Related
How can I remove from the original ROM some files like T-Mobile, AIM ... etc. ?
I cooked up a 4.00.10 T-Mobile with GPRS monitor and batterypack but i want some more addons.
Can someone tell me what steps are required to remove from the ROM some files ?
Thanks,
Decebal
ROM = Read Only Memory.
But, i've we're able to add Programs to the ROM in the ROMkitchen, i think we're also able to remove programs.
Regards
Stefan
cruisin-thru said:
ROM = Read Only Memory.
Click to expand...
Click to collapse
obviously i do not deserve that
i was talking about the ROM image and since i've already succeded in putting into the ROM two apps i want to try something else.
so if anyone know how to remove at least T-mobile and AIM files from the image i'll be happy.
thanks,
Decebal
I believe they are in an area not able to be modified.
I was just quoting from that site, it does state that it cannot be erased, modified etc, no offence meant here. :roll:
The mkrom tools will allow you to 'unpack' a rom, i.e. extract all the files that are in it.
A rom, to the best of my understanding, has a 'native' or stock part to it, and then a series of XIP chains -- programs that are added into the free spaces of the rom.
I dont know what happens if you try to remove files from a rom that are part of the standard build...
Maybe the TMobile stuff is in a 'removeable' section of the ROM... there is also the 'operator' section... I am assuming that is a location that will give the 'operator' or creator of the rom space to put specialized programs, such as TMobiles phone apps, etc.
So, it seems that your best bet is to get the mkrom tools and read about how to extract/remove files/rebuild a rom.
Hey, it may even work!
J
You can rebuild a rom image from extracted files and leave some files out but Mkrom does not use compression and therefore the rom you end up with will probably be bigger than the rom you started with.
Richard
If I am correct, an eeprom is something else than a flash-rom.
so the article at least states it incorrectly.
if it is flash, you should be able to modify it.
XDA developer Itsme said:
If I am correct, an eeprom is something else than a flash-rom.
so the article at least states it incorrectly.
if it is flash, you should be able to modify it.
Click to expand...
Click to collapse
Now, I do think that the real question is "How do we unlock the 'ROM' so that it can be modified being that it is an eeprom?"
Misterdollymaker
you need backup the ROM to *.nb1 or *.nbf file, than using tools to add/delete file to *.nb1 , write the new file back to XDA ROM. it is fun to add/delete file to your personized ROM!
cgigate said:
you need backup the ROM to *.nb1 or *.nbf file, than using tools to add/delete file to *.nb1 , write the new file back to XDA ROM. it is fun to add/delete file to your personized ROM!
Click to expand...
Click to collapse
this is quite interesting...can you elaborate further?? I wish to learn more...
cgigate said:
you need backup the ROM to *.nb1 or *.nbf file, than using tools to add/delete file to *.nb1 , write the new file back to XDA ROM. it is fun to add/delete file to your personized ROM!
Click to expand...
Click to collapse
Yes, please! I wish to learn more too! I am looking to remove the standard sounds and replace them with my own (using same names) as well as the boot image and desktop.
yea, no kiddin, i'd like to know how too!
im sure its not impossible, 'they' did it the first time arround.
why not hacking it? and since its all at no charge (no profit) are we realy breaking any patents?
I wanted to know if there is an easy :wink: way around, to put our own programs in the rom. xda-developers certainly can't put ezwap2.5, and the total commander appears to be older version, while new version is much better. There are some more freeware application I'd love to put in there
xda-developers already posted some tools to do job, such as MKROM ...
cgigate said:
you need backup the ROM to *.nb1 or *.nbf file, than using tools to add/delete file to *.nb1 , write the new file back to XDA ROM. it is fun to add/delete file to your personized ROM!
Click to expand...
Click to collapse
I'm interested too
How can i add/delete file from nb1 file?
Thanks
Fabio
I've used mkrom suite to do this (even for Smartphone2002). This are great tools.
Unfortunately it's not as easy as you might think. It's nearly impossible to build a ZERO-KNOWLEDGE ROM file explorer which can add or delete files "on the fly".
