Database Info

[Q] LG Codes no longer Working

So, I did some digging and I found a list of codes for LG...
To check LG mobile or cellphones IMEI (International Mobile Equipment Identity)
On the main screen type *#06#
Information you get from the IMEI (International Mobile Equipment Identity)
XXXXXX XX XXXXXX X
TAC FAC SNR SP
TAC = Type approval code of your LG Mobile
FAC = Final assembly code of your cellphone
SNR = Serial number of your LG Phone
SP = Spare
Other secret tricks for LG mobile or cellphone
LG all models test mode:
Type 2945#*# on the main screen.
2945*#01*# Secret menu for LG
IMEI and SW (LG 510): *#07#
Software version (LG B1200): *8375#
Recount cheksum (LG B1200): *6861#
Factory test (B1200): #PWR 668
Simlock menu (LG B1200): 1945#*5101#
Simlock menu (LG 510W, 5200): 2945#*5101#
Simlock menu (LG 7020, 7010): 2945#*70001#
Simlock menu (LG 500, 600): 2947#*
LG-U81XX SPECIAL CODES
Code to read phone version :
- Phone without SIM
- Enter 277634#*# or 47328545454#
- Select 'SW Ver.info'
Code to reset phone :
- Phone without SIM
- Enter 277634#*# or 47328545454#
- Select 'Factory Reset'
Code to enter UNLOCK MENU :
- Phone wit SIM inside
- Enter 2945#*88110#
Test Menu 8330 : 637664#*#
Test Menu 8180 V10a: 49857465454#
Test Menu 8180 V11a: 492662464663#
Test Menu 8130-8138: 47328545454#
Test Menu 8110-8120: 277634#*
The only problem is, any code I try fails. I get USSD Code Running....
then I get the message MMI code Cancelled.
Anyone run into this before? This worked before I rooted and applied Pauls pre-dexopt tweek.

You may miss the sticky.
Try
2945#*999#
Izzydroolin said:
So, I did some digging and I found a list of codes for LG...
To check LG mobile or cellphones IMEI (International Mobile Equipment Identity)
On the main screen type *#06#
Information you get from the IMEI (International Mobile Equipment Identity)
XXXXXX XX XXXXXX X
TAC FAC SNR SP
TAC = Type approval code of your LG Mobile
FAC = Final assembly code of your cellphone
SNR = Serial number of your LG Phone
SP = Spare
Other secret tricks for LG mobile or cellphone
LG all models test mode:
Type 2945#*# on the main screen.
2945*#01*# Secret menu for LG
IMEI and SW (LG 510): *#07#
Software version (LG B1200): *8375#
Recount cheksum (LG B1200): *6861#
Factory test (B1200): #PWR 668
Simlock menu (LG B1200): 1945#*5101#
Simlock menu (LG 510W, 5200): 2945#*5101#
Simlock menu (LG 7020, 7010): 2945#*70001#
Simlock menu (LG 500, 600): 2947#*
LG-U81XX SPECIAL CODES
Code to read phone version :
- Phone without SIM
- Enter 277634#*# or 47328545454#
- Select 'SW Ver.info'
Code to reset phone :
- Phone without SIM
- Enter 277634#*# or 47328545454#
- Select 'Factory Reset'
Code to enter UNLOCK MENU :
- Phone wit SIM inside
- Enter 2945#*88110#
Test Menu 8330 : 637664#*#
Test Menu 8180 V10a: 49857465454#
Test Menu 8180 V11a: 492662464663#
Test Menu 8130-8138: 47328545454#
Test Menu 8110-8120: 277634#*
The only problem is, any code I try fails. I get USSD Code Running....
then I get the message MMI code Cancelled.
Anyone run into this before? This worked before I rooted and applied Pauls pre-dexopt tweek.
Click to expand...
Click to collapse

Thanks mingkee, but I'm not trying to unlock the phone, I'm just trying to get to the secret menu. Still no go.

The standard secret menu? *#*#4636#*#*

Izzydroolin said:
Thanks mingkee, but I'm not trying to unlock the phone, I'm just trying to get to the secret menu. Still no go.
Click to expand...
Click to collapse
Get "anycut" from market.

