When looking at RUU_signed.nbh extracted out of RUU_BlackStone_HTC_WWE_EastEurope_1.14.479.3_Radio_52.49a.25.26_1.09.25.14_Ship
I find at
00 00 00 00 40h BLAC10000
00 00 00 1e 0hh HTC__032
00 00 00 20 00h 1.14.479.3
00 00 00 21 10h USA
It looks like the ModelID, CID, Rom Version and the Country code.
How can I find out what those values are of my device so that I can match a shipped rom with it ??
Model ID should be under the battery.
Have you tried using ATCommander to query the CID with the:
[email protected]? command?
Ta
Dave
MDAIIIUser said:
When looking at RUU_signed.nbh extracted out of RUU_BlackStone_HTC_WWE_EastEurope_1.14.479.3_Radio_52.49a.25.26_1.09.25.14_Ship
I find at
00 00 00 00 40h BLAC10000
00 00 00 1e 0hh HTC__032
00 00 00 20 00h 1.14.479.3
00 00 00 21 10h USA
It looks like the ModelID, CID, Rom Version and the Country code.
How can I find out what those values are of my device so that I can match a shipped rom with it ??
Click to expand...
Click to collapse
could perhaps help cmonex, when she has gained enough...
DaveShaw said:
Model ID should be under the battery.
Have you tried using ATCommander to query the CID with the:
[email protected]? command?
Ta
Dave
Click to expand...
Click to collapse
No I did the old approach based on the blueangel.
Here flashing software gave you a getdevicedata.exe so I had a look at an extracted HD_ship.exe and found RUUGetInfo.exe.
So I put it on my device, ran it and sorted my windows dir by date.
I found:
RUUImei.txt ---- > contains the IMEI of my device
RUUInfo.txt-----> Gives me the same info the rom version under Divice info
here is how
gd day
here is how
put your phone into boot loader model by pressing power and volume down till 3 color s screen comes.
in active sync right click the mouse and go into connection settings and move the v from allow us connection
connect your phone and run mtty software
http://rapidshare.com/files/173474965/mtty_0513.zip.html
after your install it just go in and chose usb instead of com port
when its open press one time enter and you can see answer back cmd>
then key in cmd2
u can see the details
gd luck
he means "info 2" for CID.
but DaveShaw is right too.
anyway. it won't flash that way without hardspl.
MDAIIIUser said:
00 00 00 00 40h BLAC10000
00 00 00 1e 0hh HTC__032
00 00 00 20 00h 1.14.479.3
00 00 00 21 10h USA
Click to expand...
Click to collapse
What if I change cid in that nbh file? To match cid of my device. Will I be able to flash that rom?
lipa47 said:
What if I change cid in that nbh file? To match cid of my device. Will I be able to flash that rom?
Click to expand...
Click to collapse
Unless you can sign the NBH file with the Private Key of the Carrier (or whoevers signs them), you won't have much luck.
The HardSPL is patched so it doesn't check the signature on the file.
Ta
Dave
Now that is cool
Here is a working link
http://wiki.xda-developers.com/uploads/mtty.exe
So do we know the other codes for the rest of the stuff I found in the nbh ??
May I know that the CID will be changed or not if the hardspl is install? As I know, HTC will check the CID if it is taken for repair, and they will not repair if the CID is not valid.
CID will not be changed. Hard-spl only bypasses checking CID, signature, overwriting spl etc.
It means that there is a CID stored in the phone and also in the ROM file so that the SPL will check between them during ROM upgrade. If it is that case, is there any means to change the CID & country code stored in the phone?
Yes it is but is not available for HD at the moment.
Anyway hard-spl is bit better method because you can flash custom roms, radios only etc.
If you only change cid you can only flash HTC signed roms.
Determine CID from mtty 'info 2' output
Hi guys,
If you consider this useful keep it if not delete it ...
When issued the 'info 2' command, I got:
Cmd>info 2
Card inserted
SD clk rate 19MHz
Cmd5 CMD_TIMEOUT
SD clk rate 144KHZ
SD 2.0 HC card
SD Clk rate 24 MHz
SD Init OK
-- The
Card inserted
...
