• Welcome, Guest. Please login.
 

[Tutorial] Seem Editing by Opcodes

Started by Bipolar, January 14, 2011, 02:44:26 pm

previous topic - next topic

0 Members and 1 Guest are viewing this topic.

Bipolar

January 14, 2011, 02:44:26 pm Last Edit: January 16, 2011, 12:40:07 am by Bipolar
Contents:
1.First way
Seem Editing by Opcodes
-on PC
-on Phone: Step one/explanation for step one/Step two
Seem Reading by Opcodes
-explanation for seem reading
2.Second way
Seem Editing by Opcodes
-on PC
-on Phone: Step one/explanation for step one/Step two
Seem Reading by Opcodes
3.Bit Manipulation
-Dec => Hex => Bits Conversion Table by Aircraft800
-Important
4.Opcodes

__________________________________________________________________________________________________________________
1.First way(you can accept calls also you dont need to restart the phone immediately after you do it):
Seem Editing by Opcodes
Example:
(To Remove Operator Logo)
On PC:
SEEM 0032_0001
offset 74 -     bit 4: provider tag (1 to remove, 0 to display) (offset 4B, bit 6 must be set to 0)
(removes justification on home screen, Settings > Personalize > Home Screen > Layout, causes lines of 000-000 to display at Settings > Network > Available Networks)
offset 4B -    bit 6: Alpha Tag Display (1 from SIM, 0 from phone)

On Phone:
Step one - offset 74
Open Opcode Field by clicking  menu + 048263*
On the Opcode enter "47" then HIT 'ok'
On the Field 1 enter "50" then HIT 'ok'
On the Field 2 enter "1" then HIT 'ok'
On the Field 3 enter "116" then HIT 'ok'
On the Field 4 enter "1" then HIT 'ok'
On the Field 5 (D) enter "016" then HIT 'ok'
On the Results field Should apear: F1 : 0

This mean:
> Op 47
(Seem Editing)
> 50
(seem number,50 dec = 32 hex(0032)
> 1
(record number,1 dec = 1 hex(0001)
> 116
(byte adress(offset),116 dec = 74 hex)
> 1
(this let you choose exactly how much bytes you want to change(the count starts from byte adress choosed in Field 3)
example:if you enter "1" you will change only byte 116/if you enter "2" you will change byte 116 and 117
> 016
(Bit manipulation look at 3...)

Step two - offset 4B
On the Opcode enter "47" then HIT 'ok'
On the Field 1 enter "50" then HIT 'ok'
On the Field 2 enter "1" then HIT 'ok'
On the Field 3 enter "75" then HIT 'ok'
On the Field 4 enter "1" then HIT 'ok'
On the Field 5 (D) enter "000" then HIT 'ok'
On the Results field Should apear: F1 : 0

Seem Reading by Opcodes
Example:
(reading seem 0032 rec 0001 offset 51)
Open Opcode Field by clicking  menu + 048263*
On the Opcode enter "32" than HIT 'ok'
On the Field 1 enter "50" then HIT 'ok'
On the Field 2 enter "1" then HIT 'ok'
On the Field 3 enter "81" then HIT 'ok'
On the Field 4 enter "1" then HIT 'ok'
On the Results Field Should apear:
F1 : 0
F2(D):here will be shown hex value of the offset that you choosed in Field 3

example:
F1 : 0
F2(D):EF (239 dec)

To find which bits are enabled(look at the Conversion Table) just calculate:
The sum of which bits gives you 239 = bit1+ bit2+ bit3+ bit5+ bit6+ bit7(1+2+4+8+32+64+128)
When you know that bit 1,2,3,5,6,7 are on,and you want bit 6 off:
the sum of the bits on(239) minus bit6(64)
239 - 64 = 175 this is your number(it will disable only bit 6,others stays unchanged)

This mean:
Op 32 (Seem Reading)

__________________________________________________________________________________________________________________
2.Second way(alittle faster,but the network is suspended and after you are done the phone restart immediately):
Seem Editing by Opcodes(read first way for more information)

Example:
(To Remove Operator Logo)
On PC:
SEEM 0032_0001
offset 74 -     bit 4: provider tag (1 to remove, 0 to display) (offset 4B, bit 6 must be set to 0)
(removes justification on home screen, Settings > Personalize > Home Screen > Layout, causes lines of 000-000 to display at Settings > Network > Available Networks)
offset 4B -    bit 6: Alpha Tag Display (1 from SIM, 0 from phone)

On Phone:
Step one - offset 74
Open Opcode Field by clicking  menu + 048263*
On the Opcode enter "54" than HIT 'ok'
On the Results field Should apear: "Success" then HIT 'back'
On the Field 1 enter "50" then HIT 'ok'
On the Field 2 enter "1" then HIT 'ok'
On the Field 3 enter "116" then HIT 'ok'
On the Field 4 enter "1" then HIT 'ok'
On the Field 5 (D) enter "016" then HIT 'ok'
Again on the Opcode enter "47*50*1*116*1*016" then HIT 'ok'
On the Results field Should apear: F1 : 0

This mean:
> Op 54 (enter test mode)
> 47 (seem editing)
> 50 (seem number,50 dec = 32 hex(0032)
> 1 (record number,1 dec = 1 hex(0001)
> 116 (byte adress(offset),116 dec = 74 hex)
> 1 (this let you choose exactly how much bytes you want to change)
example:if you enter "1" you will change only byte 116/if you enter "2" you will change byte 116 and 117
> 016 (Bit manipulation)


