Related
**BE VERY CAREFUL WITH THESE TOOLS. IT IS ENTIRELY POSSIBLE TO DO IRREPAIRABLE DAMAGE.**
Ripped from the Xperia ROM, these programs allow control over a number of settings in the device.
RegisterEditor should allow direct reading and writing of registers on the qualcomm msm72xx chipset, which will allow control over virtually every setting available, just need to determine addresses and potential values, etc
TBattery talks directly to the battery chipset, and returns values such as mAh capacity, battery temperature, current draw, percentage remaining, etc.
DbgTerm allows real time display of Debug Log on device.
DebugTool allows among other things redirecting of KITL output to USB. You can also configure the level of logging for the Debug Log and have it save the log to SD.
Save Kernel KITL Log to SD:
1.) Open DebugTool.exe, input value 43D in [5]DebugFlags, click menu -> write
2.) Shut Down with Power Button (long press), and start up
3.) Do actions you want to be logged (load program that fails, drivers, etc.)
4.) Plug phone into usb, connect w/activesync and copy off /Storage Card/HtcLog/*.txt
5.) Open DebugTool.exe, input value 0 in [5]DebugFlags, click menu -> write
FMTuner allows direct advanced control over the FM Radio chipset, among other things allows activation without headphones (although I don't see a way to route audio to the speaker)
Uni-AT allows issuing of AT commands to the ROM.
dump a raphael ROM and open up rilphone.dll in a hex editor, look for the strings like +CRING, @AGPSADDRESS, $HSUPA_STATUS, these are AT Commands that can be issued to the radio ROM, to query status and alter settings.
Query an existing setting like so:
AT+CRING?
AT$HSUPA_STATUS?
[email protected]?
Querying a command should give you some input as to the required format.
Change a setting like so:
AT+CRING=1
AT$HSUPA_STATUS=1
[email protected]=1
For a setting with multiple parameters, such as AT+HTCNV, set it like so: AT+HTCNV=param1,param2,param3
Useful AT Commands:
AT+RADIOVER : returns radio rom version
AT+HTCNV : returns +HTCNV: 1,10,8 - param1 = DTM support, 1/0, param2 = MCS support 8/10/12, param3 = HSDPA Category 6/8/12
AT+HTCENS : ENS support 1/0
Reserved for more stuff
WOW!!!!!!!!
this would get alot more views in the diamond section.... thanx for posting it still
Looks like most of these tools were posted in Diamond section already here: http://forum.xda-developers.com/showthread.php?t=416334&highlight=htc+debug+tools
However everyone seemed to miss the significance of RegisterEditor entirely, it's listed in the linked Wiki as a 'very basic registry editor' but it has nothing to do with the registry at all..
Anyway, this is a dup post. Doh! But these versions are newer, and i'll try to make it more useful by including more knowledge about the apps
Wow! Kudos for this! Amazing. Register Editor is very powerful. Gotta map this out
Interesting. I wonder if these tools could be useful in unlocking the FM radio on CDMA Touch Pros.
[Edit: I noticed that you specified these were for the 72XX chipset. Any idea what kind of compatibility they have with the 75XX?]
Not sure, worth a try since they are similar, the api might be the same. You should be able to try a read operation without harming anything..
FMTUner Tested on Raphael
I've tested FMtuner on Raphael CDMA but nothing happens, I mean, the tool works, but no frequency is detected.
Fabian
bedoig said:
Interesting. I wonder if these tools could be useful in unlocking the FM radio on CDMA Touch Pros.
[Edit: I noticed that you specified these were for the 72XX chipset. Any idea what kind of compatibility they have with the 75XX?]
Click to expand...
Click to collapse
there is CDMA debugtools set, grab it from any cdma beta rom (maybe posted on ppcgeeks, if not, i can upload it here), similar to gsm but for example the AT tool differs (UNI_AT will not work on CDMA) etc etc.
bump for adding new AT commands
Is there some documentation for tBattery explaining exactly what each reading is?
Also have a suggestion if possible that it include a time hack with each sampe it saves to the log instead of just a start and end time.
Thanks in advance.
cmonex said:
there is CDMA debugtools set, grab it from any cdma beta rom (maybe posted on ppcgeeks, if not, i can upload it here), similar to gsm but for example the AT tool differs (UNI_AT will not work on CDMA) etc etc.
Click to expand...
Click to collapse
Could you post the CDMA debugtools set?
Thankyou very much
someone asked me in PM today to post the tools, see attachment.
tbattery
how exactly do i install this program? do i just copy it to my SD card and open it from my phone? thanks in advance
yup, copy to eg SDcard to DebugTools folder and run the debugtool
Hi,
yesterday i tried nearly the whole day to change my mac address on my x1. first i made a hardspl for x1. the new bootloader is working.
After that, i connected via mtty. I tried some commands like emapiTest, emapiWlanMac and some other what i found at xda-dev. I only go "command error" in mtty.