SD Init OK
-- was repeated 2 more time.
HTCSHTC__032ðúÔ•HTCE
Cmd>
Then it was not clear for me which was the CID. But http://wiki.xda-developers.com/index.php?pagename=Hermes_BootLoader was quite useful. It is stated "Returns "HTCS" + CID + (4-byte checksum) + "HTCE"" so I presume the CID is 'HTC__032'. HTCS/HTCE (Start/End) seems to be only control strings.
As written on the mentioned page 'info 4' would have shorter output and still providing the CID.
Thanks for the good doc.
Related
Hi,
I intend to flash a cooked ROM (ITsPapa20748) to my Herald. From reading some sticky posts here I learned that at first I have to install a hacked bootloader - so I downloaded HardSpl_WM6.rar
My procedure was as follows:
1. install canonyang, ASerg_Policies and Disable_Security (in this order)
2. softreset
3. start RUU
My mobile then enters bootloader mode and ends up with error message "Error [270]: Update Error" (progress bar freezes at 3pct)
My config is as follows:
PC: is running WindowsXP (with SP2), ActiveSync v4.5 is in Guest Mode
Mobile: Model-Nr. Hera100
ROM version 4.17.402.102 GER
IPL 4.17.0001
SPL 4.17.0000
I had to UNcheck the start/system/advanced_networking-box in order to establish USB-connection.
After spending some hours going through existing threads I'm pretty sure that this is a common situation. But I didn't find any hint that helped me to flash successfully.
So any comments and suggestions are welcome.
thx!
1aladdin1
it works now
sorry for posting too early - now it worked.
I basically performed the same steps as listed in my previous post. Two differences:
1. softreset between installation of canonyang/aserpolicy/disable_security
2. while performing the RUU I had FILEMON running (a great tool from mark russinovich)
Finally I don't know, which step was the decisive one - bot anyhow it works now.
Hope this helps other guys in a similar situation.
please guys help me
my htc touch p3452 is dead becoz i flash but something is wrong and then it was dead now it will on on bootloder mode(red,green,blue) here is my detail please tell ,me what to do
it show..
IPL 3.07.0002
SPL 3.07.0000
DEVICE ID= ELF010050
CID= DOPOD001
45 4C 46 30 31 30 30 35 30 00 00 00 00 00 00 00 ELF010050.......
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
44 4F 50 4F 44 30 30 31 00 00 00 00 00 00 00 00 DOPOD001........
00 00 00 00 00 00 00 00 00 00 00 00 00 00 ..............
i also tryed to flash "DID-ELF010050_CID-DOPOD001_ROM-2.20.721.2B" but is not flashed it gave "error 270 update error" something please tell me where is the problem and how to solve please guys
Wwwwwweeeellllllll....YOU HAVE AN ELF, NOT A HERALD. Seriously, if you tried to HardSPL your Elf with the Herald HardSPL...I don't even know. These are the Herald forums, NOT the Elf forums, as such, more than likely no one that frequents here will know what to do to help you.
Does anyone have a copy of the T-Mobile USA TP2 stock rom?
hi,
check this link maybe the stock rom you're looking for is there.
regards,
twisted
thank you very much
twisted said:
hi,
check this link maybe the stock rom you're looking for is there.
regards,
twisted
Click to expand...
Click to collapse
the one that came with the phone is not there..
Here you go, I got it from ark666 so big thanks to him. I had a problem and I had to get back to the stock ROM.
Put your TP2 in bootloader mode before you flash.
Link: http://xda.caspersworld.co.uk/Downlo...igned_Test.exe
brings up the list but all I see is the TMo radios?
The TMO shipped one is 1.20.531.4 radio version 3.45.25.14
I have both of the test ones already here
Well if anyone gets the official one that T-Mobile HTC Touch Pro 2 dropped with please post here.
