Using Xploder Parental GameLock as alternative to FreeMcBoot

**mark_k** · 01-14-2011,09:13 AM

Hi,

Out of curiosity, I bought an Xploder Parental GameLock recently. (It's currently GBP 1.99 at play.com.)

The PGL consists of PS2 software/installer CD and two memory card slot locks (for fat & slim PS2s). The original idea is that the parent runs the installer which installs the GameLock program to a memory card. With the memory card is locked in place, the child can only play those games which the parent has allowed.

So, the Parental GameLock probably uses the same memory card exploit as Free McBoot in order to run its code.

The osdmain.elf file the PGL installer puts in BEEXEC-SYSTEM on the memory card loads and runs BOOT.ELF from that directory.

If you delete the PGL BOOT.ELF (and its data files to free up space), you can replace it with any ELF file of your choice. For example, I put Open PS2 Loader there and it launches straight from power on -- no waiting for the FMCB splash screen to go away.

The only additional space used by that method is about 75KB for the PGL osdmain.elf.

I put uLaunchELF and PS2ESDL on the memory card, and set OPL to exit to uLaunchELF. So now I boot straight into OPL, but can exit to uLE and run PS2ESDL if needed.

**TnA** · 01-15-2011,10:56 AM

Originally Posted by mark_k

Hi,

Out of curiosity, I bought an Xploder Parental GameLock recently. (It's currently GBP 1.99 at play.com.)

The PGL consists of PS2 software/installer CD and two memory card slot locks (for fat & slim PS2s). The original idea is that the parent runs the installer which installs the GameLock program to a memory card. With the memory card is locked in place, the child can only play those games which the parent has allowed.

So, the Parental GameLock probably uses the same memory card exploit as Free McBoot in order to run its code.

The osdmain.elf file the PGL installer puts in BEEXEC-SYSTEM on the memory card loads and runs BOOT.ELF from that directory.

If you delete the PGL BOOT.ELF (and its data files to free up space), you can replace it with any ELF file of your choice. For example, I put Open PS2 Loader there and it launches straight from power on -- no waiting for the FMCB splash screen to go away.

The only additional space used by that method is about 75KB for the PGL osdmain.elf.

I put uLaunchELF and PS2ESDL on the memory card, and set OPL to exit to uLaunchELF. So now I boot straight into OPL, but can exit to uLE and run PS2ESDL if needed.

Hey, they broke the FMCB-Licence.

Anyway,... Since they probably used the code from FMCB and FMCB 1.8's code isn't open, it is probably also missing the complete system-initialisation and thus is no alternative to FMCB (for example games might start with the wrong language...).

Another thing,... Where do you have to 'wait', while the FMCB-Logo is shown?
Have you ever measured the time/difference?

Other than that,... If you want to start an ELF from MC, FMCB's MC-KELF/osdmain.elf alone is also capable of doing it and also is only 75KB in size.

Nevertheless, it would be interesting to take a look at this 'product'.
Can you make an ISO out of this disc (PM please)?

**mark_k** · 01-15-2011,11:36 AM

Originally Posted by TnA

Hey, they broke the FMCB-Licence.

Are you sure? When did FMCB first come out? The Parental GameLock was introduced in December 2006 (apparently). The press release about it on the Xploder site is dated 10 Nov 2006.

[quote=TnA;681896]Another thing,... Where do you have to 'wait', while the FMCB-Logo is shown?
Have you ever measured the time/difference?[quote]

Not yet, but the FMCB logo appears for several seconds every time you power on. Or is that only if you enable the OSDSYS hack?

**TnA** · 01-15-2011,12:08 PM

Originally Posted by mark_k

Are you sure? When did FMCB first come out?

May/June 2008, back then under the name 'FreeOSDatel Boot'/'FreeVast Project'.

The Parental GameLock was introduced in December 2006 (apparently). The press release about it on the Xploder site is dated 10 Nov 2006.

Interesting!
Means, it is using custom code and they released something based on Sonys OSDSYS-Update, even before Memor32 hit the shelfs.

Originally Posted by TnA

Another thing,... Where do you have to 'wait', while the FMCB-Logo is shown?
Have you ever measured the time/difference?

Not yet, but the FMCB logo appears for several seconds every time you power on. Or is that only if you enable the OSDSYS hack?

Actually, it only shows the FMCB-Logo while it initializes the system; checks for an inserted disc and the disc-type; and when it patches the OSDSYS (loading OSDSYS to ram, patching, executing,...).

So,... Yes, every single activated function adds a bit to the delay, even thought it might be micro-seconds only.

**SkyNet** · 08-24-2012,03:55 AM

Interesting idea from Xploder. So they new how to do it in 2006y ? Amazing....

But the most interesting question is:

Can it work on SCPH- 90000 models ? Can some-one make tests? If it can work on SCPH- 90000 models--then it is possible to further evolve and develop FMCB....
So probably one day we will see , lets say version 1.9 or even 2.0 of FMCB ? How is that sound?

**mark_k** · 08-24-2012,09:02 AM

My guess is that Sony completely removed support for memory card booting in the last SCPH-9000x firmware version, so the Xploder PGL won't work on those consoles. But I don't have one to test.

Unless someone finds a buffer overflow vulnerability in the final SCPH-9000x ROM code, there's probably no chance of memory card booting on those consoles. (After all these years, I'd assume people have looked at the PS2 ROM code to try to find things like that.)

**spud42** · 08-24-2012,09:27 AM

Originally Posted by SkyNet

Interesting idea from Xploder. So they new how to do it in 2006y ? Amazing....

But the most interesting question is:

Can it work on SCPH- 90000 models ? Can some-one make tests? If it can work on SCPH- 90000 models--then it is possible to further evolve and develop FMCB....
So probably one day we will see , lets say version 1.9 or even 2.0 of FMCB ? How is that sound?

trusty ebay......lol

Nbg Edv Handels & Verlags Xploder Parental GameLock ... | eBay

**RandQalan** · 08-24-2012,09:33 AM

What is even better people is this is not what you think it is

Amazon.com: Xploder Ps2 Parental Game Lock: Video Games

**NeverGoingBack** · 08-26-2012,06:24 AM

I want to check this out

so let me get this straight real quick. we are seeing a type of FMCB on a "pressed disc"?

Also on another note to the original poster. by anychance how were u able to erase and replace the data on the memory card? I can only guess maybe by using fmcb and ulaunchelf to view and edit the files, or does the ability come from the pgl program?

**spud42** · 08-29-2012,05:43 AM

If you delete the PGL BOOT.ELF (and its data files to free up space), you can replace it with any ELF file of your choice. For example, I put Open PS2 Loader there and it launches straight from power on

from original post .......

so he probably replaced their boot.elf with uLE????

so let me get this straight real quick. we are seeing a type of FMCB on a "pressed disc"?

but this was released 2 years before the first FMCB

User Tag List

Thread: Using Xploder Parental GameLock as alternative to FreeMcBoot

Tweet

LinkBack

Thread Tools

Display


	Would you like to get all the new info from PSX-Scene in your email each day? Subscribe to our Daily Digest! Want to learn more about the team keeping you up to date with the latest scene news? Read about them now! Check out our Developer bios, too!