Related
Myself and some others who run Cognition on their GS2 have reported that Lookout Mobile Security has found a Trojan in the Camera (hacked camera silent edition by potatoman as far as i know) this has just flashed up on my screen a few mins ago, in all the time ive had a smartphone and had Lookout ive never had a trojan so you'll appreciated the concern, i tried to uninstall but it wouldn't allow me (it's build into the ROM no doubt so would have to uninstall)
A concern no doubt, ive frozen it in Titanium Backup for now but i need some assistance folks what should be done in this instance, i could flash another ROM but id sooner stay with Cognition for now.
screenshot
If your paranoid about it, delete it and use the stock camera app for now.
EarlZ said:
If your paranoid about it, delete it and use the stock camera app for now.
Click to expand...
Click to collapse
I already said it would not allow me to uninstall it, and i cant see anything in Titanium for the stock camera, just camera, this replaces the stock camera.
jonny68 said:
I already said it would not allow me to uninstall it, and i cant see anything in Titanium for the stock camera, just camera, this replaces the stock camera.
Click to expand...
Click to collapse
Its simple, use root explorer and replace camera.apk in system/app folder
Does anyone think this could be related to the auto-upload pics to Google+ feature?
This camera seems very popular here in XDA. I would just ignore the warning. But yeah, if you are paranoid, there is always the option of changing the apk.
I Posted this in the Cog thread too, but since there's 2 places to talk about it, here goes:
So full disclosure: I have no idea what I'm doing. Good start right?
I use LBE privacy guard to control permissions on a per app basis. After seeing the posts about camera.apk, I downloaded and ran Lookout, and found the same information as reported above, that camera.apk was infected with Trojan:Android/Bgserv.A.
I googled it and found : http://www.f-secure.com/weblog/archives/00002116.html
I noted the app permissions, which is basically everything, and compared it to what camera.apk was requesting on my phone. Camera.apk for me only requests access to sms and location, no network access and no phone info access.
I'm not sure, but this might be a false positive. Like I said though, I have no real experience with this stuff. I'm just poking around.
I think it is just a false alarm, nothing serious. I get this also on 2 other modified programs. And the other 2 is just translated. I think it is due the repackaging.
rwj5279955 said:
Does anyone think this could be related to the auto-upload pics to Google+ feature?
Click to expand...
Click to collapse
No. The camera app doesn't upload your pics - the Google+ app does it.
Scanned with Eset Nod 32 and Malwarebytes clean as a whistle = false positive probably .
jje
Lookout gives me today the same positive on same camera.apk of the cognition rom.
kersh said:
Lookout gives me today the same positive on same camera.apk of the cognition rom.
Click to expand...
Click to collapse
help remove malware alert trojan android bgserv a ... its says the camera 1.0 is infected.. cant uninstall it ... and could you please tell me the location where I could find camera.apk using root explorer.. and how would I install the stock camera apk.. Thanks
scorpio.besal said:
help remove malware alert trojan android bgserv a ... its says the camera 1.0 is infected.. cant uninstall it ... and could you please tell me the location where I could find camera.apk using root explorer.. and how would I install the stock camera apk.. Thanks
Click to expand...
Click to collapse
Its in /system/apk and app called camera.apk just replace it with stock camera.apk
scorpio.besal said:
help remove malware alert trojan android bgserv a ... its says the camera 1.0 is infected.. cant uninstall it ... and could you please tell me the location where I could find camera.apk using root explorer.. and how would I install the stock camera apk.. Thanks
Click to expand...
Click to collapse
Its in /system/app and app called camera.apk just replace it with stock camera.apk
I hardly think Lookout would flag this as being malaware if it wasn't, i don't subscribe to this "false positive" way of thinking, my opinion is better be safe than sorry.
So in order to get the stock camera back ive to replace this in system/app, where can i find an apk. for the stock camera, cheers.
I'll be ultra careful from here on in about downloading third party apps.
edit never mind i didn't see the above post i have replaced the camera via root explorer.
TRiying other rom same positive on Villain rom 2.1 and Villain after change the camera for the modded one thread.
jonny68 said:
I'll be ultra careful from here on in about downloading third party apps.
