I was infected ANDROID - Android Q&A, Help & Troubleshooting

Hi,
I recently met someone online who was a romantic type of encounter but the more we spoke the more creeped out I got by the things hes seemed to know about me.
I finally came to the conclusion the things he said to me were extremely huge red flags, there was no way it was a coincidence anymore, and he knew FAR too much about things personal to me such as separate email accounts, and fake birthdates I use as only the last straw before I concluded to reset my device.
Code:
Alcatel
One Touch
Fierce 2
Kitkat
Thats the device I have. We 1st spoke on Kik and he sent me 2 pictures. One was of him that would not open an image. I tried to open it several times but it was just a blank picture.
The second I was able to view and download.
Does anyone know if this is possible to become infected by those means alone?
Otherwise it is possible he made a fake account and infected me with a link that did not work, but I was always under the impression that it was not possible to become infected by Rat or Keylogger with out installation. I was told in a recent thread I could become infected with opening a false link(???).
Im pretty much 100% sure I was infected. I hard reset my phone, but not the SD card yet. I believe the virus is gone, but I feel very creeped out this happen and do not see this going anywhere further but I would like to know if it is even possible. Theres no way Im being paranoid, but I do get a little over worried sometimes, unfortunately I think this was one of the genuine times.
How is it possible if someone did? Anybody have a link to a good article I could learn more? Thanks. PLEASE FORWARD TO ANYONE WHO MAY HAVE ANY ADVICE AT ALL WOULD BE MUCH APPRECIATED

Most likely he (or she) learned information about you some other way.
You might be surprised what people can learn from the "right" Google searches using some known info like email and city.
If a password on some account can be guessed, that can provide a flood of info, like reading every email or forum posts.
Most infections are from Android apps installed outside of Google Play. Image file viruses are theoretically possible, but I don't recall hearing of any such thing lately.

Please use this thread to continue this discussion: http://forum.xda-developers.com/general/security/getting-infected-android-device-t2989738

Related

Possible? True Security Protection?

