Related
Please help me!
I screwed my MDA Vario II. I used HTC universal sim unlocker and I haven’t got radio. I know I was a craze.
No GSM, no cid and no imei. The pda is working good.
I vas very happy when I find this site :
http://wiki.xda-developers.com/index.php?pagename=Hermes_UpgradeProblems.
I made this:
USB>
USB>password 0000000000000000
HTCSPass1.CMˆËHTCEUSB>set 1e1
USB>erase a0040000 c80000
HTCST ÚČŇHTCEUSB>erase a0cc0000 c80000
HTCST ÚČŇHTCEUSB>erase a1940000 640000
HTCST ÚČŇHTCEUSB>set 1e 0
USB>
The radio doesn’t work , no GSM, no cid and no imei. The pda is working good.
Please help me
Please can a expert check this!?
I found this with the search option.... can someone check this....
Its written for the Tytn and not for the Vario II, i'm not sure but i thought that the english Vario II has a 1.06 bootloader!! Then you are stuck, beacause the file who degrade your bootloader to 1.04 isnt availleble anymore. Maybe one of the guys here can share it with you?!
======================================================
- Take the battery out of your TyTN and leave it out several minutes
- Disable USB-connection in Active-Sync
- Reboot your Computer
- Replace the battery and put your TyTN in the bootloader
- Try to load the ROM found here:
ftp://xda:[email protected]/RUU120_172125_Qtek_WWE_R11400_Shipping.exe
- Keep trying till you get just past the erasing part, then you will get an error-message and are asked to reset your device with the stylus
- Reset your phone and put it back in the bootloader mode
- Install any Hermes ROM you like, no matter what CID if you have bootloader 1.04
lacika said:
The radio doesn’t work , no GSM, no cid and no imei. The pda is working good.
Click to expand...
Click to collapse
Can you attach a USB monitor capture of what happens when you try to:
a) flash a rom
b) flash a radio rom
Do both things starting from bootloader and with activesync disabled.
Same Problem
I have the same problem
My PDA keeps comming back in the bootloader screen.
When 1 try to update (its a unlockes pda), the upload stops at 1%
Is there a way to erease the PDA ?
Thanks
pimmmm said:
I have the same problem
Click to expand...
Click to collapse
I have the same questions.
Can't do anyithing if you don't attach a USB capture of the process. See this page for instructions: common upgrade problems
smarty77 said:
I found this with the search option.... can someone check this....
Its written for the Tytn and not for the Vario II, i'm not sure but i thought that the english Vario II has a 1.06 bootloader!! Then you are stuck, beacause the file who degrade your bootloader to 1.04 isnt availleble anymore. Maybe one of the guys here can share it with you?!
======================================================
Click to expand...
Click to collapse
HI!
Thank You for your answer. I made yours tip, but not was good.
First I to try smarty77 tip. I used RUU120_172125_Qtek_WWE_R11400_Shipping. Its function. After I’d like rom upgrade. This doesn’t was good (invalid vendor).
Second I to try clearing with mtty.exe.
The situation same, the phone doesn’t work.
Sorry my bad English.
pof said:
Can you attach a USB monitor capture of what happens when you try to:
a) flash a rom
b) flash a radio rom
Do both things starting from bootloader and with activesync disabled.
Click to expand...
Click to collapse
HI!
Thank You for your answer. I made yours tip, but not was good.
First I to try smarty77 tip. I used RUU120_172125_Qtek_WWE_R11400_Shipping. Its function. After I’d like rom upgrade. This doesn’t was good (invalid vendor).
Second I to try clearing with mtty.exe.
The situation same, the phone doesn’t work.
Sorry my bad English.
Just seen your capture but it's not good.. you made a "basic" capture which shows nothing important, please repeat the process again, but this time read point 6:
In the upper part there are two tabs: basic and complete. Click on "Complete".
I cannot help unless I have a complete capture to see the problem.
pof said:
Just seen your capture but it's not good.. you made a "basic" capture which shows nothing important, please repeat the process again, but this time read point 6:
In the upper part there are two tabs: basic and complete. Click on "Complete".
