For those who don't want to wait on a software downgrade, i have written a tutorial on how to downgrade the bootloader using testpoints. This method is basicly the same as the first unlock geohot published.

Tutorial here: http://iphone.unlock.no/bootloader_downgrade.htm

Thanks to geohot (and the people he thanks): http://iphonejtag.blogspot.com/


Update at 30th Jan: 1.1.1 baseband firmware files are now included (thanks drh!), so instead of restoring your phone at the end, you can just write tha baseband manually and unlock with anysim, and you have an unlocked 1.1.1 phone. The tutorial is updated with this info - please give feedback on that last part in this thread!



Read this if you don't have WiFi:
I have made the files available for offline usage as well:

Bootloader Downgrader PXL (http://home.no/geezuzz/bbtools.pxl)
PXL package is untested - does it install ok in iBrickr? The files inside are OK, just not sure installation in ibrickr works. Files should be installed to /usr/bin/bbtools/

Bootloader Downgrader ZIP (http://home.no/geezuzz/bootloaderdowngrade.zip)
This is the exact same file downloaded when installing Bootloader Downgrade package in Installer.

Usage:
(do this first in all cases)

cd /usr/bin/bbtools/
launchctl unload /System/Library/LaunchDaemons/com.apple.CommCenter.plist
Then:
To flash baseband after you complete iunew (testpoint downgrade):

ieraser
bbupdater -f 111.fls -e 111.eep
bbupdater -v




Unlock.no's faster and better way to jailbreak 1.1.1 phones!
Today i studied how jailbreakme.com jailbreaks the phone etc, and i noticed that jailbreakme.com copies a 736KB archive with the needed files, but also LOTS OF CRAP (sourcecode, hidden mac files etc). So i decided to tweak the solution a little.


I have removed all the crap jailbreakeme.com serves, so my archive is only 136KB, but still have ALL relevant files. This will make it much faster and more stable, since the file transfer is reduced 600KB.
Latest version of Installer (b10) is installed, and also latest version of Community Sources (modmyifone repository)
http://i.unlock.no/ is addded as a (trusted) source in Installer.


To jailbreak using this method, instead of adding URL jailbreakme.com, you add url: i.unlock.no (http:// not necessary) to the contact you create after dialing *#307# etc. Have your phone docked to the computer when visiting the jailbreak page.


Note: Jailbreaking using this method will add i.unlock.no as a trusted source. If you don't trust this Installer source, don't do this.

Note2: I did not develope this solution myself. I use jailbreakme.com's solution, and just tweaked it. All credits/donations goes to everyone who worked on this solution: http://jailbreakme.com

Cool, Thanks bud

Here goes the n00bs version ;)

For those who don't want to wait on a software downgrade, i have written a tutorial on how to downgrade the bootloader using testpoints. This method is basicly the same as the first unlock geohot published.

Tutorial here: http://iphone.unlock.no/bootloader_downgrade.htm

Tutorial is currently untested, but as mentioned, it's the same as the first unlock method so it should work.


Thanks to geohot: http://iphonejtag.blogspot.com/

It is an software available now in Installer - to put the necessary files for HW bootloader downgrade on iPhone

Thanks, great tutorial.

It is an software available now in Installer - to put the necessary files for HW bootloader downgrade on iPhone
Yes, i put the needed files on Installer source http://i.unlock.no in unlocking tools category. They will be copied to /usr/bin/

somebody tried this tutorial ?

somebody tried this tutorial ?
Probably not, it was published in less than an hour ago.

I'm waiting for somebody to try before because I want to be sure this tutorial works

btw thanks for the tutorial ... !

Seems quite simple IMO.

My only question is...

I assume after you SSH into the phone, you're not turning it off when you proceed to opening it?

I mean common sense says so, if you say "Don't restart" I just don't see how that's possible with the phone open.. Which is why I'm a tad bit confused.

It honestly looks like a simple procedure. But I can see where failure to pay attention to detail would cause problems for some people.

I mean common sense says so, if you say "Don't restart" I just don't see how that's possible with the phone open.. Which is why I'm a tad bit confused.

It's only after ienew (ieraser) have completed successfully you can't restart. You can restart before you run it, and after you have done iunew (iunlocker)

It's only after ienew (ieraser) have completed successfully you can't restart. You can restart before you run it, and after you have done iunew (iunlocker)

wat about who were having 1.1.2 otb with 4.6 bl and were using with silversim but somhow they upgraded to 1.1.3 now wats the ways for those who hav

firmware =1.1.3(can be downgarded)
bootloader=4.6
modem=04.03.13g

any solution?

or in other words who hav lost wi-fi during unlolck

I lost wifi - now it just says "No Wi-Fi"
You probably restarted your phone after running ienew. Unfortunately, the only way to fix this is to upgrade your phone to 1.1.3.

wat about them?

wat about who were having 1.1.2 otb with 4.6 bl and were using with silversim but somhow they upgraded to 1.1.3 now wats the ways for those who hav

firmware =1.1.3(can be downgarded)
bootloader=4.6
modem=04.03.13g

any solution?

I believe if you upgrade to 1.1.3 on a 4.6 BL you're basically out of luck until 1.1.4 is released.

ye i know :-)But i hav 2 iphones 1 OTB 1.1.2(which is IPOD for now) for play 1 old one for use so NO ISSUE i am desperatly looking for 1.1.3 jailbreak and atleast to used with silversim

Requirments never ends :)

this should be a sticky

nobody still tried this tutorial ??

Thanks man, im sure tech saavy desperate guys here will appreciate your clean tutorial.

props to all the guys who made this possible.

this really makes it seem doable. Thanks for posting!

K... i just hung up phone with a freind, gonna go unlock his 1.1.2 otb with this tutorial, unless he chickens out. (my iphone aready has a sim solution)

but first few questions to confirm what i think i know:
1) in the tuto it says connect testpoints before running iunew but when do i release exactly? is it when output is:

"TESTPOINT WORKS: 55
Press any char, then hit enter after testpoint has been disconnected
x"

2) after process done the iphone becomes exactly like a 3.9 BL 1.1.1 otb right? no probs and no future problems upgrading and what not right?

hopefull i get answers b4 i get to his house and get tools ready :) exciting times.

thnx

one more thing, to open the iphone, what can i use instead of that green "ipod openning" tool on:
http://www.ifixit.com/Guide/iPhone/Rear-Panel/105/4/Page-2/Antenna-Cover
ima just use a screw driver i guess untill covers are off.

is it better to restore the iphone and jailbreak before starting this or doesnt matter at all? (figured the 50 apps+ mightve fkd up is phone a little maybe better restore)

pls reply if you know

I tried a flathead screwdriver.. Didn't quite work out well...

I'm on my way to the store.. Maybe try to find something that'll work.

As well as purchase a few other tools I may need in the future..

I personally would start working with a clean iphone.. Just because I'm nitpicky about things like that.

I don't think it matters that much to be honest. All that may matter from what I've read is.. You need to be on 1.1.1 not 1.1.2

i am definitley not opening up my iphone im just waiting for the software unlock this method is too risky and with my lack of luck i could probably do something worse than bricking the phone, not taking my chances waiting for the soft unlock thats it....hope it comes out in a couple of days now that they found the 1.1.3 seckpack =D

K... i just hung up phone with a freind, gonna go unlock his 1.1.2 otb with this tutorial, unless he chickens out. (my iphone aready has a sim solution)

but first few questions to confirm what i think i know:
1) in the tuto it says connect testpoints before running iunew but when do i release exactly? is it when output is:

"TESTPOINT WORKS: 55
Press any char, then hit enter after testpoint has been disconnected
x"

2) after process done the iphone becomes exactly like a 3.9 BL 1.1.1 otb right? no probs and no future problems upgrading and what not right?

hopefull i get answers b4 i get to his house and get tools ready :) exciting times.

thnx
1) Release testpoint when it says "Testpoint works" yes - it should only take a second or so from iunew is executed until you can release the testpoint.

2) Yes, exactly like OTB 1.1.1. You can just follow the tutorial at http://iphone.unlock.no/ to jailbreak and unlock it after you have downgraded bootloader.

3) A guitar pick can be used, or any other very sharp plastic things. You could use a tiny screwdriver also, but you may bend/scratch the metal casing a little.

starting now to take apart iphone....

nobody still tried this tutorial ??
Just tried it (not exactly this tutorial, but the way on Geohot's blog, which looks quite similar), and it worked. OTB 1.1.2 iPhone now running BL 3.9, which allowed me to unlock it with AnySIM.

The hardest part is definitely opening the case, the rest is quite simple (especial because it wasn't my iPhone, it was a friends one :-) ).

One advice: don't run ienew over wifi, just use the terminal application: I did it over wifi and the Phone crashed after (during?) running ienew. So I had to do a reboot after running ienew but before iunew. After reboot I had now wifi, the iPhone complained that it's damaged and need repair, and (worst of all) bbupdater -v showed a "resource busy". I tried to run ienew and it worked as expeded, but after restore to 1.1.1 still no baseband (iPhone still complaining "need repair", bbupdate -v show "resource busy). A restore to 1.1.2 rescued me: after that, the baseband was working again, including wifi and i could continue unlocking the iPhone.

So, if anybody finds a easy way to open the iPhone's housing, this is a nice way to get the "cool" 3.9 bootloader... but i took me about an hour to open the iPhone, causing serveral injuries of my fingers.

dpmpc, i am wondering wether to try it or not... Does it involve a high level of electronic knowledge? I don't know how to do the needles thing, how much cables from one to another...

By the way, what have you used to scrape the test point? I'm quite afraid of messing it up ending with a broken phone.

