iPhone Worldwide unlock method discovered - GSM-Forum

thechairman · 01-24-2013, 11:33

I have been doing a lot of research and figured out how people are doing the "worldwide" unlock method for 8GB iPhone 4 units and 16GB iPhone 4S units. The one where you need a certain serial ending.

It'd probably be a bad idea to publish, because then it would get closed down and not work. But on the other hand, since I'm not "in the know" with people in the GSM scene, I don't have anyone to discuss this with. I really would like to, because it looks to me like this can be applied to more devices than just those ones that the method is currently limited to.

Anyone else who is a "direct source" who knows and utilizes the method, I would love to talk to you. Please don't waste my time if you aren't, I'd get yelled at by people in the GSM scene if I gave the method to anyone randomly asking and it'd likely end up killing the market and making the method not usable anymore. But if you do know and utilize the method, get in touch via PM please.

SEMCSEC · 01-25-2013, 17:45

Code:

Serial Number:   DNPHJ85SDTD2
Initial Activation Policy ID:  298
MEID:  
Activation Policy Description:  Spain Orange.
IMEI:  013065006271256
Applied Activation Policy ID:  31
Part Description:  IPHONE 4S 16GB WHITE
Applied Activation Policy Description:  Hongkong and Macau Hutchinson.
Product Version:  6.0.1
Next Tether Policy ID:  31
Last Restore Date:  
Next Tether Activation Policy Description:  Hongkong and Macau Hutchinson.
Bluetooth MAC Address:  C09F42EC7797
First Unbrick Date:  05/08/12
MAC Address:  C09F42EC7796
Last Unbrick Date:  01/25/13
ICCID:  8934190008120008425
Unbricked:  true

Unlocked:  true

Unlock Date:  01/25

Code:

Serial Number:  C31HC9FBDTD2
Initial Activation Policy ID:  31
MEID:  
Activation Policy Description:  Hongkong and Macau Hutchinson.
IMEI:  013055001331403
Applied Activation Policy ID:  31
Part Description:  IPHONE 4S 16GB WHITE
Applied Activation Policy Description:  Hongkong and Macau Hutchinson.
Product Version:  6.0.1
Next Tether Policy ID:  31
Last Restore Date:  
Next Tether Activation Policy Description:  Hongkong and Macau Hutchinson.
Bluetooth MAC Address:  00F4B9C69B44
First Unbrick Date:  03/14/12
MAC Address:  00F4B9C69B43
Last Unbrick Date:  12/19/12
ICCID:  89860112890013663620
Unbricked:  true

Unlocked:  true

Unlock Date:  12/19/12/13

DNPHJ85SDTD2 013065006271256 Active 01/24/13
C31HC9FBDTD2 013055001331403 Original 01/24/13

I don't know how to explain much but i know some guys can understand.

hassanlakhani · 01-25-2013, 18:03

It is a form of swap service, once your phone is done, the carrier will be swapped from current carrier (softbank, bell Canada, Orange Spain, T-Mobile Germany, T-mobile Austria etc) to China Unicom / China Apple Channel Default activation policy / China Reseller / HK & Macau Regions. As you know, all China mainland/ HK & Macau sell unlocked iphones.

cobra iphoni · 01-25-2013, 18:09

Ok, if you already founded a way to swap to china..

IMEI- 012844009474088

iphone 4 16 Gb

its locked to sweden and its blacklisted..

you can use for experimental, and if you can unlock it, it will be nice, its been 6 months that im playing with these iphone..

thanks..

thechairman · 01-26-2013, 10:50

Nice research, SEMCSEC.

You discovered the root of the method as well. There are two extra requirements to this method to actually perform it (and also explains the high price):
1. Acquisition of "junker" / recall IMEI+SN lists. This can be done on the black market if you look in the right places, and is the only way to administer this method if you do not want the unit to be re-locked. Some people deep in the scene who I discussed this method with have theorized that the core people doing this method work at carriers that are getting back certain defective units (also explains #2) and are able to access the huge lists of junker units. And it MUST be defective / return units to be economical, because buying them would not make sense, and using combos found on the internet would immensely limit you (and also VERY ILLEGALLY steal their activation policy, let alone get you noticed and the newly unlocked unit relocked).
2. Access to the internal database. You would need a certain level of access (there are tricks to pwn your way in and access certain accounts, but enough about that) to be able to do these activation policy transfers.

Added (and harmless, not giving away the method) notes follow...

These activation policies are what I've seen so far that cause the unlock state of a device to change:
- Unlock (obviously)
- Retail Unlock (probably won't work with this method as I think it has a certain Model)
- China Unicorn (most common with this method)
- China Service (2nd most common with worldwide method, 1st most common for SoftBank + Bell unlocks which all also use this method).
- Hong Kong + Macau Service (much less common)
- Italy Service
- KPN Netherlands (most of the time)

Hopefully those notes help those who understand the method and have the proper means to administer it. I also hope it doesn't get closed up due to the details in SEMCSEC's post

concernedguy · 01-26-2013, 13:16

Quote:

Nice research, SEMCSEC.

