Develop Bugs

HUGE security flaw

Anyone else uneasy that no matter what if someone finds your phone they can hook up to pc and have access to your internal storage?? Is there no way to change this and have a charge only option under usb?

If someone has your phone plugged into their computer, you either:
1) Are with them
2) Had your phone stolen.
If you have your phone stolen, there's nothing stopping them from battery pulling, going into recovery, and getting all your data from there (granted you're rooted).

Still ide rather not anyone including nosey friends get the pics of my ding dong off my phone with out my permission...
All kidding aside you see my point right

It's very simple, set a passcode and MTP does not show any data until the phone is unlocked.

beast67x said:
Still ide rather not anyone including nosey friends get the pics of my ding dong off my phone with out my permission...
All kidding aside you see my point right
Click to expand...
Click to collapse
I typically prefer nekkids of my gf on my phone vs sausage but to each their own

This is why you should likely have the ability to remote-wipe your device (via Software), and why you need to ponder very carefully what data you keep on your phone. The easiest way to avoid your friends finding pictures you'd rather they don't see is not to keep those pictures on your phone in the first place.
There are encryption-based Lockboxes which function on the Galaxy Nexus, and it does actually support Full-Disk encryption (with many bugs and downsides), but in short, you need to assume that anything on your phone is accessible to anybody who cares enough to take it from you. Remember, security never buys you safety against others getting your data, it just gives you time to respond before they can get access.

Wow how foolish of me. I totally didnt realize and i googled this an apparently no.one else did.either thanks

sluflyer06 said:
I typically prefer nekkids of my gf on my phone vs sausage but to each their own
Click to expand...
Click to collapse
Hahaha its my own sausage i swear.
Seriously though the guy above is correct. Locked my phone, plugged in, and no data shows.until i swipe and enter pin

There are also apps you can download to lock certain apps you don't want opened. (Gallery for instance)
I agree though, the safest and best bet is to set a password on your phone and be done with it!

beast67x said:
Hahaha its my own sausage i swear.
Seriously though the guy above is correct. Locked my phone, plugged in, and no data shows.until i swipe and enter pin
Click to expand...
Click to collapse
A setting for my Exchange server for my company that i work for reminds me each time setup my phone that they can remote wipe my phone. As can i From our Web Access portal for email. Just another option.
Will

Mine doesn't work that way.
I have a pattern set on my galaxy nexus. If I connect it to my computer the "internal storage" doesn't show up until I unlock the phone.
However, if you lost your phone, there are numerous ways to get your data. This applies to most phones out there
Sent from my Galaxy Nexus using XDA App

move the pics you don't want people to see into a hidden folder then they wont show up in the gallery

I have "gotya" installed. Not only will send me the gps location of my ohone command but also take a pic of the peraon using the phone when.an incorrect pin is entered. Screw wiping my phone ill just go get it myself

I could really use some advice from a technical standpoint please

Hi everyone. I recently got a T989 from Telus, to which I used an Ebay unlocked. Now first things first....I have never had my email account or any account hacked. My computers in my home are virus free, so I have eliminated them. Within a week of using my T989 with Mobilicity, my gmail account (which my phone knows the password to) was hacked and logged in by someone in the U.S (Gmail shows IP logins) and they spammed my entire contact list. Now I am trying to think of ways this could have happened, but I honestly think the phone may have a keylogger or something on it.
Here are the steps they had me carry out (and it did unlock the phone immediately).
Download and install necessary files
http://www.UnlockClient.com/SAMSUNG_USB_Driver.exe
http://www.UnlockClient.com/dotNetFx40_Full_setup.exe
Very simple procedure:
1. Enter your paypal email or start in demo mode
2. Type *#7284# and select USB - Modem
3. Type *#9090# and select [1] USB
4. Exit service menu and reboot the phone
5. Once phone rebooted connect the phone and computer
6. Wait until all drivers are installed
7. Click "Unlock" button
8. Enter 00000000
Here is the auction for this unlock I got. http://www.ebay.ca/itm/280852210909?ssPageName=STRK:MEWNX:IT&_trksid=p3984.m1497.l2649
Is there anything there that I should worry about? Or is there any possibility they have someone routed everything I do on my phone through them? I am seriously worried about my online banking information and such. Thank you very much in advance.

not sure if serious?
- taz b.

