I have NoRoot Firewall installed. Today it started warning me that there were new connection attempts from the application sh. I looked up the IPs and they are all TOR nodes. NoRoot Firewall blocks the connections automatically but what ever it is still keeps trying to connect. I'm trying to find out what is trying to make these connections. Seeing that the connections are coming from sh I'm hoping something hasn't gotten access to root and is trying to send out personal data. My phone is not rooted. I'm running Android 4.4.4 . It started happening after installing a few updates from the play store so it could of come in then.
Does any one know how I can find out what program is trying to connect to these TOR nodes without having my phone rooted? (and no I do not have any TOR related apps installed)
Related
Hi all, I've got a bit of a problem. After finally managing to root, hack bootloader and install MiniCM7(latest) I installed Barnacle Wifi tether and it was all working fine. Now, I don't remember exactly why now but while using root explorer I cleared the Dalvik cache in /cache and /data. After doing that and going back to the menu every app I had open started throwing up errors which was to be expected as i'd just deleted all the settings or whatever for them. anyway, I tried to reboot my system and it failed to boot so I had to re-install through CWM.
Ever since then i've not been able to get barnacle or any other wifi tether app working properly! What happens is that it installs fine, asks for SU permissions and when I click start it seems to be running fine. When I try and connect on my PC I see Barnacle and am able to connect but as soon as I do it kicks me offline again, the other wifi apps don't even connect or show connected but I get no access!
I've tried a few different custom roms but it's much the same really. So far i've managed to wifi tether through the standard wifi tether in settings but it's not the same and seems a lot slower than usual, plus I want to be able to download on my PC and use Android market at the same time and I can't do that with the standard SE tethering options. I've also tried many different suggestions to get wifi/tethering back through various threads in this forum and others but to no avail so far.
So, I'm wondering if anyone might know what I have to do to get it all up and running again as at the moment i'm tethering through USB and using easy tether as it seems faster and more stable but i'd rather be free of wires and be able to use Barnacle again.
Thanks in advance for any suggestions, they'll be much appreciated.
in to barnacle wifi tether app
go into settings
change Channel to 11
Skip wpa_supplicant (tick it off)
DHCP>Gateway = make sure your default gateaway is the same as your routers gateaway normally its 192.168.1.1
try those settings and see if that works
I start orbot to log onto tor network.. Logs me onto the Tor network, but it refuses to resolve any .onions. Same thing is happening on my nexus7... Im usin cw11 nightly... I know im on tor cause I check to see.... but getting to the deep web I get an error:
WARN: Resolve requests to hidden services not allowed.
Failing
Every other site can work... Did I screw up a hosts file or something?
Any help would be appreciated. Thank you
Just want to say I have the exact same problem. Not with Firefox, not with orbot, I can connect tor fine (check.torproject.org says I'm connected), but I can't open any .onion site. It says "name not resolved, or something...
Sent from my Galaxy W using Tapatalk
If you guys are still experiencing these problems, you could try Anonify: goo.gl/6KKWI2, which does full transparent proxying without root and supports .onion addresses. If your samsungs are running android < 4.3 it may not work. It's also not free, but you could test and see if it can resolve .onion addresses. If it can, then it's some other issue. Otherwise, maybe posting the full logs could help.
Hello xda-Developers, got a weird bug incoming (once again):
I am on NeatROM 5.9 (4.1.2 JellyBean) with Apolo Regular Kernel and just wanted to download AdFree via Dolphin Browser, but no matter what website I want to visit; it always tells me that I have got a connection error. After I downloaded AdFree via my PC and wanted to check the Host files, it got stuck there as it wouldn't do anything in the loading screen. Other apps like AdAway got the same error (not wanting to download host files), but apps like Google Play, Facebook, WhatsApp or others work fine. This problems no matter if I am connected with Wi-Fi or with Mobile Data.
My question is: How can I get back my internet connection?
EDIT: Found the problem, DroidWall was blocking these apps from connecting. Just activated then deactivated the firewall and everything worked out
I am on verizons network (Trying to use wifi) I own the Droid Bionic with firmware 4.1.2.
Well today I rooted, everything was working perfectly. However after 2-4 hours after rooting, my wifi went from connected to in range and my play store wouldnt connect at all, using wifi or data. I figured the root was messing it up so I did a factory reset to help get rid of it, root seems to be gone, but now I cant sign up/in the google play store. I get an error message saying, " Cant establish a reliable connection to the server. This could be a temporary problem or your android device may not be provisioned for data services. If it continues, call customer care." I have no idea what this means and I am getting to annoyed, I got this phone yesterday 5/16 today is the 17th... My wifi bar is gray which means "in range"when it should be blue "connected" When I look at my wifi settings my internet says it is connected however. Any ideas at all???? Please help!! Also I did change date and time to moscow to try and use freedom for app purchases, I changed it back to automatic date, time, and timezone.
MyNightTerror said:
I am on verizons network (Trying to use wifi) I own the Droid Bionic with firmware 4.1.2.
Well today I rooted, everything was working perfectly. However after 2-4 hours after rooting, my wifi went from connected to in range and my play store wouldnt connect at all, using wifi or data. I figured the root was messing it up so I did a factory reset to help get rid of it, root seems to be gone, but now I cant sign up/in the google play store. I get an error message saying, " Cant establish a reliable connection to the server. This could be a temporary problem or your android device may not be provisioned for data services. If it continues, call customer care." I have no idea what this means and I am getting to annoyed, I got this phone yesterday 5/16 today is the 17th... My wifi bar is gray which means "in range"when it should be blue "connected" When I look at my wifi settings my internet says it is connected however. Any ideas at all???? Please help!! Also I did change date and time to moscow to try and use freedom for app purchases, I changed it back to automatic date, time, and timezone.