Change Physical Keyboard Behavior

I have a Photon Q updated to the latest Jelly Bean. It is rooted. Currently when I press the caps lock key, it does not apply itself to the number keys. Is there an app to do this? Is there a keyboard map file I could download to achieve that? I could edit myself and don't mind following directions... Any other ideas?

You can edit the file "keypad_8960.kcm" in folder "/system/usr/keychars/".
You find the line "key 0 { ..." and you change "shift: ')' " to "shift, capslock: ')' ".

Question [J706F][FIXED] Update from 10 to 11 not working after switching from ROW to ZUI

EDIT: FIXED. I flashed persist.img from version "S250260_210804..." (unzip, flash via `fastboot flash persist persist.img`) https://mirrors.lolinet.com/firmware/lenovo/Tab_P11_Pro/TB-J706F/
Hello dear community,
I am in need of some help. So here is what I did:
* Coming from latest Android 11 ROW, flashed ZUI using QFIL from here: https://mirrors.lolinet.com/firmware/lenovo/Tab_P11_Pro/TB-J706F/
* tried upgrading to ZUI 12.5, 12.6 and 13 but didn't work
* used fastboot to unlock and unlock_critical (i know, i know...)
* used payload_dumper (from some github repo) to extract zui 13 update.zip
* flashed every image I extracted manually using fastboot (I know, I'm stupid)
* Got ZUI 12.0 working, didn't like it and wanted ROW android 11 back
* flashed latest ROW rom using QFIL from lolinet url -> bootloop
* flashed oldest ROW rom using QFIL, updated 3x via OTA to latest version -> few bootloops, then device booted back to android 10 and created notification "failed to install ota"
So I can install any version between TB-J706F_S210002_201015_ROW and TB-J706F_S250260_210804_ROW from lolinet url, but nothing above that. Neither through QFIL, nor using lenovo smart rescue assistent, nor using OTA update from android 10 (which is working fine).
I tried following things to fix this:
* ####6030# -> change to CN and change the NV value to 00
* ####6030# -> change to DE and change the NV value to 02 or 00
* flash latest ROW using QFIL, then change NV value from 02 to 00
nothing of that worked and I'm starting to believe, that I ****ed up some partitions using fastboot. Because I flashed images from ZUI android 11 and I can't install ROW android 11 now.
Could I possibly try restoring a TWRP backup from some other user?
What else could I do to install android 11?
PS: I used QFIL backup and restore tool to change the NV value. Because the nv reader/writer tool didn't seem to work.

It might help, if someone would be kind enough to provide me with the following images (by backing them up with twrp):
* abl
* xbl_a
* xbl_b

Hi there, I also got into this trouble that can't flash any global ROM including TB-J706F_S250260_210804_ROW. What I did is change the NV value to 02 and not 00 using QFIL. After that I was able to update via OTA and currently on the latest global ROM.
Thanks to this thread: https://forum.xda-developers.com/t/check-region-unlock-p11-tb-j606f-l-n.4356451/

MateUserHHTT​I have similar problem before, can not flash to Android 11, even ROW or ZUI, bootloop~
please check your J706F screen auto rotate and auto brightness(and pair bluetooth devices) still functional?
If not functional, I'm following below post instruction to flash presist.img, and can upgrade to Android 11, both of ROW & ZUI are available.
<TB-J706F> Auto-rotation & Auto Brightness Broken.​But Serial Number shows 123456789ABCDEF, wifi /bluetooth MAC shows 00:00:00... still not solve even functional.

auston said:
But Serial Number shows 123456789ABCDEF, wifi /bluetooth MAC shows 00:00:00... still not solve even functional.
Click to expand...
Click to collapse
I may found a fix for Bluetooth MAC by generating a file for the "NV-items_reader_writer.exe" and wrote it to NV item 447 (some one sait this is BT). Problem was that this item (447) was NOT present at this time inn QCN.
WARNING! May my guess of "Items size" 128 is wrong, I don't know. Use at your own risk and change the file to your MAC.
After that I flashed "persist.img" (matching the actual ROM), some one wrote that this fixed the autorotate. I can confirm this.
But still not found solution for serial, the correct serial is still in NV item 2497.

