Unlock iphone steps
Step5
Power-up the iPhone
Congratulation if you have completed step 4.now power up your phone by connecting it with USB. Do not connect case with power button to power up iPhone. As you connect with USB, iPhone will be powered up. Secondly don't waste time compiling minicom. Download the binary minicom and termcap from internet. Search for unlock iPhone + minicom and unlock iphone + termcap on google. You will get link fro downloading.
Step 6
Take a NOR Dump
Now, with the switch off, your baseband should be working perfectly. Here you should take a NOR dump of your phone. I don’t know the perfect method for how to take nor dump. This is back up of your iphone if something goes wrong then you can restore it later. You can extract the firmware from this as well, which we'll get to later.
Step7
Erase the Modem Firmware with the help of ieraser tool. Search google for unlock iphone + ieraser.
So here is the first tool release, iEraser. This erases the current firmware on your modem.
Note: in every phone there is a modem (MOdulation DEModulation). You can put it again with bbupdater.
Now check the modem version in settting about. It will be like 3.13(1.0). According to your modem version you need secpack to use this tool. The erase of this section is protected. You also need ramdisk according to your modem version.
Then go into this directory "/usr/local/standalone/firmware" and get the ICE*.fls file. Extract 0x1a4-0x9a4 and save it in a file called secpack and place it in the same directory as the ieraser tool. Run ieraser. This should erase the modem firmware. I think this unlock iphone method is vary difficult only george feel it easy.
Step 8
Patch the Firmware
Now to unlock iphone you need to patch the firmware. First extract firmware from your nor dump. Now you need range from 0x20000-0x304000. Save this file as "nor". The patches you need to apply are as follows. These are offsets from the beginning of the file to saved as "nor". Choose your version, and patch.
3.12: (213740): 04 00 a0 e1 -> 00 00 a0 e3
3.14: (215148): 04 00 a0 e1 -> 00 00 a0 e3
you need this file in next step save it properly.
Step9
Now download iunlocker software from internet. This tool uploads a small program called "testcode.bb" to the baseband using the bootrom exploit. This program needs to be in dir with NOR, the file you have obtained in the last step. You need to have the switch on when running this program. This will download and run the code in "testcode.bb" Then the program will stop and ask to turn off the switch. Do so. You type any character then hit enter. The nor download starts right away. When the counter reaches 0x2E4000, it is done.
type : bbupdater -v
It should show : +xgendata and some more text. If it does, the nor upload was successful.
Step 10: The Last One
Now in SSH go to /dev/tty.baseband
Type : minicom
If you already used up your attempt counter, the iphone should already be unlocked.
• then type: AT+CLCK=”PN”,0,”00000000″
• then type: AT+CLCK=”PN”,2 this should respond in a 0 .
That will unlock the iphone for sure.
Your iphone is now unlocked.
Exit minicom
and copy the CommCenter.plist back to its place. Reboot. iASign. And enjoy your unlocked iPhone. Now you can use any gsm sim with your iphone.
Step5
Power-up the iPhone
Congratulation if you have completed step 4.now power up your phone by connecting it with USB. Do not connect case with power button to power up iPhone. As you connect with USB, iPhone will be powered up. Secondly don't waste time compiling minicom. Download the binary minicom and termcap from internet. Search for unlock iPhone + minicom and unlock iphone + termcap on google. You will get link fro downloading.
Step 6
Take a NOR Dump
Now, with the switch off, your baseband should be working perfectly. Here you should take a NOR dump of your phone. I don’t know the perfect method for how to take nor dump. This is back up of your iphone if something goes wrong then you can restore it later. You can extract the firmware from this as well, which we'll get to later.
Step7
Erase the Modem Firmware with the help of ieraser tool. Search google for unlock iphone + ieraser.
So here is the first tool release, iEraser. This erases the current firmware on your modem.
Note: in every phone there is a modem (MOdulation DEModulation). You can put it again with bbupdater.
Now check the modem version in settting about. It will be like 3.13(1.0). According to your modem version you need secpack to use this tool. The erase of this section is protected. You also need ramdisk according to your modem version.
Then go into this directory "/usr/local/standalone/firmware" and get the ICE*.fls file. Extract 0x1a4-0x9a4 and save it in a file called secpack and place it in the same directory as the ieraser tool. Run ieraser. This should erase the modem firmware. I think this unlock iphone method is vary difficult only george feel it easy.
Step 8
Patch the Firmware
Now to unlock iphone you need to patch the firmware. First extract firmware from your nor dump. Now you need range from 0x20000-0x304000. Save this file as "nor". The patches you need to apply are as follows. These are offsets from the beginning of the file to saved as "nor". Choose your version, and patch.
3.12: (213740): 04 00 a0 e1 -> 00 00 a0 e3
3.14: (215148): 04 00 a0 e1 -> 00 00 a0 e3
you need this file in next step save it properly.
Step9
Now download iunlocker software from internet. This tool uploads a small program called "testcode.bb" to the baseband using the bootrom exploit. This program needs to be in dir with NOR, the file you have obtained in the last step. You need to have the switch on when running this program. This will download and run the code in "testcode.bb" Then the program will stop and ask to turn off the switch. Do so. You type any character then hit enter. The nor download starts right away. When the counter reaches 0x2E4000, it is done.
type : bbupdater -v
It should show : +xgendata and some more text. If it does, the nor upload was successful.
Step 10: The Last One
Now in SSH go to /dev/tty.baseband
Type : minicom
If you already used up your attempt counter, the iphone should already be unlocked.
• then type: AT+CLCK=”PN”,0,”00000000″
• then type: AT+CLCK=”PN”,2 this should respond in a 0 .
That will unlock the iphone for sure.
Your iphone is now unlocked.
Exit minicom
and copy the CommCenter.plist back to its place. Reboot. iASign. And enjoy your unlocked iPhone. Now you can use any gsm sim with your iphone.