EEPROM flashing

Discussion about Modding the XBOX, including hardware and software hacks.
Post Reply
User avatar
GhostlyGamer
Posts: 356
Joined: Sun Jul 15, 2012 5:34 am
Location: Seattle USA
Has thanked: 16 times
Been thanked: 15 times

EEPROM flashing

Post by GhostlyGamer » Tue Aug 21, 2012 4:53 pm

If i back up all my EEPROMS (and label which one is which box, just incase) Can i flash every box i have with the same EEPROM, so that my HDD can stay locked, but work in all my boxes? or are EEPROMS version specific, so i would only be able to use a 1.4eeprom on other 1.4 boxes?
Image
Image

whufclee
Posts: 922
Joined: Tue Jul 17, 2012 5:42 pm
Location: Essex, UK
Has thanked: 18 times
Been thanked: 109 times
Contact:

Re: EEPROM flashing

Post by whufclee » Tue Aug 21, 2012 5:56 pm

No unfortunately that would not work - eeproms aren't version specific they are actually xbox specific. Every xbox has it's own individual eeprom so that's why it's so important to back them up and not lose them.

User avatar
spicemuseum
Posts: 906
Joined: Mon Jul 09, 2012 11:08 pm
Has thanked: 94 times
Been thanked: 75 times

Re: EEPROM flashing

Post by spicemuseum » Tue Aug 21, 2012 6:45 pm

whufclee wrote:No unfortunately that would not work - eeproms aren't version specific they are actually xbox specific. Every xbox has it's own individual eeprom so that's why it's so important to back them up and not lose them.
Would be interested in reading a bit more on this, I don't recall seeing an easy process for re-writing an XB0X EEPROM in situ, but don't immediately see why it would preclude the OP's idea, if it can be done, seems like a great idea.
Last edited by spicemuseum on Tue Aug 21, 2012 10:50 pm, edited 1 time in total.

User avatar
MrMajst3r
Posts: 218
Joined: Wed Jul 18, 2012 10:35 am
Location: Poland
Has thanked: 10 times
Been thanked: 32 times
Contact:

Re: EEPROM flashing

Post by MrMajst3r » Tue Aug 21, 2012 7:20 pm

Every revision of Xbox has specific eeprom. So, 1.4 Xbox you can flash only with eeprom from another 1.4 console.
Image

User avatar
GhostlyGamer
Posts: 356
Joined: Sun Jul 15, 2012 5:34 am
Location: Seattle USA
Has thanked: 16 times
Been thanked: 15 times

Re: EEPROM flashing

Post by GhostlyGamer » Tue Aug 21, 2012 7:40 pm

I god the idea off tr x-scene tutorial on how to unban yourself from Xbox Live by changing your EEPROM.
Image
Image

User avatar
Spongy
Posts: 97
Joined: Sun Jul 08, 2012 5:11 am
Has thanked: 16 times
Been thanked: 18 times

Re: EEPROM flashing

Post by Spongy » Tue Aug 21, 2012 7:53 pm

GhostlyGamer wrote:If i back up all my EEPROMS (and label which one is which box, just incase) Can i flash every box i have with the same EEPROM, so that my HDD can stay locked, but work in all my boxes?
I don't see any reason this wouldn't work. People used to buy and sell unbanned eeproms all the time. Possible network issues if you have more than one on at a time.
GhostlyGamer wrote: are EEPROMS version specific, so i would only be able to use a 1.4eeprom on other 1.4 boxes?
I'm pretty sure there are two or three eeprom versions. I think it's possible to edit the version or HDD locking code. Hopefully someone with more experience will show up.

Flashing and especially editing eeproms can be dangerous. Recovery can be difficult.
If you are using a good softmod you will need to take extra precautions.
Any virtual eeprom would need to be off and re-created after.

User avatar
xbs
Posts: 292
Joined: Thu Jul 05, 2012 3:22 pm
Location: Portugal
Has thanked: 29 times
Been thanked: 21 times

Re: EEPROM flashing

Post by xbs » Tue Aug 21, 2012 7:54 pm

I also had the idea that you could switch EEPROM on identical Xboxs.
Best option is to TSOP 'em all :D
Skins: SLik JX720 MS_Redux Mosaic
Utils: HeXEn
github.com/xbs08/

User avatar
GhostlyGamer
Posts: 356
Joined: Sun Jul 15, 2012 5:34 am
Location: Seattle USA
Has thanked: 16 times
Been thanked: 15 times

Re: EEPROM flashing

Post by GhostlyGamer » Tue Aug 21, 2012 8:15 pm

http://www.xbox-scene.com/articles/eeprom-change.php

That's te tut.