Okay, Serial number restore can be done the same way.
See here https://forum.xda-developers.com/t/tab-j706f-serial-number.4318901/
Best would be to have the full original QCN file (or an editor for this files)

MateUserHHTT said:
* abl
* xbl_a
* xbl_b
Click to expand...
Click to collapse
abl (_a and _b) = abl.elf
xbl (_a and _b) = xbl.elf
You will find both in the ROM Zip's at lolinet.
Mine updates successfully from 10 to 11 after I have restored BT, Wifi, SN, PN and region lock. And flashed persist.img.
Oh, and you have to set region code in QCN NV 6858, somebody found out that Android 11 checks that value. If it is wrong, device boot loops.

auston said:
please check your J706F screen auto rotate and auto brightness(and pair bluetooth devices) still functional?
Click to expand...
Click to collapse
Firstly, let me thank you for your reply! It's interesting, I indeed noticed just a few days ago, that auto rotation isn't working!
I will follow the guide you linked and update my post accordingly.
Edit: THANK you very much indeed! My problem was solved instantly by this!
Flashed persist.img via fastboot, flashed the latest ROM from lolinet using QFIL and had no issues whatsoever.
Oh, and you have to set region code in QCN NV 6858, somebody found out that Android 11 checks that value. If it is wrong, device boot loops.
Click to expand...
Click to collapse
as I said in my post, I did tried both 00 and 02. I read the thread about the second region code checking.

CryptMan said:
Mine updates successfully from 10 to 11 after I have restored BT, Wifi, SN, PN and region lock. And flashed persist.img.
Click to expand...
Click to collapse
I don't have any problem but just in case...
I guess PN is Product Number where did you change it and where do you get the correct value? I only found a code before the SN that looks unique per tablet but it's not in the box.

MrCrayon said:
I guess PN is Product Number where did you change it and where do you get the correct value?
Click to expand...
Click to collapse
Well I changed the PN in NV item 2497
I found this PN number here: https://forum.xda-developers.com/t/tab-j706f-serial-number.4318901/#post-86315607
My other device, P11 (TB-J606F), has this number: 8SSP69A6PB5XHA6213L0864
Because they look pretty same (length, etc.) I decided to try it.
May somebody would confirm if this PN are the same on all device.
Open settings and type in the search bar "####2222#". That will display PN and SN.

One issue persists though, which is that my widewine level is set to L3.
1. I flashed persist.img from TB-J706F_S250260_210804_ROW
2. I then installed the TB-J706F_S620150_211226_ROW via QFIL and
3. updated to TB-J706F_S630185_220128_ROW via OTA in system settings.
My serial number is also 1-9A-F. My device is locked. I'm unlocking my device and flashing the persist.img of the latest ROM. If that doesn't work, what are my options to restore L1?

CryptMan said:
Well I changed the PN in NV item 2497
I found this PN number here: https://forum.xda-developers.com/t/tab-j706f-serial-number.4318901/#post-86315607
My other device, P11 (TB-J606F), has this number: 8SSP69A6PB5XHA6213L0864
Because they look pretty same (length, etc.) I decided to try it.
May somebody would confirm if this PN are the same on all device.
Open settings and type in the search bar "####2222#". That will display PN and SN.
Click to expand...
Click to collapse
Ah ok, so the number before SN is the PN.
I have two J706F and they have different PN, The last 8-9 digits are different and the other ones are the same.
I could not find that code anywhere else.

MateUserHHTT said:
One issue persists though, which is that my widewine level is set to L3.
Click to expand...
Click to collapse
If you check in play store settings does it say your device is certified?

On my J706F, the one on which I have lost QCN with SN MAC etc. , I have the same problem as MateUserHHTT.
The device lost L1 cert. PlayStore says NOT certified and "DRM Info" app says L3.
I also have a property "sys.lenovo.widevine_security_level" with value "L3".
My guess it that there is a file or partition holding this certifications, but I don' t know which.
And of course I don't have a backup ...

