Hi all,
I have a strong suspicion that my phone has been hacked. Recently, someone gained physical access to my Samsung s8 and ever since then there have been a ton of random applications that appeared in the "All apps" folder and many other aspects of the "feel" have been off.
I snooped around the phone's file, and found a 40 page script of code (I have no training in any of this), that I was hoping someone on here would have some insight about.
An excerpt of this code is provided below:
2019-Mar-29 21:41:11.245 --> [9228] McDLog#info:219 --> RootStorageManager#insertToRealmSafely:109 --> RootStorageManager#lambda$insertToRealm$1:81 --> e7gVUV7nzGJjgBVhcr5uGZjyGOc#execute:8 --> : INFO: 2019-Mar-30 01:41:11.24 RxCachedThreadScheduler-2 [ApiId=gma] [Message=UpdatedRequestMapperConfiguration]
2019-Mar-29 21:41:11.250 --> [9189] McDLog#info:219 --> SDKManager#lambda$invokeCoreManager$4:269 --> Q9at7KfA7FaFRqaJ2wH6GMKFsXA#accept:2 --> DoOnSuccess#onSuccess:54 --> : INFO: 2019-Mar-30 01:41:11.24 RxCachedThreadScheduler-1 [ApiId=gma] [Message=SDKManager :: CoreManager.initialize status :: Success :: 3451]
2019-Mar-29 21:41:11.252 --> [9228] McDLog#info:219 --> RootStorageManager#insertToRealmSafely:114 --> RootStorageManager#lambda$insertToRealm$1:81 --> e7gVUV7nzGJjgBVhcr5uGZjyGOc#execute:8 --> : INFO: 2019-Mar-30 01:41:11.25 RxCachedThreadScheduler-2 [ApiId=gma] [Message=100% Inserted for RequestMapperConfiguration]
2019-Mar-29 21:41:11.260 --> [9189] McDLog#info:219 --> RootUtil#getBinary:67 --> RootUtil#isDeviceRooted:31 --> SDKManager#lambda$invokeCoreManager$4:273 --> : INFO: 2019-Mar-30 01:41:11.26 RxCachedThreadScheduler-1 [ApiId=gma] [Message=Unknown error occurred : :: java.io.IOException: Cannot run program "/system/xbin/which": error=2, No such file or directory]
2019-Mar-29 21:41:11.262 --> [9189] McDLog#info:219 --> SDKManager#lambda$invokeCoreManager$4:273 --> Q9at7KfA7FaFRqaJ2wH6GMKFsXA#accept:2 --> DoOnSuccess#onSuccess:54 --> : INFO: 2019-Mar-30 01:41:11.26 RxCachedThreadScheduler-1 [ApiId=gma] [Message=Device Root Status :: false]
2019-Mar-29 21:41:11.267 --> [9189] McDLog#info:219 --> SDKManager#lambda$invokeCoreManager$4:276 --> Q9at7KfA7FaFRqaJ2wH6GMKFsXA#accept:2 --> DoOnSuccess#onSuccess:54 --> : INFO: 2019-Mar-30 01:41:11.26 RxCachedThreadScheduler-1 [ApiId=gma] [Message=SDKManager :: Root status time taken :: 3472]
2019-Mar-29 21:41:11.268 --> [9189] McDLog#info:219 --> ManageLocationProvider#setDefaultLocationProvider:476 --> ManageLocationProvider#accept:499 --> ManageLocationProvider#accept:470 --> : INFO: 2019-Mar-30 01:41:11.26 RxCachedThreadScheduler-1 [ApiId=gma] [Message=SDKManager :: Location provider "google" is used.]
---
It goes on and on but it seems like someone inserted something into my McDonalds app. In addition, when my phone rebooted after the incident that caused all of this, the McDondalds app on my home page (which is odd as I never use it and have never treated it as a go-to app.)
I'm losing my mind over here. Please tell me what's going on. I think this is a sophisticated attack such that anti-virus programs do not catch on to it.
Any help would be greatly appreciated.
