Hello,
I barely post anything as there is a huge amount of documentation on this forum, but I am really stuck at this and have no clue how to solve it.
I have two i9502 phones:
- one with good IMEIs and thus, working GSM, but the sensors are not working (hardware failure - sensorhub test fail + all sensors from the *#0*# menu are dead)
- one with good sensors, but one of the IMEI is null, thus GSM is not working
I am tying to clone the one with good IMEIs over the one with bad IMEIs. I have previously done this with success, but for the S4 Active model (i9525).
To do this, I need to use QPST or EFS Professional (awesome software btw) with the phone running in diag mode.
When I enable "DM+Modem+ADB" from the *#0808# menu I get "USB device not recognized" on my PC, a problem usually resolved by "Enable CP logging" from the original recovery.
The problem with this model is that "Enable CP logging" option is missing from the recovery.
Also, codes like ##DMMODE# or ##DIAG# have no effect and there is no relevant option in the service menu (*#0011#) or diag config menu (*#9090#).
Things I've tried so far:
- directly backup/restore EFS partitions using TWRP or EFS Professional
result: fail, I had both IMEIs null.
reason: Encrypted File System partitions are encrypted using the phone's certificate/key. This means the EFS backup only makes sense for the original phone.
- downgrade to android 4.4.2
result: fail, recovery menus and secret menu codes behave exactly the same.
- flash a recovery from i9500 to get the "enable CP logging"
result: fail: when I enable the option, the phone restarts and PC still not recognizes the device. This was the closest I ever got to solve this.
- downgrade to android 4.3
result: fail, cannot flash, odin gives error and the phone says something like "firmware revision 2, phone revision 3" (incompatible hardware revisions?)
Does anyone know how to enable diag mode for this model?
Important to mention that I do not have any kind of service box.
Things I am thinking of trying:
- flash MIUI and see from there. I doubt a ported rom could do anything about this.
- cook android 4.3 using dsixda's Android Kitchen, and flash using a custom recovery. I doubt this will work also. Expecting a brick
Thanks.
You ever figure out how to do this?
Related
Hello again folks,
I opened another thread regarding this problem I have, but since no one replied, I did some research and made some progress. Here's what happened: my cousin bought me an gt-i9301i in the UK, made a 5 min call or more with her SIM as instructed, and sent me the phone here in Brazil. When I received, the phone asked for the SIM network unlock PIN. I tried to unlock it by myself, with no success. Before sending it to a local store to try unlocking it, the only things I did were flashing a Chain Fire rom to root it, and then flashed a Stock rom to turn it back to its original state before sending it to be repaired. The store "unlocked" the phone, but now my IMEI is gone.
In the last days, I'm trying to fix it using QPST and the EFS Professional tools, as instructed in this thread (http://forum.xda-developers.com/gal...warning-guide-backup-restore-imei-nv-t1946915) and also this external tutorial (http://droidmodderx.com/galaxys3/?page_id=79).
I did the following procedures on my phone using its stock ROM, with USB debugging on, and tried with both root access turned on and off.
This is what I achieved so far: I connected my phone to QPST (by the way, the working code for my S3 Neo phone is *#0808#), and after turning on the RNDIS + DM + MODEM mode on, made a backup using the "Download" QPST tool. I tried to edit that backup (the file has about 260 Kb) using the "RF NV Manager", as instructed in the second post I mentioned, by going to the item 550 and writing my IMEI in blocks and everything, and then creating a separate QCN file. When I try to restore the new file using the Download QPST tool, which supposably has my IMEI number on it, I receive the message "Received an invalid command from the phone" at just 1%. When I try to restore the original backup, it goes to 100%, but in the end, I receive the message "Could not Reset the Phone. Communication Errors Occurred". When I try to edit my IMEI directly on the phone, when I reboot it and turn it back to MTP + ADB, my IMEI is still showing nothing.
Using the EFS Professional Qualcomm NV Tools, when I try to write my IMEI on the phone, using the Secure Ops. tab, I recieve an error message saying NV_ERR_BAD_SECURITY_MODE, and when I try to edit my QCN backup, I receive the message "Unable to write selected byte data to QCN Backup!".
Any thoughts on what else can be done to restore my IMEI?
