Related
For my kids iPods, we have MobileMe which we use for locating it. Now with my new Transformer, is there something similar? Specifically, some sort of theft recovery program where I can log online and find out via GPS where the device is?
yeah i was wondering the same, as well as a security app. but i guess honeycomb is still Wifi only (mostly) and devs are more interested in an GSM/CDMA tablet compatible. plus, GPS by it self sucks, i tried to use for navigation, no luck
aboodyksa said:
. plus, GPS by it self sucks, i tried to use for navigation, no luck
Click to expand...
Click to collapse
Dd you have it turned on. GPS on my TF works fine for navigation. Get GPS info app and look at the raw data. Remember it is a GPS (Satellite rcvr) and needs to have a relatively clear view of the sky.
Maybe not exactly what you're looking for....
https://market.android.com/details?id=com.lookout&feature=search_result
Why not try Prey - preyproject dot com - it's free for the first 3 devices it's linked to with an account. It's also open source too and is multi-platform so it's more flexible (ie you can have it on your laptop as well). I use this on my Nexus One and will try it out on the Transformer once I get mine in the next few days.
I'd like to second the "Lookout" suggestion.
Not only can you locate your tablet...you can lock it down (or even wipe it clean) remotely...if you find it's gone.
It won't let me download/install Lookout onto the Transformer. Says "Your device is not compatible with this item". huh???
Ah... didn't see that (I only have it installed on my Galaxy S)! Sorry!
This sucks. PreyProject won't install on the Transformer either! Hmmmm...
see my next post...it's possible according to Lookout Support.
From the Lookout web support:
The reason why you're having trouble finding Lookout in the market for Honeycomb Tabs is due to the fact that the they don't support SMS messages.
We rely on SMS messages to initiate a connection to a device in the event it's lost, stolen, etc. Without the ability to receive SMS messages the missing device features would be greatly hindered, however, device based backups and malware protection would work normally.
Until we release a version that's more compatible with the Honeycomb tabs you can install it using this alternate method:
The first thing you'll want to do is enable the installation of non-market applications. To do this:
Go to settings > application > and check the box next to "Unknown Sources." Go ahead and disregard the warning (by clicking OK), we can uncheck it later.
Next, back out of Settings and open up the web browser.
In the address bar delete everything that's there and type this in (minus quotes): "m.getjar.com" and hit enter.
Now click on "Android" under "Or, Choose your platform." This will bring you to another page where you will see a search box in the upper right hand corner of the screen.
Tap the search box, to insert the cursor, and type "Lookout" and tap "go". The search will produce one result, which is "Lookout"
Tap on the link "Lookout Mobile Security with Antivirus".
You will now be on another page that displays a grey "Download" box. Go ahead and tap on it.
The Tablet will show that it's beginning to download the file and you'll see the progress, of the download, in the notification bar.
Tap on the download icon (it looks like a downward facing arrow pointing at a line) and a small window will populate above with the word "lookout-production-signed-aligned.apk" Go ahead and tap on that.
A window that says "Package Installer" pops up. From here you can read the permissions that Lookout requires. Go ahead and tap "Install".
Your installation will start. Tap "Open" once the installation has finished to open Lookout.
Finish setting up Lookout as you normally would!
Still doesn't let me download. It gets me to download and install the GetJar app but then just takes me back to the webpage.
Can someone just post the apk?
Thanks.
here you go
Thanks! Installed and working!
Edit - Maybe not. When I got to mylookout.com and try to locate the device, it asks for a mobile number. Since this is a WIFI device only, I entered in my cell number instead and it fails to locate it. But I guess this app is good for antivirus use.
Now back to the search....
Yes...they said until they get it fully understood for HC use...it would be hindered...
Okay, if the device is on, then it works. It'll scream and locate. But that's not really good if you've misplaced it and it's not activated. I hope they figure something out soon for HC.
It will also allow you go to go your account online and pick it out on a map via GPS.
I found this specifically for tablets and it works as needed.
https://market.android.com/details?id=org.antivirus.tablet
thanks! that looks like the ticket..
2 Factor Authentication for Windows alpha
Hey folks,
this is my alpha preview of my 2Factor Authentication App for Android/Windows.
