Just like the first hardware unlock, it is now possible to downgrade to bootloader 3.9 and unlock.


First of all, HUGE thanks to TA_Mobile and IMTH for getting us the secpack from 1.1.3 Also, thanks to psp_sully for giving me a 1.1.2 OTB phone to play with. Without them there would be no unlock, and no blog post.
YOU VERY WELL MAY BRICK YOUR PHONE WITH THIS. Be careful. I have done it sucessfully on two phones, and have never bricked an iPhone in my life.
So lets get down to business. It is a hardware method to downgrade the bootloader, and I am assuming you are familiar with the old hardware method, so I won't repeat steps. You need to have a 1.1.2 4.6 phone for this to work. If you upgraded to 1.1.3, have fun waiting for 1.1.4!

http://iphonejtag.blogspot.com/2008/01/112-otb-unlocked.html


EDIT: FAQ

o Do you have a link to the 3.9 NOR dump?
Yep. Here. (http://therepository.binarytide.com/nor3.9.rar) This is first 0x20000 bytes of the old nor dump. So you don't need to do any hex editing.

o Where can I get the rest of the files?
They are linked in geo's blog post.

o Was the secpack for 1.1.3 extracted?
Yep.

o Is this a software method?
No. This method is a hardware-based unlock that requires you to open the iPhone. If you are a n00b, then don't do it.

o Got a tutorial?
You bet. (http://iphone.unlock.no/bootloader_downgrade.htm)

o Is there a software-only method?
No. For now. Stop asking for it on this thread, it will be out when it is out.

o What does this news mean to owners of 3.9BL iPhones?
It means good stuff. Now that we have the 113 secpack, any accidental update to 113 can be completely reversed.

o Who did it?
The usual suspects; gray, dinopio, ta_mobile, imth, geo, psp_sully, devteam, and probably others.


http://farm3.static.flickr.com/2370/2166390736_bef338d14c_o.gif FINAL WORDS OF CAUTION http://farm3.static.flickr.com/2370/2166390736_bef338d14c_o.gif
There is a high probability in bricking/scratching/damaging/ruining your $400+ iPhone if you don't know what you are doing.

People are reporting success using this method, but there are not a few reports of losing Wifi during the downgrade. Make sure you INSTALL A TERMINAL ON THE IPHONE BEFORE YOU START in case something goes wrong.

Whatever problems you run into during the bootloader downgrade process NEVER EVER RESTORE/UPGRADE TO 1.1.3 IF YOU ARE STILL RUNNING ON THE 4.6 BOOTLOADER.

Just a quick question, does this method involve physically disassembling the phone? I'm asking because it is a hardware method.

@duyvan82: yes you have to disassemble and solder.

French traduction for one who wants!


http://www.neurocratie.fr/index.php?cat=&scat=&art=67

Where can we get the instructions of the first harware unlock?

It's not on GEOHOTS blog?

Thanks

Yeah it is on his blog, look at the December 2007 area about 1/4 the way down are the instructions for the hardware part.

From what I understand a software unlock should be out fairly soon as the method posted by GeoHot downgrades the bl to 3.9. So AnySim should work when modified to have the new secpack and be able to downgrade the bl.

The bad news is to upgrade to 1.1.3 we have to wait till 1.1.4 to be released to get the secpack.. which may take few months.

since u downgraded to 3.9 then u'll be able to update to 1.1.3 normally and no need to wait for 1.1.4 secpack

From what I understand a software unlock should be out fairly soon as the method posted by GeoHot downgrades the bl to 3.9. So AnySim should work when modified to have the new secpack and be able to downgrade the bl.

The bad news is to upgrade to 1.1.3 we have to wait till 1.1.4 to be released to get the secpack.. which may take few months.

No. you don't. The trick is to downgrade the bootloader BEFORE upgrading to 1.1.3. This "waiting" for 1.1.4 is only valid for those who have bootloader 4.6 AND 1.1.3.


So once again let me remind everyone here specially those with OTB 1.1.2 iPhones to NOT UPGRADE TO 1.1.3 until you have downgraded your bootloader.


EDIT: beaten by tatesman.

The bad news is to upgrade to 1.1.3 we have to wait till 1.1.4 to be released to get the secpack.. which may take few months.

Maybe not. With a 3.9 bootloader, you should be able to modify the 1.1.3 baseband with a 1.1.3 secpack to unlock it. You need to downgrade the bootloader on OTB 1.1.2 FIRST or you will have to wait for 1.1.4. Remember, bootloader 4.06 will only allow a baseband erase with a secpack from a newer firmware. Correct me if I'm wrong, but that is my understanding with all the info I read about 3.9bl and 4.06bl

@leximus
mate read carrefully, this method downgrade the bl from 4.6 to 3.9.
after that you can do all that you want with the old tools...

And what the point? Old tools? And what? hxxp://steve-jobs.com/iphone/iphone-hardware-unlock-easier-method.html read this and tell me - what old tools needed? I didn't find any old tools? Just a dump of loader and rewrite several bytes with sim validation. And this definitely do not need any old tools. And as you see it is [26 august].

Event if it goes down to 3.9 why you need this? This tutorial shows that you do not need it at all.... So this news is not actual.

And one more note: be careful when opening main part of iPhone back (gray one) you can damage ##00 phillips stuff. (unfortunately I did one)


Correcting my self: didn't notices in this method - this is for 1.0.2 FW,

So my excuse for that!

Greek Translation: http://www.y3k.gr/2008/01/iphone-112-otb-unlock_18.html

Thank you guys!

Some guys should read, read, read, read this forum and other forums an hopefully they won´t talking so much BS anymore... ;)

And btw. AnySim won´t work with the new found secpack as you do not need baseband 4.02.13 which was shipped with 1.1.2OTB but you need baseband 4.03.13 included in firmware 1.1.3 to be patched. So first you need FLS file from 4.03.13 to unlock 1.1.2OTB!!!
If you updated a 4.6 bootload incidentally you need to wait for firmware 1.1.4 with secpack from hopefully with new baseband than.

To get NOR, find it by googleing or find a friend with old bootloader 3.9 and make a nor dump by yourself!


