[Script] AAHK2 - Root, Debrand, SIM Unlock, S-OFF, SuperCID & Custom Recovery

Search This thread
By:
Advanced…
Z

Zaich

Member
Aug 17, 2012
6
1
I had succes, but experienced an error on the way.

Hello guys!

I just wanted to inform you guys that when i used the script, the whole thing went good. I downgraded and did exactly like the script told me and all was good.
This was untill this stage:

Ace Advanced Hack Kit 2

___________________________
MAIN MENU | |
1 - Hack Ace <----------------------------+ * S-OFF |
| * SIM Unlock |
h - Prepare HTCdev unlocked device | * SuperCID |
| * Root |
| * Touch Recovery |
| |
************************************************** ********************
t - Toggle Flash Method - current method is fastbootRUU
************************************************** ********************

q - Quit

[Select and press Enter]1
Android version is exploitable.
1341 KB/s (19240 bytes in 0.014s)
2095 KB/s (4564992 bytes in 2.127s)
1904 KB/s (4458496 bytes in 2.286s)
2279 KB/s (557962 bytes in 0.239s)
1366 KB/s (9796 bytes in 0.007s)
1649 KB/s (572752 bytes in 0.339s)
1544 KB/s (134401 bytes in 0.085s)
1239 KB/s (13968 bytes in 0.011s)
ro.build.version.release=2.3.3
Setting up for Gingerbread restore...
2279 KB/s (2801664 bytes in 1.200s)
2559 KB/s (2830336 bytes in 1.080s)
2685 KB/s (285981 bytes in 0.104s)
2585 KB/s (285981 bytes in 0.108s)
1 file(s) copied.
Linux version 2.6.35.10-gd2564fb (htc-kernel@and18-2) (gcc version 4.4.0 (GCC) )
#1 PREEMPT Thu Jun 9 14:20:29 CST 2011
Kernel version is Gingerbread... Using fre3vo to temproot...
fre3vo by #teamwin
Please wait...
Attempting to modify ro.secure property...
fb_fix_screeninfo:
id: msmfb
smem_start: 802160640
smem_len: 3145728
type: 0
type_aux: 0
visual: 2
xpanstep: 0
ypanstep: 1
line_length: 1920
mmio_start: 0
accel: 0
fb_var_screeninfo:
xres: 480
yres: 800
xres_virtual: 480
yres_virtual: 1600
xoffset: 0
yoffset: 800
bits_per_pixel: 32
activate: 16
height: 106
width: 62
rotate: 0
grayscale: 0
nonstd: 0
accel_flags: 0
pixclock: 0
left_margin: 0
right_margin: 0
upper_margin: 0
lower_margin: 0
hsync_len: 0
vsync_len: 0
sync: 0
vmode: 0
Buffer offset: 00000000
Buffer size: 8192
Scanning region faa90000...
Scanning region fab80000...
Scanning region fac70000...
Scanning region fad60000...
Scanning region fae50000...
Scanning region faf40000...
Scanning region fb030000...
Scanning region fb120000...
Scanning region fb210000...
Scanning region fb300000...
Scanning region fb3f0000...
Scanning region fb4e0000...
Scanning region fb5d0000...
Scanning region fb6c0000...
Scanning region fb7b0000...
Scanning region fb8a0000...
Scanning region fb990000...
Scanning region fba80000...
Scanning region fbb70000...
Potential exploit area found at address fbb9b200:e00.
Exploiting device...
/dev/block/vold/179:65 /mnt/sdcard vfat rw,dirsync,nosuid,nodev,noexec,relatime,
uid=1000,gid=1015,fmask=0702,dmask=0702,allow_utim e=0020,codepage=cp437,iocharse
t=iso8859-1,shortname=mixed,utf8,errors=remount-ro 0 0
tmpfs /mnt/sdcard/.android_secure tmpfs ro,relatime,size=0k,mode=000 0 0
Creating goldcard...
HTC android goldcard tool Copyright (C) 2011, Wayne D. Hoxsie Jr.
Original code by B. Kerler. Special thanks to ATTN1 and the XDA team.
Donations can be made to the Electronic Frontier Foundation:

or to B. Kerler:

0+1 records in
0+1 records out
384 bytes transferred in 0.002 secs (192000 bytes/sec)
Setting mainver lower to allow downgrade...
--set_version set. VERSION will be changed to: 1.31.405.6
Misc partition is "/dev/block/mmcblk0p17"
Patching and backing up misc partition...
Starting flash process...
< waiting for device >
erasing 'cache'...
OKAY [ 0.131s]
finished. total time: 0.133s
Sending update...
This takes time. Please be patient!
sending 'zip' (18223 KB)...
OKAY [ 2.990s]
writing 'zip'...
(bootloader) adopting the signature contained in this image...
(bootloader) signature checking...
(bootloader) zip header checking...
(bootloader) zip info parsing...
(bootloader) checking model ID...
(bootloader) checking custom ID...
(bootloader) checking main version...
(bootloader) start image[boot] unzipping & flushing...
(bootloader) [RUU]UZ,boot,0
(bootloader) [RUU]UZ,boot,31
(bootloader) [RUU]UZ,boot,68
(bootloader) [RUU]UZ,boot,99
(bootloader) [RUU]UZ,boot,100
(bootloader) [RUU]WP,boot,0
(bootloader) [RUU]WP,boot,100
(bootloader) start image[recovery] unzipping & flushing...
(bootloader) [RUU]UZ,recovery,0
(bootloader) [RUU]UZ,recovery,20
(bootloader) [RUU]UZ,recovery,44
(bootloader) [RUU]UZ,recovery,66
(bootloader) [RUU]UZ,recovery,89
(bootloader) [RUU]UZ,recovery,100
(bootloader) [RUU]WP,recovery,0
(bootloader) [RUU]WP,recovery,100
(bootloader) start image[radio] unzipping & flushing...
(bootloader) [RUU]UZ,radio,0
(bootloader) [RUU]UZ,radio,8
(bootloader) [RUU]UZ,radio,13
(bootloader) [RUU]UZ,radio,20
(bootloader) [RUU]UZ,radio,25
(bootloader) [RUU]UZ,radio,33
(bootloader) [RUU]UZ,radio,41
(bootloader) [RUU]UZ,radio,49
(bootloader) [RUU]UZ,radio,57
(bootloader) [RUU]UZ,radio,62
(bootloader) [RUU]UZ,radio,70
(bootloader) [RUU]UZ,radio,79
(bootloader) [RUU]UZ,radio,86
(bootloader) [RUU]UZ,radio,94
(bootloader) [RUU]UZ,radio,99
(bootloader) [RUU]UZ,radio,100
(bootloader) [RUU]WP,radio,0
(bootloader) [RUU]WP,radio,6
(bootloader) [RUU]WP,radio,14
(bootloader) [RUU]WP,radio,19
(bootloader) [RUU]WP,radio,27
(bootloader) [RUU]WP,radio,36
(bootloader) [RUU]WP,radio,44
(bootloader) [RUU]WP,radio,51
(bootloader) [RUU]WP,radio,59
(bootloader) [RUU]WP,radio,68
(bootloader) [RUU]WP,radio,76
(bootloader) [RUU]WP,radio,85
(bootloader) [RUU]WP,radio,95
(bootloader) [RUU]WP,radio,100
OKAY [ 93.969s]
finished. total time: 96.962s
rebooting...

finished. total time: 0.158s
Radio downgrade complete. Starting unlock process...

The cmd was going no where and my phone was on the HTC Boot logo screen and was sitting in that state for like 30 mins before i decided to try my luck and do something.
Well, i decided the first thing to do was to press enter in the cmd prompt and well, the whole process went on with it's thing and now I am at the stage where i need to flash a custom rom.
So the script worked perfectly and I am very happy right now :)

I just wanted to give you guys a heads up if you experience this.

Thanks to 3498BoyZ and of course Phiber2000 :)

Have a nice day!
 
  • Like
Reactions: 3498BoyZ
P

Phiber2000

Senior Member
May 23, 2010
243
129
Just copy the downloaded "PD98IMG-GBx.zip" to your SD card, rename it to "PD98IMG.zip" and start in HBoot mode.
You will be asked for an update. After that, just run AAHK2 again.