I cannot help unless I have a complete capture to see the problem.
Click to expand...
Click to collapse
HI POF!
Thank you four your help.
It is a new captured files.
Please help me. You are a last chance, for my phones.
Lacika
@lacika:
When checking the seclevel (task 32 bootloader command) your phone replies:
Code:
CID: Wait interpreter timeout.
Level=FF
After that when checking the CID with 'info 2' your phone replies:
Code:
HTCS...?\0.?f..|HTCE
This should be something like T-MOB001 if you have a Vario II from UK, so the CID is screwed.
I can see from the output of 'info 3' that you're running bootloader 1.06.
Then you try to flash the 1.18.255.3 ROM from HTC, which has CID "QTEK_001", you won't be able to flash this image in your device with bootloader 1.06, even if the CID was not screwed you will always get an error (you need bootloader 1.04 to bypass CID checking, and you are in 1.06), the error you're getting from bootloader is:
Code:
CID not allow (255)
As you said you can use the PDA (WinCE boots) what I suggest is buying imei-check unlocker (you need activesync working too for running the imei-check unlocker), because it will downgrade your bootloader to 1.04 and patch your radio... probably it can fix your device, at least it will downgrade your bootloader to 1.04. If after running the unlocker your device doesn't work I suggest that you try to flash a radio ROM, you can find them here:
http://wiki.xda-developers.com/index.php?pagename=Hermes_ExtractedRadioRoms
Let me know how it goes
pof said:
As you said you can use the PDA (WinCE boots) what I suggest is buying imei-check unlocker (you need activesync working too for running the imei-check unlocker), because it will downgrade your bootloader to 1.04 and patch your radio... probably it can fix your device, at least it will downgrade your bootloader to 1.04.
Click to expand...
Click to collapse
Err... I forgot that your IMEI is also screewed, probably imei-check unlocker will not work on your Hermes even if you provide them the right IMEI, because it will not be able to read the IMEI from your phone (will get the wait interpreter timeout too...). anyway... it costs 20GBP, give it a try!
pof said:
@lacika:
As you said you can use the PDA (WinCE boots) what I suggest is buying imei-check unlocker (you need activesync working too for running the imei-check unlocker), because it will downgrade your bootloader to 1.04 and patch your radio... probably it can fix your device, at least it will downgrade your bootloader to 1.04. If after running the unlocker your device doesn't work I suggest that you try to flash a radio ROM, you can find them here:
http://wiki.xda-developers.com/index.php?pagename=Hermes_ExtractedRadioRoms
Let me know how it goes
Click to expand...
Click to collapse
Hi and thanks!
I’ve got one question. I use imei-check unlocker after I’ll got 1.04 bootloader?
Lacika
I tried that with my device before it got sent to service, I brought imei-check unlocker but as my imei was also corrupt it will not work, so I would not waste GDP 20 if you have corrupt imei.
They will not refund either becuase its your problem the imei is corrupt.
lacika said:
I use imei-check unlocker after I’ll got 1.04 bootloader?
Click to expand...
Click to collapse
No, imei-check unlocker will downgrade your bootloader, BUT as shark1 says, it will not work because your IMEI is corrupted and it will not be able to read it.
I guess the best would be to send the unit to the repair centre then...
pof said:
@lacika:
As you said you can use the PDA (WinCE boots) what I suggest is buying imei-check unlocker (you need activesync working too for running the imei-check unlocker), because it will downgrade your bootloader to 1.04 and patch your radio... probably it can fix your device, at least it will downgrade your bootloader to 1.04. If after running the unlocker your device doesn't work I suggest that you try to flash a radio ROM, you can find them here:
http://wiki.xda-developers.com/index.php?pagename=Hermes_ExtractedRadioRoms
Let me know how it goes
Click to expand...
Click to collapse
Hi!
I’ve got a new problem.