Disclaimer: By installing this app you will possibly harm your Windowssystem.Expect many bugs in the Phone app, but especially in the Windows app. Use it at your own risk. By downloading the app you agree to this.
This app could make Windows unusable*
*Well, better use Linux or Mac anyway.
What does this app do?
It adds a second screen after you entered your password, asking for a pin. This pin can be generated by your mobile phone and only used once.
The screen will open everytime you login, even after Standby/Hibernate/LockScreen.
Who should use it?
Paranoid people like me, especially these that own a laptop. If someone gets your windowspassword via keylogger or phishing, he still can't login.
In addition you could use the Windows auto-login (loads up all your autostarts) and would be still required to enter a code.
Who shouldn't use it?
People who are working with restricted rights (no Admin/root rights!), as these won't get past the login screen ;-) (might be fixed in final).
People who have multiple accounts on their computer, as every user is required to enter the same pin (will be fixed in final).
People who think this adds an extreme amount of security. Even though it does work in failsafe mode, there are some ways to get around it. If the "bad guy" has physical access to your computer, this is almost as (un-)safe as the Windowspassword.
Installation
Extract all files from the zip to a folder, e.g. C:\IdislikeWindows\. Then run installtion.exe, make sure you run the installer with administrator rights. You need an internet connection for that, so the progamm can generate a QR Code, that you then scan with your phone (apk attached below).
After entering your first generated key you're good to go.
Make sure that you never remove or rename that folder or any files in it!
Removal
Just double click on Uninstall.exe. If you used the graphical login before, select that option. Make sure you run the uninstaller with administrator rights.
What works doesn't work (yet)
- Impress with a fancy UI
- It won't work on Windows 9x (won't be supported)
- Users can still Alt+Tab / Win+R
- Users can still open Taskmanager (this is done for debugging)
- Synchronize if you have to phones
- Multiple Accounts
- Non-admin Accounts
- Phone App stores only one passphrase
... and much more I guess.
Tested on
- Windows XP
For safety reasons, the Windows part won't work after 2nd of July. But I will upload a new version until then
So go ahead, test this app and report many bugs I bet there are a lot. In addition I'm curious if it works on Win7 and Vista as well.
If something goes wrong, you can always start uninstall.exe with your taskmanager.
I'm looking forward for your feedback!
Thanks,
Marc
Update 22/06/2011:
- added Vista/Win7 Manifests
- Ping not done via RawSocket, so it is possible to install on Vista/Win7
- Remote Sessions should trigger 2FA as well.
Screenshots:
forceu said:
2 Factor Authentication for Windows alpha
Hey folks,
this is my alpha preview of my 2Factor Authentication App for Android/Windows.
.......
What does this app do?
It adds a second screen after you entered your password, asking for a pin. This pin can be generated by your mobile phone and only used once.
The screen will open everytime you login, even after Standby/Hibernate/LockScreen.
Who should use it?
Paranoid people like me, especially these that own a laptop. If someone gets your windowspassword via keylogger or phishing, he still can't login.
In addition you could use the Windows auto-login (loads up all your autostarts) and would be still required to enter a code.
......
Click to expand...
Click to collapse
Man, you are a genius, I was really looking for something like this.
One question: does it work over RDP? I have a computer a work (encased in a rack in a renderfarm) and I work by log in with Remote Desktop Connection.
Cool... Will be keeping eye on this one!
daniel.mitran said:
Man, you are a genius, I was really looking for something like this.
One question: does it work over RDP? I have a computer a work (encased in a rack in a renderfarm) and I work by log in with Remote Desktop Connection.
Click to expand...
Click to collapse
It probably won't work, but I will try it today. And I know there is a way to trigger it after someone started a remote session. I guess I will have it coded today or tomorrow
I uploaded a zip, replace the service.exe with the one in your folder and try it. As I posted above, it is not tested, so I don't know if its actually working ;-)
Feedback is always appreciated.
/edit: Sorry for double post
Hey guys!
This is my first post here, and I come with a problem that affects 2/3 android devices and possibly one desktop PC (Windows).
