Hello
10 months ago I switched from iPhone 5 to Sony Xperia Z1 Compact mobile (not rooted), with Android 4.4.4.
The phone was running great, I also tested it for developing some simple android projects. I enabled USB debugging and checked "allow installation from unknown sources".
But always keeping in mind that Android is not secure. And choosing carefully what to install. But I was also trusting CM Security as a protection.
1 month ago, I turned ON wifi and I was trying to open my email app to see if there is any new mail.
After the device connected to internet, I saw someone was scrolling controlling my screen and navigating. After he found the "CM Security" app he tried to uninstall it.
Luckily I was very concentrated at what was going on, so I clicked on the side of the screen to prevent it. He tried again to do the same thing, so I run and switched off my home wifi rooter in time.
After the internet was gone the mobile was returned behaving normally. So during connected to internet the phone was taking both commands from me and the attacker.
For my fortune I always leave OFF wifi, mobile data and Bluetooth when I don't need them.
Anyway I made a hard reset. I did it without using the Safe Mode.
The problem was solved.
I hoped that it happened because I connected to many unsecure public wifi networks during my trips out of country last month!
Since the "master/hard reset" I installed only applications very very popular and I never connected anymore to any public wifi.
Also I never enabled the USB debugging and never checked "allow installation from unknown sources".
So I was using my phone normally, until yesterday. It was protected through CM Security, AVAST, and CM Cleaner.
But here it comes again!!! I connected through the 3G internet and again the phone was remote controled.
So today I did a hard reset but this time in SAFE MODE.
Please can you suggest me what other can I do?
StevenTerman said:
Hello
10 months ago I switched from iPhone 5 to Sony Xperia Z1 Compact mobile (not rooted), with Android 4.4.4.
The phone was running great, I also tested it for developing some simple android projects. I enabled USB debugging and checked "allow installation from unknown sources".
But always keeping in mind that Android is not secure. And choosing carefully what to install. But I was also trusting CM Security as a protection.
1 month ago, I turned ON wifi and I was trying to open my email app to see if there is any new mail.
After the device connected to internet, I saw someone was scrolling controlling my screen and navigating. After he found the "CM Security" app he tried to uninstall it.
Luckily I was very concentrated at what was going on, so I clicked on the side of the screen to prevent it. He tried again to do the same thing, so I run and switched off my home wifi rooter in time.
After the internet was gone the mobile was returned behaving normally. So during connected to internet the phone was taking both commands from me and the attacker.
For my fortune I always leave OFF wifi, mobile data and Bluetooth when I don't need them.
Anyway I made a hard reset. I did it without using the Safe Mode.
The problem was solved.
I hoped that it happened because I connected to many unsecure public wifi networks during my trips out of country last month!
Since the "master/hard reset" I installed only applications very very popular and I never connected anymore to any public wifi.
Also I never enabled the USB debugging and never checked "allow installation from unknown sources".
So I was using my phone normally, until yesterday. It was protected through CM Security, AVAST, and CM Cleaner.
But here it comes again!!! I connected through the 3G internet and again the phone was remote controled.
So today I did a hard reset but this time in SAFE MODE.
Please can you suggest me what other can I do?
Click to expand...
Click to collapse
Hi, just a thought....maybe someone has your Google account, and that way has also access to your phone. I suggest you to create a new account, reset your phone, and use the newly created account for your phone (and keep it secret). Also, if and when you are going to use a public wifi, use also a vpn. Hope you'll solve the issue.
setmov said:
Hi, just a thought....maybe someone has your Google account, and that way has also access to your phone. I suggest you to create a new account, reset your phone, and use the newly created account for your phone (and keep it secret). Also, if and when you are going to use a public wifi, use also a vpn. Hope you'll solve the issue.
Click to expand...
Click to collapse
Hello and thank you for your time and help.
After it happened the first time and hard reseted the phone, I created a new gmail account.
So this second time it shouldn't have happened if the email was the reason.
setmov said:
Hi, just a thought....maybe someone has your Google account, and that way has also access to your phone. I suggest you to create a new account, reset your phone, and use the newly created account for your phone (and keep it secret). Also, if and when you are going to use a public wifi, use also a vpn. Hope you'll solve the issue.
Click to expand...
Click to collapse
I'm curious. How would anyone control the device remotely if they have access to one of the google accounts on the device?
shifter7 said:
I'm curious. How would anyone control the device remotely if they have access to one of the google accounts on the device?
Click to expand...
Click to collapse
Well, one of the "options" would be to push the installation of a "malicious" app through the "great" remote install feature in the store. The app installation would proceed without you knowing it. It's known that the Play Store is, sadly, vulnerable to malicious apps. It happened in the past and it will happen in the future. There is also ways to hack a phone through an update....some apps can gain root without even ask for it when you're updating your os. This is because the Android Package Management Service (PMS) and the way it handles the os update. It will allow a seemingly harmless malicious app to acquire significant capabilities without user consent once they upgrade to a newer version of Android. I can go on, but I suggest you to make a research by yourself. There is a lot to read on the internet and here on XDA. You can start from here: http://www.informatics.indiana.edu/xw7/papers/privilegescalationthroughandroidupdating.pdf
Try this application when you update your OS:
https://play.google.com/store/apps/details?id=com.iu.seccheck&hl=en
Do you know that installing system updates could result in your Android device being hacked? Recent investigation found six such vulnerabilities (called Pileup flaws) in Android OS. When you upgrade your device, a seemingly harmless app can exploit these vulnerabilities to get access of your voicemails, user credentials, call logs, notifications of other apps, Google Voice messages, etc. This security app scans your device to detect those malicious apps and guides you uninstall them once detected.
Generic security apps (e.g., Lookout, Avast!, Norton, etc.) cannot be easily tuned to detect Pileup threats.