I used a M3100v3cUnlock.exe program. This doesen’t read my imei number.
I don’t know how can I flash my bootloader.
Lacika
pof said:
No, imei-check unlocker will downgrade your bootloader, BUT as shark1 says, it will not work because your IMEI is corrupted and it will not be able to read it.
I guess the best would be to send the unit to the repair centre then...
Click to expand...
Click to collapse
I had the same problem! Send it to orange assistance.
lacika said:
I used a M3100v3cUnlock.exe program. This doesen’t read my imei number. I don’t know how can I flash my bootloader.
Click to expand...
Click to collapse
You can't, and your imei is screwed, the unlocker can't check it... so you should better send the unit to the repair centre as suggested.
pof said:
You can't, and your imei is screwed, the unlocker can't check it... so you should better send the unit to the repair centre as suggested.
Click to expand...
Click to collapse
HI!
I’ve got a last question.
It will a new procedure, program, with I can flashing my bootloader.
Lacika
I was flashing my tytn with the new rom with bootloader 1.09 after 8% the usb cord came out and now my tytn is dead its stuck in bootloader mode..spl 1.09...please help
I am also in this boat, except my usb cord didn't fall off, it just stopped updating at 6%.
Connect to the device using mtty and type info 2. If you're CID is corrupt, then you're out of luck just like me.
It seems that the only way to fix this problem is to send the unit back to a service center and get the main board replaced. Unless anyone else has any other ideas. In BL 1.04 you could bypass the CID check but in 1.06 and 1.09 that bug has been fixed.
Great job HTC, you really messed everyone up now, I hope you're ready to start replacing some board on account of your ignorance to create a sufficient backup routine. I guess this means less money of new development and less devices from HTC in the near future.
Because you're in bootloader mode, you might be able to flash the 1.04 bootloader downgrader in; which would then allow you to re-flash any firmware.
Nope, even in boot loader mode I can't go back to 1.04. It doesn't recognize the CID and keeps saying invalid vendor id.
The only possible fix I can see is if someone hacks the hermes and finds a way to cook a rom and not check the CID. Otherwise, it's a full board replacement.
Somehow there has got to be a way to "Bypass" the CID check.
What I was trying to say, if you use the IMEI-CHECK downgrader it will bypass the CID checking enough to get you back down to 1.04?
Yes. Imei-check downgrades your bootloader to 1.04
sn00x said:
Yes. Imei-check downgrades your bootloader to 1.04
Click to expand...
Click to collapse
But to run imei-check unlocker you need a running OS (it needs to transfer files via activesync to the device) and your IMEI should be not screewed while checking it from bootloader. Otherwise it will not work.
I've tried everything possible to get out of bootloader mtty says my cid is corrupt.does anyone know a number for the service center
depends on your country, go into htc website and look at it:
http://www.htc.com
Pof you are correct. The CID is completely corrupt, the radio sectors have a bad record, and the phone can't boot past the windows mobile splash screen. So the only way we can fix this problem, is to hack the flashing of the rom to not check the CID at all. If this can be done, then we're in business.
On another note, I've been seen 1 of these problems arise every day now. Someone either pulls the usb cord or the flashing just crashes.
I think there is a serious enough priority to hack the hermes rom flashing now aside from crossbow. We really need some resources on this so that we don't ever have to go through these problems again.
In the words of Russel Peters (a famous Canadian comedian)... Pof, be a man, do the right thing. Hehehe.
pof said:
But to run imei-check unlocker you need a running OS (it needs to transfer files via activesync to the device) and your IMEI should be not screewed while checking it from bootloader. Otherwise it will not work.
Click to expand...
Click to collapse
But does that "other solution" which can't be posted here anymore bypass that requirement, as it runs through the bootloader and not activesync?
no it doesn't. The update still checks the CID before updating.
And it also needs activesync to transfer the fake bootloader to the device... remember it starts with M3100v3cUnlock.exe too....
Ooh, forgot about that bit .
Hi, I'm a newbie here.
