Hello everyone.

I know you probably had tonnes of request about that but I have to ask.

I was giving 2 ROM102 cards that were looped. (seems to)

I get a No ATR with them.

I was wondering if youguys could get me on right track to "unloop" (let's hop god answers by prayers) or at least try to unloop those cards.

Thanks a lot for covering the subject once more with me !

Cmdr-Franck

no such thing out to unloop.....sorrymaybe later down the road someone may finger something out

no such thing out to unloop.....sorrymaybe later down the road someone may finger something out

Ok then other question.

What exactly is a loop ? From what I understand it's write on the card that actually makes it timout for ever (stream loop) ?! Right ? Wrong ?

What is different from a stream loop and a soft loop (during glitching) ?

I'm trying to compile info on that, I just might get into wasting time to try a few things on my own actually with a friend or two.

Stream Looped Is A Ecm And Turns Ur Card Into A Ice Scraper (no Atr) Softloop Is Programming Error Due To Program AKA NAGRAMASTER, Pc Or User Error But U Still Get A Atr But Card Is Locked Can Be Regliched AND REUSED SOMETIMES

TRY FTAPIRATESUNLOCKER 1.0.0 it has saved a few soft looped glitch loop (another rare type of loop).
DVD...


can't seem to find this file.

Ok so soft loop is bad but not that bad, with some unlooping script and countless hours you could pop them up open again.

My question was more related to stream loop.
How can you detect an ECM ?
As an ECM been logged yet ? (data logger)
What does the ECM do to the card ?
Does a write with too much juice and burns the chip ?
Does it modify a specific address that makes the card un readable ?

I know I'm getting technical, but I'm a technical kind of guy that wants to understand exactly what i going on.

Stream Looped Is A Ecm And Turns Ur Card Into A Ice Scraper (no Atr) Softloop Is Programming Error Due To Program AKA NAGRAMASTER, Pc Or User Error But U Still Get A Atr But Card Is Locked Can Be Regliched AND REUSED SOMETIMES

My question was more related to stream loop.
How can you detect an ECM ?
As an ECM been logged yet ? (data logger)
What does the ECM do to the card ?
Does a write with too much juice and burns the chip ?
Does it modify a specific address that makes the card un readable ?



Yes, ECMs have been logged, it is known exactly what happens to a stream looped card. If certain things are found on the card, which is actually a processor chip, with RAM, ROM, and eeprom areas, they can cause things to be written in the OTP area that render the card unable to send an ATR, or reset. OTP= one time program, once set it's set......ain't no undoing it.

Yes, ECMs have been logged, it is known exactly what happens to a stream looped card. If certain things are found on the card, which is actually a processor chip, with RAM, ROM, and eeprom areas, they can cause things to be written in the OTP area that render the card unable to send an ATR, or reset. OTP= one time program, once set it's set......ain't no undoing it.

Thanks for the info.

I suppose that the info written is in another memory segment that the one registered in EEPROM ?

From what I know about memory, the only way would be to physically modifiy the write path to that specific memory register ?!

So my real interogation here would be, the OTP write does it actually modify physically the card. Like a power surge on a specific address that disable the circuit . ?

Or is it just a normal write on some sort of protected area ?

Thanks for the info.

I suppose that the info written is in another memory segment that the one registered in EEPROM ?

From what I know about memory, the only way would be to physically modifiy the write path to that specific memory register ?!

So my real interogation here would be, the OTP write does it actually modify physically the card. Like a power surge on a specific address that disable the circuit . ?

Or is it just a normal write on some sort of protected area ?

A normal write to the OTP would physically modify the card. It sets bits that cannot be reset.

A normal write to the OTP would physically modify the card. It sets bits that cannot be reset.


Ok so I misfomulated was I was triying to say.

This OTP memory, I agrre we cannot reset is via a normal bin write since we cannot get access to card.

In theory could (COULD is conditionnal) a direct electric "short" reset that OTP ? Magentic field ?

Thanks for your anwser. Is there a ROM102 shcema available somewhere ? I am very interested in studying it.

Okay maybe a schema is a bit much to ask, let's go for something else.

Does someone knows which type of OTP memeory is used ?

The OTP bits are fuse protected, once set the fuse blows, and that's the end of that.

That is not to say it can't be modified, for example if a number was 00 and it gets set to 03, or in binary 0000 0011, the 1s are ones forever, but we can make the other bits 1s too, to change the number. Like to 27, or 0010 0111. But if a number was set to FF, that's 1111 1111, that's the end of that.

Fuse protected .. darn they are quite clever, I would have no thought about that.

I suppose that the "fuse settings" on an atmega 128 works in the same way. Emulating a blown fused or memory access configuration ?!

Still, I am wondering what kind/type of OTP they are using. ( I know I'm persistent but like I say : true knowledge comes at the price of time and devotion.)

The OTP bits are fuse protected, once set the fuse blows, and that's the end of that.

That is not to say it can't be modified, for example if a number was 00 and it gets set to 03, or in binary 0000 0011, the 1s are ones forever, but we can make the other bits 1s too, to change the number. Like to 27, or 0010 0111. But if a number was set to FF, that's 1111 1111, that's the end of that.