You will still have to look for valid gap's in the original rom where you can add a new XIP block.
All .exe and .dll files are "fixed up" that means they MUST run at THE fixed ROM position where they have been initially placed (execute in place). If you dump an exe or dll file you can't use it for other than disassembly to see how things work.
Removing files is a very hard task (they are splitted over the whole rom). And the resulting gap's are mostly not more than 10-16 kB. All you can do is to "hide" files (simply patch the directory entry).
So you see compression is not the real problem (see programers corner for a .bib file which can be used with romimage.exe - a Microsoft Tool to build XIP blocks, this tool supports compression)
John Smith
only the kernel actually runs in the virtual memory area mapped to rom,
all the other XIP stuff runs from a virtual memory area mapped somewhere
in the top of each processes memory space.
( look at the 'real=' values in the output of dumprom )
so for all the other modules it should be possible to move them around
in rom a bit, I think you only need to keep the pagealignment the same.
Hi,
The virtual memory address is also fixed in the module. (That's why I've to rebuild all the stuff I want to copy from other roms).
Since all relocation info is gone the module can't run from another memory position. So the only thing you can do is to move it in it's own XIP section...
John
I have a I-MTAE JAM.
I get a RIL.DLL by pmemdump and dumpmem and patch a RIL.DLL by IDA Pro.
I need to replace this dll to rom but i no know this work.
You can replace the DLL only if you'll find a version that contains relocations. Check different ROM builds (sometimes HTC forgets to make this DLL as XIP so it can be dumped in a working state), check extended ROMs of different Magician updates, maybe CABs there contain a working copy of RIL DLL. Or patch the ROM image so that RIL.DLL is named as RI_.DLL and insert there your own copy that would redirect all unhandled calls to RI_.DLL. Or you may patch the DLL directly in ROM image. Or you may replace RILGSM DLL, RIL.DLL uses it internally, and this DLL is always with relocs. But it is completely undocummented.
This depends on what are you doing.
Thanks for replay.
Can you describe this operation step by step?I mean I have a patched Ril.dll
now,and I want to replace it with the Ril.dll in my IMATE JAM ROM.I want the
exact steps to do this.I there any document that can help me for this?
In addition,I want to know Is there any deferent between DLLs that we see in
\Windows directory of PDA with what have been dumped by pmemdump?Because
the size of dumped file and the size of file that is shown in PDA are deferent.
sincerely yours
Read MSDN about XIP files (eXecute In Place)
Hello.
History:
My Qtek9090 running WM5 has good CPU, fast graphics and very, very slow filesystem. I'm looking for something, may be for fatfsd.dll extracted from another PDA. And I cann't find it
There exists very handy utility WM5 Files Dumper [thanks buzz_lightyear ]
I think it is a good idea to upload dumps of all files from our PDA's. It would be a good source of information and source of code bricks to cook patches and updates.
Such a dump should contains all files and modules [extracted both from bootloader and OS] and full dump of registry. It should be as clean as possible - just after hard reset, before entering PIN, before adding any contacts and any patches.
Tommorow I will try to upload WM_5_03_02_WWE_built_1337_42_BlueAngel_by_mamaich.zip.
And again - thanks to our master hackers
I'm looking for something, may be for fatfsd.dll extracted from another PDA. And I cann't find it
Click to expand...
Click to collapse
And even if you'll find it - it would not work on your device. It is always XIP.
And it would not speedup your device - it has a slow ROM.
mamaich said:
/me said:
]I'm looking for something, may be for fatfsd.dll extracted from another PDA. And I cann't find it
Click to expand...
Click to collapse
And even if you'll find it - it would not work on your device. It is always XIP.
Click to expand...
Click to collapse
Probably you are right I'm a lame, but I afraid, that it is true.
But: as I understand: XIP means "eXecute In Place". Dll's as modules are executed from slow ROM [and there is no shadow RAM] [and there is no way to cache them]. Dll's as files are loaded into RAM, and then executed. Correct me, if its not true.