I don't know if you updated recently your OS but it can be used in the future.
setmov said:
Well, one of the "options" would be to push the installation of a "malicious" app through the "great" remote install feature in the store. The app installation would proceed without you knowing it. It's known that the Play Store is, sadly, vulnerable to malicious apps. It happened in the past and it will happen in the future. There is also ways to hack a phone through an update....some apps can gain root without even ask for it when you're updating your os. This is because the Android Package Management Service (PMS) and the way it handles the os update. It will allow a seemingly harmless malicious app to acquire significant capabilities without user consent once they upgrade to a newer version of Android. I can go on, but I suggest you to make a research by yourself. There is a lot to read on the internet and here on XDA. You can start from here: http://www.informatics.indiana.edu/xw7/papers/privilegescalationthroughandroidupdating.pdf
Click to expand...
Click to collapse
Thank you for the explanation/clarification.
And that whitepaper, pretty scary stuff.
Pretty obvious too, but didn't think it could go that far.
Oh dear....
StevenTerman said:
Hello
10 months ago I switched from iPhone 5 to Sony Xperia Z1 Compact mobile (not rooted), with Android 4.4.4.
The phone was running great, I also tested it for developing some simple android projects. I enabled USB debugging and checked "allow installation from unknown sources".
But always keeping in mind that Android is not secure. And choosing carefully what to install. But I was also trusting CM Security as a protection.
1 month ago, I turned ON wifi and I was trying to open my email app to see if there is any new mail.
After the device connected to internet, I saw someone was scrolling controlling my screen and navigating. After he found the "CM Security" app he tried to uninstall it.
Luckily I was very concentrated at what was going on, so I clicked on the side of the screen to prevent it. He tried again to do the same thing, so I run and switched off my home wifi rooter in time.
After the internet was gone the mobile was returned behaving normally. So during connected to internet the phone was taking both commands from me and the attacker.
For my fortune I always leave OFF wifi, mobile data and Bluetooth when I don't need them.
Anyway I made a hard reset. I did it without using the Safe Mode.
The problem was solved.
I hoped that it happened because I connected to many unsecure public wifi networks during my trips out of country last month!
Since the "master/hard reset" I installed only applications very very popular and I never connected anymore to any public wifi.
Also I never enabled the USB debugging and never checked "allow installation from unknown sources".
So I was using my phone normally, until yesterday. It was protected through CM Security, AVAST, and CM Cleaner.
But here it comes again!!! I connected through the 3G internet and again the phone was remote controled.
So today I did a hard reset but this time in SAFE MODE.
Please can you suggest me what other can I do?
Click to expand...
Click to collapse
Oh no! Did you create a BackUp before you did this?
I think the good members of this forum fell victims to an Apple troll. The key to his unscientific fiction is this: 10 months ago I switched from Iphone to Xperia and I knew android was insecure. He also claims he is a developer, but his phone is not rooted. 10 months ago Xperia z1c did not have kitkat on newly released units and the announcement for kitkat update was made on March 19 of last year. If he bought his phone 10 months ago, he couldn't have kitkat. Most likely the troll googled the date of the announcement and this is how it became a part of this fairytale. Also note that when he says he noticed his phone was taken over, he ran to shut off his wifi router. Why not shut off wifi on the phone, especially that he says the phone was accepting his commands? Now, suppose it is true that the phone was taken over through his e-mail account, then what's the probability of this happening again with a new account? Well, the underlying message is: people, don't switch from iphones to android, android is not secure, it is only good if you don't connect to the internet.
Mr. Cook, next time hire someone with higher IQ, so that your pitch sticks...
Tell you what, optimumpro, the bold letters gave it away for me. We're tech-Support here - so, why bold letters? Just advertisers are in the habit of using bold letters all over the place.
no further questions
optimumpro said:
I think the good members of this forum fell victims to an Apple troll. The key to his unscientific fiction is this: 10 months ago I switched from Iphone to Xperia and I knew android was insecure. He also claims he is a developer, but his phone is not rooted. 10 months ago Xperia z1c did not have kitkat on newly released units and the announcement for kitkat update was made on March 19 of last year. If he bought his phone 10 months ago, he couldn't have kitkat. Most likely the troll googled the date of the announcement and this is how it became a part of this fairytale. Also note that when he says he noticed his phone was taken over, he ran to shut off his wifi router. Why not shut off wifi on the phone, especially that he says the phone was accepting his commands? Now, suppose it is true that the phone was taken over through his e-mail account, then what's the probability of this happening again with a new account? Well, the underlying message is: people, don't switch from iphones to android, android is not secure, it is only good if you don't connect to the internet.
Mr. Cook, next time hire someone with higher IQ, so that your pitch sticks...
Click to expand...
Click to collapse
Hahaha, I love your way optimum....I am the first that fells, if your theory is right, but, even if I am the first, I am not going to buy this ****ty apple phone....and will keep my android....hmmm who knows...maybe blackberry?
Related
Ok, now I'm going into my third day with this phone, and I'm really struggling to find a way that it has made me happy. I mean, yeah, I like the OS and all, but Sprint still hasn't gotten back to me on whether they're going to send me a free Airave (I spend half the time in my home roaming). I had to reset the device yesterday to get it to connect to Marketplace - even though my account has never said anything but US (last time I left the country was in the Navy 21 years ago) - and even though I could connect to marketplace on Zune software, my phone wouldn't connect to it. Now I've got that working, by resetting the phone.
Now I can't get the phone unlocked. My developer account has been approved, identity verified, and the next step in my process is unlock my phone. I have tried all the tricks I've found so far: start phone, unlock the lock screen, turned off a bunch of services on my PC (like SQL, IIS, and more), reset my phone again, touch marketplace on the phone while connected so it says "connected" on the screen... Between all this and the lousy reception I get at home, I'm ready to just chuck this thing back at Sprint and say, "Thanks, but no thanks." The one thing keeping me from doing that is that Verizon is going to get the Trophy, and I want a phone with a keyboard. I've had keyboards on all my WinMo phones, and don't plan to stop now. I just wish this phone was available on VZW. I'm going to stick it out as long as I can, but iff I don't have an improved experience by day 28, Sprint gets it back... </rant>
Ok... Have I missed any other steps in getting this phone to connect to the Developer Phone Registration tool?
