Moto E 2015 Stagefright - E 2015 Q&A, Help & Troubleshooting

Hello,
while googling with my device "wer benutzt noch icq" I got from a google link to a seemingly harmless website "forum mobilegeeks de" redirected to "myfilestore com" and then immediately to "www saftymedias net" where I got a popup, saying I was infected and I should install some app, which I of course did not.
I Have the XT1524 and Android 5.0.2 and the Zimperium Stagefright Detector says my device is Vulnerable to 5 of the 9 CVEs.
Could this website have used one of this exploits and got root access and installed some spyware/malware etc. on the device? Maybe even in the system files, so that resetting wont help?

WernerMartin said:
Hello,
while googling with my device "wer benutzt noch icq" I got from a google link to a seemingly harmless website "forum mobilegeeks de" redirected to "myfilestore com" and then immediately to "www saftymedias net" where I got a popup, saying I was infected and I should install some app, which I of course did not.
I Have the XT1524 and Android 5.0.2 and the Zimperium Stagefright Detector says my device is Vulnerable to 5 of the 9 CVEs.
Could this website have used one of this exploits and got root access and installed some spyware/malware etc. on the device? Maybe even in the system files, so that resetting wont help?
Click to expand...
Click to collapse
You should be fine, that happens all the time with some websites. One thing goes to another and pretty soon, you get an annoying popup saying that your phone is infected with some sort of virus and your battery is infected. (I know, who ever made the popup was routing it towards people who don't know too much about the phone but still, really an infected battery?) Aside from that, you should be fine, but there might be some adware on your phone, so just check alright.
Don't watch videos on shady sites.
(Edit: If something bad really did happen, reflash the phone with maybe a custom ROM, TWRP is out for the Moto E Second gen so yay for CyanogenMod)

Related

Galaxy Core Prime SM-G3606

Hi guys, i recently bought this phone as my iPhone is malfunctioning. I was pretty contented with the phone overall. However, one aspect of it really ticks me off which is the RAM. Apparently, there's a constant 100mb-0mb Ram available for usage. So i ended up going online and search on how to speed up the RAM. I found a link that says by having a Custom ROM downloaded, it would remove all the bloatware and such. After progressing with the patches and installations, i was quite happy with it! Until the part where i couldn't access the Google Maps,Google Play store and every single time an error will pop out saying 'Google play services has stopped working'. I had work today and i would definitely need to use my phone to get me around (Delivery rider) therefore, i decided to call my supervisor and told him i had some issues with my phone. Earlier this morning, i've tried rooting using Kingo Root/Root Genius but to no avail. Both stucked in the process of it. I've tried flashing some other Core Prime's model ROM hoping that it would work. But guess what, it didn't . Now i have my Core Prime stucked at Odin Mode saying 'could not do normal boot'.
Any fellow experts willing to help me on this?
P.S I got to know that my phone was from an import after trying the factory reset. It's from China Unicom.
Status Binary: Custom
System Status: Custom
Everytime i tried to software update, it say 'The phone has been modified bla bla bla'
rahimaris said:
Hi guys, i recently bought this phone as my iPhone is malfunctioning. I was pretty contented with the phone overall. However, one aspect of it really ticks me off which is the RAM. Apparently, there's a constant 100mb-0mb Ram available for usage. So i ended up going online and search on how to speed up the RAM. I found a link that says by having a Custom ROM downloaded, it would remove all the bloatware and such. After progressing with the patches and installations, i was quite happy with it! Until the part where i couldn't access the Google Maps,Google Play store and every single time an error will pop out saying 'Google play services has stopped working'. I had work today and i would definitely need to use my phone to get me around (Delivery rider) therefore, i decided to call my supervisor and told him i had some issues with my phone. Earlier this morning, i've tried rooting using Kingo Root/Root Genius but to no avail. Both stucked in the process of it. I've tried flashing some other Core Prime's model ROM hoping that it would work. But guess what, it didn't . Now i have my Core Prime stucked at Odin Mode saying 'could not do normal boot'.
Any fellow experts willing to help me on this?
P.S I got to know that my phone was from an import after trying the factory reset. It's from China Unicom.
Status Binary: Custom
System Status: Custom
Everytime i tried to software update, it say 'The phone has been modified bla bla bla'
Click to expand...
Click to collapse
Do you have Cricket carrier by chance? I'm trying to find a stock or mod ROM for my sm-g360az ( Cricket Galaxy core prime) and the closest thing in official updates I could find is the sm-g3606 CHU region.. So I know my phone was made in China but I'm curious if that stock would work.

