Ok guys, could really do with your help here.
I have an unrooted n9005, which recently had an earpiece fault.
I took it to my local repair store, who took it and said come back in an hour.
After I went back, I found that someone had installed mobomarket on it.
The owner of the shop said it wasn't him, but I can see from the unlock log that it happened for sure whilst with him.
Ok, so I figured what harm could that really do, but then thought to check further.
On rebooting to the odin download screen (vol home and power), the Knox status is now 0x1.
This means they rooted it right? Or is it possible to trip another way?
However, it now isn't rooted (testing using su in terminal) and the firmware status on the odin download screen shows as "official".
My question therefore is, is it possible to root the phone, install malware then unroot it, leaving the malware still active?
Or does the fact the download status show "official" instead of "custom" mean this isn't possible?
This is kinda important as if there is a possibility the phone is compromised, I need to call the police but obviously don't want to do this if the guy is innocent.
(I could for example accept that he used the phone without permission to play something or whatever, and whilst not ethical, I don't need to worry about having to wipe this phone)
Thanks guys, your input would be much appreciated as I intend to go back to him tomorrow.
Sent from my SM-N9005 using Tapatalk
I have an unrooted n9005, which recently had an earpiece fault.
I took it to my local repair store, who took it and said come back in an hour.
After I went back, I found that someone had installed mobomarket on it.
The owner of the shop said it wasn't him, but I can see from the unlock log that it happened for sure whilst with him.
Ok, so I figured what harm could that really do, but then thought to check further.
On rebooting to the odin download screen (vol home and power), the Knox status is now 0x1.
This means they rooted it right? Or is it possible to trip another way?
However, it now isn't rooted (testing using su in terminal) and the firmware status on the odin download screen shows as "official".
My question therefore is, is it possible to root the phone, install malware then unroot it, leaving the malware still active?
Or does the fact the download status show "official" instead of "custom" mean this isn't possible?
This is kinda important as if there is a possibility the phone is compromised, I need to call the police but obviously don't want to do this if the guy is innocent.
(I could for example accept that he used the phone without permission to play something or whatever, and whilst not ethical, I don't need to worry about having to wipe this phone)
Thanks guys, your input would be much appreciated as I intend to go back to him tomorrow.
Sent from my SM-N9005 using Tapatalk
Aucun commentaire:
Enregistrer un commentaire