Click to expand...
Click to collapse
If your root is gone after a factory reset, then you weren't rooted correctly in the first place (edit: if your rooting process involved downloading SuperSU or the equivalent through the Play Store, then just sideload the apk since you can't get to the Play Store as the SU binary will still be installed and that combined with the re-installed app should establish root access again). A factory reset does not change your rooted status. As far as the Google Apps not working...it's most likely due to a modded hosts file. Either from an ad blocking program, or the Freedom Play Store patcher. Re-root and delete the hosts file in /system/etc and reboot.
I was rooted before I am not anymore says root checker. I used this method here http://forum.xda-developers.com/showthread.php?t=2256439
When I run the program to try and root again it says invalid IP address now. Idk what's going on with this phone now
MyNightTerror said:
I was rooted before I am not anymore says root checker. I used this method here http://forum.xda-developers.com/showthread.php?t=2256439
When I run the program to try and root again it says invalid IP address now. Idk what's going on with this phone now
Click to expand...
Click to collapse
Like I said, you just need to install the SuperSU app. The binary has to already still be in /system/bin or /system/xbin, whereever that one installs it. So once you install the companion app, it should recognize that the binary is installed and provide you with root access again.
(Im new to XDA and initially posted this in the wrong place and do not know how to delete the last one. If admin deletes one because of multi posting, please keep this one up) my phone is infected with a virus that has imbedded itself in my system settings, any anti malware apps used do not detect it. when plugging my phone into my computer (for developer access) it began to install the device driver. once the "device driver" installed it took all administrative use away from me and locked all drives. I do not have ABD access or any computer access at this point. this phone has killed 3 laptops and a desktop. the only way ive been able to partially stop the virus is using a firewall to block it. since my phone is NOT rooted I cannot delete system files containing the virus. I noticed the virus will edit apps and system functions to try and hide itself (Google play services) for example. someone is using a form of remote access to control things and change settings. it is possible that someone (close family or friend) may have gotten their hands on it to install the virus. factory reset does nothing as the virus is stored in system settings. phone cannot be hooked to Pc without severe repercussions. I cannot gain root access through any rooting apps for some reason. only tried to access system settings. I HAVE TRIED EVERYTHING.
Defeated01 said:
(Im new to XDA and initially posted this in the wrong place and do not know how to delete the last one. If admin deletes one because of multi posting, please keep this one up) my phone is infected with a virus that has imbedded itself in my system settings, any anti malware apps used do not detect it. when plugging my phone into my computer (for developer access) it began to install the device driver. once the "device driver" installed it took all administrative use away from me and locked all drives. I do not have ABD access or any computer access at this point. this phone has killed 3 laptops and a desktop. the only way ive been able to partially stop the virus is using a firewall to block it. since my phone is NOT rooted I cannot delete system files containing the virus. I noticed the virus will edit apps and system functions to try and hide itself (Google play services) for example. someone is using a form of remote access to control things and change settings. it is possible that someone (close family or friend) may have gotten their hands on it to install the virus. factory reset does nothing as the virus is stored in system settings. phone cannot be hooked to Pc without severe repercussions. I cannot gain root access through any rooting apps for some reason. only tried to access system settings. I HAVE TRIED EVERYTHING.
Click to expand...
Click to collapse
First of all, you should disable autostart on your laptop/PC ( on Windows 10 press [WINDOWS] + "Setup"). There you can config autostart/actions for sd-card, mobile memory and your phone (scroll down on this page). No auto play or sync (fotos/media) for ALL devices is recommend. Don't log in your PC as admin, use a non-admin-account for testing with your phone.
Take a fresh sd card, copy the virustotal scanner on it (take it from the attachment at that post: https://forum.xda-developers.com/showpost.php?p=77053739&postcount=11), switch the sd-card to "read only" (https://www.youtube.com/watch?v=SgguVeKWCTw), put it in your phone, install the virustotal app from the sd-card, go online and let it run. So we figure (hopefull) out, which malware it is and where it is located. Write down the findings (name, location, how much scanner find it) and post it here...
Are you shure, that your ADB-SW/Drivers for the PC/Laptop are okay and clean? Plz post additional Infos about your phone...
I think, someone may have taken my phone, rooted it, and installed or is possibly using Samsung KNOX? If this were the case is there a way to break Knox without a PC? I don't want access to anything in it, just to destroy it. If this is part of the problem, just a quick theory and question I will get back to you with more information. Thank you
Defeated01 said:
I think, someone may have taken my phone, rooted it, and installed or is possibly using Samsung KNOX? If this were the case is there a way to break Knox without a PC? I don't want access to anything in it, just to destroy it. If this is part of the problem, just a quick theory and question I will get back to you with more information. Thank you
Click to expand...
Click to collapse
There are malware in the wild, which can root you phone (like "Dvmap"). In this case you only have one chance about the complete flashing of the device with a clean rom. This type of malware also infects system files, so it cannot be quarantined and removed. At the moment I don't understand why the computers you used for flashing don't work anymore. if the drivers / software are OK (do you have the right versions for windows7/8/10 and e.g. 32/64 Bit) this should not happen? Does this work with other smartphones? Normally the phone is switched off for flashing, so Android is not running. Also autostart should not work then.... that would be completely new behavior.....
"
Every device this phone plugs into, dies after Bluetooth randomly coming on