Homebrew Accidentally stuck on 4.5.0-4U

[BL4Z3D247]

This,

Spoiler: This

The exploit uses 5 different ROP chains based on the browser's version, detected using the user agent string.

• 3DS System version 2.0 = "Mozilla/5.0 (Nintendo 3DS; U; ; en) Version/1.7412.US"
• 3DS System version 2.1-3.X = "Mozilla/5.0 (Nintendo 3DS; U; ; en) Version/1.7455.US"
• 3DS System version 4.0-4.X = "Mozilla/5.0 (Nintendo 3DS; U; ; en) Version/1.7498.US"
• 3DS System version 5.0-7.0 = "Mozilla/5.0 (Nintendo 3DS; U; ; en) Version/1.7552.US"
• 3DS System version 7.1-9.2 = "Mozilla/5.0 (Nintendo 3DS; U; ; en) Version/1.7567.US"

This confirms what im trying to show you. The exploit can work on a full 2.1 firm (which I'm sure it does because theres no other way Gateway people can run their badly coded A9LH installer on 2.1), but it does work with any browser.

The ROP chains the Spider Exploit uses have codes to run on -4 browser(which is basically the 2.1 browser)

Just to let you know, i am not going to keep arguing about this. There was another guy stuck in the same way as the OP and he managed to run Decrypt9 with the -4 browser.

I didn't know this either. This is going to help a friend of mine, thanks. Can you PM me what you had the guy you help do(that you shouldn't have). Might help me help my friend.

 

[Tenshi_Okami]

I didn't know this either. This is going to help a friend of mine, thanks. Can you PM me what you had the guy you help do(that you shouldn't have). Might help me help my friend.

https://3ds.guide/decrypt9-(browser)

This should boot straight into Decrypt9, if he can't boot into a browser. Try the MSET exploit https://3ds.guide/decrypt9-(mset)

 

[The Catboy]

The guide actually covers upgrading from 2.1 on New3DS. You just needed to boot into hourglass9 and and flash the NAND backup you made before downgrading to 2.1.
Either way, try these
https://3ds.guide/decrypt9-(browser)
https://3ds.guide/decrypt9-(mset)
From there you can safely downgrade back to 2.1
https://3ds.guide/2.1.0-ctrtransfer
if you accidentally removed A9LH and want to re-install it.
Or if you still have A9LH
Go to this
https://3ds.guide/9.2.0-ctrtransfer

Also reformatting your SD card wouldn't update your system. Your SD card has nothing to do with your OFW. If you didn't backup the SD card before reformatting, you basically just lost everything, including your NAND backup.

 

[linuxares]

I hope you saved your backup or atleast can get on the browser.

 

[Distrance]

Also reformatting your SD card wouldn't update your system. Your SD card has nothing to do with your OFW. If you didn't backup the SD card before reformatting, you basically just lost everything, including your NAND backup.

You're right, but it is recoverable if he hasn't put anything on the SD card. If he has, then recovering the file could be more dicey. Whenever I've had to recover files (sometimes hundreds), I've used EaseUS Recovery Tool. It's amazing. I can wholeheartedly recommend this option @Lightwolfe . However the free version has some stupid limitations so you'll have to acquire the full version through some other means *cough*. There's free file recovery softwares too so you could try those. Either way, do NOT write anything to your SD card right now. Run a recovery tool on it and recover these files : nandmin.bin AND nandmin.bin.sha . With latter we can verify the intergrity of the former and if all checks out you can then restore a backup.

If you can not restore these files then you are seemingly out of luck unless you can update back to 11.2 or downgrade to 2.1 somehow.

I know you don't want to hear this but I still am going to say this: Why did you try to do something that strayed off the guide and only then came here for help. Why did you not come for help when you ran into trouble during 2.1? One of the stupidest things you can do while hacking your device is straying from the guide when you don't know what you're doing and what effect it will have on the system.

 

[BL4Z3D247]

If you can not restore these files then you are seemingly out of luck unless you can update back to 11.2 or downgrade to 2.1 somehow.

They can't update or they'll brick. It's a N3DS.

 

[Distrance]

They can't update or they'll brick. It's a N3DS.

Well that's why I said "somehow". I tried to imply thru not normal methods. Though I guess ctrtransfer is not exactly "updating" but yeah you know. So if he has A9LH can he actually do something or is restoring the backup his only hope?