Then i flashed the latest rom (R2A) and tried it again with mtty. Same bad results.
There is a posting at xda-dev: NOTE: To use rbmc you need to
authenticate with proper password .... otherwise bootloader returns "Command error !!!" or "Command is Locked!". (if you're using Hard-SPL, this is unlocked, and any address can be read with 2.30.Olipro)
Do i make the same authenticate with the X1 HardSpl that i am able to work with any commands?
Best regards
strohrum
You can't change the MAC address of a network device. It's the unique hardware serial number of the network device.
My guess is that you're trying to get your Xperia to connect to a hotspot that only allows specific MAC addresses. In that case it makes more sense to find the wifi MAC address of your phone, go into the configuration page for your wifi router and enter the MAC address on the filter list.
You can get the phone's wifi MAC fairly easily. Turn on wifi, then:
Start > Settings > Connections > Wireless LAN > Advanced
... and the MAC is there for you.
ZenithUK said:
You can't change the MAC address of a network device. It's the unique hardware serial number of the network device.
My guess is that you're trying to get your Xperia to connect to a hotspot that only allows specific MAC addresses. In that case it makes more sense to find the wifi MAC address of your phone, go into the configuration page for your wifi router and enter the MAC address on the filter list.
You can get the phone's wifi MAC fairly easily. Turn on wifi, then:
Start > Settings > Connections > Wireless LAN > Advanced
... and the MAC is there for you.
Click to expand...
Click to collapse
Actually it is possible to "spoof" a network device.
I'm just not sure how to do this on a WM device.
i tried the registry method... didnt find any data for mac address
and i tried what jockyw wrote:
"You can run or flash the USPL (see sticky) and set a MAC address of your own choice.
Connect with MTTY and at the command prompt type:
emapiWlanMac 01 02 03 04 05 06 (the six two-digit numbers are the hexadecimal MAC byte values and should be replaced by anything you like)"
but i only get "command error" at any command.
strohrum said:
How to change the X1 mac address?
Click to expand...
Click to collapse
Is that legal ??
who cares ?
exxi said:
who cares ?
Click to expand...
Click to collapse
hmmm...
Maybe you are right and xda-devs wouldn't care about that...
.
That is not legal I am sure.
Legal WHERE? 50% of the content here is probably not koscher! What a stupid question!
ANY medling with software is illegal worldwide! Read the license agreements!
I would suggest NOT to discuss this...waste of time and effort! Just a thought ;-)
why should be illegal to change mac address? It's not IMEI
guap said:
why should be illegal to change mac address? It's not IMEI
Click to expand...
Click to collapse
BTW, I was just asking, not stating
Fulgore69 said:
That is not legal I am sure.
Click to expand...
Click to collapse
Well, its not illegal in the "go to jail" sense... but more of a torts way. SE won't care that a relatively small group is tinkering with their own phones since it doesn't affect their income at all. Rather, if we filed a warranty claim, they can deny it on breach of terms.
The only time a modified MAC could be considered "illegal" is if you are pirating as a result of modifying it.
Why would you even want to change the mac-adress?
Fulgore69 said:
That is not legal I am sure.
Click to expand...
Click to collapse
Please don't assume that something is illegal simply because it's "sometimes" associated with "hacking". Password recovery is not illegal, port scanning is not illegal, packet sniffing is not illegal. These are all used by most large companies on a regular basis. I'm a network engineer and I can assure you that it is legal to "spoof" your mac address. Even though there may be some unethical reasons for doing this, there are also unethical reasons for owning a kitchen knife. We change our mac addresses of many of the devices at work all the time for many, very legitimate reasons.
While there's no easy way to change the actual information stored in the CIS of a device, depending on the NIC driver, many drivers support dynamic mac addresses. Even Microsoft provides support for configurable mac addresses.
I dug around in the registry a bit and it doesn't seem like there is a default setting for this on Xperia (well, that I could find), but I'm sure there's a way to change the NDIS miniport drivers to simply call a new string value containing whatever you're trying to change your mac to.
Check out these MSDN articles that might help with a solution.
http://msdn.microsoft.com/en-us/library/bb648482.aspx
http://msdn.microsoft.com/en-us/library/ms893567.aspx
hi jhoffa,
thanks for the solution links. but i already need help:
At MSDN:
Finally, if the card information structure (CIS) of the PC Card contains a network address value, Ndis.dll creates a \HKEY_LOCAL_MACHINE\Comm\Miniport Instance\Parms\NetworkAddress key to store the network address.