..may 50 cent to that

Some guys should read, read, read, read this forum and other forums an hopefully they won´t talking so much BS anymore... ;)

And btw. AnySim won´t work with the new found secpack as you do not need baseband 4.02.13 which was shipped with 1.1.2OTB but you need baseband 4.03.13 included in firmware 1.1.3 to be patched. So first you need FLS file from 4.03.13 to unlock 1.1.2OTB!!!
If you updated a 4.6 bootload incidentally you need to wait for firmware 1.1.4 with secpack from hopefully with new baseband than.


i guess this goes on me... did you actualy LOOK at anysim source and what is shiped with it?

ill give you a hint:

http://devteam-anysim.googlecode.com/svn/trunk/anysim-devteam/anySIM.app/

(if you go 1 folder up you have whole source)

what anysim does is writes only PATCH (not whole baseband) at certain address in CURRENT baseband. To write this patch on 4.6 you need higher version of secpack then current baseband, how files are named is irrelevant, what matters is what BL gets and if it accepts it or not... i read about they added some additional check at bootup so this might break at boot, but it should work in theory....

http://**********.com/files/84724249/BOOT03.09_M3S2.rar.html

here you can grab the bootloader 3.09

ok someone with to many 1.1.2 OOBs try this (THIS MAY BRICK YOUR PHONE):

jailbreak etc etc

install anysim 1.2.1u, inside you will find 04.02.13 secpack and REPLACE it with the one from gorgehotz package (04.03.13 version) keep name from anysim ofc. Then run anysim in airplane mode and post results :)

edit: this MIGHT be easy way for software unlock

I will do it as I have many iphones in stock.
Tell me in detail and all software needed to do this? I will try it!!!!!!!

i guess this goes on me... did you actualy LOOK at anysim source and what is shiped with it?


it wasn´t against you as you give tips based on some things and might work...
but here are so many people posting before really reading about their problems but writing really BS instead!!

ps.:
anysim makes a nor dump erases whole baseband and replace it with patched nor...
with bl4.6 you aren´t able to make a nor dump so you have to use ready *.fls in this case it would better to put patched 4.03.13 fls because it will be able to run under 1.1.3 too!

Meanwhile this hardware unlock stuff is not for n00bs, it can't get more simpler...wait some more time for a software unlock.

is this the file i need for step 3?

http://www.unlockthatiphone.com/BOOT03.09_M3S2.fls

ya i would like to now to if this is the file could someone with more experience confirm this?

Your are awesome guys!

I'll post my results soon. :)


EDIT: Works great!

Flawless victory! Cheers..

If someone can get all the links for necessary files, I will add them to my original post.

I also think it will be tremendly usefull to have a super detailed tutorial for noobs.
An step by step with the links of all the soft, minimizing errors due to bad googleing, or file mistaking.

Also a better image of the hardware maybe the action required, or the soldering done?


thank you guys!

i guess this goes on me... did you actualy LOOK at anysim source and what is shiped with it?

ill give you a hint:

http://devteam-anysim.googlecode.com/svn/trunk/anysim-devteam/anySIM.app/

(if you go 1 folder up you have whole source)

what anysim does is writes only PATCH (not whole baseband) at certain address in CURRENT baseband. To write this patch on 4.6 you need higher version of secpack then current baseband, how files are named is irrelevant, what matters is what BL gets and if it accepts it or not... i read about they added some additional check at bootup so this might break at boot, but it should work in theory....

i too thought this would work, but it won't as the anysim variants 1.1, 1.2u etc.. are made for bl3.9, they patch the baseband using a exploit in 3.9bl which is not there in bl4.6, Hence not only the secpack but also a new version of anysim must be out which patches using new bl4.6 exploits.. and a exploit (http://www.hackint0sh.org/forum/showpost.php?p=131856&postcount=1) has been found. Expect a software unlock very soon..

I was so excited when I saw this thread that I ran over to my drawer and got my Iphone 1.1.2 OTB ready to unlock.

Once I started reading Hardware Disassembly Instructions w/ soldering I almost threw up, NERD Skills are definitely needed for this crap.

I'll wear my dunce hat proudly and wait for software unlock. :p

OMG yay! - Why is this called a hardware unlock .. are we not using software to unlock the phone? .. :)

from what i remember, they already have an exploit in the 4.6 bootloader and were just waiting for the secpack. sooooo hopefully by the end of today we will see a software unlock =)

Some info about how to open and flash the A17 point with 2 needles :cool:

To open the precious:

http://www.ifixit.com/Guide/iPhone/105/

Flash the A17 point:

http://steve-jobs.com/iphone/iphone-hardware-unlock-easier-method.html

http://www.freeiphoneunlock.com/pdf/iphoneunlock.pdf

hope you have all what you want with that...

So, has secpack from 1.1.3 finally been extracted?

Wasn't this step the last one before we see Anysim 1.1.2OTB?

(I base my suppositions on the http://hackint0sh.org/forum/showthread.php?t=23730 thread and the sentence where geohotz sends a thank you to the dev team for handing him the 1.1.3 sec pack)

In other words, is software unlock for 1.1.2OTB a matter of minutes?

So, has secpack from 1.1.3 finally been extracted?

Wasn't this step the last one before we see Anysim 1.1.2OTB?

(I base my suppositions on the http://hackint0sh.org/forum/showthread.php?t=23730 thread and the sentence where geohotz sends a thank you to the dev team for handing him the 1.1.3 sec pack)

In other words, is software unlock for 1.1.2OTB a matter of minutes?

that's what i've been wondering too. hopefully the software unlock solution is posted before the day is done. i don't think i can sleep now! :(

wat the heck? you already made a thread asking that question, and yes it has. however, it is still not 100% guaranteed that we will see a software unlock. although it is very likely

But the reasons why it isn't guaranteed that we will see a software unlock? At this point the dev team doesn't have all that they wanted?

The soldering looks easy enough, but the other stuff is a mystery to me. "Copy all the files to a directory on your phone" How? "Run ienew". How? "Find an old 3.9 nor dump" Where? etc

A guide to opening the iPhone up could be handy too, so we can have the right tools at hand before we start, and to prevent easy mistakes.

Guess I'll hang on for the software unlock.

Good news all the same :)

how do i create a file called "nor" with the first 0x20000 bytes of the old nor dump?

what tool can i use to do this on windows?

But the reasons why it isn't guaranteed that we will see a software unlock? At this point the dev team doesn't have all that they wanted?

I mostly said that as a disclaimer. Nothing can ever really be guaranteed. They found a POSSIBLE exploit in the 4.6 bootloader. In order to use this exploit, they thought they needed the 1.1.3 secpack, which they now have. Now it is all about using the exploit with the secpack, which they never got to try before. So in theory they have everything and the new AnySim will be coming any hour now, BUT, there is always the possibility that the secpack does not utilize the exploit as planned.

Can anyone please create the file 'nor' from step 3 and post it here??

many thanks

Ok i've understand. You have been very clear! Thanks

BUT, there is always the possibility that the secpack does not utilize the exploit as planned.

so if it doesn't utilize the exploit, that means no software unlock? stop scaring me! :(

so if it doesn't utilize the exploit, that means no software unlock? stop scaring me! :(

Probably i think..but this will be the first time i heard about an instrument that it is impossible to hack via software!! (A part consoles)

Can anyone please create the file 'nor' from step 3 and post it here??

many thanks

Yes please. Many people are after this. Including myself.

Anyone?

Everybody calm down , we always see the H/W unlock before the S/W unlock. Its just a matter of time now.

i just don't get it, i think i'll wait.
Damn me and my ignorance!!!
I am but a simple idiot, this is far too complicated for me :(

i just don't get it, i think i'll wait.
Damn me and my ignorance!!!
I am but a simple idiot, this is far too complicated for me :(

i 2nd that.

3rd STEP is not clear to me is there anyone who hav prepared a NOR yet?
can we use the old NORZ?

so if it doesn't utilize the exploit, that means no software unlock? stop scaring me! :(

IF it doesn't, then they will have to look for a new exploit. BUT there is a good chance that it will most likely work. Don't be scared yet...wait for an update.