Why wouldn't I be serious? Isn't this a legitimate conclusion? I don't have a lot of posts but I have been lurking for years. I am serious however.

Unlocking phone is really a matter of entering a simple code in one step. All your steps there including entering your PayPal account, connecting USB?? and installing drivers are unneccesary and sketchy at best.
I've seen some reputable phone unlocking sites but definitely never seen something like that from eBay.
If I were you I would try a darkside full wipe and go back to whatever was at a safe state before.
Sent from my SAMSUNG-SGH-T989 using XDA

Oh I have wiped many times. The problem is that I don't think any of that wipe stuff will go back to factory settings in those *# menus or for the modem settings etc.
I know an unlock code is all that is needed, but I bought from a website that couldn't find the code. This one offered and instant unlock by a program (like the ones shops use) to unlock.
I am also not dumb, the paypal account doesn't require a password or anything it is just a way to identify your keys.

wy2sl0 said:
Oh I have wiped many times. The problem is that I don't think any of that wipe stuff will go back to factory settings in those *# menus or for the modem settings etc.
I know an unlock code is all that is needed, but I bought from a website that couldn't find the code. This one offered and instant unlock by a program (like the ones shops use) to unlock.
I am also not dumb, the paypal account doesn't require a password or anything it is just a way to identify your keys.
Click to expand...
Click to collapse
And did you test your phone with a different sim card? Everything is functional?
As far as I know, the legitimate way and the only way to unlock a phone is through the codes generated by the datebase. All the reputable sites that unlock phones that I know of, all use codes to unlock. When I had bought my telus g2sx the store unlocked it using the code.

Something like a keylogger would be app level, not modem info or hardware level. Also, something transmitting every keystroke would use a LOT of data and battery.
First thing I would do, personally, is check my battery stats to see if any app was using a suspicious amount of battery.
In my opinion, it wouldn't make sense for a company who already got your money for an unlock service to install a key logger to spam your Gmail contacts.
Just my two cents. It would take a tremendous amount of technology to track everyone who used the service. Not to mention man hours in sifting through collected data.
Check the battery stats. Settings>About Phone>Battery Use.
Hope this helps in any way. Hacked accounts are always a bummer man.

Wierd, I used that site a week or two ago and nothing like that happened to me. Makes me worried now.
I didn't use ebay though, I did it directly from the site. You could always re-flash your phone to stock then update it, that would eliminate any possibility of odd software.

In step 1, did you run a program on your computer, on the phone or both?

anomy13 said:
Unlocking phone is really a matter of entering a simple code in one step. All your steps there including entering your PayPal account, connecting USB?? and installing drivers are unneccesary and sketchy at best.
I've seen some reputable phone unlocking sites but definitely never seen something like that from eBay.
If I were you I would try a darkside full wipe and go back to whatever was at a safe state before.
Sent from my SAMSUNG-SGH-T989 using XDA
Click to expand...
Click to collapse
If you want your phone as clean as possible then do this in recovery
go to mounts and storage format /data format /system format /cache format/emmc. Then flash the super wipe followed by the rom but remember doing it this way deletes everything from your phone.
Sent from my SGH-T989 using Tapatalk 2

probably had nothing to do with the unlock, but more likely you had soem one arp attack your wifi on an open hotspot and they just nabbed your password.
I fiddle with this in coffee shops all the time and i always leave with a list of facebook, youtube, gmail hotmail and other passwords.
I'm not a spammer, i just like to see how insecure things are and if any one is intelligent to use ssl... even though ssl can be stripped from a packet now lol

-Mr. X- said:
probably had nothing to do with the unlock, but more likely you had soem one arp attack your wifi on an open hotspot and they just nabbed your password.
I fiddle with this in coffee shops all the time and i always leave with a list of facebook, youtube, gmail hotmail and other passwords.
Click to expand...
Click to collapse
Isn't GMail SSL now?