My registry dosent show the path ...\NetworkAddress
\HKEY_LOCAL_MACHINE\Comm\TNETW12511
DisplayName
IEEE 802.11b/g Compatible Wi-Fi Adapter
At: HKEY_LOCAL_MACHINE\Comm\TNETW12511\Parms\TcpIp it shows me: Autocgf, autointerval, automask, autoseed, autosubnet, dhcpdns, dhcpipaddress, dhcpserver, dhcpsubnetmask, enabledhcp, lease, leaseobtainedhigh, leaseobtainedlow, prevreqoptions, t1 and t2. but nothing like a mac address.
is it possible that i am looking the wrong way?
thanks for helping
strohrum
strohrum said:
hi jhoffa,
thanks for the solution links. but i already need help:
At MSDN:
Finally, if the card information structure (CIS) of the PC Card contains a network address value, Ndis.dll creates a \HKEY_LOCAL_MACHINE\Comm\Miniport Instance\Parms\NetworkAddress key to store the network address.
My registry dosent show the path ...\NetworkAddress
\HKEY_LOCAL_MACHINE\Comm\TNETW12511
DisplayName
IEEE 802.11b/g Compatible Wi-Fi Adapter
At: HKEY_LOCAL_MACHINE\Comm\TNETW12511\Parms\TcpIp it shows me: Autocgf, autointerval, automask, autoseed, autosubnet, dhcpdns, dhcpipaddress, dhcpserver, dhcpsubnetmask, enabledhcp, lease, leaseobtainedhigh, leaseobtainedlow, prevreqoptions, t1 and t2. but nothing like a mac address.
is it possible that i am looking the wrong way?
thanks for helping
strohrum
Click to expand...
Click to collapse
Have you tried adding
Network Adress as a (i'm presuming) a Dword to \HKEY_LOCAL_MACHINE\Comm\TNETW12511\Parms\ ?
i added "NetworkAddress" as String and typed a 12 letter mac in it. didnt work. Dword same.
jhoffa said:
I dug around in the registry a bit and it doesn't seem like there is a default setting for this on Xperia (well, that I could find), but I'm sure there's a way to change the NDIS miniport drivers to simply call a new string value containing whatever you're trying to change your mac to.
Click to expand...
Click to collapse
i skiped this as i read your posting before. i know that i cant handle this, i am too noobish in registry files edit.
maybe someone could help me with that?
thanks
strohrum
i found that at eggheadcafe.com:
Step 1 --> changes to driver
Steps [2-5] from C# application
1) In NDIS Intermediate driver (QueryMiniport function), I made the
following changes
a) When OID is CURRENT_MAC_ADDRESS , open registry , read a
registry name ChangeMAC,
b) if value of ChangeMAC is 1 then read registry value of "NewMAC"
and then convert it appropriately to MAC format
(remove extra unicode characters etc)
c) then do a NDISMoveMemory to current adapters MACaddr field.
d) close registry
2) Set value of ChangeMAC (DWord) to 1
3) Set value of NewMAC (string) to the new mac address
4) Invoke a NDIS_REBIND_ADAPTER (this internally will call
QueryMiniport ) and inturn execute step (1)
5) Set value of ChangeMAC (DWord) to 0
anybody an idea how does it work?
michaelthemage said:
Legal WHERE? 50% of the content here is probably not koscher! What a stupid question!
ANY medling with software is illegal worldwide! Read the license agreements!
I would suggest NOT to discuss this...waste of time and effort! Just a thought ;-)
Click to expand...
Click to collapse
Using an unofficial program "stealed" from other phone or cook a personal ROM is not paragonable as change MAC Address.
MAC Address changes are the same of IMEI's ones: if you want to create-problems to a WiFi network (for example) with your modified MAC Address, you are not more identificable...so this is illegal.
To prevent the possibility of this type of "problems", all changes acts to alterate UNIQUE IDENTIFICATION of a device (IMEI or MAC Address numbers) are illegal, because it will cause a POSSIBLE multi-identity.
I think this tutorial is long over due. There are guides out there for individual basebands but if you don't want to go searching and want to learn how to do it your self hopefully this guide can help. If it does, don't forget the thank you button.
Your first step obviously is to get all the drivers you need to hook your phone up to CDMA workshop, so download any diagnostic drivers you may need. One other thing you need is some type of hex editor. Winhex works great. You can get it here.
http://x-ways.net/winhex/
Once that's done we can move on.
1.) Open up cdma workshop and connect your phone and then click read. Proceed to the security tab and enter your spc code and send it to the phone to unlock it.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
2.) Go to the memory tab and click start under memory scan. Just leave the fields the way they are.
you should get something like
Scanning memory for readable areas:
Unreadable area from: 0000:0000
Readable area from: 00FA:0000
Unreadable area from: 0100:0000
Readable area from: 0109:0000
Unreadable area from: 01DC:0000
Process is stopped at: C000:0000
You shouldn't have to sit there through the entire scan. After you get the two readable areas and two unreadable areas you can stop the scan, but it's not mandatory.
3.) Now for the tricky part. I'm not sure if this is how you figure out the number of bytes you need but it works fine for me. The memory is readable from 00FA:0000 to 0100:0000 so we take the number 0100:0000 and subtract it from 00FA:0000 and convert it to a decimal. To do this use the calculator tool in Windows. So open the calculator and click view and select programmer.