Thanks
(sorry for the english)

I murdered my fingers =/

Only left one scratch on the black antenna case. It took me almost 30 minutes just to get that off

Still haven't gone through with the tutorial.. I just wanted to see if I could get the case off.. and seeing as I got it off, the next time around should be a breeze.

I have my needles ready.. The only thing I don't have is a wire to connect em to. So anybody with an idea of what I can use.. I'm all ears.. Btw are the corks necessary? Can I use something like tape instead? Or any other suggestions for alternatives.. I'd be glad to hear them.

JA.3 .... i got my needles stuck through plastic bottle caps... im at the same point can't get my metal back off. the guitar picks only worked for the black cover... dunno what to use now.

Just wanted to share my experiences with this so far.

Getting the black antenna cover off was fairly easy. I used an exacto knife and carefully pried up right above the dock connector till I heard the snaps, then I slowly popped out the rest all around the corner on each side.

The exacto I used had a 3/4 inch angled blade, the tip was pretty thin so it was easy to get under the plastic.

As for the metal backing, I have yet to get that off. That is the hard part so far. screwed up and put too much pressure on the side (without the buttons) and now I have a bit of a bend in the metal. I had the exacto under the cover and tried prying it outward, that's not a good way to go. I'm going to try the card method until I get the actual iPod tool. Seems like lifting up the cover with a razor blade is probably the best method.

Anyone else share anything on this?

probably the hardest thing to watch out for
1. cutting too deep in the testpoints
2. deforming the metal backing
3. static

cutting too deep is a real problem that you may be able to fix by putting something in the break to reconnect it

deforming the metal...... well you might be able to lightly apply pressure to form it back close to normal.... best way to remove this is to use multiple tools and equally appling pressure

static discharge... is the killer here, if you make an arc your screwed

um i got it all opened up all the way. PS: make sure ur simetray is out holds back the back cover.
was tough but no bends or scratches anywhere.

now i was trying to connect testpoints didnt work 3 tries.

4th time my phone dc from my wifi and keeps searching for it finds it but wont connect. also i have a little E next to my signal bars. that for edge? i dont have edge in my country. any help apreciated. i would like to go to sleep and try tomorrow. can i just restore now to 1.1.2? or 1.1.1? althou i ran ieraser?

PS; it finds my wifi but with weak signal tries to connect and it then wont.

i would reboot..... since you havent done ienew you can reboot and maybe itll reconnect

shit just saw ur reply
already restoring to 1.1.1 i read somewhere some guy did that and it was fine he had same prob

lmao oh well better safe than sorry

does anyone kno if you can restore to 1.1.2 if ienew messes up at erasing flash

dunno but my phone is now saying "repair needed iphone cannot make or receive calls"

fk

i think you may have severed one of the testpoints

One advice: don't run ienew over wifi, just use the terminal application: I did it over wifi and the Phone crashed after (during?) running ienew. So I had to do a reboot after running ienew but before iunew. After reboot I had now wifi, the iPhone complained that it's damaged and need repair, and (worst of all) bbupdater -v showed a "resource busy". I tried to run ienew and it worked as expeded, but after restore to 1.1.1 still no baseband (iPhone still complaining "need repair", bbupdate -v show "resource busy). A restore to 1.1.2 rescued me: after that, the baseband was working again, including wifi and i could continue unlocking the iPhone.


I'm on the exact same situation, after running ienew over ssh I didn't get any output from it and the WiFi connection was dropped, after that I couldn't reestablish it. I tried restoring the phone with both 1.1.1 and 1.1.2 (the latter took forever) and get the 'Repair Needed' message, basically I'm stuck with a brick now. I'm using iTunes 7.5 on Leopard. What iTunes version did you use to make the 1.1.2 restore?

Best regards and good luck to all unlockers.

anybody know how to jailbreak 1.1.1 without using the wifi method? this is the only thing stopping me from doing this.
there was a guide that didnt require wifi but it did require downing to 1.0.2 and then using wifi so it doesnt quite work.

Seems like lifting up the cover with a razor blade is probably the best method.

Anyone else share anything on this?

I used a full-size utility knife blade, pinched in a pair of vice grips. It gets in there easily, but I did make a couple scratches getting the case off.

Removing the metal case is the biggest pain EVER! I have probably removed 30+ metal cases and I always have stress marks in them, it's impossible to do it. I have about 50 ipod opener tools sitting here, no matter what, as soon as I try to open the metal using them, the end of the tools just snap right off! Anyone have an easier way to do it without damaging it? If so, let me know!!

Quick update on my progress. I managed to get the back cover off using just a card, an Esso Extra membership card to be exact. I just jammed it in and ran it all the way to the top of the phone.

I did end up with stress marks part of the way up the phone, and the sides kind of stick out on it now that it's all put back together. I haven't attempted the bootloader downgrade just yet, I just wanted to find out how difficult it would be to open this thing up first. It seems like doing it without stress marks is going to be hard. The backing is very soft metal, the slightest pull on it will create some marks. We need something that will get under the backing in order to release the clips, but wont pull outward too much. I would assume the iPod removal tool would work find, but I have yet to try it.

Let's keep sharing out stories here, we may be able to find out a nice fool proof process. Anyone try the guitar picks? How'd that go?

dpmpc, i am wondering wether to try it or not... Does it involve a high level of electronic knowledge? I don't know how to do the needles thing, how much cables from one to another...

No, not realy, as long as you have a calm hand and a reasonable thin soldering iron, you don't need to be a electronic crack. I scratched the tespoint and soldered a small wire to it an an other to the marked resistor, this wasn't too hard...

I'm on the exact same situation, after running ienew over ssh I didn't get any output from it and the WiFi connection was dropped, after that I couldn't reestablish it. I tried restoring the phone with both 1.1.1 and 1.1.2 (the latter took forever) and get the 'Repair Needed' message, basically I'm stuck with a brick now. I'm using iTunes 7.5 on Leopard. What iTunes version did you use to make the 1.1.2 restore?

ok, the same miste I made. Did you run iunew before you restored back to 1.1.1 (or 1.1.2)? And this produced no error-message? The restore to 1.1.2 took a very long time for me (~10 minutes), but after finishing Itunes said everything is restored (no errormessage) and the phone was working again. If you didn't run iunew, then you have to do so: AFAIK you can use ibricker on a 1.0.2 firmware to activate and upload files without wifi (dont't know realy, never used ibricker).

I used Itunes 7.5 on Leopard to restore the iPhone back to 1.1.2. And I didn't downgrade the phone to 1.1.1 before I started, I used the preinstalled 1.1.2...

i learned Electronic when i'm 16 years old, now i'm 28, working now in TV as graphic designer and no relation on electronic for about 8 years - something forget, but something not :)
So the question is:
"if the testpoints are on the Bootloader chip - theoreticly we can connect these testpoints in software way, just need to find code and put all together"
why i'm say that? i remember in skool we doing that, but don't ask me to do it again, because 8 years make me rusty :)
but some dude can do it - if this boot chip allow this
-

post got dup'd, rm'd

i learned Electronic when i'm 16 years old, now i'm 28, working now in TV as graphic designer and no relation on electronic for about 8 years - something forget, but something not :)
So the question is:
"if the testpoints are on the Bootloader chip - theoreticly we can connect these testpoints in software way, just need to find code and put all together"
why i'm say that? i remember in skool we doing that, but don't ask me to do it again, because 8 years make me rusty :)
but some dude can do it - if this boot chip allow this
-

you are correct. thats why a software unlock is only days away!:D

ok, the same miste I made. Did you run iunew before you restored back to 1.1.1 (or 1.1.2)? And this produced no error-message? The restore to 1.1.2 took a very long time for me (~10 minutes), but after finishing Itunes said everything is restored (no errormessage) and the phone was working again. If you didn't run iunew, then you have to do so: AFAIK you can use ibricker on a 1.0.2 firmware to activate and upload files without wifi (dont't know realy, never used ibricker).

I used Itunes 7.5 on Leopard to restore the iPhone back to 1.1.2. And I didn't downgrade the phone to 1.1.1 before I started, I used the preinstalled 1.1.2...

I ran ienew from downgraded 1.1.1. After that no output appeared on the ssh session screen and the WiFi connection was dropped a few minutes later. I had no WiFi then, I could get to the home screen, open applications, etc. but no WiFi. So I restarted the phone just to get into the 'repair needed' situation. I tried restoring to 1.1.2, it took forever with no luck (got an error in the end of the process), the phone got stuck into recovery mode. I kicked out of it with Independence, it was then on 1.1.2 but still with the 'repair needed' and no phone/wifi functions. I downgraded to 1.1.1 again, upgraded to 1.1.2 (done that like 4 to 5 times already). Always with the same result. Only thing I haven't been able to do is to downgrade to 1.0.2 - I keep getting 'unknown error (1)'. I tried uploading the 1.0.2 WTF file on an old DP PowerMac G4 I have with Tiger using iPhuc, after that the phone would accept the 1.0.2 ipswf but got stuck on 'waiting for iphone'.

I'm now restoring to 1.1.2 again, to see if I have any luck.

Regards and good luck.

I ran iunew from downgraded 1.1.1. After that no output appeared on the ssh session screen and the WiFi connection was dropped a few minutes later. I had no WiFi then, I could get to the home screen, open applications, etc. but no WiFi. So I restarted the phone just to get into the 'repair needed' situation. I tried restoring to 1.1.2, it took forever with no luck (got an error in the end of the process), the phone got stuck into recovery mode. I kicked out of it with Independence, it was then on 1.1.2 but still with the 'repair needed' and no phone/wifi functions. I downgraded to 1.1.1 again, upgraded to 1.1.2 (done that like 4 to 5 times already). Always with the same result. Only thing I haven't been able to do is to downgrade to 1.0.2 - I keep getting 'unknown error (1)'. I tried uploading the 1.0.2 WTF file on an old DP PowerMac G4 I have with Tiger using iPhuc, after that the phone would accept the 1.0.2 ipswf but got stuck on 'waiting for iphone'.