Joe USer said:
Isn't GMail SSL now?
Click to expand...
Click to collapse
and ssl can be stripped from packets now. Intercept the packet and then use it to sign in. then profit.
an app to play with if you want to try it out for your self is faceniff for andorid.

-Mr. X- said:
probably had nothing to do with the unlock, but more likely you had soem one arp attack your wifi on an open hotspot and they just nabbed your password.
I fiddle with this in coffee shops all the time and i always leave with a list of facebook, youtube, gmail hotmail and other passwords.
I'm not a spammer, i just like to see how insecure things are and if any one is intelligent to use ssl... even though ssl can be stripped from a packet now lol
Click to expand...
Click to collapse
Any recommendations to protect yourself then?
sent from the darkside of the galaxy

Z-Man™ said:
Any recommendations to protect yourself then?
sent from the darkside of the galaxy
Click to expand...
Click to collapse
dont use open hotspots at coffee shops and stuff like that. look for the shady nerd in the corner, and i think there is an app that can detect if your wifi is being arp spoofed.
https://play.google.com/store/apps/details?id=com.gurkedev.wifiprotector&hl=en
i think there may be free ones too, i dont know. but that app will detect if your being attack by a man in the middle/arp spoofing

I don't use Wi-Fi hotspots since I have unlimited data on my phone. I really don't understand how this could've happened.

wy2sl0 said:
I don't use Wi-Fi hotspots since I have unlimited data on my phone. I really don't understand how this could've happened.
Click to expand...
Click to collapse
its not just your phone that is at risk for these attacks. anything you sign on with is if some one does the man in the middle attack, among other attacks.
Other reasons besides your phone unlocking are the root cause of your issue. It's unfortunate none the less but man in the middle password sniffing and fishing are the leading causes i see at work for your spamming hijacking. i work with this stuff daily.

wy2sl0 said:
I don't use Wi-Fi hotspots since I have unlimited data on my phone. I really don't understand how this could've happened.
Click to expand...
Click to collapse
Did you ever figured out if unlockclient.com had injected some malware in your device.
Has anyone on this site had problem with them or any developper had a chance to check what they are doing ?

Best security app ever for the Nexus 7

Sorry for the shameless self promotion. But my Security app Root Defense has been thoroughly tested on the Nexus 7 and unlike any other security app out there, it will allow you to continue to track your phone even if it gets wiped or a hard-reset by a thief.
It's almost impossible to lose your phone and it's completely free.
It requires that your phone be rooted (as most peoples are on XDA)
Please try it out and rate and comment on Google Play if you like it.
The Google Play page can be found here:
https://play.google.com/store/apps/details?id=com.unfairware.rootdefense&feature=search_result#?t=W251bGwsMSwyLDEsImNvbS51bmZhaXJ3YXJlLnJvb3RkZWZlbnNlIl0.
The XDA homepage can be found here:
http://forum.xda-developers.com/showthread.php?t=1775488

chetstriker said:
Sorry for the shameless self promotion. But my Security app Root Defense has been thoroughly tested on the Nexus 7 and unlike any other security app out there, it will allow you to continue to track your phone even if it gets wiped or a hard-reset by a thief.
It's almost impossible to lose your phone and it's completely free.
It requires that your phone be rooted (as most peoples are on XDA)
Please try it out and rate and comment on Google Play if you like it.
The Google Play page can be found here:
https://play.google.com/store/apps/details?id=com.unfairware.rootdefense&feature=search_result#?t=W251bGwsMSwyLDEsImNvbS51bmZhaXJ3YXJlLnJvb3RkZWZlbnNlIl0.
The XDA homepage can be found here:
http://forum.xda-developers.com/showthread.php?t=1775488
Click to expand...
Click to collapse
Does it try to connect to every available wifi network around it? Like if it's not connected after being stolen and detects a wifi network will it connect to it and send data?

atticusmas said:
Does it try to connect to every available wifi network around it? Like if it's not connected after being stolen and detects a wifi network will it connect to it and send data?
Click to expand...
Click to collapse
No, but thanks for the suggestion. It currently caches data offline and as soon as a WiFi or cellular connection is made, the application uploads the data.

