Hacking NOOB PARADISE - ask away

Moufou · Sep 15, 2019

tswntk said:
Then define what "stuff" - "but I don’t want to install stuff that I don’t know about"
Which games you tried, what usbloadergx version, start from hbc or forwarder, if forwarder, which forwarder- name; version; Wii or vWill
and finally, Syscheck report please and don't tell me you are using flash drives.

Sorry and Thanks for the help. This morning I went to do a syscheck (put the folder in the sd card) but decided to test a wii game before and it worked... I doubt adding the syscheck files in my sd card made it work but probably the usb port...
Like I thought modMii did all the modding necessary.

Thanks again for your quick responses.

nickbadge2 · Sep 29, 2019

Hi there, I have a question that is driving me nuts. I have created my EmuNAND and installed games on it and everything seems to be working OK.
If I want to use SNEEK/Neek2o to play WiiWare games, do I really really NEED to use an SD card? Because everything works OK with an SD card, but if I take it out and "Reboot into BootMii" or "Exit to Need2o" from WiiFlow, my Wii hangs and the blue LED blinks indefinitely.
Given that ModMii also gives you "COPY_TO_SD" files even if you ask to use UNEEK+DI, I am guessing the SD card is mandatory, am I right? Or no? Thanks in advance!

XFlak · Sep 29, 2019

Yes an SD card is required

Deleted member 433093 · Oct 5, 2019

Can Nintendo update boot1 with a system update? This is because I'm very confused as to why Bootmii cannot be installed to boot2 because of boot1 even though I have the OG Wii (With gamecube ports). Is there any way to install BootMii to boot2 to have my Wii "fully" anti-brick-able? Is preloader a better option for me?

jeannotte · Oct 5, 2019

Hello,

@321_Islender_123 :

With "" hackmii installer "", you can see if you can install it as boot 2 and boot IOS (see both).

Either you can install it in boot 2, or in boot IOS.

After all depends on the release date of your Wii.

KleinesSinchen · Oct 5, 2019

321_Islender_123 said:
Can Nintendo update boot1 with a system update? This is because I'm very confused as to why Bootmii cannot be installed to boot2 because of boot1 even though I have the OG Wii (With gamecube ports). Is there any way to install BootMii to boot2 to have my Wii "fully" anti-brick-able? Is preloader a better option for me?

There is not much hope for BootMii@boot2 on newer Wii consoles.

As far as I know (I cannot guarantee everything is correct):

The sector boot1 is used to decrypt boot2. The program in boot2 is executed afterwards – but only if the signature for boot2 is valid.

The oldest Wii consoles have a weakness in boot1 that allows to circumvent the signature check and replace the normal bootloader with BootMii → Nice!
Somewhere in 2008 (if I remember correctly) Nintendo fixed that flaw and newer consoles do not have a vulnerable boot1. This affects all non-white Wiis, all RVL-101 (without GameCube ports) and all RVL-201 (Wii Mini). But having a white Wii with GameCube ports does not guarantee to have a vulnerable boot1.

You might think: “Why not overwrite boot1 on the NAND with the older version? Then we can modify boot2 like before.”

This does not work because the first step in the boot procress, boot0, is embedded in the Starlet coprocessor and a true ROM. This totally not writable boot0 verifies the checksum of boot1. If you change anything on boot1 → full brick. Only NAND-backup and hardware programmer can repair this.

The only way I can think of – if there is no other boot1 vulnerability (highly unlikely; should have been found by now) – would be a hash collision (sha1 I think) to get a valid signature for boot2… or… politely ask Nintendo for the private signing key.

Edit:
Definitely install BootMii as IOS and Priiloader. It is not as good as BootMii@boot2 but there is no reason not to have Priiloader on your Wii. It is the best (and only) protection against softbricks newer Wiis can get.

Deleted member 433093 · Oct 5, 2019

KleinesSinchen said:
There is not much hope for BootMii@boot2 on newer Wii consoles.

As far as I know (I cannot guarantee everything is correct):

The sector boot1 is used to decrypt boot2. The program in boot2 is executed afterwards – but only if the signature for boot2 is valid.