Lenovo Lemon 3 - irritating problems with stock ROM

Hi!
I'm new on XDA, so I'm sorry if the thread is placed in wrong subforum - if it is, I'm asking mod to move it in more proper place.
I bought Lenovo Lemon 3 - it was advertised as Vibe K5 Plus, but apparently the seller wasn't that reliable as I thought. As far as I know, the differences beetwen these models are little or none, but I have pretty big problems with the phone.
First of all it has some preinstalled software, which isn't in Play Store and some of them I can't even find in the net. The apps I would like to get rid off are KingRoot, MaxxAudio and SecurityIT. I successfully managed to disable MiBrowser - with help of KingRoot tool Purify actually. I tried to disable SecurityIT also, but if I do that I can't enter Settings->Apps. When I try the com.android.settings is stopped and it's not working till i enable SecurityIT again.
Second of all is that process com.android.phone is stopping randomly. Sometimes I click "ok" and I it starts working again. But sometimes it keeps crashing until I restart the phone. Since it's a dual sim phone and I'm using only one sim I thought that maybe this is causing a problem, but inserting second card wouldn't work, so currently I have no idea what is causing the problem. I tried cleaning cache and appdata with no effect. If the process is crashing and somebody will call - the phone restarts itself when I try to answer.
Thirdly it's hot. Even if I'm not doing anything and all apps are off and Im charging the phone it sometimes says that it can't be charged because of too high temperature on battery. Sometimes it works fine, but sometimes it's too hot too touch and I don't know why.
Oh, and one more thing. Something is installing random software. It looks like every time I open Chrome something is opening new tab and redirecting to PlayStore. I am trying to close these tabs while they're loading, but sometimes it loads too fast. Every morning I uninstall some new app, which is apparently installed by night. And those apps aren't added to my Play Store Account. I have disabled unknown sources, but I can see that phone is checking for updates around 2 a.m - so maybe those apps are from there - but I can't see any possibility to disable auto-updates. I have disabled auto updates in Play Store and I have "Lenovo Enhanced Experience" unchecked. Most of apps I installed from Play Store are games I had on the previous phone so I am sure they're not dangerous. Any ideas to prevent the installation of this unwanted software will be appreciated.
Since I used KingRoot to disable MiBrowser I apparently rooted it, but I was reading that this works only with KingRoot installed and with internet connection. And it's sending some data to China, which is not nice. RootChecker says it's rooted.
Lenovo Launcher it's not great either, I downloaded Lollipop Launcher from store and it works fine, but I had to block Lenovo Launcher from autostart, because it was very irritating and was enabling few times.
I am living in Europe so I was thinking is it possible to put on this phone Lenovo Vibe K5 Plus Stock ROM? Or is it this "trashy" like the one I have? I really like specs of the phone and I don't wanna return it, but I don't like the software behavior. Can you tell me what I can do to improve this? I don't care about warranty and I would like to have pure, non trashy Lollipop, so if it is possible somehow I would be glad for any help.
Thank you in advance for any help!
Lenovo Lemon 3 K32C36 > Cyanogenmod 14 - 7.1.1: SUCCESS
Hi
Did not know where to post this, I was not allowed to post in developer forums:
For those unlucky enough to have bought a Lenovo Lemon 3, I offer hope. My daugther's 'Lemon' now runs cyanogenmod 14 near flawlessly.
Here's what finally did it.
1st you have to unlock the bootloader. I found this page, google translated it,
http://4pda.ru/forum/lofiversion/index.php?t717648-420.html
and near the bottom is this link to a 'one-click bootloader unlocker'
http://lenovo-forums.ru/applications/core/interface/file/attachment.php?id=56376
[All this is similar to the Lenovo unbricking described here:
https://forum.xda-developers.com/k5-plus/how-to/unbrick-vibe-k5-plus-qfil-qpst-method-t3467830
but a lot of that is not what you need now.]
You have to install and run QPST from this on a Windows machine, and the Lenovo and Qualcomm USB drivers and the Visual C thing too to set it up.
I fiddled for a while but eventually got QFIL to recognize the Lemon. Keep in mind Win is pickier about USB cables than Linux.
Following instructions carefully, that one click then worked!
I moved back to Linux and adb and did the second part (pasting instructions from the Win .bat file into a root terminal). Sure enough, when I booted into recovery I had TWRP! But it showed no files on the Lemon and said there was no OS there! Nevertheless I was able to boot back into the awful K32C36 system with no problem.
So I went back to adb and did it again, but this time from the info and links on this page - but I did not at that time see the need to root.
https://forum.xda-developers.com/k5-plus/development/recovery-twrp-3-0-2-0-lenovo-vibe-k5-t3391100
Beyond all expectation TWRP then booted and all was visible.
I then picked this ROM page because someone had wrote that they had it working on K32C36
https://forum.xda-developers.com/k5-plus/development/unofficial-cm14-lenovo-k5-k5-plus-t3478288
to get this
http://moto.shreps.fr/Lenovo Vibe K...cm-14.x/cm-14.1-20161213-UNOFFICIAL-A6020.zip
Then onto SD card with it and pico 7.1.1 gapps
Install with TWRP (after backing up lame old ROM and wiping system, data, cache, as advised).
Long wait during 1st new system boot (I thought it was defeat) -- but comes the little blue man bringing very good Nougat.
Hope someone gets helped here .