Now punch in 1000000. (The first zero doesn't matter, the same goes for the other address.) Then click subtract and punch in FA0000(of course replacing these addresses with the ones in your scan). Now when I hit equals I get the hex number 60000. To convert this to a decimal simply select dec.
As you can see I get the number 393216.
4.) Now in the memory / Eeprom area put in the number you calculated where it says bytes. Put in the first readable area in the start address field. Now click read and it will prompt you to save the file somewhere so go ahead and do that.
5.) Now take your MEID number and put it in pairs of two then reverse them. For example if your MEID is A1000067452301 pair it like so
A1 00 00 67 45 23 01 and reverse it like so
01 23 45 67 00 00 A1 remove the spaces and you get 012345670000A1
6.) Open the saved file in Winhex and press ctrl, alt and x. This will bring up a window so you can search certain hex numbers. Put in your reversed MEID without the spaces.
Click OK and it will take you to the first MEID it finds.
The address to the left of my MEID is 0000C590(or just C590) and the column for the beginning of my MEID is 4. Add 4 to C590 and you get C594. To get the first MEID address take the number you start the scan with(mine was FA0000) and add C594 to it. I get FAC594. This will be your first MEID address. Write it down and move on to the next. If you press ctrl, alt and x and hit OK it will take you to the same address you were just at so what I do is change one of the numbers and then search again like so.
I changed the first pair to 00 so I can continue searching for MEID addresses. Continue this process for the rest of this file then you must do step 3-6 with your second readable areas. Mine again was 0109:0000 - 01DC:0000. The second readable area takes a very long time. My bytes ended up being 13,828,096.
7.) The last thing I did was do the entire process again only I put the phone in airplane mode. This may or may not be necessary. This same process can also be used to find your ESN locations. Just search the same files but put your reversed ESN in the search window in Winhex.
Overall it is a very time consuming process but if you do everything correct it can save you a lot of time as opposed to looking up addresses someone else has posted. I have tried in the past and people with the same baseband had completely different addresses.
I hope this helps and don't forget the Thank You button if it does.
Dude you really kick ass! I have been looking for something like this forever. This should be stickied. I always wondered what range of addresses to look for and now I know. Way to go bro Got a donation account? I would love to contribute to the help you have given me.
metalheavy said:
Dude you really kick ass! I have been looking for something like this forever. This should be stickied. I always wondered what range of addresses to look for and now I know. Way to go bro Got a donation account? I would love to contribute to the help you have given me.
Click to expand...
Click to collapse
No problem, Theres a donation button under my name on the left of my post. It's funny because I was searching for some kind of guide like this myself for the longest time then one day I just kind of figured it out on my own.
everything done changed success but now I have two bin files locally ... how do i write them to phone? trying same as Read button but write and it give me error
Range check ERROR. any ideas?
please let me know, thanks!
d00nald said:
everything done changed success but now I have two bin files locally ... how do i write them to phone? trying same as Read button but write and it give me error
Range check ERROR. any ideas?
please let me know, thanks!
Click to expand...
Click to collapse
You're going to have to be mores specific I'm not sure what you're asking.
weinerwad3000 said:
You're going to have to be mores specific I'm not sure what you're asking.
Click to expand...
Click to collapse
I folow your nice instruction step by step,
Scanning memory for readable areas:
Unreadable area from: 0000:0000
Readable area from: 00FA:0000
Unreadable area from: 0100:0000
Readable area from: 0109:0000
Unreadable area from: 01DC:0000
Process is stopped at: C000:0000
then i've calculate and memory eprom and i save the files
then i have open with winhex and modify them, not a problem
but now my question how do i upload them back to memory eprom phone?
once I tried via same memory eprom button write those modified bin files and it giving me error message "Range check ERROR"
I need to upload those bin files to phone back
hope now is understandable, please let me know, thank you!
i trying to make the phone for my self only
d00nald said:
I folow your nice instruction step by step,
Scanning memory for readable areas:
Unreadable area from: 0000:0000
Readable area from: 00FA:0000
Unreadable area from: 0100:0000
Readable area from: 0109:0000
Unreadable area from: 01DC:0000
Process is stopped at: C000:0000
then i've calculate and memory eprom and i save the files
then i have open with winhex and modify them, not a problem
but now my question how do i upload them back to memory eprom phone?
once I tried via same memory eprom button write those modified bin files and it giving me error message "Range check ERROR"
I need to upload those bin files to phone back
i need to change it.
hope now is understandable, please let me know, thank you!
i trying to make the phone for my self only
Click to expand...
Click to collapse
You're not supposed to upload the bin files. This is just to find esn locations. Once you have the locations you use qxdm to find the esn and meid and change them there.
weinerwad3000 said:
I think this tutorial is long over due. There are guides out there for individual basebands but if you don't want to go searching and want to learn how to do it your self hopefully this guide can help. If it does, don't forget the thank you button.