If you check in play store settings does it say your device is certified?
Click to expand...
Click to collapse
It says "Device is not certified"
Now that's curious: my tablet, running the latest Android 11 ROW version, is offering me to upgrade my device to Android Kitkat 4.4. Now that's an offer I can't resist (yes, of course I clicked "update". I want all the new features!)
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}

CryptMan said:
The device lost L1 cert. PlayStore says NOT certified and "DRM Info" app says L3.
I also have a property "sys.lenovo.widevine_security_level" with value "L3".
Click to expand...
Click to collapse
Is your bootloader unlocked or did you unlock it previously and relocked?
MateUserHHTT said:
It says "Device is not certified"
Now that's curious: my tablet, running the latest Android 11 ROW version, is offering me to upgrade my device to Android Kitkat 4.4. Now that's an offer I can't resist (yes, of course I clicked "update". I want all the new features!)
Click to expand...
Click to collapse
Maybe the OTA app is getting some wrong data / not set data and that's the result
I tried to decompile that app to get the address called to download updates but my knowledge of android programming is really basic and did not have enough time.

MrCrayon said:
Is your bootloader unlocked or did you unlock it previously and relocked?
Maybe the OTA app is getting some wrong data / not set data and that's the result
I tried to decompile that app to get the address called to download updates but my knowledge of android programming is really basic and did not have enough time.
Click to expand...
Click to collapse
I previousl, unlocked and afterwards relocked it (both flashing lock and flashing lock_critical)
Yes, I once said "erase all before download" and accidentally deleted my original qcn file so some NV fields seem to be missing. Maybe that caused the app to default back to 4.4 it was Lenovo Feature Updater by the way, not the settings - system - update.
If you share your past work in a git repo I will take a look at it. I'm no expert for sure but I'm developing fir android for some years and have stuck my nose a tiny bit under the surface of android rom development (1mm and it was very painful still).
My widewine lvl is L3. Any chance of resetting to L1 myself? I don't know much about how trust attestation works. :/

MateUserHHTT said:
It was Lenovo Feature Updater by the way, not the settings - system - update.
Click to expand...
Click to collapse
I disabled that as soon as I saw it
MateUserHHTT said:
If you share your past work in a git repo I will take a look at it. I'm no expert for sure but I'm developing fir android for some years and have stuck my nose a tiny bit under the surface of android rom development (1mm and it was very painful still).
Click to expand...
Click to collapse
Not much really, I'm not at my desk now but I extracted LenovoOTA from stock ROM and decompiled it with apktools, but even with online tools is probably ok.
Then I see two options:
Recompile that package changing package name and adding a log with full address and parameters or get the code that construct the URL and put it in a new app.
For you probably the last one is easier.
I went for a third I was trying to understand if i could get the data with adb or in files but I did not find documentation.
MateUserHHTT said:
My widewine lvl is L3. Any chance of resetting to L1 myself? I don't know much about how trust attestation works. :/
Click to expand...
Click to collapse
I don't think there is a way to force it, this widevine a thing is a pain.

MrCrayon said:
Is your bootloader unlocked or did you unlock it previously and relocked?
Click to expand...
Click to collapse
Locked, and was never unlocked before.
I tried to unlock now, but does not succeed with flashing sn.img.
Because I'm not interested on Custum ROM, I will leave it locked.
Do you know where the device certification is stored?

I unlocked without flashing sn.img. Does that make a difference?
Did you try monitoring the network traffic with wireshark?

Please help !! I bricked my LG K52

Hi everybody,
I may need the help of someone very experimented in flashing smartphones with Mediatek chipsets,
I wanted to unlock the bootloader of my K52, so I downgraded it to Android 10, then I unlocked it with MTKClient, but it got stuck in a bootloop,
Then, searching how to wipe userdata, I accidentally erased all partitions on the phone,
Now it won't boot anymore, I just can download it in BROM mode, with the "python mtk payload" command,
I've tried this guide, the k52 has exactly the same chipset, but with no chance,
Could anyone help me plz ?
I'd be very grateful ! :3

have install twrp?

arfooux said:
have install twrp?
Click to expand...
Click to collapse
what part of 'wiped my whole flash' do you not understand?
also I'm quite sure you are screwed, speaking from personal experiance, as there are some partitions that just don't come with a stock ROM because they're for calibration and other purposes (I can't say what exactly, but things like the modem drivers to comply with regional authority and some such is a good bet)
so really you'd need a full mtkclient flash dump from a good L52 to then flash onto your bricked one
P.S. my experiance being that even though I've flashed a stock rom to my X626B after a whole flash wipe I only get a bootloop and haven't been able to diagnose the problem on account nobody knows how to get a UART console without a bridge despite not needing one...