Thanks!
while waiting for the official stock tmob rom, maybe someone can dump their stock tmob rom (1.20.531.4 radio version 3.45.25.14), then later on we can reconstruct them using the old stock tmob roms available here.
regards,
twisted
I'm going to be getting a brand new one today and I'm going to dump it.
I have a new stock, just arrived, if you need a dump... teach me how to >. >
I got a pretty fast upload here so I can host on my server.
chiasoft said:
I have a new stock, just arrived, if you need a dump... teach me how to >. >
I got a pretty fast upload here so I can host on my server.
Click to expand...
Click to collapse
http://forum.xda-developers.com/showthread.php?t=501871
Dave
i looked in the dirs, but which one is the stock t-moblie usa rom ?
thank you !
murducky said:
i looked in the dirs, but which one is the stock t-moblie usa rom ?
thank you !
Click to expand...
Click to collapse
None of them- yet, unless someone posted their current ROM Dump.
The only ones available are the older 'Test' versions.
graphreak said:
None of them- yet, unless someone posted their current ROM Dump.
The only ones available are the older 'Test' versions.
Click to expand...
Click to collapse
thanks for the info.
we need a stock tmobile usa rom. im still looking for one also
I am working on trying to get the *raw files, but when i try to dump my device the pdocread.exe file just opens displays text real fast and shuts down.
I have already accepted the DLL on my device.. once i have raw 01 and 02 we can make a .NBH file and get this rollin
I would like one as well. Just in case! Not too happy with the signal bar readout on this new rom.,, would rather have signal than fluff,,,,
RAW dump of TMOUS Stock Rom Version: 1.20.531.4
TMOUS HTC Touch Pro 2
Rom Version: 1.20.531.4 (51986) WWE
Radio Version: 3.45.25.14
Followed the directions here: http://forum.xda-developers.com/showthread.php?t=501871
C:\itsutilsbin-20080923>pdocread.exe -l
459.38M (0x1cb60000) FLASHDR
| 3.12M (0x31f000) Part00
| 4.63M (0x4a0000) Part01
| 165.25M (0xa540000) Part02
| 286.38M (0x11e60000) Part03
STRG handles:
handle#0 6fe69bfa 286.38M (0x11e60000)
handle#1 eff62876 165.25M (0xa540000)
handle#2 0ff62852 4.63M (0x4a0000)
handle#3 4ff6274a 3.12M (0x31f000)
disk 6fe69bfa
0 partitions, 0 binary partitions
customerid=00000000 uniqueid= 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
disk eff62876
0 partitions, 0 binary partitions
customerid=00000000 uniqueid= 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
disk 0ff62852
0 partitions, 0 binary partitions
customerid=00000000 uniqueid= 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
disk 4ff6274a
0 partitions, 0 binary partitions
customerid=00000000 uniqueid= 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
I have attached a rapidshare link of my dump. The files are .RAW
The files in the rar are:
Part00.raw
Part01.raw
Part02.raw
Part03.raw
sp1.nb
AS PROMISED: http://rapidshare.com/files/269690575/TMOUS_1.20.531.4_RAW_Stock_Rom_Complete.rar
Now I need to know how to put the above files in flashable format, I have been messing with alot of tools, can't seme to find correct tutorials, or information specific for the Rhodium.
If anyone can help. Please send me a private message, reply to this post, or contact me via Windows Messenger at: [email protected]
cdguider said:
TMOUS HTC Touch Pro 2
Rom Version: 1.20.531.4 (51986) WWE
Radio Version: 3.45.25.14
Followed the directions here: http://forum.xda-developers.com/showthread.php?t=501871
I have attached a rapidshare link of my dump. The files are .RAW
The files in the rar are:
Part00.raw
Part01.raw
Part02.raw
Part03.raw
sp1.nb
Download Link will be posted within 1 hour
Now I need to know how to put the above files in flashable format, I have been messing with alot of tools, can't seme to find correct tutorials, or information specific for the Rhodium.
