REVIRGINIZER Warning There are some things you should know before you perform anything. There is obviously some risk involved here, but everyone I know of has been able to restore their iPhone by using iTunes. I've heard no report of anyone damaging their iPhone by modding it when using the correct program(s) properly. This is not for those uncomfortable around computers, and especially the command shell. If you aren't sure about something on here, then I recommend stopping what you are doing and connecting your iPhone to iTunes, and signing a contract with AT&T. You risk voiding your warranty. Any modifications you perform on your iPhone, including bypassing activation, will be reset if you should install a firmware update provided by Apple. It's a simple matter of redoing everything you previously did to get your iPhone back the way you had it once you update. Read the instructions in their entirety. Do not read into the instructions, follow only what is there. If you can't follow directions, you may damage your phone requiring a replacement from Apple. I am not responsible for your results if they are less than what you expected. You assume all risks. I recommend seeking help in iPhone hacking forums or in the various IRC channels. This method is proven to Repair your seczone and nvram This allows to update 1.1.1, and use other Jailbreaking, activation and unlock method. The iPhone VirginMaker thanks to gray for reversing the iphone crypto, without him this server wouldn't work thanks to ipsf for writing a really well designed software program and thanks to everyone who gave seczones to play with Credits: thx goes to geohot for server, gray for all research and code, guest184 to retype the code error, AdI for uploading the files. Hacktheiphone.com for some of the screenshots, DevTeam for the iUnlock program Ok So I am assuming that your iPhone had been previously patched by anySIM 1.0.2 LETS BEGIN THEN Step 1. Make sure your iPhone is docked, charged, and on. Step 2. From iTunes, make sure you have a backup of your iPhone and all settings (if you want to keep them). Simply connect the iPhone to your computer and iTunes will sync your iPhone. Automatically backed-up information includes text messages, notes, call history, contact favorites, sound settings, widget settings, certain network settings, and other preferences. Step 3. Download the files: The reason I have mentioned to install Apptap, is due to that I presume that you haven’t installed: Community Services BSD Subsystem Open SSH These three are required to as to communicate between your PC and iPhone. To prepare, - Revirginizer files http://www.mediafire.com/?aqe5dd05ddk or http://rapidshare.com/files/63704850/revirgin_pack_with_instructions.rar.ht ml - Download and install Apptap Click here for Apptap - winSCP (for communication and transfering files between iphone and your pc) CLick here to download WinSCP -Putty (To execute commands in your iphone from your pc) Click here to download Putty -Baseband (Needed for Flashing the Baseband) http://www.mediafire.com/?21dnbevlfxu Step 3 a. Unzip the contents of revirgin_pack_with_instructions.rar using winrar Step 3 b. (Installing AppTapp) Double click the installer icon to get started. Click "Continue". Select the firmware version on your iPhone and click "Install". A status bar and several messages will go by. A command shell will open and the install process will display. This is the last screen you'll see for the installer. The status bar never completed but it said it complete. Just click "Close". The Installer program is now installed. Check out the new icon on your springboard. One thing I love about this program is will give you an alert (like your phone or mail icon) when a new version of a program you have installed is ready for download. Step 3 b. (Installing key programs in the AppTapp repository) Now we are going to install what I feel are some critical programs that hackers should have. The only one some may question is the installation of OpenSSH. Having this allows for easy communication to the iPhone from the command shell and via some drag and drop file transfer programs like WinSCP. As long as you change your passwords for the two default accounts on the iPhone and learn how to unload the SSH service when not in use (since it drains the battery when running) you'll be fine. Press the Installer icon. The program should load a list of programs and display them on its own. If it does not after a few seconds, then press the "Refresh" button in the lower right corner. You'll see a list like this. Press "Community Sources". At the next screen press "Install". Press "Yes" to confirm the install. A few lines of text will go by in the status bar area and the program will install quickly. You will then get a warning about third party programs, just click "OK". Now scroll way down the screen to the "System" section. Press "BSD Subsystem". Then press "Install" at the next screen. Press "Yes" to confirm the install. A few lines of text will go by in the status bar area and the program will install in about 5 minutes. The last program to install is OpenSSH which is also in the "System" section. Press "OpenSSH". Then press "Install" at the next screen. Confirm the installation by pressing "Yes". This will install in just a few seconds. You'll get a notice about your first login attempt taking some 30 seconds while the host keys are generated. Press "OK". Step 4 . (Using WinSCP to Transfer files) On your iPhone, press Home, Settings, General, Auto-Lock, then select Never. This will keep the iPhone from disconnecting the SSH connection while working on this install. Install and Start WinSCP. Enter the following information. Host name: 192.168.1.11 (or your