Well I was just reading a thread about someone buying a Vibrant from someone who "found" it and this person was looking for a way to bypass WaveSecure.
We all know that with a little know how that it is possible with Recovery Mode.
The question I have is there a way to prevent even a Recovery Mode reflash? To absolutely stop someone from touching the ROM at all?
I know the Security Apps out right now can track you from GPS, wipe the phone remotely, etc... But can it stop someone from reflashing a ROM?
If there is a app out there like that please let me know, but if not, what would it take to create such a app.
What are YOUR thoughts??
What if this happens and then you brick for some reason need to reflash and it's locked. I would just bank on the fact that most people think that it's a "Droid" phone and don't know ****.
I was hoping for a question like that.
Either there is a security measure which at some point of using Recovery that it asks for a password or pin. Something that will allow you to access it securely and nobody else.
Yes, it is a droid, very true, but how many droids are out there now, are going to be out there, and with the new laws that allow you to unlock your device and pretty much do anything with it, more and more people are going to start playing around. Not only that, there is always somebody who knows someone, you know.
Personally myself, I would feel secure with having an implementation like this, everything else is pointless.
It's sort of like having a anti virus on your computer but not scanning for rootkits, only viruses.
The idea of that app sounds nice and all that but I seriously doubt that the average Android user would know about flashing ROMs and all that. But if it does get into the hands of somebody that does know how to do it then it can be a problem.
jzero88 said:
Yes, it is a droid, very true, but how many droids...
Click to expand...
Click to collapse
First of all these are android devices / android phones. I was mocking the people who call these phones "droid" phones.
Now on topic: All it takes to break this security is for one person to say, "I forgot my password on for the ==sUPERlOCKER== what do I do to get access?" Then all your worry is for nothing again.
What has been done can always be undone.
Sure, unlike me, I never forget my passwords. Especially for something this serious.
Second, of course something can be undo, but to what extent, after hearing your lack of concern makes me think you don't even have a lock on your phone
Again, would you rather have a password like "1234" that is easily guessed, or would you rather have something like "00LowJK54889$3%#". It's really a matter of personal security.
You sound like one of those people who would have Security Cameras, but never has the DVR on to record anything.
I'm saying your idea is bad. I have illustrated why. You have no counterpoint other than that I am 'relaxed' about my phone security.
How about this, keep your phone in your pocket or hand? 100% security.
This should be in general and not development
Sent from my Vibrant using xda app
This has been discussed a few times, you could compile your own recovery image and program in a password while at it, or you can accept that 90% of theives(or people who would find your phone) cannot get to recovery. If I found a phone then yeah I would go straight to recovery but I'm not your average user.
Sent from my T-Mobile myTouch 3G Slide using XDA App
I'm saying your idea is bad. I have illustrated why. You have no counterpoint other than that I am 'relaxed' about my phone security.
How about this, keep your phone in your pocket or hand? 100% security.
Click to expand...
Click to collapse
First, my idea is not bad, give it time, you will see.
Second, I do not have a counterpoint because my main point is stated in the first post. Read again.
Third, I don't care if you are relaxed about your security or not. This post obviously is not for you, another negative person who stunts development if they do not see a logical use for themselves.
I wish you the best and hope that you do not need to ever use such a tool or measure. Take it easy.
This has been discussed a few times, you could compile your own recovery image and program in a password while at it, or you can accept that 90% of theives(or people who would find your phone) cannot get to recovery. If I found a phone then yeah I would go straight to recovery but I'm not your average user.
Sent from my T-Mobile myTouch 3G Slide using XDA App
Click to expand...
Click to collapse
On the Vibrant forums? Haven't seen anything yet.
Also, I am not betting on a thief or someone who found the phone to be able to get to recovery, I'm worried about who these people might know. It's surprising to see how many people out here think that they are the only person in a 20 mile radius who knows how to do such mods... Maybe it's just the people I know but I know quite a few people who can easily google and find a way, easily.
I can bet that 90% of people here do not know anything except following directions, no pun intended to those who do. I definitely do not know half of what I should know, but again, is it really that hard?
Your own logic defeats what you are saying here. Don't you understand OP?
If there is a security measure, there will be a work around it? So why have more than ONE thing for the uneducated masses and stop there?
If the person who steals your phone knows someone who could get around WaveSecure, or any other security application. Then that same person can get around ANY AND ALL other types and forms of theft deterrent. If not, they will know someone, ask on forums, etc. UNTIL they gain access.
zaduma
Then why have any security on anything at all?
You my friend make no sense, good day!
jzero88 said:
Then why have any security on anything at all?
Click to expand...
Click to collapse
Ok, I will lay it out as simply as I can man. I do not want to argue, but you are missing why this is impossible to accomplish.
The existing security layers can be compromised by lets say... 10% of the population, seeing as most people who are thieves do not talk about it, most people dislike thieves.
So effectively 90% of people will be stopped dead in their tracks by having WaveSecure, etc.
The 10% who are not stopped however, can not be stopped by any means. None. They are the people who read these forums, have technical ability, etc.
Therefore having one layer of security means 90% of people are stopped from using your device. But it has ridiculously diminishing returns. With two layers, say stopping access to recovery, 10% are now stopped. Just boot into download mode and flash with odin. Stop download mode? First of all how? Second of all, there has to be a workaround for people who forget their passwords and stuff. And guess what, those 10% will know about that as well.
So please, address these issues and resolve them somehow, and your idea has merit. Without doing so you are wasting your time.
Also, much to your liking I will assume, I will no longer be posting in this thread due to your constant elevation of flaming.
Any security pro will tell you, if you have physical access to a computer, you can make it usable for you. The only real security you can hope for its to prevent access to your data by the thief. That's what full disk encryption and such is about. For our phones, we could achieve this much with a custom kernel perhaps, but how would you enter the password? No keyboard at that level.
The cellular providers can prevent the stolen phone from getting on their networks, and some do, but that's about as far as it goes.
Its like having a lock on your front door.. Its only going to keep out the honest people... Thats what they are made for, honest people, because dishonest people will just kick the door in.. And the good thieves can pick a dead bolt...
Sent from my SGH-T959 using XDA App
I'm starting to think this request/question is for the wrong crowd, truly it is...
If you build it they will hack it... Hands down... Look at the droid x, the unhackable phone, it took 5 weeks..
Sent from my SGH-T959 using XDA App
I agree, never did I not. This thread wasn't to debate whether a security measure could be hacked or not, the thread was created to see what we could do to implement such a measure.
I am totally aware of that. I know that if there is a will there is a way.
PERSONALLY, that is something I wouldn't mind having. Though some of you disagree and have a right to your own opinion, that is beyond the point. I am trying to see if a) is it possible. and b) what it would take to do so, and possibly c) if anyone was interested in trying or helping out.
So feel free to express your opinion. Mine is that you can never have enough protection cuz I would never bring a knife to a gun fight. But that's just me...
BTW, those who hacked the unhackable phone I would consider being part of the .01%.
jzero88 said:
I'm starting to think this request/question is for the wrong crowd, truly it is...
Click to expand...
Click to collapse
If you mean people that know how things work, I suppose. It's the same problem as drm. When you understand why that's not possible, you will understand this. Read up on jtag as well, you can't protect against that. 90% is about as good as it gets.