We have plenty of RAM, so [probably] it is possible to load a lot of dll's into RAM instead executing them from [slow] ROM.
Dlls created with "WM5 Files Dumper" - looks good. I would have to analyze them several times, I would have to ask master hackers is it true, but I would try to load them into RAM.
mamaich said:
/me said:
I'm looking for something, may be for fatfsd.dll extracted from another PDA. And I cann't find it
Click to expand...
Click to collapse
And it would not speedup your device - it has a slow ROM.
Click to expand...
Click to collapse
Yes, of course.
But SPB benchmark told me:
Reading files from \somewhere is 4 times slower then WM2003. It is a good value.
Write files into \somewhere is 6 times slower then WM2003. It is also a good value.
But:
Copy files [OS level] is two times faster than read them and write back. It is not good value.
Retrieve filenames from huge directory is 10-12 times slower, than WM2003. It is also not a good value [it should be comparable to reading files, ie. 4 time slower]
There are two ways:
1. there is something wrong within fatfsd.dll,
2. overhead of executing fatfsd in place is not acceptable,
3. my benchmarks are wrong [I have not enough time to benchmark filesystem without cache
/me said:
Tommorow I will try to upload WM_5_03_02_WWE_built_1337_42_BlueAngel_by_mamaich.zip.
Click to expand...
Click to collapse
It is here: ftp://xda:[email protected]_WWE_built_1337_42_BlueAngel_by_mamaich.zip
If you think it is a good idea to share WM5 code bricks, upload your your clean dump into
ftp://xda:[email protected]/Uploads/RomFiles_dumps
UserName and Password is here: http://wiki.xda-developers.com/index.php?pagename=BA_FTP_Site search for "xdaupload".
baniaczek said:
But: as I understand: XIP means "eXecute In Place". Dll's as modules are executed from slow ROM [and there is no shadow RAM] [and there is no way to cache them]. Dll's as files are loaded into RAM, and then executed. Correct me, if its not true.
Click to expand...
Click to collapse
There are 3 types of DLLs used on WM5. First type - normal files, they are loaded into RAM, fixups are processed, etc. They are slow to load (due to fixup processing), but would execute from RAM. Second type - XIP, which are executed directly from ROM and would work slowly. In BA this set of files is executed directly from ROM:
Code:
device.exe
filesys.exe
nk.exe
busenum.dll
cecompr.dll
ceddk.dll
certmod.dll
coredll.dll
crypt32.dll
devmgr.dll
diskcache.dll
fatfsd.dll
fatutil.dll
fsdmgr.dll
fsreplxfilt.dll
hd.dll
imgfs.dll
msflash.dll
mspart.dll
osaxst0.dll
pm.dll
regenum.dll
relfsd.dll
It is much less than was in WM2003.
And WM5 added a new filesystem - IMGFS. It contains compressed modules split to sections, but they are fixed to specific addresses in RAM, they are decompressed to these constant areas and executed from RAM. They are similar to XIP as they also don't contain relocations, but would work fast. I don;t know the correct termin for this type of files.
To replace files in XIP section you'll need this tool - http://forum.xda-developers.com/viewtopic.php?t=33321
if you overwrite any of files I've wrote here by a CAB file or other method without modifying ROM - their old versions would be used instead because they are loaded much earlier than all filesystem drivers.
Thanks mamaich
Registry Question
thanks for the files baniaczek!
does anyone know which file or how the other OS registry entries (the ones not in the boot.hv) get created? There are so many more in a full registry.
thanks!
P.S. thanks mamaich for the great tools!
Re: Registry Question
OS imports *.RGU files on hard reset, and it also reads mxip_*_*.provxml files that also can setup registry items. On Universal and similar devices registry can be set by CAB files in extended ROM.
If you add a new RGU file to OS image it would not be processed. Maybe they should have DSM file with the same name, or be mentioned in [HKEY_LOCAL_MACHINE\System\ObjectStore\RegistryUpdate] key or in packages.sof. I don't know. I always add keys to default.hv/user.hv or edit existing RGU files.