This is fantastic
Would it be possible to log which apps are used on the device?
I'm currently trialling Airwatch for a project I'm working on for a fleet of phones and tablets. From what I've tested so far, I'd like to recommend a switch to your solution.

Looks pretty cool. I just bought Cerberus, but would give this a go if I hadn't done that.
Sent from my Nexus 7 using Tapatalk 2

I'm still a fan of lookout
Sent from my Nexus 7 using Tapatalk 2

This looks very impressive!

What I want to know is HOW does it work??
Billy
Sent from my Nexus 7 using Tapatalk 2

looks like a good product. Will give it a try. Contrary to what you have said, other apps CAN survive a system reset or wipe of the phone. you can also embed Cerberus in the rom so that it survives a system reset and you can also hide it and make it look like a system app in the tasks list.
What i like about this product though is how it can track calls, and sms etc. Though this does obviously raise some privacy concerns with all this info being stored on a third party server.
Sent from my Nexus 7 using xda premium
---------- Post added at 11:10 AM ---------- Previous post was at 11:06 AM ----------
Jeepfreak, It embeds itself in the system so that it is treated as if it is a program that came with the phone or tablet. In effect, it injects itself into the rom of the phone (hence the need do root to install). this way out will still be they if you reset the phone.it will not survive the rom being replaced though i assume, which is the same limitation on other apps of this type.
Sent from my Nexus 7 using xda premium

Im a fan of lookout, had no problems but my trial is running out and not sure how good the free version is.

uberNoobZA said:
does obviously raise some privacy concerns with all this info being stored on a third party server
Click to expand...
Click to collapse
I'd rather have my device stolen and wiped than trust a third party.
At £200 the N7 is almost disposable.

Looked at the title and thought... Avast... happy with it, and have no plans on losing something this big. I have mine in an auto on/off case. If the secret code isn't entered in 15 seconds, my N7 starts smoking and disintegrates.

New version just released, check our main thread for details.
http://forum.xda-developers.com/showthread.php?t=1775488
Version 3.1 released!
Change log includes:
* Fix for calls not being recorded bug
* Fix for auto-update can cause auto-uninstall of itself.
* Fix for phones not attaching after install
To ensure your auto-updater is working probably and you weren't affected by the auto-uninstall of program from update bug, please download the latest version from our first post or directly from the market.

Cerberus does the same and has longer history.....so many features....

maysider said:
Cerberus does the same and has longer history.....so many features....
Click to expand...
Click to collapse
No it doesn't, Cerberus tries to save money by not having a database store your information. This is one of the major differences.
What this means to the end user is the following:
If your battery is dead or the phone is off, you cannot see where your phone was a little while ago or see any of your logs. The map will show the location of the last time you manually told it to check and logs will only pull if the device is on.
Root Defense Keeps a copy online and automatically updates background info. This means you'll be able to see where it was right before the battery died or was turned off. Also, all the logs would still be available to look at.
Another major difference is that Cerberus only sends a copy of your SMS or calls logs where Root Defense records them in real time. This is pretty major because if I have Cerberus on my kids phone and they call or text someone they shouldn't, they just have to delete the message of call log and Cerberus would never know. With Root Defense logs can't be wiped.