New and Frustrated

I just got my Nook Tablet 2 days ago and am very frustrated by the lack of instruction that I am finding on the internet about using this.
I know how to buy books and to change settings. I have my gmail set up but I cannot figure out the internet portion of this. For some reason the facebook login page was made to be my homepage and I have tried to change it many times....didn't work through settings. Also, while in facebook, I do not see "chat" or who is currently online. Am I doing something wrong? I did not see fb as an app in the app store.
I also have been looking at your lists of apps that everyone has added to their NT. Again, I am frustrated because I do not know what any of you are talking about. I am no techie!
Please help me out here or this thing is going back.
Joyce
If you go over to the B&N website and click on support for the Nook Tablet, you will get links to a dedicated 200 page user manual in pdf. Hopefully that might answer some of your questions.
I have read the manual and it does not give specifics for fb.
I don't think chat is an option with the mobile fb site. Also, the fb app is not available through the market on the nook. There is a fb apk file in the "must have apps" thread here, but not sure if it has chat either.
One thing Barnes and Noble has over Amazon is an actual store.
If you take your NT to the store, someone there should be able to help you set it up the way you want.
In your case specifically, I would recommend ignoring postings about side loading and rooting until you have quite a bit of experience using the stock Nook. You will avoid a lot of frustration that way.
The Alps listed in the "must have" are pretty easy to install and use. Just go to that page from the browser on your nt and click on the link(s). You'll see a little arrow in your notification area, click that and choose the package installer. At some point you'll need to check to OK installing non-market apps. Once you've installed the apps, you can get to them by seaching from the nooks search function. I would recommed installing the Amazon market and buying wave launcher. It will let you access up to 12 apps by swiping a finger, and you can also access all your apps through an app drawer that way too.
Sent from my ADR6300 using Tapatalk
Haha oops, didn't mean to thank you!
Sent from my BNTV250 using xda premium
dooball said:
I'm also new and I tried grabbing as much information as I could and everyone has been nothing but a******s to me.
Click to expand...
Click to collapse
I think the OP has received several helpful replies to their problem.
As for the forum itself, I'm new and my experience has been that each of my polite inquiries have received responses, including help side-loading, rooting, and issues with default ringtones.
Perhaps insulting those who are in no hurry to get on Skype and talk to someone they've never met, is a questionable approach. Just a thought.
dooball said:
Why do they have to meet me before they talk to me? I thought this was the internet?
Click to expand...
Click to collapse
"Meet" is probably the wrong word. In this sense it would be seeing a number of posts from a user to get a feel for how they deal with others, how knowledgable they are, etc.
You have no doubt seen posts from people which gave you a strong desire to have no interaction with them at all. That kind of thing.
In the very short time I've been watching these forums I've already seen several people jump in with an extremely demanding attitude. Like somehow they're entitled to everyone's immediate help.
Where does that come from? This isn't a Barnes & Noble site. These people aren't paid by B&N. Coming in demanding help seems like the wrong tack to take. If someone is looking to rant about the device they'd probably be more successful going into a B&N store.
Similarly, if you want detailed help on formatting epubs then perhaps a reader-specific forum might be more useful. Something like the Calibre forums maybe. Yes, the Nook Tablet is a reader but the vast majority of the posts here gear towards to the Android tablet side of the device--not the e-reader side.
dooball said:
Dude. EVERYONE I talk to ends up enjoying themselves.
Everyone claims they like people so much. Cell phones are flying off the shelves, Skype is more popular than ever--even Gmail has a BUILT IN PHONE--but we're afraid to call "strangers" or "random internet people" because they could be p*****s, so how can you convince me that you really like people when you're so afraid of them? Who are people calling? Who are you calling? People who already agree with you? Sounds like a boring life to me.
Click to expand...
Click to collapse
Dude, maybe people don't want to take time out of their day to be your personal nook/android tutor when literally every single person has figured **** out themselves by either using the forum search function or using Google. If you used your time to do research instead of writing long rambling posts, you would already be way ahead of where you are now regarding knowledge. Seriously, everything you ever wanted to know about android is at your fingertips, you just need to put the work in yourself.
