Related
Hello!
I had an idea to the horrible "simlock.exe" from the blueangel:
We all know that the "simlock.exe" is write-protected in the rom. So i have searched (with Total-Commander CE) in which other files is standing "simlock.exe" too. And i found the "rilgsm.dll". But this "rilgsm.dll" is write-protected too.
Ok.
I searched now the registry and wooow: I found "rilgsm.dll" in "HKLM\Drivers\BuiltIn\RIL" under the String-value called "dll". When I renamed this "dll" to "xdll" (described in much other things under BA-Hacks) the GSM-Phone isn't working.
My solution:
I copied the "rilgsm.dll" to my PC, opened it with Ultra-Edit 32 and found "\Windows\simlock.exe". I wrote now "\Window2\simlock.exe" in this "rilgsm.dll" and saved it as "rilgsm2.dll" and copied this new "rilgsm2.dll" back to the Blueangel under "\Windows". In the registry i wrote under "HKLM\Drivers\BuiltIn\RIL" under "dll" now "rilgsm2.dll" so that the system now will start my modified "rilgsm2.dll". I also made a new directory called "\Window2" and copied the "AddRingtone.exe" as "simlock.exe" in this new directory "Window2".
So now when I reset the Blueangel it works with my T-Mobile-SIM-Card. So now i haven't another SIM-Card from an other provider, this i will test tomorrow.
But maybe someone can use my idea and will build an crack for this horrible "simlock.exe"
Who knows....
==========
Please let me know when you test my idea and when it works or not...
THANK YOU!!!!!
Ischovits said:
Hello!
I had an idea to the horrible "simlock.exe" from the blueangel:
We all know that the "simlock.exe" is write-protected in the rom. So i have searched (with Total-Commander CE) in which other files is standing "simlock.exe" too. And i found the "rilgsm.dll". But this "rilgsm.dll" is write-protected too.
Ok.
I searched now the registry and wooow: I found "rilgsm.dll" in "HKLM\Drivers\BuiltIn\RIL" under the String-value called "dll". When I renamed this "dll" to "xdll" (described in much other things under BA-Hacks) the GSM-Phone isn't working.
My solution:
I copied the "rilgsm.dll" to my PC, opened it with Ultra-Edit 32 and found "\Windows\simlock.exe". I wrote now "\Window2\simlock.exe" in this "rilgsm.dll" and saved it as "rilgsm2.dll" and copied this new "rilgsm2.dll" back to the Blueangel under "\Windows". In the registry i wrote under "HKLM\Drivers\BuiltIn\RIL" under "dll" now "rilgsm2.dll" so that the system now will start my modified "rilgsm2.dll". I also made a new directory called "\Window2" and copied the "AddRingtone.exe" as "simlock.exe" in this new directory "Window2".
So now when I reset the Blueangel it works with my T-Mobile-SIM-Card. So now i haven't another SIM-Card from an other provider, this i will test tomorrow.
But maybe someone can use my idea and will build an crack for this horrible "simlock.exe"
Who knows....
Click to expand...
Click to collapse
i wish i had enough time on my hands like u! id love to be able to do stuff like that!
how do u get to view and change registry settings?
I#ve edited the registry qith "PHM RegEdit". It's freeware, search in Google...
Looks interesting (HappyGoat? what do you think?)
This looks very interesting, did anybody else try it?
HappyGoat? what do you think?
Status: Blueangel: Idea to SIMLOCK.EXE
This message is for everybody who is interesting what i've found out:
The "rilgsm.dll" is the "Radio Interface Layer". In the BlueAngel this "rilgsm.dll" calls the "simlock.exe" for the correct SIM-Card. The "simlock.exe" gives a lot of result-codes back to the "rilgsm.dll".
My solution in the moment (I hope that i'm on the right way):
On my phone I've modified the "rilgsm.dll" so that it doesn't call the simlock.exe anymore. In this moment when i put in a other sim-card as T-Mobile the phone asks me for the PIN-Code of the new sim BUT then the phone brings me an error "unknown sim-status".
So I hope now that i find out what is necesary for the BlueAngel that it will accept a sim-card from an other provider.
If aomebody has an idea pleas feel free to write me...
good job!
yeah,i think you are are on the right way,i will test your idea.
I dont know if this is any help but i found it on a rival forum (GSM-forums)
Unlock pocket pc PPC 4100 solution here ...
