|
Title: [Tutorial] Seem Editing by Opcodes Post by: Bipolar on January 14, 2011, 05:44:26 am Contents:
1.First way Seem Editing by Opcodes -on PC -on Phone: Step one/explanation for step one/Step two Seem Reading by Opcodes -explanation for seem reading 2.Second way Seem Editing by Opcodes -on PC -on Phone: Step one/explanation for step one/Step two Seem Reading by Opcodes 3.Bit Manipulation -Dec => Hex => Bits Conversion Table by Aircraft800 -Important 4.Opcodes _______________________________________________________________________________ ___________________________________ 1.First way(you can accept calls also you dont need to restart the phone immediately after you do it): Seem Editing by Opcodes Example: (To Remove Operator Logo) On PC: SEEM 0032_0001 offset 74 - bit 4: provider tag (1 to remove, 0 to display) (offset 4B, bit 6 must be set to 0) (removes justification on home screen, Settings > Personalize > Home Screen > Layout, causes lines of 000-000 to display at Settings > Network > Available Networks) offset 4B - bit 6: Alpha Tag Display (1 from SIM, 0 from phone) On Phone: Step one - offset 74 Open Opcode Field by clicking menu + 048263* On the Opcode enter "47" then HIT 'ok' On the Field 1 enter "50" then HIT 'ok' On the Field 2 enter "1" then HIT 'ok' On the Field 3 enter "116" then HIT 'ok' On the Field 4 enter "1" then HIT 'ok' On the Field 5 (D) enter "016" then HIT 'ok' On the Results field Should apear: F1 : 0 This mean: > Op 47 (Seem Editing) > 50 (seem number,50 dec = 32 hex(0032) > 1 (record number,1 dec = 1 hex(0001) > 116 (byte adress(offset),116 dec = 74 hex) > 1 (this let you choose exactly how much bytes you want to change(the count starts from byte adress choosed in Field 3) example:if you enter "1" you will change only byte 116/if you enter "2" you will change byte 116 and 117 > 016 (Bit manipulation look at 3...) Step two - offset 4B On the Opcode enter "47" then HIT 'ok' On the Field 1 enter "50" then HIT 'ok' On the Field 2 enter "1" then HIT 'ok' On the Field 3 enter "75" then HIT 'ok' On the Field 4 enter "1" then HIT 'ok' On the Field 5 (D) enter "000" then HIT 'ok' On the Results field Should apear: F1 : 0 Seem Reading by Opcodes Example: (reading seem 0032 rec 0001 offset 51) Open Opcode Field by clicking menu + 048263* On the Opcode enter "32" than HIT 'ok' On the Field 1 enter "50" then HIT 'ok' On the Field 2 enter "1" then HIT 'ok' On the Field 3 enter "81" then HIT 'ok' On the Field 4 enter "1" then HIT 'ok' On the Results Field Should apear: F1 : 0 F2(D):here will be shown hex value of the offset that you choosed in Field 3 example: F1 : 0 F2(D):EF (239 dec) To find which bits are enabled(look at the Conversion Table) just calculate: The sum of which bits gives you 239 = bit1+ bit2+ bit3+ bit5+ bit6+ bit7(1+2+4+8+32+64+128) When you know that bit 1,2,3,5,6,7 are on,and you want bit 6 off: the sum of the bits on(239) minus bit6(64) 239 - 64 = 175 this is your number(it will disable only bit 6,others stays unchanged) This mean: Op 32 (Seem Reading) _______________________________________________________________________________ ___________________________________ 2.Second way(alittle faster,but the network is suspended and after you are done the phone restart immediately): Seem Editing by Opcodes(read first way for more information) Example: (To Remove Operator Logo) On PC: SEEM 0032_0001 offset 74 - bit 4: provider tag (1 to remove, 0 to display) (offset 4B, bit 6 must be set to 0) (removes justification on home screen, Settings > Personalize > Home Screen > Layout, causes lines of 000-000 to display at Settings > Network > Available Networks) offset 4B - bit 6: Alpha Tag Display (1 from SIM, 0 from phone) On Phone: Step one - offset 74 Open Opcode Field by clicking menu + 048263* On the Opcode enter "54" than HIT 'ok' On the Results field Should apear: "Success" then HIT 'back' On the Field 1 enter "50" then HIT 'ok' On the Field 2 enter "1" then HIT 'ok' On the Field 3 enter "116" then HIT 'ok' On the Field 4 enter "1" then HIT 'ok' On the Field 5 (D) enter "016" then HIT 'ok' Again on the Opcode enter "47*50*1*116*1*016" then HIT 'ok' On the Results field Should apear: F1 : 0 This mean: > Op 54 (enter test mode) > 47 (seem editing) > 50 (seem number,50 dec = 32 hex(0032) > 1 (record number,1 dec = 1 hex(0001) > 116 (byte adress(offset),116 dec = 74 hex) > 1 (this let you choose exactly how much bytes you want to change) example:if you enter "1" you will change only byte 