Phiber
 
  • Like
Reactions: 3498BoyZ
ePYK me.

ePYK me.

Senior Member
Jul 3, 2012
331
60
Sydney
bit.ly
Hey Guys!!! thanks for the beautiful tutorial. One of my mate bought this device on eBay. He didn't know it was locked to at & t. I followed the guide. Everything was perfect, when i try to insert an Australian sim card. It ain't reading. Any help is appreciated. Thanks.
 
Mistral150

Mistral150

Member
Jan 3, 2011
30
0
Montreal
HI !
I'm about to root my DHD (Telus Canada french) to gain sim unlock then go with Videtron carrier here in Quebec.
My main question is ... Will I be able to get back to the latest android version as before root 2.3.5. ?? I mean , is this step automated or I will have to do something else after ?

Ha !! you all guessed I was a total noob.... :p

Thanks for the info and sorry if my english is bad..
 
P

Phiber2000

Senior Member
May 23, 2010
243
129
You will be at latest ROM version after completion of last step.
(See in OP: How do I install after successfully rooting the latest ROM from HTC?)

Phiber
 
Last edited:
  • Like
Reactions: 3498BoyZ
W

wangzhuoyu

Member
May 30, 2013
30
2
this doesn't work on my phone. After running it, my phone stay on the green "HTC" screen. Is it because I use CM recovery? Thanks.

And the radio is downgraded to 26.03.02.26_M

The CM recovery is gone. Only a little red triangle.

I observed many "FAILED", such as:

writing 'splash1'...
(bootloader) signature checking...
FAILED (remote: signature verify fail)





---------- Post added at 09:02 PM ---------- Previous post was at 08:47 PM ----------
Phiber2000 said:
Just copy the downloaded "PD98IMG-GBx.zip" to your SD card, rename it to "PD98IMG.zip" and start in HBoot mode.
You will be asked for an update. After that, just run AAHK2 again.

Phiber
Click to expand...
Click to collapse

Hi, which "PD98IMG-GBx.zip" should I use? Or any one will be fine? Thank you.

---------- Post added at 09:31 PM ---------- Previous post was at 09:02 PM ----------

It may because the program suggested the wrong PD98IMG-GBx.zip. My phone is from TELUS and I found that in the advanced kit 2, it is listed as the third one, but I was suggested to download PD98IMG-GB2.zip. I will try PD98IMG-GB3.zip after download it.
 
Last edited:
P

Phiber2000

Senior Member
May 23, 2010
243
129
Okay, you where unlocked with htcdev and did the prepare procedure.
When it won't boot afterwards, just do the factory reset in hboot mode and it should do that, if your downgraded radio doesn't interrupt it...
It doesn't matter which image you use, GB2 is okay!

Phiber

PS.:
You got PM.
 
ePYK me.

ePYK me.

Senior Member
Jul 3, 2012
331
60
Sydney
bit.ly
Phiber2000 said:
If unlocking was successfull (S-OFF), SIM lock is removed too.
If your sim card is not working, try another. (Maybe voltage incompatibility?)

Phiber
Click to expand...
Click to collapse

No luck I installed Android revolution hd. As its most stable and my mate doesn't understand anything. Still no luck. I tried 3 different sim cards.

Any suggestions? ?Thank you!


Scribbled using s pen!
 
D

dubroy

New member
Aug 19, 2013
2
0
downgrade

Hi guys I have unlocked the bootloader on my dhd 2.3.5 can I just run the aahk2 or do I need to downgrade first cheers.
 
P

Phiber2000

Senior Member
May 23, 2010
243
129
Unlocked devices via HTCdev need to be prepared via Option 'h' in main menu.
This will do the downgrade too.
 
t0mas_

t0mas_

Senior Member
Jan 26, 2011
686
247
Xiaomi Mi 8
hi!
i was just reading the op and it says hboot was slightly modified. what exactly does that mean and are there any benifits upgrading it?
 
W

wangzhuoyu

Member
May 30, 2013
30
2
Thanks to Phiber2000 and 3498BoyZ for their great efforts and help. I tried AAHK2 several times on my DHD and after several times of failures, finally it works. I would like to share my successful experience so people have the same settings may be benefit from it.

