Offer to unlock hard drives?

XBOX, but not XBMC4XBOX related discussion
Post Reply
User avatar
nidge
Posts: 472
Joined: Fri Jul 27, 2012 8:29 pm
Location: Norfolk, United Kingdom
Has thanked: 24 times
Been thanked: 26 times
Contact:
Contact nidge

Offer to unlock hard drives?

Post by nidge »

I suppose many of you have locked hard drives that you cannot unlock, because you do not have the lock key?
Well I have bought a bulk licence for HDD Unlock Wizard which can unlock IDE & SATA drives. It will unlock the drive making in useable in an Xbox or PC again :)

However please note:
NOT EVERY DRIVE CAN BE UNLOCKED.
ALL THE DATA WILL BE WIPED!

So I am thinking of offering an unlocking service, UK only to begin with ;)
The idea is for you to send for your hard drive to me with a payment of around £10 to £20 plus £6 shipping for return by tracked and signed for courier. If your drive cannot be unlocked I will refund the unlock fee and return your drive.

Bigger drives take longer to unlock, as a guide an 8gb takes about 10 minutes.
It may not be worth sending 8 or 10gb drives to be unlocked! If you want one let me know, I have loads :lol:
I haven't tried 500gb and above yet, or SATA drives? Most of my testing so far has been on 8gb IDE drives, with a 99% sucess rate :)

Would this be a service forum members would be interested in? Comments, suggestions please? ;)
http://www.theoriginalxboxshoppe.weebly.com
http://www.ebid.net/uk/stores/Computers-and-Consoles

Crystal Xbox v1.4, Xecuter 3, 500gb sata hard disk, 1ghz CPU, 128mb RAM, HD component 720p, blue LED's.
Crystal Xbox v1.4, Xecuter 3, 320gb sata hard disk, stock CPU, 128mb RAM, HD component 720p.
Top
User avatar
professor_jonny
Posts: 1298
Joined: Thu Jul 05, 2012 5:41 am
Location: New Zealand
Has thanked: 66 times
Been thanked: 196 times

Re: Offer to unlock hard drives?

Post by professor_jonny »

I have WDR pro 3 for unlocking western digital drives easy enough to unlock and it is not data destructive as you can view the hdd key in the software.

It will unlock all marvel and royl firmware drives you just open up the module and read off the hdd key it is stored in plain text in a few various module modules depending on the drive firmware.

The reason why that tool wont work as not all drives support secure_erase command its sole purpose it to securely erase the drive but it wont work if the drive is set to high security mode it will reject the secure erase.

This tool could clear module 63 which it bad as it clears the g_list user defect table as it is usually stored there also.

WHD pro 3 has its companion tools STR (Seagate) MTR (Maxtor) all can unlock the hdd and not destroy data, all come from here all are said to be counterfeit versions of old commercial tools no longer maintained with added features to work with new drives.

http://chinahdd.cn/

It is handy if you have the same drive not locked as you take a snapshot of the modules lock the hdd and compare the modules to see what module the lock key is stored.

all three tools are prity pricey but don't require special pci cards to operate like the big boy tools that cost mega bucks.

http://www.hddoracle.com/viewforum.php?f=29
Top
ldotsfan
Posts: 49
Joined: Sun Jul 08, 2012 1:47 pm
Has thanked: 1 time
Been thanked: 24 times

Re: Offer to unlock hard drives?

Post by ldotsfan »

WD older (marvel) drive: hddsupertool script for master/user passwords: http://www.sdcomputingservice.com/hddsu ... ects=0&d=1

WD royl based drive: script for passwords: http://www.sdcomputingservice.com/hddsu ... ects=0&d=1

MHDD script: http://malthus.mooo.com/viewtopic.php?t=821#p4271 for wd royl.
Ldotsfan :)
Top
User avatar
Spildit
Posts: 1
Joined: Fri Oct 28, 2016 10:49 pm
Been thanked: 1 time

Re: Offer to unlock hard drives?

Post by Spildit »

Hello all !!!

Here we go :mrgreen: :mrgreen: :mrgreen:

How to unlock HDDs keeping your data on it using just free tools and not expensive stuff like PC-3000, MRT Pro, HRT, SD Tools, SeDiv, and many many more ;)

- Free ZU beta from @Moltke - http://www.hddoracle.com/viewtopic.php?f=95&t=166

Can unlock the following drives :

Maxtor (except STM),WD,Toshiba,Quantum
Fujitsu (except MHW,MHZ,MHY,MJA). There is a mistake for MHX
Nikimi (former Quantum & Maxtor)
MDT (former WD)
Native Hitachi (DK-xx,HTC..G7AT00)
IBM/HGST (many models,except 100h_byte_NVRAM & 4K-NVRAM & 2.5" with blue controllers. (mcu=ARM & B9A3..), disks without NVRAM)
ExcelStore(former HGST).
Seagate(with parallel flash)+Grand(UX with serial flash).

- For WD if the drive doesn't lock access to SA when ATA password is present then WDR DEMO (free) will do the job - http://www.hddoracle.com/viewtopic.php?f=32&t=33 . If this method doesn't work then MHDD scripts will most likely not dump module 02 as well because of SA lock.