IF it doesn't, then they will have to look for a new exploit. BUT there is a good chance that it will most likely work. Don't be scared yet...wait for an update.

sounds good. i think i'm going to hit the bed now. it's 7:20am here in nyc. so tired! hopefully i will wake up to some excellent earth-shaking news! :cool:

% 100 working, :D :D :D

Georges blog has a link to a NORDump program. I'm guessing thats what you need to use.

% 100 working, :D :D :D

you tried the HW unlock?

Oh My God

You Made My Day!! :d

HI,

Regarding the tp's, How long do the tps need to connected for ?

i am askin coz then i can make a cable to connect and hold if its for a short white, If long while then solder maybe better,

Thnx in advance

People is there anywhere a step by step of the old method of hardware unlock, since i never did that i need some more instructions on it ?? can anyone help plss ?
and does this really work ??

are you kidding? if the godfather of iphone unlocks tells you that 1.1.2. was cracked, i think its supposed to be working...

wow, amazing news guys!!!

Im looking forward to seeing sw unlock pretty soon!!

It would be great it someone could post the nor file.
Nice job by Dev Team + Imth and Geohot.
Have fun!

If there is someone who would change that bootloader file I would be very happy :P

It would be great it someone could post the nor file.
Nice job by Dev Team + Imth and Geohot.
Have fun!

Me too just need a Correct NOR to attempt it on my phone

The dev team's NORDumper link is broken. Can anyone give us another link please. Thank you!

you will prob need Winhex to change the hex code to those who asked. Google it.

There is one hex editor but the point is what to change

Another thing why cant we use just NEW SECPACK with old ieraser? and without TP?

Because they fixed the sechole which made it availale in 3.9...

OK people the nor file is in the first post. So let me make this clear:
Open the iphone,
Go by geohots steps or first go by http://www.freeiphoneunlock.com/pdf/iphoneunlock.pdf
then do the geohots (even though it sounds stupid, probably just geohots.
If its only by geohots step then:
open the iphone
just copy files,
run the ienew
then make a short circuit on a17
then while holding that run iunew
when its finished just restore to 111 and do the old things?

I hope its only the geohots steps :)

@anarchy

NOR in the first post is already hexedited with first 0x20000 bytes of the old nor dump? like GEO said?

For all who can not get a NOR file by themselves but find a FLS file from 3.9 bootloader, just copy data from Offset 0x10BA0 up to the end of file and fill the rest up to 0x1FFFF with zeros. that´s exact the same as you cut the first 0x20000 from the nor file...

Can anyone give me some tipps for opening my iphone? I'm really struggling to pull the metal plate off. The plastic cover came off easy though.

What's the holdup on simply posting the nor file whoever has it?
It's not like all the other things you're posting are 100% legal.
Just send it to me if you dont want to and I'll post it on fileshare.

Thanks

It should be the new one because I have the other files of the old unlock and its a different size. Locked should know better but I think he wouldnt post it if it wasnt the new one.

here is the pic. In the end it is filled with zeros until 00020000:
http://img214.imageshack.us/img214/5109/69700994mj7.jpg

Big Wow from Germany ;)

so now since they found the secpack from 1.1.3 will the software unlock come out soon for th iphones v1.1.2?

can we use the NOR from:
http://steve-jobs.com/iphone/iphone-hardware-unlock-easier-method.html

there is also a HexEd tool that we could use

!!


Since this Hack it's quite risky ,especially if you're not a pro, Could somebody make Pictures or a video of the procedure ?


!!

THANKS!!!

It should be the new one because I have the other files of the old unlock and its a different size. Locked should know better but I think he wouldnt post it if it wasnt the new one.

here is the pic. In the end it is filled with zeros until 00020000:
http://img214.imageshack.us/img214/5109/69700994mj7.jpg

You are right, the linked file in OP is the new file. You don't need to do any hex editing.

Locked do you have any hardware experience? :)

I was wondering is there any other step that geohot maybe forgot to mention or just running those 2 files and thats it...

Thnx in advance

Just wait ATTEMPT IN PROGRESS will soon post the result 30 minutes needed:)

Cool. Using needles? I'm about to do that...

Thnx alot man,
Im at work and I dont have the right tools and the iphone with me thats why I cant try.
I hope youll do it and then all of us together :P

P.S.: You should use rubber glows just in case :)

Can someone just clarify exactly where this unlock deviates from the older hw unlock? I just want to be absolutely clear on the steps before I give it a go.

you can check here for more info on NOR dumper, download link- http://iphone.fiveforty.net/wiki/index.php/NORDumper

just a thought:

@geohot:
is there somewhere the source of your "ienew"?

Idea:
it should be possible to change the testcode.bb with a flash function and additional data from bl3.9. After this the new functions once started with a second iunew in arm core they should be able to downgrade the bootloader itself...
May be it´s possible to workaround this to make the hardware-connection needless...

this would than be a complete software downgrade

I think it's easier to just follow Geohot's post. It's very clear. I'm going to attempt using needles instead of soldering because I think it's safer.
If I get it right I'll write a good tut.

I'm currently doing the hardware hack on a otb 1.1.2 4.06ms32 bootloader.

Maybe a little information for al who are going to try this 2.

Yes to pull of the black plastic in the start you have to use some pressure i was afraid to break some things of @ the start but the plastic wont break that fast. You have to use cauten though. To pull of the backside also wasn't that easy but if you wait long enough eventually it will come off. Don't force things because u will bend the backside and when you're going to putt it back toghter it will look like shit :p. The next thing to overcome was the little shiny metal plate i must say when i saw it i wanted to quit but again if you're carefull enough and be patient you can get it off. I've added a picture to show you what the plate looks like, it's something to assure you you're not removing the wrong thing :p.

http://a.imagehost.org/0174/plate.jpg
and it should come off like this

http://a.imagehost.org/0174/plate2.jpg

when you've opened it look like the other pictures you've seen on the internet.

http://img267.imageshack.us/img267/921/plateex0.jpg



so i hope you've got some info of this if you have any questions just ask and i'll keep you updated with the needle thing :p

hehe

peace out ;)

yea I just want to know exactly when I need to jump whatever. agggh I always get nervous when I do stuff like this.

Now, i'm a bit confused by what Geo said on his blog,
will this downgrade the 4.6 BL into a 3.9? or am i totally tripping?

somthing wrong after

STOPPING commcenter.plist i tried running
./ienew
Resetting the Baseband...Done
Opend: /tty/
1.1.2 tool by GEOHOT

CAN`T WRITE...


Now phone is hanged and if i reboot i will loose wi-fi for sure:(

Now, i'm a bit confused by what Geo said on his blog,
will this downgrade the 4.6 BL into a 3.9? or am i totally tripping?

Yes. The method described in the blog post will exactly do this. Downgrade the 4.6 bootloader to 3.9.

Did you chmod all the files?

Fuck... did you make all that folder chmod 777?
And those tools executable?

somthing wrong after

STOPPING commcenter.plist i tried running
./ienew
Resetting the Baseband...Done
Opend: /tty/
1.1.2 tool by GEOHOT

CAN`T WRITE...


