1
00:00:00,199 --> 00:00:06,520
subscription streaming services are getting to the point where they cost as

2
00:00:04,440 --> 00:00:11,080
much as a cable subscription used to I mean it's no wonder people are setting

3
00:00:08,080 --> 00:00:13,679
sale for the streaming seas that is

4
00:00:11,080 --> 00:00:18,119
where this morally ambiguous plastic box comes in it can be had for about the

5
00:00:16,000 --> 00:00:23,160
price of a family outing to McDonald's and Promises to provide cheap or even

6
00:00:20,680 --> 00:00:30,039
free access to copyrighted content for anyone no technical skills required I

7
00:00:26,000 --> 00:00:32,880
mean there must be a catch right oh now

8
00:00:30,039 --> 00:00:37,760
that's a yikes desktop echo's discovery of a pre-installed back door on the t95

9
00:00:35,320 --> 00:00:42,360
made us wonder is it a one-off or does it impact the plethora of similar

10
00:00:39,920 --> 00:00:49,079
Android boxes available on Amazon AliExpress and nearly every other Online

11
00:00:45,200 --> 00:00:51,559
Marketplace to find out we bought a

12
00:00:49,079 --> 00:00:57,920
whole stack of them and as it turns out the t95 is back door is only the tip of

13
00:00:54,920 --> 00:00:59,680
the iceberg so then are any of these

14
00:00:57,920 --> 00:01:03,640
things worth buying or do they all need to go straight to the landfill like I'm

15
00:01:01,760 --> 00:01:08,119
going to go straight to this segue to our sponsor I fix it is your battery not

16
00:01:06,479 --> 00:01:12,040
lasting as long as it used to looking for a new project I fix it has you

17
00:01:10,240 --> 00:01:16,360
covered stay tuned to the end of the video to learn more about their battery

18
00:01:13,920 --> 00:01:21,759
replacement kits legally questionable set top boxes are nothing new way back

19
00:01:18,880 --> 00:01:26,360
in 2009 I talked about the popcorn hour c200 whose big party trick was the

20
00:01:24,079 --> 00:01:29,400
ability to stream from Torrance rather than waiting for them to finish

21
00:01:27,640 --> 00:01:33,640
downloading there's a big market for this kind of stuff stuff and as part of

22
00:01:31,560 --> 00:01:38,880
the Napster generation I may or may not have dabbled myself at some point no

23
00:01:36,320 --> 00:01:42,920
judgment however it's important to remember that the kinds of folks who are

24
00:01:40,880 --> 00:01:47,960
willing to help you circumvent copyright law tend to be the same kinds of folks

25
00:01:45,240 --> 00:01:52,719
who don't care about other laws either like privacy or data collection laws to

26
00:01:50,759 --> 00:01:57,039
which you might think come on lus how bad could it be let's have a look

27
00:01:55,200 --> 00:02:00,280
booting up any one of these boxes you're going to be greeted with a friendly

28
00:01:58,399 --> 00:02:05,240
setup process and brought to a home screen that looks at least vaguely like

29
00:02:02,640 --> 00:02:10,640
Android TV if you're running a pie hole like desktop Echo was this might be the

30
00:02:07,719 --> 00:02:14,319
point where you start to see red flags in what seems to be a best case scenario

31
00:02:12,879 --> 00:02:20,840
the Box might be trying to Ping an address with fota in the URL fota stands

32
00:02:18,440 --> 00:02:24,959
for firmware over the air and is relatively standard Android Behavior

33
00:02:22,760 --> 00:02:29,400
what isn't relatively standard is that if you look up the IP that URL is going

34
00:02:27,680 --> 00:02:34,120
to point to a place that at least someone refers to as China now this

35
00:02:31,840 --> 00:02:37,560
isn't a problem in and of itself but with China's looser regulations

36
00:02:36,160 --> 00:02:41,519
especially with respect to foreign Nationals it means that there are no

37
00:02:39,519 --> 00:02:46,159
guarantees that the firmware that you download will be clean or that it will

38
00:02:43,920 --> 00:02:49,840
even be firmware at all in a much worst scenario your experience will mimic

39
00:02:47,840 --> 00:02:54,120
desktop Echoes who found countless attempts to contact URLs that were made

40
00:02:51,640 --> 00:02:58,440
up of jumbled letters and lesser used top level domains that were attempting

41
00:02:55,959 --> 00:03:02,519
to dump payloads into the now notorious core Java directory

42
00:03:00,519 --> 00:03:07,840
this matters because this directory appears to be a relative of CopyCat an

43
00:03:05,680 --> 00:03:12,680
Android malware with truly terrifying capabilities the original infected an

44
00:03:10,239 --> 00:03:17,360
estimated 14 million devices and was designed primarily to generate and steal

45
00:03:14,959 --> 00:03:22,200
ad Revenue but given that it can root your device inject itself alongside apps

46
00:03:19,920 --> 00:03:27,760
that you launch and control your network activity it can be used for all kinds of