Timmy M20 Root guide/ROMs needed

I recently got a Timmy M20 but it comes with a pesky Trojan virus embedded in the youtube system app (Malware bytes told me). I think the best way to deal with this would be to in install a new ROM. The problem is it's relatively new/uncommon phone and I can't find any resources to help me. Unfortunately as far as I know I can't even root it as it's android 6.0
If anyone has any of the following it would be of great assistance:
Stock ROM for Timmy M20
Custom ROM for TIMMY M20
third party recovery compatible with this phone
advise on viability of porting a ROM from another similar phone(although I think I need the stock ROM to do this?)
Any advice on dealing with this is appreciated. My ultimate goal is to remove the malware but I would also like to install a new ROM for fun/learning.
Specs:
Model: M20
Manufacturer: Timmy
Android Version: 6.0
CPUABI: armeabi-v7ar
Hardware: Mediatec mt6580
Kernel: 3.18.19+
Paddy4 said:
I recently got a Timmy M20 but it comes with a pesky Trojan virus embedded in the youtube system app (Malware bytes told me). I think the best way to deal with this would be to in install a new ROM. The problem is it's relatively new/uncommon phone and I can't find any resources to help me. Unfortunately as far as I know I can't even root it as it's android 6.0
If anyone has any of the following it would be of great assistance:
Stock ROM for Timmy M20
third party recovery compatible with this phone
advise on viability of porting a ROM from another similar phone(although I think I need the stock ROM to do this?)
Any advice on dealing with this is appreciated. My ultimate goal is to remove the malware but I would also like to install a new ROM for fun/learning.
Specs:
Model: M20
Manufacturer: Timmy
Android Version: 6.0
CPUABI: armeabi-v7ar
Hardware: Mediatec mt6580
Kernel: 3.18.19+
Click to expand...
Click to collapse
I have the phone and having same problem also. I have searched online for solution but all to no avail. I hope someone here at XDA can truly help out.
No root success
Hi
I'm a complete beginner, prompted by the infuriating malware on my Timmy M20 to try and find a solution.
I've tried Framaroot, didn't work. I've tried downloading Kingoroot to my phone, and also to my laptop and connecting with USB. That didn't work either.
I've subscribed to this thread in the hope that somebody somewhere will solve it.
In the meantime I will keep looking, trying & pestering my techy friends.
I did, however, find a stock Rom - on shareaz.us - downloaded to pc, scanned it for viruses (seems to be clean), so it's there if I need it.
Bump - would also like root guide for timmy m20 pro and timmy m12. Malware installed by default. Not good.
bump!
Same problem here.... got the "stock ROM" from needrom.com. It has even more malware according to Malwarebyte.
Bump - same issue.
I managed to root the phone. Here's what I did (do it at your own risk!)
1 Unlock bootloader.
You need to enable USB debugging and OEM unlocking on your phone
Boot the phone into fastboot mode. Switch off. Vol up & power together.
The phone will give you three choices (in very small fonts so maybe magnifying glasses called for)
Middle option should be fastboot
Choose it
On your pc, you need to have installed fastboot. Google if you have not done so.
On pc, command prompt;
fastboot flashing unlock (everything will be wiped; if this does not work, type fastboot help for a list of commands)
boot up the phone by taking out the battery and switch on as normal. Should take a long time. Everything is wiped
2. Install TWRP
get the file recovery_timmy_m20_pro.img google drive 0Bwq1wxJqkB4nbjZzb3huWF9fZ0U (I cannot post links )