I'm chipped, so no need to Tsop. I was just thinking of this, so I could have multiple xboxes around the house, and I'm working on a quick HDD switch idea (not quite hot swap, still have to turn the box off) and since it's a quick switch, just have all the boxes have te same EEPROM (I know, I could just unlock the drive, but only one will be chipped, others will be tsoped)
Image
Image

User avatar
asbo
Posts: 594
Joined: Sun Jul 08, 2012 3:38 pm
Location: Norfolk, UK
Has thanked: 17 times
Been thanked: 54 times

Re: EEPROM flashing

Post by asbo » Tue Aug 21, 2012 8:35 pm

GhostlyGamer wrote: (I know, I could just unlock the drive, but only one will be chipped, others will be tsoped)
If all the xbox's are chipped or TSOP'd then you can have the hard drive unlocked.

User avatar
GhostlyGamer
Posts: 356
Joined: Sun Jul 15, 2012 5:34 am
Location: Seattle USA
Has thanked: 16 times
Been thanked: 15 times

Re: EEPROM flashing

Post by GhostlyGamer » Tue Aug 21, 2012 8:56 pm

asbo wrote:
GhostlyGamer wrote: (I know, I could just unlock the drive, but only one will be chipped, others will be tsoped)
If all the xbox's are chipped or TSOP'd then you can have the hard drive unlocked.
I know, I just don't really like the idea of having it unlocked for some reason, even though it probably would be safer.
Image
Image

AZImmortal
Posts: 204
Joined: Wed Aug 01, 2012 5:48 am
Has thanked: 1 time
Been thanked: 9 times

Re: EEPROM flashing

Post by AZImmortal » Tue Aug 21, 2012 9:02 pm

There's really no advantage to having a locked hard drive now that Xbox Live is gone. It only makes it harder to install into another Xbox if it doesn't have the same EEPROM.

User avatar
spicemuseum
Posts: 906
Joined: Mon Jul 09, 2012 11:08 pm
Has thanked: 94 times
Been thanked: 75 times

Re: EEPROM flashing

Post by spicemuseum » Tue Aug 21, 2012 10:28 pm

AZImmortal wrote:There's really no advantage to having a locked hard drive now that Xbox Live is gone. It only makes it harder to install into another Xbox if it doesn't have the same EEPROM.
Exactly.
All my hard discs in TSOP (pre v1.6) and modchip (v1.6) boxes are deliberately left unlocked.
But, for my softmodded v1.6s this seems like a great idea. Completely avoids the need to burn a box specific XBOXHDM CD for each and every box you have when you want to change the hard disc in it - it becomes a one-CD-for-all situation.
http://www.xbox-scene.com/articles/eeprom-change.php Brill!
Last edited by spicemuseum on Tue Aug 21, 2012 10:31 pm, edited 2 times in total.

User avatar
spicemuseum
Posts: 906
Joined: Mon Jul 09, 2012 11:08 pm
Has thanked: 94 times
Been thanked: 75 times

Re: EEPROM flashing

Post by spicemuseum » Tue Aug 21, 2012 10:29 pm

GhostlyGamer wrote:
asbo wrote:
GhostlyGamer wrote: (I know, I could just unlock the drive, but only one will be chipped, others will be tsoped)
If all the xbox's are chipped or TSOP'd then you can have the hard drive unlocked.
I know, I just don't really like the idea of having it unlocked for some reason
Why? It's no different to your PCs...

