(Im new to XDA and initially posted this in the wrong place and do not know how to delete the last one. If admin deletes one because of multi posting, please keep this one up) my phone is infected with a virus that has imbedded itself in my system settings, any anti malware apps used do not detect it. when plugging my phone into my computer (for developer access) it began to install the device driver. once the "device driver" installed it took all administrative use away from me and locked all drives. I do not have ABD access or any computer access at this point. this phone has killed 3 laptops and a desktop. the only way ive been able to partially stop the virus is using a firewall to block it. since my phone is NOT rooted I cannot delete system files containing the virus. I noticed the virus will edit apps and system functions to try and hide itself (Google play services) for example. someone is using a form of remote access to control things and change settings. it is possible that someone (close family or friend) may have gotten their hands on it to install the virus. factory reset does nothing as the virus is stored in system settings. phone cannot be hooked to Pc without severe repercussions. I cannot gain root access through any rooting apps for some reason. only tried to access system settings. I HAVE TRIED EVERYTHING.
Defeated01 said:
(Im new to XDA and initially posted this in the wrong place and do not know how to delete the last one. If admin deletes one because of multi posting, please keep this one up) my phone is infected with a virus that has imbedded itself in my system settings, any anti malware apps used do not detect it. when plugging my phone into my computer (for developer access) it began to install the device driver. once the "device driver" installed it took all administrative use away from me and locked all drives. I do not have ABD access or any computer access at this point. this phone has killed 3 laptops and a desktop. the only way ive been able to partially stop the virus is using a firewall to block it. since my phone is NOT rooted I cannot delete system files containing the virus. I noticed the virus will edit apps and system functions to try and hide itself (Google play services) for example. someone is using a form of remote access to control things and change settings. it is possible that someone (close family or friend) may have gotten their hands on it to install the virus. factory reset does nothing as the virus is stored in system settings. phone cannot be hooked to Pc without severe repercussions. I cannot gain root access through any rooting apps for some reason. only tried to access system settings. I HAVE TRIED EVERYTHING.
Click to expand...
Click to collapse
First of all, you should disable autostart on your laptop/PC ( on Windows 10 press [WINDOWS] + "Setup"). There you can config autostart/actions for sd-card, mobile memory and your phone (scroll down on this page). No auto play or sync (fotos/media) for ALL devices is recommend. Don't log in your PC as admin, use a non-admin-account for testing with your phone.
Take a fresh sd card, copy the virustotal scanner on it (take it from the attachment at that post: https://forum.xda-developers.com/showpost.php?p=77053739&postcount=11), switch the sd-card to "read only" (https://www.youtube.com/watch?v=SgguVeKWCTw), put it in your phone, install the virustotal app from the sd-card, go online and let it run. So we figure (hopefull) out, which malware it is and where it is located. Write down the findings (name, location, how much scanner find it) and post it here...
Are you shure, that your ADB-SW/Drivers for the PC/Laptop are okay and clean? Plz post additional Infos about your phone...
I think, someone may have taken my phone, rooted it, and installed or is possibly using Samsung KNOX? If this were the case is there a way to break Knox without a PC? I don't want access to anything in it, just to destroy it. If this is part of the problem, just a quick theory and question I will get back to you with more information. Thank you
Defeated01 said:
I think, someone may have taken my phone, rooted it, and installed or is possibly using Samsung KNOX? If this were the case is there a way to break Knox without a PC? I don't want access to anything in it, just to destroy it. If this is part of the problem, just a quick theory and question I will get back to you with more information. Thank you
Click to expand...
Click to collapse
There are malware in the wild, which can root you phone (like "Dvmap"). In this case you only have one chance about the complete flashing of the device with a clean rom. This type of malware also infects system files, so it cannot be quarantined and removed. At the moment I don't understand why the computers you used for flashing don't work anymore. if the drivers / software are OK (do you have the right versions for windows7/8/10 and e.g. 32/64 Bit) this should not happen? Does this work with other smartphones? Normally the phone is switched off for flashing, so Android is not running. Also autostart should not work then.... that would be completely new behavior.....
"
Every device this phone plugs into, dies after Bluetooth randomly coming on
Related
Hello
I have accidently overwritten some photos on my Google Nexus 7 and would love to get them back. I`ve tried various recovery programs on Windows but none of them can read my tablet in MTP mode and I can`t connect it in mass storage mode. I have read that one way is to make a VHD image via RAW of the hard drive onto the pc, where the recovery programs can access it. The trouble is I I think have to root the tablet which i don`t really want to do
1) Is there a way of creating this file without rooting?
2) Does anyone know of a recovery program that uses MTP?
3) If I really HAVE to root, whats the least destructive way of doing this?
Any help would be greatly appreciated!!
Android operating system has changed the entire concept of smart phones and given it a new dimension. Now people know, how different is to use an Android smart phones than any other smart phones. With so many exciting new apps being developed every now and then, it is really very hard to lash yourself to use only one or two. Now, your Android phone is turned more like a storage device with lots of snapped pictures, audio & video files, latest exciting apps, mails, messages and so on. In situations like this, losing or accidentally deleting file is a common issue that most of the Android users face.