Now phone is hanged and if i reboot i will loose wi-fi for sure:(
i 'd suggest opening another terminal, killing the process and chmodng files and retry.

If you reboot you have no wifi

I'm currently doing the hardware hack on a otb 1.1.2 4.06ms32 bootloader.

Yes to pull of the black plastic in the start you have to use some pressure i was afraid to break some things of @ the start but the plastic wont break that fast. You have to use cauten though. To pull of the backside also wasn't that easy but if you wait long enough eventually it will come off. Don't force things because u will bend the backside and when you're going to putt it back toghter it will look like shit :p. The next thing to overcome was the little shiny metal plate i must say when i saw it i wanted to quit but again if you're carefull enough and be patient you can get it off. I've added a picture to show you what the plate looks like, it's something to assure you you're not removing the wrong thing :p.




You should be telling us HOW you pulled this or that off.. so we do it the same way. For instance you said if you are patient you'll get the shiny plate off but you didn't say how.. :)

Have fun and good luck!

A guy on geohots blog said:

"***DO NOT DO THIS ON FIRMWARE 1.1.2***

That's my advice. Even though you can do it in Airplane mode it's still very risky because if the phone decides to go into its baseband guardian lockdown mode and reboot you will lose wifi and possibly worse.

So do this on 1.1.1 or 1.0.2 people!

That being said, it does work reliably so thanks for the method, Geo & Friends."

So he can be right, maybe its better to downgrade to 111 and then do the job?

OK people the nor file is in the first post. So let me make this clear:
Open the iphone,
Go by geohots steps or first go by http://www.freeiphoneunlock.com/pdf/iphoneunlock.pdf
then do the geohots (even though it sounds stupid, probably just geohots.
If its only by geohots step then:
open the iphone
just copy files,
run the ienew
then make a short circuit on a17
then while holding that run iunew
when its finished just restore to 111 and do the old things?

I hope its only the geohots steps :)
At the beginning of this topic I read you have to solder something. But in the PDF I see you only have too open the iphone and use those needles. Why do they say you have to solder something?

Does this means we close to software unlock???

Well you can solder that same thing or you can just touch them while doing running the iunew :)

Its not just touch though you have to scratch very lightly.

Help!, I only runned ienew and my wifi has gone.... I have not rebooted or shutdown. Need help please.

hmmm thnx for the info... probably after I would start doing it I would wonder why it isnt working :P

dammmmmmmmmmmmmmn

i lost wifi :( there was noway out until i restart now wat?

do you have mobile terminal installed? its hard to type the command and hold the wires in both ways but thats the only chance I guess.

If you cant do anything try restoring to 111 and do it from that firmware?

Help!, I only runned ienew and my wifi has gone.... I have not rebooted or shutdown. Need help please.

You need to be a little more descriptive of what you've done, what version your phone is and what is happening to it now...

dammmmmmmmmmmmmmn

i lost wifi :( there was noway out until i restart now wat?

on what fw did you run it?

I thik your way out is restoring \( BUT I M NOT SURE) the real way to fix this easily is to instal a terminal on the iphone before , so you can restart the commcenter by hand. without wifi.

Well you can solder that same thing or you can just touch them while doing running the iunew :)
What if you by accident move them so they are not touched while running iunew?

A guy on geohots blog said:

"***DO NOT DO THIS ON FIRMWARE 1.1.2***

That's my advice. Even though you can do it in Airplane mode it's still very risky because if the phone decides to go into its baseband guardian lockdown mode and reboot you will lose wifi and possibly worse.

So do this on 1.1.1 or 1.0.2 people!

That being said, it does work reliably so thanks for the method, Geo & Friends."

So he can be right, maybe its better to downgrade to 111 and then do the job?

Just remember, the firmware must be 1.1.1, what firmware have you ?

by hand/? when the phone is totally unresponsive than wat? i guess we need to restart and thats wat i did

You need to be a little more descriptive of what you've done, what version your phone is and what is happening to it now...

Ok. 1.1.2 OTB BL 4.6. Activated. Jailbreaked. Installed BSD, SSH.

I've Copied all the Geohot files into usr/bin (nor file included)
Set permisions to 777
runned ienew
I've received a message like "can't write" and then lost wifi.

is this the only way to unlock FW 1.1.2 ootb?
thx

I guess restoring to 111 would work and then trying again :)

how to do anything in phone while it UNRESPONSIVE completly so only way to do somthing is restart and was i did

Cant you put it to restore mode? holding Home and Power button?

how to do anything in phone while it UNRESPONSIVE completly so only way to do somthing is restart and was i did

What i meant was by installing mobile terminal ( before starting) you could have restarted comcenter through the iphones screen.
I think you can restore to 1,1.1 and retry simply.

nice news...!

Thanx alot to everyone who helped to make this possible...!

Good Luck in your software version!

oki i was on 1.1.2 jailbroken using with SILVER sim .Now trying to restore

No worries at all

Ok. 1.1.2 OTB BL 4.6. Activated. Jailbreaked. Installed BSD, SSH.

I've Copied all the Geohot files into usr/bin (nor file included)
Set permisions to 777
runned ienew
I've received a message like "can't write" and then lost wifi.

Rebooted and wifi comes bacg again... :D
I will try from 1.1.1

@superg3

Man you are lucky i am trying to restore now

superg3, you have one PM since yesterday...!!!

Answer me please!

Glad they finally released it.

N41

Could someone elaborate the "old hardware method"? I can't find it on geohot blog, and he assumes people are aware of it. I am sorry I don't know the steps for hardware, but I think I have the skill to perform that. Just need the guide.

Thanks a lot!

Try finding his posts from august /2007

HAve fun

This is the old one:
http://steve-jobs.com/iphone/iphone-hardware-unlock-easier-method.html

But its not connected with it. He is just saying that you have to make the A17 connection like in the old hardware method.

When I run Ienew I get:

Waiting for data...
Can't write

Some help please?

@superg3

Did you manage to restore Wi-Fi and are trying again, or you are still stuck with no WiFi

@superg3

1=chmod first
2=launchctl unload -w /System/Library/LaunchDaemons/com.apple.CommCenter.plist
3=now ./ienew

try it.While i am restoring my phone to 1.02

can someone explain how to do this?

"Find an old 3.9 nor dump and create a file called "nor" with the first 0x20000 bytes of the old nor dump. This is the 3.9 bootloader."

thanks

read this thread since the first page you will have the answer

@dam
Just go back to page 1 of this thread and read the first post.
Some good people have prepared the NOR for you


@superg3, @y0oush4 any update from the attempt is more then welcome :)

the final result is if you lost wifi during unlock than WI-FI will be only restorable untill you update to 1.1.3 and after that you will not be able to use even SILVERSIM or Stealth or any IMSI FAKE METHOD :-8(

WORKINGGGGGGGGGGG 100% !!!!!!!!!!!!!!!!!
WOOOWWWWW ...no pro skills were needed ...i mean its not as easy as software unlock ..but its couple of steps and ur done ;)
thankss alot poster

news: H/W unlock released for 1.1.2/1.1.3.. sales doubled for iphones... AAPL stock UP 2% in bearish market...:D :D :D

Kudos.. to all the efforts..