I have a strong suspicion that my phone has been hacked. Recently, someone gained physical access to my Samsung s8 and ever since then there have been a ton of random applications that appeared in the "All apps" folder and many other aspects of the "feel" have been off.
I snooped around the phone's file, and found a 40 page script of code (I have no training in any of this), that I was hoping someone on here would have some insight about.
An excerpt of this code is provided below:
2019-Mar-29 21:41:11.245 --> [9228] McDLog#info:219 --> RootStorageManager#insertToRealmSafely:109 --> RootStorageManager#lambda$insertToRealm$1:81 --> e7gVUV7nzGJjgBVhcr5uGZjyGOc#execute:8 --> : INFO: 2019-Mar-30 01:41:11.24 RxCachedThreadScheduler-2 [ApiId=gma] [Message=UpdatedRequestMapperConfiguration]
2019-Mar-29 21:41:11.250 --> [9189] McDLog#info:219 --> SDKManager#lambda$invokeCoreManager$4:269 --> Q9at7KfA7FaFRqaJ2wH6GMKFsXA#accept:2 --> DoOnSuccess#onSuccess:54 --> : INFO: 2019-Mar-30 01:41:11.24 RxCachedThreadScheduler-1 [ApiId=gma] [Message=SDKManager :: CoreManager.initialize status :: Success :: 3451]
2019-Mar-29 21:41:11.252 --> [9228] McDLog#info:219 --> RootStorageManager#insertToRealmSafely:114 --> RootStorageManager#lambda$insertToRealm$1:81 --> e7gVUV7nzGJjgBVhcr5uGZjyGOc#execute:8 --> : INFO: 2019-Mar-30 01:41:11.25 RxCachedThreadScheduler-2 [ApiId=gma] [Message=100% Inserted for RequestMapperConfiguration]
2019-Mar-29 21:41:11.260 --> [9189] McDLog#info:219 --> RootUtil#getBinary:67 --> RootUtil#isDeviceRooted:31 --> SDKManager#lambda$invokeCoreManager$4:273 --> : INFO: 2019-Mar-30 01:41:11.26 RxCachedThreadScheduler-1 [ApiId=gma] [Message=Unknown error occurred : :: java.io.IOException: Cannot run program "/system/xbin/which": error=2, No such file or directory]
2019-Mar-29 21:41:11.262 --> [9189] McDLog#info:219 --> SDKManager#lambda$invokeCoreManager$4:273 --> Q9at7KfA7FaFRqaJ2wH6GMKFsXA#accept:2 --> DoOnSuccess#onSuccess:54 --> : INFO: 2019-Mar-30 01:41:11.26 RxCachedThreadScheduler-1 [ApiId=gma] [Message=Device Root Status :: false]
2019-Mar-29 21:41:11.267 --> [9189] McDLog#info:219 --> SDKManager#lambda$invokeCoreManager$4:276 --> Q9at7KfA7FaFRqaJ2wH6GMKFsXA#accept:2 --> DoOnSuccess#onSuccess:54 --> : INFO: 2019-Mar-30 01:41:11.26 RxCachedThreadScheduler-1 [ApiId=gma] [Message=SDKManager :: Root status time taken :: 3472]
2019-Mar-29 21:41:11.268 --> [9189] McDLog#info:219 --> ManageLocationProvider#setDefaultLocationProvider:476 --> ManageLocationProvider#accept:499 --> ManageLocationProvider#accept:470 --> : INFO: 2019-Mar-30 01:41:11.26 RxCachedThreadScheduler-1 [ApiId=gma] [Message=SDKManager :: Location provider "google" is used.]
---
It goes on and on but it seems like someone inserted something into my McDonalds app. In addition, when my phone rebooted after the incident that caused all of this, the McDondalds app on my home page (which is odd as I never use it and have never treated it as a go-to app.)
I'm losing my mind over here. Please tell me what's going on. I think this is a sophisticated attack such that anti-virus programs do not catch on to it.
Any help would be greatly appreciated.