Your first step obviously is to get all the drivers you need to hook your phone up to CDMA workshop, so download any diagnostic drivers you may need. One other thing you need is some type of hex editor. Winhex works great. You can get it here.
http://x-ways.net/winhex/
Once that's done we can move on.
1.) Open up cdma workshop and connect your phone and then click read. Proceed to the security tab and enter your spc code and send it to the phone to unlock it.
2.) Go to the memory tab and click start under memory scan. Just leave the fields the way they are.
you should get something like
Scanning memory for readable areas:
Unreadable area from: 0000:0000
Readable area from: 00FA:0000
Unreadable area from: 0100:0000
Readable area from: 0109:0000
Unreadable area from: 01DC:0000
Process is stopped at: C000:0000
You shouldn't have to sit there through the entire scan. After you get the two readable areas and two unreadable areas you can stop the scan, but it's not mandatory.
3.) Now for the tricky part. I'm not sure if this is how you figure out the number of bytes you need but it works fine for me. The memory is readable from 00FA:0000 to 0100:0000 so we take the number 0100:0000 and subtract it from 00FA:0000 and convert it to a decimal. To do this use the calculator tool in Windows. So open the calculator and click view and select programmer.
Now punch in 1000000. (The first zero doesn't matter, the same goes for the other address.) Then click subtract and punch in FA0000(of course replacing these addresses with the ones in your scan). Now when I hit equals I get the hex number 60000. To convert this to a decimal simply select dec.
As you can see I get the number 393216.
4.) Now in the memory / Eeprom area put in the number you calculated where it says bytes. Put in the first readable area in the start address field. Now click read and it will prompt you to save the file somewhere so go ahead and do that.
5.) Now take your MEID number and put it in pairs of two then reverse them. For example if your MEID is A1000067452301 pair it like so
A1 00 00 67 45 23 01 and reverse it like so
01 23 45 67 00 00 A1 remove the spaces and you get 012345670000A1
6.) Open the saved file in Winhex and press ctrl, alt and x. This will bring up a window so you can search certain hex numbers. Put in your reversed MEID without the spaces.
Click OK and it will take you to the first MEID it finds.
The address to the left of my MEID is 0000C590(or just C590) and the column for the beginning of my MEID is 4. Add 4 to C590 and you get C594. To get the first MEID address take the number you start the scan with(mine was FA0000) and add C594 to it. I get FAC594. This will be your first MEID address. Write it down and move on to the next. If you press ctrl, alt and x and hit OK it will take you to the same address you were just at so what I do is change one of the numbers and then search again like so.
I changed the first pair to 00 so I can continue searching for MEID addresses. Continue this process for the rest of this file then you must do step 3-6 with your second readable areas. Mine again was 0109:0000 - 01DC:0000. The second readable area takes a very long time. My bytes ended up being 13,828,096.
7.) The last thing I did was do the entire process again only I put the phone in airplane mode. This may or may not be necessary. This same process can also be used to find your ESN locations. Just search the same files but put your reversed ESN in the search window in Winhex.
Overall it is a very time consuming process but if you do everything correct it can save you a lot of time as opposed to looking up addresses someone else has posted. I have tried in the past and people with the same baseband had completely different addresses.
I hope this helps and don't forget the Thank You button if it does.
Click to expand...
Click to collapse
Thanks for posting this! I really appreciate it.
Just curious on how to actually convert what I find from WinHex to the address I search in QXDM ie: 0x00000000. Also what if the MEID or ESN starts on a letter column? Just replace the last number/letter with the letter of the column? Thanks for all the help, been a week for me so far trying to do this damn evo on boost lol
weinerwad3000 said:
2.) Go to the memory tab and click start under memory scan. Just leave the fields the way they are.
you should get something like
Scanning memory for readable areas:
Unreadable area from: 0000:0000
Readable area from: 00FA:0000
Unreadable area from: 0100:0000
Readable area from: 0109:0000
Unreadable area from: 01DC:0000
Process is stopped at: C000:0000
Click to expand...
Click to collapse
When I start the scan I get an error almost immediatly. The error reads: "Process is stopped. Phone does not answer." After that my phone turns off. Here is the log of what CDMA WS said:
Code:
Scanning memory for readable areas:
Readable area from: 0000:0000
Process is stopped at: 0001:0000
Please PM me if anyone knows how to fix this.
gabycool said:
When I start the scan I get an error almost immediatly. The error reads: "Process is stopped. Phone does not answer." After that my phone turns off. Here is the log of what CDMA WS said:
Code:
Scanning memory for readable areas:
Readable area from: 0000:0000
Process is stopped at: 0001:0000
Please PM me if anyone knows how to fix this.
Click to expand...
Click to collapse
Did you send the spc to the phone.
trying to flash droid razrs to even get 1x data, using dfs writing "vzw" for ha and aaa keys and still no data! any help? all i need is 1x
moparfreak426 said:
trying to flash droid razrs to even get 1x data, using dfs writing "vzw" for ha and aaa keys and still no data! any help? all i need is 1x
Click to expand...