I'm now restoring to 1.1.2 again, to see if I have any luck.

Regards and good luck.

you are putting into dfu mode right?

So with this method you can have a 1.1.1 unlocked from a 1.1.2 oob, but if after this tutorial i upgrade to 1.1.2 can i phone??thanks!

I'm having the same problem as a few people on here: I ran the ienew command and lost wifi, and didn't have MobileTerminal installed. So I had no choice but to reboot the phone at which point wifi ceased to work and the repair message started popping up.

So I saw one post mentioning restoring back to 1.1.1, then up to 1.1.2 -- I followed this procedure and still evidently had no baseband. When I restored 1.1.1 the error was 1011, and to 1.1.2 the error was 1002, and, like others have mentioned, this was an extremely slow restore. On neither firmware could I dial any numbers, and both were extremely slow to respond.

Since then, I've followed geohot's advice and downgraded to 1.0.2. I then used iBrickr to jailbreak and install PXL, and Pacay Carnaval or whatever it's called to activate the phone. I was still receiving the 'phone requires repair' error message and the phone was very slow to respond.

I installed MobileTerminal and copied the contents of the pack posted on geohot's blog to /usr/bin. I set all binary files to +x.

iunew kept giving me a bus error -- I realised I did not have the testcode.bb or nor file. I found an old iPhone unlock pack containing these files that I had lying around, and uploaded then. I was still getting a bus error, but after chmodding all files to 775 I finally got to the point where iunew would ask me to connect the testpoint.

After connecting the testpoint, I got to the point where you are asked to type a character and press return - then the 'Downloading modified nor...' which I left for an hour with no further progress.

I had tried rerunning ienew but kept getting 'Could not write' or something similar.
I am now attempting to update the phone to 1.1.2 again to see if the baseband is restored.

Is there anything that I am doing wrong? I have noticed geohot's blog mentions finding an old nor dump and writing a new file with the first 0x20000 bytes which I didn't do... how is this achieved?

Should I create this file and then attempt to downgrade to 1.0.2 and run through the procedure as I did before?

Thanks in advance for any potential help.

I'm having the same problem as a few people on here: I ran the ienew command and lost wifi, and didn't have MobileTerminal installed. So I had no choice but to reboot the phone at which point wifi ceased to work and the repair message started popping up.

So I saw one post mentioning restoring back to 1.1.1, then up to 1.1.2 -- I followed this procedure and still evidently had no baseband. When I restored 1.1.1 the error was 1011, and to 1.1.2 the error was 1002, and, like others have mentioned, this was an extremely slow restore. On neither firmware could I dial any numbers, and both were extremely slow to respond.

Since then, I've followed geohot's advice and downgraded to 1.0.2. I then used iBrickr to jailbreak and install PXL, and Pacay Carnaval or whatever it's called to activate the phone. I was still receiving the 'phone requires repair' error message and the phone was very slow to respond.

I installed MobileTerminal and copied the contents of the pack posted on geohot's blog to /usr/bin. I set all binary files to +x.

iunew kept giving me a bus error -- I realised I did not have the testcode.bb or nor file. I found an old iPhone unlock pack containing these files that I had lying around, and uploaded then. I was still getting a bus error, but after chmodding all files to 775 I finally got to the point where iunew would ask me to connect the testpoint.

After connecting the testpoint, I got to the point where you are asked to type a character and press return - then the 'Downloading modified nor...' which I left for an hour with no further progress.

I had tried rerunning ienew but kept getting 'Could not write' or something similar.
I am now attempting to update the phone to 1.1.2 again to see if the baseband is restored.

Is there anything that I am doing wrong? I have noticed geohot's blog mentions finding an old nor dump and writing a new file with the first 0x20000 bytes which I didn't do... how is this achieved?

Should I create this file and then attempt to downgrade to 1.0.2 and run through the procedure as I did before?

Thanks in advance for any potential help.

is your phone 1.1.2OTB?
if so, let us know how you down'd to 1.0.2.

you are putting into dfu mode right?

Yep. I've managed to get past the 'unknown error (1)' but now I'm stuck on 'waiting for iPhone'.

is your phone 1.1.2OTB?
if so, let us know how you down'd to 1.0.2.

Yes - 1.1.2OTB with bootloader 4.6. The procedure I followed seemed to allow a downgrade to 1.0.2 - I just DFU'd and selected the 1.0.2 restore file. Nothing special. At one point I did have to uninstall iTunes, restart the PC and install iTunes again (using 7.5) in order to restore - I think the error was 1046. Maybe this is worth a shot?

I've just had the same error (1) trying to downgrade from 1.1.2 to 1.0.2 - I am not getting this error downgrading to 1.1.1. I will report if successful and will attempt to downgrade again to 1.0.2.

Any info on the nor dump?

Some hints if you want to try this tutorial:


Before you start: install MobileTerminal (in installer: Term-vt100)!
Copy all required files to your iPhone.
Run ienew from MobileTerminal (not via a SSH-Session!). If your phone crashed during ienew, restart your iPhone (it will complain that it needs repair, no more wifi, you can't make any (emergency)-calls) and run iunew before you restore your phone to 1.1.1 / 1.1.2 (this could take a little bit longer than usual).
Remember: there are two different programs involved in this process: 1. ienew, which erases the baseband and 2. iunew, which installs the new (or better old 3.9) bootloader from your nor-dump!


I hope this helps a little bit...

I've updated the nor file included in the "bootloader downgrade" package... There was a problem with the one included earlier. I'm really sorry about that... Thanks to geohot for pointing that out.

I've updated the nor file included in the "bootloader downgrade" package... There was a problem with the one included earlier. I'm really sorry about that... Thanks to geohot for pointing that out.


GeeZuZz, is your tutorial now completely correct? So it won't brick the iPhone?
*except i am a dumb and do mistakes* ... i am asking since several people bricked
their iPhone or got damages of functionality like no wi-fi and else.

regards

Update: I resolved the error 1 message trying to downgrade to 1.0.2 by downgrading first to 1.1.1, running AppTapp to boot the phone out of recovery mode and then I was able to downgrade to 1.0.2.

GeeZuZz, is your tutorial now completely correct? So it won't brick the iPhone?
The nor file previously wrong is fixed, and geohot verified it for me. The other files are taken from geohot's blog. I really doubt it's possible to brick the phone (even with the wrong nor it didn't brick the phone, you just needed to erase it again and write the correct nor), as long as you don't update to 1.1.3. Also make sure you have a terminal installed on the phone as a backup if wifi is temporarly lost.

I've gotten back to a 1.0.2 firmware, have uploaded all relevant files including the update nor dump. When running iunew, the process still halts at 'Downloading modified nor...' and does not progress any further.
ienew says that it can't write.
All files are permission 775.
I've definitely unloaded com.apple.CommCenter.plist
Anything I should try?

Hi guys

I managed to restore my iPhone to 1.0.2 using iBrickr and iTunes. After that I used iBRickr to Jailbreak it... and copied the lockdown file to the correct directory and thus activating it. Then I used WinStaler to install terminal app since PXL wasn't working for me. To do that you must download terminal app folder and then use Winstaller to send it to your iPhone. Now I'm back in the iPhone jailbroken, activated and with terminal. I copied all files from BSD system manually using iBrickr because it didn't install with PXL either.

Now I can run iunew and I get this:

Resetting the Baseband...Done
Opened: /dev/tty.debug
iUnlocker: tool by geohot
Modified to erase
Spamming AT, waiting for a response
Attempting to read[1]...c0
Connected established to bootrom
zsh: bus error iunew

I don't have TP on.. was running to see if I got to the TP failed part. Will this work with TP on or do I have something missing already?

Thanks

i dont really understand all the step.and opening the iphone makes me scared.is it better to wait for the software unlock or ask someone to do it?
any suggestion guys?
thx

Hi

A friend of mine has a OTB112 that he accidently upgraded it to 1.1.3. I just want to know if it is still possible to do a testpoint downgrade bootloader?

this problem is new to me, have done unlock from iphones 1.02, 1.1.1, 1.1.2 and OTB 112 with stealthSim.

Would an OTB1.1.2 upgraded to 1.1.3 and StealthSim work? or do i need a jailbreak 1.1.3?

thanks

chesnab: No, if you upgrade an OTB 1.1.2 to 1.1.3 you must wait for 1.1.4 to be released before you can do anything to the phone part (you can downgrade and use as ipod though).

GeeZuZz, is your tutorial now completely correct?
I got someone confirming that it works now, so i think yes.


zsh: bus error iunew

I think this error means that there are missing/incorrect files. Are you sure that the correct testcode.bb is in the same directory as iunew?

Hi

A friend of mine has a OTB112 that he accidently upgraded it to 1.1.3. I just want to know if it is still possible to do a testpoint downgrade bootloader?

this problem is new to me, have done unlock from iphones 1.02, 1.1.1, 1.1.2 and OTB 112 with stealthSim.

Would an OTB1.1.2 upgraded to 1.1.3 and StealthSim work? or do i need a jailbreak 1.1.3?

thanks

yes. you should be able to downgrade to 1.1.1 and activate/jailbreak as normal. then virginize the phone. then proceed with the unlocking guide.

not sure about your stealthsim question though.