47
00:03:24,760 --> 00:03:29,799
Nefarious activities coming back to our

48
00:03:27,760 --> 00:03:34,319
devices then when inspecting their file systems using Android debug Bridge we

49
00:03:31,720 --> 00:03:39,120
found almost half of them had the same core Java folder and open preferences

50
00:03:36,959 --> 00:03:44,280
file even if they didn't immediately try to access any questionable URLs another

51
00:03:41,760 --> 00:03:48,239
one had the core Java folder though it was empty as if the firmware image that

52
00:03:46,319 --> 00:03:52,640
they used contained the same malware at some point but it was removed did they

53
00:03:51,040 --> 00:03:58,560
have a change of heart did they accidentally break the malware's functionality or did they remove it to

54
00:03:56,120 --> 00:04:01,959
install something worse we don't know another possibility is that it's a

55
00:04:00,280 --> 00:04:06,120
Remnant from borrowing someone else's homework there's evidence that at least

56
00:04:04,200 --> 00:04:09,879
half of the units that we bought use modified versions of Android that

57
00:04:07,879 --> 00:04:15,760
started off their lives as Android for Google pixel phones one such image calls

58
00:04:12,360 --> 00:04:17,479
itself big Droid OS the lack of Google

59
00:04:15,760 --> 00:04:22,079
results for big Droid seems to indicate that it exists only for use on Android

60
00:04:19,600 --> 00:04:26,880
set toop boxes and could even be an internally developed Fork at a

61
00:04:23,960 --> 00:04:31,080
manufacturer of these devices now we did find big Droid OS installed on three

62
00:04:29,160 --> 00:04:35,600
different box boxes that seem to come from different manufacturers but all

63
00:04:33,600 --> 00:04:40,360
three of them share the same all- winner s so model and the same specs and also

64
00:04:38,520 --> 00:04:44,479
we have no way to confirm that they actually came from different places at

65
00:04:42,639 --> 00:04:48,360
least not without flying to China to track the factories down in person which

66
00:04:46,120 --> 00:04:53,199
is a lot of time and expense for a throwaway Scooby-Doo reveal bit and

67
00:04:51,280 --> 00:04:57,520
besides it doesn't really matter because we've seen enough at this point to say

68
00:04:55,000 --> 00:05:02,919
definitively that you shouldn't plug any of these things into your home network

69
00:05:00,000 --> 00:05:06,320
at least not without precautions I mean what if we could meddle with the box and

70
00:05:04,800 --> 00:05:11,400
prevent the malware from getting away with whatever it's trying to do could we

71
00:05:09,120 --> 00:05:17,240
make any of these into useful devices most of them do have 4 gigs of RAM the

72
00:05:14,039 --> 00:05:20,479
ability to Output in 4k Bluetooth Wi-Fi

73
00:05:17,240 --> 00:05:22,639
well that's a tough one blocking the bad

74
00:05:20,479 --> 00:05:27,160
behavior that we know about won't protect us against the unknown and

75
00:05:24,639 --> 00:05:31,080
there's a lot that we don't know most of these came pre-rooted with alternative

76
00:05:29,240 --> 00:05:37,080
app store and a rebranded version of Cody that does not Inspire confidence

77
00:05:34,960 --> 00:05:40,960
they could easily contain payloads that Target other devices on your local

78
00:05:38,600 --> 00:05:45,520
network or persistent malware that steals login credentials and no amount

79
00:05:43,600 --> 00:05:49,360
of monitoring is enough to say for sure that everything has been found and

80
00:05:47,160 --> 00:05:54,120
eliminated a back door on the system for example could lay dormant for months or

81
00:05:51,880 --> 00:05:59,000
even years only to awaken when a bad actor needs your zombie device to join a

82
00:05:56,440 --> 00:06:03,479
large dos attack or something like that now One op option would be to find a

83
00:06:00,880 --> 00:06:07,479
clean ROM and install it in place of the stock operating system I mean they are

84
00:06:05,720 --> 00:06:11,919
rooted devices after all but unfortunately our attempts at this were

85
00:06:09,880 --> 00:06:16,319
frustrating at best and downright impossible at worst it seems like all

86
00:06:14,479 --> 00:06:22,720
the resellers that offer flashable firmware images are content hosting the

87
00:06:18,560 --> 00:06:24,639
files on Mega Dropbox or one drive so if

88
00:06:22,720 --> 00:06:29,120
those files expire they either don't notice or they don't care and when you

89
00:06:27,400 --> 00:06:32,840
do find a ROM and you figure out how to flash it on to your device odds are good

90
00:06:31,199 --> 00:06:37,759
that you will end up right back where you started core Java folder and all oh

91
00:06:35,840 --> 00:06:42,840
and also I mean if you bought this thing for the pirated content that's not going

92
00:06:40,280 --> 00:06:46,759
to survive a clean Android installation anyway there does seem to be one project

93
00:06:45,080 --> 00:06:52,000
going to make custom firmware for Android set toop boxes but it only works

94
00:06:49,520 --> 00:06:55,440
if they have mlogic S so's and certain streaming apps are going to be very