I have great interest for purhcasing Softbank X01HT.
At the beginning, I proposed to flash the rom to English verison.
But recently, I see some messages that we cannot downgrade the bootloader 1.09 to 1.04 anymore.
Therefore, I would like to know ........
Is anyone working on the downgrade method for bootloader 1.09 ?
If so, what's the status now ?
Can I expect there will be a new solution coming soon ?
So many questions ..... hope someone can answer me. Thx !
1.09 to 1.04
ok, what I understood is :
1- you can download from 1.09 to 1.04.
see :
Bootloader
The bootloader is the place where you can change the low-level software parameters and some hardware parameters of the Hermes, change and read the ROM and provides information about it.
The bootloader is invoked by pressing down both the POWER button and SIDE OK together and using the stylus at the same time to press the RESET button at the bottom.
The bootloader version is shown for a short amount of time when booting the device. You'll see "SPL-1.0X"
Versions
* 1.04
There is a bug in bootloader 1.04 wich allows you to flash any ROM without a CID check. You have to be in bootloader mode to use this bug.
It's possible to upgrade the RadioROM. You can even flash a patched RadioROM wich is needed to unlock your device.
* 1.06
The bug from version 1.04 is fixed. Without downgrading to a Shipped ROM with bootloader 1.04 that matches your CID it's not possible to flash a ROM with a different CID.
The RadioROM can't be upgraded. You have to downgrade to bootloader 1.04 to unlock your device.
* 1.09
You can't downgrade to bootloader 1.04 by flashing a Shipped ROM. However imei-check.co.uk is able to downgrade the bootloader.
There was a solution posted on this forum, but it was stolen from imei-check and was removed. If you are not willing to pay you have to wait until another solution is developed.
The RadioROM can't be upgraded. You have to downgrade to bootloader 1.04 to unlock your device.
"There was a solution posted on this forum", the remaining of it is here, what can be shown :
1. Go to Google, search for DownGrade_SPL.rar (rq : does not work anymore)
2. Connect your tytn to PC and wait until activesync completed.
3. Run M3100v3cUnlock.exe. Once you see checking device.... in DOS box and whilte screen on your tytn, close the program (Dos box) immedaitely.
4. Run ROMUpgradeUt.exe and follow the japanese wizard to complete the boot loader downgrade.
5. Reboot your tytn and then put it into bootloader mode agian, you should see SPL-1.04. Great!
6. Download pof's HTC_Hermes_SIM_Unlock_v2a from
ftp://xda:[email protected]_v2a.zip
7. Flash the patched radio rom 1.16, then Reboot.
8. Copy HERM_Unlock_v2a.exe a small PPC app pof wrote into your TYTN memory.
9. Open File Explorer, run HERM_Unlock_v2a.exe on your TYTN and wait about 1 minute until it shows up a completed message. Reboot again!
10. Download mtty.exe from
http://wiki.xda-developers.com/uploads/mtty.exe
11. Disable ActiveSync, and then run mtty.exe, choose usb connection; Enter. You should see USB> prompt. Type in: info 2 . When you see 00000000 or SuperCID string. You are safe and ready to upgrade to the latest TYTN 1.35 Rom with bootloader 1.09.
2- BUT the trick is that it is impossible to SIM unlock even if you downgrade Right now there is no solution, and I don't know when or if there will be. I hope there will be one indeed...
3- you can still change the language, but it is limited in two ways :
for the good news :
http://forum.xda-developers.com/showthread.php?t=281617
for the bad news :
http://forum.xda-developers.com/showthread.php?t=284765
and a good news in process:
http://forum.xda-developers.com/showthread.php?t=284765&page=5
but I don't get exactly how it works...
For more information look around the board, or I will try to retrieve the info.
take care,
I'm looking forward buying the same device
dam
alexnalexn said:
Is anyone working on the downgrade method for bootloader 1.09 ?
If so, what's the status now ?
Click to expand...