Hello,
Thanks for answering,
I have spent hours searching on the web different possible solutions to bring my phone back to life, and here is my progress so far :
- I've been able to extract from a stock ROM KDZ file the following partitions :
- boot : boot.img_1064960 and boot.img_1540096, I don't know if they are boot_a or boot_b, they look pretty similar on hex editor, stripped like .bin dump from ROM, and when I make a Get-FileHash on both with powershell I have exactly the same result (and it's applicable to all files with same name)
- dtbo
- efuse
- ftm
- laf
- lk
- logo
- md1img
- OP_COM1_EU (3 different files, and the third neigher has the same size nor the same contents in hex editor as the other ones, so I guess a and b??)
- preloader
- patched_pgpt
- patched_sgpt
- rct
- scp
- spmfw
- sspm
- super (a lot of files with different sizes)
- tee
- userdata (a lot of files with different sizes)
- vbmeta_COM1_EU
I guess they are in the right format when I compare in hex editor the preloader file I extracted with a *.bin I have found I don't remember where they are the same
- I've managed to generate a scatter file from patched_pgpt with WWR
- I've connected my phone and used bypass_utility (https://github.com/MTK-bypass/bypass_utility) flashed partitions using scatter file with SP Flash Tool (https://spflashtool.com/)
- Now, when I open mtk_gui (https://github.com/bkerler/mtkclient), the tabs read/write/erase partitions are not empty anymore, here is what I have
- boot_para
- proinfo
- para
- efuse
- spare1
- nvcfg
- nvdata
- metadata
- misc2
- ftm
- mt_udc
- expdb
- frp
- protect1
- protect2
- seccfg
- nvram
- persist
- persist_lg
- p_persist_lg
- md1img_a
- spmfw_a
- scp_a
- sspm_a
- lk_a
- tee_a
- spare2
- logo_a
- dtbo_a
- vbmeta_a
- vbmeta_system_a
- vbmeta_vendor_a
- boot_a
- laf_a
- md1img_b
- spmfw_b
- scp_b
- sspm_b
- lk_b
- tee_b
- spare3
- logo_b
- laf_b
- eksst
- encrypt
- rct
- spare4
- power
- mpt
- fota
- els
- carrier
- srtc
- operatorlogging
- super
- OP_a
- OP_b
- userdata
- flashinfo
It pretty looks like what I had before I get stupid enough to erase everything, so I guess I progressed in the right way
Anyway, the phone still doesn't start
I can't get to download mode, fastboot mode, etc
Whe I do python mtk plstage --preloader=preloader_muse6765_64_eh35_q.bin, Windows detects LGE Mobile USB Serial Port on device manager, then disappears after a few seconds and becomes MediaTek USB Port, and loops like this
So I guess something is missing
My question is
Which partitions do I need to flash to at least get Download Mode back ? So that I can use LG software and flash KDZ
I'll keep searching, but if anyone has information, or why not a full ROM dump, I'd be glad
Best regards,
François

Just to give some updates, I've tried another tool to extract the KDZ file : https://gist.github.com/iscgar/e0da0868df7b2f179b000c61f12d1a8c
Now I have clearly named files : 0.boot_a.img, 0.boot_b.img, etc.
So, I'm manually flashing partitions. Each partition is mentioned in the generated scatter file by WWR as on this example :
- partition_index: SYS22
partition_name: md1img_a
file_name: md1img.img
is_download: true
type: NORMAL_ROM
linear_start_addr: 0x17000000
physical_start_addr: 0x17000000
partition_size: 0x6000000
region: EMMC_USER
storage: HW_STORAGE_EMMC
boundary_check: true
is_reserved: false
operation_type: UPDATE
is_upgradable: true
empty_boot_needed: false
reserve: 0x00
So, for each one that has a .img file, im doing this
python mtk wo 0x17000000 0x6000000 0.md1img_a.img
with 0x17000000 being the line physical_start_addr and 0x6000000 the line partition_size
all partitions are not in the directory, seccfg, fota, frp, are missing, so, well, we'll see what happens
So far, I have flashed boot_a, boot_b, laf_a, laf_b, lk_a, lk_b, logo_a, logo_b, md1img_a, md1img_b, ssmp_a, ssmp_b, spmfw_a, spmfw_b, rct, tee_a, tee_b, dtbo_a, dtbo_b, efuse, vbmeta_a, vbmeta_b, pgpt, sgpt
I'm not sure about what I have done with OP, I flashed 0.OP_S.img in the OP_a partition
Anyway, so far, I've tried
power : nothing
power + vol up : nothing
power + vol down : nothing
power + both vol buttons : nothing
But, python mtk plstage --preloader=preloader_muse6765_64_eh35_q.bin as usual, LGE device appears for a few seconds on the device manager, and something more, the phone displays the LG K52 boot screen for a few seconds, then turns back off,
Not great yet, the phone is still not usable, but it's encouraging !
I'll keep you informed !