Click to expand...
Click to collapse
...like an app from xda claiming to be the stock camera?
If it's better safe than sorry, your best bet is to roll back to a stock backup you made before flashing
OK i went to system/app and clicked on install and replaced the camera, done a scan and it's still showing as malaware and will not allow me to uninstall, where can i find a genuine apk. for the stock camera does anyone know,other than that ill have to flash another ROM.
leftovermagic said:
...like an app from xda claiming to be the stock camera?
If it's better safe than sorry, your best bet is to roll back to a stock backup you made before flashing
Click to expand...
Click to collapse
i did say from here on in, this is a genuine community for the most part,however you cant be sure there are not people on here who create trojans inside apps, i just noticed with this camera app the amount of permissions it asks for is way too much just for a camera.
jonny68 said:
OK i went to system/app and clicked on install and replaced the camera, done a scan and it's still showing as malaware and will not allow me to uninstall, where can i find a genuine apk. for the stock camera does anyone know,other than that ill have to flash another ROM.
Click to expand...
Click to collapse
could you just freeze it with Titanium for the time being?
The thread below claims a stock apk i think:
http://forum.xda-developers.com/showthread.php?t=1098834
Saw this app called pdroid, allows you to set the permissions apps have(better than other apps like droidwall), probably gonna patch it onto my nook color, but would make even more sense on my phone.. only problem is that for HTC devices it says it requires s-off.(updated: apparently this isn't an issue)
I guess my question would be if anyone would know a way to workaround? It doesn't require root.. I am wondering if there is a way I can patch the rom before I flash it perhaps?
Also, I didn't know that apparently there is a feature that cuts off all network connectivity for selected apps built into cm7.. I'm starting to think I didn't know about 99% of the features cm7 allowed. That is probably why I always went with MIUI.
Anyways, figured I would ask here, or perhaps someone else would think this was interesting, or maybe something like this could be included in future roms. It evidently has a tiny memory footprint, uses little processor, etc.. so don't see what the harm could be. I'll have time to play with it this weekend I am thinking..
Silentbtdeadly said:
Saw this app called pdroid, allows you to set the permissions apps have(better than other apps like droidwall), probably gonna patch it onto my nook color, but would make even more sense on my phone.. only problem is that for HTC devices it says it requires s-off.
I guess my question would be if anyone would know a way to workaround? It doesn't require root.. I am wondering if there is a way I can patch the rom before I flash it perhaps?
Also, I didn't know that apparently there is a feature that cuts off all network connectivity for selected apps built into cm7.. I'm starting to think I didn't know about 99% of the features cm7 allowed. That is probably why I always went with MIUI.
Anyways, figured I would ask here, or perhaps someone else would think this was interesting, or maybe something like this could be included in future roms. It evidently has a tiny memory footprint, uses little processor, etc.. so don't see what the harm could be. I'll have time to play with it this weekend I am thinking..
Click to expand...
Click to collapse
Stericson has an app that has the same features call "Permissions". It doesn't require S-off
Sent from my HTC Amaze 4G using xda premium
This is a solid app. I have it installed
heyodee said:
This is a solid app. I have it installed
Click to expand...
Click to collapse
Which one, pdroid, or permissions?
Chance Ill said:
Stericson has an app that has the same features call "Permissions". It doesn't require S-off
Sent from my HTC Amaze 4G using xda premium
Click to expand...
Click to collapse
I saw the permissions app when I was looking into it, apparently the way pdroid functions you are less likely to get a force close from apps that you cut permissions off.
I'm not the paranoid type, there are some apps that aren't designed very efficiently that I would cut off features from like wakelock, boot_receive, gps, etc.. and sadly those apps don't show up on the list in the free version(like facebook, I don't want it doing ANYTHING unless I am using it). The pro version might do it, but I'd rather donate to a dev of an app like pdroid that gives you the full features than buy an app hoping the paid version does what the free version doesn't.. 15 minutes just isn't enough time to explore some paid apps.