Please don't feed the troll.
Wow.
walk away.
Breathe.
Relax before you haave a heart attack.
You catch more flies with honey.
In regards to the op... he did seem to come into a technical forum to attemp to figure out very basic usage information. Read a few threads here and im sure youll pick up some things. I had to google a lot of acronyms and things last week to get up to speed. Kexec, cwm, etc. You'll pick it up. Just keep reading!
I think this has been one off the nicer forums on here, and and I'm proud to be a part of it.
In general augustusbot is 100% correct. This is a forum for modding not for basic usage, the problem though is in general there is no good manual for any android device. The fact that Barnes and Noble has physical stores is great, it is their job to show you how to use your device.
Dooballs....
Go buy an iPad. You will fit right in.
e.mote said:
Please don't feed the troll.
Click to expand...
Click to collapse
Read the above...
I repeat, don't feed the trolls, they get cranky when they eat...
=)
Wow. This **** is epic. I subscribed.
Sent from my Nook Tablet using xda premium
Meeker said:
Read the above...
I repeat, don't feed the trolls, they get cranky when they eat...
=)
Click to expand...
Click to collapse
In spite of this, I'm compelled to reply.
jdubr said:
"Meet" is probably the wrong word. In this sense it would be seeing a number of posts from a user to get a feel for how they deal with others, how knowledgable they are, etc.
You have no doubt seen posts from people which gave you a strong desire to have no interaction with them at all. That kind of thing.
In the very short time I've been watching these forums I've already seen several people jump in with an extremely demanding attitude. Like somehow they're entitled to everyone's immediate help.
Where does that come from? This isn't a Barnes & Noble site. These people aren't paid by B&N. Coming in demanding help seems like the wrong tack to take. If someone is looking to rant about the device they'd probably be more successful going into a B&N store.
Similarly, if you want detailed help on formatting epubs then perhaps a reader-specific forum might be more useful. Something like the Calibre forums maybe. Yes, the Nook Tablet is a reader but the vast majority of the posts here gear towards to the Android tablet side of the device--not the e-reader side.
Click to expand...
Click to collapse
jdubr is just being polite. Nobody wants to talk to you because you behave like a b**t on this forum. The internet is a place full of normal people, but it has its fair share of we****s/a*****es. And we know very little about a person other than what we can discern from their online behaviour. From your prior posts, I personally find you a "***** ******** ******". And I believe most other people would feel the same way. That's why no one wants to talk to you. Try cooling off, then going through your previous posts and looking at them objectively. See if this happens in real life, or in other forums/personal interactions.
It's well and good saying you are well-liked. But based on the evidence we see, it seems to be the opposite. Nobody owes you information, or help. Anything anyone provides here is a gift, yet you demand it and complain when you don't get it.
It's true that information on forums isn't always very organised. But that's just the way they function. There ARE efforts to make it neater. But sometimes the developers/etc are too busy trying to figure out higher level problems to neaten up their work for a beginner to follow. In any case, they don't owe it to you, me, or anyone else.
I'm sure the developers would be more than happy to have people put up tutorial videos for them. But you have to ask nicely, and put in your own effort as well. The effort taken to develop/program/code is immense. To make things fair, how about putting in some of your own effort rather than adding to their load by asking them to simplify/explain everything in a beginner friendly manner?
To the OP, Joyce, there are various FB chat programs on the Android Market, you can try them instead of the official FB app. Also, there is some information on the Android Development Subforum about changing your screen dpi to 160, which may allow you to see the normal FB app on market. But that aspect is not fully firmed up yet, so you might want to wait a week or two till they have it stable.
As for "must have" apps, if you are new to Android, try downloading some of them which sound good, and try them for yourself. What others find good, may not work well for you. And part of the fun is exploring the Market to find apps that fit your purposes well, even if they aren't particularly popular. Try reading the descriptions and reviews on the Market for a quick feel of how the app works.
THREAD CLOSED.
I feel the OP was answered and purpose of the thread satisfied. So, thread closed.
Everyone be noticed that.
-- you need to be polite towards others to be a part of this forum . And while you seek answers u need to be extra polite.
-- We donot ban anyone without a proper reason.
-- Please make sure that you follow the forum rules.