Nothing else than this yet, but satisfying to see progress, I wanted to share this with you
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}

I just copied super partition, now when I push power button, it vibrates, displays the LG K52 boot screen, and displays "All Slots are unbootable" in red
I can get neither download mode nor fastboot, but I'm confident I'm getting close to get it working again !

Well, I tried to flash everything again, and now the phone is dead again, no more vibration and no more logo...
I noticed it was possible to communicate with the BROM with a UART interface at a baudrate of 115200, 8 bits, 1 stop bit, no parity and no flow control, I found a document yesterday explaining that a few commands could be called like 'Version', 'Start', 'Jump', but nothing happens when I try with PuTTY,
If somebody can help I'd be very glad !

Okay, after idk how many attemts, I managed to have the phone powerong on again after flashing with SP Flash Tool
buuuuuuut
Something more !!
Now, it doesn't only bootloop when the BL is unllocked, it also displays a message I didn't have at the first time I could power it on again !

I haven't progressed more so far, may anyone have a suggestion ?
I've tried :
- reflashing everything
- removing AVB header in the boot partition img to disable verified boot just in case it would change something (replacing the 256 bytes of the header of AVB in HxD with zeroes)
- the whole process from KDZ to manually reflash partitions with another stock ROM to see if it changes something
- erasing userdata, md_udc and metadata
- python mtk payload --metamode FASTBOOT => won't boot in fastboot
I'm now out of ideas...
It keeps displaying in a bootloop the LG logo, then either "all slots are unbootable" or "Your device cannot be checked for corruption. Lock the bootloader"
All I think I know, is that to reach that far in the startup process, it means we're in the LittleKernel (AM I RIGHT PLEASE CAN ANYONE CONFIRM ? ), and I may have something interesting if I manage to build a custom one with debug symbols, but no source code related to MT6765 anywhere on the internet, I guess I'm kinda stuck...
And at the same time, just to try, I build a custom LK with ARM target from the github source code, it generates a LK and a LK.img, but in Hxd, the first bytes are very very very different, the one from my LG stock ROM starts with IDK how many rows ful of "0xFF" bytes, the built one doesn't..
Does anyone have an idea of what I may want do to find what's wrong with the boot process of my phone ?

Up ?

Maybe I can help you solve this problem, because I use the same mobile phone as you. But after repairing the boot, your phone may lose the serial number, so far, I do not know how to repair the serial number. If I have time, I'll look into it

When I turn it on now, if I push simultaneously PWR, VOL+ and VOL- buttons barcodes with S/N, IMEI and manufacturing dates, and all is zero,
Honestly, I don't mind if I don't have the S/N anymore, I know all the numbers have been wiped out, now event the IMEI consist of zeroes, I've called Orange customer service so they told me the IMEI of the terminal I used with my SIM card between feb 2021 and mar 2023 so I'm gonna have to find a way to reinject it but it's okay I'll find a way, I don't know how yet but, if at least, I can get it starting again I'd already be more than happy

How to change the GUID manually on BlueStacks 3.60.89.3419

Hi, i'm trying to understand how does BlueStacks Tweaker 5.16.1 change the GUID in the background so i can do it manually, it seems that it's modifying the following registry values but these values keep reverting maybe i'm missing something:
Code:
[HKEY_LOCAL_MACHINE\SOFTWARE\BlueStacks_bgp_kk\Config]
"IsIncludeMachineGUID"=dword:00000001
"SYSTEM_GUID"="00000000-0000-0000-000000000000"
Can someone please explain what does the patch button for the GUID do in the background ?