I'm sure the developer stated it needed s-off in good faith, only recently was it possible to have a boot loader with s-on (unlocked) and be able to have r/w access to /system. Previously s-off would be required for this. I'm sure pdroid will work with a s-on unlocked boot loader, with a rooted system. The only difference between s-on unlocked and s-off is that the radio and boot loader can't be overwritten when not signed from HTC. As far as custom roms and root capabilities are functionally the same.
Silentbtdeadly said:
Which one, pdroid, or permissions?
Click to expand...
Click to collapse
pdroid. and s-off is not a core requirement. If you can flash from recovery, then it's all good.
the only thing I have to decide between now is LBE Privacy Guard or Pdroid
jmhalder said:
I'm sure the developer stated it needed s-off in good faith, only recently was it possible to have a boot loader with s-on (unlocked) and be able to have r/w access to /system. Previously s-off would be required for this. I'm sure pdroid will work with a s-on unlocked boot loader, with a rooted system. The only difference between s-on unlocked and s-off is that the radio and boot loader can't be overwritten when not signed from HTC. As far as custom roms and root capabilities are functionally the same.
Click to expand...
Click to collapse
Good to know, I wasn't sure why it would need s-off, but what you said makes total sense..
heyodee said:
pdroid. and s-off is not a core requirement. If you can flash from recovery, then it's all good.
the only thing I have to decide between now is LBE Privacy Guard or Pdroid
Click to expand...
Click to collapse
Well maybe you can share what you know about LBE privacy guard compared to pdroid? I've already spent too much time being distracted from school work the last few days or I would look into it myself.. but in a few days I will have time to mess around with all of this guilt-free.
What rom are you using? I keep seeing people post the flashable zip file patch output in different forums, maybe we could do that here for others who may be using the same rom?
Well maybe you can share what you know about LBE privacy guard compared to pdroid? I've already spent too much time being distracted from school work the last few days or I would look into it myself.. but in a few days I will have time to mess around with all of this guilt-free.
What rom are you using? I keep seeing people post the flashable zip file patch output in different forums, maybe we could do that here for others who may be using the same rom?
Click to expand...
Click to collapse
Both apps are rock solid.
LBE Privacy Guard does the job nicely, coupled with an intuitive UI, firewall, data monitor...
PDroid, love it. Although compatibility is issue. Requires patch. It however gives extra option in privacy department
Whichever you decide to choose, its a good pick
Currently using Deodex tmobile 1.43.531.3 from this thread
heyodee said:
Both apps are rock solid.
LBE Privacy Guard does the job nicely, coupled with an intuitive UI, firewall, data monitor...
PDroid, love it. Although compatibility is issue. Requires patch. It however gives extra option in privacy department
Whichever you decide to choose, its a good pick
Currently using Deodex tmobile 1.43.531.3 from this thread
Click to expand...
Click to collapse
LBE seems pretty good so far, I like that it allows you to change the permissions of system apps.. and to choose "prompt" when some apps try to access permissions. The only thing I wonder is how the monitoring part will impact battery life, and the only thing I wish it did was allow was a change to the wake lock permission.
The main thing I am trying to accomplish is to cut off communication for certain apps altogether EXCEPT when I use them- facebook, google voice, g+, stuff like that. I also want to cut off the ability for certain apps to wakelock the phone at all, like gtalk(I don't use it at all) and a few others. The fact that some of these services don't allow you to change how they sync or they hold a wakelock I don't want.. I want to change that.
Would pdroid better accomplish what I am trying to do? Does it allow permissions changes of system apps?
Silentbtdeadly said:
LBE seems pretty good so far, I like that it allows you to change the permissions of system apps.. and to choose "prompt" when some apps try to access permissions. The only thing I wonder is how the monitoring part will impact battery life, and the only thing I wish it did was allow was a change to the wake lock permission.
The main thing I am trying to accomplish is to cut off communication for certain apps altogether EXCEPT when I use them- facebook, google voice, g+, stuff like that. I also want to cut off the ability for certain apps to wakelock the phone at all, like gtalk(I don't use it at all) and a few others. The fact that some of these services don't allow you to change how they sync or they hold a wakelock I don't want.. I want to change that.