Click to collapse
What service do you have?
moparfreak426 said:
trying to flash droid razrs to even get 1x data, using dfs writing "vzw" for ha and aaa keys and still no data! any help? all i need is 1x
Click to expand...
Click to collapse
Try a service like remotesquad.com Flashing to PagePlus, Selectel or NextG it will get 3g on the devices. Their is also an option for 1x if preferred.
weinerwad3000 said:
You're not supposed to upload the bin files. This is just to find esn locations. Once you have the locations you use qxdm to find the esn and meid and change them there.
Click to expand...
Click to collapse
Please help with a guide/tutorial to change the ESN and MEID for samsung SPH-D710 - Samsung galaxy S2. Please
samkit369 said:
Please help with a guide/tutorial to change the ESN and MEID for samsung SPH-D710 - Samsung galaxy S2. Please
Click to expand...
Click to collapse
I have an s4 so I'll see if its similar.
samkit369 said:
Please help with a guide/tutorial to change the ESN and MEID for samsung SPH-D710 - Samsung galaxy S2. Please
Click to expand...
Click to collapse
What have you tried so far. Have you tried hooking your phone up to cdma workshop or qxdm?
weinerwad3000 said:
What have you tried so far. Have you tried hooking your phone up to cdma workshop or qxdm?
Click to expand...
Click to collapse
i dont have a cracked version of the latest cdma workshop 3.x
i found one cracked version 2.7. it only allowed to write ESN. no way to change MEID. so i tried the default way. it didnt happen. then tried with the Samsung V & S series settings. it didnot the write the ESN i entered 809EFC02, but instead changed it to sumthng else totally - 0xAC2AA175. This also become my MEID strangely.
I have a Reliance phone. I went to activate the number. they said my RSN is damaged. A000003969E226 this was my MEID earlier. i checked the back of my phone. there A0000039307C63 this was my MEID. I need to fix this. Please help me
samkit369 said:
i dont have a cracked version of the latest cdma workshop 3.x
i found one cracked version 2.7. it only allowed to write ESN. no way to change MEID. so i tried the default way. it didnt happen. then tried with the Samsung V & S series settings. it didnot the write the ESN i entered 809EFC02, but instead changed it to sumthng else totally - 0xAC2AA175. This also become my MEID strangely.
I have a Reliance phone. I went to activate the number. they said my RSN is damaged. A000003969E226 this was my MEID earlier. i checked the back of my phone. there A0000039307C63 this was my MEID. I need to fix this. Please help me
Click to expand...
Click to collapse
First off you shouldn't use cdma workshop to flash your phone. cdma workshop is used to unlock the phone and scan locations as well as a few other things. I don't have time tonight to go into detail on what to do but i will get back to you tomorrow. In the mean time I suggest you do a lot of reading on how to flash phones. Look up the evo 4g to boost tutorials to get a good idea of what you're going to need to do. I'll get back with you when I have more time probably sometime tomorrow late afternoon. Also you made a rookie mistake by posting your meid and ESN in a public forum. People can clone your phone with that info. I suggest you edit your post and delete that sh*t.
what phone are you using as the donor? What provider are you using?
Hi folks,
I need to know what the "correct" values for the Internet Sharing registry keys look like, so I can write an app that fixes them for those of us who don't have it working. To do this, I'm asking if people can do some simple steps for me:
1) Install Webserver Native Access v0.5.3 on a dev-unlocked phone, if you don't already have it. If possibly, please use the AllCapabilities version but even the normal-capability version helps.
2) Run the app and use a browser on your PC to navigate to Registry, HKEY_LOCAL_MACHINE, SYSTEM\CurrentControlSet\services\ICSSVC (URL should look something like http://192.168.0.15:9000/Registry?hive=80000002&path=SYSTEM\CurrentControlSet\services\ICSSVC).
3) Click "Download this key and subkeys as .REG" and save the resulting file.
4) Post that file (in a .ZIP or as a .TXT) here, along with the following info:
4a) What phone model you have (if using a modified ROM, which ROM as well).
4b) What carrier (mobile operator) you have, and whether your phone was built for that carrier.
4c) What OS version you are running (exact build won't hurt but shouldn't matter).
4d) Whether the "Internet Sharing" feature currently works for you, and if not, what error you get.
Thank you so much! I'll post an example below.
By the way, I'm particularly interested in the following classes of phone:
* Everybody who can run the AllCapabilities version of the webserver.
* Anything on T-Mobile US that has working ICS. Since it seems to work only for TMo-branded phones, better still if your phone isn't a TMo model.
* Anybody who has working Internet Sharing on a different carrier than their phone was built for.
* Anybody who has it work on their home carrier but not on any others.
* Anybody for whom it does not work and never has.
* Anybody who has an open-market phone and Internet Sharing works on multiple networks for them
(I will add to this list if other classes of problem crop up and need to be fixed in a different way).