Why not ask developer of BlueStacks Tweaker 5.16.1 ( Anatoly Jacobs ) this question?
Here you'ld go:
BlueStacks Tweaker 6. Tool for modifing BlueStacks 2 & 3 & 3N & 4 & 5
BlueStacks Tweaker 6. Tool for modifing BlueStacks 2 & 3 & 3N & 4 & 5 Root for BlueStacks 5 Hyper-V Video Manuals: How to Root BlueStacks 4, install SuperSU 2.82-SR5 and update su binary (BSTweaker 6) How to install Magisk on BlueStacks 5...
forum.xda-developers.com

@THE GUID is getting changed to change the Android ID? Android devices have only a Google advertising ID (GAID or AAID for Android Ad ID). This ID can be disabled/new created in settings menu > Google > Advertising.
With root you can also fake/delete the ID by editing /data/data/com.google.android.gms/shared_prefs/adid_settings.xml.
Since Android 8 an unique Android ID for your device is no longer created. Instead of this every single app creates an own Android ID. You can test it with multiple Android ID reader apps that will all give you different Android IDs.

WoKoschekk said:
...
Since Android 8 an unique Android ID for your device is no longer created. Instead of this every single app creates an own Android ID. You can test it with multiple Android ID reader apps that will all give you different Android IDs.
Click to expand...
Click to collapse
The Bluestacks version mentioned by OP is based on 32-bit Android 4.4

jwoegerbauer said:
Why not ask developer of BlueStacks Tweaker 5.16.1 ( Anatoly Jacobs ) this question?
Here you'ld go:
BlueStacks Tweaker 6. Tool for modifing BlueStacks 2 & 3 & 3N & 4 & 5
BlueStacks Tweaker 6. Tool for modifing BlueStacks 2 & 3 & 3N & 4 & 5 Root for BlueStacks 5 Hyper-V Video Manuals: How to Root BlueStacks 4, install SuperSU 2.82-SR5 and update su binary (BSTweaker 6) How to install Magisk on BlueStacks 5...
forum.xda-developers.com
Click to expand...
Click to collapse
Already did but it's unlikely that he'll answer.
WoKoschekk said:
@THE GUID is getting changed to change the Android ID? Android devices have only a Google advertising ID (GAID or AAID for Android Ad ID). This ID can be disabled/new created in settings menu > Google > Advertising.
With root you can also fake/delete the ID by editing /data/data/com.google.android.gms/shared_prefs/adid_settings.xml.
Since Android 8 an unique Android ID for your device is no longer created. Instead of this every single app creates an own Android ID. You can test it with multiple Android ID reader apps that will all give you different Android IDs.
Click to expand...
Click to collapse
The GUID is for BlueStacks not to be confused with Android, it controls the IMEI, the Android ID and the WiFi Mac, the change to the GUID happens outside the Android system meaning it happens on your operating system the question is what else is changing besides the two registry values that i wrote, it's this patch button that i'm trying to understand what it does in the background:
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}

@jwoegerbauer BlueStacksTweaker 5.16.1 is for Bluestacks 4 and it's Android 7.1.2 https://en.wikipedia.org/wiki/BlueStacks#BlueStacks_4
@pOOBs4 ok, I understand.

ROFL
OP makes use of BS 3.60.89.3419 and that's based on Android 4.4
If OP uses BS Tweaker 5.16.1 to tweak this BS version, so it's on his decision.

pOOBs4 said:
Already did but it's unlikely that he'll answer.
The GUID is for BlueStacks not to be confused with Android, it controls the IMEI, the Android ID and the WiFi Mac, the change to the GUID happens outside the Android system meaning it happens on your operating system the question is what else is changing besides the two registry values that i wrote, it's this patch button that i'm trying to understand what it does in the background:
View attachment 5921237
Click to expand...
Click to collapse
open this reg path: Computer\HKEY_LOCAL_MACHINE\SOFTWARE\BlueStacks_bgp_kk\Config and change value of SYSTEM_GUID. This value is mandatory for BlueStacks.
if key is not available, open the log file in C:\ProgramData\BlueStacks_bgp_kk\Engine\Android\Logs and search for the GUID string. You'll find the registry path there:
Code:
00:00:01.256321 bstdevices: Bluestacks registry path : Software\BlueStacks_bgp_kk
00:00:01.256346 bstdevices: query string char count 37
00:00:01.256358 bstdevices: query system guid value 2ae31f3f-f939-8ed4-3e47-f7b11690ba51

