1.4.2.10 Hack - GSM-Forum

Phantasm4489 · 10-07-2003, 18:36

The security seems to have been modified in the 1.4.2.10 drivers, btsec.dll
doesnt seem to be used anymore and the security is present in these 3 files

BTTray.exe (typically in c:\program files\widcomm)
BTStackServer.exe (lives in the same directory as BTTray.exe)
WBTAPI.DLL (lives in c:\windows\system32 or c:\winnt\system32)

To hack the 1.4.2.10 widcomm drivers search for this hex string

83 C4 04 85 F6 0F 85 07 01 00 00

and if X is the address at which the first byte of this string resides then edit the following locations:

X+5, Old value = 0F 85 07 01 00 00, new value = 90 90 90 90 90 90
X+29, Old value = 0F 85 EF 00 00 00, new value = 90 90 90 90 90 90
X+48, Old Value = 0F 84 Dc 00 00 00, new value = 90 90 90 90 90 90

make the same changes to all 3 files.

When I tried this I was able to get the drivers to start up successfully, but I cant fully
test them as the only BT hardware I have is the MS keyboard and mouse, and it seems like they
might have broken the HID service in this version of the drivers (or maybe its the crack but
I dont think so).

Thanks should go to the person who created the 1.4.1 crack, as this one is mostly based on that.

**zfrank** · 10-07-2003, 18:55

cool
thx for sharing this info

martroy · 10-08-2003, 14:10

Thanks Phantasm4489!

I tried it last night and no luck with my Belkin dongle. It fixes the license issue but now, when I try to Find Bluetooth Devices from My Bluetooth Places, I get the following error message "No local Bluetooth device was detected". The dongle seems to be recognized since the tray icon changes from red to white when I plug it. I can also see the device properties from the Hardware tab in the Advanced configuration.

I'm able to discover/pair from my phone but not the other way around...

Anybody has the same problem?

Martin

gorgoroth · 10-08-2003, 18:23

I have the same problem. The detection is not working. Maybe we can edit the bluetooth database manualy, but i cannot find where it is.

This is a problem when the device cannot initiate the connection (like a headset)

btrez.dll in system32 folder is the file involved, but I couldn't find the hex squence

MaikS · 10-09-2003, 08:45

I have the same problem

Maik

Phantasm4489 · 10-12-2003, 01:48

Sorry for the false start guys, but i am pretty sure ive got this working now.

Ignore the changes above and make these changes to the same three files instead:

search for 83C40885F60f85ef000000 and replace 0f85ef000000 in the sequence with 909090909090

search for 8bf083c4083bf7750e3bef750a and replace 750e with 9090 and 750a with 9090

Using this crack ive managed to get my new phone and my microsoft bluetooth mouse work quite nicely with the microsoft dongle.

I used the belkin drivers, but it should work for others too.

bluetoothmaster · 10-12-2003, 15:45

@Phantasm4489
good work

it´s working perfect

again new work for widcomm
with 1.4.2.x-version btsec.dll is more secure, but widcomm forget secure also all exe

btw, not working with evox 1.4.2.10, there are some more changes.., with belkin no problem ;

gorgoroth · 10-12-2003, 16:29

Thanks Phantasm,

This is working perfectly on berklin drivers and Dlink DBT120. At last, after 2 month, I can use my bluetooth adapter on my Windows 2003 computer.

It's funny we still need to crack something that should be available with any adapter...

Phantasm4489 · 10-12-2003, 23:15

So what was the problem with the EvoX drivers, you couldnt find the hex bytes? or just not working after changing those bytes?

In what way was it not working?

bluetoothmaster · 10-13-2003, 07:37

I looked today again. Only small changes

in epox in second hex-strings 3 bytes are different

8BF083C40C3BF5750E3BFD750A

maybe someone can test epox-software

http://www.epox.de/dl/techsupp/BTW_1_4_2_10.zip

Quank · 10-13-2003, 11:12

Quote:

Originally posted by bluetoothmaster
I looked today again. Only small changes

in epox in second hex-strings 3 bytes are different

8BF083C40C3BF5750E3BFD750A

maybe someone can test epox-software

http://www.epox.de/dl/techsupp/BTW_1_4_2_10.zip

This patch work with BTW v. 1.4.2.10 service pack 4!

BTW from http://www.mavintec.com/download/usb.zip work fine with my Tecom BT3030

Thanks Phantasm4489! & bluetoothmaster!