The oldest Wii consoles have a weakness in boot1 that allows to circumvent the signature check and replace the normal bootloader with BootMii → Nice!
Somewhere in 2008 (if I remember correctly) Nintendo fixed that flaw and newer consoles do not have a vulnerable boot1. This affects all non-white Wiis, all RVL-101 (without GameCube ports) and all RVL-201 (Wii Mini). But having a white Wii with GameCube ports does not guarantee to have a vulnerable boot1.

You might think: “Why not overwrite boot1 on the NAND with the older version? Then we can modify boot2 like before.”

This does not work because the first step in the boot procress, boot0, is embedded in the Starlet coprocessor and a true ROM. This totally not writable boot0 and verifies the checksum of boot1. If you change anything on boot1 → full brick. Only NAND-backup and hardware programmer can repair this.

The only way I can think of – if there is no other boot1 vulnerability (highly unlikely; should have been found by now) – would be a hash collision (sha1 I think) to get a valid signature for boot2… or… politely ask Nintendo for the private signing key.

Edit:
Definitely install BootMii as IOS and Priiloader. It is not as good as BootMii@boot2 but there is no reason not to have Priiloader on your Wii. It is the best (and only) protection against softbricks newer Wiis can get.

Thx a lot, I thought my boot1 was vulnerable because I have the original white Wii with game cube ports and I'm pretty sure it was bought before 2008. I must've gotten really unlucky then

. I'll install as IOS and I'll install priiloader for at least some brick defence. Also I learned some new things about how the Wii works. Thanks again

Draconian9 · Oct 5, 2019

Hello,

I am sorry if the questions I am asking might be already asked but I have tried reading up on stuff and it's just confusing me more.

I just purchased a Wii which I think has been softmodded. The Wii came in a Korean box and has Korean Mii channel installed on it but the system version has been changed to 4.0U. Does that mean that my Wii has been region changed??

If my Wii has been region changed, I should not be updating it officially as it will brick, right? If yes, how do I update my Wii to at least 4.1U to play the games I need to.

My Wii did not have any SD card inside of it but I can still see some apps like the Hombrew Channel, USB Loader GX etc. already there. I am not too sure whether my soft mod was proper or not. Will updating my Wii cause any problems if the soft mod was not proper?

I read about the ModMii software and it seems pretty helpful but I don't know which region to use as mine might be a Korean region changed to US. What all selections do I have to use in ModMii for it to provide me proper stuff.

Lastly, if it does turn out to be a Korean Wii, what can I do to avoid error 003? Any way I can save it even if it is accidentally updated?

Thank you so much to anyone who helps me out and takes time to answer my questions.

Regards,
Draco

Alexander1970 · Oct 5, 2019

Draconian9 said:
Hello,
I read about the ModMii software and it seems pretty helpful but I don't know which region to use as mine might be a Korean region changed to US. What all selections do I have to use in ModMii for it to provide me proper stuff.

Hello.

If you use ModMii it asks you very accurate:

And here is a post from @XFlak about Update an Korean Wii where the Region already is changed to US:

Region changing is risky, but as long as u don't lose power and u don't make a mistake it not a big deal.
ModMii has a region changing wizard. But if a wii has been region changed already, say a Korean wii region changed to US, then even Modmii's standard guide is safe to do. This is because ModMii uses a patched IOS60 in every system menu slot because it works best and won't brick Korean region changed wii's even if they upgrade to 4.3 (which under normal circumstances would cause you to brick)

https://gbatemp.net/threads/wii-korea.505889/

Maybe this helps you a little.

Thank you.

XFlak · Oct 5, 2019

TLDR (I can be verbose at times, lol), ModMii's main Wizard is safe to use even if the wii was once Korean and region changed. When asked what your current firmware is, enter 4.0U, it will recommend 4.1U but you can safely install 4.1U, or 4.2U or 4.3U USING MODMII (as previously stated, official updates can lead to 003 bricks)

Draconian9 · Oct 8, 2019

Okay thank you so much. I will test it out today and update on how things have gone along with the Wii.

SUPERMEGAB1Z-B1Z · Oct 13, 2019

Sure, why not? Hey guys:

I've heard of Wiimmfi a few years after Official Nintendo WFC died. I've been wanting to try it, but by Wii has a problem. It's bricked.