The problem:
I have malware on my devices and said malware redirects my current page to a russian advertising one. Most of the time i'm redirected to one that activates the vibration, knows the device i'm currenty using and says that I should run a virus scan with AVG.
If I hit return, the page just reloads, If I hit it enough times, I lose the page I was visiting as if I hadn't visited it in the first place.
Here
Code:
imgur.com/a/5dvVR
are some of the URLs I'm redirected to and sometimes, I happen to suffer the problem on the last page, where an ad sits in the middle of the page I'm visiting and If I close it, another tab opens and leads me to the addresses above.
Symptoms:
This problem happens with Google Chrome, Mozilla Firefox and the built-in browser of "Reddit is fun".
This problem happens with and without a WiFi connection. It is more common to happen while on WiFi vs on mobile.
Sites like knowyourmeme.com, foxtrotalfa.jalopnik.com and albums on imgur.com can trigger the malware.
Devices:
Definitively affected:
Lg G2 D-802 , Android 4.4.2
Galaxy Tab S 10.5" SM-T800, Android 5.0.2
Probably affected but not 100% proven:
Huawei Y600 (another carrier, but the problem happened on my GF's WiFi rarely on mobile), workphone
A desktop PC (the ad blocking the page happened just once)
Networks
This desktop PC is my GF's. It's in her WiFi signal that I usually connect and update the apps on my devices. In my house's WiFi the problem seems to happen as well on my devices but not on my Desktop PC (or perhaps it does, but I have ublock origin on my browsers).
However, I can trigger this problem on my G2's carrier Movistar and not on the Huawei's Carrier Telcel.
Working on the problem:
Disabling scripts
The very first thing I did was testing disabling scripts (as suggested by one page I found on google), It did work, to some extent. However, I knew that this wasn't a solution but a workaround.
Suspicious APPs
I know that apps are the main entrance for malware and since the problem DID happened on both devices (G2 and Galaxy Tab) It.HAD to be a common app, so I made a list of common apps and started by the less trustworthy.
I uninstalled and tested Advice animal creator, BS player free, zooper pro, Days counter widget, Disk Usage,electrodroid, ****ing weather, Google tasks organizer lite, GPS test, meme generator, system info for android,reddit is fun , add watermark and Think.
Keep in mind that these apps fill the criteria in which both are present on the phone and tablet and are suspicious to me (a very ambiguous term), however, I'm not stating that any of these have malware on them.
Sadly, after uninstalling and testing on the phone, the problem persisted.
G2's Factory restoration (Through options menu, not recovery menu)
After going through a factory restoration on the phone, the problem persisted. The only things I had installed were Reddit is fun, facebook and whatsapp.My request to you guys:
After all ofthis wall of text (in which I show the symptoms, what I've done, etc) , here comes my request.
Can you guys point me to the right direction?
I just don't want to wipe my devices without knowing what is the problem, how to eliminate it and, MOST IMPORTANTLY, how to prevent it.
What I want to discard is if the problem comes from my GF's network (If that is the case, a factory-through-recovery restoration would be useless), an app or just random malvertising.
I would hate to wipe my cellphone and tablet everytime I jump into this problem and that is not practical for me, I prefer a head-on approach.
Thanks in advance guys!
Hi!
First, here is a little info on avoiding Malware, http://forum.xda-developers.com/general/general/guide-simple-steps-to-avoid-installing-t3000682
And another, http://forum.xda-developers.com/nexus-6/general/guide-little-guide-to-security-privacy-t3042460
As far as Malware you already have....there are malware removal tools on the Play Store...many of them to try.
And if all else fails, here are the device sections or the mobile devices you have.....you could ask for help in the Q&A sections...
http://forum.xda-developers.com/lg-g2
http://forum.xda-developers.com/galaxy-tab-s
Now, if you want to ask about all in one, and the PC....you could try asking or help here...http://forum.xda-developers.com/android/help
Good luck!
Darth said:
Hi!
First, here is a little info on avoiding Malware, http://forum.xda-developers.com/general/general/guide-simple-steps-to-avoid-installing-t3000682
And another, http://forum.xda-developers.com/nexus-6/general/guide-little-guide-to-security-privacy-t3042460
As far as Malware you already have....there are malware removal tools on the Play Store...many of them to try.