boot the phone to fastboot mode as above
fastbbot flash recovery recovery_timmy_m20_pro.img
Once it's done reboot the phone into recovery mode (instead of middle option in fastboot, it's the first option)
You should hopefully have TWRP
3. Install SuperSU
download latest SuperSU zip file
copy to sdcard.
insert sd card
boot phone into TWRP
install superSU.
Hopefully you are done
---------- Post added at 09:33 AM ---------- Previous post was at 09:30 AM ----------
Forgot to mention. After rooting, I cannot uninstall Youtube and the other malware as it cause instability. I get "Unfortunately youtube has stopped working" error repeatedly.
Still searching for solution.
terence8888 said:
-snip-
Click to expand...
Click to collapse
Thank you for this! I managed to find a solution to prevent the ads from popping up. I use an app called noRootFirewall and it blocks the virus's access to the internet (preventing downloads of ads, etc).
I will try your root solution now, this phone has half decent hardware so it would be good to actually get it running without malware at some point. Maybe try installing Android 5.0 somehow?
Timmy M20 TWRP?
http://www.timmymobile.com/en/
Shenzhen Hengyuan Dingye Technology Development Co., Ltd.
M20 20160925 171115 in "settings" app, APK:RepMetagen, Android:Triada-QJ says Avast. Cannot be removed.
Sends some data to aliexpress.com says iptraf on my router.
Seller is FUDISI Tech via amazon.de, support says backup and reinstall using this link:
https://mega.nz/#!k7ohibCQ!iIdGvs4TktRnRCHUiGLbbFaRTGX72ae9Hu0Wm_IZkUk
M20_20161121-151942.zip
md5sum M20_20161121-151942.zip
6792c782647faa8629a2399e7d88c454 M20_20161121-151942.zip
A ROM.
Oh dear:
$ clamscan -r --no-summary --infected --bell --detect-pua=yes --detect-structured=yes M20_20161121-151942
M20_20161121-151942/MultiDownloadTool_V1604.zip: Win.Trojan.Ramnit-7820 FOUND
...
SPMETA_DLL.dll: Win.Trojan.Ramnit-7820 FOUND
SPMultiPortFlashDownloadProject.exe: PUA.Win.Packer.BorlandCpp-9 FOUND
Providing (espionage) malware is a "federal offense" in all countries, I suggest we contact the authorities to take appropriate action.
I had the "Tube has stopped working" screen blocker that was driving me crazy. BUT it turned out NOT to be malware.
When I first received the phone, I turned tube OFF, because I do not use it. THAT is the problem. I turned tube back on after a hard reset, and problem solved. And, yes, even doing a hard reset is a PITA, but it can be done even with the screen blocker, if your fingers are nimble enough to (1) hit the OK button on the screen blocker, and (2) immediately hit the "Reboot OK," button on the box under it, during the half-second that the original screen blocker is recycling. It took me about 40 tries, but I no longer have the problem reported above as long as I leave tube "enabled." Hope this help. I was about to process Timmy through the garbage disposal before I figured this out.
Avast reported Triada trojan has downloaded one more module and "gstore" malware, blocking the phone completely until reboot.
I'll trash this phone and ordered one with OTA Android security patch support.
I just had some problems with my M20 Pro too. I've bought the phone in early july 2017 with a software released 2016/10/29. I've checked for updates several times but the system said that this was the most recent version. After 4 weeks trouble started...
First Google started to warn about the youtube app which couldn't be updated from the app store. Deactivating this app lead to a never ending "youtube was stopped" message loop.