Have you tried following the directions here:
http://social.msdn.microsoft.com/Fo...s/thread/bfa70370-4926-4086-ad0e-febe716b8bf0
Yes, many times.... I never get past step 4.
Someone just told me an another thread that you have to be verfied through GeoTrust and to do that you must first create and submit an app that you have developed.
After you submit the app, supposedly GeoTrust will contact you via email and have you verify some personal information.
Make a fake app. That's all you have to do. Make one, then submit it. This will generate a claim number with GeoTrust. Trust me, I had to do this myself...
Have you got your certificate from msdn yet it takes a couple of days, once you get your certificate your account will be unloced
thealanshow said:
Make a fake app. That's all you have to do. Make one, then submit it. This will generate a claim number with GeoTrust. Trust me, I had to do this myself...
Click to expand...
Click to collapse
I just finished this. Hopefully by monday all will be well
My account has already cleared GeoTrust, and the next step is to unlock my phone. I'm not a student, but it wouldn't matter - I can't get that far. The reg tool doesn't even detect my phone.
If you're getting the dreaded "Check that the Zune software is running blah blah blah" message, this one is a PITA to deal with. From what I've seen poking around on the interwebs, it's hitting a good number of people. It happened to me too.
I have 2 systems that are identical hardware wise, and running 64 bit OSes.
I have 1 machine running a 32 bit OS (it's a much older system).
I was finally able to unlock the phone without any issues at all on the 32 bit system (after swapping out my phone and nearly a week of struggling with it) the very first time I tried.
I'm loving the phone, especially with it being unlocked, but it was a fight until I tried it on that last machine.
Poke Microsoft about it. The more they hear about it and the more information they get about it the faster they'll be able to fix it (that assumes the problem is even on their end).
I've heard using a USB hub (or if you're already using one then NOT using it) has helped some people. *shrug*
Thanks for all the suggestions - I appreciate them. I have yet to get my phone to get past the check zune... blah blah blah error, with the exception of one time. Here's what I did...
I reset my phone, got past the intro, added my live account, hooked it to the computer, let it sync with Zune (I had deleted the phone's proflie), opened the reg tool, and it found the phone. I entered my login info, and got the dreaded 0x64 error having to do with time on the phone.
Several posts I found had to do with people getting past this by using a different internet connection and finding success. Well, I have a rather odd internet connection going on. I live right behind my church, just beyond wireless range from the pastor's router. So here's what I have:
Scientific Atlanta DSL modem/router combo - pastor's connection
Buffalo high powered router running DD-WRT sitting on the platform (closest part of the building to my house), repeating the pastor's signal.
Buffalo high powered router running DD-WRT sitting in my computer room, repeating wireless to my house, and serving as wired router to the server and the HTPC.
Pastor's is 192.168.1.1, the one on the platform is 192.168.2.1, and the one in my house is 192.168.3.1, so they are all separate networks, each using the one upstream of it as a gateway.
So, given my success connecting to the phone, I walked over to church, phone still connected to the computer, connected to the pastor's router, and by this point in time, I can no longer connect to the phone.
I suspect that there is some update that Sprint is pushing that causes this problem, so I repeated the process several times, each time deleting the Zune profile, resetting the phone, going through enough of the startup to get to the settings, and putting it in airplane mode, then connecting in the specified order, allowing the new profile to be created, and still failing to connect to the phone from the reg tool.
Over on the App Hub forums, there are several of us with this problem, and a Microsoft team member said that they believe that it is something specific about the Sprint Arrive, and they are looking into it.
My main gripe about this whole thing is that since Sprint is a latecomer to the game, all the posts I'm finding about this are like six months old. Many people have overcome this problem, so you'd think that Microsoft would have figured out the problem by now, and fixed it.
I hope to get this figured out soon, as I am presently unemployed, and spent my $99 to join the App Hub, hoping to make a bit of money there until I get a job. I'm working on something, but until my phone is unlocked, I can't put my confidence in testing solely with the emulator.
Thanks for the tips guys. I do appreciate it.
I've heard really good things about the HTC arrive, I hope it works out for you. Who knows, it could be something NoDo related (because to the best of my knowledge those phones come with NoDo stocked on). I kinda hope it is, it would take the sting out of the fact that so many of us can't our hands on that update! haha ;-)
Yes, it does come with NoDo. It's interesting, takes a bit of getting used to, but it seems to work well. I love the phone. It feels more solid than my TP2. The only thing is that I wish the screen tilt wasn't spring-loaded. I got used to not using it most of the time on my TP2, so it's taking some getting used to on here.
Oh, frustration of all frustrations! I just grabbed my wife's phone and tried it for kicks. It took me all of 15 seconds to unlock her Sprint Arrive. So I know the problem isn't my computer. WHY WON'T MY PHONE WORK?????
(oh, and if it makes any difference, she's installed WAY more apps than I have)
did you try going to msdn?
My MSDN subscription has expired, but I have posted on App Hub forums. MS thinks it is something specific to the Sprint Arrive, but who knows?
If anyone else has had this problem, there is an official workaround posted on AppHub, but for those who don't have access to that forum, here's the copy/paste:
Re: Cannot register developer phone (HTC Arrive)
Reply Quote
Hi Folks,
There is now an understood issue with respect to the HTC Arrive that may be the cause of your problem. It can affect both developer unlock as well as the ability to update the phone. A KB article is in the works but here is the gist of it for developers having trouble unlocking the phone:
Windows Phone 7 Developer Unlock Tool cannot detect the HTC Arrive Phone
Abstract:
This article applies to developers of Windows Phone 7 applications who are testing their application using the Sprint HTC Arrive, model number PC93100, OS build 7389 or 7390. Developers may find that they are unable to unlock the Sprint HTC Arrive phone using the Windows Phone Developer Unlock Tool, for the purpose of deploying their applications to the phone for testing. This article offers a remedy.
