Hi,

I am trying to extract the KI on a T-Mobile sim card, it has been running for 3 hours, i've seen elsewhere that others have retreived their ki in 40 minutes, how long can it take? When I use the woron Scan I get collision errors and it stops at about 60000 tries, I am currently using Sim Scan v2.01 and so far its at 93000.

The Ki currently shows:

ki = (00) (00) (00) 00 00 00 00 00 (00) (00) (00) 00 00 00 00 00


What does Brackets Mean around the zeros e.g .. (00) they appear every now and again

This is my 1st attempt at sim cloning....if it doesn't show :)

Im assuming then your card is comp128-v2 :) so you probably wont be able to get the KI off it

Are the (00)s the tell tale sign or if my card was a comp128 v1 would I have got the KI by now???

when i scan my cord i got the following ki key
can someone please tell me is this is the right key or no



Simulator is ready
07:01:30
Starting 2R attack on 0 pair....
Found 2R attack collisions:used 20240 steps
07:01:37
Found by 2R attack the 0 pair=0000
07:01:37
Calculating data for 3R attack....
07:01:37
Found data: common=25 first=00BD second=1019
Finding 3R attack collision...
07:01:38
3R attack collisions found...used 488 steps
3R attack 2 possible pairs found
Possible Pair 0000
Possible Pair 6500
07:01:38
Found by 3R attack the 4 pair=0000
07:01:38
Calculating data for 4R attack....
07:01:38
Found data: common=17 first=022B second=87CD third=5600
Finding 4R attack collision...
Used 150 steps for 4R attack
07:01:39
4R attack 8 collisions found...
07:01:39
final calculating pairs by 4R attack...
0000 001C
Found by 4R attack 2 pair=0000
07:01:39
07:01:39
Calculating data for 3R attack....
07:01:39
Found data: common=25 first=00BD second=1019
Finding 3R attack collision...
07:01:39
3R attack collisions found...used 488 steps
3R attack 2 possible pairs found
Possible Pair 0000
Possible Pair 6500
07:01:39
Found by 3R attack the 6 pair=0000
07:01:39
Calculating data for 5R attack....
07:01:40
Found data: common=274 first=004E second=5DDC third=1100 forth=8800
Finding 5R attack collision...
Used 460 steps for 5R attack
07:01:40
5R attack 8 collisions found...
07:01:40
final calculating pair by 5R attack...
0000 0001 FFE3 0007
00B2 0001 FFE3 0007
07:01:40
5R calc. time 0.672
Found by 5R attack 1 pair=0000
07:01:40
Calculating data for 3R attack....
07:01:41
Found data: common=25 first=00BD second=1019
Finding 3R attack collision...
07:01:41
3R attack collisions found...used 488 steps
3R attack 2 possible pairs found
Possible Pair 0000
Possible Pair 6500
07:01:41
Found by 3R attack the 5 pair=0000
07:01:41
Calculating data for 4R attack....
07:01:42
Found data: common=17 first=022B second=87CD third=5600
Finding 4R attack collision...
Used 150 steps for 4R attack
07:01:42
4R attack 8 collisions found...
07:01:42
final calculating pairs by 4R attack...
0000 001C
Found by 4R attack 3 pair=0000
07:01:42
Finding last pair by brute force...
07:01:42
Found by brute force the 7 pair=0000

KI : 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

is ki key is right or there is some problem

Hi,

I am trying to extract the KI on a T-Mobile sim card, it has been running for 3 hours, i've seen elsewhere that others have retreived their ki in 40 minutes, how long can it take? When I use the woron Scan I get collision errors and it stops at about 60000 tries, I am currently using Sim Scan v2.01 and so far its at 93000.

The Ki currently shows:

ki = (00) (00) (00) 00 00 00 00 00 (00) (00) (00) 00 00 00 00 00


What does Brackets Mean around the zeros e.g .. (00) they appear every now and again

This is my 1st attempt at sim cloning....if it doesn't show :)


this is that when card is V2 or V3

when i scan my cord i got the following ki key
KI : 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

is ki key is right or there is some problem

A little reminder: NEVER EVER post your Ki key. The only reason I didn't delete this is because it is very unlikely that this is the correct key.
In any case: DO NOT post your IMSI and ICCID too. ;)

Are you sure the SIM card you scanned was ACTIVE? The Super SIM method only works with ACTIVE SIM cards, some people still don't seem to realize that.

yes the sim card is active and i am using this sim card
another think i want to know when i read the data from my card with Woron_Scan from task it reads IMSI And ICCID properly but when i try to read the KI key it gives me error so i just selected A38 Simulator from Card Reader option from tht software and it had shown me the key within 30 second
is this method reads the right key or there is something wrong

how many "gsm algorithm steps" woron scan can count?

i'm on step 51043 (started almost 2 hours ago) and still going ...

should i quit woron scan because it will never find out the ki of my sim?

