NEW WAY OF TESTPOINT ON V3i(russian method)

[hagan]

it is a good guide but how long does it take to do test point this way for V3i??? it's lonly take me 5 min form start to done test point in 5 min !!, woul dbe nince for L7 and few other that you don't have to cut the RF shield though

[sharan_123]

not much,just patch the seem i given above and then cg1,and ur done.
okay i have done it ,so last advice from u guys do i try to downgrade the v3i"s bootloader now?

[mcandre]

I have a big doubt that this focus works for boot 0A.52.
Is there anyone who can say that it works? I think that the answer is "No"

[sharan_123]

well im using it on oa.52
i borrowed my friend phone for doing this method........

[chupadacabra]

here"S a method of testpointing v3i withoput opening ur phone.
thanks to dev.meena and maverick who converted it into english.
From what I understand we have to do this:

1. Open CG1 in a hex editor. Change the first four bytes to 00 00 00 00
2. Search for hex string: 12FE0000
Replace it with: 100049BC (For bootloader 0A.30).
Replace it with: 10004C78 (For bootloader 0A.52)
Its different for every bootloader. I will find for the other bootloaders later on.
3. RSA Patch the firmware if its not already RSA Patched. Testing has shown that this step is desirable. Ofcourse this would mean that you will need to get CG3, 7 and 18 with CG1 too.
4. Flash this patched and edited CG1+CG3+CG7+CG18 with P2k Easy Tools v3.9
5. After successful flashing and hence removal of firmware from your phone, remove battery and cable from your phone.
6. Now put in the battery and connect the cable. Your phone should be detected as S Blank Neptune LTE2. In other words it has been "soft" testpointed
7. To get the phone working again, reflash the phone with CG1+CG3+CG7+CG18 (not the one you edited in steps 1,2 and 3, but some other)

Do not use RSDLite for flashing here.
For those who don't understand, here are the autopatchers for doing step 1 and 2 for you:
For Bootloader 0A.30:
i have attached the bootloader in exe version.
Open CG1 in it and click on Start.
we are looking for some testers who can test this method on their v3i"s
this method has worked for one guy
"vermsky"

Okay here's what i did.
1 Backup CG1+CG3+CG7+CG18 with FB3
2 Open CG1+CG3+CG7+CG18 in FB3 and remove RSA with new method in FB3.
3 Patch CG1 with "softTP_boot_0A.30.exe"
4 Replace CG1 from step2 with CG1 from step3
5 Open CG1+CG3+CG7+CG18 (with patched cg1 from step4) in FB3 save as one SHX
6 Flash with P2KEasyTool 3.9 Cracked
7 Remove cable & battery
8 Reconnect cable & battery, phone is not detected by pc as S Blank Neptune LTE2. No reaction from WinXP.
9 FB3 says phone is connected (without detecting what phone it is)

Extracting data from firmware file...
Sending the loader...
Done.
Executing JUMP...
Error!
Erasing memory... (Progress of this process is not shown)
Error!
Sending code group: CG1
Error!
Sending code group: CG3
Error!
Sending code group: CG7
Error!
Sending code group: CG18
Error!
Operation done.

MotoRocker_300 Cracked

Split input file in codegroups
Processed 8 codegroups
Major Boot version supported by RAMLDR: 0A43
Establish connection to handset
FLASH Interface established ok
Read handset bootcore version
Bootcore version on handset: 0300
Sending RAMDLD to handset
RAMDLD started ok in handset
Erase flash...
Err no: 1120004
Err no: 1210004

What have i done wrong and what do need to do now to:
A: Make phone work
B: Unlock it (if it's not unlocked now in some f&%cked-ish way)


just in case this info is needed in helping to solve this issue, i provide short phone history:

Code:

bootloader 0A.30
sw version r479_g08.b4.85r

then after i fooled around with fws and accidentally locked it it became

Code:

bootloader 0A.30
sw version r4441_xxxxx (don't remember what the xxs was and can't look now)

it's still connectable some how:

[Dumba]

Sounds bad.You most probably need a repair with a smart clip, in a Phone shop or Repair shop.

[chupadacabra]

Sounds bad.You most probably need a repair with a smart clip, in a Phone shop or Repair shop.

So you're sure there's nothing i can do myself?
Here at home?
Even with something like Rocker_Dongle_Full_crack ?




also do you have any idead of what could have caused this?

[Dumba]

Better ask in the v3i section, you are in the wrong thread anyway,

[chupadacabra]

After disconnecting the battery&cable, for more than 1 hour, i decided to try and flash the phone again.
But this time with "0305Rrunphonepatched". Beleive it or not it worked.
I guess it's because i didn't wait long enough the first time..

more to the point:


i guess this method doesn't work for me, or did i do somthing wrong?

[Dumba]

I close the thread temporarily.
Maybe then you will start your own one in the v3i section.
There is no help here in the suggestion, guides and download section. Closed.

Thread reopened. problem soved with the help of Jabbacks.

[chupadacabra]

Here's all the patchers in one file.

Code:

softTP_boot_0A.30.rar 
softTP_boot_0A.52.rar
softTP_boot_08.A0.rar
softTP_boot_08.D0.rar
softTP_boot_08.E0.rar
softTP_boot_09.02.rar  

http://www.mediafire.com/?b1k1n7fgwabob5v