This is useless, unless your N7 is taken back to a wifi hotspot you have previously allowed it's not going to report back.
Nice idea but only useful for phones
If I stole a N7 the first thing I would do is wipe the rom.
This will only catch a complete idiot and you would be one too for letting your N7 out of your sight.
No security software of this type will be any good unless CWM finally gets password locking.
Shame on the OP for spamming his app when he's already got a dedicated thread for it.

hoosbude said:
This is useless, unless your N7 is taken back to a wifi hotspot you have previously allowed it's not going to report back.
Nice idea but only useful for phones
If I stole a N7 the first thing I would do is wipe the rom.
This will only catch a complete idiot and you would be one too for letting your N7 out of your sight.
No security software of this type will be any good unless CWM finally gets password locking.
Shame on the OP for spamming his app when he's already got a dedicated thread for it.
Click to expand...
Click to collapse
That is pretty harsh, the OP can post anywhere it is appropriate.. and this is one of those places. Also, you overestimate the intelligence of criminals- half of the people on XDA can't flash a rom, why would a random criminal know how? How to go into settings and perform a full wipe maybe.. but that would leave the software on the device.
Eventually they will connect to internet.

Cerberus and avast (and other apps I am sure) can also survive wipe / hard reset. As long as the rom is not flashed, the app stays installed. Cerberus stores very little data which is why it has a once off cost only.
Different pricing models provide different services. At their core, all of these types of apps do pretty much the same thing, but let's try and stick to the facts when saying which can and which can't do things.
Sent from my Nexus 7 using xda premium

[How-To]Getting the $25 Google Wallet for Nexus 7 outside US[Ends 30 sept 2012]

Google is offering $25 wallet for apps purchase but its only for US – but you guessed that already huh? Fear not, we are not left out Its very simple if you follow these simple steps.
The key is to get your device connected to the US IP via Virtual Private Network (VPN), but its hard to find a really good free VPN provider that actually works. It took me a few hours to find one that was really reliable. Until I found one that will get our job done perfectly here. Its FREE, simple to use, and stable too! Its called the CactusVPN. All you have to do is just sign up for it and you will get a free account which is valid for 24 hours – more than the time we need to run this little hack.
So here are the steps:
I personally advice you to factory reset your device first so you can start from the very beginning and get definite chances for this to work. That said, factory reset your device. If you don’t know how, go to Android Settings -> Backup & Reset -> Factory data reset.
When the device loads, select English as your language. Setup your WIFI, but do NOT setup a Google account. Also do NOT enable the geolocation services. Skip everything and you will reach the homescreen.
Now, put the device aside. Go to CactusVPN (click here) and sign up for an account under “Free VPN”. Once you have signed up, login and go to the Client Area and select “MyVPN services”. Click on the free VPN in the table under “My VPN Services” and you will be presented with all the details that you need.
Now, on your Android device, go to settings and hit the “more” below “Data usage”. You will see an option for VPN, select that. Now click on “Add VPN Profile”. Insert “CactusVPN” as the name and PPTP as the type. You can get the server IP from the accounts page above. Enable PPP encryption and save the settings.
Now, select the profile. It will ask for your username and password which you can get from the same account page above. Thats it, you should be connected to the VPN gateway.
Now, run Google Play. It will ask you to add a credit card. Just use your local credit or debit card (it worked with my Maybank debit card too). Leave the country as US, insert the postcode as 10002 and phone number as (212)9255599. Once it validates, you will get $25 credited to your account.
When making purchase, in the payment details, select Google Balance and it will deduct from it. Oh, and feel free to remove the debit card or credit card that you added earlier.
Thats it! Pretty simple isnt it? Good Luck!
**credit to shahz & google.
dont forget to click thanks if this help you.

Your wrong mate in the UK Google give you £15 to spend in the play store.
Sent from my Nexus 7 using XDA Premium HD app

davekeeling5 said:
Your wrong mate in the UK Google give you £15 to spend in the play store.
Sent from my Nexus 7 using XDA Premium HD app
Click to expand...
Click to collapse
well, try to convert $25 usd to UK pound, u will get £15 mate.

