hey guys!!

having some ideas on FAID, and all of the comm protocol needed.
likely to release WinDCT3, my Nokia service soft for free.

to implement FAID calculation, I need some pairs of B-Phreaks logger output file _AND_ the result came from logger FTP!

please help me doing this and send me such things.

on any other questions/inquiries, write mail but DO NOT want me to send any source code for your own project, right?

byez,
cRuSh

Hi
I have this information if it helps. In the bphreak logs you have this info:

READ LOG :-

[ppm ver]
in= <- 62 bytes ( 31 bytes in hex). PPM version

[imei]
in= <- 30 bytes (15 bytes in hex). IMEI

[msid]
in= <- 26 bytes in plain-text. MSID

[data]
in= <- HELP!!!!! What is this??? Old FAID, MCU Checksum, COBBA????!!!!!

so I don't know what data in is? anyone help

CALCULATED LOG:-

[ppm ver]
out= <- 31 bytes shown as plain-text (something like v 04.06 99-99-99 NHX-X etc...)

[imei]
out= <- 15 bytes shown as plain-text

[msid]
out= <- 26 bytes shown as plain-text

[edat]
out= <- 24 bytes (12 bytes in hex). I think this is the new flash checksum but I am not sure - how is the value calculated???

[data]
out= <- For all of the logs I have seen, this is 2 bytes (1 byte in hex). HELP!!!!!!


PLEASE, someone help. Can anyone verify that what I say is correct, and does anyone know information about the bits that I don't.

regards, outerc0re

This is actually a project I am working on, with assistance from a few other respectfull blokes. Don't take this the wrong way but, asking for info about something as complex as this and putting in your post "don't ask for the source for your own projects" - I find this rude, especially as I need information regarding phone<->pc protocol/comms. cheers 4 the help

hi outercore,

well, i meant the source not to be given out till finishing the project. many people sent me USEFUL stuff, and requesting the source immediately, and then just mailing me that "Hey you cheater that can not calculate FAID!"

sure, if you need details about communications, I can help you, although, I have so few time for mailing etc. but please if anyone requests such things from me, also give me some useful information /n/images/smiles/icon_smile.gif

!!
anyways, I did not mean the format of input and output files of BPhreaks logger, I need REAL examples - so the files containing all data.

regards,
crush

and me to i want the out of faid to do free brogram but i want it befor and after calculate ok i promis e the man who help me that it will be free for hem.........................

OK, didn't realise (sorry). what I posted is the format of the bphreaks logs, but there is info in there that I do not understand ([data]in= [data]out= [edat]out=). but if you mail me then I can send you some logs with real data.
regards
outerc0re

I only have a few logs and I actually need more myself....

Discuss what is known so anyone can make their own programs!
Should be the purpose of this Forum.

I can only read one phone, inform if incorrect please.
Tip?

[data]
in=4F42

I might be wrong but I assume it's the Char Value of you PPM Pack.("B", 42h) Mostly because it's required by the logger guys!

NokDoc

hi nokdoc
I think what you say is correct. only, somtimes in the logs there are 2 bytes (like in your example) and sometimes 4 bytes??? what would the 4F be in this case. I only have one example which contains 4 bytes:
[data]
in=37495A34
any ideas

thanx

outerc0re

well it seems clear that the 2nd byte in the [data]in= is definately the PPM pack version, just need to work out the rest! help

i think the hex is now here and we have to say by to the logger

[ppm_ver]
in=562030342E30360A32312D31312D30300A4E484D2D350A286329204E4D502E
Hex representation of the String "V 04.06 21-11-00 NHM-5 (c) NMP." in the PPM Header

[imei]
in=3a3b3c3d3e3f3g3h3i3j3k3l3m3n3p
abcdefghijklmnp: IMEI from Security Location (cause they got the checkdigit!)

[msid]
in=836F00BDE28CC1ABC80B7D48D3 (messed up!)
???changes each reading, first byte stays the same

[data]
in=4F42
"42": PPM Pack Version
"4F": ???