Symptoms
The developer completes these steps to register the phone:
1. Registers through the App Hub as per the steps described in the App Hub registration walkthrough here.
2. Downloads and successfully install the latest version of the Windows Phone Developer Tools.
3. Owns an activated Sprint Arrive in which they personalize their settings (including date and time, and selecting a language).
4. Registers the Sprint Arrive with the same Live account they used in the app hub registration.
Next, the developer follows these steps for Developer specific registration:
5. Connects the Sprint Arrive to the developer's PC with the USB cable included with their device.
6. Ensures that the Zune software is running/open.
7. Launches the Windows Phone Developer Registration Tool.
8. The registration tool ultimately fails to detect the phone upon launch, reporting the following message:
"Unable to connect to phone. Please check that the Zune software is running and that the Zune's sync partnership with your phone has been established."
Cause
This occurs due to a specific state setting in the HTC Arrive that results in the phone not being able to make a desktop passthrough connection. This state condition can be mitigated by following the steps below.
Resolution
Use the following workaround.
1. If connected, unplug the phone device from the computer.
On the phone device:
2. Press the Windows button.
3. Press the right arrow button (on the top right of the screen) or swipe from right to left to expose the application list
4. Scroll to and select “Settings”.
5. Scroll to and select “Cellular”.
6. Select “Change Network Profile” and wait for this operation to complete (<-- this is a key step; you don't need to actually change it).
7. Press the Back or Windows key to exit the “Settings” menu.
After completing the above steps, follow through with the registration process:
8. Connect the Sprint Arrive to the development PC with the USB cable included with the phone device.
9. Launch the Windows Phone Developer Registration Tool (Zune software must be running).
10. The window titled "Windows Phone Developer Registration" appears which establishes a connection to the phone device and the following status message: "Status: Phone ready. Please enter your Windows Live ID and password and click Register to begin".
11. Enter the App Hub registered Windows Live ID and password, and then press the "Register" button.
12. The following status message appears in the window:
Status: Your phone has successfully been registered.
Click to expand...
Click to collapse
Thank you hopmedic that fixed it for me
this was driving me nuts and the info here solved it thanks
Thanks it worked.
Done the workaround, but nothing for me, still have the 0x64 error.
My phone was relocked after one year of AppHub. But now I can't unlock it again..
Also tried to deelete the phone in the device list on my account and use a proxy VPN network. I'm ttired of this. :/
Well lets assume your android device has been stolen! Good lord !! . Not to worry, this guide should hopefully help you recover it. Even if its a thief.
PS: This contents of this read may bear resemblance to the reddit thread i created
A about two weeks ago (17th April to be exact) one of my friend lost his Samsung GT-I9003 from his dorm room at 0200hrs. Today when i was scanning my latitude, i saw him position a few hundred meters from me. Problem is, we are on a university campus. 500+ students, staff, kitchen, cleaning - basically lot of people. I suggested we check Google Latitiude's location history and sure enough for the past 15 days, the phone's location is spread all over the campus.
Premise of the crime
The phone is ON and is connecting to the Wi-Fi.
The phone is still tied to the primary gmail account and is thus reporting location.
The SIM has been removed or changed since the original number is now switched off
The person does not have good knowledge of using a smart phone (maybe helping staff)
Steps we have taken
Since we assume it is in the possession of either a student or helping staff we don't want to startle him.
Tried Plan-B on my phone. However the location it was reporting was the same as Google Latitude.
The phone does have Where is my Droid installed but the web interface says invalid email ID. So that option is ruled out unless you have pre configured Where is my Droid previously.
How we found the phone
After Where is my Droid failed us, we started looking for other applications. We found this application called Android Lost. Unfortunately we hit a dead end when we realised that it needs to be activated by sending an SMS. Since we dont know the phone number, or that there is even any SIM card in the phone, that application also seemed useless.But turns out the developer of Android Lost has also made a nifty app called AndroidLost Jumpstart which is can trigger Android Lost without the need of an SMS.
According to the description
This app will wake up the registration process on the androidlost app when ever a phone call is made, an SMS received, battery is low, a package is added, removed or changed.
Click to expand...
Click to collapse
So we got android lost installed. Trust me, its a life saver. We got calls logs, sms, pictures, voice recordings. We tracked the person with the help of this.
Hope this helps anyone in the future!
maverick340 said:
Well lets assume your android device has been stolen! Good lord !! . Not to worry, this guide should hopefully help you recover it. Even if its a thief.
PS: This contents of this read may bear resemblance to the reddit thread i created
A about two weeks ago (17th April to be exact) one of my friend lost his Samsung GT-I9003 from his dorm room at 0200hrs. Today when i was scanning my latitude, i saw him position a few hundred meters from me. Problem is, we are on a university campus. 500+ students, staff, kitchen, cleaning - basically lot of people. I suggested we check Google Latitiude's location history and sure enough for the past 15 days, the phone's location is spread all over the campus.
Premise of the crime
The phone is ON and is connecting to the Wi-Fi.
The phone is still tied to the primary gmail account and is thus reporting location.
The SIM has been removed or changed since the original number is now switched off
The person does not have good knowledge of using a smart phone (maybe helping staff)
Steps we have taken
Since we assume it is in the possession of either a student or helping staff we don't want to startle him.
Tried Plan-B on my phone. However the location it was reporting was the same as Google Latitude.
The phone does have Where is my Droid installed but the web interface says invalid email ID. So that option is ruled out unless you have pre configured Where is my Droid previously.