If anyone can help. Please send me a private message, reply to this post, or contact me via Windows Messenger at: [email protected]
Click to expand...
Click to collapse
dont worry, someone will grab this up and make a custom RUU for this, and they will sticky it!
i will be all over it when it comes out and is proven! thanks for the hard work!
use for rewrite ESN and flash ROMs. good luck.
rename it to .rar, its a winrar file.
MOD EDIT - Removed file. PM me if you disagree and provide me with more history/evidence
Leave it. He has 1 post and the SPL hasn't been cracked yet. Probably a scam.
I have re-opened this thread.
@ ls1024 - Feel free to modify first post again and provide more info including what you showed me in PM
Rick
Thanks Spartan for looking at this. Hopefully once he posts more info it will be what we Imagio users are desperate for, or a step in that direction.
Narcotichobo said:
The linked thread reads as following:
Only 6975's with spl already unlocked can be flashed, before you flash please make sure your spl is unlocked.
Currently all chinese phones come unlocked.
To confirm, go into the three color screen (hold down the volume button and the device on button), spl should be 0.40.0000
After flashing check to see if the radio number is 2.05ESNWVL
The operation below is identical to the 6875 (TP2), if you have a problem refer to posts on 6875 (TP2) ESN post
Use any version of CDMA Work Shop
On the terminal page, commands section
27 97 07 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
After you press send the MEID should be cleared
Afterward you can write whatever ESN
When you finish you can flash any radio and won't lose the ESN
Reference: Tutorial on writing the 6875
http://www.diypda.com/viewthread.php?tid=92838&extra=page=1
Alright, I don't know how to do any of that stuff, but i'm 95% sure on the translation so I hope that helps someone who does know what they are doing!
Also there seems to be an attachment to the post in that thread but i can't access it because I am not a forum member, and registration requires an invitation number.
Click to expand...
Click to collapse
The 0.40 SPL comes on the Chinese version of the Imagio and it allows writing of the ESN and flashing.
All being chatted in this thread:
http://www.forum.ppcgeeks.com/showthread.php?t=97542
Cmonex is working on the HSPL ATM and I do believe it will be based off of the 0.40 SPL
Americanmetal said:
The 0.40 SPL comes on the Chinese version of the Imagio and it allows writing of the ESN and flashing.
All being chatted in this thread:
http://www.forum.ppcgeeks.com/showthread.php?t=97542
Cmonex is working on the HSPL ATM and I do believe it will be based off of the 0.40 SPL
Click to expand...
Click to collapse
Woot I got quoted here.
\/
||
||
\/
And this helps us .38 how?
I think I read this over at PPCG but no instructions on how to do it on a .38 SPL so basically this is for the .40 Imagio only correct?
I posted both modified radios for TP2 and Imagio on PPCG and also a utility to write MEID/ESN (all 3 files from diypda china)
narcotichobo said:
Woot I got quoted here.
Click to expand...
Click to collapse
I had to get this thread unlocked rofl
Still, how can we upgrade to .40? That's what's holding us from at least changing radios to chinese ones hehehe
ls1024 said:
use for rewrite ESN and flash ROMs. good luck.
rename it to .rar, its a winrar file.
MOD EDIT - Removed file. PM me if you disagree and provide me with more history/evidence
Click to expand...
Click to collapse
i have pm...tks.
Ignore this
Here is a couple of files I got from chinese DIYPDA forum. One is a modified radio and the other one a program to simplify the esn repair.
Click to expand...
Click to collapse
Here is the modified radio and DFS, a program that does let you change MEID and/or ESN for when we can do it. Only .40 can change to this radio
Code:
http://www.mediafire.com/?bxjnytljdid
http://www.mediafire.com/?zmtjymhzcjf
we upgrade to 0.40? is the focus of
At least if we can do the .40 upgrade then we can also upgrade to an HSPL that allows unsigned ROMs. Has anybody had any luck with .40? I would like .40 on my phone... And also a way to go back to .38 if possible!