I have been able to extract the EXT ROM and OS ROMs using the NB2NBF and IMGFS tools. I know that by using a custom ROM I can save on storage space by loading in my programs. I'd like to load Pocket Informat, Alarm Today, Phone Alarm , isilo and TCPMP into the OS ROM. How do I do this? I have all their cabs. I will keep reading the forums too.
I know that some like summiter have done this. Anyone able to help me get started or point me in the right direction?
J-Man5
the only device i ever heard supporting that is walaby
dont know if it's possible with other devices
i mean the os part of the rom is well you know full already
yes it is possibel.you need a tool called [typhoonnbfdecode_v5] look for this tool and how to use somehere in the ftp, and here in the wizard forums
you need to make a dump of the os from a nk.nbf image with the above tool
then you need to extract the files from de cabs you want plus the reg settings,
simply copy the extracted files from cab to your rom dump folder
make a cab file with the reg files from the cab files an also the shortcuts to the programs.
repack the rom with the typhoonnbfdecode_v5, convert the nba image with NB2NBF back to nbf and flash,after that install the cab with reg settings plus shortcuts,
you have a long jorney ahead.
i took me several weeks to make my own rom with netcf.2,adobe acrobat e several other programs integrated to the rom.
faria said:
then you need to extract the files from de cabs you want plus the reg settings,
simply copy the extracted files from cab to your rom dump folder
<snipped>
make a cab file with the reg files from the cab files an also the shortcuts to the programs.
Click to expand...
Click to collapse
OK I have gotten the nk.nbf extracted and the EXT ROM opened using winimage and the OS ROM dumped via imgfs.
Where I am running into problems understanding is how to unpack the .cab install files for the programs I am planning on using and how to "move" them to the \Program Files\ directories that they need to be in. For example PocketInformant is loaded into the \Program Files\WebIS directory. Do I put all the files from the .cab file in the dump OS directory? Is there some sort of program that will extract the .cab file and let me look at what registry settings are being set by its installation?
What program is used to create registry settings into a .cab file?
Thanks
J-Man5
BUMP
wincecab manager ,google it.
Hey!
I want to add some apps to the Rom of my Wizard, too.
I have used imgfs tools to great a dump from my OS.
Now i want to Install Total Commander to a Folder "\Programme\Total Commander\".
How can i do this? Or is it only possible to copy the files without any folder?
Sry for my bad english
Hi, i'm a proud owner of a universal (qtek9000) i'm looking for the software "cyberion voice commander" (non speed dial) italian language, unfortunately does not exist an italian commercial version of this software(otherwise I would buy it ).
I've an italian Eten rom (.exe) that have this program in extended rom, someone can help me to extract this program without install the rom (I haven't an eten )
Thank you...
From memory (it's been a long time since I did this, so it might all be wrong), for the Eten roms, run the installer, and it'll extract to a temp\ folder (use a file i/o tracker, or check your temporary files folder for which folder).
In there, I think you should find one file that is marked something like extended or something, and that can be opened with a standard virtual disk editor like winimage. Extract from FAT.
V
as i read in eten-user forum I've initially extract " EUU.exe", "USBDLUpdate_console.exe", "upgrade.bat" i think that upgrade.bat is really the rom and maybe contains the extended rom.
Now what do you suggest me to extract the program from this .bat
thanks a lot :wink:
What rom are you working on? Do you have a copy we can have a look at?
Thanks!
V
rom 215 Ita for Eten M600 , maybe in eten ppc there isn't an extended rom...
You have pm with the link to the rom...
Another ppc that have a rom with voice commander in rom is asus p505...
Thanks again...
Hello.. So, did you find the way to extract voicecommander from the rom??
I have the rom file (temp.dat 59.611.764 byte)
If someone needs it, please tell me that I'm going to share it!!
Thanks
I have ROM 230wwe for the eten m600 if you need it...I would like to know also how to extract this EXTROM.
Thanks
Does anyone know a way to extract files from an eten rom dupm (temp.dat file used in the flashing process) ?
Regards
h.