Excuse the Off Topic but, having both versions running on different computers, I think that's really bad advice.
If it works, don't fix it.
Windows 10 has given me little more than grief, while a 5 year old install of 7 is running as my daily driver without any major issues.
Security is no excuse here, both OS have attack vectors you must be mindful of -- but Ten's larger user base make it a bigger target... Not to mention MS regular updating breakage (just Google it).
Well I managed to get the phone recognised by the PC using Mi PC Suite. I followed the link here:
China Mi PC Suite with English Translation | MIUI Blog
Xiaomi has Mi PC Suite. It is the all-in-one tool to manage your device. It can install apps, update the mobile operating system, organize files, and so on.
miui.blog
Basically putting the Chinese version followed by some translation files. Recognised phone right away! just don't upgrade the app when it's asks.
pnin said:
Excuse the Off Topic but, having both versions running on different computers, I think that's really bad advice.
If it works, don't fix it.
Windows 10 has given me little more than grief, while a 5 year old install of 7 is running as my daily driver without any major issues.
Security is no excuse here, both OS have attack vectors you must be mindful of -- but Ten's larger user base make it a bigger target... Not to mention MS regular updating breakage (just Google it).
Click to expand...
Click to collapse
I don't intend 'upgrading' my laptop to W10, way too much trouble. Every update something else breaks. There are no supported (W10) drivers for WiFi of graphics so it just runs smoother as it is! Thanks!! W7 all the way!
pnin said:
Excuse the Off Topic but, having both versions running on different computers, I think that's really bad advice.
If it works, don't fix it.
Windows 10 has given me little more than grief, while a 5 year old install of 7 is running as my daily driver without any major issues.
Security is no excuse here, both OS have attack vectors you must be mindful of -- but Ten's larger user base make it a bigger target... Not to mention MS regular updating breakage (just Google it).
Click to expand...
Click to collapse
The OP is here because something actually doesn't work. Telling someone to stay on an 11 years old system based on personal preference is a bad advice. My security example is not an "excuse" as you call it but a good reason (one of many in fact) to upgrade. That would solve the problem OP has and help him avoid many others in the future.
MocnePifko said:
Have you tried to install Xiaomi PC Suite? It'll install the drivers for you.
Click to expand...
Click to collapse
I used the Chinese version and put the English translation files into it. The English standalone did not work