GeeZuZz, aglitch, thanks for the info. I guess my friend has to wait a bit longer. :cool:

open your iphone under two minutes :) (http://mytrini-iphone.blogspot.com/2008/01/open-your-iphone-with-pocket-knife-in.html)

open your iphone under two minutes :) (http://mytrini-iphone.blogspot.com/2008/01/open-your-iphone-with-pocket-knife-in.html)
To be honest, i doubt that phone was not opened before. I won't believe it before i see him take the phone out of a sealed box.

i opened that phone, it was the first time opening that one - i am going to try my hand at the hardware downgrade before sacrificing another :)

now looking in the drawer of the dead iphones - i can show you the phones that were sacrificed learning how to open phones..

One question about actually opening the iPhone itself. When you are busting it open, I'm guessing your tools are making various dents and gashes on the unit?

I want to do this HW unlock, and I'm pretty confident on doing it, just I want to open the iPhone as neatly as possible making very little marks on the unit. If there are a lot of visible marks on it, I don't know if I still want to continue with the mod. :S

Hello all,

i can confirm the method works! (OOB 1.1.2, with 4.6 Bl) Just did it. It's really hard to open the iphone without scratching it..... not for everybody. The hardest part is also to scratch that tiny trace , you need a good magnifying glass, as with you eyes you can't see the trace. Also putting the needles on the mentioned points is not easy... as i stated not for newbies!
Good luck guys!

Hello all,

i can confirm the method works! (OOB 1.1.2, with 4.6 Bl) Just did it. It's really hard to open the iphone without scratching it..... not for everybody. The hardest part is also to scratch that tiny trace , you need a good magnifying glass, as with you eyes you can't see the trace. Also putting the needles on the mentioned points is not easy... as i stated not for newbies!
Good luck guys!

sweet deal. you used the updated files?
did you do it over wifi or with mobile terminal?

can you write a tutorial please ?

I can't open rear panel (grey metallic panel) - and basta !

What can I do ?

What is the method u use, all of you who really open the cover ?

Thanks

yes i used the updated files, and did it over the mobile term, set the seconds to 30 in order to give me enough time to check the locations of the pins..

I can't open rear panel (grey metallic panel) - and basta !

What can I do ?

What is the method u use, all of you who really open the cover ?

Thanks

I used guitar picks (small plastic pieces 0,5mm thick) to open it (put it between the gap of the alu cover and the chrome chasis of the phone), injured myself twice, was really hard. 1 hour fighting. (i helped also with plastic pens to pray a bit the cover in order to get taht small gap for introducing the pick..

can you write a tutorial please ?

Hi the tutorial is already written here : http://iphone.unlock.no/bootloader_downgrade.htm

cheers

Hi the tutorial is already written here : http://iphone.unlock.no/bootloader_downgrade.htm

cheers

did you follow exactly this tutorial step by step ?

yes i used the updated files, and did it over the mobile term, set the seconds to 30 in order to give me enough time to check the locations of the pins..

sweet deal. congrats man. will try myself tomorrow after a visit to the hardware store. lol

did you follow exactly this tutorial step by step ?

Yep, word by word ;-)

great ! it prooves that there isn't any mistakes in this tutorial ... I'm going to wait few more day and if no software unlock I'll do it

Hi, I just want to know what's happened if the phone is restart or by accident is power off during the processes.

I mean to this advice:

It's very important that you DO NOT restart your phone after erasing!

pino0105: Thanks for confirming!

Hi, I just want to know what's happened if the phone is restart or by accident is power off during the processes.
The reason is that in theory the modem/wifi will still work if running when erased - it's not until next startup it will not be able to run.

But AFAIK it isn't really that big deal, because if you use terminal on your phone instead of SSH over wifi, it doesn't really matter if you loose wifi.

# iunew
Resetting the Baseband...Done
Opened: /dev/tty.debug
iUnlocker: tool by geohot
uploads and runs testcode.bb in the same dir
uploads the nor image in "nor"
make sure your switch is on
thanks to iProof and lazyc0der for finding this method
thanks to the siemens guys for discovering it
and thanks to nightwatch for the awesome toolchain
Spamming AT, waiting for a response

And then the protocoll stops - no more message.

Any idea?

pino0105: Thanks for confirming!


The reason is that in theory the modem/wifi will still work if running when erased - it's not until next startup it will not be able to run.

But AFAIK it isn't really that big deal, because if you use terminal on your phone instead of SSH over wifi, it doesn't really matter if you loose wifi.

Ok, but I mean the advise of the caution of power off r restart the iphone after run the ienew command

Ok, but I mean the advise of the caution of power off r restart the iphone after run the ienew command


After that my iphone don't power on, help!!!!:eek:

Try plugging in the iPhone for just a moment and it should kick on, just don't let it try to sync up w/itunes.

Try plugging in the iPhone for just a moment and it should kick on, just don't let it try to sync up w/itunes.

Thanks, but itunes doesn't detect the iphone, i'm worry about that, the last message was:

"Do you erase the flash first"

Thanks, but itunes doesn't detect the iphone, i'm worry about that, the last message was:

"Do you erase the flash first"

1 thing, i plugged the ac adapter and I press the power botton and the white apple appears but nothing more, stay right there.

Looks like your only choice may be the method used in this post :
http://www.hackint0sh.org/forum/showpost.php?p=185655&postcount=27

Looks like your only choice may be the method used in this post :
http://www.hackint0sh.org/forum/showpost.php?p=185655&postcount=27

i think that i brake the line, what i can do?

Dude, you gotta press it really hard to break the line, maybe you only scratched the green cover...i hope....

for all who are trying to do the testpoint alone a nice tip is to attach the needles to a school compass (pair) properly isolated and wired so you can press the screen....

i did it several time last year when this method was released...

any problem mp...

also to diassemble the phone, the small knife of a swiss knife is really helpful....and also a priing tool....

I can't open rear panel (grey metallic panel) - and basta !

What can I do ?

What is the method u use, all of you who really open the cover ?


The best things to use are iPod "pry tools" which are specially designed for opening ipods, and can also be used for iPhones.

The metal part is actually fairly easy to remove once you get the hang of it (don't forget to take out the SIM tray and remove the 3 screws first!). The harder part is removing the black antenna cover. I've opened several iPhones and still find this bit difficult without leaving some marks.

i think that i brake the line, what i can do?

make sure ituneshelper is running otherwise your iphone won't be detected

one more thing, to open the iphone, what can i use instead of that green "ipod openning" tool on:
http://www.ifixit.com/Guide/iPhone/Rear-Panel/105/4/Page-2/Antenna-Cover
ima just use a screw driver i guess untill covers are off.

is it better to restore the iphone and jailbreak before starting this or doesnt matter at all? (figured the 50 apps+ mightve fkd up is phone a little maybe better restore)

pls reply if you know

small knife of a swiss knife and maybe guitar picks....any problem, mp!

Dude, you gotta press it really hard to break the line, maybe you only scratched the green cover...i hope....

for all who are trying to do the testpoint alone a nice tip is to attach the needles to a school compass (pair) properly isolated and wired so you can press the screen....

i did it several time last year when this method was released...

any problem mp...

also to diassemble the phone, the small knife of a swiss knife is really helpful....and also a priing tool....

Dude, I think that I press it really hard, I think, because I use a multimeter (continuity) and no sound.

What's the job of this line? is important to power up the iphone?
can I replace these board?
why when i plugged the ac (no USB) cable the iphone present the Apple, then it's power off?

Dude, I think that I press it really hard, I think, because I use a multimeter (continuity) and no sound.

What's the job of this line? is important to power up the iphone?
can I replace these board?
why when i plugged the ac (no USB) cable the iphone present the Apple, then it's power off?

update!!

I pressing the home bottom and the power bottom and the iphone appears the itunes and connector (like when it are in restore mode), but when i unplugged the adapter ac cable the iphones power off.

Ask again, I most buy a other board?

anybody can share a pic for the damage that suffered the metal case when opened?... please, i want to see how possible can look the case if i open my iphone.:confused: .

PD: sorry my english..

Can't take a photo as I don't have a camera, but I damaged mine a bit. There is a very slight lip on the right-hand side where the case meets the chromed outer cover, and you can see a stress mark where the metal has been bent (only very slight). There's the odd scratch here and there. I guess if it's your first case I don't see how you couldn't damage it a bit, but I can live with that :)

i confirmed this website works.

just follow all the instruction and it goes by w/o a problem

few things to note,

after you finish doing the iunew,
if you type bbupdater -v, you will not get a ping (it is normal)

NOTE: YOU HAVE TO UPDATE BACK TO 1.1.2 INORDER TO UNLOCK

so turn off ur iphone, then restore to 1.1.2
jailbreak n downgrade back to 1.1.1
jailbreak 1.1.1 (you can not unlock your phone in 1.1.1 so don't worry about anySim)
install oktopep
hit SHIFT + UPDATE in itune n install 1.1.2
double click windows.bat (download the 1.1.2 jailbreak program online)

your phone should be jailbreaked at this point and your installer should still be in the springboard. Now add rep.frenchiphone.com in your source and install 1.1.2u AnySim.

wait til it finished and you are set!!!

Great job everyone.

ep3hatch03: Thanks for your feedback.

Does anyone know what happens if you instead of restoring to 1.1.2 after finishing, you perform an upgrade to 1.1.2? Will baseband still be flashed?

Hope someone can try this:

In the start when installing BSD Subsystem, terminal and bootloader downgrade packages, also install Oktoprep found in Tweaks 1.1.1.

Then when you have completed the bootloader downgrade, instead of restoring, SHIFT-click "Upgrade" and select 1.1.2 firmware file.

When done upgrading, jailbreak using this java application: http://conceitedsoftware.com/iphone/1.1.2-jailbreak.zip

Of course, if it doesn't work, trying this won't damage your phone at all - if it doesn't work, just restore to 1.1.2 like normal.