--------------------------------------------------------------------------------
u just need to replace a file on windows folder file name is ( rilgsm.dll )
1. sync your PPC with your computer
2. Download the attached file in this post, rilgsm.dll
3. In active Sync - hit the "EXPLORE" button
4. Double click on PPC and then on the "windows"
directory
5. Copy rilgsm.dll into that directoy , and replace
the existing one
6. Turn off the PPC and then do a soft reset - take
the stylus and breifly poke it in the "reset" hole on
the rear of the unit ( opposite side of the antena).
The unit should then reboot
7. Take out your battery- put in your sim card
8. DONE!!!!!
Here is a files u will need
seeing as the phones look similar and both have the same files - could this be a solution or a place to start looking ie comparing the 2 files
Audiovox rilgsm.dll
keytor69 said:
I dont know if this is any help but i found it on a rival forum (GSM-forums)
Unlock pocket pc PPC 4100 solution here ...
...
seeing as the phones look similar and both have the same files - could this be a solution or a place to start looking ie comparing the 2 files
Click to expand...
Click to collapse
I tried it, but it doesn't work on the BlueAngel. After you replace the dll, the wireless radio switch of the phone turns on/off the Bluetooth :lol:
As for the phone functions: it says a wireless radio needs to be attached to use them...
Could be a place to start, although from what I've learned here so far, you can't (read: shouldn't be able to) unlock the phone just by hacking the rilgsm.dll. Or am I mistaken?
Status: Blueangel: Idea to SIMLOCK.EXE
Hello!
What is the status for my idea to hack the simlock?
I can't hack correct the "rilgsm.dll" only with a hex-editor. And I haven't the tools to dump the communications between the "rilgsm.dll" and the "simlock.exe". As I say in my last post in the moment the solution is that the BlueAngels doesn't ask anymore for the unlock code, but it says "Unknown sim status" when I put in an other sim-card from an other provider.
So in the moment i'll try to get a unlocked version of the BlueAngel. I know somebody who has unlocked versions of the BlueAngel.
When I get such a device first I will make a rom backup.
Then I will compare the file "rilgsm.dll" from the unlocked device with the file from the locked device.
Maybe i must flash my locked device with the complete rom of an unlocked device, i don't know.
I can't say I'm on the right way, but I will not give up in this moment.
I think to get the unlocked device will last approximately two weeks. So wish me luck!
Greetings, Peter
Here is rilgsm.dll from my unlocked device
Any news on your procedure......?
here you have some imei numbers from devices i unlocked (imei-check.co.uk)
35481900014849901
6115794
35481900013359001
93709129
35303000075896101
8540099
35303000067058801
10107856
35481900164713501
72385674
35481900167464201
5337494
35303000141098401
50429213
35481900048168401
32553958
3530300008219901
65418022
if it would help...
wow.. :shock:
can i too
my imei is 353030002939023
thanks
htvi,
Could you provide the .uif file that was extracted by the imei-check tool for each imei/unlock code combination? with those it should be possible to figure out how the people at www.imei-check.co.uk are extracting the unlock code!
Thanks in advance,
JDH
P.S. If anyone else has such information i.e. IMEI, Unlock code and the imei-check .uif data file (as extracted from each Blue Angel) that would be of a great help!
JohnnyDH
unfortunatelly i was too stupid to save all of them...(
but i'm unlocking 2-3 phones each week
i have now 2 orange m500 to unlock (htc magician)
i'll post imei numbers, unlock codes and files tommorow
@htvi
Ok, so I have downloaded both Windows mobile 2005 versions for Himalaya(probiably modified by some guy whose name I forgot), and the other official which i guess can be installed on all devices that have a bit faster processor and enough RAM.
I didnt want to install it before knowing if my m2000 is still gonna be sim-unlocked. Can you tell me htvi, or anyone else?
Thanks in advance
I don't know if it helps but, you may check this one out on http://unlock.nokiafree.org/ :
Download binaries for windows of NokiaFREE unlock codes calculator version 3.10
released on 4th, October, 2004
Maby the calculation steps just work...
ok, so here is one of them:
IMEI 354819002404379
UNLOCK-CODE: 60597866
i'll post the second later
note: it was an orange m500 (htc magician)
@htvi
Sorry about the delayed response, I'm often away for periods of time and have only just had an opportunity to check!
Thanks for that first set; have you processed any further phones and can therefore provide the details? the more the better really! if it would be easier for you, PM me and I'll provide my e-mail.
Cheers, JDH
Unlocking data
Here's th info of a recently unlocked MDA III (BlueAngel):
IMEI: 353030002519296
Unlock code: 5809468
Hope this helps.
HERM 300/TyTn II by T-Mobile
I am trying to installed goodlink on a cooked ROM (on WM6)but after I download and execute the OTA setup (over the air setup), i get the error:
"Unable to retrieve handheld serial number. ROM Version MaNiLlA2d
Contact IT administrator. Press OK to exist OTA Setup".