Would pdroid better accomplish what I am trying to do? Does it allow permissions changes of system apps?
Click to expand...
Click to collapse
it is pretty light on battery. pdroid is better with battery from the looks of it. Wake lock is not part of the supported permission for both apps. lbe privacy supports firewall. for gtalk, sign out when not using it. for g+, uncheck it from sync. for Google voice, ... dunno yet
pdroid allows you to set permission of system apps
heyodee said:
it is pretty light on battery. pdroid is better with battery from the looks of it. Wake lock is not part of the supported permission for both apps. lbe privacy supports firewall. for gtalk, sign out when not using it. for g+, uncheck it from sync. for Google voice, ... dunno yet
pdroid allows you to set permission of system apps
Click to expand...
Click to collapse
I've turned off sync on g+ and voice, signed out of gtalk.. but I'm trying to eliminate any wakelocks on these apps I rarely or never use. The biggest wakelock every time is the alarm sys, if I do a "dumpsys alarm > alarm.txt" in terminal, many of these apps are still keeping the phone from sleeping right..
Ultimately, I am probably trying to beat a dead horse, I got things tweaked to the point I'll never really have to worry about killing my battery in a day, but it seems like one of the features of us android users(or maybe it is xda users).. we want TOTAL control over what our phones do and don't do, lol.
LBE was heavy on my battery and Permissions Denied's interface is not intuitive enough.
I'd like to give PDroid a try but which patch to use for HTC Amaze? (beastmod 2.2.0)
jjane45 said:
LBE was heavy on my battery and Permissions Denied's interface is not intuitive enough.
I'd like to give PDroid a try but which patch to use for HTC Amaze? (beastmod 2.2.0)
Click to expand...
Click to collapse
I've been using LBE since it was recommended to me.. and even though I don't see any wakelocks caused by it, and IT reduced the wakelocks other apps on the phone would cause, by battery life has degraded majorly. It is a cool app, but rather than get 24+ hours on a light use day, I have been getting at most 14 with barely any use. It may be because I have it monitoring my data use, so I may continue using it after I turn off monitoring to see if that is the draining part.
To answer your question, based on how I read the thread.. one of the downloads in the thread is used to CREATE the patch(and remover) which you can then flash and/or share with others.
PDroid is the only one I haven't tried yet, so think I'm gonna remove LBE and give it a try. One of these apps will surely give me control over these other apps, without being a bigger pain than those other apps.
Did you give PDroid a try and have any success with the Amaze?
If so, it would be great to share the patch.
I've been using LBE, avoiding the re-flash to deodex / Zipalign, for now, and it seems like its pretty good / handles system apps pretty well but I'd think about running both in tandem to cover what each doesn't do. Hmm
Hi
Iam using lbe privacy guard
But now iam using cm10 (jelly bean). Lbe doesnst work with 4.1.
Now I want to know is there a alternate to edit permissions for apps like in lbe.
I don't search apps like droidwall.
Greetings
xeenon
Gesendet von meinem GT-I9100 mit Tapatalk 2
xeenon said:
Hi
Iam using lbe privacy guard
But now iam using cm10 (jelly bean). Lbe doesnst work with 4.1.
Now I want to know is there a alternate to edit permissions for apps like in lbe.
I don't search apps like droidwall.
Greetings
xeenon
Gesendet von meinem GT-I9100 mit Tapatalk 2
Click to expand...
Click to collapse
Right now DroidWall is your only option it may only block internet access but that's enough because for an app to steal your info and transfer it, it needs an internet connection.
Some apps need internet like facebook. But I don't want to share my contacts for example :/
Gesendet von meinem GT-I9100 mit Tapatalk 2
xeenon said:
Some apps need internet like facebook. But I don't want to share my contacts for example :/
Gesendet von meinem GT-I9100 mit Tapatalk 2
Click to expand...
Click to collapse
Then you stop running bleeding edge and stick with standard until software catches up. LBE didn't work on ICS either when it first came out.
Not exactly what you're after but Lucky Patcher can remove/modify permissions of apps. Amongst other things.