That would definitely simplify things if it works.

i lost my imei and iccid in h/w unlock.....
anyone knows how to recover it?
now,i can't make any call and jailbreak my phone...........

i lost my imei and iccid in h/w unlock.....
anyone knows how to recover it?
now,i can't make any call and jailbreak my phone...........
You must restore to 1.1.2.

Here's what happened to mine. Unfortunate too, she's an original 3.9, I just opened her up to see how difficult it will be.

http://jessedyck.com/images/opened-iPhone-example.jpg

ep3hatch03: Thanks for your feedback.

Does anyone know what happens if you instead of restoring to 1.1.2 after finishing, you perform an upgrade to 1.1.2? Will baseband still be flashed?

Hope someone can try this:

In the start when installing BSD Subsystem, terminal and bootloader downgrade packages, also install Oktoprep found in Tweaks 1.1.1.

Then when you have completed the bootloader downgrade, instead of restoring, SHIFT-click "Upgrade" and select 1.1.2 firmware file.

When done upgrading, jailbreak using this java application: http://conceitedsoftware.com/iphone/1.1.2-jailbreak.zip

Of course, if it doesn't work, trying this won't damage your phone at all - if it doesn't work, just restore to 1.1.2 like normal.


pardon my ignorance here!!!!

Quite a brilliant piece as usual, but how were the ienew and iunew files and other needed files copied unto the iphone.. please pardon my ignorance here...i did not see a mention of how the files were copied unto the iphone.

Is the tutorial assuming the files must have been copied unto the phone before starting the tutorial?

thanks for it all

bR

yeah, got the answer to my question here....

http://www.hackint0sh.org/forum/showpost.php?p=182331&postcount=6

but ... it could be made even easier, by adding the files via ibrick, since the phone must have been jaulbroken etc.

or ??

bR

but ... it could be made even easier, by adding the files via ibrick, since the phone must have been jaulbroken etc.
Just use Installer on the phone, i think that's easier. But if someone finds some documentation on how to create a PXL for use in ibrickr, let me know.

Btw: Nice to see other phone unlockers here - i'm sure i've seen you at http://forum.gsmhosting.com ;)

Here's what happened to mine. Unfortunate too, she's an original 3.9, I just opened her up to see how difficult it will be.

http://jessedyck.com/images/opened-iPhone-example.jpg

Remove the cover... then use some pliers with a shirt covering it so it doesn't scratch and straight that corner back to the way it was.. and your iphone will close again perfectly.

Have fun

to all who have problems.

- if you have repair needed message or "heating up" radio part that is probably because your baseband asic is running an endless loop. this means radio part become damaged (or erased but not flashed) for some reason. never mind, just update to 1.1.2 (never to 1.1.3! you won't be able to "re-virginize" or restore baseband if you get anything corrupted)
then you can torture that phone again.
in worst case (given that: you already have bootloader 3.9) you just downgrade the baseband (given that: you did not upgrade to 04.03.13)
in worst case, you will have to start over (condition above applies).

- I believe that supporting a theory about some mysterious "commands" that link two tracks on the PCB together with the power of magic has more to do with some stupid Hollywood science fiction movie than with something like a slight realization of the underlying security.

to those who are too tired: don't expect a "software only" method soon to be published.
I am not stating it is impossible, but the complexity and resources needing to be involved in the REing makes it unlikely to just appear on the inet (free or cracked).

Weird case, 2nd phone trying to downgrade and are running into some problems.
When doing the iunew, testpoint 55 executed OK. but however after pressing any key and enter to continue, the phone didn't freeze but didn't move after that.

left it about 10 minutes and the phone got really hot and froze. rebooted the phone, loads fine but says repair needed, so forced it to recovery and loaded 1.1.2 which gave 1002 error. used ibrikr to kick it out of DFU, slide the unlock on activation but some how the screen wasn't responsive at all. But the slider works. nothing else did.

Restore to 1.1.1 and got 1011 error. Same thing with the slider and keys. Key pad don't work slider does work.

Back to 1.1.2 and same thing. No changes

Back to 1.1.1 then 1.0.2, same thing, Key pads not working, no imei no cid. Since there is no wifi, no mobileterminal, no way to restore. what are my options

A. Take it to 1.1.3
B. Use it as very expensive paper weight

Take it to 1.0.2.. jailbreak with iBRickr... upload lockdown file to usr/libexec with iBrickr..install terminal app with winstaller (download the app first, use winstaller to upload it to the iphone).. run terminal app and run iunew.

You might need to manually install bsd system files uploading each folder with iBrickr (to use the sleep command for instance)..

good luck.

Downgrade to 1.0.2 via itunes immediately throws error (1). There must a way out...other all other restore throws 1011

Hello. I have erased baseband but after it phone has locked. I pushed atr the tap and display turn on but iphone don't work and i can't "slide to unlock". Now i have always turn on iphone with turn on display that don't react for everything. I understand that battery will be empty soon. What i can to do?

Oh, i have make iphone in restore mode and when i try restore to 1.0.2 itunes immediately throws error (1). I have same problem as jackal_007. How we can restore baseband?

try with ibrickr.
copy the 102 fw to ibrickr and rename it to 1.0.2.ipsw, then put the phone to dfu mode, ibrickr will recognize it as in dfu mode and ask you to boot the phone or downgrade, click downgrade and follow the instructions (you must downgrade with itunes after clickin in downgrade in ibrickr)

I sympathize with you. I have been in this situation and there are so many advices.

Here is the I am going to try, but this one requires windows and I don't have one yet.

http://www.hackint0sh.org/forum/showpost.php?p=186249&postcount=46

Anarchy, I appreciate your reply and help.

Do we have to quit ibrickr after we start restore in itunes?

I have decide this proglem with IBRICK. I have run ibrick and press boot the phone. And phone come back.
Now i have a new problem. A fter i have run sleep 40; iunew and connect testpoints, terminal indicate ZSH: BUS ERROR IUNEW? What dose it mean?

Hi all, i'm going to unlock today, i've searched for the nor file, but without success, anyone can help out with a link to a valid working NOR files??

thanks in advance to all of you!

correct nor file is in downgrade bootloader package.

yas_yarik
put testcode.bb in /usr/bin and chmod them to 0777

correct nor file is in downgrade bootloader package.

Sorry, Where is the downgrade bootloader package?

any link? please

Thanks

you can find it under installer -> install -> unlocking tools

Finded it! tank you!

yeah, that will install all the files required in /usr/bin of the iphone.

You may also want to install BSD system and Vt100 terminal to run it.

solution (http://www.hackint0sh.org/forum/showpost.php?p=186249&postcount=46) from superg3 not work for me :(
i got error message when restore to 1.1.2 (same as 1.1.1)
my full process - 102,jail,activate,bsd,vtt-100,1.1.2otb.rar,chmod,ienew(waiting for data),iunew(earase flash first),iunew+a17tp(flash to 1FF00),reboot,rest_1.1.1(1011),rest_1.1.2(1011)
any ideas?
maybe restore to 1.1.3? but how downgrade bl on 4.03.13?

First of all, thanks for the great tutorial!
However I have one question - if I have jailbroken 1.1.2 OTB, running 1.1.2 (I already downgraded to 1.1.1 and did all required things to get jailbroken 1.1.2), do I need to downgrade to 1.1.1 once again to perform this unlock or it can be done on jailbroken 1.1.2 as well?

hydralien
you must run 1.1.1 or 1.0.2 on your iphone, 1.1.2 not recommended

hydralien
you must run 1.1.1 or 1.0.2 on your iphone, 1.1.2 not recommended

Not recommended or impossible? Did someone try that?

I did mine from 1.1.2 with no problems other than losing wi-fi. ymmv, of course.

I did mine from 1.1.2 with no problems other than losing wi-fi. ymmv, of course.

Thanks for info! So how did you restore wifi after that? I suppose restoring 1.1.2 will make me go through downgrading-oktoprepping-upgrading-jailbreaking again?

Just so you know exactly what I did. After downgrading the BL with iunew, I attempted to restore to 1.1.1 twice, and both times I received an error 1011. I then restored to 1.1.2 and everything was perfectly fine. Then it was back down to 1.1.1, jailbreak, install OktoPrep, upgrade to 1.1.2, jailbreak and run anySIM 1.1.2u.

I hope everything goes smoothly for you!

Just so you know exactly what I did. After downgrading the BL with iunew, I attempted to restore to 1.1.1 twice, and both times I received an error 1011. I then restored to 1.1.2 and everything was perfectly fine. Then it was back down to 1.1.1, jailbreak, install OktoPrep, upgrade to 1.1.2, jailbreak and run anySIM 1.1.2u.

I hope everything goes smoothly for you!

Uh, thanks for detailed answer, that's all what I wanted to know =)

Hello. I have a big problem. I have installed in istaller all beside Baseband Downgrader. I have erased baseband with "ienew". Now i have iphone without baseband and wifi don't work. How i can intall baseband downgrder package??? What i can to do in this case?

Hello. I have a big problem. I have installed in istaller all beside Baseband Downgrader. I have erased baseband with "ienew". Now i have iphone without baseband and wifi don't work. How i can intall baseband downgrder package??? What i can to do in this case?

And i have restarted IPHONE after erasing. What i can to do?

Hello. I have a big problem. I have installed in istaller all beside Baseband Downgrader. I have erased baseband with "ienew". Now i have iphone without baseband and wifi don't work. How i can intall baseband downgrder package??? What i can to do in this case?

If you're on Windows, I think you can try using IphoneBrowser (http://code.google.com/p/iphonebrowser/) to upload files mentioned in tutorial manually (sorry, can't say what files exactly, didn't do that myself yet). But note that if you need to execute some of them you'll need to run chmod a+x for them in iPhone terminal.