Thanks
Hi,
I have a problem with my S5. After flashing a custom ROM I found out that my IMEI is null, and so the EFS is corrupted. I tried to restore it from backup only to find out that I have deleted the backup
What can I do now? I anything? Would restoring EFS from another S5 (with damaged mainboard) could be a solution?
Generally everything works except of phone modem, I have got IMEI written - is there maybe a method to set the IMEI without EFS or a method to create EFS? I already tried sam IMEI changers, but I found out that they only do this on the application level - apps will be able to read different IMEI for licensing, but phone still sees NULL IMEI.
You can't restore EFS from another S5 coz it'll brick your device.
Bruce666 said:
You can't restore EFS from another S5 coz it'll brick your device.
Click to expand...
Click to collapse
Thanks for answer
So what can I do?
Found sth like this:
Never tried coz never lost IMEI
In the dialer, type- *#197328640# or *#*#197328640#*#*
>You will be prompted into the Command mode, provided On the screen, Select on Common, normally option 6
> Now Select (FTM) Option 1
>FTM is for debugging and testing., (Field Test Mode)
>If (FTM) is on, you will have to turn this OFF
>As soon as you turned this off your NULL or altered IMEI number will be restored
>(Important) Without leaving the Command screen, press the Menu key, the button that’s found left of the Home button.
> Select Key input and enter option 2. In this case, you want to turn it off
>Wait for a minute. This will turn your FTM OFF
> Remove your battery and SIM card for two minutes
>Place your battery in your phone, (important) do not place your SIM card in.
> When the phone is booted, enter the command mode again dial – *#197328640#
>Select the Debug Screen, normally option 1
>After that, choice phone control, option eight
>Click on nas control, option 3
>Afterwards, click “RRC (HSDPA), option 5
>To Fix not registered on network or Null IMEI #, click RRC revision, option 2.
>Choose the released of your phone, here we will choose option 5 (HSDPA only)
>Final step to fix Null IMEI not registered on a network for Samsung Galaxy is to turn off your phone and insert your Sim card
or
>Insert your Sim card, afterwards reboot your phone
Thanks - are you sure about this bricking device?
I already tried this numbers but it always says "No Network", The only instruction that I found was to use *#0011# and it goes into the Service Menu, but it doesn't look like that described. There is something called NVM restore, but it doesn't do anything with IMEI
I am gonnna post screenshots at evening.
Bruce666 said:
Found sth like this:
Never tried coz never lost IMEI
In the dialer, type- *#197328640# or *#*#197328640#*#*
>You will be prompted into the Command mode, provided On the screen, Select on Common, normally option 6
> Now Select (FTM) Option 1
>FTM is for debugging and testing., (Field Test Mode)
>If (FTM) is on, you will have to turn this OFF
>As soon as you turned this off your NULL or altered IMEI number will be restored
>(Important) Without leaving the Command screen, press the Menu key, the button that’s found left of the Home button.
> Select Key input and enter option 2. In this case, you want to turn it off
>Wait for a minute. This will turn your FTM OFF
> Remove your battery and SIM card for two minutes
>Place your battery in your phone, (important) do not place your SIM card in.
> When the phone is booted, enter the command mode again dial – *#197328640#
>Select the Debug Screen, normally option 1
>After that, choice phone control, option eight
>Click on nas control, option 3
>Afterwards, click “RRC (HSDPA), option 5
>To Fix not registered on network or Null IMEI #, click RRC revision, option 2.
>Choose the released of your phone, here we will choose option 5 (HSDPA only)
>Final step to fix Null IMEI not registered on a network for Samsung Galaxy is to turn off your phone and insert your Sim card
or
>Insert your Sim card, afterwards reboot your phone
Click to expand...
Click to collapse
evilsnailofdestruction said:
Thanks - are you sure about this bricking device?
I already tried this numbers but it always says "No Network", The only instruction that I found was to use *#0011# and it goes into the Service Menu, but it doesn't look like that described. There is something called NVM restore, but it doesn't do anything with IMEI
I am gonnna post screenshots at evening.
Click to expand...