Sent from my CM9 powered monster!
You could try this: https://play.google.com/store/apps/details?id=com.stericson.permissions&hl=en
LBE has a full-featured app that supports Android 4.1 They only make a Chinese version but the kind folks in this thread have been translating it into English.
Besides the 'Permissions Denied' that was pointed out before I use as a complement Gemini App Manager, that gives me a quick view of permissions used and allos to manage the 'autorun' oprtions of the apps:
https://play.google.com/store/apps/...EsImNvbS5zZWFzbWluZC5hbmRyb2lkLmdtYXBwbWdyIl0.
It is apity that LBE does not work now because it was really usefull
What about PDroid?
If you dont mind patching your system, this tool will give you the ultimate control about the private data lurking apps.
Personally i can't imagine using a ROM without PDroid installed.
Too many apps want too much data wich have nothing to do with the data the apps needs to work fine, this private data lurking has gone out of joint!
Check out Pdroid 2.0 by CollegeDev for more infos.
Regards
Um...
I've gotten LBE to work on JB (4.1.1) just fine. See my instructions at: http://forum.xda-developers.com/showpost.php?p=33569251&postcount=661
testscript said:
I've gotten LBE to work on JB (4.1.1) just fine. See my instructions at: http://forum.xda-developers.com/showpost.php?p=33569251&postcount=661
Click to expand...
Click to collapse
Doesn't work on Samsung Galaxy S III on JB. Still get the endless boot loop.
Correct me if im wrong but doesnt cm have app permission options by default, i can swear ive heard that your able to change permission settings in the app management settings or something of the like, am i wrong?
banderos101 said:
Correct me if im wrong but doesnt cm have app permission options by default, i can swear ive heard that your able to change permission settings in the app management settings or something of the like, am i wrong?
Click to expand...
Click to collapse
I doubt so, I'm using CM10 and nothing of this, maybe you mean MIUI? It had LBE as a default permission manager I think.
LBE 4.1.2224 works just fine on Android 4.1.
no !!!!!
DONT USE IT
i got boot loop again now on omega rom android 4.1.2 galaxy note 2
lightdelegate said:
DONT USE IT
i got boot loop again now on omega rom android 4.1.2 galaxy note 2
Click to expand...
Click to collapse
indeed witht the "light" version, i had the same problem but if you take the original in chinese no problem... :laugh:
I don t talk chinese but someone on the forum start to translate it in english :good:
More info..
http://forum.xda-developers.com/showthread.php?t=1422479
if you happen to have made the mistake of installing LBE, you can fix permissions in recovery to be able to get back into the phone and uninstall LBE from the play store.
SIIGalaxy said:
if you happen to have made the mistake of installing LBE, you can fix permissions in recovery to be able to get back into the phone and uninstall LBE from the play store.
Click to expand...
Click to collapse
I was able to start superuser and remove the permissions for LBE in the few secs between bootloops. Once superuser permission is revoked it stops the bootloop. Bloody frustrating though, it took me 3 trys to be quick enough. Next time I'll use safe mode This renders the app useless though and I dont want apps reading my privy sh*t. just look at the permissions on Angry birds!
The newest version from the market still crashed my phone. Its now March 2013 so Jelly bean hardly 'bleeding edge' now.
Does anyone know when an update for Jellybean is out or even if they are working on it?
raymondub said:
indeed witht the "light" version, i had the same problem but if you take the original in chinese no problem... :laugh:
I don t talk chinese but someone on the forum start to translate it in english :good:
More info..
http://forum.xda-developers.com/showthread.php?t=1422479
Click to expand...
Click to collapse
thansk for the link
Latest version for down can also be found here - http://forum.xda-developers.com/showpost.php?p=37660848&postcount=858
This is a good app. I think it could be a bit technical for some as there are a great deal more features in this than on privacy guard and the app ui is much busier due to the extra features (adaware, antivirus etc). The english on the latest version (4.4.2868 as of writing this) seems fine and it warns you if go to enable a feature which has not yet been translated, only 2 that I have found out of the many on there.
tony_76 said:
thansk for the link
Latest version for down can also be found here - http://forum.xda-developers.com/showpost.php?p=37660848&postcount=858
...