Garry_Whole · 10-13-2003, 21:00

Unfortunately MSI USB Dongle does not work, does not see other devices. I tried different versions of drivers 1.4.2.10 - any effect.
Phantasm4489 has described hack for the version of drivers SP3, but Quank speaks about version SP4 where there is other line about which speaks Bluetoothmaster.
As a result of it turns out nothing. Can be eat other variant with version SP4?

Phantasm4489 · 10-13-2003, 21:17

please be more specific as to exactly how it isnt working. Is it the bluetooth dongle that it doesnt recognise or are we talking about it not being able to discover your bluetooth devices? What happens if you try to discover the other way around?

theh0g · 10-14-2003, 08:23

Quote:

Originally posted by Garry_Whole
Unfortunately MSI USB Dongle does not work, does not see other devices. I tried different versions of drivers 1.4.2.10 - any effect.

Dude, I have a MSI and it works, but not on Belkin. Use Anycom drivers and edit it like Phantasm said. For link to the driver, search this forum. My MSI's dongle works fine now, finds the phone, transfers files, ...

blueflame · 10-14-2003, 10:27

Thanks Phantasm. On Windows XP, the Belkin drivers able to pair up my Microsoft BT adapter to my Microsoft BT mouse, SE T610 and HP 2210.

But one question though... are you still able to customize your BT mouse's thumb buttons and also the accelerated scrolling? Mine switched back to the default Forward and Back. I know this may sound quite petty when other people are having difficulty getting their BT to work. But I will appreciate it if you could look into this when you have the time. Thanks.

10-07-2003, 18:36	#1 (permalink)
Phantasm4489 Freak Poster Join Date: Oct 2003 Posts: 108 Member: 40901 Status: Offline Thanks Meter: 2	1.4.2.10 Hack The security seems to have been modified in the 1.4.2.10 drivers, btsec.dll doesnt seem to be used anymore and the security is present in these 3 files BTTray.exe (typically in c:\program files\widcomm) BTStackServer.exe (lives in the same directory as BTTray.exe) WBTAPI.DLL (lives in c:\windows\system32 or c:\winnt\system32) To hack the 1.4.2.10 widcomm drivers search for this hex string 83 C4 04 85 F6 0F 85 07 01 00 00 and if X is the address at which the first byte of this string resides then edit the following locations: X+5, Old value = 0F 85 07 01 00 00, new value = 90 90 90 90 90 90 X+29, Old value = 0F 85 EF 00 00 00, new value = 90 90 90 90 90 90 X+48, Old Value = 0F 84 Dc 00 00 00, new value = 90 90 90 90 90 90 make the same changes to all 3 files. When I tried this I was able to get the drivers to start up successfully, but I cant fully test them as the only BT hardware I have is the MS keyboard and mouse, and it seems like they might have broken the HID service in this version of the drivers (or maybe its the crack but I dont think so). Thanks should go to the person who created the 1.4.1 crack, as this one is mostly based on that.

10-08-2003, 18:23	#4 (permalink)
gorgoroth Junior Member Join Date: Sep 2003 Posts: 5 Member: 39992 Status: Offline Thanks Meter: 0	I have the same problem. The detection is not working. Maybe we can edit the bluetooth database manualy, but i cannot find where it is. This is a problem when the device cannot initiate the connection (like a headset) btrez.dll in system32 folder is the file involved, but I couldn't find the hex squence Last edited by gorgoroth; 10-08-2003 at 22:12.

10-13-2003, 21:17	#13 (permalink)
Phantasm4489 Freak Poster Join Date: Oct 2003 Posts: 108 Member: 40901 Status: Offline Thanks Meter: 2	please be more specific as to exactly how it isnt working. Is it the bluetooth dongle that it doesnt recognise or are we talking about it not being able to discover your bluetooth devices? What happens if you try to discover the other way around? Last edited by Phantasm4489; 10-14-2003 at 08:39.