Click to collapse
As dam has explained, some time ago we published a method to downgrade the bootloader to 1.04 but this method used imei-check copyrighted files and had to be removed from the forum, some people downloaded the files and it has appeared on chinese and russian sites after we removed it from XDA-Developers, but this method violates imei-check copyright and should not be used, if you are a legal person and want to downgrade the bootloader now you should BUY imei-check unlocker.
I started working on a project to Downgrade SPL by modifying HaRET tool with the help of some other people, we managed to put IPL on ram and jump to it, but we still haven't managed to do it with SPL (the device hangs when copying to memory). Now I'm quite busy and can't dedicate all the time I need for this, but will try to finish it once I know how to copy the SPL correctly... if someone has experience in this and want to help, let me know and I can send you the source of modified haret, but it's still a lot to do... once this is finished there will be a free method to downgrade bootloader, now there isn't.
When bootloader is downgraded to 1.04 you can change the ROM because it has a bug where the CID is not checked if you run the RUU twice. You can also use HERMES SIM & CID unlocker when you have bootloader 1.04. But on softbank x01ht version sold after 1 December 2006 it is not possible to SIM & CID unlock even if you have bootloader 1.04 because the radio is read only and can't be patched. AFAIK no one has knowledge on how softbank did this, and there is no known method to circumvent this yet.
Hi .. i want know when you talk about CID Locked, what it is that ?
I have my 8125 G4 UnLocked to can use any sim chip, from any Mobile Operator, on the world, so, for my idea i have unlocked my 8125, but when you talk about CID i cant understan if you talk about othe lock protection or if how i have unlocked my phone for a any sim chip, i have my 8125 CID unlocked.
some one can explain to me better?
Thank's a lot, i want to try the WM6 Rom, and i need know if i have unlocked my 8125, i think that my 8125 is G4 not G3 about the FAQS that i see on the forum, you can see my IPL/SPL data, on my signature.
I have yet the Cingular WM5 that came from factor.
And i want know if i can made a my own custome ROOM, and how do that.
Do some reading at the wiki. Top of this page, marked "XDA-Wiki". Lots of information there. As for CID-Lock and SIM-Lock issue, go to the Freq Asked Question section (in the Wiki) under ROM.
Flashing without unlocking for G4 also included in the wiki.
HOWEVER, for your case, which you can't even tell the difference between a SIM and CID lock, I wont recommend you to do it before spending a week or two really reading the stuff here.. and chances are you will brick your phone. ANYWAY, you are probably rich enough to brick a few phones.
Thnak's harnmin, i was read on other posts the diference between CID and SIM lock, just i usually use a SmarPhones (like MPx220) and commonly these device not came with a CID lock, but i have unlock know my 8125 G4, and i looking for fix some problems that i have with the WM6 that not have before with WM5.
Thank's lot for your "Support".
...........
SIM-Unlock is the ability to use SIM card from any carrier, CID-Unlock is the ability to flash ROMs for any carrier (as well as custom ROMs). They are completely different. Don't get confused or you will most likely have a brick.
p.s. G4 Wizard cannot be CID-unlocked, just HardSPL/SoftSPL.
Don't be silly, all things you want is already in the forum, kindly use the search function and/or see the stickies.
starkwong said:
SIM-Unlock is the ability to use SIM card from any carrier, CID-Unlock is the ability to flash ROMs for any carrier (as well as custom ROMs). They are completely different. Don't get confused or you will most likely have a brick.
p.s. G4 Wizard cannot be CID-unlocked, just HardSPL/SoftSPL.
Don't be silly, all things you want is already in the forum, kindly use the search function and/or see the stickies.
Click to expand...
Click to collapse
CID lock: Carrier ID lock
-this lock will prohibit you from flashing ROMs other than those from the carrier your device was provided for.
Super CID: developers CID (Often: 1111111) Will give your device gc_securitylevel=0 (so do soft and hard SPL)
To be honest: G4 can be CID unlocked, however, opening the door to writing the CID block will provide an open door to illegal IMEI-changing..