Google wallet at&t

Have spent a fair amount of time on google (and and ddg and bing, just in case google's contractually bound to stfu or anything) searching for a way to circumvent the gestapo tactics employed by at&t to filter us in to being thrilled that they will one day come out with an equivalent system to what google wallet has been offering since 2011, and i haven't found anything for this phone except for 2 people that swore it'd be done that never responded. I want to post this here, where people that tinker thrive.
I realize google wallet isn't a hot issue for most of us.. but for those of us that would like to have it and to get that experience in while the 0$ fraud liabillity extends to cards stored on our phones' memory, i'd like to ask once and for all..
is there a way to get google wallet working on an AT&T htc one? i have seen conclusive accounts of people with other phones having it working.. but through everything except having this number active on another carrier and bringing it over, i have personally not found positive results. in the three days i've been trying, i HAVE gotten gwallet force closing, getting the 'unfortunately, wallet has stopped', message, or getting bored after 5 minutes and doing something else on my phone to see the gwallet has stopped message.
if there's a guide, please post it. otherwise, if anyone has actually gotten gwallet working on AT&T's network (or off with an unlocked number and have goteen it working with at&t) please share it here.
To be honest, it's like at&t has absolute control over what goes through this phone, even when on wifi. at the very least the goal of this thread is to find out conclusively that my data isn't filtered by some master at&t .hosts file somewhere in texas ,but i'd definitely prefer to leave with a working wallet app, so chime in if you know something i dont
always overly appreciative and way too damn generous with the thanks,
me
Wrong thread sorry
KAsp3rd said:
Wrong thread sorry
Click to expand...
Click to collapse
says the first poster in an unedited post in an undefined thread
show me the way sir
also, thanks. very helpful post.
Here is what I meant to link. And actually I did edit the post http://forum.xda-developers.com/showthread.php?t=2326959
[Q]: Google Wallet on the One
Sent from my HTC One using Tapatalk 4 Beta

Facebook mobile number substitution?