I should mention that there's no guarantee that the fix will be available for all phones, at least not until we interop-unlock them. It should be possible for any phone with IU, though, at a minimum.
Thanks for your help! (Seriously, I'll push Thanks for anybody who sends useful data *at least* until I get it working.) This could benefit a lot of us here; in theory, it might even allow us to get Internet Sharing working without it using tethered data limit too.
Example from my phone
Phone model: Samsung ATIV S (SGH-T899M), stock (but capability-unlocked and somewhat hacked) ROM
Carrier: T-Mobile US, but the phone was built for Telus in Canada even though it had no SIM lock.
OS version: WP8.0 GDR3 plus the pre-8.1 update (Samsung firmware slightly tweaked to reserve registry and filesystem writing).
Feature status: Internet Sharing feature does not work for me on this carrier, and never has. Error is:
Connection Not Shared
There's no cellular data connection to share right now. Check your cellular settings and signal, and try again.
Click to expand...
Click to collapse
(As a side note, that error message is a dirty lie.)
I'm very confused about this one topic.. Because i always share my internet connection without data plan since 8.0 & it works fine. Never disconnect.
Firstly i would like to know as what peoples want as refers this one.
Sorry for no helping points.
Wow, "THANKS" @djamol. Would it have been too bloody hard to follow the steps so you would have actually contributed something to this thread? If your Internet Sharing works, even though you don't have a tethering plan (I *VERY* strongly doubt it works if you don't even have a data plan; that makes no sense at all) then your configuration data would have been very valuable.
There are quite a few people who are either completely unable to use the Internet Sharing feature or for whom it would cost extra (even though, in some cases, it is *supposed* to be included in their plan). The goal is to help these people.
Phone model: Samsung ATIV Odyssey (SCH-I930), interop unlocked(thank you sir!!!)
Carrier:Verizon US
OS version: Dev Preview 8.1 Update 1(8.10.14147.180)
Feature Status: Working (Seems on other devices/earlier OS's I got a warning message about data usage but not now). Haven't tried on other carriers; first time used.
A little side note: Still had Internet Sharing enabled when I started the webserver app and got a strange IP or MAC address which when clicked on threw an error. Couldn't find the address on any devices connected to my wireless or on the router itself. Included screenshots...
Aw hell, that's an IPv6 address again. I really ought to fix the app for handling those. Thanks for the reminder...
Also, big thanks for the file! I'd like some more from different versions, just to get a feel for what's version-specific vs. different for reasons of working-or-not, but that was already helpful.
EDIT: Did you use the AllCapabilities version of the app? It looks like the standard version can't read one of the relevant registry keys, and sadly it's the one that is most useful.
GoodDayToDie said:
4) Post that file (in a .ZIP or as a .TXT) here, along with the following info:
4a) What phone model you have (if using a modified ROM, which ROM as well).
4b) What carrier (mobile operator) you have, and whether your phone was built for that carrier.
4c) What OS version you are running (exact build won't hurt but shouldn't matter).
4d) Whether the "Internet Sharing" feature currently works for you, and if not, what error you get.
Thank you so much! I'll post an example below.
By the way, I'm particularly interested in the following classes of phone:
* Everybody who can run the AllCapabilities version of the webserver.
* Anything on T-Mobile US that has working ICS. Since it seems to work only for TMo-branded phones, better still if your phone isn't a TMo model.
* Anybody who has working Internet Sharing on a different carrier than their phone was built for.
* Anybody who has it work on their home carrier but not on any others.
* Anybody for whom it does not work and never has.
* Anybody who has an open-market phone and Internet Sharing works on multiple networks for them
(I will add to this list if other classes of problem crop up and need to be fixed in a different way).
Click to expand...
Click to collapse
Hi,
4) Attached.
4a) Nokia Lumia 920 RM-821 on UK CV ROM, but originally phone came with Orange Poland ROM
4b) I'm on Orange too, though not in Poland nor in UK.
4c) Running WP8.1 Update 1 on Lumia Black firmware.
4d) Internet Sharing feature worked smoothly for me from the beginning on any rom i flashed and any firmware, so yes, it's working without any problems.
Hope this helps.
@GoodDayToDie
Guess I can help!
4a) T-Mobile Branded HTC 8X running WP 8.1 Developer Preview
4b) T-Mobile US. It was built for the carrier
4c) OS version 8.10.12400.899; Firmware 3030.0.34101.531
4d) Internet Sharing works great! Sometimes when I am roaming, I get a message saying I don't have a plan that supports Internet Sharing and that I need to purchase one.
Hope that helps!
GoodDayToDie said:
EDIT: Did you use the AllCapabilities version of the app? It looks like the standard version can't read one of the relevant registry keys, and sadly it's the one that is most useful.
Click to expand...
Click to collapse
Sorry, can't sideload AllCapabilities version and of course the Bootstrap app succeeds but AllCapabilitiesUnlock fails on this OS. I am currently trying to find you any other info via FS Access and came across this if it's of any use ???