Therefore CID unlock has never been released (and never will be released, so don't even ask), soft and hard SPL will provide your device a fake super-CID and will also allow you to change everything except your imei
So stuck i've tried every possible thing.
can anyone please tell me how to get rid of ipl/spl 2.21.0001 and downgrade it anyting may be 1.*.**
i bought t-mobile mda vario locked on any network thats y i need to cha*g* imei no.
step 1-- "can you please tell me which specfic rom should i use to downgrade it 1st"..
step 2---- then unlock it with lokiwiz03 or lokiwiz02b??
step 3---- use iwizard to cha*g* the imei... any way what is awizard for???
step 4---- and upgrade the rom in the end
and i have even paid money to unlcok it from imei-check but that never worked aswell i dont even know what they done coz its as same as it was before ipl/spl 2.21.0001
kingahmar said:
So stuck i've tried every possible thing.
can anyone please tell me how to get rid of ipl/spl 2.21.0001 and downgrade it anyting may be 1.*.**
i bought t-mobile mda vario locked on any network thats y i need to cha*g* imei no.
step 1-- "can you please tell me which specfic rom should i use to downgrade it 1st"..
step 2---- then unlock it with lokiwiz03 or lokiwiz02b??
step 3---- use iwizard to cha*g* the imei... any way what is awizard for???
step 4---- and upgrade the rom in the end
and i have even paid money to unlcok it from imei-check but that never worked aswell i dont even know what they done coz its as same as it was before ipl/spl 2.21.0001
Click to expand...
Click to collapse
You have a G4 device you CANNOT downgrade to a 1.x rom.
You CANNOT flash your IPL/SPL if you try you will definately make your device an unrecoverable brick.
IPL/SPL has nothing to do with CID or SIM locking or unlocking. They are the bootloaders for your radio and OS.
You should never have to change your IMEI number. This is actually illegal in some places. The only reason your IMEI number would not work is if your phone was stolen and in turn reported stolen by the original purchaser. In which case the IMEI would be blacklisted so the criminal could not make use of the stolen phone and hopefully would get the idea that stealing phones is not a profitable venture.
If you paid for and used the IMEI Unlocker software correctly then your device is probably unlocked and you can try flashing G4 safe roms to the device.
If your phone is locked you have the means to unlock it if you paid for it from the website, if you didn't pay for it and got it from someone else it will not work as the algorithm is based on the IMEI # I believe.
Lastly CID unlock is not the same as SIM unlock. What are you trying to do and WHY do you need to do these things to your phone? You haven't made this clear and I don't think you understand what you need to do to get your phone working the way you want it to, if you keep progressing this way you will ruin your device. I suggest you stop and read the G4 forums.
Hi mate,
i've got exactly the same device, look at my signature how flashed WM6, there is no need to get rid of IPL/SPL 2.21.0001 or G4, even CID-unlocking is not necessary. The only limitation is that you can't change the splashscreen - i don't mind it anyways.
regards
IRM
Of course you can change the Splash Screens. I have a G4 Wizard and now have XDA Mobile 6 and added the Splash screens that are here:
http://forum.xda-developers.com/showthread.php?t=310954
but you need to use the Update Utility from Wizard Love, just swap the nk.nbf file.
You can also use the Update Utility from Wizard Love to change the Radio ROM.
Kind Regards
Darren
i used the imei unlocker ..i think it could make bricks
i unlocked my phone 8125 (g4) w/ 2.21.0001 2.21.0001 after that
it would never come out of boot mode
from just that i think it somehow screwed me
ipl 2.21.0001
spl 2.21 i was told this is a valid (G3) spl where it came from i don't know
can't find anything to fix it
i get a error invalid vendor id when i try to flash the stock at&t rom
nothing seems to work
looks like its simi unlocked but it finished to 100% and then rebooted
anyone know any threads tha discuss a mixed ipl / spl
thanks , i hope the wizard is bio degradable
No known recovery method for a mixed IPL/SPL in G4, it's a currently a brick.