Click to expand...
Click to collapse
Unfortunately, it still seems to go into an infinite boot loop, JB 4.1.2 on razr maxx, when the active protection mode is enabled.
I ended up using Settings - Apps - LBE Privacy Guard - Force Stop - Uninstall as soon as the phone booted, to get it to stop.
Hi guys. i installed a firewall on my phone, and i just wanted to ask as to what basic stuff i need to allow to use internet.
What i mean is that i have firefox on the phone, and if i block everything and only allow firefox, i cant browse internet. but if i turn off the firewall, i can browse normally.
So i was just wondering what else i need to allow to use firefox.
i hope you guys get what i am trying to ask here.
You could try opening ports 80 (default http) and 443 (default https), but isn't your question better directed to the maker of the firewall?
ok got it to work, instead of blacklisting, i did white listing, and it worked well.
advisable for anyone who wants security to give it a try
if you would firewall your pc, then why not your phone?
nstream said:
ok got it to work, instead of blacklisting, i did white listing, and it worked well.
advisable for anyone who wants security to give it a try
if you would firewall your pc, then why not your phone?
Click to expand...
Click to collapse
Which firewall application did you use? I tried Android Firewall, but it would crash all the time, and it would not store or display activity logs. I previously used Droidwall on my original Incredible running CM7 (Gingerbread) and it seemed to work very well with the white listing of applications.
I removed Android Firewall from the Dinc 4G today and have no idea if anything else out there will work on ICS or Jellybean
biodiesel.ufo said:
Which firewall application did you use? I tried Android Firewall, but it would crash all the time, and it would not store or display activity logs. I previously used Droidwall on my original Incredible running CM7 (Gingerbread) and it seemed to work very well with the white listing of applications.
I removed Android Firewall from the Dinc 4G today and have no idea if anything else out there will work on ICS or Jellybean
Click to expand...
Click to collapse
i am using avast!
it does require root though
nstream said:
i am using avast!
it does require root though
Click to expand...
Click to collapse
Oh, I am rooted, S-OFF and running CM10.1 thanks to the hard work and inspiration of the developers here. I will look into Avast, thank you.
Since I've ever a lot (read: hundreds....) of apps installed on my phones, I've ever used a "boot receiver editor" like "ES System Monitor" or "Manage Android Autostart" to limit unuseful apps autostart and have it a faster and with a better battery life phone...
These apps obviously need root, BUT I've seen that on Moto Z they simply... don't work!
ES System Monitor's "Optimizer" function seems to work but when you exit and re-enter all changes are lost...
Manage Android Autostart instead return an error like "fail... are you sure to have root access?" when, obviously, root is granted (and SuperSU related "toast" has just benn showed... ).
This is not directly related to MM since on another phone with AOSP MM 6.01 installed all works fine...
Any idea on what could produce this behaviour? It seems something trying to "protect" /system from modifies... (BUT with ES File Manager I don't have any problem to modify it...)
es file manager and other stuff are not what they used to be
sold to third party who forced crapware
i would stay away from them
reiteravi said:
es file manager and other stuff are not what they used to be
sold to third party who forced crapware
i would stay away from them
Click to expand...
Click to collapse
Uh...?! Never had issues with them...?!
Anyway in a very similar ROM they works and on Moto Z... not!
We have to understand the reason... @erfanoabdi, any idea?
enetec said:
Uh...?! Never had issues with them...?!
Anyway in a very similar ROM they works and on Moto Z... not!
We have to understand the reason... @erfanoabdi, any idea?
Click to expand...
Click to collapse
i don't know why
but i'm ok with greenify
:laugh:
erfanoabdi said:
i don't know why
but i'm ok with greenify
:laugh:
Click to expand...
Click to collapse
Yes, Greenify does the "main" work, BUT there are apps that try to reactivate at every occasion and produce a lot of (unuseful) wakelocks... when you have a lot of apps, reduce the active receivers is very important too...
And only a *good* knowledge of our device will allow us to obtain best results...
Let's try again... @janjan?