Cool. Next, anyone tried to download the Transformer movie? Any success so far?
Sent from my Nexus 7

Downloaded the film first day I got my nexus 7. Downloaded no problem but takes up about 3.5gb. Watched it then deleted it.
Sent from my Nexus 7 using XDA Premium HD app

so we can buy cheap app in next 5 days, cheers:good:

Canadians don't need to do this for anybody who's is going to ask. I have two and both got their $25 bux no problem without VPN.
Sent from my Nexus 7 using XDA Premium HD app

Thanks, worked perfectly although I must say:
You do NOT have to factory reset!
The only thing you need to do is open the Play Store, log out (or add new account) and then go to Settings - Apps - Play Store - Clear Data
Then just open the Play Store again and it should prompt you with the 25$ gift card. That being said, it seems like you can do that with as many Accounts as you want (assuming you have more than one credit card which most people do).
Just be careful that you don´t do too much!

Let me get this straight, add another account on the same device, enter a different card and you'll get another $25? Is that it? I've 3 account in my N7, so with different card I'll get $75. Sure?
Sent from my Nexus 7

adxgrave said:
Let me get this straight, add another account on the same device, enter a different card and you'll get another $25? Is that it? I've 3 account in my N7, so with different card I'll get $75. Sure?
Sent from my Nexus 7
Click to expand...
Click to collapse
If you got the free $25/£15 with your nexus you have to use a different card on that different account.
So yup just make another account with a different card and you get free monies

Nope. Just tried, failed. It's per devices, account and card too.
Sent from my Nexus 7

adxgrave said:
Nope. Just tried, failed. It's per devices, account and card too.
Sent from my Nexus 7
Click to expand...
Click to collapse
Its not, they done it like this incase you decide to sell your nexus 7 to someone and "factory reset it" so they can have the nexus 7 experiance....or somthing like that )
Try this.
Make a cwm backup or twrp backup.
Factory reset
When you get to the welcome screen, enter youre wifi etc. Hen when it asks if you have gmail account press no, then press yes to create one.
Sent from my Nexus 7 using Tapatalk 2

I'm stuck on adding a vpn. Android is asking me to inputI the password for credential storage. I have no clue what that is.
I have a bunch of system credentials, I always assumed that's normal? So I don't want to go erasing them.

Logic_ said:
I'm stuck on adding a vpn. Android is asking me to inputI the password for credential storage. I have no clue what that is.
I have a bunch of system credentials, I always assumed that's normal? So I don't want to go erasing them.
Click to expand...
Click to collapse
yes, it is normal.

not only for US, Australia got the $25 credit also

It worked for me, at least getting the $25 added to my account. Only when I try to buy an app, it is grayed out for me when not connected through VPN. My connection is timing out all the time on VPN, so can't try that yet. But if that is the case, you'll have to buy everything today while the VPN account last, or find another free VPN

CactusVPN is not letting me create a Free account as they have banned my country's IP to create any free account. Is there any other good free VPN sites?

ozzy666 said:
yes, it is normal.
Click to expand...
Click to collapse
Ok, good. Now regarding my problem... How can I set up a vpn without deleting my credentials?
It's asking me for a password I don't have.

Logic_ said:
Ok, good. Now regarding my problem... How can I set up a vpn without deleting my credentials?
It's asking me for a password I don't have.
Click to expand...
Click to collapse
can you post the screenshot?

http://db.tt/l8hZ3QIw
If I type anything it says wrong password; you have x number of tries until all your credentials are deleted.
Or something of the like. I won't demonstrate because I'm on my last try. I have never touched the credentials let alone set a password -.-

Phone hacked

I need help identifying what app or setting got me into this mess.
I think the hacker has adb access.
He shuts down apps.. etc
He is messing with the notifications.. i get ony a few. Sometimes they come in late.
I have made reset from samsung setting and the boot menu, AND I INSTALLED A NEW ROM (the one for my phone) WITH ODIN. Still the issue resurfaces.
I think my roomate installed smthg in it. He is on the house wifi and he is got a degree in networking (i think thats what it's called, we study in french in my country)
Please i need help.