Well, easiest way to go .40 is to buy an Imagio that's .40 already.
taobao(dot)com as specified by our friends at diypda(dot)com has them for 3150 = $461 usd. The question is... If we get this phone and we flash the Imagio shipped rom, will it flash .38 spl or leave it at .40 spl?
It will replace to .38 ,
u must delete SPL from the ruu_signed.nbh
m4f1050 said:
Well, easiest way to go .40 is to buy an Imagio that's .40 already.
taobao(dot)com as specified by our friends at diypda(dot)com has them for 3150 = $461 usd. The question is... If we get this phone and we flash the Imagio shipped rom, will it flash .38 spl or leave it at .40 spl?
Click to expand...
Click to collapse
Hmmm, well, at least the .40 can flash it after you remove .38 spl (will be unsigned afterwards) so how do you remove it? I've cooked ROMs with kitchens before but I have no clue how to remove the SPL from the .nbh
htcRIE_0.5.0.12
m4f1050 said:
Hmmm, well, at least the .40 can flash it after you remove .38 spl (will be unsigned afterwards) so how do you remove it? I've cooked ROMs with kitchens before but I have no clue how to remove the SPL from the .nbh
Click to expand...
Click to collapse
I'll give it a test drive to see how it works. Link here: http://forum.xda-developers.com/showthread.php?t=377514
I tested program, it does work, I managed to remove SPL from the Verizon .nbh but Whitestone is not on the list of selected phones, not sure what that list/dropdown menu is for, is that for signing the ROM?
Imagio ROM Test
I have an Imagio, I am willing to use as Genie Pig if anyone can point me to promising ROM to test out. I'm willing to chance bricking the phone. It has been replaced by a new phone from Verizon.
I have got Nv_data.bin from my phone and opened it with Hex Workshop, and gone to 0x181468.
This is apparently supposed to be FF 01 ... when the phone is locked, and you change it to FF 00 00... ... but mine is already FF 00 00 00 00 46 46... but the phone is still locked (says emergency calls only with sim from different network.)
It is locked to orange UK FWIW.
check your IMEI number matches the number on the box / phone
theres a small chance it could of got corrupted with playing with the Nv_data.bin files
The IMEI under anroid settings is the same as printed on the phone. If you mean within the file then you will have to let me know how to find it?
I haven't done anything to the file yet except copy it.
?? what to do ??
So I have CWM, a 4.2.2 ROM On this phone, but whenever I turn it on with a different SIM Card than the phone is accepting, it asks me for a SIM network Unlock PIN.
I found this thread:
http://forum.xda-developers.com/showthread.php?t=939752
Where it says to edit the /efs/nv_data.bin file and change it from FF 01 00 00 00 00 46 46 46... and change the 01 to 00. When I tried to edit it in a Hex Editor, the 01 was already 00. So that should mean that it's already unlocked right? What can I do to unlock this phone?
Image from Hex editor (to make sure I'm editing the right part):
http://i.imgur.com/F0jMO0x.png
ROM: http://forum.xda-developers.com/showthread.php?t=1878961&highlight=cm+10+1
Career: T-Mobile.
Thank you.
same issue
Aman1238 said:
So I have CWM, a 4.2.2 ROM On this phone, but whenever I turn it on with a different SIM Card than the phone is accepting, it asks me for a SIM network Unlock PIN.
I found this thread:
http://forum.xda-developers.com/showthread.php?t=939752
Where it says to edit the /efs/nv_data.bin file and change it from FF 01 00 00 00 00 46 46 46... and change the 01 to 00. When I tried to edit it in a Hex Editor, the 01 was already 00. So that should mean that it's already unlocked right? What can I do to unlock this phone?
Image from Hex editor (to make sure I'm editing the right part):
http://i.imgur.com/F0jMO0x.png
ROM: http://forum.xda-developers.com/showthread.php?t=1878961&highlight=cm+10+1
Career: T-Mobile.
Thank you.
Click to expand...
Click to collapse
Hi I too have the same issue...it asks for the sim network unlock pin after update.
Can anyone help?