I have used sunshine to S-OFF and have TWRP recovery installed. I have also rooted the phone using BETA-SuperSU-v2.65. I changed the CID (ro.aa.maincid) to BS_US001. When I try flashing RUU_HIMA_UL_N70_SENSE80_ATT_MR_NA_Gen_Unlock_4.23.617.1.exe, I get a signature error. Installed Simple CID Getter from the play store, it still shows up as VZW_001. When I run the command
Code:
getprop ro.cid
, it returns VZW_001. When I try to change it with
Code:
setprop ro.cid BS_US001
, and then try to read it, it is still VZW_001. Please help.
Related
So there was an exploit found for the One X to change the CID and I thought I'd try and adapt the same method for the Desire C (if possible).
My phone is rooted, ROM is Nameless v2.0.2
So I started dumping all the mmcblk0p1, p2, p3 etc till I got to p7. Open that up in the hex editor and at offset 0000200 there's my CID (locked to Bell Mobility here in Canada) BM___001 ... so now I thought I'd give it a whirl myself. It seems that this is the wrong location however, because changing that to 11111111 and then pushing back to the phone, reboot, fastboot getvar cid gives me the same thing, BM___001 ... am I being a newb and this is because of S-ON?? In the original version he says to check the cid by using fastboot oem readcid but that doesn't seem to be supported in my version of fastboot. I don't know... anyway, any and all help would be appreciated. I'm going to try and find any other instances of the CID in any of the block partitions...
Hopefully someone else cares as much as I do :fingers-crossed:
So there's another instance of the CID at offsets 1440/1450 in the same file, /dev/block/mmcblk0p7
I'll try changing both and see what happens... nothing, apparently.. still getting BM___001 from fastboot getvar cid
Hi I have HTC Desire Z A7272 rooted with gfree, psneuter etc according to instructions on cyanogenmod wiki. Now I want to unroot my device, I've already succeed with OS return to stock by extracting zip from RUU exe. But now I have problem with S-ON flag and CID. My device wasn't branded by my operator. I fallowed instructions from this thread http://forum.xda-developers.com/wik..._gfree_to_get_radio_S-ON_and_the_original_CID and at the end I'm getting and I did everything in correct order but when I'm executing command /data/local/tmp/gfree -s on -c HTC__032 (my operator in Poland is PLAY)
at the end (when creating backup) error : Error opening backup file. So my CID is still 11111... and S-OFF is visible in my bootloader.
Please help.
is your phone in charge only mode? make sure it is.
gfree needs to be able to write to the sdcard to make the backup.
-Nipqer
cant update firmware 3.28.401.6
cant seem to figure it out what am i doing wrong i have htc m8 S-on cant get s-off everytime i try it says htc patched it using firewater. so i read up as much as i could downloaded the file 3.28.401.6 try to install but i get an error which i found out means my cid an mid dont match my current CID IS TMOB010 AND MY MD IS 0P6B13000 im running on ARHD 11.2 and i need the firmware installed before i jump to arhd 20.1
xjaycjr27x said:
cant update firmware 3.28.401.6
cant seem to figure it out what am i doing wrong i have htc m8 S-on cant get s-off everytime i try it says htc patched it using firewater. so i read up as much as i could downloaded the file 3.28.401.6 try to install but i get an error which i found out means my cid an mid dont match my current CID IS TMOB010 AND MY MD IS 0P6B13000 im running on ARHD 11.2 and i need the firmware installed before i jump to arhd 20.1
Click to expand...
Click to collapse
CID/MID is wrong you can clearly see that, so why ask Get S-OFF with Sunshine S-OFF $25 for it, then you can change your cid/mid as you need(Convert device to and from...)
xjaycjr27x said:
cant update firmware 3.28.401.6
cant seem to figure it out what am i doing wrong i have htc m8 S-on cant get s-off everytime i try it says htc patched it using firewater. so i read up as much as i could downloaded the file 3.28.401.6 try to install but i get an error which i found out means my cid an mid dont match my current CID IS TMOB010 AND MY MD IS 0P6B13000 im running on ARHD 11.2 and i need the firmware installed before i jump to arhd 20.1
Click to expand...
Click to collapse
Get SunShine s-off. It costs $25, but it's worth it. After that you can go SuperCID.
Here are the steps to go SuperCID so that you can use firmware from any carrier.
1. Have adb and fastboot set up. There are guides all over xda and google
2. Connect phone to PC and open terminal
3. Type "adb devices" to make sure phone is connected to PC
4. Type "adb reboot bootloader"
5. Once in fastboot type "fastboot devices" to make sure fastboot sees your device
6. Type "fastboot oem rebootRUU"
7. Once in black screen that says HTC you are in ruu mode
8. Type "fastboot oem writecid 11111111"
9. After a successful cid overwrite type "fastboot reboot-bootloader"
10. Profit! You are now supercid!!
xunholyx said:
Get SunShine s-off. It costs $25, but it's worth it. After that you can go SuperCID.
Here are the steps to go SuperCID so that you can use firmware from any carrier.
1. Have adb and fastboot set up. There are guides all over xda and google
2. Connect phone to PC and open terminal
3. Type "adb devices" to make sure phone is connected to PC
4. Type "adb reboot bootloader"
5. Once in fastboot type "fastboot devices" to make sure fastboot sees your device
6. Type "fastboot oem rebootRUU"
7. Once in black screen that says HTC you are in ruu mode
8. Type "fastboot oem writecid 11111111"
9. After a successful cid overwrite type "fastboot reboot-bootloader"
10. Profit! You are now supercid!!
Click to expand...