How we found the phone
After Where is my Droid failed us, we started looking for other applications. We found this application called Android Lost. Unfortunately we hit a dead end when we realised that it needs to be activated by sending an SMS. Since we dont know the phone number, or that there is even any SIM card in the phone, that application also seemed useless.But turns out the developer of Android Lost has also made a nifty app called AndroidLost Jumpstart which is can trigger Android Lost without the need of an SMS.
According to the description
So we got android lost installed. Trust me, its a life saver. We got calls logs, sms, pictures, voice recordings. We tracked the person with the help of this.
Hope this helps anyone in the future!
Click to expand...
Click to collapse
Or install Avast anti theft before your phone gets stolen ;D never the less, very useful, thank you.
Sent from my GT-I9100 using XDA
okmijnlp said:
Or install Avast anti theft before your phone gets stolen ;D never the less, very useful, thank you.
Sent from my GT-I9100 using XDA
Click to expand...
Click to collapse
yep always good to be safe before hand. After this incident lot of my friends have installed or gotten some security app.
Although, aren't security suite like Avast, McAfee and overkill for finding lost phones?
And who was the thief?
Sent from my LG Optimus 2x with xda premium app
another possibility is to instal Cerberus App
Hi everyone. I have recently been the victim of theft for my nexus 7. I had the device locked with the pattern so there is no way that the thief could get into it unless they do a software reset from the recovery mode. The thing is, either way there is no way i would be able to recover it because if in fact they do a factory reset my lookout security would be uninstalled and my nexus would be lost forever, also if they can't get through the pattern and find a way to connect to Wi-Fi, it will still be lost forever. I have read about installing lookout in the system/app folder of a rooted device so its not easily uninstalled by normal means or factory reset. But do you think it is possible to have android lost and lookout pre-configured and installed in the system/app folder so that even if the device is factory reset, the credentials will remain?
is it factory-reset proof?
Just a quick little question: How did you get the phone to register on Android Lost? I can't get a friend's phone to be recognized in the web app, after installing the Jumpstart and another app...
Thank you
Very good contribution, gratz! i will follow your steps in case my android get stolen!
How did it fail?
You say that "after Where's my Droid failed us"...what do you mean by that...how did it "fail"? I would like to know before installing it. What exactly happened that it "failed" you?
Thanks
Losing a phone is irritating
I lost my phone sometime back. I didn't have the time to do research and maybe these apps weren't available at the time of theft. I got the SIM de-activated and tried to track my phone via IMEI number.
So, a few questions
1. Have they changed its IMEI number ?
2. Have they removed my Google account ?
This pretty much messes it up. If you can't track it via IMEI nor can you use any network then its as good as history. These were the only remaining identification tags that could have got your phone back and the thief would know of it. The moment I called on my own number he switched it off. He logged into my account and posted crap(not that I knew any of it had it not been for my friend who reported some strange FB and Twitter status) as if it wasn't enough that he had my phone.
One of the most disturbing things that they can do is play with the IMEI. Older phones were more susceptible to that kind of thing but a Nexus ? P990 ? GT19100? I thought they were much harder to hack. Not only can you NOT track your phone but also lose all other alternatives because the phone is now linked to another google account. I was searching for a post that would walk me through a process of changing the google account currently associated with the phone. In an attempt to understand if this indeed was the case. I wanted to try this app so badly but now I blew it off, my only chance.
Hardware based identification is the only way to go about fixing this issue. Any low level process that runs off some hard coded tag independent of software control known only to the owner of the phone. I just don't know what other options are left with person who lost it. I think there is no other way.
Time for a new phone, I guess
Edit: I guess I was right about that. They had done a hard reset but the IMEI associated with my account is intact. So there are two ways of messing it up. One, you change the IMEI(which sounds ridiculously dumb). Second, you change the primary account(more believable). How stupid of me to think of the first one
i think if a android phone is lost and a guy with a bit knowledge of flashin roms gets it then we might have to forget our phone.. if the phone has screen lock the guy can reset the phone through stock recovery and all security apps like where's my droid,avast etc get wiped off.. i personally don't install any anti-theft apps. i beleive in being EXTRA CAREFUL than installing any anti theft apps
And you are damn right bro, its good to be careful than putting all your believe in one anti-THEFT software which can easily get wiped off.
Sent from my GT-I9300 using xda premium
That's useful, thanks !
How did you get the Logs.
Hi Maverik,
My phone was robbed yesterday & the SIM card was removed,
I wanted to know how were you able to get the call logs, pics etc of your lost phone to ........
Very useful! Thanks!
we have Find My Phone
you can have a try
Find My Phone - find your misplaced phone/stolen phone/lost phone easily
https://play.google.com/store/apps/details?id=com.phonefindandlock
Thanks for share your experience with AndroidLost.
Inviato dal mio K00E utilizzando Tapatalk
AndroFind is the best
i highly recommend AndroFind to find stolen phone.
you can find it in android market :good:
Hi, but It's possible to find any kind of phone also with older Android version?
Thanks!