I used an app called Undelete once at it worked well.
hello,
I couldn't find any other forum to discuss about this version of Huawei mobile phone. I really need help since the last legitimate EMU update ruined the whole system and now my new mobile phone that I have never had a chance to use it is like a trash device... I hope someone here can help me to recover it since i tried all ways I found on internet.
I bought this mobile from China and bring it to Europe. Since I wanted to remove some chinese default software (that wasn't basic software but really annoying), I used an app and rooted the mobile phone. so I removed some of chinese stuff and installed some of good software. Everything worked fine and I tested skype and I had high resolution picture with 8 Mega pixel camera. I tested all its functionality and it was really good...
I noticed that there is a new legitimate update for this OS, since I still didn't have any sd memory, I couldn't have a backup of this old system and this was a big mistake...
anyway... I let it do the legitimate update for EMU... but immediately after reboot, I noticed that Camera and bluetooth are out of functions... so I first thought the problem is with bluetooth configuration but I was wrong since the internal memory was read only and no longer available.
I formatted the internal memory via computer (the part which was available) but no luck... I bought a sd card and changed the storage from internal to external but this didn't help to function bluetooth and camera...
I had a back up from /system/apps and then removed manually the bluetooth.apk and also its odex file. then restarted the system, clear dev cache and tried to install bluetooth.apk again. but I received error message and couldnt' do that. so again I copied those file back to its location.
So bluetooth turns on now, can send signal but for receiving or sending file, it fails, It can also pairs with other device.. So I thought it should be something related to permissions. I again checked the bluetooth permissioin on /etc/permissions/platform.xml and notice they are ok.
I changed the permission of storage and added the external storage to the list and added group storage_rw.
but this also didn't solve the problem with camera and bluetooth.
several times reset to factory mode didn't solve the problem...
I tried to hack the bootloader but I could not unlock it... I sent all information to [email protected] and asked them to send me bootloader password and provide them with all detail information about the device and accepted that the device is out of warrant but I received no response...
I installed "safe system remover apps" and after having backup of Gallery2.apk, I uninstalled it (it is related to camera and all gallery information)... but with no luck I could install it again...
So, I am really hopeless now since I don't know whatelse I can to do... the system doesn't functioning and I need to load on it the custom ROM but the device only can go to fastboot and cannot load the recovery mode anymore and factory reset from the UI is only reset the mobile to fastboot without doing anything else.
I tried to run the factorymode.sh from the device but I receive error messages to access some files such as bluetooth parameters/power
I couldn't myself find this file on the directory that it looks for.
I would really appreciate it if you can tell me any way that I can unlock the bootloader from the device (because outside of the device I tried different applications but with no luck...)
I have a cutom ROM for G630-U20 (not exact version for this device but almost similar) and if I can have a bootloader password I can try this one or any other customized ROM.
I would appreciate any way that you can show me to solve the problem.... either by changing permissions to solve this problem.
Thank you.
Is there any way to exit Ultra-Power-Saving-Mode while locked out of my S5 using recovery mode, installing some update, etc? I have a lot of development experience with several languages and tools, but not Android.
I've been using my fingerprint for access for over a year and now I have no idea what my alternative password is... since I've never used it regularly and can't find any record of it. I usually right document such things, but apparently not this time.
Unfortunately, this last Sunday while in Ultra-Power-Saving-Mode something went wrong with my phone and now it only asks for the alternative password... which I can't recall. I've used the Android Device Manager 4 times since then to reset the lock PUK/PIK. After each time resetting it, the lock screen does show the new greeting I set via the Android Device Manager, but it still asks for the alternative password... instead of asking for the PUK/PIK that I just reset.
I am suspecting/hoping that if I can somehow get my phone out of UPSM that the lock screen will allow me to use the reset PUK/PIK to get back into my phone.
So, I am asking if you know of any app that can be installed remotely that will allow me to get my phone out of UPSM? Or, if there is any way to get it out of UPSM by rooting the phone, but installing an ADM update, etc.
Normally I would just do a factory reset because everything is synced up to my Google account. However, apparently my SD card, which was my primary storage, filled up on May 2, so everything since then has been stored on internal memory and thus will be lost if I do a factory reset. I've taken a lot of pictures and video of my 2 1/2 yr old boy and I am trying to avoid losing everything since May 2.
Thanks for any help.
rjlyders said:
Is there any way to exit Ultra-Power-Saving-Mode while locked out of my S5 using recovery mode, installing some update, etc? I have a lot of development experience with several languages and tools, but not Android.
I've been using my fingerprint for access for over a year and now I have no idea what my alternative password is... since I've never used it regularly and can't find any record of it. I usually right document such things, but apparently not this time.
Unfortunately, this last Sunday while in Ultra-Power-Saving-Mode something went wrong with my phone and now it only asks for the alternative password... which I can't recall. I've used the Android Device Manager 4 times since then to reset the lock PUK/PIK. After each time resetting it, the lock screen does show the new greeting I set via the Android Device Manager, but it still asks for the alternative password... instead of asking for the PUK/PIK that I just reset.