Click to collapse
thank you
xunholyx said:
[...]
6. Type "fastboot oem rebootRUU"
7. Once in black screen that says HTC you are in ruu mode
8. Type "fastboot oem writecid 11111111"
9. After a successful cid overwrite type "fastboot reboot-bootloader"
10. Profit! You are now supercid!!
Click to expand...
Click to collapse
Why go into RUU mode to change to supercid?
BerndM14 said:
Why go into RUU mode to change to supercid?
Click to expand...
Click to collapse
It is the method I know. But if you know another way, please share! I always like to learn new stuff.
xunholyx said:
It is the method I know. But if you know another way, please share! I always like to learn new stuff.
Click to expand...
Click to collapse
No method, you just don't have to go into RUU mode for it. In fastboot/bootloader you can just use the command fastboot oem writecid 11111111
No need to mess around with RUU mode. Especially if that guy doesn't even know how to read the problem he has, it's a disaster in the making for him...
BerndM14 said:
No method, you just don't have to go into RUU mode for it. In fastboot/bootloader you can just use the command fastboot oem writecid 11111111
No need to mess around with RUU mode. Especially if that guy doesn't even know how to read the problem he has, it's a disaster in the making for him...
Click to expand...
Click to collapse
Nice to know. Thank you. This was the method I was taught though. Good to know RUU isn't necessary.
hey guys just a quick question. ive unlocked my bros m8 and got super cid and flashed the latest .401 (0P6BIMG_M8_UL_L50_SENSE60_MR_HTC_Europe_4.16.401.10_Radio_1.25.214500021.06G_20.68.4196t.01_F_release_417809_signed) all is fine.
my question is i know im able to remove the tamper flag if needed after locking the bootloader, but if i leave it "unlocked" and not lock the bootloader will i still receive stock updates? and if the need should arise that i send it back to htc will they cause an issue over super cid even if i remove the tamper flag and lock the bootloader?
If I'm correct your HTC One M8 currently got the following configuration:
HBoot unlocked
Software Status Unofficial
S-OFF
SuperCID 11111111
Am I correct?
If so you could remove the tampered flag by
Code:
adb devices
adb shell
su
echo -ne '\x00' | dd of=/dev/block/mmcblk0p6 bs=1 seek=5314564
exit
adb reboot bootloader
If need occurs to send it back you the coud flash the HTC One M8 using a RUU to re-optain original ROM status and after this perform the commands
Code:
fastboot writecid HTC__102 (if using a WWE RUU with SKU x.xx.401.x)
as well as
Code:
adb devices
adb shell
su
echo -ne '\x00\x00\x00\x00' | dd of=/dev/block/mmcblk0p2 bs=1 seek=33796
exit
adb reboot bootloader
to get a realy locked bootloader. To also obtain S-ON, you got to finally type
Code:
fastboot oem writesecureflag 3
HTCNerdYoda said:
If I'm correct your HTC One M8 currently got the following configuration:
HBoot unlocked
Software Status Unofficial
S-OFF
SuperCID 11111111
Am I correct?
If so you could remove the tampered flag by
Code:
adb devices
adb shell
su
echo -ne '\x00' | dd of=/dev/block/mmcblk0p6 bs=1 seek=5314564
exit
adb reboot bootloader
If need occurs to send it back you the coud flash the HTC One M8 using a RUU to re-optain original ROM status and after this perform the commands
Code:
fastboot writecid HTC__102 (if using a WWE RUU with SKU x.xx.401.x)
as well as
Code:
adb devices
adb shell
su
echo -ne '\x00\x00\x00\x00' | dd of=/dev/block/mmcblk0p2 bs=1 seek=33796
exit
adb reboot bootloader
to get a realy locked bootloader. To also obtain S-ON, you got to finally type
Code:
fastboot oem writesecureflag 3
Click to expand...
Click to collapse
fantastic thanks. question though whats the command you mentioned after flashing the ruu do? after doing s-on ill need to use sunshine again to get s-off right?
You would have to use Sunshine to S-off again, and if you have the same motherboard, you won't have to pay again. (It's licensed to that specific mobo). However, S-off is getting harder to obtain, so I would suggest leaving it S-off unless you have some pressing need (like warranty service) Also, if you have modified anything that an S-on phone would balk at, you may insta-brick when you go back S-on. I would always suggest doing a full RUU prior to reverting to S-on.
Short of HTC balking and not honoring your warranty, there are no real downsides to leaving the device S-off, and plenty of upsides.
jshamlet said:
You would have to use Sunshine to S-off again, and if you have the same motherboard, you won't have to pay again. (It's licensed to that specific mobo). However, S-off is getting harder to obtain, so I would suggest leaving it S-off unless you have some pressing need (like warranty service) Also, if you have modified anything that an S-on phone would balk at, you may insta-brick when you go back S-on. I would always suggest doing a full RUU prior to reverting to S-on.
Short of HTC balking and not honoring your warranty, there are no real downsides to leaving the device S-off, and plenty of upsides.
Click to expand...
Click to collapse
brilliant thanks a lot!
im trying to turn S-off, im rooted with cwm, htc desire816 a5 chl. I used terminal emulator to su insmod /storage/emulate/0/wp_mod.ko but as soon as i do that i get failed to execute file what am i doing wrong and how can i turn S-off
thanks
Need help with S-Off aswell.. Cant flash official RUU cause my CID number is ACG__01 and the RUU from HTC is SCG__001. WHAT DO I DO. Trying to "fastboot oem writecid 11111111" but wont work.