Click to collapse
Yes I'm sure about bricking. EFS partition on your phone is made for ONLY YOUR PHONE. This is sth like restoring TA Partition on xperia devices. When you flash ta from another xperia, you brick device
Tapatalked from SM-G900F
I read someone saying they had successfully restored a backed up EFS partition from an identical model S5 to another, and it worked
The problem I can see, is if the original gets blocked by the carrier, chances are so will the clone
Not sure about network issues having two identical devices on the same network at the same time, both making calls, might end up like an IP conflict
Pretty sure that transferring IMEI from one device to another is against the law too......
Sent from my rooted, debloated stocKK kn0x0 SM-G900F
Yes, I also know that is it against the law, but I have a complete phone with broker mainboard (so even the IMEI is written on the back), and I would like to use this opportunity to copy the IMEI from old (broken) mainboard to the new one. It even looks better than the situation when I have got and old case with written IMEI that doesn't correspond to the IMEI on the new mainboard.
The mainboard is broken that way, that there is short-circuit somewhere and the CPU is constantly using power and it get's really hot, so it use useless.
I am trying to flash EFS, let's see what is gonna to happen
keithross39 said:
Pretty sure that transferring IMEI from one device to another is against the law too......
Sent from my rooted, debloated stocKK kn0x0 SM-G900F
Click to expand...
Click to collapse
1. Tried flashing EFS = nothing happened
2. Tried flashing EFS + Modem + ModemST1 + ModemST2 = nothing happened
3. Restored android to STOCK
I can't get into the service menu.
The only Service menu that I can get into is this one, but there isn't any fixing IMEI/NVRAM option
Code:
*#0011#
Menu > Back
Menu > keyInput "Q"
Menu > keyInput "0000"
Wait for few seconds
evilsnailofdestruction said:
Yes, I also know that is it against the law, but I have a complete phone with broker mainboard (so even the IMEI is written on the back), and I would like to use this opportunity to copy the IMEI from old (broken) mainboard to the new one. It even looks better than the situation when I have got and old case with written IMEI that doesn't correspond to the IMEI on the new mainboard.
The mainboard is broken that way, that there is short-circuit somewhere and the CPU is constantly using power and it get's really hot, so it use useless.
I am trying to flash EFS, let's see what is gonna to happen
Click to expand...
Click to collapse
Hi,
you have 2 options
1. Use Samsung Kies which will repair you efs
2. Flash with Odin the official rom 5.0
If you install another efs, the data installed may be not work, even if it is same model. In S5, nothing to do with the IMEI
You can also root the phone and with adb commands, erase all the efs
you can also use Z3X tools
Hi,
Thanks - some new ideas
So if I understand you correctly, I have 3 options:
1. Use Samsung Kies which will repair you efs - how to repair EFS with Samsung Kies?
2. Flash with Odin the official rom 5.0 -> I tried flashing oryginal 4.4 and it didn't helped. Should flashing 5.0 help?
3. You can also root the phone and with adb commands, erase all the efs - What will erasing EFS will give me? Shouldn't I have EFS partition with some data?
you can also use Z3X tools -> ok... I am gonna figure this out, 'cause I don't know it yet
FrenchSnake said:
Hi,
you have 2 options
1. Use Samsung Kies which will repair you efs
2. Flash with Odin the official rom 5.0
If you install another efs, the data installed may be not work, even if it is same model. In S5, nothing to do with the IMEI
You can also root the phone and with adb commands, erase all the efs
you can also use Z3X tools
Click to expand...
Click to collapse
I have the same issue. Anybody may help me ? (galaxy S5 SM-G900H made in Vietinam)
thanks in advance
Bruce666 said:
Found sth like this:
In the dialer, type- *#197328640# or *#*#197328640#*#*
>Insert your Sim card, afterwards reboot your phone
Click to expand...
Click to collapse
This does nothing on Galaxy A5!
attached 0011 code screen
Has anybody found the solution? Efs professional gives me error " device connection lost" while using Qualcomm nv tools on s5.
I was trying to upate the SUBinary and it told me to reboot. As soon as I did I get a message saying "Custom Binary Blocked by FRP" and a red text saying "Secure Fail : Kernal" help me.