-------------------------------------------------

19:48:01
Starting 2R attack on 0 pair....
No 2R attack collision found....
21:10:17
Starting 2R attack on 4 pair....

I'm trying to extract a V1 SIM and it always stops after extracting pair 0 and pair 4. Does anyone know this?

To ALL having problems with extracting Ki.

Mention in your post what reader you use! what software you use!
Nobody can solve your problems if this is unknown.
Important is that VCP is active when using woron scan and that your reader support phoenix mode.

If you are not sure what type of sim you have. GO to you local GSM dealer or provider and ask them to put the sim in their reader to know what version you have. They are able to see through software from the provider. Phase 1, 2 or 3 is possible. You should have Phase 1.

Thank you.

I'm using a USB Infinity Unlimited in VCP mode with Woron Scan.
It always stops always after 00512 algorithm steps just showing pair 0 and pair 4.
I got an newly programmed (old) card (I guess around 1998/98) from my provider this week. They told me it is a V1.

So if anyone could help me out with this issue.. I would be thankful.

Regards, Situ

Not all V1 sim are comp128. Please be aware of that. Looking from the date, it should be comp128. Go over each step of the manual and perfom them at the same time. If you forget one small step, it could fail. Check com port, check mhz, ....they should be the same for all programs used.

Report back how it goes, but am sure that some setting is wrong Situ. If still no succes, try to get another one and try it. Don't forget that the card must be activated by your provider before you can scan.

Thank you. What exactly are the settings? It's strange, i extracted a key with my Infinity USB Unlimited using a Notebook the other day. Now, I'm on a Desktop and it just stops after 512 tries. My V1 is 9901 (YYMM). It should be a V1. Should I try MagicSIM?

Thank you. What exactly are the settings? It's strange, i extracted a key with my Infinity USB Unlimited using a Notebook the other day. Now, I'm on a Desktop and it just stops after 512 tries. My V1 is 9901 (YYMM). It should be a V1. Should I try MagicSIM?

http://www.dvdtoiphone.com/iphone-super-sim-unlock-guide.html
Go through this guide step by step. If your notebook works, it should work on desktop to. The settings are in this guide. Simscan does the same as woronscan. Give it a try if still problem ;)

It wasnt my notebook and it was another sim. I now installed on e newly setup HP Notebook and got the same result. It stops after 512 tries and has found two key pairs. If I restart it, it stops again at the same place... What driver should I use with magicsim? Infinity in Virtual COMPORT mode?

It wasnt my notebook and it was another sim. I now installed on e newly setup HP Notebook and got the same result. It stops after 512 tries and has found two key pairs. If I restart it, it stops again at the same place... What driver should I use with magicsim? Infinity in Virtual COMPORT mode?

Have you read the manual Situ? All is explained in there. Virtual com port must be enabled for woronscan or simscan. Drivers for infinity USB unlimited must also be installed correctly. In the manual you find the latest driver.

schalkse
I have read it. VCP is running, I can read ICCID, IMSI, etc. But as it goes to extract the key, it just stops after finding 4 key pairs in WoronScan after running for 3 minutes. In MagicSim it is now running around 3000 but still has nothing found. It's strange, that WoronScan finds the 4 key pars so quickly, isn't it?

schalkse
I have read it. VCP is running, I can read ICCID, IMSI, etc. But as it goes to extract the key, it just stops after finding 4 key pairs in WoronScan after running for 3 minutes. In MagicSim it is now running around 3000 but still has nothing found. It's strange, that WoronScan finds the 4 key pars so quickly, isn't it?

Strange indeed!
You 100% sure it's a V1 sim? Am starting to think it's not.

Schalkse. Guess what. I restarted MagicSim for the 4th time now and it extracted the ki within 20 minutes - and what's strange - the previous found pairs where different. But the most important thing: I CLONED THIS SIM AND IT'S WORKING!
Thanks for all your help!

Schalkse. Guess what. I restarted MagicSim for the 4th time now and it extracted the ki within 20 minutes - and what's strange - the previous found pairs where different. But the most important thing: I CLONED THIS SIM AND IT'S WORKING!
Thanks for all your help!

Ok, Good luck with the iPhone, it was worth the wait, not? ;)

It shure was. I now already was able to make 3 different SIM-Cards. Getting fast at it. Thanks for your help - and - YEAH, it was worth the wait!

[QUOTE=teamare2006;14613]when i scan my cord i got the following ki key
can someone please tell me is this is the right key or no



Dear,
Sorry, After A year ago u drop this problem.I saw this today.
U R Trying Wrong way,using Simulator,this is an example for scan sim in Woron.
U have to connect ur reader, if that is phonix or pc sc device.aftter settingup hardware u may then scan ur card.it takes 1 to 48 hours.:D