User avatar
spicemuseum
Posts: 906
Joined: Mon Jul 09, 2012 11:08 pm
Has thanked: 94 times
Been thanked: 75 times

Re: EEPROM flashing

Post by spicemuseum » Tue Aug 21, 2012 11:06 pm

MrMajst3r wrote:Every revision of Xbox has specific eeprom. So, 1.4 Xbox you can flash only with eeprom from another 1.4 console.
http://home.comcast.net/~admiral_powers ... eprom.html

There is a 256 byte Serial EEPROM on the Xbox which stores:
*XBOX VERSION
*KERNEL VERSION
*RAM SIZE
*XBOX SERIAL
*MAC ADDRESS
*ONLINE KEY
*VIDEO STANDARD
*XBE REGION
*HDD KEY
*CONFOUNDER
*HDD MODEL
*HDD SERIAL
*HDD PASSWORD
*XBOX DVD MODEL

The EEPROM is located on the motherboard between the TSOP and another chip. The EEPROM is a Rhom BR24C02 device (runs on Vcc = 3.3V), and its I2C address code is 0xA8 (that's already shifted left to compensate for the LSB r/w bit, the "real" device code is 0x54). I managed to find a sample contents, taken from an ACTUAL box, and Here's what I found:

Code: Select all

00000000: e31c 5c23 6a58 6837 b712 266c 9911 30d1  ..\#jXh7..&l..0.
00000010: e23e 4d56 f773 2b73 85fe 7f0a 08ef 153c  .>MV.s+s.......<
00000020: 77ee 6d4e 932f 28ee f861 f794 171f fc11  w.mN./(..a......
00000030: 0b84 44ed 3130 3535 3831 3131 3430 3033  ..D.105581114003
00000040: 0050 f24f 6552 0000 0a1e 3533 7185 314d  .P.OeR....53q.1M
00000050: 5912 3848 1c91 5360 0001 4000 0000 0000  Y.8H..S`..@.....
00000060: 7561 57fb 2c01 0000 4553 5400 4544 5400  uaW.,...EST.EDT.
00000070: 0000 0000 0000 0000 0a05 0002 0401 0002  ................
00000080: 0000 0000 0000 0000 0000 0000 c4ff ffff  ................
00000090: 0100 0000 0000 0000 0000 0000 0000 0000  ................
000000a0: 0000 0000 0000 0000 0000 0000 0000 0000  ................
000000b0: 0000 0000 0000 0000 0000 0000 0000 0000  ................
000000c0: 0000 0000 0000 0000 0000 0000 0000 0000  ................
000000d0: 0000 0000 0000 0000 0000 0000 0000 0000  ................
000000e0: 0000 0000 0000 0000 0000 0000 0000 0000  ................
000000f0: 0000 0000 0000 0000 0000 0000 0000 0000  ................
This is what is BACKED UP when you use the EvoX Dash BACKUP option.
The file EEPROM.BIN contains this information. The numbers in bold?
That would be SERIAL NUMBER of the Xbox. Which if you look on your
serial number sticker, those numbers should match! You can also see
the EST and EDT time zone markers. As for the HDD Key? Be my guest. . .

Now that there is ConfigMagic, you cqn edit the contents of the Serial EEPROM on the fly,
or load one already saved. Be careful when you mess with these things, you can turn your
Xbox into a door stop by putting the wrong thing in.

I have changed my Serial # to try to get back on Xbox live - Apparently I needed more than
that. I got a TECHNICAL ERROR signing in to Xbox Live.

You would need Serial#, Keys, and MAC Address from a never on-line Xbox![/i]

Code: Select all

typedef struct _EEPROMDATA {
    u8           HMAC_SHA1_Hash[20];                     // 0x00 - 0x13 HMAC_SHA1 Hash
    u8           Confounder[8];                          // 0x14 - 0x1B RC4 Encrypted Confounder ??
    u8           HDDKkey[16];                            // 0x1C - 0x2B RC4 Encrypted HDD key
    u8           XBERegion[4];                           // 0x2C - 0x2F RC4 Encrypted Region code (0x01 North America, 0x02 Japan, 0x04 Europe)
    u8           Checksum2[4];                           // 0x30 - 0x33 Checksum of next 44 bytes
    u8           SerialNumber[12];                       // 0x34 - 0x3F Xbox serial number
    u8           MACAddress[6];                          // 0x40 - 0x45 Ethernet MAC address
    u8           UNKNOWN2[2];                            // 0x46 - 0x47 Unknown Padding ?
    u8           OnlineKey[16];                          // 0x48 - 0x57 Online Key ?
    u8           VideoStandard[4];                       // 0x58 - 0x5B  0x00800300 = PAL, 0x00400100 = NTSC, 0x00400200=NTSC_J
    u8           UNKNOWN3[4];                            // 0x5C - 0x5F  Unknown Padding ?
 