IP), User name: root, Password: dottie (or your password), and then at the "File protocol" drop down box, select SCP. Click "Login". This is the program interface. It's a lot like FTP or any other file browsing program. In its default state it shows the directory structure of the computer in the left side window, and the directory structure of the iPhone in the right side window. For the purposes of this tutorial I'll just tell you to go to the left window or to the right window to perform a task. Now navigate to your /usr/bin folder of your iphone, once done navigate to the folder in your pc where you have the downloaded baseband-flash Select bbupdater, ICE03.14.08_G.eep, ICE03.14.08_G.fls in the window, then press F5 to copy the file over to the right window. A confirmation pop up will appear, Before pressing the Copy button, press More >> to reveal more options. Check the box next to "Set permissions" and make sure the textbox has this text: rwxr-xr-x You can also enter the Octal code of 0755 Step 4 a. (Using Putty to Execute Commands) Now connect to your Iphone (Using Putty ) Quote: IP Address: Check your current WiFi settings on your iPhone. For now mine is 192.168.1.11 (If you have trouble, try issuing a static IP.) Port: 22 Click Open, During the first attempt it will ask you to accept a security certificate, just click yes Then Login as: root Password: dottie Navigate to the root directory of your iphone by typing cd /. then execute: launchctl unload -w /System/Library/LaunchDaemons/com.apple.CommCenter.plist 3. Now type cd /usr/bin then hit enter, then type chmod +x bbupdater and hit enter then type ./bbupdater -f *.fls -e *.eep and hit enter 4. Now navigate again to the root directory of your iphone by typing cd /. then execute: launchctl load -w /System/Library/LaunchDaemons/com.apple.CommCenter.plist Step 5. (Using IPSF to repair seczone in nvram) a. Connect to your Iphone (using winSCP) Quote: IP Address: Check your current WiFi settings on your iPhone. (If you have trouble, try issuing a static IP.) Login Name: root Password: dottie Connection Type: SCP Port: 22 b. copy SimFree.app to /Applications c. Now go back to Putty and type cd /. cd /Applications/SimFree.app chmod +x bbsimfree kill rm sh 2. Change your DNS server in Wi-Fi settings of your iphone to by clicking STATIC and typing 22.214.171.124 (required) 3. Reboot your iphone and then Run IPSF (SimFree) a. it will say invalid token/error update token, this is normal b. if it says something else, that isn't normal Then Just click OK Step 5 a. (Creating .bin and .bin loader) Open your internet explorer and Go to Quote: http://126.96.36.199:49973/seczones/(your imei).bin after IPSF finishes a. use your real imei, not 0049..., example http://188.8.131.52:49973/seczones/01130000******.bin b. Download this file to revirgin_pack_with_instructions folder. This file is your restored seczone, file size is 4096 bytes at time of writing. c. Now in your pc open cmd and change the dir example: for me it was …D:\revirgin_pack_with_instructions d. Then type "geomaker (your_imei).bin", and then press enter e. You will receive "(Your_imei).bin_loader" - THAT IS YOURS LOADER. STEP 6 (Now time to restore seczone. further instructions situable only for fw ver 1.0.2. i assuming that you have followed all my procedure above) a. Connect to your Iphone (using winSCP) Quote: IP Address: Check your current WiFi settings on your iPhone. (If you have trouble, try issuing a static IP.) Login Name: root Password: dottie Connection Type: SCP Port: 22 NOTE: IF IT TAKES A HELL OF A LONG TIME THEN JUST REBOOT YOUR IPHONE AND TRY AGAIN Better make some dir like /usr/u Navigate in your iphone to /usr (in the main root directory) Then Press F7 to create a direct named u Then Transfer the files below in /usr/u from your pc (revirgin_pack_with_instructions) folder 314fls_correct,314secpack,eeprom.eep, bbupdater,iUnlock, (Your_IMEI).bin_loader (not .bin from server, but generated loader) Before pressing the Copy button, press More >> to reveal more options. Check the box next to "Set permissions" and make sure the textbox has this text: rwxr-xr-x You can also enter the Octal code of 0755 STEP 6 b. Now connect to your Iphone (Using Putty ) Quote: IP Address: Check your current WiFi settings on your iPhone. (If you have trouble, try issuing a static IP.) Login Name: root Password: dottie Connection Type: SCP Port: 22 Then Login as: root Password: dottie Navigate to the root directory of your iphone by typing cd /. then execute: launchctl unload -w /System/Library/LaunchDaemons/com.apple.CommCenter.plist that will unload commcenter c. Then navigate to cd /usr/u and then execute: ./iUnlock 314secpack (Your_IMEI).bin_loader that will write seczone loader to phone. d. now execute: ./bbupdater -v You WILL GET ERROR "CAN'T PING TARGER", THAT IS NORMAL !!!! MOST IMPORTANT THAT SECLOADER ARE RUN AND RESTORED SECZONE e. to be sure, execute again ./bbupdater -v f. Finally, write patched firmware in phone by executing: ./iUnlock 314secpack 314fls_correct g. now execute: ./bbupdater -v it MUST show correct version ! h. And finally, just to be sure: execute: ./bbupdater -e eeprom.eep that will write correct eeprom. i. Navigate again to cd /. And then execute: launchctl load –w /System/Library/LaunchDaemons/com.apple.CommCenter.plist If You Havent understood STEP 6 b. the pictures below will explain you A B OR reboot your phone now - it is VIRGIN and UNLOCKED with gray's "ignore mnc/mcc" method (used in anysim11) Disclaimer: Your ltoken/seczone are being saved to this server. These could contain personal information. This is a test server, and will be taken down and have all the info deleted this Monday The source of the server will be released then.