It has something to do with your Google account being logged into the phone.. samsung can send signal to reset it but they won't if it's been rooted etc still trying to make sure reflash omg the phone with original rom would make it worse or not. Or maybe just reflash in the kernal. I'm on t mobile but can only find original rom on t mobile same network but we will see. I'm on my fiance a accident messaging from her phone lol or maybe just reflash the kernal the whole problem for me is I don't have a computer to try to reflash from what someone told me I may try to reflash with odin 3.90 with a tar file to the exact model number
Solution
I had the exact same problem as you but i found a fix
i know this is a very late response but who knows maybe some people will run into it
First of all you will need
-odin3
-samsung usb drivers
-g530w tar md5 file find yours here (im telus variant but bell worked for me)
https://1fichier.com/dir/OgrN3QNx
or
https://www.youtube.com/watch?v=N33i15UVCyA
g530w Pit file here
https://drive.google.com/file/d/0BzyeAt2hy6Xea0VPUDBLOWY5WU0/view
or
http://www.sammobile.com/forum/showthread.php?t=30863
and use odin to flash your phone while its in download mode connected to your computer
skip to 1:28
https://www.youtube.com/watch?v=6lki9ei2-WM
sorry for super messy post i rarely post things i hope this saves you time
This is the best and quick fix for FRP Lock
...Just follow the link: https://forum.xda-developers.com/grand-prime/help/custom-binary-blocked-frp-t3266961/page3
Worked for my SM-G530W
I had the same problem, and i used Kies3 (not compatible with my phone anyway), but if you go on toolbar to "TOOLS", "Firmware Upgrade and initialisation", it asks you for your device model (for mine i typed SM-G530W, and then it asks you for device serial number (S/N) found under the battery by the IMEI number. After this, follow on screen prompts (Restart your device in Download mode/ PDA, connect USB cable, etc), and let the software download and install (factory rom); After your device restarts, you are good to go (sometimes if it gets stuck on booting, remove battery for few second and start again.) Now you have to go back and set up everything you want, including re-rooting your device... Good luck. (My device is Galaxy Grand Prime SM-G530W Factory unlocked rom, Android 5.11.
Hey Guys,
So I wanted to get better 3G and 4G Signal, So I used a Article I came across here https://forum.xda-developers.com/galaxy-s5/general/how-to-add-rf-lte-frequency-bands-to-t2886059
I backed up NVRAM and added the additional bands as stated in this Article, and after writing the changes and a reboot on my phone, My phone bootloops and restarts as soon as it reaches the Lock Screen. This is disabling me to interface with the Serial Port again so I can change the settings back. Is there a way to stop the radio from being loaded so I can fix my phone?
Since ART takes twice as long to startup, I used a Android 4.4.4 Stock ROM and I was more successful, I had more time in the system itself but When I enabled RNDIS + DM + Modem on the Device, I only got a APQ8084 (0) Device which dosen't work with the restore and software programming (Last Time 3 Devices Showed Up APQ8084 + MDM* + No Phone (Samsung QC/Data Modem), But now I only get APQ8084 + No Phone + No Phone).
Any Ideas?
liammendes said:
Hey Guys,
So I wanted to get better 3G and 4G Signal, So I used a Article I came across here https://forum.xda-developers.com/galaxy-s5/general/how-to-add-rf-lte-frequency-bands-to-t2886059
I backed up NVRAM and added the additional bands as stated in this Article, and after writing the changes and a reboot on my phone, My phone bootloops and restarts as soon as it reaches the Lock Screen. This is disabling me to interface with the Serial Port again so I can change the settings back. Is there a way to stop the radio from being loaded so I can fix my phone?
Since ART takes twice as long to startup, I used a Android 4.4.4 Stock ROM and I was more successful, I had more time in the system itself but When I enabled RNDIS + DM + Modem on the Device, I only got a APQ8084 (0) Device which dosen't work with the restore and software programming (Last Time 3 Devices Showed Up APQ8084 + MDM* + No Phone (Samsung QC/Data Modem), But now I only get APQ8084 + No Phone + No Phone).
Any Ideas?
Click to expand...
Click to collapse
I am trying to compile LineageOS without RILD, Any Ideas incase this does not work?
liammendes said:
I am trying to compile LineageOS without RILD, Any Ideas incase this does not work?
Click to expand...