And if all else fails, here are the device sections or the mobile devices you have.....you could ask for help in the Q&A sections...
http://forum.xda-developers.com/lg-g2
http://forum.xda-developers.com/galaxy-tab-s
Now, if you want to ask about all in one, and the PC....you could try asking or help here...http://forum.xda-developers.com/android/help
Good luck!
Click to expand...
Click to collapse
Thanks Darth!
But as I said, I tried several apps and didn't find anything wrong.
However, I switched my focus to the possibility of a router infection, and oh surprise it seems to be the rootcause.
Here are some links that report being redirected on several devices to ads pages (I use code since I can't post links in a new account), in this case adsmatte.com:
Code:
http://answers.microsoft.com/en-us/protect/forum/protect_other-protect_scanning/how-to-get-rid-of-adsmattecom-adware-opening/06b20667-586a-4ebd-9876-6d28c8528a1f?page=1
https://discussions.apple.com/thread/7052365
http://forums.androidcentral.com/moto-g-2014/528571-adware-redirects-most-websites-how-can-i-get-rid.html
http://www.asus.com/zentalk/forum.php?mod=viewthread&tid=8189&extra=&page=1
Then I tried searching for the page I get redirected to, somethingsomething.epara.ru, so I searched that last common part epara.ru (I thought I had done this before ):
Code:
http://forum.kaspersky.com/index.php?showtopic=334600
https://warosu.org/g/thread/S50749199
http://www.xataka.com/respuestas/malware-adware-en-todos-mis-dispositivos (SPANISH)
What is VERY suspicious is that many of the results, suggest downloading "Spy hunter".
Here are some examples:
Code:
http://solvepcproblem.com/remove-359198-epara-ru/
http://removevirusvideo.com/stop-epara-ru-from-redirecting-epara-ru-removal-tips/
Now, how do you solve it?
Simple:
Disconnect from any WiFi, clear your browser's cache (and even your OS's). CCleaner does a pretty good job for this.
Then go to your suspicious router and factory reset it (or ask your ISP to do that remotely) and update its firmware. After all thosesteps, you can connect again.
What the malware does is change your DNS towards a malicious one.
I haven't done that reset to my GF's router, but that should solve the problem.
Thansk for everything, and I hope this works for somebody else!
Glad you got it sorted. If you want to find further help on anything, use the links I suggested... And if you want to post info to help others, you could post here, http://forum.xda-developers.com/general/general
I'll close this thread now.
:good:
I am unable to remove annoying pop coming from any web browser I tried to install and use on my new Xperia Premium XZ including Chrome and Firefox. It looks like my phone gets DNS hijacked and randomly few times a day it pops this message - see attached screenshots.
I tried to Google solution, none I found worked including clearing data and cache of these apps, completely reinstalling them.
I tried premium Adware Malwarebytes and it does not detect anything wrong with the phone.
I also activated premium version of AVG but full scan has not discovered any issues.
At this point I ran out of options.
I can't believe there is no clear explanation anywhere about this so called Four Virus neither reference about it with respect to Oreo 8.0.0.
Am I the only Oreo user which has this issue?
Reseting my phone to factory defaults is last thing I would want but could do. Just trying to see other options before executing such drastic solution.
Any ideas are very appreciated.
Hi there
You caught a simple flu, but u probably need Safe Mode to remove it. Follow instructions here => https://forums.androidcentral.com/a...30081-guide-malware-adware-popup-removal.html
Good luck, and keep us posted,
Van
This is well-known problem, widely described on the Net. There's nothing wrong with your phone. There's no malware on the phone itself, which is why the anti-malware tools do not find anything.
What you see is a result of a server-side problem. Either the web page you were trying to visit got hijacked, or an ad provider that displays ads on that page got hijacked, or some DNS entry got hijacked. They used some kind of server-side exploit to redirect your browser to the above fake page. It is ordinary scareware, trying to scare you into purchasing a piece of software you don't really need (and it is useless crap anyway). If you were visiting a legitimate web site at the time this popup appeared, the site owners are most likely already aware of the problem. They will fix it shortly and the problem will go away.