NokDoc

Hi All

Actually, I don't know about electronik, but If you interest about Logger, I have many many real examples. If you interest, mail me...

BR

Iccang
=======

hey iccang

why not post those "real examples" here, maybe they are helpful.../n/images/smiles/icon_smile.gif)) ??

greets,
-tek-

Hi tek..

I got the logger is not free actually.. So, mail me if you interest..

BR

Iccang
======

hey!!!

Iccang, the logger is free /n/images/smiles/icon_smile.gif))
only the calculation is not.

NokDOC: the FAID read by logger DOES NOT CHANGE
not even on power off or battery replacement!
The "MSID" read by NokiaTool 033 DOES change, but it is full of zeroes, and it is incorrect.
why?
well, the documentation I have on Nokia F/MBUS protocol, states for the MSID getting a command byte which always gave me different result.
According to Dejan's MCU+PPM Uploader 1.04 source code, the MSID is got by command 0x1F with subset 0x40 which, according to my documentation, is "enabling special commands/unknown".

don't be lazy, (re)search!
more later.
bye,
cRuSh

to iccang:

hi!

do you have logs before and after calculation or only the logger?

greets,
-tek-

Hi..

I have the logs before and after calculate..

BR

Iccang
======

Hi Crusher..

The log that I mean is not logger software, but data of logger software..
I have many many real data.. So, If you interest, mail me prive..

BR

Iccang
=======

I supose this MSID is the provider given Mobile Subscriber ID number.
This number does change after each network connection.

This is the only part we can't retrace of all the Input the guys from the logger thing want to have to do the job, besides the '4F' thing.

Once knowing how to obtain the MSID we can start of try to solve things ourselves.
If someone could Provide us some DEMOS (Before and After logging).
I think you may Filter your IMEI (privacy), somehow I think it's not important for MSID!

If someone have Tips about MSID please reply.

Mr. cRuShEr:
. I can't find 'FAID' in logger program B-phreaks V1.6 ?
. In Nokia Tool it gives MSIN, same as MSID ?
As I understand you are in to some decompiling and communicating, quite interresting!
Is it somehow possible to sort out how and where the Logger.exe program gets his Data from the phone?

NokDoc

hey NokDoc

Read my post: http://gsmsearch.com/nfree/nfreeboard/read.php?f=1&i=2035&t=2035

this will explain how to communicate to the phone with m- or fbus.

greets,
-tek-

Mr. Tek

As I said, quiet interresting, a very nice contribute to the Forum in general, TanX.

At the moment I haven't got much spare time so maybe we can discuss it later?

Good work, In the end we'll solve everything.........

NokDoc

@NokDoc:
no,
MSIN is not the same.
But nokiatool 033 can read MSID, although it can not /n/images/smiles/icon_smile.gif
so I don't know what it reads, but that it isn't THE msid, it's a hundred.

yes,
you can not find "FAID" in logger, because that is in the data out= section.
I can't see BPH&Co's point of view on making "hex-to-ascii" conversions.
KOCi's logger miss that.
I started supposing that this is only for making particularly ME angry, because it's unreadable with FAR Manager View /n/images/smiles/icon_smile.gif

@Iccang:
yeah, logs are appreciated, but I can check my mails twice a week as a maximum, and my work is currently "distributed" to six different computers...
you can cut out imei and rename files, if you mind "privacy"... It is not needed.

yeah, and in IMEI in=, 3 is not the so-called "security digit", it's simply the first 4 bit of numbers' char code in ASCII.

ok, finally found out the meaning of all bytes in b-phreaks logger v1.2.
anybody interested?
any infos about MSID would be appreciated, especially how the get out the cobba id.../n/images/smiles/icon_smile.gif))

greets,
-tek-

Jep, still interrested!

What's new?

NokDoc

@crusher:

you talked about MSID reading...did you solve the problem about correct reading it? there's a checksum at the end of the 0x40 command to be calculated to obtain the correct MSID...


greetings,
-tek-