MDM9207 MSM8909

[coolirc]

Hello i need support for this Qualcomm chip MDM9207 and in QPST it's detected as MSM8909 i tried with NPRG9x28p.bin but i'm getting the famous error 00000007.

the modem i'm trying on it is the ZTE MF253V

http://i65.tinypic.com/2agnp8k.jpg

the error

http://i63.tinypic.com/ama2ip.jpg

[snegin]

Did you try NPRG9x00p.bin?

[coolirc]

well i did not i'll try and tell you update i tried but the only one who responds is the NPRG9x25p.bin ` qdload -p81 -k3 -s -i ??????? ????? Hello ?? ??????????...

????????????? ?????? ??? ????????: 00000007

????????? loaders/NPRG9x25p.bin...

???????? ????????? ? ??????????...

?????? ??????? ??????????`

qrflash -p81 -x -b0 -l0 -o rawdump.bin ??????? hello... ????????? hello ????????? ??????! 00000000: 04 00 00 00 10 00 00 00 07 00 00 00 01 00 00 00 ................

then it stops

[snegin]

Modem is in download mode?

[coolirc]

ofcourse what a question :). i'm familiar with the type of flashing. diag mode then download mode .

[snegin]

OK) qdload -p81 -k3 -s -i Answer?

[coolirc]

yes i already posted.

qdload -p81 -k3 -s -i ??????? ????? Hello ?? ??????????...

????????????? ?????? ??? ????????: 00000007

????????? loaders/NPRG9x25p.bin...

???????? ????????? ? ??????????...

?????? ??????? ??????????

then after issuing the command to make a full dump the qrflash stops responding .

qrflash -p81 -x -b0 -l0 -o rawdump.bin

??????? hello... ????????? hello ????????? ??????! 00000000: 04 00 00 00 10 00 00 00 07 00 00 00 01 00 00 00 ................

[coolirc]

any chance to dump this device ?

[sand-rey]

you need NPRG9x07.mbn and patch it

[coolirc]

thanks for the info i got the mbn file but i need the procedure of how to patch it , or maybe someone can do it thanks http://www.mediafire.com/file/js8ibxe85solivo/ENPRG9x07.rar http://www.mediafire.com/file/dp78ubf6d77gdv6/NPRG9x07.rar

[coolirc]

i found the doc about patching the bootloader but it's a little bit different from what i found then after translating the doc and the error messages in the source code i finished by a different error in the qblinfo ./qblinfo NPRG9x07.mbn

** NPRG9x07.mbn: 98220 bytes

Undefined file header - most likely it's not a bootloader CMD 01 = 80000db1 CMD 03 = 80000f0d CMD 05 = 80000fdf CMD 07 = 80000fed CMD 09 = 8000106d CMD 0b = 80000f9b CMD 11 = 800010a5 CMD 13 = 800010e9 CMD 15 = 8000113b CMD 17 = 80001355 CMD 19 = 800013dd CMD 1b = 8000147b CMD 1d = 800010bf CMD 28 = 800015a9 CMD 30 = 80001507 CMD table offset: 16bd8 Invalid CMD handler: 80000da3

HW_ID = 0x0000000000000000 MSM_ID = 0x00000000 OEM_ID = 0x0000 MODEL_ID = 0x0000

and after loading in ida pro i'm totally lost . any help appreciated. thanks

[coolirc]

update i translated the error codes into english now i get more meaning to the error messages

` qdload -p81 -k3 -s -i Waiting for the Hello package from the device...

Image ID for upload: 00000007

Download loaders/NPRG9x25p.bin...

Transfer the loader to the device...

Boot Loader Error

qrflash -p81 -x -b0 -l0 -o rawdump.bin Sending hello... repeated hello returned an error! 00000000: 04 00 00 00 10 00 00 00 07 00 00 00 01 00 00 00 ................

qcommand -p81 -c "c 0b" ---- ????? --- 00000000: 04 00 00 00 10 00 00 00 07 00 00 00 01 00 00 00 ................

`

[coolirc]

loader patched but still you need the correct address to put the router on the pbl interface , i followed the doc of 9x4x.odt it has same addressing scheme but still not work . dmesg.txt also found a file called system map with memory addresses System.map.zip

[copslock]

MDM9x07 acctually is the modem core of MSM8909(MPSS.JO.1.X baseline),support nand flash program,you need something like programer_firehorse_msm8909.mbn ,and this thing is signed by vendor varies from each other

[sand-rey]

<< loader patched but still you need the correct address to put the router on the pbl interface , i followed the doc of 9x4x.odt it has same addressing scheme but still not work >>

try this adb reboot edl

[FarhanHamdani12]

Hello sir i have zongmf25 device with qualcomm chipset mdm9207. Please help me to take a dump of that modem using tools

[hassnain163]

I can help of you come on whatsapp +923044058588