@iinkr3dii

Can you please write detailed steps, and how did you avoid "can't write" error and losing of WiFi?

Also, please some details on how you performed the connection to A17

I think i read this idea a couple of pages back, so all credits to the original poster, but didn't find any responses, so just to reiterate:

Is it possible to complete the process from the Mobile Terminal (directly typing on the Iphone)

This may prove very difficult while using the needle method, but if it's possible, it is a workaround for everyone that lost WiFi

Just an idea, if it's a stupid one, please don't flame too much

I f you dont attmpt it u will nvr learn :) see i lost my phone fuctions i am trying still every posibility i hav i now hav 1.02 with wifi and all with modem 04.03.13g

and i gues there is no way out

many problems with this HW unlock, just wait the SW unlock.

isnt the hardest part of finding a software unlock would be to find the secpack from the 1.1.3 fw, so since they have it now they just need to go through the final steps of the sw unlock or am i getting something wrong?

Don't you think THEY should eat, sleep, play soccer do other activities instead of hacking the iPhone 24/7? Just wait as everybody waits.

@superg3

1=chmod first
2=launchctl unload -w /System/Library/LaunchDaemons/com.apple.CommCenter.plist
3=now ./ienew

try it.While i am restoring my phone to 1.02

Thanks. I did it.

Terminal lose connection, tryied other terminal no way
Opened minicom
Nail trick and iunew... dowloading....fonoshed, release nails. Press enter. Ok reboot.
"can´t receive or make calls, repair needed"

sounds like a fried commboard....

Hey!
Can somebody tell me how i can open my iphone and copy the files to these directory? Cant find a tutorial or something else.

Hey!
Can somebody tell me how i can open my iphone and copy the files to these directory? Cant find a tutorial or something else.

Then dont man. Really that is basic . You dont ;know how to jailbreak install ssh on your phone but want to h/w downgrade it?

I would not recommend it

Man, this is great news! I'm debating whether to try it or not... haha but I think i'll wait for a software unlock for my 1.1.2OTB:) Expect many more donations from me.
Great job all and everyone on the forums, reading all this info/comments helps a lot!

Lilskata;)

Can this be done on windows or a MAC is required??... dont kill me too much I just unzipped the files off geohots blog and idk how to run ienew and stuff... DONT KILL ME TOO MUCH PLEASEE

Hey!
Can somebody tell me how i can open my iphone and copy the files to these directory? Cant find a tutorial or something else.

Here's the Tutorial of the OLD Hardware unlocking :

http://steve-jobs.com/iphone/iphone-hardware-unlock-easier-method.html

,the new one is similar ,read both of them and then decide if you're up to this.

Thanks. I did it.

Terminal lose connection, tryied other terminal no way
Opened minicom
Nail trick and iunew... dowloading....fonoshed, release nails. Press enter. Ok reboot.
"can´t receive or make calls, repair needed"

same error i hav just fixed you can contact me private but 1.1.3 update is a must for you now

here is the whole process very detail

http://iphone.unlock.no/bootloader_downgrade.htm

now you don't have to upload the files manually, just install it from the source and then start with the hardware :D

same error i hav just fixed you can contact me private but 1.1.3 update is a must for you now

Heyyyyyy. I've restored to 1.1.2 and all Ok. Then restored to 1.1.1 and now I have all working with BL 3.9!!!! yessssssss!:D :D :D :D

if you had 1.1.2 OTB and lost wi-fi during unlock can only be fixed with 1.1.3 update mate

Please superg!! Answer my PM!!

Heyyyyyy. I've restored to 1.1.2 and all Ok. Then restored to 1.1.1 and now I have all working with BL 3.9!!!! yessssssss!:D :D :D :D

Congrats !! could you post a detailed review of how it was aka wich problems you had ,(or pictures)?

Gracias

if you had 1.1.2 OTB and lost wi-fi during unlock can only be fixed with 1.1.3 update mate

Well I don't know why or how but wifi is working again...

Hi all,

If I use this method to unlock my phone after downgrading to 1.1.1, is it safe to use oktoprep and upgrade to 1.1.2 or should I stay at 1.1.1? And can I upgrade to 1.1.3 after unlocking?

thx

guys, what tools do you use to open the black plastic?

http://zibree.blogspot.com/

Anyone read this?

hi to all,
i have ultraedit the file in the 1st post (nor file)
so yhe 0x20000 first bytes: isn't from 0x00000 to ox19FFF ?
when i look in the file, it s from 0x00000 to 0x20000
maybe its not important for the process, but please let me know...
regards

http://zibree.blogspot.com/

Anyone read this?

What's his problem ?

Hey!
Can somebody tell me how i can open my iphone and copy the files to these directory? Cant find a tutorial or something else.

From my experience, I tried this HW method when it was the only way to unlock iPhone back in late August 2007, I spent almost half day to just open up the iPhone (believe me, it isn't easy to open up the iphone, and you can blend and ding your iphone's metal case easily). Other than that, things went pretty smoothly.

I believe the SW unlock OTB1.1.2 should be available soon. .That was what happened to 1.0.2 SW unlock, it was available a few weeks after the HW unlock was released.

.That was what happened to 1.0.2 SW unlock, it was available a few weeks after the HW unlock was released.

a few weeks ? it's already too long ! :D :D :D :D

http://zibree.blogspot.com/

This is quite strange indeed.
If i got this right, he is claiming that he could have done that hardware unlock a month ago.
And why is he pissed off? Who is Zibri?

a few weeks ? it's already too long !


Then sell me your phone for like 20$... ..:)

of course ! ;-)

So all we need now is for a software or script to downgrade the Boot Loader from 4.6 back to 3.9.

fuck i'm having the can't write error on ienew :s

This is quite strange indeed.
If i got this right, he is claiming that he could have done that hardware unlock a month ago.
And why is he pissed off? Who is Zibri?

WTF? And what's that BS about "I had it since 1993, but i only posted it now" thing... sure. Why didn't he post the MD5 hash a mont ago? It wouldn't hurt anybody... It's a friggin hash... it's irreversible... i think he's BS...

Zirplex,

You have to shutdown com center before you do it.

Unload it

Anybody else have unlocked their phones? I almost took a chance to it but I better wait for software, I'm not too familiar to opening iPhones, actually I don't know how to do it at all. Haha. Nice job and good luck to all the hardware unlockers.

WTF? And what's that BS about "I had it since 1993, but i only posted it now" thing... sure. Why didn't he post the MD5 hash a mont ago? It wouldn't hurt anybody... It's a friggin hash... it's irreversible... i think he's BS...

Zibri is from the dev team. Geohot posted "the method" and those files on 18th but Zibri actually posted the md5sum of the secpack on 15th. You can download the file from geohot (http://lpahome.com/geohot/112otb.rar) and run md5sum on the file 'secpack'. Sounds like the team doesn't want to release the HW method at all as it's not well tested and they don't want Apple knows how they did that. But according to Zibri's post geohot just "released" it and took the credit.