Image

As mentioned by @Idotsfan you can use the hddsupertool to get the WD passwords as well. Just one correction WD "royl" based drives should read WD Marvell based drives. Meaning the script will work for all Marvell based drives (not just ROYL) and the WD older should read CYL 32 WDC MCU based drives as the script will not work on CYL 16 (drives like WDxA). You can use as well WDMarvel DEMO or SeDiv DEMO to dump module 02 : - http://www.hddoracle.com/viewforum.php?f=146 and http://www.hddoracle.com/viewforum.php?f=84 . To write the module back/remove the password you will need the full version but as long as you know the password you can unlock the drive like this :

http://www.hddoracle.com/viewtopic.php?f=117&t=1072

For older CYL 32 you can generate MHDD/HRT scripts this way : - http://www.hddoracle.com/viewtopic.php?f=91&t=1766 - then you can read the password module.

- For SEAGATE You can use @Moltke ZOC script like this - http://www.hddoracle.com/viewtopic.php?f=83&t=874 . This will work for F3 Arch (7200.11 and later) and for ST-10 arch (7200.10 and older). For ST-10 you can use this manual method as well - http://www.hddoracle.com/viewtopic.php?f=83&t=25 . For module based U drives like U6 drives read here - http://www.hddoracle.com/viewtopic.php?f=83&t=866

- For SAMSUNG - http://www.hddoracle.com/viewtopic.php?f=116&t=875 - Older drives check Security module and newer drives check profile module. If you need to read the password just dump the modules with the free SHT DEMO - http://www.hddoracle.com/viewforum.php?f=149 . If you want to write the modules back to the drive and you don't want to pay a cent read this thread that will teach you how to send Vendor Specific Commands to your Samsung to read and write modules to it : - http://www.hddoracle.com/viewtopic.php?f=59&t=1755

- For MAXTOR - Use the HDD Repair 2.0 to READ THE PASSWORD - DO NOT USE THIS TOOL FOR ANYTHING ELSE AS YOU WILL KILL YOUR DRIVE : - http://www.hddoracle.com/viewtopic.php?f=22&t=324 . If you want to do it by hand using scripts or ATA terminal i've done a great research on Maxtor and posted it here - http://www.hddoracle.com/viewtopic.php?f=59&t=1735

- For QUANTUM - Check my research here - http://www.hddoracle.com/viewtopic.php?f=59&t=1192 - CP15 stores the PASSWORDS - http://www.hddoracle.com/viewtopic.php? ... 1192#p5454 . You will have to read the entire thread to understand how to unlock it by hand or to read the password.

- For FUJITSU - Use one of the following ATA terminals - http://www.hddoracle.com/viewtopic.php?f=22&t=1765 and the research here have the commands to read the CPs with the passwords (CP 12 and CP 13) : http://www.hddoracle.com/viewtopic.php? ... 1185#p5349
An implementation of a script to read the modules from the locked Fujitsu would be :

1 - Send the "Valid Mode" "key" :

Valid_mode= 0000 fa 43 42 41 40 a0 c1

2 - Read the module 0D (CP 13) from the drive containing the user password :

Read_hdd_0D_SU= 0000 0D 01 00 00 00 00 c2

3 - Send the password to the drive or dump it to a file.
- For TOSHIBA - If you can't unlock it with ZU then you will need expensive tools as the majority of TOSHIBA CPs are stored on ROM but the password is stored (hidden) on platters like this - http://www.hddoracle.com/viewtopic.php? ... 1254#p6472 - Please note that password is encrypted/encoded and you can't read it even if you dump the correct sectors on the platter.

- For NATIVE HITACHI - Again if ZU doesn't work you will need special expensive tools. Cheaper alternatives are the SD Hitachi tool ($600 USD) or SeDiv ($750 USD) as the password is stored on the SD module but might be encrypted and SA access is locked with password is present : - http://www.hddoracle.com/viewtopic.php? ... 1732#p9365 older NATIVE HITACHI will store the password as plain text on the ID module - http://www.hddoracle.com/viewtopic.php? ... 1732#p9372

- For IBM/HITACHI - If ZU doesn't work for you then you will need specialized tools. Place the drive in safe mode or run from factory copy of firmware and replace SECI module with one from unlocked drive or factory copy (3rd firmware copy). - http://www.hddoracle.com/viewtopic.php? ... 120#p10211 - You can read my research there but you will need special firmware tools unless you know IBM VSC. I will write something on how to unlock those drives by hand using the Vendor Specific Commands without expensive tools and i will post on the same thread of my forum one of these days when i can get some free time to write about that. For now the easy way is to get a SeDiv software or a MRT hardware/software tool and press the "unlock" option ! :D

Also i do have my own unlocking service if interested : - http://www.hddoracle.com/viewtopic.php?f=95&t=76

As reference for my HDD firmware experiments i'm using this : - http://www.hddoracle.com/viewforum.php?f=30

Image

Regards and happy learning !!!
The HDD Oracle - Platform for OPEN research on Data Recovery.
Top
Post Reply

Return to “Misc XBOX Discussion”