I have tried it with other ROMs too but still the same.
I wonder if there is a way to emulate the proper serial number.
Any ideas anyone ?
Thanks
p.s. I had goodlink working fine on WM5 before I replaced the ROM
can you confirm what model phone you have? A Hermes does not equate to a Tytn II as your original post says.
Its a HERM300 as it says in the back. Its a T-mobile MDA Vario
pm me a sample account, so I can test, I installed it but I don't have any use for goodlink.
sorry if my question sounds ***** but what is GoodLink?
some sort of exchange service. I am able to get exchange 2007 working fine on mine sooooooo not sure.
zocster said:
pm me a sample account, so I can test, I installed it but I don't have any use for goodlink.
Click to expand...
Click to collapse
You dont need a sample account to test.
You just go to : https://get.good.com and download the appropriate cab file that matches the hardware / OS.
Then once you install that, the OTA SETUP application appears in your programs. If you try to run this, it will go to the goodlink website and try to download the actual goodlink application. Before it hits the internet it checks the serial number. Thats where the problem appears and the message pops up.
Thanks for the help !
athan01 said:
You dont need a sample account to test.
You just go to : https://get.good.com and download the appropriate cab file that matches the hardware / OS.
Then once you install that, the OTA SETUP application appears in your programs. If you try to run this, it will go to the goodlink website and try to download the actual goodlink application. Before it hits the internet it checks the serial number. Thats where the problem appears and the message pops up.
Thanks for the help !
Click to expand...
Click to collapse
I am up to the point where it ask for a pin
zocster said:
I am up to the point where it ask for a pin
Click to expand...
Click to collapse
I think you have past the point where i got stopped. Have you done anything specific ? i couldnt get to the point where it asked for the pin, as it was checking for the serial number just before that.
Is there anything that i need to do in order to get there?
Thanks
Have you checked the IMEI that the OS is reading from the phone??? If not go to Device Identity in Settings/System and see if the IMEI is corrupted to start with...
dr_tracker said:
Have you checked the IMEI that the OS is reading from the phone??? If not go to Device Identity in Settings/System and see if the IMEI is corrupted to start with...
Click to expand...
Click to collapse
I did. The IMEI looks OK ...
This is very strange....
This paquet is a software used by Movistar Spain to lock the phone. If someone want try somting with this info. Here are zip file with : Ril.dll,Phone.dll,SimLock.exe,SimUnlock.exe and some more info.
ican't run it on my japanese t01a .would you please tell how to use it ?
You cant run SimLock and SimUnlock in your phone you haved inside. You can replace them with total comander. But dont touch never ril.dll dont replace with this one. I put here this if someone want help me to crack them.
I litle bit dificult because I never try to crack brograms in 16 bit, 32 is easy. Problem is coming for try to find debuger for 16 bit who work properly.
Step by step but I see one day we go to have a crack for all phone.
Sory man I cudunt help you.
Rest assured it's not likely to be sufficient to fiddle with simlock related .exe files and RIL driver to permanently unlock a TG01.
ril.dll is a module in TG01 ROMs, not a file, so you can't use extracted file on another device, not even on the same device. And more importantly you don't need to, because it's just a proxy to the actual vendor specific RIL driver. Apart from minor differencies, ril.dll is going to be the same in majority of TG01 ROMs.
stepw said:
Rest assured it's not likely to be sufficient to fiddle with simlock related .exe files and RIL driver to permanently unlock a TG01.
ril.dll is a module in TG01 ROMs, not a file, so you can't use extracted file on another device, not even on the same device. And more importantly you don't need to, because it's just a proxy to the actual vendor specific RIL driver. Apart from minor differencies, ril.dll is going to be the same in majority of TG01 ROMs.
Click to expand...
Click to collapse
so we can do nothing about it?if we can do something to cheat the system and then we can unlock our phone?like make the program have no ability to recognize whether the sim is right or wrong.
Stepw furs I want say THANKS for sddl.exe is help me to change evriting from my fuking sspianish vomistar*(movistar).
One time I try to extract ril.dll but den I didnt change eniting just puded back bu with replece the same and then phone is blocked completly. I needed to reset evriting. May be is because the extractor is change someting I dont know. I see today with upgrade ril is change bud the all tre exes simlockn; simlockp and simunlock is stil the same so i think is over there evriting aout unloking TG01. I want try if some one have unloked english orange extrat 3 exe and bud them here and I go change my. We can try just replace blocked with unlocked.