I am suspecting/hoping that if I can somehow get my phone out of UPSM that the lock screen will allow me to use the reset PUK/PIK to get back into my phone.
So, I am asking if you know of any app that can be installed remotely that will allow me to get my phone out of UPSM? Or, if there is any way to get it out of UPSM by rooting the phone, but installing an ADM update, etc.
Normally I would just do a factory reset because everything is synced up to my Google account. However, apparently my SD card, which was my primary storage, filled up on May 2, so everything since then has been stored on internal memory and thus will be lost if I do a factory reset. I've taken a lot of pictures and video of my 2 1/2 yr old boy and I am trying to avoid losing everything since May 2.
Thanks for any help.
Click to expand...
Click to collapse
Only option I can think of would be to install TWRP custom recovery and use the built in file manager to rename the UPSM app. This wouldn't work if you have an ATT or VZW model, as the bootloaders are locked down, not allowing installation of TWRP, but pretty much any other carrier model should be fine.
Hey i have a terrible adware thingy on my phone, unable to remove it. No antivirus detect anything.. Its different sometimes. Before it came only when i open whatsapp now it comes anywhere. It comes 1 time a week (not often) very few times a week. Pls help.. How do i remove this????
No one knows ?
if it started just on whats app i would generally suggest it has linked to the whats app files. now it is opening more and more it has now sync with most of your files and folders.
best thing to do factory reset your device save as much as you can to SD card which you need.
1 Before you reset your Android , see options for backing up your data.
2 On your mobile device, open the Settings menu Settings .
3 Under "Personal", touch Backup & reset. You may need to enter your pattern, PIN or password.
4 Under "Personal data", touch Factory data reset.
5 Read the information on the screen and touch Reset phone.
6 If you have a screen lock, you'll need to enter your pattern, PIN or password.
7 When prompted, touch Delete everything to delete all data from your device's internal storage.
8 When your device has finished erasing, select the option to reboot your device.
Ps stay off the porn sites ^^ generally virus are downloads when visiting random links and the website installs an .apk generally the main anti virus programs are paid to miss these or dont bother because they think there a part of an .apk so do not flag up hope this helps
mgrandy1984 said:
if it started just on whats app i would generally suggest it has linked to the whats app files. now it is opening more and more it has now sync with most of your files and folders.
best thing to do factory reset your device save as much as you can to SD card which you need.
1 Before you reset your Android , see options for backing up your data.
2 On your mobile device, open the Settings menu Settings .
3 Under "Personal", touch Backup & reset. You may need to enter your pattern, PIN or password.
4 Under "Personal data", touch Factory data reset.
5 Read the information on the screen and touch Reset phone.
6 If you have a screen lock, you'll need to enter your pattern, PIN or password.
7 When prompted, touch Delete everything to delete all data from your device's internal storage.
8 When your device has finished erasing, select the option to reboot your device.
Ps stay off the porn sites ^^ generally virus are downloads when visiting random links and the website installs an .apk generally the main anti virus programs are paid to miss these or dont bother because they think there a part of an .apk so do not flag up hope this helps
Click to expand...
Click to collapse
Thx for the long help thing. But im not gonna reset because of a pop up thing i barely see anymore, but well thanks
Yeah more and more things like this are being sent through whatsapp and fb. It mostly because now alot of people from smaller/developing countries are using it while the majority of us gave it up and switched to something else.
if you would like to know where and what is pop it up try installing "QtADB" it has a program in it called "logcat" basically shows you all jobs that the phone is running you can use this to bug check where the program is running from but you may be going in circles for a few hours thats why i said just to reset. google QtADB should come up with a list of instructions to install.
mgrandy1984 said:
if you would like to know where and what is pop it up try installing "QtADB" it has a program in it called "logcat" basically shows you all jobs that the phone is running you can use this to bug check where the program is running from but you may be going in circles for a few hours thats why i said just to reset. google QtADB should come up with a list of instructions to install.
Click to expand...
Click to collapse
Lol thats some deep ****, i dont need o install as i have one built in. But not goig thru all that trouble cus of a few lines of text XDD
Hi, i need help and i hope that someone here can help me, im currently infested by a virus or malware that keeps on coming back, it never stop it always install itself
and it has the capability to
1. read phone status and identity
2. location
3. modify/delete contents
4. find accounts on device
5. download files WITHOUT notification
6.retrieve running app and run at startup
7. draw over other apps
8. read sync settings
it looks very dangerous it could steal info from my phone, based on my research those who are infected by this app also receives msgs with links and it seems that the phone itself created that message and sends to itself
right now i have no idea on how to remove this problem, also rooting is impossible currently because my phone is not supported on any rooting services and i yes i tried everything, emailed them if they supports rooting my phone and they all say no.
i was able to grab a copy of the enginee app in apk format maybe someone is interested on simulating it on an emulator (im doing it right now actually)
wow, very friendly "developers"