Continue with the testpoints and running iunew. After successfully running iunew, you should be okay after you restore to 1.1.2.

I have tried to start ienew, but terminal indicate: "Can't write"

Continue with the testpoints and running iunew. After successfully running iunew, you should be okay after you restore to 1.1.2.

I have tried to start ienew, but terminal indicate: "Can't write"

In your previous post you said you already ran ienew, I'm saying run "iunew" with the testpoints connected.

In your previous post you said you already ran ienew, I'm saying run "iunew" with the testpoints connected.

I have tried many times but always see "Please connect the tespoints"

Then you are not making contact with the test points. Are you using needles? Or something else? Or perhaps you need to give yourself more time to get them in place by increasing time on the sleep command?

Then you are not making contact with the test points. Are you using needles? Or something else? Or perhaps you need to give yourself more time to get them in place by increasing time on the sleep command?

Ok. I have done all. But when i try restore to 1.1.2 i receive error 1022

Ok. I have done all. But when i try restore to 1.1.2 i receive error 1022
I have restored IPHONE to 1.1.1 but iphone indicate that "Repair needed - Iphone cannot makes or receive calls". I have tried dial *#307# but call button don't react.

I think you may have to use this guide to get your phone jailbroken -

http://www.hackint0sh.org/forum/showthread.php?t=24122

And then attempt to load the BB via bbupdater.

Alternatively, if you are certain that you have the 3.9 BL loaded, you can do a 1.1.3 restore which may repair your baseband and there is a guide to downgrade it back.

I have restore to 1.1.2. After it i restores to 1.1.1. When i try to make jailbreak iphone come to display with globe and slider and in minute turn off display but not rebooted... and not jailbreaked.. What case of it?

I have restored IPHONE to 1.1.1 but iphone indicate that "Repair needed - Iphone cannot makes or receive calls". I have tried dial *#307# but call button don't react.
Try to restore to 1.1.2, and then restore back to 1.1.1 again.

i have jailbriked 1.1.1, installed oktoprep, update to 1.1.2. But how i can jailbreak 1.1.2. jailbreakme.com don't work

To yas_yarik: You can jailbreak and activate 1.1.2 by downloading the following file: http://www.navco786.com/iphone/1.1.2-jailbreak.zip

Unzip and double click windows.bat (make sure the usb cable is connected to the iphone). Let it run and then it will tell you to reboot. Do it. It will reboot twice. Don't touch anything until the second reboot has finished. Thats it.

I have successfully completed 4 hardware unlocks now. I'm still not used to opening the covers. Each time I have used different methods. Ipod tools are useless. All three I bought broke.

The best thing I have used to take off the black cover is a strong (small) sharp knife. No marks at all. The silver cover always ends up with marks no matter what.

I use a microscope whilst I scrape the trace ! Overkill I know but i'm not taking any chances.

From Maplins, you can buy 'test probe leads'. A small wire connected by small pins. Works 1st time everytime when connecting the points.

Ok. Thanks fo link jailbreak 1.1.2. I have jailbreaked 1.1.2. Copied AnySim 1.2 to Applications directory, change binary to 0755 but when i start any sim . Scroller for start not active!! What happens?

No. You're going the long way round. Its much simple than you think.

First run the installer app. Next go to sources. click edit (at the top-right), the add (at the top-left). Enter the following: modmyifone.com/installer.xml
Press ok. wait for it to load.

Then go to 'install' (at the bottom). go to utilities. install anysim 1.2.1u. Once it has installed close installer. go to SETTINGS and turn on airplane mode. then reboot your iphone once. Now run anysim app.

Which files are included in the bootloader downgrader which is located on i.unlock.no? I can't access via WI-FI (f*cked it up) so I need to upload it manually. Any chance of an url for it?

Which files are included in the bootloader downgrader which is located on i.unlock.no? I can't access via WI-FI (f*cked it up) so I need to upload it manually. Any chance of an url for it?

Here you go BL Downgrade Files (http://idisk.mac.com/jlitko/Public/HWHack112OTB.rar) The included nor has already been modded and is the same one I used on my phone. There are a couple links to some tips and pics in my sig.

Here you go saperum: http://www.navco786.com/iphone/112otb.rar

Hi,
I just downgraded my Iphone from 1.1.3 to 1.0.2 but I also need to change my bootloader and I see that you guys know how to do it, but can someone explain it step by step - how to do it, cause I can't uderstand it so far...
I've read somewhere that in order to do it, you have to physically open Iphone and scratch something inside what I'd rather avoid if it's possible... Is it??
Thx for help... :) I hope....

Continue with the testpoints and running iunew. After successfully running iunew, you should be okay after you restore to 1.1.2.
in my case i've got an error after restore to 1.1.2 (
can i restore to 1.1.3 from 7.5 itunes?
added
restoring to 1.1.3 nothing changed - 1011
i don't know what else to do ((

I followed the tutorial. I got the first part but when i wrote the old bootloader i did not get neither "Write the old bootloader"
nor did i get "please connect the test points". I get this " sh error no bus is available" and the program exists?

also after step 3 what happens if the phone restarts?

br
aboud

Thanks guys, much appreciated.

Hey there, well I have done around 10 in the last couple days, and all except one has gone fine. Unfortunately the one that does not work is royally screwed.

Did all the steps but after the ienew command it erased, and then restarted, and since I decided to panic, I then tried restoreing the firmware to try again, but of course nothing has gotten me to a point where I can now get back into the apps, it has no wifi, and no imei, and all restore try's follow with the error 1101.

Any way to fix this or am I screwed for now. I am quite techy, so feel free to give me difficult task.

Hi All:

I wanted to Thank You to all of who has been working in this Excellent Procedure and Guide, it is quite hard to disassemble the iPhone without the right tools, but here in Argentina we don’t have all the Apple Support has you may have in US or other parts of the world, attached are the "Argentinean Home Based iPhone Tools" hehehe It was pretty nice to apply all the procedures and figured out it worked smoothly!!!

We are really happy here at the office, it took around 5hs to complete all the process including disassembly of the phone.

Again, Thanks to all that supports this kind of tools.

Cheers from Argentina! :)

Did all the steps but after the ienew command it erased, and then restarted, and since I decided to panic, I then tried restoreing the firmware to try again, but of course nothing has gotten me to a point where I can now get back into the apps, it has no wifi, and no imei, and all restore try's follow with the error 1101.

Any way to fix this or am I screwed for now. I am quite techy, so feel free to give me difficult task.


You gotta get back to 1.0.2. Try iTunes 7.3, iBrickr, multi-DFU whatever you can think of. Once you are at 1.0.2 you can JB and activate without WiFi and reflash a 3.9 BL and any BB you want.

After following whole tuto, the iPhone continues to show me "no service" Does anyone ah suffered the same thing?

Help please

i did everything correctly, i ran ienew and it did what it was supposed to(at least thats what it looked like) then when i didn iunew and connected the testpoints it finished and said "did you erase flash first" please help me, possibly today

thank you

eldiablo you need to run again ienew

so just go from step 3 again?
and thank you very much for the reply

yeah from 3 good luck

I tried this method on 2 phones (1.1.2 OTB),
both i downgraded somehow to 1.1.1 and jailbreaked them on christmas...

___
opening each case took me 4-6 hours of .. and maybe a liter of blood :eek:
just try to stay calm..

i tried with ipod-opener and plastics and stuff but the metal backplate is the worst.

i found out that, on each side, you can sqeeze a very long shaped triangle metal plate in there to pop is open .. without dends or scratches(outside, inside it could be seen)

my wondertool (10 minutes to open the aluminium back part)
1mm thick metal, 10cm long
on the left its 1mm and scales to the right to 10mm.

__
at first i tried to do the erasing with SSH and the files from geohot .. that didnt work.. lost wifi.. apple + spinning wheel + iphone needs repairs ...
my advice> USE THE MOBILE TERMINAL!
i had to restore to 1.1.3 to get the IME numbers back..
so it works again but has to wait for the next unlock

__
the second i did the whole thing again but than with the
bootloader downgrade from installer and using the mobile terminal.

the erase seemed to work. but i had no numbers under SECPACK .. that line was blank. i got confused .. but it told me that it should have been erased... bbupdate -v couldnt ping..
so i ran the iunew with sleep 20 and that went well (with magnifyglass!). i needed 8 tries to get the timing right .. its all so small o.O
the output looked a little different to the one in this tutorial i had more lines .. but in the end i hoped it will just work .. because no errors occured ..

restored to 1.1.2 - still had IME (YEAH!)- downgraded to 1.1.1 - jailbreaked - oktoprep install - restored 1.1.2 - didnt work - downgrade 1.1.1 - jailbreaked - baseband downgrade - restored to 1.1.1 - jailbreak - bbupdater -v showed me 3.9 (YEAH!) 4.01.13G - inserted new card - installed anysim - run anysim - IT WORKS ! :D

still 2 iphones to go...


Super tutorial ! .. Many thanks again ..
Greetz from Holland! :D


ddpxl








ps: auw, my hands hurt ;)

how i jailbreak 1.0.2 with iphuck? iBrick & iDemocracy not work for me (((
plese help

For those who don't want to wait on a software downgrade, i have written a tutorial on how to downgrade the bootloader using testpoints. This method is basicly the same as the first unlock geohot published.

Tutorial here: http://iphone.unlock.no/bootloader_downgrade.htm

Tutorial is currently untested, but as mentioned, it's the same as the first unlock method so it should work.


Thanks to geohot (and the people he thanks): http://iphonejtag.blogspot.com/


Edit: There was a problem with the nor file first released, this is now fixed.