Oh right, I meant to release an updated version of EnableAllSideloading for 8.1. Whoops, I should do that. If you want to help out with that (not really the right thread but oh well, it's sort of relevant), dropping the exported .REG for HKLM\SOFTWARE\Microsoft\SecurityManager will help a lot. Note that it will include a list, by GUID, of all the apps you've installed (but nothing much else of a potentially-sensitive nature).
The files you provided are interesting. I can't say I know what the value in the first one mean, but they do imply a Verizon-specific difference in the feature. The second you actually might not want to share; it has the (default?) configuration of the Internet Sharing network in it, including key material. The third isn't actually data by itself; it instead defines the schema for the HotSpot configuration file. This info is potentially useful (though I wasn't able to get a Configuration Service Provider to parse my HotSpot provxml when I tried, probably because I didn't have the requisite access) although the info is also available publicly online.
4) Posted rar file here. Though I get no value, using the webserver and snicklers registry tools. Shows error2 in webserver. Registry Tools doesn't show any error just shows "no value".
4a) Using a Samsung Ativ-S SGH-T899M running Wolf's Fake Rom
4b) Using it on Simple Mobile, bought it sim unlocked I think it used to say Telus before the fake rom.
4c) OS Version 8.10.12359.845
4d) Internet Sharing works fine after Wolf's Fake Rom.
Whaaaa? That's weird. Error 2 means FILE_NOT_FOUND, or, more precisely here, means the registry key wasn't found. If you go up a level (CurrentControlSet\Services) is there not any ICSSVC key? Can you maybe post the .REG for that entire key?
Samsung ATIV S Neo (SPH-I800) Stock Rom - Interop-Unlocked/All Capabilities
Sprint for Sprint
Window Phone 8.1 Update through DP: 8.10.14147.180
Internet Sharing doesn't work for me.....that might be because I haven't paid Sprint for it.
Error:
Connection Not Shared
There's no cellular data connection to share right now. Check your cellular settings and signal, and try again.
Also attached, what I think, is the text of the S printEntitlement dll. This may be only be relevant for sprint....
Blue_Frog was working on something regarding ICS here: http://forum.xda-developers.com/showpost.php?p=54704074&postcount=577
-tdecision10
Any movement with this?
-tdecision10
Was reading wolfs MBN Creator thread the other day and somebody mentioned a backup of the CSC being stored at C:\Windows\System32\CSC
It has to be blocking the internet sharing when the original CSC is run during a hard reset. However wolfs CSC has internet sharing working fine. Tested by me. Im using an ativ s t899m WP8.1 running wolfs fake rom.
Using the webserver I pulled the files from my phone. Using sam-tools I extracted his CSC file, not directly off phone just from the mbn file from his fake rom thread.
Don't have time to look them over but here they are.
Looked over files in my previous post.
The stock CSC has 5 different configurations, all from different carriers. Most of the files contain nothing related to internet sharing except the SS_xxx_CSC.xml file. This one contains a lot of registry edits that aren't included in the wolf csc. Some for accent colors, tile layout, etc. but there is a few registry edits that regulate internet sharing in there. This same file in wolf's csc contains a bunch of capability unlocks but nothing even close to the stock versions with all the reg edits for all sorts of different stuff.
It mentions a dll file named EAPSIMHSPlugin.dll that I wasn't able to find on my phone. Not that I don't think its there I just wasn't able to get to the directory from the webserver. Here is the path c:\Programs\HotspotHost\MSFT\EAPSIMHSPlugin.dll
Here are the 3 edits made that I think block internet sharing. They are in
HKLM\Software\Microsoft\Windows Phone\HotspotOffload
I have that directory in my phone and it includes the subdirectory Plugins and Parameters but neither include any keys within them.
Can someone test this edit and see if its gonna be this easy to turn off the internet sharing block.
HKLM\Software\Microsoft\Windows Phone\HotspotOffload\Plugins\MSFT\PluginRank
Change the 1 to 0
Ill attach a txt file of the entries I copied and pasted from the Telus CSC files that would have anything to do with internet sharing for all the reg edits made incase anybody wants to look.
Oddly enough, my phone doesn't have that key at all. It has the Plugins key, but no subkeys of it (and no values like the ones in the provxml you attached). Of course, that could be due to previous experiments that I've tried (though they didn't work). Similarly, it has the Parameters key but not the subkeys listed in the attached file.
Huh, I really thought we had something there.
Another difference is in the config file. Ill attach just them. Not sure where to go with the differences though. Not familiar with it.
Dreaded VM phone lost meid.
Service will not allow reactivation
I have serial and hex is there an app
To help edit or reenter the settings.
I noticed. In europe they have web pages about this. But for their countries system towers .
I realize swapping phones is not allowed but reinstalling your actual
# meid should fairly simple most likely a program converts your serial
Access code to generate all settings
On that unique phone hex generator.
Any thoughts are appreciated I noticed in CYn11 your settings were
Visible.
Thanks Doug