Degraded 1.1 APPCRASH??

[Mrbuzz102]

Great news managed to dump 4 nand's

Problem now being every time i open them in Degraded 1.1 to check the Cb version i get the following error

Problem signature:
Problem Event Name: APPCRASH
Application Name: Degraded.exe
Application Version: 1.0.0.1
Application Timestamp: 4717bddc
Fault Module Name: Degraded.exe
Fault Module Version: 1.0.0.1
Fault Module Timestamp: 4717bddc
Exception Code: c0000005
Exception Offset: 00005303
OS Version: 6.0.6000.2.0.0.768.3
Locale ID: 2057
Additional Information 1: dab3
Additional Information 2: 3d5f84195292259a822bf8cd4cb022ab
Additional Information 3: fdd3
Additional Information 4: 8e002935ec865cadc7fde14446c38ab7


I had to use hex workshop to change the offset 0x0012 to 2004 - 2005 Microsoft Corporation

But im getting that error now. I have tryed setting compability to XP sp2 and run as admin,

anyother way to check the cb version of my nand?

 

[coolshrimp]

Open it in jtag tool 2.72
go KV Info select your nand then put in a random CPU Key (32 Characters)
Then CLick Get info
youll get an error message just click OK
now it should show only your "CB"

My next update fixes it so it shows more info wihtout CPU Key but this should work for you for now..

 

[Mrbuzz102]

UPDATE!!

Used 360 flash dump tool.

this is my result for all 4 dumps!

why dose it say bad KV???? on all my dumps? they read to 3FF and i dumped 4 of them. they were all identical

 

[Mrbuzz102]

help!! lol

 

[coolshrimp]

lol that means you did not put in your CPU Key. so it cannot decrypt it.

 

[Mrbuzz102]

Microsoft Windows [Version 6.0.6000]
Copyright (c) 2006 Microsoft Corporation. All rights reserved.

C:\Users\My Pc>cd desktop

C:\Users\My Pc\Desktop>cd nand pro


C:\Users\My Pc\Desktop\nand pro>nandpro nand1.bin: -r16 rawkv.bin 1 1
NandPro v2.0b by Tiros

Using Virtual Nand Device File: nand1.bin
Starting Block:0x000001
Ending Block:0x000001
Reading
0001


C:\Users\My Pc\Desktop\nand pro>nandpro nand1.bin: -r16 raeconfig.bin 3de 2
NandPro v2.0b by Tiros

Using Virtual Nand Device File: nand1.bin
Starting Block:0x0003DE
Ending Block:0x0003DF
Reading
03DF

C:\Users\My Pc\Desktop\nand pro>nandpro XBR.bin: -w16 rawkv.bin 1 1
NandPro v2.0b by Tiros

Using Virtual Nand Device File: XBR.bin
Starting Block:0x000001
Ending Block:0x000001
Writing
File: rawkv.bin FileLen:4200 Blocks:1
0001


C:\Users\My Pc\Desktop\nand pro>nandpro XBR.bin: -w16 rawconfig.bin 3de 2
NandPro v2.0b by Tiros

Using Virtual Nand Device File: XBR.bin
Starting Block:0x0003DE
Ending Block:0x0003DF
Writing
File: rawconfig.bin FileLen:8400 Blocks:2
03DF



dumped the KV with nandopro, used the file zephyr_hack_updxell.bin changed the name to XBR.bin. injected the 2 files raw config and rawKV into that bin.

now where do i go from here??

what do u mean i did not put in my cpu key? where do i put it in? and where do i find it??



C:\Users\My Pc\Desktop\nand pro>nandpro.exe usb: -w16 XBR.bin
NandPro v2.0b by Tiros

Looking for usb interface device
FlashConfig:01198010
Starting Block:0x000000
Ending Block:0x0003FF
Writing
File: XBR.bin FileLen:ffc000 Blocks:3e0
03DF

Did this now its got 1-red light flashing white dots going all over the screen, and error code 1033. i have back ups of the nand tho.

any help

 

[BGAMods]

to get your cpu key you have to write xell and get your key from that.

 

[Mrbuzz102]

ok i did that. got my cpu key. made freeboot image,. now im geting e74 error on boot. but if i put my original nand back on it boots fine.

cheers

 

[rocket8080]

what is the jtag setup your using? and what tutorial are you following?

 

[Mrbuzz102]

ok i am using the altrnate jtag points, dumped my nand's 4 times. all matching. flashed xell onto the xbox. got my cpu key, put my cpu key into Jtag tool. created a freeboot bin then used nand-x to write the freeboot image.

once its finished. left to power down for few min, power up e74 error?

Dont know where im going wrong with this.

zephyer consol with cb of 4558

 

[rocket8080]

I think that the zephr cb 4558 needs a falcon smc to work, need to check that.

 

[Mrbuzz102]

smc? i have a folder called alt smc & xell inside it there is Xenon, Zephyr, Falcon, Jasper Bin Files in the SMC folder, and in the xell Bins folder there is the same,

I dont see how i use the smc files? do i just load them instead of freeboot?

 

[manwithoutname]

I think that the zephr cb 4558 needs a falcon smc to work, need to check that.

4558 is exploitable and should work with standard Zephyr SMC ..

 

[Mrbuzz102]

i have your ready made files here m8. whats the diffrence between the smc and the xell files? what do i use the smc files for??

 

[manwithoutname]

It's all in here. But if you're using the latest version of Jtag Tool you shouldn't need to.

 

[Mrbuzz102]

Keeps saying bad kv on the right. not sure why. used xell got my cpu key from the consol,

lol 11.47 am and im still going strong haha!

 

[Mrbuzz102]

ok got past that stage now

i now have a folder with


CB.4558.bin
CD.4558.bin
CE.1888.bin
CF.6717.bin
CF.7371.bin
CG.6717.bin
CG.7371.bin
Config.bin
Crl_enc.bin
Crl_dec.bin
Dynamic_list
Extended_dec.bin
Extended_enc.bin
KV_dec.bin
KV_enc.bin
odd_dec.bin
odd_enc.bin
Secdata_dec.bin
Secdata_enc.bin
SMC_dec.bin
SMC_enc.bin
Xboxkrnl.1888
xboxkrnl.6717
xboxkrnl.7371

i dont see anywhere in any tutorals files called these?

where do i go from here.

I have my cpu key. its brings up all the system info in jtag tool, and in flash tool i got all those files from extracting them from my nand.

At a total loss now were to go as i aint seeing much in the tutorials about this part

cheers in advance

 

[coolshrimp]

on jtag tool did you go options and select Alternate SMC?
do that then create .bin..

 

[M AzeeM K]

on jtag tool did you go options and select Alternate SMC?
do that then create .bin..

Yeah, did you select the Alternate SMC option when you created the freeBOOT image?

 

[Mrbuzz102]

yea i did chose the alternate SMC option, Im getting e79 error. now. not too sure whats going on lol