I successfully used your hardware unlock solution to downgrade my OTB 1.1.2 iphone last night.... I must say it took me from 10am in the morning until around 11pm at night.... but it was very much worth it.
There were several problems of note:
Main reason it so long was becuase when I downgraded to 1.1.1 at the beginning of the process, BSD Subsystem was not in the installer app... even though i had community resources etc... so I spent hours trying to put it on manually.... failed to do so and then restored back to 1.1.2 then again to 1.1.1 and tried the installer again and BSD Subsystem appeared in the installer app.... IS IT POSSIBLE THE DISTRIBUTOR OF BSD HAD THEIR SERVERS OFF....? MAYBE.

...Major problem with the unlock....
1. my case is no longer amazingly smooth.

2. got the testpoint to work after three tries, however, when I got through the process to run AnySim.... I forgot to place the handset in AIRPORT MODE!!!
BIG MISTAKE... means you have to downgrade/jailbreak/oktoprep etc all over again...

3. Finally after all the testpoint shit and jailbreaking 1.1.1 and doing the oktoprep... and then anysim etc... my phone excepted my foreign SIM card (iceland)...

ONE MAJOR PROBLEM.....

I can't place phone calls or write text messages...

1. everytime i type a number on the screen keypad it jumps back to the home screen.

2. When i call the iphone from another phone i get a dial tone but the iphone does not ring

3. same problem with text... you type in the number but when you try to type the MSG it jumps you back to the home screen springboard etc...

4. have uploaded contacts on to the phone from outlook to try an avoid the need to type in numbers... but even then although it calls the person there are no controls on the screen...so you can't hangup the call!
Can't seem to find much info on this...


WOULD LOVE SOME FEEDBACK ON THIS IF ANYONE HAS ANY IDEA HOW TO FIX THIS ISSUE....

That all said, the hardware method is a great fun and FREE! It's also easy if you follow the instructions.

I can't place phone calls or write text messages...

just install iworld and select your country :)

just install iworld and select your country :)


GENIUS! thank you so much... thought i had gone and messed up the trace or something!

EVERYTHING IS WORKING PERFECTLY NOW.

Thanks for all your help.

i have week 51 iphone and tried HW unlock and lost wifi.

after that tried to restore 1.0.2 but it says waiting for iphone message and never restores.

whenever i restore to other firmware versions i get error 1011.

111 112 113 , restoring all those versiions ends with error 1011.

now what should i do?

If you get a message saying "...did you erase flash first?" then:

You either did not erase flash (first step) or you have an iphone with the 1.1.3 baseband.
It will not work if you have already upgraded to 1.1.3

GENIUS! thank you so much... thought i had gone and messed up the trace or something!

EVERYTHING IS WORKING PERFECTLY NOW.

Thanks for all your help.

Firmware 1.1.3............JAIL BREAK RELEASED TODAY...

I have an OTB 1.1.2 iPhone that I have hacked using this hardware method and I now have it all working fine with an icelandic sim card... I went back to 1.1.2 and used anysim....etc and I was wondering now that 1.1.3 jailbreak is out... does that mean I can upgrade and jailbreak and still use the phone with any sim card such as my icelandic one....

i have week 51 iphone and tried HW unlock and lost wifi.
after that tried to restore 1.0.2 but it says waiting for iphone message and never restores.
whenever i restore to other firmware versions i get error 1011.
111 112 113 , restoring all those versiions ends with error 1011.
now what should i do?
i thing you have a completed brick :(
i have same brick but 1.0.2 downgradeble, but unjailbreakeble (((
now i search how flash the baseband-chip (sgold2) in other place then iphone (siemens etc.)
sorry for my english :rolleyes:

When i downgrade Base_band??? I need use SIM-CARD? Which one?

# sleep 20; ienew
resetting the Baseband...Done
Opened: /dev/tty.baseband
iEraser for 112OTB: tool by geohot
Modified to erase
Spamming AT waiting for a response



this is first

after that.... I try again

# sleep 20; ienew
resetting the Baseband...Done
Opened: /dev/tty.baseband
iEraser for 112OTB: tool by geohot
waiting for data...

Then nothing happends?? Any ideas? plz desperate here :eek:

# sleep 20; ienew
resetting the Baseband...Done
Opened: /dev/tty.baseband
iEraser for 112OTB: tool by geohot
Modified to erase
Spamming AT waiting for a response



this is first

after that.... I try again

# sleep 20; ienew
resetting the Baseband...Done
Opened: /dev/tty.baseband
iEraser for 112OTB: tool by geohot
waiting for data...

Then nothing happends?? Any ideas? plz desperate here :eek:


You must use:
# sleep 20; iunew NOT # sleep 20; ienew

You use ienew in the first step, when doing the testpoint part you use iunew.

hope that helps

# sleep 20; ienew
resetting the Baseband...Done
Opened: /dev/tty.baseband
iEraser for 112OTB: tool by geohot
Modified to erase
Spamming AT waiting for a response



this is first

after that.... I try again

# sleep 20; ienew
resetting the Baseband...Done
Opened: /dev/tty.baseband
iEraser for 112OTB: tool by geohot
waiting for data...

Then nothing happends?? Any ideas? plz desperate here :eek:


Move on to iunew, it will error out if the baseband hasn't been erased. If it does then simply run ienew again, and continue.

Still nothing happens :(

what's wrong? 2 iphones ca unlock perfects, then problems with the restore with 1.1.2, and with 1.1.1
is any bug in the h/w unlock?
please, there are too many iphone bricked and the people who make the unlock don't say nothing.

very bad

the tutorial works really good.... i unlock 23 iphones..... on the last two after i do the test point i restore the iphones to 1.1.2 and it gave me error 1011... when i kick mi iphone out of recovery mode it has no baseband no imei etc.. i cant activate because i cant dial anything... and it gives me the message "repair needed iphone cannot make or recive calls" i belive that its because when i ran the comands in the terminal and when i restore to 1.1.2 i had the at&t sim in the iphone..... can anyone help me please....

excuse me if my english is not too good im from venezuela :D

When i downgrade Base_band??? I need use SIM-CARD? Which one?
No, SIM card never matters. Only time you need sim-card is when you dial *#307# to jailbreak.

what's wrong? 2 iphones ca unlock perfects, then problems with the restore with 1.1.2, and with 1.1.1
is any bug in the h/w unlock?
please, there are too many iphone bricked and the people who make the unlock don't say nothing.

very bad
If you want to get help, you need to explain the problem better.
After downgrade completes, restore to 1.1.2. When restore completes, downgrade to 1.1.1.


@TriBalla: Try to restore to 1.1.2, then restore to 1.02 or 1.1.1 and start over again, and follow the tutorial carefully (i can see that you dont follow it very carefully since you wrote sleep before the ienew command...)

i try to explain.

1. restore 112 to 111, then indepence, jailbrrekme, and unlocking tools installer baseband downgrader.
2.shut down commcenter
3 ienew
4 iunew.perfect
5, restore in 1.1.2......
waiting... waiting.
6, restore to 1.0.2, ibrick,actiavtor, terminal, chmod,
again ienew, iunew perfect.

restore... 1.1.2.. and the same

where is the problem?

sorry i am nervous. thousands of sorries.

Try a restore to 1.1.1 and then to 1.1.2. Unfortunately, there doesn't appear to be much rhyme or reason to some people's success (or lack of success) in the process.

i have week 51 iphone and tried HW unlock and lost wifi.

after that tried to restore 1.0.2 but it says waiting for iphone message and never restores.

whenever i restore to other firmware versions i get error 1011.

111 112 113 , restoring all those versiions ends with error 1011.

now what should i do?

I have the same week 51 set and made the same brick as yours. The result is exactly the same. I followed the i.unlock.no guide quite well. I heard there is flaw in early release of "Bootloader downgrade" tool. I downloaded it in Jan 19. Now I am not sure if bootloader or baseband get fucked up. :mad:

5, restore in 1.1.2......
waiting... waiting.
This is the part i don't understand what you mean. You restore to 1.1.2 - what is waiting? What happens to your phone when restore completes? Or is it itunes that are stuck? If so, what message is itunes showing when it's stuck? (or error if it completes).


On to something completely different....

Unlock.no's faster and better way to jailbreak 1.1.1 phones!
Today i studied how jailbreakme.com jailbreaks the phone etc, and i noticed that jailbreakme.com copies a 736KB archive with the needed files, but also LOTS OF CRAP (sourcecode, hidden mac files etc). So i decided to tweak the solution a little.


I have removed all the crap jailbreakeme.com serves, so my archive is only 136KB, but still have ALL relevant files. This will make it much faster and more stable, since the file transfer is reduced 600KB.
Latest version of Installer (b10) is installed, and also latest version of Community Sources (modmyifone repository)
http://i.unlock.no/ is addded as a (trusted) source in Installer.



To jailbreak using this method, instead of adding URL jailbreakme.com, you add url: i.unlock.no (http:// not necessary) to the contact you create after dialing *#307# etc. Have your phone docked to the computer when visiting the jailbreak page.


Note: Jailbreaking using this method will add i.unlock.no as a trusted source. If you don't trust this Installer source, don't do this.

Note2: I did not develope this solution myself. I use jailbreakme.com's solution, and just tweaked it. All credits/donations goes to everyone who worked on this solution: http://jailbreakme.com

If you try to jailbreak using i.unlock.no instead of jailbreakme.com, please post your experience here!

My experience:

downgraded to 1.1.1 - installed everything on the i.unlock.no list - opened phone, did testpoint - success - baseband not responsive to pinging - tried upgrade to 1.1.2 - stuck at restoring firmware - went to 1.1.1 - "repair needed" and error 1011.

Can't do pretty much anything except flash back and forth. Please help.