My question or rather my pleed for answers does not just pertain to android os but I have relied on this site for many answers and have always found a solution just from searching around on here so I know there are very capable members on this site that can help. My problem began over 4 months ago when my home computers were compromised. I assumed it was just a simple virus but soon learned that someone had actually hacked into my home network for what I believe is or was an attempt to retrieve trade secrets. Shortly after i realized that data was being sent to someone through the fax system on my pc and data distribution software had been installed along with a large amount of .dll and legacy items, The admin rights were taken from me and the registry was completely modified which disabled me from having any permissions and kept me from doing anything on the pc. I went out and purchased a new router, got out an older pc, and I put a password of around 20 mixed numbers and letters. 5 minutes after I had set up the new router and pc I noticed through the network map that there was someone else on what I assumed was a secured network. The router was a netgear. First thing I done was change the default password and block any remote access in the network wizard. My next step was to pay the so-called experts (Geek Squad) to solve the security issue. I purchased their 1 month special that entitled me to 1 month of tech support and 3 free pc fixes. after purchasing a windows 7 restore disk I took 3 pc's to a local Geek Squad location to have them restore the Pc's and install what was suppose to be a hack proof software. They only fixed 1 pc, told me the software would keep the hacker out. 5 minutes after i logged into my network here comes all the windows updates (around 50) along with numerous programs. Needless to say I lost my admin rights within an hr. Here we are now, only using cell phones on my network and I am sure the hacker is retrieving my data off of my g vista d6301. My new email that I set up and have only used from the vista has been compromised and although no logins appear in the history but my vista, someone had enabled POP on Dec 28th. I have enabled the developer mode on my phone which allows me to view the process stats. It states that google play service runs 100% and Google Cloud Messaging runs 100%...I have never used any cloud service on this phone. Another thing is that certain system apps that I have never activated are accumulating a decent amount of data. This phone is used only for wifi and has no service plan attached. bluetooth, email, qrtunnel, near field communication all turn on from time to time. Google play also shows something called clearcutlogger running but was unable to find any info on that. I also installed a mic block that has a "spying app catcher" that logs when a app uses your phones mic while the phone is in sleep or idle mode. when the app is on block mic then there are no problems but when I unblock the mic I get countless log entries that an app with net access has gained access to my mic. Its always the same few apps that show up as a potential culprit so I cant pinpoint exactly what app is using the mic. not sure if any of this has anything to do with someone messing around with my phone, just trying to think of some of the things that could help. There is no doubt that this phone along with a pile of now useless computers have indeed been compromised. What I really need help with is how to get this bastard out of my life and secure my network before the new semester begans b/c there is no way I can have my daughter use her new pc on the network knowing its just going to end up like the rest of computers in my new pc graveyard. I know there are quite a few other sites I could have reached out to but there is something about the comradery on this site that has always drawn me to it. 1 more thing fellas, how bout that one touch root for the LG G Vista D6301's? that sure would come in handy right now lol. My apologies for the long read. Any details you need to know to try and help me figure things out, I would gladly assist as long as my knowledge permits.
I understand that the question or article that I posted is quite vast so I will start off with this simple question. Is there a server that I can disable in the LG hidden menu to stop unauthorized use of my GCM, or any other way than simply just disabling Google Play? I have read a couple of recent articles on how hackers are utilizing gcm to gain access to personal info. I just was curious about the server b/c I see many different server acc in the hidden menu such as ATTLABa, Cingular, Mformation, and Funambol. I wasnt sure if these servers or acc could possibly help or be a potential threat.
Sent from my LG-D631 using XDA Free mobile app
Pr1n6/of\Jerusalem said:
My question or rather my pleed for answers .........
Click to expand...
Click to collapse
Pr1n6/of\Jerusalem said:
I understand that the question or article ............
Click to expand...
Click to collapse
First thing you have to be sure that no one has physical access to your gadgets. Second, find a router suitable to be modified with new firmware from http://www.dd-wrt.com/site/index or https://openwrt.org/.
In case you can buy a hardware network firewall and with proper installation and settings you should be able to keep away any threat.
A good idea would be to use a good VPN service, that way you can add a layer of security on your networking habits.
Lastly, check this thread http://forum.xda-developers.com/general/security/tuto-how-to-secure-phone-t2960077 and if you have any question, ask there.
Good luck
I have unknown activity on my phone.
Along with numerous "unknown" outgoing calls with no number shown on my device (and 2 other M9 phones on the same plan) or any number registering on my carrier's system (when I called R, they said their system did show connected calls lasting various amounts of time, the could not determine what number the calls were going to), there's also a call in the log going to "(unknown)" "***,144***"
Anybody have any clue what's going on? R gave the bs answer that all 3 of us were calling our VM, even while we were sleeping. However, the times we did check our VM, the number did register on the phones and with the carrier's system.
Thanks!
Im adding a question. My M9 was unlocked without my knowledge. I'm guessing that ***,144*** might be the secret unlock code. IS there a way I can determine if it's been rooted as well?
--
squidstings said:
I have unknown activity on my phone.
Along with numerous "unknown" outgoing calls with no number shown on my device (and 2 other M9 phones on the same plan) or any number registering on my carrier's system (when I called R, they said their system did show connected calls lasting various amounts of time, the could not determine what number the calls were going to), there's also a call in the log going to "(unknown)" "***,144***"
Anybody have any clue what's going on? R gave the bs answer that all 3 of us were calling our VM, even while we were sleeping. However, the times we did check our VM, the number did register on the phones and with the carrier's system.
Thanks!
Click to expand...
Click to collapse
Interesting issue. I am not sure about the rooting. You are probably going to need to ask experts around here. Hopefully, they can help you with that. As for security, you could try checking if you have any suspicious apps running in the background or installed (You might be using same GPS or another app for example). It could be that one of the malicious apps had access to your calls which lead to them outputting calls to somewhere. You could try disconnecting your internet for a day and see if the calls persist (That is probably not an option for you, but it is an idea). Additionally, you could try a factory reset on one of the phones and see if the problem is still there.
squidstings said:
Im adding a question. My M9 was unlocked without my knowledge. I'm guessing that ***,144*** might be the secret unlock code. IS there a way I can determine if it's been rooted as well?
Click to expand...
Click to collapse
just saw this,
https://www.xda-developers.com/htc-says-the-ads-in-its-keyboard-are-a-mistake-fix-icoming/
which reminded me of your issue, though I don't suppose it's linked, but it does make you wonder WTF HTC are up to!
Anyhow with your issue I wasn't going to answer as I don't know the answer but my thoughts may help in some small way. I don't thank the 144 is a phone developers code to "root" or turn of security in some way as that would not show on your provides call logs as they stay internal to the phone (mostly). Also I don't think it's adware callng a premium number as your phone company says it does not register properly, so nobody will be paid.