116/if you enter "2" you will change byte 116 and 117 > 016 (Bit manipulation) Step two - offset 4B On the Opcode enter "47*50*1*75*1*000" then HIT 'ok' On the Results field Should apear: F1 : 0 Seem Reading by Opcodes(read first way for more information) (reading seem 0032 rec 0001 offset 51) Open Opcode Field by clicking menu + 048263* On the Opcode enter "54" than HIT 'ok' On the Results field Should apear: "Success" then HIT 'back' On the Opcode enter "32" than HIT 'ok' On the Field 1 enter "50" then HIT 'ok' On the Field 2 enter "1" then HIT 'ok' On the Field 3 enter "81" then HIT 'ok' On the Field 4 enter "1" then HIT 'ok' Again on the opcode enter "32*50*1*81*1" then HIT 'ok' _______________________________________________________________________________ ___________________________________ 3.Bit Manipulation (Bit = Dec Value) 0 = 1 1 = 2 2 = 4 3 = 8 4 = 16 5 = 32 6 = 64 7 = 128 Here you can find Dec => Hex => Bits conversion table (http://esnips.com/web/HelpfilesforOpCodes) made by Aircraft800 Important: in Field 5 the number that you have to enter allways have to be 3 digits: bit 7 only = 128 bit 6 only = 064 bit 5 only = 032 bit 4 only = 016 bit 3 only = 008 bit 2 only = 004 bit 1 only = 002 bit 0 only = 001 example: in step one when you enter "016" in Field 5 this will make bit 4 on and all other bits off bit 3,bit 4,bit 7 to be on and others off Dec Value's gonna be 152(8+16+128(bit 3 + 4 +7) dec = decimal hex = hexadecimal _______________________________________________________________________________ ___________________________________ 4.Opcodes: 32 - seem read 34 - restart 47 - seem write 54 - test mode These works only in test mode: (some don't need test mode,but you have to enter them like: Opcode,field 1,field 2,field 3,field 4,field 5) 0*0*0 Select tone 0 0*0*1 Select tone 1 0*0*2 Select tone 2 0*0*3 Select tone 3 0*0*4 Select tone 4 0*0*5 Select tone 5 0*0*6 Select tone 6 0*0*7 Select tone 7 0*0*8 Select tone 8 0*0*9 Select tone 9 0*0*124 Select tone 1 KHz 0*0*125 Select tone 2 KHz 0*0*126 Select tone 3 KHz 0*0*127 Select tone 4 KHz 0*1*X Disable tone X 3*0*1 vibrator Inable 3*0*0 vibrator Disable 4*3*1 Inable speech to coder full rate Audio loopback 4*3*0 Disable speech to coder full rate 4*4*1 Inable speech to coder enhanced full rate 4*4*0 Disable speech to coder enhanced full rate 4*5*1 Inable speech to coder half rate 4*5*0 Disable speech to coder half rate 5*0*0 Audio audio Seth level 0 level 5*0*1 audio Seth level 1 5*0*2 audio Seth level 2 5*0*3 audio Seth level 3 5*0*4 audio Seth level 4 5*0*5 audio Seth level 5 5*0*6 audio Seth level 6 5*0*7 audio Seth level 7 5*0*8 audio Seth level 8 5*0*9 audio Seth level 9 5*0*10 audio Seth level 10 5*0*11 audio Seth level 11 5*0*12 audio Seth level 12 5*0*13 audio Seth level 13 5*0*14 audio Seth level 14 5*0*15 audio Seth level 15 6*2*2*0*0 Audio Seth Path. Int Mic, IntSpk, RX unmute, TX unmute 6*4*6*0*0 Audio Seth Path. Boom Mic, Spk Boom, RX unmute, TX unmute 10*0*3 Seth band GSM 900 10*0*4 Seth band DCS 1800 10*0*5 Seth band PCS 1900 10*0*6 dual Seth band GSM 900/1800 10*1*0 Read band 3 4 = GSM 5 = DCS 6 = PCS = GSM/DCS 18*0 Initialize non-volatile memory (Reset Masters) 18*1 Initialize Non-volatile memory (Clear Masters) 20*X*0 Load Channel to number X Select Channel (for Used debugging Rx mode) 20*1*0 Load channel to number 1 GSM Low channel 20*62*0 Load channel to number 62 GSM Mid channel 20*124*0 Load channel to number 124 GSM High channel 20*512*0 Load channel to number 512 DCS Low channel 20*700*0 Load channel to number 700 DCS Mid channel 20*885*0 Load channel to number 885 CDS High channel 20*512*0 Load channel to number 512 PCS Low channel 20*661*0 Load channel to number 661 PCS Mid channel 20*810*0 Load channel to number 810 PCS High channel 55*2*001 Display Test. All pixels ON 55*2*000 Display Test. All pixels OFF 55*2*002 Display Test. Checkerboard pattern A 55*2*003 Display Test. Checkerboard pattern B 55*2*004 Display Test. Border pixels ON IMEI 32*4*1*0*0 "OK" - we receive: "Results" F1: 0 ; F2 (D): ; Data 083a05092700247709 - decoding 08 -needed 3a 05 09 27 00 24 77 09 - it is received, IMEI -> 350907200427799 User code 32*116*1*0*0 -We receive "Results" F1: 0 F2 (D): 00310032003300340000 -decoding 0031 -> "1" 0032 -> "2" 0033 -> "3" 0034 -> "4" Security code - 32*118*1*0*0 Model - 32*279*1*0*8 Flex ver - 32*383*1*0*0 _______________________________________ For other seem edits look at this seem map (http://www.xlr8.us/hofo/map.txt) |