My DHD was HTCDev unlocked and customer ROM and recovery were flashed. So I chose the option "h - Prepare HTCdev unlocked device". After running this option, the radio was downgraded and a "new" (new to the phone, acutally it is an old rom) rom was flashed. The phone was relocked. However, when I rebooted phone after running the option, it reboot again and again. Then I unlocked the phone with the unlock_code.bin from HTCDev. After that, the phone could boot normally. So I relocked the phone with "fastboot oem lock" command and try to reboot it again. It booted normally. Then I used the first option on the AAHK2 manu. After running this option, I got what I expected.

Thanks again!
 
Mistral150

Mistral150

Member
Jan 3, 2011
30
0
Montreal
How do I know the brand of my micro SD card ???
The only info on it is: 2GB Micro SD
SD-CO2G JAPAN

I dont want to brick my DHD :eek:

Thank you.
 
P

Phiber2000

Senior Member
May 23, 2010
243
129
If it is not written on SD card...
Buy or borrow a compatible brand.
It would not brick it permanently but makes huge unneeded trouble!

Play it safe!
 
  • Like
Reactions: Mistral150
D

dubroy

New member
Aug 19, 2013
2
0
Worked great h mode first and then st





raight into hack mode .one thing though I have still got the T-Mobile logo when I turn my dhd on is there any way of removing that .cheers
 
You must log in or register to reply here.

Similar threads

A
Full HTC Desire HD (sense 3.0/android 2.3.5) guide to root, S-OFF/Sim Unlock
Replies
156
Views
267K
H
heopi
Drakknar
[RADIO][LATEST: 26.16.04.09] The HTC Desire HD Radio Thread
Replies
2K
Views
1M
rjand
rjand
glevitan
[How to] ROOT without the Hack Kit
Replies
178
Views
110K
chrisb906
chrisb906
Bumble-Bee
Summary of Desire HD ship/realease dates
Replies
2K
Views
278K
M
mean-machine
miHah
  • Locked
[Official] HTC Desire HD is getting and Android 4.0 (Ice Cream Sandwich) update!!
Replies
530
Views
268K
zelendel
zelendel

Top Liked Posts

24 Hours All time
  • There are no posts matching your filters.
  • 54
    3498BoyZ
    3498BoyZ
    ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

    cooltext1119380987ptyls.png

    For HTCDEV unlocked devices :
    Phiber2000 said:
    Unlocked devices via HTCdev need to be prepared via Option 'h' in main menu.
    This will do the downgrade too.
    Click to expand...
    Click to collapse
    As you know, the AAHK has expired and is no longer being developed by the author and there is no official support more!
    For this reason, there is now Phiber's 2000 AAHK2, which has already grown according to your wishes and will continue to grow.
    The original script was adapted, bugs were fixed, and unnecessary things were removed and slightly the HBOOT was modified.This should also work with Unlocked DHDs by HTCDEV.
    Code: 
    #include
/*
* Your warranty is now void.
*
* I am not responsible for bricked devices, dead SD cards
* YOU are choosing to make these modifications, and if  you point the finger at me for messing up your device, I will laugh at you.
*/
    Click to expand...
    Click to collapse

    The Requirements:
    -PC with Windows XP, Windows 7 or (Windows 8)
    -Charged battery at least 75%
    -Original HTC USB Cable
    -Make sure that the USB cable and the USB port of your phone and PC are in order (loose contact)
    -Use USB2.0 port on the back of a PC ( Don't use an USB 3.0 port or USB Hub )
    -If you use a laptop please charge the battery and use the Charger.
    - original ROM
    Original boot image ( this is not the HBOOT)
    original Recovery
    Formatted SD card (AFAT32 4KB sector size)from one of the following brands:
    Samsung
    SanDisk
    Patriot Memory
    ADATA

    CAUTION: If you use an incompatible SD card, the HBOOT will not working. Android also now no longer boots. This fix is expensive and risky!
    Among others the following brands lead to a soft-brick: Agfa, Hama, Trascend, No Name

    -Enable USB-DEBUGGING : Settings » Applications » Development » USB debugging
    -Connection Type "Charge Only": Settings » Connect to PC » Default connection type » Charge only
    -HBoot-Status: *** LOCKED *** or *** LOCKED (OOW) *** or *** RELOCKED *** , or without lock status displayed
    When the mode of the bootloader is "ENG S-OFF", the LOCK status does NOT play a role!