A few days later my wifi switched off randomly and full screen ads appeared where they shouldn't have. Time to do a malware scan... I chose the 30-day-trial version of Malwarebytes and it found 5 trojan infected apps (incl. youtube). But without root they couldn't be deactivated or deinstalled.
After a while Malwarebytes reported that a file called fotaupdate.apk was ready to install, so I installed it. I don't know if this file was already present on the system or if Malwarebytes downloaded it. A few seconds after the installation a download of a system update (2016/11/29) started and installed. The malicious youtube app was still present, but it was the only infected app left. Soon a second update (2016/12/05) showed up. This time the system was free of malware after installation. Shortly after a last system update (2017/08/14) arrived and android is pretty up-to-date on my M20 Pro now.
So, before messing around with rooting and firmware flashing, try to get the ota update to work and install the available system updates.
I received the phone today. It has 2016/10/29 firmware installed, with youtube app infected issue
However when I check firmware update, it says that system is already updated.
Is there a way to force the update or to install the newest one manually?
As said by chameo in his post, the latest should be dated 2017/08/14
thank you
cinxda said:
As said by chameo in his post, the latest should be dated 2017/08/14
Click to expand...
Click to collapse
For M20 PRO Model.
And this dated firmware ROM may contain latest malware not detectable by virus scanners yet,
be careful.
Chameo said:
After a while Malwarebytes reported that a file called fotaupdate.apk was ready to install, so I installed it. I don't know if this file was already present on the system or if Malwarebytes downloaded it. A few seconds after the installation a download of a system update (2016/11/29) started and installed. The malicious youtube app was still present, but it was the only infected app left. Soon a second update (2016/12/05) showed up. This time the system was free of malware after installation. Shortly after a last system update (2017/08/14) arrived and android is pretty up-to-date on my M20 Pro now.
Click to expand...
Click to collapse
I wonder if sharing "fotaupdate.apk" file by Chameo could unlock updates on our devices. If possible, we should give a try.
cinxda said:
I wonder if sharing "fotaupdate.apk" file by Chameo could unlock updates on our devices. If possible, we should give a try.
Click to expand...
Click to collapse
NO, not from untrusted sources, has the package been verified or has s/he "unknown sources" enabled?
Besides the TIMMY M20 PRO is a completely different model, this package may brick the M20.
@woprr
Wow, that's the pessemistic view of life, eh? With the 2016/10/29 stock software version for the M20 Pro we are already stuck with a malware infected system. It can only get better.... not all of us are fond of flashing firmwares with adb, fiddeling around with command lines or rooting devices with TWRP.
Maybe you have noticed that already the software from 2016/12/05 was malware-free. If there had been malware it would have been discovered within half a year, I guess. But yes, there's always some risk left...
By the way, I doubt that any manufacturer in this highly competitive market can afford to release malware infected software all of the time.
You are right, the M20 and M20 Pro are different models with different firmwares. I've posted my experience in this thread because there are also some M20 Pro owners here, searching for a solution for their problems.
I've found a fotaupdate.apk on a SD card I've used with my M20 Pro some time ago. I've sent it to cinxda to try if it works. We'll see...