At this time, just to make sure noting is cached on our phone after they fix the issue, a good idea might be to find your browser app in the app list and as Android to clear app data.
I've got an A32 5G that functionally performs ok. it's had some slow loading pages recently and some YouTube videos buffering, which I attributed to the recent system updates as well as the move to 5g in my area. I still think these are the likely sources of my lower performance, but. . ... I went to grc.com and ran their Shields Up test the other day, probing all common ports. my results came back that I have a port 179 open about 95% of the time (meaning I've ran the test quite a few times since then, only a few of those times it showed stealth). appx. 10% of the time I ran the test, it showed port 1, and port 1&2 closed, but not stealthed. the other test results showed them to be stealthed.
prior to now, and when having my friends run the tests on their phones, my former and everyone else's current results were 100% stealthed.
my questions -
1. can a few of you with the same phone as me run the same tests and see what your results are. (it's at grc.com, then Shields Up, then Shields Up, then proceed, then All Service Ports)
2. short of resetting the phone, how do I find out the source or cause of this port being open? (I've done a lot so far, none of which has helped, so I won't bore anyone just yet)
3. is there a better section to post this in?
See if you can ID the app using it with a firewall.
If running on Pie or below Karma Firewall will detect apps accessing the internet.
If you can't ID and eliminate it, factory reset.
You are what you install and download, exercise caution.
This is what I get when I run that check:
the only apps on my phone are Firefox & Brave browsers, CX File Explorer, File Viewer, New Pipe, SMS Backup & Restore, and a few games from Yiotro.
never been on Facebook, nor any other social media
blackhawk said:
See if you can ID the app using it with a firewall.
If running on Pie or below Karma Firewall will detect apps accessing the internet.
If you can't ID and eliminate it, factory reset.
You are what you install and download, exercise caution.
This is what I get when I run that check:
View attachment 5648189
Click to expand...
Click to collapse
the test I was referring to was this one
and I'm on Android 12. the firewall approach is null with that?
mr_horsepower said:
the test I was referring to was this one
and I'm on Android 12. the firewall approach is null with that?
Click to expand...
Click to collapse
Lol, I scanned that exe with Virustotal and while most might trust it... I don't!
Android 12 will gut firewall apps not designed to run on it. Even 10 does this.
A big reason I still run on Pie; functionality for trusted apps.
Nuke it if there's any doubt. Change Google account password, check if its been breached.
Likely something you installed...
blackhawk said:
Lol, I scanned that exe with Virustotal and while most might trust it... I don't!
Android 12 will gut firewall apps not designed to run on it. Even 10 does this.
A big reason I still run on Pie; functionality for trusted apps.
Nuke it if there's any doubt. Change Google account password, check if its been breached.
Likely something you installed...
Click to expand...
Click to collapse
how do you keep your system from updating?
mine is set to only do it over wifi, and I never use wifi (literally never) and eventually it gives in I guess and downloads it over my data connection. I've got auto updates on the play store turned off and I've never had anything update without my choosing to, again, thru just the play store.
I'm fairly certain that Steve Gibson, the guy that runs the Security Now site and podcast is a 100% safe environment.
*I also realize my recommendations on what's safe and what's not mean nothing, especially given the thread I just started, lol.
mr_horsepower said:
how do you keep your system from updating?
mine is set to only do it over wifi, and I never use wifi (literally never) and eventually it gives in I guess and downloads it over my data connection. I've got auto updates on the play store turned off and I've never had anything update without my choosing to, again, thru just the play store.
I'm fairly certain that Steve Gibson, the guy that runs the Security Now site and podcast is a 100% safe environment.
*I also realize my recommendations on what's safe and what's not mean nothing, especially given the thread I just started, lol.
Click to expand...
Click to collapse
I use a package disabler to block OTA updates.
A nasty little app...
I think his site's probably ok, but caution is best when in doubt. My current load is over 2 yo and runs very well.