That only leaves a more malicious form of hacking, I would say. So maybe that code does enable your data to be sent but untrckable over a network. That suggests to me it's possibly your actual network (who are R? What country, is it?) or maybe even your government if you are an activist or something? Though more likely is a criminal or business competitor, assuming the other people affected are business colleagues. So could be your boss trying to snoop on you all, if not HTC or the Chinese Communist Party aparatus!
What to do? As Ross says disconnecting is probably not practicable. If you have malicious activity they probably are using data as well as calls. So I would install a firewall to block most apps and log attempted connections (normally have to pay for this) then check IP addresses tell see if they are legit. However this may not show anything as data may go via root. So setting up a proxy to route traffic to your PC and use a sniffing program to see traffic or at least I P addresses.
You can download root checking apps from play store. Also check your security settings any app with admin rights? Also use a good antivirus you might get lucky, but even if negative you may still be infected.
Only way to really clean your system is to reinstall your OS, though a factory reset will fix often. But first you need to know how you were all compromised and fix that else it will just return, I would think it's most likely your local work network, (but could be your provider R or even something else you connect to in sore way eg Bluetooth, or an app you all have (you can boot into safe mode to disable 3rd party apps, but with HTC system apps possibly containing apps that use the Baidu apk etc that still has a possible backdoor unpatched (as far as I know) safe mode will not help white those!)
You might have to look into freezing/uninstalling all HTC installed apps.
IronRoo said:
just saw this,
https://www.xda-developers.com/htc-says-the-ads-in-its-keyboard-are-a-mistake-fix-icoming/
which reminded me of your issue, though I don't suppose it's linked, but it does make you wonder WTF HTC are up to!
Anyhow with your issue I wasn't going to answer as I don't know the answer but my thoughts may help in some small way. I don't thank the 144 is a phone developers code to "root" or turn of security in some way as that would not show on your provides call logs as they stay internal to the phone (mostly). Also I don't think it's adware callng a premium number as your phone company says it does not register properly, so nobody will be paid.
That only leaves a more malicious form of hacking, I would say. So maybe that code does enable your data to be sent but untrckable over a network. That suggests to me it's possibly your actual network (who are R? What country, is it?) or maybe even your government if you are an activist or something? Though more likely is a criminal or business competitor, assuming the other people affected are business colleagues. So could be your boss trying to snoop on you all, if not HTC or the Chinese Communist Party aparatus!
You might have to look into freezing/uninstalling all HTC installed apps.
Click to expand...
Click to collapse
Thank you!
Rogers, Canada. But I've switched carriers within the last few days.
I've actually done the FR 5 times now. Disabeling the pre-installed "Gmail" (I think it's more Google thn HTC related seems to have stopped the calls. I've disabled as much as I could.
so here's the kicker. I'm literally nobody! On disability, no exciting employment history and those In my family who have, aren't in contact, nor do I have contact info. And it was my wife and daughter who had the other phones, but mine was central i think. daughters phone was locked. So nothing so exciting. Which is why I even bothered asking lol
squidstings said:
Thank you!
Rogers, Canada. But I've switched carriers within the last few days.
I've actually done the FR 5 times now. Disabeling the pre-installed "Gmail" (I think it's more Google thn HTC related seems to have stopped the calls. I've disabled as much as I could.
Click to expand...
Click to collapse
Ah! Rogers Canada should be a well controlled and trustworthy provider, so probably not them, though a rogue employee or having their network compromised can't be ruled out.
Also if official Gmail app it should be safe though it does have some quite intrusive permissions like full network access, view confidential info etc, but all are legit if you want the full functionality of Gmail. But it shouldn't have access to place phone calls, so should not be able to create the behaviour you describe.
That leaves a rouge app, but you would all need to have it I suppose, HTC app (or system behavior) or local hack ie via your router or via your PC. A good anti virus should find rogue app on phone and similarly on PC. HTC system apps hard to spot without doing the firewall etc etc. So I would also be double checking your local router for firmware update and resetting it with a new strong password, to prevent possible return, so to any Bluetooth devices.
Hope it doesn't return! All the best
been a while but, just how does one get a "," in the phone keyboard? long press * for P, but no ",".
Now that time has passed and more people might be awake and less likely to make excuses, I'm wondering if this issue can be solved, or at lest thought about intelligently. Maybe someone who knows how it CAN happen, instead of trying to find ways I'm mistaken. this was on THREE SEPARATE PHONES in 2 separate cities.
squidstings said:
been a while but, just how does one get a "," in the phone keyboard? long press * for P, but no ",".
Now that time has passed and more people might be awake and less likely to make excuses, I'm wondering if this issue can be solved, or at lest thought about intelligently. Maybe someone who knows how it CAN happen, instead of trying to find ways I'm mistaken. this was on THREE SEPARATE PHONES in 2 separate cities.
Click to expand...
Click to collapse
Check with a root app to see if your device is rooted
check permissions also you can take back permissions with a app on fdroid
unknown app check with virus total or
IF someone has root on your phone they can do what they want and when they want
a app that has call access they can transfer information over a phone connection which can be anything
The troubling thing here is that your phone was unlocked w/o you which implies root access
IF you bought your phone new you might not be anybody but to be put in perspective amazon lets you steal $500 if you use another id and they say it is not you so you do not lose out
but if it is used this can be from the previous user.
The best thing to do if it does not stop is to upgrade the software on the phone if you have already done that then use a Root firewall or change to a rom here on xda (you can all change making the transition easier).