Nice. Geohot saves the world! :)

Zibri is from the dev team. Geohot posted "the method" and those files on 18th but Zibri actually posted the md5sum of the secpack on 15th. You can download the file from geohot (http://lpahome.com/geohot/112otb.rar) and run md5sum on the file 'secpack'. Sounds like the team doesn't want to release the HW method at all as it's not well tested and they don't want Apple knows how they did that. But according to Zibri's post geohot just "released" it and took the credit.

Zibri was kicked out of the Dev Team he's now a member of the Elite Team

Ladies and Gents

The Zibri flame has gone way off topic. Oh, and by the way, the only way not to help Apple fix something is to NEVER publish an unlock method of any kind

We are here to discuss the currently availabe unlock of 1.1.2 OTB phones.

Please move the vanity fair in another thread and let it rip there

And while we are are still touching the subject, it would be good to have an update from the moderators on whether the pieces published by geohot are in any way helpful to the soft unlock cause. Simple yes/no will suffice, not asking for an ETA here :)

And while we are are still touching the subject, it would be good to have an update from the moderators on whether the pieces published by geohot are in any way helpful to the soft unlock cause. Simple yes/no will suffice, not asking for an ETA here :)

Uh hum...if you read instead of acting smart, yes...
Sometimes silence is golden

PLEASE HELP.

After the erased baseband i not want open my iphone but reinstall the 1.1.2 baseband firmware. I can ?

I have try to itunes installation process with 1.1.2 firmware but go in error.

Please Help

so for a soft unlock didnt we need the secpack?well we got it now what?

so for a soft unlock didnt we need the secpack?well we got it now what?
Now we know it is possible to get the 1.1.2 OTB to work, we patiently wait for the smart iphone guys out there to come out with the software version so us mortals can use it...
I reccomend looking at the iPhone news cafe web page. No bull****, just FACTS about the status of the unlock...;)

Now we know it is possible to get the 1.1.2 OTB to work, we patiently wait for the smart iphone guys out there to come out with the software version so us mortals can use it...
I reccomend looking at the iPhone news cafe web page. No bull****, just FACTS about the status of the unlock...;)

what's the news cafe??

http://docs.google.com/View?docid=dgzw9xs_0gfhxns

hahaha finally, now everyone demanding an update from the dev team can offically SCREW OFF
awesome news none the less

what's the news cafe??

Here it is: http://groups.google.com/group/iphone-cafe
seems like the best, no bull place to watch. No assumptions, no blah blah, just facts.
When it's ready to be used, it's there!

I don't have any wire, can i just make the needles touch each other, by for example soldering 2 needles together?

@y0ush4 and @zirplex

Do you have an idea why you got error "can't write"? What step did you miss?
I am going to HW unlock my phone tomorrow and the possibility of this errors scares me.

@y0ush4: dıd you try this guide: http://hackint0sh.org/forum/showthread.php?t=23786

try it until the 6th step and then try again the hardware unlock

Good luck to all the brave people. Good to know you'll enjoy your iPhones, and now a SW unlock is closer.

i have problems unlocking my iphone because when i writte a ienew , it doesn´t make anything , an the iphone shows finding network

who can help me????


thanks

the procedure doesn´t work for me

att.

Viper

Hi,
Question: I am enjoying [immensely] my OOB 1.1.2 that was unlocked using stealthsim. Everything works beautifully. There is someone in my city now performing the brand new hardware unlock and says it will make my phone operate better and provide better battery life that the stealthsim method. Does anyone have any thoughts and would you now switch to the hardware unlock? Are the risks related to the new hardware unlock [I'm not doing it...this guy would be] worth the possible benfit of smoother operation and better battery life? The charge for the hardware unlock BTW is $150.
Thanks...any thoughts would be greatly appreciated.

Wow I hope that the soft unlock comes out soon thank you all for this aweosme news:)

Any news about a Software unlock for 1.1.2 OTB?

itsmeG > 150$ is way too much! You better try it yourself instead then...it is not that difficult if you follow the instructions properly.

1.1.2 iPhones now unlocked... 3 days too late
Posted Jan 18th 2008 8:12AM by Thomas Ricker
Filed under: Cellphones

Teenager George Hotz, aka GeoHot,....

Update: We're now hearing that a software unlock for 1.1.2 / 4.6 iPhones is right around the corner. So don't crack that case just yet kids.

Found at the same site: http://www.engadget.com/2008/01/18/1-1-2-iphones-now-unlocked-3-days-too-late/


Not sure about this news but anyway, let's see what is coming next!!!

Cheers

McDago,
Thanks, I think $150 is too much as well. Everything is working really well with stealthsim and I think I will wait for SW unlock before making any decisions. I have a working iphone...why ask for trouble?

1.1.2 iPhones now unlocked... 3 days too late
Posted Jan 18th 2008 8:12AM by Thomas Ricker
Filed under: Cellphones

Teenager George Hotz, aka GeoHot,....

Update: We're now hearing that a software unlock for 1.1.2 / 4.6 iPhones is right around the corner. So don't crack that case just yet kids.

Found at the same site: http://www.engadget.com/2008/01/18/1-1-2-iphones-now-unlocked-3-days-too-late/


Not sure about this news but anyway, let's see what is coming next!!!

Cheers

That pretty good news!

I Thought Dev Team and Hotz where working together????
From http://georgehotz.com/ :

Note to Zibri. People like me have been waiting for a method, no matter how complicated, to unlock their 112 OTB phones. Why didn't you post your secpack? Where was any bit of help from the dev team? I heard rumors that you guys couldn't even get ieraser to work. Maybe you should read this. With this you can upload any patches to the bootloader you want, put in some safety patches to always allow erase and have fun finding a software unlock. I'm sick of your secrecy, it doesn't help anybody with anything. I'm not too sure what new weapons the secpack gives apple, the hardware method isn't patchable, it only relies on erase in software, which is a natural function of the system. I am just looking to advance what is known about the iPhone for the world, I'm not really sure what you guys do since we never here from you, except to brag that you got the MD5 and to flame me. Big help.

pretty interesting...

hi.

run sleep 10; iunew

test point ok.

all ok
but at this moment
"attempting to read[3]...0"
about 5 minutes


what is it?

sorry but my english is bad.
Tom, from Hungary.

hi.

run sleep 10; iunew

test point ok.

all ok
but at this moment
"attempting to read[3]...0"
about 5 minutes


what is it?

sorry but my english is bad.
Tom, from Hungary.

probably shouldn't have announced the hw unlock

IF 1.1.3 secpack is found where is the software unlock?

:cool: With this hardware unlock method few minutes ago I successfully downgrade my bootloader from 4.6 to 3.9 and unlock my iphone ootb 1.1.2 with anysim in Turkei with operator Turkcell. Unfortunately I scratched my iphone's back cover a little bit but I did it at last. Thank you for everyone that has committment in this method.:cool:

Note to Zibri. People like me have been waiting for a method, no matter how complicated, to unlock their 112 OTB phones. Why didn't you post your secpack? Where was any bit of help from the dev team? I heard rumors that you guys couldn't even get ieraser to work. Maybe you should read this. With this you can upload any patches to the bootloader you want, put in some safety patches to always allow erase and have fun finding a software unlock. I'm sick of your secrecy, it doesn't help anybody with anything. I'm not too sure what new weapons the secpack gives apple, the hardware method isn't patchable, it only relies on erase in software, which is a natural function of the system. I am just looking to advance what is known about the iPhone for the world, I'm not really sure what you guys do since we never here from you, except to brag that you got the MD5 and to flame me. Big help.