Click to collapse
https://forum.xda-developers.com/ga...unlock-edit-add-gsm-lte-t2948822/post72382567
Gamesolc said:
https://forum.xda-developers.com/ga...unlock-edit-add-gsm-lte-t2948822/post72382567
Click to expand...
Click to collapse
Hey guys, as a last resort, is there anyway to reset nvram by booting into Qualcomm Download mode ( adb reboot edl ) on Samsung Galaxy S5 Plus (My Device)
liammendes said:
Hey guys, as a last resort, is there anyway to reset nvram by booting into Qualcomm Download mode ( adb reboot edl ) on Samsung Galaxy S5 Plus (My Device)
Click to expand...
Click to collapse
I have a SM-G900T and I was able to complete the procedure. In my case, it showed that all 3G/UMTS bands were already selected, but the bit field for the 4G was 0. My house gets 700MHz LTE, but it is Band 17, not Band 12, so I have not yet verified that the new band is enabled.
I used the "Qualcomm NV tools" including in EFS Professional to perform a backup of NVRAM before trying the procedure. I also had trouble changing the USB mode of the device. None of the secret codes for USB settings worked on my device (either with CM or stock), but I was able to use EFS professional to change the USB mode. On Win10 x64, adb and MTP were already working, but in modem/diagnostic mode, I was seeing an unknown Samsung/Android device. I reinstalled SAMSUNG_USB_Driver_for_Mobile_Phones v1.5.45.00 and restarted and voila, the serial port driver was installed.
If you successfully exposed the diagnostic virtual serial port, you should be able to use NV Tools in EFS to dump a backup of NVRAM before writing any values.
stands2reason said:
I have a SM-G900T and I was able to complete the procedure. In my case, it showed that all 3G/UMTS bands were already selected, but the bit field for the 4G was 0. My house gets 700MHz LTE, but it is Band 17, not Band 12, so I have not yet verified that the new band is enabled.
I used the "Qualcomm NV tools" including in EFS Professional to perform a backup of NVRAM before trying the procedure. I also had trouble changing the USB mode of the device. None of the secret codes for USB settings worked on my device (either with CM or stock), but I was able to use EFS professional to change the USB mode. On Win10 x64, adb and MTP were already working, but in modem/diagnostic mode, I was seeing an unknown Samsung/Android device. I reinstalled SAMSUNG_USB_Driver_for_Mobile_Phones v1.5.45.00 and restarted and voila, the serial port driver was installed.
If you successfully exposed the diagnostic virtual serial port, you should be able to use NV Tools in EFS to dump a backup of NVRAM before writing any values.
Click to expand...
Click to collapse
Thanks for the help but I just fixed it and now I have another problem, The phone boots but says that it needs a SIM Network Unlock Code, Should be simple enough to fix but Thank you. Even the steps you listed above may not have worked for me as the device was in a constant bootloop.
Hi
I had a working & rooted (Magisk) Device and tried to fix a problem with an App, requiring unrooted device.
I disabled OEM unlock accidently, so I was captured in FRP lock after I had to reboot the A5.
I replaced my USB Flex Module, as device could not communicate with PC via USB anymore (this issue is definitively fixed).
I tried to do a emergency flashing with Samsung's Smart Switch, but I didn't work, as my device was not recognized/supported by Smart Switch.
I tried to flash an old Firmware (known to be working before) with ODIN, resulting in a Rev. error.
I tried some other Firmwares and accidently checked "NAND Erase", so I ended up with a soft bricked device. Flashing recent Stock Firmware didn't change anything.
I managed to download a weird 4-files Firmware (BL, AP, CP, CSC) version and a appropriate PIT file and flashed this via ODIN, so I finally got a bootable device back.
That enabled me to remove OEM lock and activate USB Debug.
Next I was flashing TWRP and restoring a recent backup from SD card. Everything looked fine but I couldn't make a call due to phone didn't register in network (IMEI and S/N are shown in Status menue and look good).
I flashed 2 Stock ROMs (A510FXXS8CTI7 & A510FOXA8CSF3) to get a working GSM network. -> no change
I installed "Network Cell Info Lite" app to validate radio is working correctly -> positive.
Anything else I can try?
Is there any kind of logfile, where I can read what happens during GSM network registering?