unrooted lenovo tab 2 10-70 - unable to update OS

The 5.0.1 Android unrooted tablet was sent to a service lab, where it came back from having its motherboard replaced, when for some reason its OS was downgraded to Android 4.4.4. Since then some apps do not work, such as TV apps (that worked fine before) - the tab cannot play movies and shows on those apps, although those apps are supposed to work on Android 4.3 and so on. Moreover, since then I cannot update my OS, tab saying that I have the latest version (which is obviously not true) and when going to the Tool Kit saying that "An error has encountered when installing the recommended incremental update pack". Factory Data Reset did not do anything. According to the Root Checker, the device was not rooted, although it seems to me that the lab has messed with my OS. What do you think? The lab says though that my OS is "beyond their control" and that they could not have touched it, just replaced the motherboard with an original one, suggesting me "just to wait" for the update to come out, which I am sure will never happen. Any suggestions how to solve this? Do you think that the lab has messed with my OS or what do you think happened here? Thanks a lot, guys!
Can anyone answer that?
Can anyone answer that please?

le eco l2 help

ok savvies
i've got this phone from le eco.
it was advertised as le eco le 2 pro.
as i bought it "slightly used", although the seller had gone back to "factory settings", i still did a reset myself.
so it started....
google wouldn't let me in as a previous account needed to be logged in first. a very annoying self replicating popup that hogged the phone and rendered it unusable.
so i go into twrp. (already intalled, some 3.2....version)
i wiped everything. had also ticked "system". so i was left without an operating system. just twrp that offers no otas...
i must have tried since then almost every rom that was flying around here.
to my surprise, the most appraised roms, those who surprisingly had everything working and had received endless thanks, had dead links. so untraceable.
i pestered google. having two browsers simultaneously open and searching with over 20 pages each.
downloads flooding.
i managed to download a few roms.
adb sideload would fail sideloading them. most of the roms, although marked as "stock, official roms"m they ended up with either code /, or simply could not be read. no efforts made seemingly.
some of these roms, would produce other codes of failure, from code 7 to code 11.... some would even leave the message "could not install over newer rom", although everything was wiped.
some roms would leave the message "this rom i8s x2, this device is x620", some would leave nothing at all...
i managed to sideload and boot on lineage v 14. installed "my device". i get the reading of my device and it was indeed an x620. or so it reported.
and at the "features" list, i get "nfc supported"(amongs others)
lineage v14, despite all the praise around, is a crappy, almost no operating system at all.... so i got rid of it.
i managed to install a different version. an official stock... i did this by installing a different version of twrp. some 3.0..something.
now i got orange state. but who cares. it boots.
yet, there's bugs. although official. the remote controller is now in an endless loop of nag and moan about not working.
installed "my device" again... now my phone is an x625 and nfc NOT supported.
does anybody know what is going on? first they wouldn't sideload because my device was x620... now i sideloaded x625 and my phone model changes altogether?
theres only a le logo at the back of the phone. there's no other details at all. no writings or numbers or anything.
the only thing unchanged happens to be the serial number which makes google scratch its head over finding absolutely nothing regarding it.
can anyone help me?
i just want to revert it back to factory setup however crappy their software be.
thanks in advance.

Categories

Resources