So my ex girlfriend is convinced that I have somehow hacked her phone. (I haven't.) So much so that she drowned an HTC phone and got herself a new Droid Maxx. However she is still having the issues that led her on this paranoid delusion. I am looking for someone to help me explain to her she has not been hacked, or if I am wrong to correct me.
The story starts with her saying that her Facebook app on the phone is acting funny. Yeah the nebulous adjective, funny. When I asked her what does she mean by that she has various performance complaints as well as the app crashing at inopportune times. Setting aside such shaky evidence of somebody hacking a phone (because as you know, one thing a hacker does not want to do is let their victim know that they are inside their phone and thus shutting down the exploits they have already put in place) I am now seeking anyone who knows more about this than I do to help explain what she is seeing so that she stops accusing me of something I am not doing. To make matters worse ex-girlfriend decides to start monkeying around with things that she doesn't understand inside her phone settings and discovers something that I finally find to be odd but can't really explain away.
She went into her old phone (an HTC M8 I believe) account synch settings and sees the Facebook mobile number displayed as not her own. In fact it's not even a proper number. Here is a screen shot from the new phone (my memory says that a very similar result was on her old phone):
(Annnd Dammit since I am a fairly fresh user I cannot post a pic link, if you are trying to help me PM me and I think it'll let me pate you the link)
(Or I can try to put 5 spaces in the link to make it non working and if you have the patience copy it and take the spaces out to go to the screen shot)
http: // imgur.com / Mfba WdE
The number listed is not even a complete number and does not come up in any useful way in Google searches. This odd number was on her previous HTC phone before she sent it for drowning and then her new Droid Maxx phone is showing the same thing.
As you know it's useless to go and ask Facebook for any sort of support seeing as how we are not their customers, we are actually the commodity they sell to advertisers so they could give a rat's ass about assisting their commodity. Remember when you don't pay for something then what is being sold is you.
I must add that she also has confirmed to me that when she signs in to Facebook in a browser on a PC she does not see her number replaced inside her profile. It seems really very odd to me how her mobile app still knows how to link with her regular profile when the number is not matching. I have an HTC One M9 and I do not have the same behavior as she reports. According to her she can still see her news feeds and friend posts and all that Facebook goodness. She says she has Avast running on the phone, and she does not install any software not obtained through the Google Play Store.
My research came up with not a very convincing theory. What I found was a dated forum post regarding a Facebook feature that had been discontinued. The feature being cited was like an address book feature that sought to synch the phone's address book and the Facebook Friends list and address book together. But the discussion did not quite match what I was observing so it is unconvincing that I found what the cause was.
Can anyone follow this story at all? Has her phone been hacked? Can anyone tell me a better place to post a question regarding this?

Seeking Help In Hiding Apps on Daughter's Phone Running Android 5.1.1

So I have finally given in and been assimilated by the Borg collective (or have I gone to the dark side of the force???) and bought my teenaged daughter her 1st cellphone. I haven't given it to her yet because I am trying to set it up so that I can track/monitor it and her. Is there a way I can hide apps from her & her mother (non-custodial parent), so that my tracking apps won't be changed or deleted? For example, I have Lookout installed on it, abut according to them, they don't offer a way of hiding it. With that said, I don't want her/her mother/her friends seeing it and figuring out how to delete/bypass it.
Sometimes the apps drawer will have the simple option of hiding it from there, but to completely hide it would be trickier.
Google: Google Location History
look at your own, you will probably be surprised
First things first. Do not post guides, apps or links to things that are illegal. This will get you banned without warning.
Now for the threads OP. You will not find any help here on this. As doing so is illegal in many countries in the world and as such is not allowed here.
Now I will give you some advise. From one parent to another. You can take it or leave it. Trust is not easy but it has to be earned on both parts. If you do install them and she finds out then it will not be pretty. Not to mention that if found by the wrong person can cause some major legal troubles. So the best that you can do is that if she has gotten to the point of you trusting her with a cell phone then it is time to trust her to use it properly. (Be honest with yourself at this point. I mean really honest. Kids will be kids and do the same thing we did when we were young. You cant stop it.) I found this out the hard way when my Twins got their first cell phone and I am an over protective parent, mainly when the internet is concerned. They are still kinda mad about it and went out and got their own cell phones so that it couldnt be monitored. So keep your eyes open, but dont take it over board. As I said this is just my advise and not the view of anyone other then my own.
You wont be able to install apps that wont ever be found. Most will be removed with a simple factory reset. Any that wont need root but with root they can be removed and flashing the device will remove them as well.
Thread closed

Categories

Resources