Rooting Phone

[mustang7757]

Research said I can do a deep recovery for my old files with root

See this thread just now , what I was warning about Root what happens ..and why I said learn to go back to stock firmware incase something happens. It's not like ok I put a 3rd party launcher and I don't like it so I'll take it off. When you Root you give full permission to change anything on the phone and that's where problems happen if you don't have little experience. https://forums.androidcentral.com/showthread.php?t=660793

 

[Mooncatt]

I don't know what happens to files marked as deleted after a reset. For all I know, there could be a quick reformat done during the reset process, in which case, the chances of recovering the files drop drastically.

In current versions of Android, the file system is encrypted from the first boot up. When a factory reset is done, it erases the encryption key. So even if we assume the data we want to recover isn't deleted as part of the reset, it's still in an encrypted state and the key is gone. If, and this is a big IF, there is any recoverable data left, it would need forensics level software to break the encryption. Even that may not be enough.

The default encryption was implemented just for this reason. A test was done on some discarded phones that had been factory reset, and the group found an alarming amount of recoverable data. If the phone was manually encrypted by the user, it wasn't an issue.

 

[mustang7757]

In current versions of Android, the file system is encrypted from the first boot up. When a factory reset is done, it erases the encryption key. So even if we assume the data we want to recover isn't deleted as part of the reset, it's still in an encrypted state and the key is gone. If, and this is a big IF, there is any recoverable data left, it would need forensics level software to break the encryption. Even that may not be enough.

The default encryption was implemented just for this reason. A test was done on some discarded phones that had been factory reset, and the group found an alarming amount of recoverable data. If the phone was manually encrypted by the user, it wasn't an issue.

I agree

 

[blackhawkhot]

In current versions of Android, the file system is encrypted from the first boot up. When a factory reset is done, it erases the encryption key. So even if we assume the data we want to recover isn't deleted as part of the reset, it's still in an encrypted state and the key is gone. If, and this is a big IF, there is any recoverable data left, it would need forensics level software to break the encryption. Even that may not be enough.

The default encryption was implemented just for this reason. A test was done on some discarded phones that had been factory reset, and the group found an alarming amount of recoverable data. If the phone was manually encrypted by the user, it wasn't an issue.

The file system but not the files.
The biggest issue I've had is you lose the file system structure for those files once you erase the files or if the file system gets corrupted.
The files can be recovered but it's it's hundreds, thousands or more of random files. You need to file structure preserved to provide any practical meaning for the files. You can recover jpegs but there exif data is MIA.
Fine if that one jpeg is invaluable otherwise not worth it.
So it goes with most of the recovered files.
More than any sane human would want to attempt to sort out even if you could put the huge jigsaw puzzle back together.

Back it now at least 2X's; 3X's is better if it's critical.
Keep the backup drives physically separated from the device and each other when not backing them up.
-Never- access back up data drives with a trojan/virus/malware compromised machine; they can spread like wildfire in a second.
Been there, done that. Had one clean copy left when the dust settled... fun times.

 

[anon(10614692)]

If you are concerned about security, the last thing you want to do is root your phone.