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
TDK 1.4.2.10 link	morpheus80	Bluetooth-Software	2	12-02-2003 17:46
Weired Problem w/ 1.4.2.10 Cracking...	i386	Bluetooth-Software	0	11-09-2003 07:07
Help 1.4.2.10 SP5 for CF Bluetooth	Starrr	Bluetooth-Software	7	11-07-2003 08:23
Files from phone 2 pc in 1.4.2.10	Phatbloke	Bluetooth-Software	0	11-07-2003 02:27

10-07-2003, 18:55	#2 (permalink)
zfrank Administrator Join Date: May 1999 Location: 123 Age: 53 Posts: 4,243 Member: 3 Status: Offline Sonork: [email protected] pm or email Thanks Meter: 1,538	cool thx for sharing this info

10-08-2003, 14:10	#3 (permalink)
martroy Junior Member Join Date: Oct 2003 Posts: 2 Member: 41137 Status: Offline Thanks Meter: 0	Thanks Phantasm4489! I tried it last night and no luck with my Belkin dongle. It fixes the license issue but now, when I try to Find Bluetooth Devices from My Bluetooth Places, I get the following error message "No local Bluetooth device was detected". The dongle seems to be recognized since the tray icon changes from red to white when I plug it. I can also see the device properties from the Hardware tab in the Advanced configuration. I'm able to discover/pair from my phone but not the other way around... Anybody has the same problem? Martin

10-09-2003, 08:45	#5 (permalink)
MaikS Junior Member Join Date: Jul 2003 Posts: 5 Member: 35736 Status: Offline Thanks Meter: 0	I have the same problem Maik

10-12-2003, 01:48	#6 (permalink)
Phantasm4489 Freak Poster Join Date: Oct 2003 Posts: 108 Member: 40901 Status: Offline Thanks Meter: 2	Sorry for the false start guys, but i am pretty sure ive got this working now. Ignore the changes above and make these changes to the same three files instead: search for 83C40885F60f85ef000000 and replace 0f85ef000000 in the sequence with 909090909090 search for 8bf083c4083bf7750e3bef750a and replace 750e with 9090 and 750a with 9090 Using this crack ive managed to get my new phone and my microsoft bluetooth mouse work quite nicely with the microsoft dongle. I used the belkin drivers, but it should work for others too.

10-12-2003, 15:45	#7 (permalink)
bluetoothmaster Junior Member Join Date: Jul 2003 Posts: 9 Member: 35694 Status: Offline Thanks Meter: 0	@Phantasm4489 good work it´s working perfect again new work for widcomm with 1.4.2.x-version btsec.dll is more secure, but widcomm forget secure also all exe btw, not working with evox 1.4.2.10, there are some more changes.., with belkin no problem ;

10-12-2003, 16:29	#8 (permalink)
gorgoroth Junior Member Join Date: Sep 2003 Posts: 5 Member: 39992 Status: Offline Thanks Meter: 0	Thanks Phantasm, This is working perfectly on berklin drivers and Dlink DBT120. At last, after 2 month, I can use my bluetooth adapter on my Windows 2003 computer. It's funny we still need to crack something that should be available with any adapter...

10-12-2003, 23:15	#9 (permalink)
Phantasm4489 Freak Poster Join Date: Oct 2003 Posts: 108 Member: 40901 Status: Offline Thanks Meter: 2	So what was the problem with the EvoX drivers, you couldnt find the hex bytes? or just not working after changing those bytes? In what way was it not working?

10-13-2003, 07:37	#10 (permalink)
bluetoothmaster Junior Member Join Date: Jul 2003 Posts: 9 Member: 35694 Status: Offline Thanks Meter: 0	I looked today again. Only small changes in epox in second hex-strings 3 bytes are different 8BF083C40C3BF5750E3BFD750A maybe someone can test epox-software http://www.epox.de/dl/techsupp/BTW_1_4_2_10.zip

10-13-2003, 21:00	#12 (permalink)
Garry_Whole Junior Member Join Date: Oct 2003 Location: Russia, Moskow Age: 61 Posts: 6 Member: 41545 Status: Offline Thanks Meter: 0	Unfortunately MSI USB Dongle does not work, does not see other devices. I tried different versions of drivers 1.4.2.10 - any effect. Phantasm4489 has described hack for the version of drivers SP3, but Quank speaks about version SP4 where there is other line about which speaks Bluetoothmaster. As a result of it turns out nothing. Can be eat other variant with version SP4?

10-14-2003, 10:27	#15 (permalink)
blueflame Junior Member Join Date: Oct 2003 Posts: 1 Member: 41568 Status: Offline Thanks Meter: 0	Thanks Phantasm. On Windows XP, the Belkin drivers able to pair up my Microsoft BT adapter to my Microsoft BT mouse, SE T610 and HP 2210. But one question though... are you still able to customize your BT mouse's thumb buttons and also the accelerated scrolling? Mine switched back to the default Forward and Back. I know this may sound quite petty when other people are having difficulty getting their BT to work. But I will appreciate it if you could look into this when you have the time. Thanks.