That's basically the image I've been getting of this mythical "dev team".

Congrats to people like George who are putting out all this information.

hahaha finally, now everyone demanding an update from the dev team can offically SCREW OFF
awesome news none the less

there still hasn't been any news from the dev team..

i can't get the metal back off. anybody whose done this what tools you used? i was told i can do it with a guitar pick... it worked for the plastic cover not for the metal. this is fked its too hard.

Sorry if this question was posted already...it's not in the faq yet.

Once the bootloader is downgraded to 3.9 can we upgrade our iPhones to 1.1.3 and keep all functionality?

Is it likely that the 1.1.4 update will be problem-free too?

try this tutorial for removing the case..

http://video.gearlive.com/video/article/q407-replace-iphone-battery-tutorial/

i can't get the metal back off. anybody whose done this what tools you used? i was told i can do it with a guitar pick... it worked for the plastic cover not for the metal. this is fked its too hard.

Yeah, Ive been trying for hours... Can't get that plate off....

Any tips?

For people who don't have this opener tool, whats the next best thing to use?

I bet the DEVS have reached there final step of putting anysim together for 1.1.2!!

I bet the DEVS have reached there final step of putting anysim together for 1.1.2!!

I think they stil have a long way until Soft Unlock for 1.1.2.......
But i do have hope,so lets wait

I bet the DEVS have reached there final step of putting anysim together for 1.1.2!!

and you base your suppositions on..?

So updating on 113 doesnt work right?
I get the Did you erase the flash first?
İve updated because when Ive tried to downgrade the bootloader it stopped. And then İ had to restore cuz it wouldnt work anymore :(
İ think now it cant erase the flash (I dont know which one) and İ guess thats the problem because it has the new baseband :(
Damnit now I have to wait for the 114 secpack right?
Anyone around wants to help?

isn't there a thread on this forum that says you can downgrade back to 1.1.2 with the new 1.1.3 secpack? or am i just seeing things? :confused:

Wasn't the first unlock for the iPhone a hardware unlock as well? (Which only means the software unlock shouldn't be too soon away ;))

or do you have bootloader 4.6 on your phone? if so, i think you're out of luck (for now.)

Wasn't the first unlock for the iPhone a hardware unlock as well? (Which only means the software unlock shouldn't be too soon away ;))

i hope you meant "shouldn't be too FAR away." :D

Hahaha - yes, I meant that ;)

Not too far away (within the hour perhaps?)

and you base your suppositions on..?THEY found what they wanted the 1.1.3 secpack and they have already found exploits on the 4.6 bootloader so all they need to do is put it together. ;)

Wasn't the first unlock for the iPhone a hardware unlock as well? (Which only means the software unlock shouldn't be too soon away ;))

Lets hope!:D

THEY found what they wanted the 1.1.3 secpack and they have already found exploits on the 4.6 bootloader so all they need to do is put it together. ;)

not as easy as you make it seem to be. lol.

not as easy as you make it seem to be. lol.Yeah but if they managed to find the secpack and find exploits on the BL i am pretty sure they can put it together.

Now that 1.1.3 has come out, it's only more work.

But if people can't afford the ***SIM, I guess this is the only free solution.

ITS a matter of hours or days!! NOT WEEKS!!

Yeah but if they managed to find the secpack and find exploits on the BL i am pretty sure they can put it together.

i only wish i had the ability to hibernate through the winter like bears. all this waiting is making me crazy (but sane enough to not buy xsims.) then after i wake up i'll come back to this forum and see all the wonderful posts about the software unlock! :cool:

THEY found what they wanted the 1.1.3 secpack and they have already found exploits on the 4.6 bootloader so all they need to do is put it together. ;)

Supposedly they've had it for a month though.. So...

ITS just a matter of time now.

ITS a matter of hours or days!! NOT WEEKS!!

I hope this happen.......
but in my opinion the software solution will be released in 1 month or so....
hope im wrong

NAA dude relax it will be released really soon

make sure you took the simtray out makes it much harder to get the back off.

well i give it a try.. the hardware unlock

copy all the gehotz files to /usr/bin/

launchctl unload -w /System/Library/LaunchDaemons/com.apple.CommCenter,plist
ienew
...
lost comunication
tried open a new one - no way

maybe one of you guys can help me?? plzzz:confused:

wow.. I really think people should stop trying to H/W unlock their iphones.. I have seen several people having trouble with it. I mean, I know is your iphone, and you can do anything you want with it, but I suggest whaiting only a few days for S/W unlock, we all stuck with otb 1.1.2 waited to long already, why not waiting only a few days more.

Only a suggestion.

NAA dude relax it will be released really soon

i would feel a lot better if you found a source to back it up. lol. but i really do hope it's soon. like in the next 60 seconds soon! :O

well if some1 will ask me for start i never thought it will be so demn hard
to crack the case!
and then that it will be so small the test point
and then that it will be a mass..

don't try better lose a day without an iphone then the iphone in less then a day:D:rolleyes:

any suggestion on my situation?

Like Elador I have given it a try - I'm pretty technical with things so figured I'd give it a go. I got as far as running ienew (to erase) and somehow lost my wireless connection. My console hung on 'Waiting for data'... I turned the phone over and checked out my wireless settings - it couldn't see my network. I refreshed and SOMETIMES it could see the network, but regardless it could NOT connect to it... this meant I lost my ssh connection AFTER (I'm guessing) it deleted my baseloader.

I've wrestled with it and tried restoring 1.1.1 (I'm OTB 1.1.2 btw) which worked but the phone complains it can't make calls and support is needed - because the modem firmware was deleted I'm guessing?? this means I can't make the *#307# calls to activate it!?

I'm now restoring to 1.1.2 and HOPING I haven't screwed it - the ONLY solutions I've seen for my problem is to restore to 1.1.3 - which means I'm stuck at 1.1.3 which doesn't help either!?

Any other advice?

MY ADVICE - DON'T do the hardward unlock. even if you're competent (as I am) with hardware, just loosing the network connection will screw your phone. Wait a few more days like I should have!

bugger.

Supposedly they've had it for a month though.. So...

hahahaha what? the 1.1.3 firmware wasnt even leaked a month ago. The secpack was extracted within the last week or so.

Like Elador I have given it a try - I'm pretty technical with things so figured I'd give it a go. I got as far as running ienew (to erase) and somehow lost my wireless connection. My console hung on 'Waiting for data'... I turned the phone over and checked out my wireless settings - it couldn't see my network. I refreshed and SOMETIMES it could see the network, but regardless it could NOT connect to it... this meant I lost my ssh connection AFTER (I'm guessing) it deleted my baseloader.