    Instructions:
    Install HTC Drivers v4.0.1.001
    Extrackt AAHK2
    Start The script with Administrator Rights (aahk2.cmd)
    In the main menu "1" and confirm.
    Follow the instructions on the PC strictly.
    If a downgrade was necessary, the procedure must be repeated. (If you dont know you have to downgrade or not, use the script it will tell you if you need it or not)
    Flash the current, (modified by Phiber2000) HTC image to prevent later problems with GPS/WiFi and sound (see FAQ).
    Optional: Finally, copy a Custom ROM on the SD card and flash in recovery.
    Downloads:

    HTC Driver v4.0.1.001(only if you had'nt installed already driver)
    AAHK2 v2.15 - Mirror
    HTC WWE 3.12.405.1 with ROOT - GPS FIX(Radio: 12.65.60.29/26.14.04.28 M) (HBoot-Image) - Mirror
    Required RUU images are requested by the script: (In original Thread are more mirrors)
    PD98IMG DOWNLOAD LINKS


    FAQ:
    How do I get into the HBOOT loader and which version do I have?
    -Disable Fast boot: Settings »Power» Fast boot
    -Switch off you phone
    -Hold "Volume Down" and "Power" button
    -Once the HBOOT loader appears, release the keys
    -In the upper part of green written is now available the relevant information:
    -0(evtl. rosarote Zeile)Lock-Status
    1 ACE PVT...HBoot-Loader Modus & Security Flag
    2 HBoot-...HBoot-Loader Version
    3 MICROP-...not relevant
    4 TOUCH PANEL-...not relevant
    5 RADIO-...RADIO-Image Version
    6 ...not relevant

    How do I get to FASTBOOT mode?
    -Start HBOOT loader (see above)
    - Navigate with the volume keys to "FASTBOOT"
    -Confirm by pressing the Power button


    Which CID I have ?
    -Start FASTBOOT mode (see above)
    -On the PC, open existing Android SDK in CMD
    -Type "fastboot getvar all"
    -In the line "INFOcidnum ..." is now your current CID. (8 digits)
    CAUTION: Apps like CID GETTER don't work properly. Because the App asks the Build.Prop and everybody could change the build.prop.

    How do I install after successfully rooting the latest ROM from HTC(modified by Phiber)? (This also fixes problems with GPS/Wifi/Soumd on custom ROMs!)
    -Unzip the "RUU_Ace_Sense30_S_HTC_WWE_3.12.405.1_Radio_12.65.6 0.29_26.14.04.28_M_release_225512_rooted.zip"
    -Copy the "PD98IMG.zip" as a single file on the SD card
    -Start HBOOT loader and wait few seconds
    -Confirm query with "Volume Up"
    -After successfully flashing confirm the query with "Power"
    -Remove the SD card
    -Let android boot
    -Insert SD card
    -Delete the "PD98IMG.zip" from the SD card

    Credits:

    Hyuh
    attn1
    shad0wf0x
    Anthony1s
    Revskills
    Genepoole
    Phiber2000



    Donation:    PAYPAL LINK
    If you want to help Phiber2000 to continue his work please donate to him ! The support takes also much time on Android-Hilfe.de
    View
    9
    3498BoyZ
    3498BoyZ
    What to do next?
    Read some FAQs and sticky Threads
    Update the Recovery
    Make a Nandroid/Backup
    Install a Custom Rom {DHD Development List: ROMs, Kernels, and More}
    View
    3
    P
    Phiber2000
    There's an option for preparing HTCdev unlocked devices in main menu.

    Phiber
    View
    3
    P
    Phiber2000
    See #105. After that you're debrandet too.

    Phiber
    View
    3
    MikeChannon
    MikeChannon
    I was asked to test the free download links on this.

    I was begining to think it was true that there are actually no Free download slots. I tried many times over several minutes and every time it said no free download slots. BUT after some minutes of clicking the "return to download link" it did actually give me free slots for all the downloads.

    Not ideal, but it does seem possible to get a free download.

    Mike
    View

New posts