WoKoschekk said:
open this reg path: Computer\HKEY_LOCAL_MACHINE\SOFTWARE\BlueStacks_bgp_kk\Config and change value of SYSTEM_GUID. This value is mandatory for BlueStacks.
if key is not available, open the log file in C:\ProgramData\BlueStacks_bgp_kk\Engine\Android\Logs and search for the GUID string. You'll find the registry path there:
Code:
00:00:01.256321 bstdevices: Bluestacks registry path : Software\BlueStacks_bgp_kk
00:00:01.256346 bstdevices: query string char count 37
00:00:01.256358 bstdevices: query system guid value 2ae31f3f-f939-8ed4-3e47-f7b11690ba51
Click to expand...
Click to collapse
As already stated on my first post changing the value of SYSTEM_GUID and IsIncludeMachineGUID is not enough, you can test it, it keeps reverting to the old GUID and in some cases assing a new one, i'm not saying that you're wrong i'm saying that there's something missing to be also modified to make the edited registry values work.

pOOBs4 said:
As already stated on my first post changing the value of SYSTEM_GUID and IsIncludeMachineGUID is not enough, you can test it, it keeps reverting to the old GUID and in some cases assing a new one, i'm not saying that you're wrong i'm saying that there's something missing to be also modified to make the edited registry values work.
Click to expand...
Click to collapse
I tested it with BlueStacks v3.60.89.3419 and BSTweaker v5.3.0 (post #5, screenshot). Changing GUID with Tweaker => registry change and vice versa. I also cross checked the results with AIDA64. No problems.

WoKoschekk said:
I tested it with BlueStacks v3.60.89.3419 and BSTweaker v5.3.0 (post #5, screenshot). Changing GUID with Tweaker => registry change and vice versa. I also cross checked the results with AIDA64. No problems.
Click to expand...
Click to collapse
Did you press unpatch before anything ?
Because if you do any registry change will not take effect, that's why i'm trying to understand what the patch button does.

pOOBs4 said:
Did you press unpatch before anything ?
Click to expand...
Click to collapse
first I used the Tweaker and pressed patch to change the GUID. Then I verified the GUID in registry and also started BS > AIDA64 to cross check the Android ID. After Tweaker and BS have been closed, I opened regedit > edit the value > started Tweaker and BS/AIDA64 again for verification.
Always used a new and unique GUID.

press unpatch will only restore a backup created by the Tweaker. the GUID change is done in the registry of BS itself. editing the registry manually is the same as using the Tweaker and doesn't depend on it.

WoKoschekk said:
first I used the Tweaker and pressed patch to change the GUID. Then I verified the GUID in registry and also started BS > AIDA64 to cross check the Android ID. After Tweaker and BS have been closed, I opened regedit > edit the value > started Tweaker and BS/AIDA64 again for verification.
Always used a new and unique GUID.
Click to expand...
Click to collapse
To verify your work you need to press unpatch before changing anything, closing BlueStacks Tweaker doesn't mean that it's unpatched now, the whole point of this topic is to change the GUID manually without relying on BlueStacks Tweaker.

WoKoschekk said:
press unpatch will only restore a backup created by the Tweaker. the GUID change is done in the registry of BS itself. editing the registry manually is the same as using the Tweaker and doesn't depend on it.
Click to expand...
Click to collapse
The GUID will not change if BlueStacks is not "patched", that's what i'm trying to understand, to figure out what does the patch button do and why it's important.

Ok sooo after deeply analyzing the program i figured out what the patch button does, it modifies the HD-Common.dll file located in C:\Program Files (x86)\BlueStacks_bgp_kk and with that said enough messing around and let's get down to business.
How to change the GUID manually on BlueStacks 3.60.89.3419 ?
First: Open HxD as an administrator then open the HD-Common.dll file and do the following:
Code:
0005C279 55005500
Meaning go to the offset 0005C279 and then write the value 55005500.
Second: Modify the following registry value with the desired GUID, i'll be choosing 00000000-0000-0000-000000000000:
Code:
[HKEY_LOCAL_MACHINE\SOFTWARE\BlueStacks_bgp_kk\Config]
"SYSTEM_GUID"="00000000-0000-0000-000000000000"
And that's it