95
00:06:53,400 --> 00:07:00,400
limited in functionality if they work at all but hey you might say they're still

96
00:06:57,960 --> 00:07:07,160
able to do 4K right right no aside from lagging super badly

97
00:07:03,759 --> 00:07:09,160
this image is clearly not 4K and when we

98
00:07:07,160 --> 00:07:14,520
went in with ADB and checked the screen size being reported by the system all of

99
00:07:11,720 --> 00:07:22,800
these boxes were either stuck at 1080P or even 720p which is hilarious cuz this

100
00:07:18,000 --> 00:07:25,000
one says 8K not even 4K so do they have

101
00:07:22,800 --> 00:07:30,240
any redeeming qualities are they lying about what's inside the box as well yeah

102
00:07:28,199 --> 00:07:34,919
even though this advertises 4 gigs of RAM even though Android reports 4 gigs

103
00:07:32,599 --> 00:07:40,879
of RAM and even though the chips on the board appear to be for a 4 gig set with

104
00:07:38,639 --> 00:07:45,800
a searchable part number and everything it's not 4 gigs only half of that will

105
00:07:43,479 --> 00:07:51,199
ever be usable and the system properties seem to corroborate that this probably

106
00:07:47,919 --> 00:07:53,319
explains why the text on these Micron

107
00:07:51,199 --> 00:07:57,759
memory chips looks so faded as though it was cheaply printed at the factory this

108
00:07:55,599 --> 00:08:02,440
issue is not just limited to Android TV boxes either as some car stereo's

109
00:07:59,919 --> 00:08:08,080
running Android apparently also have the fake RAM problem which means that these

110
00:08:05,960 --> 00:08:12,440
and those are all essentially manufactured e-waist unless you know

111
00:08:10,120 --> 00:08:16,280
your way around Android very well and can get a clean image onto yours there

112
00:08:14,400 --> 00:08:20,199
is nothing to guarantee that it won't eventually engage in elicit activities

113
00:08:18,039 --> 00:08:24,840
on your network or try to steal your Google login so for just about anyone

114
00:08:22,759 --> 00:08:29,039
it's not worth the risk especially when these things cost about the same as a

115
00:08:26,560 --> 00:08:33,560
chomecast with Google TV even the 4K model in some cases I mean sure that's

116
00:08:31,520 --> 00:08:38,479
not a perfect device either internal storage is limited to 8 gigs a new power

117
00:08:36,000 --> 00:08:44,159
Bri and dongle is required to add USB or micro SD support and it only has 2 gigs

118
00:08:41,360 --> 00:08:47,519
of RAM but come on at least it's not Trojan horsing its way into your living

119
00:08:46,040 --> 00:08:51,480
room to live across the coffee table from your stylish LTT Store.com throw

120
00:08:49,600 --> 00:08:56,680
pillows if you want something more powerful the NVIDIA Shield is definitely

121
00:08:53,760 --> 00:09:01,320
that offering up 1080p to 4K upscaling regular software updates and the ability

122
00:08:58,800 --> 00:09:05,160
to act as a media server though it does come at a significantly higher price

123
00:09:03,360 --> 00:09:09,360
both of these Alternatives can run Cod without too much issue if that's what

124
00:09:06,360 --> 00:09:12,079
you're into both are capable of 4K but

125
00:09:09,360 --> 00:09:14,720
for real and most importantly both come free of malware we're going to have

126
00:09:13,519 --> 00:09:18,720
links in the description below if you want to pick up one of those back to

127
00:09:16,519 --> 00:09:22,720
these then streaming services can be really expensive setting up and tweaking

128
00:09:20,880 --> 00:09:27,720
reliable trusted devices can be frustrating especially if it's for an

129
00:09:24,320 --> 00:09:29,399
elderly or less tech-savvy relative and

130
00:09:27,720 --> 00:09:34,920
I'm not going to stand here and tell you to Pirate or not to Pirate I'm just

131
00:09:32,440 --> 00:09:42,200
going to tell you to practice safe Computing and this ain't it what this is

132
00:09:38,560 --> 00:09:43,920
is a segue to our sponsor iix it iFix it

133
00:09:42,200 --> 00:09:48,600
wants to help you keep your devices powered like they are brand new iFix it

134
00:09:46,519 --> 00:09:53,519
has a wide range of battery replacement kits for your mobile devices kits for

135
00:09:50,440 --> 00:09:55,680
laptops cell phones tablets SmartWatches

136
00:09:53,519 --> 00:09:59,720
and even the Nintendo switch and you don't need to be an expert to repair

137
00:09:57,320 --> 00:10:03,399
your devices each kit has a simp Le to follow stepbystep guide with photos that

138
00:10:02,200 --> 00:10:07,680
will help walk you through your replacement so you can learn a new hobby

139
00:10:05,760 --> 00:10:13,839
while also saving yourself time and money check out ifixit.com LT to find

140
00:10:11,279 --> 00:10:18,240
fix kits for your devices today if you like this video maybe check out our

141
00:10:15,360 --> 00:10:21,880
Roundup of dash cams the Android TV boxes of the car