I've just spent the past 5 hours doing a full restore on my phone. I just ran the scan again and I got the same effing results. will someone please, for the love of all that is good in this world, pretty friggin please, run that scan and see if they get the same port open? please.
you don't even have to do the whole scan, which takes all of 30 seconds. just type 179 in the box and hit enter. it will open open to another page and you hit the 'probe this port' button. it's Steve Gibsons website. it's safe. he's one of the grandfathers of internet security.
Lol, doesn't sound that safe judging by your results. You should have loaded just that app and scanned. May be a false result.
No known rootkit can survive a factory reset on Android 9 and up. So either it's a normal result, glitch or you reloaded the malware... probably one of the games.
Install Karma Firewall (it may not install on 12), one by one block 3rd party apps and so on, then scan until you find it.
Or factory reset again and run the scan... first.
blackhawk said:
Lol, doesn't sound that safe judging by your results. You should have loaded just that app and scanned. May be a false result.
No known rootkit can survive a factory reset on Android 9 and up. So either it's a normal result, glitch or you reloaded the malware... probably one of the games.
Install Karma Firewall (it may not install on 12), one by one block 3rd party apps and so on, then scan until you find it.
Or factory reset again and run the scan... first.
Click to expand...
Click to collapse
didn't reload the games (they're zero permission games from an awesome source though). I did a reinstall of DDG browser, File Viewer, SMS Backup & Restore, and Textra. I went through all my permissions and deleted all the b.s. bloatware, fired up the browser and went and ran the test. same results. I've ran the test a bunch over the years, first time with that result ever a few days ago.
I'm going to order a new phone tomorrow. if I'm lucky, it'll be in in time for me to blow this thing up on the 4th.
*I also ran the test at a few other port scanners prior to the reset. one of 3 didn't show the port open, the others did. I haven't rechecked it at those places after the fact
*it doesn't sound like you're familiar with Steve Gibson or his work. it'd be worth poking around his website a little. also listening to or reading transcripts of his weekly podcast he's done for years. that website is as pure as the driven snow.
blackhawk said:
Lol, doesn't sound that safe judging by your results. You should have loaded just that app and scanned. May be a false result.
No known rootkit can survive a factory reset on Android 9 and up. So either it's a normal result, glitch or you reloaded the malware... probably one of the games.
Install Karma Firewall (it may not install on 12), one by one block 3rd party apps and so on, then scan until you find it.
Or factory reset again and run the scan... first.
Click to expand...
Click to collapse
and to clarify, it's not an app. you go there with your browser and click on a button. it's just a web page, it's just a button. you don't even need Javascript to be on at his website.
*and while I appreciate your offering up that .apk, I'm not in the habit of sideloading apps from a barely known source. that's a small example of what makes this problem I'm having so perplexing.
mr_horsepower said:
and to clarify, it's not an app. you go there with your browser and click on a button. it's just a web page, it's just a button. you don't even need Javascript to be on at his website.
*and while I appreciate your offering up that .apk, I'm not in the habit of sideloading apps from a barely known source. that's a small example of what makes this problem I'm having so perplexing.
Click to expand...
Click to collapse
Won't run in my browser. Tried disabling a few things that might have blocked it, no go.
My current setup hasn't had any malware issues, has been fast and stable for over 2 years so I'm not playing with it further than this for no good reason.
I don't have in depth knowledge of these protocols. Been a long while since I setup a router. Meh, although I'm curious about this... but it's your rabbit hole to chase down. It's a pretty deep hole.
Karma Firewall been updated.
NetGuard is fully functional on 12, root not needed. I haven't played with this yet.
Install a firewall and see if you can spot it...
if you went there, and proceeded like this, with or without Javascript on (my default everywhere is its off unless I decide to give sites that liberty), I can't see how in the world it's not running. I appreciate your time regardless.
A link be nice...
Here's would I got on my N10+/Pie:
blackhawk said:
A link be nice...
Here's would I got on my N10+/Pie:
View attachment 5648803
Click to expand...
Click to collapse
that's the unplug and pray test. I can't provide a link to anything (try anything you would be able to create a link from at a typical site and you'll see it doesn't work there) but the main page because of the way his site is set up. here's hopefully a better picture of what you are pressing, and what to choose instead.
*check your link, which doesn't go where you think it does, and he explains why not.