Step two - offset 4B
On the Opcode enter "47*50*1*75*1*000" then HIT 'ok'
On the Results field Should apear: F1 : 0

Seem Reading by Opcodes(read first way for more information)
(reading seem 0032 rec 0001 offset 51)
Open Opcode Field by clicking  menu + 048263*
On the Opcode enter "54" than HIT 'ok'
On the Results field Should apear: "Success" then HIT 'back'
On the Opcode enter "32" than HIT 'ok'
On the Field 1 enter "50" then HIT 'ok'
On the Field 2 enter "1" then HIT 'ok'
On the Field 3 enter "81" then HIT 'ok'
On the Field 4 enter "1" then HIT 'ok'
Again on the opcode enter "32*50*1*81*1" then HIT 'ok'
__________________________________________________________________________________________________________________
3.Bit Manipulation
(Bit = Dec Value)
0 = 1
1 = 2
2 = 4
3 = 8
4 = 16
5 = 32
6 = 64
7 = 128

Here you can find Dec => Hex => Bits conversion table made by Aircraft800


Important:
in Field 5 the number that you have to enter allways have to be 3 digits:

bit 7 only = 128
bit 6 only = 064
bit 5 only = 032
bit 4 only = 016
bit 3 only = 008
bit 2 only = 004
bit 1 only = 002
bit 0 only = 001

example:
in step one when you enter "016" in Field 5 this will make bit 4 on and all other bits off
bit 3,bit 4,bit 7 to be on and others off Dec Value's gonna be 152(8+16+128(bit 3 + 4 +7)

dec = decimal
hex = hexadecimal
__________________________________________________________________________________________________________________
4.Opcodes:
32 - seem read
34 - restart
47 - seem write
54 - test mode
These works only in test mode:
(some don't need test mode,but you have to enter them like: Opcode,field 1,field 2,field 3,field 4,field 5)
0*0*0 Select tone 0
0*0*1 Select tone 1
0*0*2 Select tone 2
0*0*3 Select tone 3
0*0*4 Select tone 4
0*0*5 Select tone 5
0*0*6 Select tone 6
0*0*7 Select tone 7
0*0*8 Select tone 8
0*0*9 Select tone 9
0*0*124 Select tone 1 KHz
0*0*125 Select tone 2 KHz
0*0*126 Select tone 3 KHz
0*0*127 Select tone 4 KHz
0*1*X Disable tone X
3*0*1 vibrator Inable
3*0*0 vibrator Disable
4*3*1 Inable speech to coder full rate Audio loopback
4*3*0 Disable speech to coder full rate
4*4*1 Inable speech to coder enhanced full rate
4*4*0 Disable speech to coder enhanced full rate
4*5*1 Inable speech to coder half rate
4*5*0 Disable speech to coder half rate
5*0*0 Audio audio Seth level 0 level
5*0*1 audio Seth level 1
5*0*2 audio Seth level 2
5*0*3 audio Seth level 3
5*0*4 audio Seth level 4
5*0*5 audio Seth level 5
5*0*6 audio Seth level 6
5*0*7 audio Seth level 7
5*0*8 audio Seth level 8
5*0*9 audio Seth level 9
5*0*10 audio Seth level 10
5*0*11 audio Seth level 11
5*0*12 audio Seth level 12
5*0*13 audio Seth level 13
5*0*14 audio Seth level 14
5*0*15 audio Seth level 15
6*2*2*0*0 Audio Seth Path. Int Mic, IntSpk, RX unmute, TX unmute
6*4*6*0*0 Audio Seth Path. Boom Mic, Spk Boom, RX unmute, TX unmute
10*0*3 Seth band GSM 900
10*0*4 Seth band DCS 1800
10*0*5 Seth band PCS 1900
10*0*6 dual Seth band GSM 900/1800
10*1*0 Read band 3 4 = GSM 5 = DCS 6 = PCS = GSM/DCS
18*0 Initialize non-volatile memory (Reset Masters)
18*1 Initialize Non-volatile memory (Clear Masters)
20*X*0 Load Channel to number X Select Channel (for Used debugging Rx mode)
20*1*0 Load channel to number 1 GSM Low channel
20*62*0 Load channel to number 62 GSM Mid channel
20*124*0 Load channel to number 124 GSM High channel
20*512*0 Load channel to number 512 DCS Low channel
20*700*0 Load channel to number 700 DCS Mid channel
20*885*0 Load channel to number 885 CDS High channel
20*512*0 Load channel to number 512 PCS Low channel
20*661*0 Load channel to number 661 PCS Mid channel
20*810*0 Load channel to number 810 PCS High channel
55*2*001 Display Test. All pixels ON
55*2*000 Display Test. All pixels OFF
55*2*002 Display Test. Checkerboard pattern A
55*2*003 Display Test. Checkerboard pattern B
55*2*004 Display Test. Border pixels ON

IMEI
32*4*1*0*0 "OK"
- we receive:
"Results"
F1: 0 ;
F2 (D): ; Data
083a05092700247709
- decoding
08 -needed
3a 05 09 27 00 24 77 09 - it is received, IMEI -> 350907200427799

User code
32*116*1*0*0
-We receive
"Results"
F1: 0
F2 (D):
00310032003300340000
-decoding
0031 -> "1"
0032 -> "2"
0033 -> "3"
0034 -> "4"

Security code - 32*118*1*0*0
Model - 32*279*1*0*8
Flex ver - 32*383*1*0*0
_______________________________________
For other seem edits look at this seem map