Applied Protocol said:
Check with a root app to see if your device is rooted
check permissions also you can take back permissions with a app on fdroid
unknown app check with virus total or
IF someone has root on your phone they can do what they want and when they want
a app that has call access they can transfer information over a phone connection which can be anything
The troubling thing here is that your phone was unlocked w/o you which implies root access
IF you bought your phone new you might not be anybody but to be put in perspective amazon lets you steal $500 if you use another id and they say it is not you so you do not lose out
but if it is used this can be from the previous user.
The best thing to do if it does not stop is to upgrade the software on the phone if you have already done that then use a Root firewall or change to a rom here on xda (you can all change making the transition easier).
Click to expand...
Click to collapse
Thank you for taking the issue seriously and not trying to force kool aid down my throat (if carrier was "trust"worthy, THEY would have solved it).
It didn't show root. 2 of 3 m9s were mysteriously unlocked. the 3rd did prompt for a code, but did also show those "unknown #" calls. However, I'm still stuck on the code. I can't even enter a ",". Didn't check the other units for it, but it's still the only unanswered issue that could explain the unlock (aside from your suggestion). No one's even heard of it, but programmers are known for adding backdoors. If anyone's got a new, s-on unit and feels like trying it, that's about the only way to get an answer.
It's dead now anyways. Battery won't charge unless powered off and went from 24+hours regular standby to about 3 hours with extreme powersave on, overnight and doesn't extend with usb power. usb data comm isn't even recognized. All 3 have failed actually (different ways) so I'm going back to my m7 which still works great. Except, it says s-on but works with different carriers and I can't even enter the code I paid for (no prompt. is there another way?)
So, here's the tinfoil hat part. Although I'm nobody, This all started around the time of the '16 election. when I was arguing with a youtube account named (not looking to attract attention so no name, but you know it) for the person who came 2nd.
Thank you for your help. It's a shame it's pooched before solving the issue. But hopefully, the code will be solved.
But any help entering my sim unlock code a different way would be appreciated. But if other carrier sims work, should root be doable while showing s-on?
Thanks a TON!!
squidstings said:
Thank you for taking the issue seriously and not trying to force kool aid down my throat (if carrier was "trust"worthy, THEY would have solved it).
No one's even heard of it, but programmers are known for adding backdoors. If anyone's got a new, s-on unit and feels like trying it, that's about the only way to get an answer.
Click to expand...
Click to collapse
It would seem in your case that it is a setting change that was made and not comparable to other phones. Probably what we are talking about is a connection to a command server. S-on is a protection so that one cannot change the state of certain partitions namely the recovery boot and system however their are ways to get around this. You would need to get a root app to do that.
As a general rule you need to prove something is going on and funny numbers are a indication but nobody in the security community would touch it because it is very open. What you need to do however is
Get a copy of the calls use pcap and
check your firmware with the standard HTC firmware
this will show you what the phone call is doing and will help the android community overall (improved security)
Also programmers do not try to add backdoors they try to have a good product it is the hacking/security teams of _________ that do that. This being a programmer myself.
Hi!
During the last 6 months I've had a real problem with my online security. Bought a MacBook Pro which turned out to have had a root virus installed, infecting my Wi-Fi and thus all units who connected to it.
Took me a while to figure out...
First I had a brand new, out of the box Xiaomi MI 9 that got rooted OTA and I lost admin privliges etc.
From my experiences with that and from what I could gather I think it might have had something to do with this cloak and dagger virus thing, overlay and ****ing permissions hidden and yeah I really dont know, anyway.
Today I still worry about what happened. I know much is irrationell since I no longer have any Wi-Fi, instead I use unlimited data and got my self a new Oneplus 7T.
Not even enabled developer options nor touched the bootloader or usb debugging.
When I first bought it, (I had not been able to browse the internet nor search the info before bc of above) I ofc asked the store if they had any type of deal or knew of for a reliable VPN.
Unfortunatley, due to my lack of research, being locked out of my mail acc etc I ended up with a second license of Mcafee Internet security vpn, proxy.. (Probably have around 10-15 of those, containg True key and virus protection)..
This is where my fear comes in again.
Been trying to find an answer to this but I can't find enough to have piece of mind, or my 6 months "rehab" from the internet and technology made me a noob at googling.
Bear in mind, I also have and had Malwarebytes Premium, now I also use ExpressVPN instead of Mcafee. (Though I think I'll take advantage of this life time deal on Ivacy VPN today.).
Back to my first fear.
- Mcafee Internet security + Malwarebytes.
As mentioned I lost my mail accounts. Lost or lost, I reclaimed them and eventually locked them with a Yubico key.
Trying to retrive the Gmail on my new device I could swear my menu altered and Android all of a sudden allowed other users, ("All users get their own space, acc, etc").
Still having PTSD (how I refer to it) after this spring I wiped it all, didn't use it for a week, wiped it some more, hahah, and I begin to use it again.
I changed pass, added Yubico key, log out of all devices nor do have anything worth stealing. I wonder If there is anything I'd might have missed?
Ex, might be of topic.
When I try to restore my messenger password. I get the mail, enter the code and proceed to change pass when the code no longer is valid, permission #200 something. This ofc gets me thinking that my mail somehow might be forwarding my mail, syncing them? Gdrive have previously been set to auto sync and then I've unknowingly loaded malware in previously used phones.
I'll to summarize my question.
I guess I wonder if it could be dangerous in somehow or possible to install something on my new device through Gmail if I decide to log in again? Just saw my fb acc is schuduled for delete tommorrow, which is why I'm posting here, could use some advice.
While I'm at it I also am curious if there are any good info regarding Android security. Because I would like to flash a new rom without all bloatware, Google stuff etc and keep reading about safetynet and Selinux.
Also, good tip if there any on how to disable ssh, sftp, stf and all that? During this that happened I also found Samsungs Knox good, probably bc it wont work with overlay? Are there anything similar to Knox for a Oneplus? Many questions in one but I also wonder; I know that I once used my NFC security key one the Xiaomi, when it was infected. Could the key somehow been copied? Might be a bit over cautios,
0