If someone needs any further details, please ask.

Avoid the wifi network you suspect your hacker friend is on, reinstall the rom downloaded on another network and stay on 4G and see if it still happens? Also suspect your PC to be hacked...

Thx for replying,
I did format my pc but i have connected it to house wifi.. didn't notice anything out of order though.
I found out about the "Revoke USB debugging authorisations" option in Developer Options. I think it is working.

Today, since i made a new instagram account, i added a mutual friend. Turns out it was an old and lost account, and thats when i got the error from the video.
Fortunately, i fixed it by un.following the account and clearing the app storage.
I need to know what access does he have?

Can't upload the video, here's some shots.

Look no further than yourself for the cause of this... one way or another.
RX: Factory reset, change Google account password.
Stop with the social media crap and go mingle with real people.

This not about social media, it's about getting my phone back.
With my old account, I couldn't even talk to my messenger friend. Today, thats like having your phone number unreachable all the time, frustrating.
Please if you don't want to help don't, but no need for quick unhelpful replies.

Carch921 said:
This not about social media, it's about getting my phone back.
With my old account, I couldn't even talk to my messenger friend. Today, thats like having your phone number unreachable all the time, frustrating.
Please if you don't want to help don't, but no need for quick unhelpful replies.
Click to expand...
Click to collapse
How was it compromised?
Understand if it was compromised it's more than likely because you left yourself vulnerable to attack.
A compromised OS needs to be cleaned or wiped... I gave you the solution(s).
No need to say thanks but don't give me lip about your screw ups.

Thank you.
I tried factory reset more than 10 times, different ways. No luck.
I think he is got access to one of my friends account but i don't know how he is using this connection with me ( message, notification.. i don't know)
@blackhawk what you said is true, and i didn't mean no offense.

Carch921 said:
Thank you.
I tried factory reset more than 10 times, different ways. No luck.
I think he is got access to one of my friends account but i don't know how he is using this connection with me ( message, notification.. i don't know)
@blackhawk what you said is true, and i didn't mean no offense.
Click to expand...
Click to collapse
Reflash the firmware especially if it is Oreo or below.
If it's not embedded in the firmware, it's being added by you albeit inadvertently.
Your Achilles heel is social media... don't be so predictable. Break the link in the chain.
None of the social apps should be running on the device, they are malware. At least keep them in the cloud.
Email must always be kept in the cloud and any attachments downloaded from it scruntinized or preferably not downloaded at all. All downloads are suspect.
At this point your data base is suspect as well.
Insanity is doing the same thing over and over, expecting a different result.

Android 11.
I am trying.

Carch921 said:
Android 11.
I am trying.
Click to expand...
Click to collapse
Unless someone physically got their hands on it, there's no known way the Android 11 stock factory image can be compromised by a rootkit or virus. A factory reset is all that is needed.
The problem happened after the reset.

blackhawk said:
Unless someone physically got their hands on it, there's no known way the Android 11 stock factory image can be compromised by a rootkit or virus. A factory reset is all that is needed.
The problem happened after the reset.
Click to expand...
Click to collapse
That is exactly what i suspect did happen. I often leave my phone home and my pattern is known for him.
How can i undo a modification of that level.
(I intend to go to a phone repair shop and install new soft with the "box". Is this recommended or is it a bad idea)

Carch921 said:
That is exactly what i suspect did happen. I often leave my phone home and my pattern is known for him.
How can i undo a modification of that level.
(I intend to go to a phone repair shop and install new soft with the "box". Is this recommended or is it a bad idea)
Click to expand...
Click to collapse
Never leave a phone physically unsecured as that's the only real security there is.
You need to have the firmware reflashed then be careful what you put back on it.
Change all your passwords and use secure passwords.

I ithink i this is the problem.( in the pic below)
There was an app called android device.. don't know if this is normal. So i deleted it and restarted and things are back to normal.

Sorry i can't upload the image, the app closes automatically.

Scan it online with Virustotal.

Sell the phone Facebook