Is there any problem if I use a itunes 7.6?

Thanks

i have some iphones and i make the unlock, but in iphones with week 50, 51 and i dont remember if week 49, fails, when i restore to 1.1.1 it saids that need repair, and i try restoring to 1.1.2 and again 1.1.1 an nothing, then try with 1.0.2 and itunes only stucks in wating for iphone.
th iphone with week 47 works perfect, i only restore to 1.1.1 and make the jailbreak and then update to 1.1.2 and works with out any problem but the iphones with week 51 and 50 doesnt work. maybe a diferent bootloader? or whats the matter with that?

can anybody tels me how jailbreak iphone 1.0.2 with iphuc?!

i have some iphones and i make the unlock, but in iphones with week 50, 51 and i dont remember if week 49, fails, when i restore to 1.1.1 it saids that need repair, and i try restoring to 1.1.2 and again 1.1.1 an nothing, then try with 1.0.2 and itunes only stucks in wating for iphone.
th iphone with week 47 works perfect, i only restore to 1.1.1 and make the jailbreak and then update to 1.1.2 and works with out any problem but the iphones with week 51 and 50 doesnt work. maybe a diferent bootloader? or whats the matter with that?

i have week 52 iphone n it got unlock w/o a problem

i solve problem with looped reboot when jailbreak 1.0.2 with ibrick (or stuck when use winstaller) - it's problem has been becouse itunes 7.6 update mobiledevice.dll
WAR is continued :)

This is the part i don't understand what you mean. You restore to 1.1.2 - what is waiting? What happens to your phone when restore completes? Or is it itunes that are stuck? If so, what message is itunes showing when it's stuck? (or error if it completes).


Could you please be so kind as to provide the file in the form of a pxl? I ask this, because many people's iPhones have been screwed up asa result of the H/W hack, wherein the software portion of the process errored, and then it left the iPhone without a baseband. These people who find themelves(and their iPhones) in this situation, then will spend countess hours trying to get their iPhone to restore to 1.0.2 firmware, something that is NOT an easy task. Once restored to 1.0.2, jailbroken(PACAY), and iBrickr working, the user then has to download pxl files, and install pxl files from file/folder(can't do it from iBrickr Install Application because no WiFi). So, once Terminal, BSD, and Squid is loaded onto the iPhone, the user then needs to et these Baseband files onto the iPhone, and herein is the reason a pxl file is needed.

In addition to a pxl file made available for download, a tutorial explaining the steps one needs to do in order to restore a basband to the iPhone... do you know how this is done? If so, would you please be so kind as to make a tutorial? Otherwise, people will use the same process as are in the initial process instructions, but the problem with this, is now there is no baseband on the phone, and so those commands will likely fail, correct?

Your help would be greatly apreciated. Thank you!

Eric Jarvies

ps- in your original hardware unlock guide, you have a file name typo. where it should say: ieraser, you have iereaser.

i have week 51 iphone and tried HW unlock and lost wifi.

after that tried to restore 1.0.2 but it says waiting for iphone message and never restores.

whenever i restore to other firmware versions i get error 1011.

111 112 113 , restoring all those versiions ends with error 1011.

now what should i do?

You and your iPhone are in a tough spot right now. After personally unlocking hundreds of iPhones down here in Mexico, I have to say, trying to get a baseband-less iPhone to firmware restore is the toughest gig i've had to contend with pertaining to the iPhones(the next toughest thing would be removing the back case of the iPhone and making contact on the test points). It took me many hours over the last few days, to finally get the iPhone restored to 1.0.2 firmware.

What finally worked for me was plugging in a second iPhone into the same computer, naming the baseband-less iPhone the same as the good iPhone, and then starting a UPGRADE process on the good iPhone, and then unplugging the good iPhone just before the ipsw file is unpacked, at which point the bad iPhone is still plugged in, and iTunes seems fooled into thinking it is the same iPhone, and thus proceeds with the install. However, this fails, but it fails with a brand new error #, not yet seen. With this, I then removed iTunes and everything related to iTunes on the XP computer, and reboot, and then installed the the oldest version of iTunes available, that will recognize/work with the iPhone(7.3.x). At this point, I then opened iBrickr, and proceeded with the iBrickr process of restoring to 1.0.2, which finally worked! I was finally able to get rid of the iTunes logo on the iPhone, and replace it with the Yellow triangle... a wonderful sight indeed. From this point forward, it was standard procedure, and now i've everything onto the iPhone, except a baseband :) But this is next... getting the baseband back onto the iPhone. But I need a new script that takes into the account the baseband is already removed from the iPhone. I'll keep you posted.

So, it is NOT impossible to get 1.0.2 installed on a baseband-less iPhone(OTB 1.1.2 week 45 BL 4.6), so do not give up!! keep trying...

Could you please be so kind as to provide the file in the form of a pxl? I ask this, because many people's iPhones have been screwed up asa result of the H/W hack, wherein the software portion of the process errored, and then it left the iPhone without a baseband.

I have never created a PXL before, so i'm not 100% sure i did it right, but people on 1.0.2 and iBrickr could try to download this PXL file (http://home.no/geezuzz/bbtools.pxl) and install it using iBrickr.

It will copy both the "bootloader downgrade" package to the phone, and also a copy of the baseband firmware files. Note: This PXL copies the files to /usr/bin/bbtools/

Usage:
(do this first in all cases)

cd /usr/bin/bbtools/
chmod +x *
launchctl unload /System/Library/LaunchDaemons/com.apple.CommCenter.plist
Then:
To flash baseband after you complete iunew (testpoint downgrade):

ieraser
bbupdater -f 111.fls -e 111.eep
bbupdater -v

If someone could just confirm that the PXL is indeed working with iBrickr, i could add this to the tutorial. (it works if directory /usr/bin/bbtools/ is created and contains some files).

please put the right link to probe and test

a question.

in the geoght page says wen iunew just run, and finished, write bbupdater -f, and in the i.unlock.no is not mencionated.
maybe a chance?

i have week 52 iphone n it got unlock w/o a problem

hi, mmm so its no problem the week, could you send me the link with the tutorial that you follow with your iphone week 52 please. im going to try with other that i have here.

then someone know what can i do with mi other iphones, it seems that all goes ok but when i restore it shows repair needed i restore 1.1.1 and 1.1.2 several times and it doesnt work.

hi... can anyone tell me how can i load files to my phone without wifi??? i have a mac

Anyone please help me.

I have an issue with constant looping of text characters on boot up !

same issue:

i ran ienew and got message 'Can't Write' at the bottom part instead Waiting for Data, hex codes ,Hopefully etc etc.

so I restarted as test point didn't work.

that's how all errors started.

I could not restore it correctly anymore 1.0.2, 1.1.1 , 1.1.2 , with different error coded 1011, 2003 ,1 etc.

then I came up with this looping.

Could anyone please post the procedures on how to restore it back.

my iphone is OTB 1.1.2, 4.6, week 51

Appreciate any help mate.

Thanks
Edgar

Hi rinseaid,

Where can find geohot's advice/link ?
I am having same issue as others.

Thanks
Edgar


[QUOTE=rinseaid;183242]I'm having the same problem as a few people on here: I ran the ienew command and lost wifi, and didn't have MobileTerminal installed. So I had no choice but to reboot the phone at which point wifi ceased to work and the repair message started popping up.

So I saw one post mentioning restoring back to 1.1.1, then up to 1.1.2 -- I followed this procedure and still evidently had no baseband. When I restored 1.1.1 the error was 1011, and to 1.1.2 the error was 1002, and, like others have mentioned, this was an extremely slow restore. On neither firmware could I dial any numbers, and both were extremely slow to respond.

Since then, I've followed geohot's advice and downgraded to 1.0.2. I then used iBrickr to jailbreak and install PXL, and Pacay Carnaval or whatever it's called to activate the phone. I was still receiving the 'phone requires repair' error message and the phone was very slow to respond.

please put the right link to probe and test

a question.

in the geoght page says wen iunew just run, and finished, write bbupdater -f, and in the i.unlock.no is not mencionated.
maybe a chance?

Sorry about the link, it should be fixed now....

Restoring to 1.1.2 should do the same as bbupdater -f, thats why i didn't mention it (if someone could just simply share the 1.1.1 or 1.1.2 baseband firmware, we could do this much simpler, but noone seems to care about that :( )

is this possible with OTB 112 ,4.6 week 51 ?

I am doing it at the moment and it is still on 'Waiting for iPhone' stage.


Thanks.


try with ibrickr.
copy the 102 fw to ibrickr and rename it to 1.0.2.ipsw, then put the phone to dfu mode, ibrickr will recognize it as in dfu mode and ask you to boot the phone or downgrade, click downgrade and follow the instructions (you must downgrade with itunes after clickin in downgrade in ibrickr)

Hello. I have downgrade baseband by Baseband downgrader by i.unlock.no and now when i try to make iunew with testpoints, terminal indicated:
"...................................
Attemping to read[1]...c1
Did you erase the flash first?".

What dose it mean?

I have tried star ienew, but terminal indicate: "can't write"

What finally worked for me was plugging in a second iPhone into the same computer, naming the, and then starting a UPGRADE process on the good iPhone, and then unplugging the good iPhone just before the ipsw file is unpacked, at which point the bad iPhone is still plugged in, and iTunes seems fooled into thinking it is the same iPhone, and thus proceeds with the install. However, this fails, but it fails with a brand new error #, not yet seen. With this, I then removed iTunes and everything related to iTunes on the XP computer, and reboot, and then installed the the oldest version of iTunes available, that will recognize/work with the iPhone(7.3.x). At this point, I then opened iBrickr, and proceeded with the iBrickr process of restoring to 1.0.2, which finally worke