I've wrestled with it and tried restoring 1.1.1 (I'm OTB 1.1.2 btw) which worked but the phone complains it can't make calls and support is needed - because the modem firmware was deleted I'm guessing?? this means I can't make the *#307# calls to activate it!?

I'm now restoring to 1.1.2 and HOPING I haven't screwed it - the ONLY solutions I've seen for my problem is to restore to 1.1.3 - which means I'm stuck at 1.1.3 which doesn't help either!?

Any other advice?

MY ADVICE - DON'T do the hardward unlock. even if you're competent (as I am) with hardware, just loosing the network connection will screw your phone. Wait a few more days like I should have!

bugger.


EXACT same problem here.... tell me what happens with you pls.

Sorry for being too newbie, but this is already 26 pages long, and most of it i don't understand.

I just want to know, if I buy an iPhone now from apple.com, what chances are it would be 1.1.2?

And does this mean that at least with this "deficult" hack, i would be able to unlock 1.1.2 right?

Thanks.

not according to this

http://zibree.blogspot.com/

hahahaha what? the 1.1.3 firmware wasnt even leaked a month ago. The secpack was extracted within the last week or so.

Sorry for being too newbie, but this is already 26 pages long, and most of it i don't understand.

I just want to know, if I buy an iPhone now from apple.com, what chances are it would be 1.1.2?

And does this mean that at least with this "deficult" hack, i would be able to unlock 1.1.2 right?

Thanks.

chances are super slim if you order from apple.com.
if you run to a store right now, you might have a chance to get the last 20 left.

yes you can unlock 1.1.2 otb with this method, but it's a hardware solution and i highly suggest you don't do it unless you're pro at this.

Like Elador I have given it a try - I'm pretty technical with things so figured I'd give it a go. I got as far as running ienew (to erase) and somehow lost my wireless connection. My console hung on 'Waiting for data'... I turned the phone over and checked out my wireless settings - it couldn't see my network. I refreshed and SOMETIMES it could see the network, but regardless it could NOT connect to it... this meant I lost my ssh connection AFTER (I'm guessing) it deleted my baseloader.

I've wrestled with it and tried restoring 1.1.1 (I'm OTB 1.1.2 btw) which worked but the phone complains it can't make calls and support is needed - because the modem firmware was deleted I'm guessing?? this means I can't make the *#307# calls to activate it!?

I'm now restoring to 1.1.2 and HOPING I haven't screwed it - the ONLY solutions I've seen for my problem is to restore to 1.1.3 - which means I'm stuck at 1.1.3 which doesn't help either!?

Any other advice?

MY ADVICE - DON'T do the hardward unlock. even if you're competent (as I am) with hardware, just loosing the network connection will screw your phone. Wait a few more days like I should have!

bugger.

yes do not do the h/w unlock. i consider myself pretty tech savvy and messed up a phone back in the day when hotz originally released it... the test point is razor small and practically impossible to see with the average naked eye. even with a magnifying glass, you'd better have steady hands. oh, and it's near impossible to open the phone without scratching/cracking certain areas.

not according to this

http://zibree.blogspot.com/

that blog is a fucking joke. there are 2 posts, and one is only made to insult geohot, and you give that site some kind of credibility? geohot gives specific credit to ta_mobile for assisting in the secpack removal. TA_mobile was on this site only a few weeks ago asking for the 1.1.3 firmware so that he can attempt to retrieve the secpack.

who cares if this "dev blog" claims that they had it a month ago. did they release any statements? did they produce anything? did they even HAVE a blog a month ago? probably not. dont post that trash.

guys, i don't want to start a new thread on this really sensitive topic, so i thought maybe i should share it here first..

so i was doing some googling about two seconds ago and saw this:

"IPSF Possible 1.1.2 OOTB unlock confirmation." and it's from modmyifone.com.

now i don't know how long that thread's been up for but i can't get into their forums right now for some reason.

has anyone else taken a peek into this specific thread? :confused:

the secpack.......funny thing...
hahaha

ai...hahaha

N41

guys, i don't want to start a new thread on this really sensitive topic, so i thought maybe i should share it here first..

so i was doing some googling about two seconds ago and saw this:

"IPSF Possible 1.1.2 OOTB unlock confirmation." and it's from modmyifone.com.

now i don't know how long that thread's been up for but i can't get into their forums right now for some reason.

has anyone else taken a peek into this specific thread? :confused:

That's funny. There was a thread JUST like that here on hackint0sh, but it seems to be deleted or something. I can't find it anymore.

What's so funny Number_41? You know something huh.

yes yes i do...

but...i'll let one of them speak up, if they do, instead of me. not my place

N41

Fuck you, each and everyone of you! Hold on to your high horse so not to fall off. Geohot, ta_mobile and others contribute more even if a soft unlock doesn't come. Screw all eliteist a-holes who clmae to be for open access.

Fuck you, each and everyone of you! Hold on to your high horse so not to fall off. Geohot, ta_mobile and others contribute more even if a soft unlock doesn't come. Screw all eliteist a-holes who clmae to be for open access.

did someone step on your tail? geez.

yes yes i do...

but...i'll let one of them speak up, if they do, instead of me. not my place

N41

tell us N41! tell us now before i die from a heart attack! :rolleyes:

Fuck you, each and everyone of you! Hold on to your high horse so not to fall off. Geohot, ta_mobile and others contribute more even if a soft unlock doesn't come. Screw all eliteist a-holes who clmae to be for open access.

Probably these words are a big contribution, right?
:cool:

did someone step on your tail? geez.

Kind of...I know what I said was mean spirited but people who claim to be working for the community but remain secretive...nevermind.

My point is this: if they have something to release do it and let the end user reep the consiquences/benefits. Don't act like big brother by determining what's best for me.

Probably these words are a big contribution, right?
:cool:

Actually, I think they are, get's people talking and thinking...dialogue my frind, dialogue.

Ok. I'm with you, but in the overtone, not in the tone!!!

Back to topic: what was that, Number???

wow somebody ban this guy and delete his posts!

Ok. I'm with you, but in the overtone, not in the tone!!!

Back to topic: what was that, Number???

Huh?

Anyway, if there's a way for me to contribute please, someone, let me know. I have a 1.1.3 week 50. I upgraded a the day it was released.

wow somebody ban this guy and delete his posts!

Yeah, thanks. So much for free speech. (SORRY!!)

Yeah, thanks. So much for free speech.

Chill out. He was referring to the spammer. Not you.

Chill out. He was referring to the spammer. Not you.

Thanks! and SORRY.

Thanks! and SORRY.

No worries. It's hard to know who's talking to or about whom sometimes. :)

I think if Number was in the mood to say something, we lost him with our useless chitchat...:mad:

I think if Number was in the mood to say something, we lost him with our useless chitchat...:mad:

I dont' think he was or is going to say anything. Seems he wants to keeo what he know confidetial, the honor system.

I think a soft unlock will be available in less than a week. The dev team has something to prove. Too many non team members are going to piece this sucker together, like geohot, etc. Can't let the punk kids think they know it all.:D

I.unlock.no have a detailed and ilustrated free manual of how to do this, i'll wait for the software unlock anyway ^^

This is for those n00bs that want to try it
gauss182 :D