Unfortunately, I don’t know the BIOS password. To remove the password we need to modify Password parameter to 1. To modify Password=1, we need to modify bios file. To be able to flash, we need to keep bios file non-modified. Do you have any idea?
How do you enter BIOS without knowing the password then? Yes, @DeathBringer can "maybe" tell you password if you link him to your FPT BIOS region dump.
If he cannot help you, then you need flash programmer to do anything else here
You mean the dump that I backed up and uploaded for you in post #32?
@Rexkh
Current password can be extracted from your current BIOS backup.
Contact me in PM if you’re interested in that.
@Rexkh - Yes, I meant that, if that is a BIOS region dump from your system (I could not be sure, due to how you named it)
@DeathBringer - Thanks 
I know it’s late, but for others I’ll just let you know that there are two instructions in the attached archive. Or you can quit reading and look here for makecert.exe and pvk2pfx.exe (not necessary).
@Rexkh
did you successfully able to flash this bios after bios password and secureboot removed? we did not hear any feedback
@Rexkh
@DvL
@Lost_N_BIOS
I am also getting that same dialogue error when trying to flash using moded bios using newer version (v6.23). is it it possible to bypass that dialogue error by editing the dll and Insydeflash.exe? if so, How to do that, which value need to change in Hex to bypass that error? has anybody any experience about that? that new version InsydeFlash.exe is no more using iscflash.sys and iscflash.dll ! they changed it to H2OFFT64.sys.
I already tried older modified version InsydeFlash but the new pc bios not accepting that InsydeFlash. I think changing the hex to newer InsydeFlash.exe or H2OFFT64.sys could bypass that error maybe!
what its need is, disable the "flash securebios only" in somewhere in hex.
@Lost_N_BIOS
Nice to meet you. I would like to ask you to unlock the InsydeH2O bios. Any help would be greatly appreciated.
//download.schenker-tech.de/package/xmg-pro-17-xpr17e20/
This is the bios of the XMG PRO and the site provides the bios file. Can you take a look please?
hi, i wanna unlock my insyde bios. Here’s my log
BIOSreg file: drive(.)google.com/file/d/19KMxibpTcDkwq83RPbqlTIiXmhY2--X-/ ( pls remove the ( ) i cant use the link on new post
and i got error after use FPTw.exe -bios -f biosreg.bin
Intel (R) Flash Programming Tool Version: 12.0.70.1652
Copyright (C) 2005 - 2020, Intel Corporation. All rights reserved.
Reading HSFSTS register… Flash Descriptor: Valid
— Flash Devices Found —
ID:0x207018 Size: 16384KB (131072Kb)
Error 167: Protected Range Registers are currently set by BIOS, preventing flash access.
Please contact the target system BIOS vendor for an option to disable
Protected Range Registers.
FPT Operation Failed.
FPT Operation Failed.
Hi!
And because of that we need to perform some preparation before you flash modded BIOS. Download H20UVE_100.00.9.2.zip, extract to a separate folder. Run "GET VARS.bat". I need "vars.txt" file.
i got "The requested operation requires elevation."
And because of that we need to perform some preparation before you flash modded BIOS. Download H20UVE_100.00.9.2.zip, extract to a separate folder. Run "GET VARS.bat". I need "vars.txt" file.
oh i found it
vars.txt (195 KB)
BIOS MOD for you. To install it run "SET VARS.bat", after that it’s necessary to REBOOT your device. Two clicks on FLASH.bat.
If there were no errors, the mod is installed and you will see 3 new tabs when you enter the BIOS.
BIOS MOD for you. To install it run "SET VARS.bat", after that it’s necessary to REBOOT your device. Two clicks on FLASH.bat.
If there were no errors, the mod is installed and you will see 3 new tabs when you enter the BIOS.
it worked, thanks. Do u know how can i modify the bios dmi ? i used h2osde but it reset to original after restart
Hello!
Can somebody, if possible, unlock all bios settings for the Acer Aspire R3-131T? (InsydeH2O Rev. 5.0).
Here is a link to the latest bios version (v. 1.17): https://global-download.acer.com/GDFiles…SC=EMEA_27
According to a programmer, the bios probably has RSA protection.
Maybe this “Result” file helps: https://www.sendspace.com/file/sxc16i
Thank you!
does anybody have the QA.pfx file?
Can someone provide some clarification please? this threads topic got highjacked as the post is about signing the bios with official insyde tools which is the holy grail solution to almost all of insyde bios reflashing issues-the poster then provides incomplete tools missing the QA cert,drops the mike and walks away-then the thread contines with NOBODY trying the tools to discover they are missing the security certs and discussing nonsense-It appears whether you mod the flashing tool or not if the bios isnt signed then=brick-I know this as I hardware programmed my bios dumped,edited, then hardware programmed with an nvme insert and didnt re-sign the bios and guess what-brick
@Sweet_Kitten you provide an interesting link stating instructions inside archive in response to someone else askiong for the QA.pvk files which is the whole basis for this post so where are they? the link has over 12 files one of which is needing somew crazy pay for download plan
can someone please post where to obtain the qa certs-I tried making certs labeled QA-its signs well enough but no bueno for the flashing tool
In the matter of the topic I only uploaded makecert.exe, pvk2pfx.exe, MakeKeyFirst.bat, MakeKeySecond.bat. You have a limitation of 50MB per download on Chomikuj file-sharing.
A new certificate can be created with “makecert.exe” tool. There was no need for poster to publish the QA cert as it is being generated with random seed by default.
We still missing private keys from the manuf. It is necessary to have those files to generate a correct private key – public key pair, because the priv. key is that seed we use to generate certificate. So, the whole topic is a big nonsense itself.
So to say, the part about certificates belongs to “external” protection of flash memory. It is only valid untill the BIOS image is flashed by the genuine flashing tool. But there is also such thing as internal sanity, when already flashed BIOS performs the integrity check at some point of initialization.
Devices I know have this technology: Lenovo B50-30, Acer Swift 3 SF314, Xiaomi Redmi G 2021, most of HP Notebooks…
Yours might be one of those.
Ah, sure… Just got to know your device is Lenovo B40-30. It’s unfortunate, but I have no solution. I’m barely understanding how encryption things are actually work.
1 Like
yes the b40-30 uses the exact same bios as b50-30
does that mean even flashing back modded bios with hardware programmer will still =brick?
I read that when using winhex after loading bios in h20 that the decrypted file is stored in ram and you can edit/save without needing to flash
I have manually edited and unlocked all descriptors on signed bios without breaking it
and flashed back no problem-any additional edits result=brick
I found several tools that will replace the signed bios with your certs but its not for my model and unsure how to edit the tool
how do I manually edit nvme module into bios? what line?