I have a 2008 Nintendo Wii [Ver: 4.3U M/N: RVL-001 - S/N: LU7000] in a similar predicament as the one in the video. I have no working NAND backups, but I did manage to de-solder and read the bricked Wii nand binary file:

Question: Is anyone willing to share their working Wii nand.bin copy? I just need to do some cyber-surgery on my bricked wii nand, re-flash it, refit it, and hopefully replay some old classics online again. Please let me know - heck, I'll even share my nand to anyone willing to help me unbrick this machine.

Thanks,

SMBB
E-I-T

P.S: In Hex Editor Neo on offset 40, the first letters are 4c. If I go according to StreamlineHD on Hacksden, my console isn't boot2 compatible (maybe with modifications boot2 compatibility is possible, since it's all a mind game in the machine).

KleinesSinchen · Oct 13, 2019

SUPERMEGAB1Z-B1Z said:
Sure, why not? Hey guys:

I've heard of Wiimmfi a few years after Official Nintendo WFC died. I've been wanting to try it, but by Wii has a problem. It's bricked.
[…]

Sorry, this is a “no” on many levels:

A Wii NAND dump contains copyrighted material – intellectual property of Nintendo. Asking for or sharing such things is against the forum rules…
… and completely useless for you. The NAND is encrypted with a console-unique keys. Flashing a NAND dump (either with BootMii or a hardware programmer) from a different console results in a full brick.
- If you have the keys/a damaged or not working NAND backup created with BootMii it might be possible to create/repair a NAND.bin according to *sigh* [Wiibrew] Ohneschwanzenegger. (Never tested this software… I really should do this!)
Compatibility for BootMii@boot2 cannot be added to consoles without the flaw in boot1. See my post above.

Fortunately Wii consoles are very cheap at the moment. Even more if you just want the main device (maybe even with dead disc drive) as you already should have controllers, power brick, AV-cable and Sensor Bar.

SUPERMEGAB1Z-B1Z · Oct 13, 2019

I've read the webpage... This looks...promising...? I have my nand in a readable state on my computer, so I guess I'll give it a shot.

[Edit]: Wow, there's even a NAND checker. I've been looking for one like this! I'm gonna archive these tools along with the PS3 tools.
I think knowing where to looks is what's really helping me right now.

XFlak · Oct 13, 2019

With Ohneschwanzenegger you can create a fresh/clean virgin nand using just your keys (assuming you have them already), then flash it

Alexander1970 · Oct 13, 2019

XFlak said:
With Ohneschwanzenegger you can create a fresh/clean virgin nand using just your keys (assuming you have them already), then flash it

Yes a great and powerful Tool.
If you know what you are doing.

And useless without BootMii.

SUPERMEGAB1Z-B1Z · Oct 13, 2019

alexander1970 said:
Yes a great and powerful Tool.
If you know what you are doing.
And useless without BootMii.

Question: Is is possible to extract the keys directly from the NAND using Infectus?

[Edit] Also, @KleinesSinchen I have checked the website, downloaded the 3 zip files, and ran them - starting with nandBinChecker, but I have a problem. The checker is saying "Error setting path to nand object," even though the nand copy is in the working directory of giantpune's work. Question: Will I have to install the Qt SDK for these apps to work properly?

Alexander1970 · Oct 13, 2019

SUPERMEGAB1Z-B1Z said:
Is is possible to extract the keys directly from the NAND using Infectus?

http://www.hacksden.com/showthread....Guide-for-Low-Level-Brick-(Full-Brick)-Repair

https://gbatemp.net/threads/step-by-step-guide-for-bootmii-nand-wii-backup-restore.176877/

https://gbatemp.net/threads/wii-unbricking.188604/

Since I do not have the required Equipment I can not say YES.
Thank you.

XFlak · Oct 13, 2019

SUPERMEGAB1Z-B1Z said:
Question: Is is possible to extract the keys directly from the NAND using Infectus?

No

Xeratone · Oct 14, 2019

Hacking NOOB PARADISE - ask away

Member

Member

Wiitired but still kicking

Active Member

Well-Known Member

GBAtemp's Backup Reminder + Fearless Testing Sina

Active Member

New Member

XP not matters.

Wiitired but still kicking

New Member

New Member

GBAtemp's Backup Reminder + Fearless Testing Sina

New Member

Wiitired but still kicking

XP not matters.

New Member

XP not matters.

Wiitired but still kicking

Member

Similar threads

Popular threads in this forum