 

[BL4Z3D247]

Well that's why I said "somehow". I tried to imply thru not normal methods. Though I guess ctrtransfer is not exactly "updating" but yeah you know. So if he has A9LH can he actually do something or is restoring the backup his only hope?

Ah, wasn't sure if you knew that. If they have A9LH all they have to do is restore their NANDmin.bin with the (keep a9lh) option.

 

[Distrance]

Ah, wasn't sure if you knew that. If they have A9LH all they have to do is restore their NANDmin.bin with the (keep a9lh) option.

Yes but they don't have that backup - which means they need to restore it with a File Restoration software which may or may not work. What I was asking is if there's anything else he can do without the said backup.

 

[The Catboy]

You're right, but it is recoverable if he hasn't put anything on the SD card. If he has, then recovering the file could be more dicey. Whenever I've had to recover files (sometimes hundreds), I've used EaseUS Recovery Tool. It's amazing. I can wholeheartedly recommend this option @Lightwolfe . However the free version has some stupid limitations so you'll have to acquire the full version through some other means *cough*. There's free file recovery softwares too so you could try those. Either way, do NOT write anything to your SD card right now. Run a recovery tool on it and recover these files : nandmin.bin AND nandmin.bin.sha . With latter we can verify the intergrity of the former and if all checks out you can then restore a backup.

If you can not restore these files then you are seemingly out of luck unless you can update back to 11.2 or downgrade to 2.1 somehow.

I know you don't want to hear this but I still am going to say this: Why did you try to do something that strayed off the guide and only then came here for help. Why did you not come for help when you ran into trouble during 2.1? One of the stupidest things you can do while hacking your device is straying from the guide when you don't know what you're doing and what effect it will have on the system.

I mean yeah you can. It's just hit and miss. Every time I recovered files, they were renamed. But maybe that's because I was using the free version or something. i never really worry about restoring files because I keep multiple backups.

Still I am going to level in on this one as well. OP: The steps are seriously right on the same page as "Installing arm9loaderhax." It's Section IV - Restoring the System. If you seriously couldn't scroll down a little more to figure this out and went rouge from there. Then this is your own fault
You can try these options right here. Or sell your system, buy a new one and do some research before doing something like this.

The guide actually covers upgrading from 2.1 on New3DS. You just needed to boot into hourglass9 and and flash the NAND backup you made before downgrading to 2.1.
Either way, try these
https://3ds.guide/decrypt9-(browser)
https://3ds.guide/decrypt9-(mset)
From there you can safely downgrade back to 2.1
https://3ds.guide/2.1.0-ctrtransfer
if you accidentally removed A9LH and want to re-install it.
Or if you still have A9LH
Go to this
https://3ds.guide/9.2.0-ctrtransfer

Also reformatting your SD card wouldn't update your system. Your SD card has nothing to do with your OFW. If you didn't backup the SD card before reformatting, you basically just lost everything, including your NAND backup.

 

[BL4Z3D247]

Yes but they don't have that backup - which means they need to restore it with a File Restoration software which may or may not work. What I was asking is if there's anything else he can do without the said backup.

Oh, when I first read the OP I thought they had a NAND backup. It says they made a backup or thought they did. Lol. That's what confused me. Well in that case if they have A9LH they can ctrtransfer to 9.2, then they can update but they'll have to fix the DS/DSi mode since the ctrtransfer breaks that on a N3DS.

 

[Distrance]

I believe in the EaseUS program if you're using the free version there's a size limit or something - You can scan for the file, but you can't recover it with the program. I might be wrong on this but I think that's actually a thing. And given that the backup is at least 800MB, I don't think it can be recovered with the free one. The file names usually don't stay intact either way, not sure why or if that's just a thing in general when recovering files that are deleted, but the file extensions will remain. It is unlikely the SD card had any other .bin files at ~800MB and any other .sha files on it so it's pretty much self explanatory which files must be recovered.

 

[Lightwolfe]

The guide actually covers upgrading from 2.1 on New3DS. You just needed to boot into hourglass9 and and flash the NAND backup you made before downgrading to 2.1.
Either way, try these
https://3ds.guide/decrypt9-(browser)
https://3ds.guide/decrypt9-(mset)
From there you can safely downgrade back to 2.1
https://3ds.guide/2.1.0-ctrtransfer
if you accidentally removed A9LH and want to re-install it.
Or if you still have A9LH
Go to this
https://3ds.guide/9.2.0-ctrtransfer

Also reformatting your SD card wouldn't update your system. Your SD card has nothing to do with your OFW. If you didn't backup the SD card before reformatting, you basically just lost everything, including your NAND backup.