    //Comes configured up to here from factory..  everything after this can be zero'd out...
    //To reset XBOX to Factory settings, Make checksum3 0xFFFFFFFF and zero all data below (0x64-0xFF)
    //Doing this will Reset XBOX and upon startup will get Language & Setup screen...
    u8           Checksum3[4];                           // 0x60 - 0x63  other Checksum of next
    u8           TimeZoneBias[4];                        // 0x64 - 0x67 Zone Bias?
    u8           TimeZoneStdName[4];                     // 0x68 - 0x6B Standard timezone
    u8           TimeZoneDltName[4];                     // 0x5C - 0x6F Daylight timezone
    u8           UNKNOWN4[8];                            // 0x70 - 0x77 Unknown Padding ?
    u8           TimeZoneStdDate[4];                     // 0x78 - 0x7B 10-05-00-02 (Month-Day-DayOfWeek-Hour)
    u8           TimeZoneDltDate[4];                     // 0x7C - 0x7F 04-01-00-02 (Month-Day-DayOfWeek-Hour)
    u8           UNKNOWN5[8];                            // 0x80 - 0x87 Unknown Padding ?
    u8           TimeZoneStdBias[4];                     // 0x88 - 0x8B Standard Bias?
    u8           TimeZoneDltBias[4];                     // 0x8C - 0x8F Daylight Bias?
    u8           LanguageID[4];                          // 0x90 - 0x93 Language ID
    u8           VideoFlags[4];                          // 0x94 - 0x97 Video Settings - 0x96 b0==widescreen 0x96 b4 == letterbox
    u8           AudioFlags[4];                          // 0x98 - 0x9B Audio Settings
    u8           ParentalControlGames[4];                // 0x9C - 0x9F 0=MAX rating
    u8           ParentalControlPwd[4];                  // 0xA0 - 0xA3 7=X, 8=Y, B=LTrigger, C=RTrigger
    u8           ParentalControlMovies[4];               // 0xA4 - 0xA7 0=Max rating
    u8           XBOXLiveIPAddress[4];                   // 0xA8 - 0xAB XBOX Live IP Address..
    u8           XBOXLiveDNS[4];                         // 0xAC - 0xAF XBOX Live DNS Server..
    u8           XBOXLiveGateWay[4];                     // 0xB0 - 0xB3 XBOX Live Gateway Address..
    u8           XBOXLiveSubNetMask[4];                  // 0xB4 - 0xB7 XBOX Live Subnet Mask..
    u8           OtherSettings[4];                       // 0xA8 - 0xBB Other XBLive settings ?
    u8           DVDPlaybackKitZone[4];                  // 0xBC - 0xBF DVD Playback Kit Zone
    u8           UNKNOWN6[64];                           // 0xC0 - 0xFF Unknown Codes / Memory timing table?
 } EEPROMDATA
Seems useful. Most of it repeated here so that we have it if that web site goes offline.

ldotsfan
Posts: 49
Joined: Sun Jul 08, 2012 1:47 pm
Has thanked: 1 time
Been thanked: 24 times

Re: EEPROM flashing

Post by ldotsfan » Wed Aug 22, 2012 1:02 pm

Original post here: http://forums.xbox-scene.com/index.php?showtopic=683310

Reposted here since x-s goes down frequently these days:

Code: Select all

One of xman954's posts gave me the idea. I have 2 xbox ver 1.1 softmodded with Kingroach Ndure and one chipped xbox 1.6. I want to be able to do hdd upgrades or swap hdd between the 3 xbox without messing with the eeproms. So I simply decided to zeroize the hdd key in the eeprom to 32 zeros on all 3 xbox. Here's the steps:

1. For softmods, disable virtual eeprom.
2. In ConfigMagic, press Start button and select unlock hdd.
3. Edit on the fly eeprom in ConfigMagic.
4. Zeroize hdd key to 32 zeros. 00000000000000000000000000000000
5. Select Update xbox eeprom option.
6. Load eeprom option in ConfigMagic.
7. Lock hdd option in ConfigMagic
This should help the OP. I am also working on an alternative eeprom reader design with USB connection to make it easy to flash/restore eeprom. But it is work in progress.
Ldotsfan :)

Post Reply