I dont know if you understend what I meen. My English is not very good. Sory abouth that.
*vomit
any luck with unlocking? still no free method?
10x
Hy
It's not working.I try with an orange romania unlocked one to copy to another orange romania locked and didn't work.
I used a cab file to disable security, and then I was able to copy the files to windows but it does not work. (I am with orange UK). Use the file attached to disable security to allow total commander to overwrite files.
Free method to unlock yet?
Hi all,
I was wondeirng if there is a free method to unlock Toshiba TG01. How do they unlock it using the IMEI number only?
Hi everyone,
I guess many of you are in huge pain with the KU990 new version, that is, the ones that cannot be unlocked using lg3g or mtty methods.
Here I would like to describe everything I tried so far and the current status I am locked in today.
My biggest mistake was to not backup my phone (the famous .nv2 file) at the very beginning ! I strongly advise people who wish to modify their phone somehow to first backup with LGMDP !! Otherwise you may end just like me...
I started with a SFR (VDF FRANCE) locked phone and, as I did not have the SFR sim card at that time, I tried to unlock it with both the lg3g and the mtty methods. Unfortunately the unlocking procedures did not work at all, although I ensure I tried everything. I finally read somewhere that the newest KU990 had a supplementary protection that could not be overcome.
In parallel I was able to manage to change the firmware to OPEN or VDF (EURO) versions ranging from v10a to v10j (using LGMDP). So it seems that there is no big issue there.
However at some point in the process (I guess the unlocking), my IMEI was changed. And my phone started to ask me to "Insert USIM card" or to refer to "Invalid USIM card" depending on if a sim was in or not. I understood that USIM was referring to international sim cards so I tried to reinstall VDF firmwares with VDF .nv2 and VDF Flex backups (still not mine), but this made my phone unusable as it displayed a nice yellow screen and the fact that some wallpaper file could not be found. Still I could solve this problem by I changing back to OPEN firmwares and .nv2.
Now I recovered the original sim card from SFR and was able to obtain the unlock code from their hotline. But as my IMEI has been changed, the unlock code fails now.
Thus I tried to reset or to change my IMEI back to what is written below the battery using either lg3g, mtty, QPST or NVEditor. This also leaded nowhere as even reading the IMEI with lg3g and mtty failed and as QPST and NVEditor revealed that the NV_UE_IMEI_I parameter was protected (NV_READONLY_S). I tried many different things with these tools but it does not seem possible to break the protection.
I guess my only chance now would be to insert my old IMEI into an existing .nv2 file. I have found some "NV2 - QCN TOOLS V1.4" that can do this but only on the KU20.
Does anyone has a tool allowing to insert a new IMEI in a .nv2 ?
OR
Did anyone go through the same difficulties and did finally find a solution ?
any help will be greatly appreciated )
please do not ask me how i did this or that for the moment, if I can solve my problem I will certainly return the favor to all of you later on.
Hello,
Have you tested the tools for the KS20, because the. NV2 is certainly quite similar.
@+
Thank you for your suggestion.
I tried the tool but first it returns a NV2 Status Error when I load any .nv2 file, second the IMEI is forced into 357323-01-XXXXXX whereas both my original and current IMEIs start with 353638-02, and third, although the tool indeed creates the file (I chose "Branded nv2"), the backup fails (LGMDP reports four NV ITEMs with NV_BADPARM_S with no more information) and I end up in Emergency mode.
A KU990 version of the tool might do the trick, if it is possible to specify the full IMEI of course. I can send my current nv2 file(s) if it can help anyone...
hi,
Can you send me by PM your backup NV2, the original IMEI and IMEI on your phone now.
By.
bl40
hello.sorry for my bad english.
a have a big problem with my lg bl40.
i flash the gsm with new rom , but i not make back up of the nv2 file.
download this file from internet but with different imei.
what can i du, pleas help my.
A valid nv2
Please can someone send a valid nv2 for lg P500, i`m from romania. many thanks
hi,
uses the search function it works fine
http://forum.xda-developers.com/showpost.php?p=22671293&postcount=52
hellp
pleace send IMIE code (nv2) for iran
my email [email protected]
tank you
hello i am form germany. my english isnt that good. my problem: tried to flash my note3 europe/german region log because oft battery Problem with lollipop. i forget to save the efs folder... my phone cant create connection to my simcard. IMEI and BASEBAND are unknown...i tried a lot and tried to find a solution in forum but nothing works (cant set my phone in Diagnostic mode via dial number *#. maybe because oft german region. Mtkdroid etc. also doesnt works because of different processor...maybe somebody got a solution. Many THX.