I tried this guide - https://3ds.guide/decrypt9-(browser)
The first two links did not work. This link - http://www.reboot.ms/3ds/load.html?Launcher.dat - came up but the following text showed up once the link loaded.

Initializing SD card... success
Build: Decrypt9WIP (2017/01/15)
Work directory: /files9
Game directory: /files9
sector0x96 Key: otp.bin not found
0x03 KeyX & KeyY: already set up
0x05 KeyY: not found
0x25 KeyX: not found
0x18 KeyX: not found
0x1B KeyX: not found
0x24 KeyY: not found
Finalizing Initialization...

Initialization: failed!
(A to exit)

The last link - http://dukesrg.dynu.net/3ds/rop?GW17567.dat&Launcher.dat - came up on the bottom screen then gave an error.

 

[BL4Z3D247]

I tried this guide - https://3ds.guide/decrypt9-(browser)
The first two links did not work. This link - http://www.reboot.ms/3ds/load.html?Launcher.dat - came up but the following text showed up once the link loaded.

Initializing SD card... success
Build: Decrypt9WIP (2017/01/15)
Work directory: /files9
Game directory: /files9
sector0x96 Key: otp.bin not found
0x03 KeyX & KeyY: already set up
0x05 KeyY: not found
0x25 KeyX: not found
0x18 KeyX: not found
0x1B KeyX: not found
0x24 KeyY: not found
Finalizing Initialization...

Initialization: failed!
(A to exit)

The last link - http://dukesrg.dynu.net/3ds/rop?GW17567.dat&Launcher.dat - came up on the bottom screen then gave an error.

This is from the troubleshooting link if none of the links work:

A browser based exploit is not working
Browser based exploits (such as browserhax or 2xrsa) are often unstable and crash frequently, but they can sometimes be fixed by doing the following steps

1. Open the browser, then open the browser settings
2. Scroll to the bottom and Initialize Savedata (it also may be called Clear All Save Data)
3. Try the exploit again

It's worth a try.

 

[Lightwolfe]

This is from the troubleshooting link if none of the links work:

It's worth a try.

I tried that and all of the links did the same thing as before.

 

[BL4Z3D247]

I tried that and all of the links did the same thing as before.

Then I believe your only option(s) are:

Try the MSET exploit https://3ds.guide/decrypt9-(mset)

Or
Ninjhax 1.1b which will gain you access to the HBL which then you should be able to boot Decrypt9. I believe the first method is cheaper than the second so I'd start there. I think you have to buy a flashcard but it's cheaper than buying Cubic Ninja.

 

[Lightwolfe]

So I got Cubic Ninja but I'm unsure what to do next. Can't really find a straight forward guide. Any help or links?

 

[Tenshi_Okami]

So I got Cubic Ninja but I'm unsure what to do next. Can't really find a straight forward guide. Any help or links?

Wait, you said this booted right?

This link - http://www.reboot.ms/3ds/load.html?Launcher.dat - came up but the following text showed up once the link loaded.

Initializing SD card... success
Build: Decrypt9WIP (2017/01/15)
Work directory: /files9
Game directory: /files9
sector0x96 Key: otp.bin not found
0x03 KeyX & KeyY: already set up
0x05 KeyY: not found
0x25 KeyX: not found
0x18 KeyX: not found
0x1B KeyX: not found
0x24 KeyY: not found
Finalizing Initialization...

Initialization: failed!
(A to exit)

--------------------- MERGED ---------------------------

 

[Lightwolfe]

https://github.com/smealum/ninjhax <--- I am trying to follow this guide but I'm stuck on this part...

"Secondly, you will need to procure files required for building the executable. These files are not my IP so I can not (and will not) distribute them. Note that none of the data from these files ends up in the final product, we only use them to generate patches with our own data. You will need all versions of spider/SKATER's oss.cro file (found in romfs)"

 

[Tenshi_Okami]

https://github.com/smealum/ninjhax <--- I am trying to follow this guide but I'm stuck on this part...

"Secondly, you will need to procure files required for building the executable. These files are not my IP so I can not (and will not) distribute them. Note that none of the data from these files ends up in the final product, we only use them to generate patches with our own data. You will need all versions of spider/SKATER's oss.cro file (found in romfs)"

Again, i want to be clear (Sorry) you said before that http://www.reboot.ms/3ds/load.html?Launcher.dat booted some text right?