You discovered the root of the method as well. There are two extra requirements to this method to actually perform it (and also explains the high price):
1. Acquisition of "junker" / recall IMEI+SN lists. This can be done on the black market if you look in the right places, and is the only way to administer this method if you do not want the unit to be re-locked. Some people deep in the scene who I discussed this method with have theorized that the core people doing this method work at carriers that are getting back certain defective units (also explains #2) and are able to access the huge lists of junker units. And it MUST be defective / return units to be economical, because buying them would not make sense, and using combos found on the internet would immensely limit you (and also VERY ILLEGALLY steal their activation policy, let alone get you noticed and the newly unlocked unit relocked).
2. Access to the internal database. You would need a certain level of access (there are tricks to pwn your way in and access certain accounts, but enough about that) to be able to do these activation policy transfers.

Added (and harmless, not giving away the method) notes follow...

These activation policies are what I've seen so far that cause the unlock state of a device to change:
- Unlock (obviously)
- Retail Unlock (probably won't work with this method as I think it has a certain Model)
- China Unicorn (most common with this method)
- China Service (2nd most common with worldwide method, 1st most common for SoftBank + Bell unlocks which all also use this method).
- Hong Kong + Macau Service (much less common)
- Italy Service
- KPN Netherlands (most of the time)

Hopefully those notes help those who understand the method and have the proper means to administer it. I also hope it doesn't get closed up due to the details in SEMCSEC's post

cool story............but no keep trying

thechairman · 01-26-2013, 13:22

Quote:

Originally Posted by concernedguy

cool story............but no keep trying

If you've got something to say then say it. I know exactly what I am talking about. The only reason I worded my post vaguely is to not give away the method.

concernedguy · 01-26-2013, 13:28

Quote:

If you've got something to say then say it. I know exactly what I am talking about. The only reason I worded my post vaguely is to not give away the method.

the thing i want to say is: cool story

so, when you offer this service yourself ))))))))

thechairman · 01-26-2013, 13:52

Quote:

Originally Posted by concernedguy

the thing i want to say is: cool story

so, when you offer this service yourself ))))))))

Not sure yet, we will see. Seems difficult to do in any even remotely legal way.

When researching I noticed that some of the "comments" in the internal database are in the same style of "not quite english". Curious if it's a coincidence or if you're trying to imply that you know something that I don't.

concernedguy · 01-26-2013, 13:56

Quote:

Not sure yet, we will see. Seems difficult to do in any even remotely legal way.

When researching I noticed that some of the "comments" in the internal database are in the same style of "not quite english". Curious if it's a coincidence or if you're trying to imply that you know something that I don't.

plot thikens,, i keep my fingers crossed on your great detective work

thechairman · 01-26-2013, 14:15

Quote:

Originally Posted by concernedguy

plot thikens,, i keep my fingers crossed on your great detective work

Sounds like someone has their sassy pants on today.

Sinta · 01-27-2013, 03:19

Quote:

Originally Posted by cobra iphoni

Ok, if you already founded a way to swap to china..

IMEI- 012844009474088

iphone 4 16 Gb

its locked to sweden and its blacklisted..

you can use for experimental, and if you can unlock it, it will be nice, its been 6 months that im playing with these iphone..

thanks..

This Unlock way just support iPhone4-8GB now. But start from now, except JP Softbank all other iPhone4 8GB and iPhone4s 16GB Unlock rate is very low.

Contact me if some need this

ghaildhh · 01-27-2013, 06:13

Softbank source needed for all models n all serialls numbers

Sinta · 01-27-2013, 07:38

Quote:

Originally Posted by ghaildhh

Softbank source needed for all models n all serialls numbers

It is impossible up to now

Haltec · 01-27-2013, 11:44

Can someone knowledgeable here, explain what fatalbert is? In relation to iphone unlock?

Br

Haltec

01-24-2013, 11:33	#1 (permalink)
thechairman Freak Poster Join Date: Dec 2012 Posts: 170 Member: 1848908 Status: Offline Sonork: 100.1625021 Thanks Meter: 41	iPhone Worldwide unlock method discovered I have been doing a lot of research and figured out how people are doing the "worldwide" unlock method for 8GB iPhone 4 units and 16GB iPhone 4S units. The one where you need a certain serial ending. It'd probably be a bad idea to publish, because then it would get closed down and not work. But on the other hand, since I'm not "in the know" with people in the GSM scene, I don't have anyone to discuss this with. I really would like to, because it looks to me like this can be applied to more devices than just those ones that the method is currently limited to. Anyone else who is a "direct source" who knows and utilizes the method, I would love to talk to you. Please don't waste my time if you aren't, I'd get yelled at by people in the GSM scene if I gave the method to anyone randomly asking and it'd likely end up killing the market and making the method not usable anymore. But if you do know and utilize the method, get in touch via PM please.

01-25-2013, 18:03	#3 (permalink)
hassanlakhani Freak Poster Join Date: Mar 2010 Location: Dubai Posts: 260 Member: 1267526 Status: Offline Sonork: 100.1619624 Thanks Meter: 73	It is a form of swap service, once your phone is done, the carrier will be swapped from current carrier (softbank, bell Canada, Orange Spain, T-Mobile Germany, T-mobile Austria etc) to China Unicom / China Apple Channel Default activation policy / China Reseller / HK & Macau Regions. As you know, all China mainland/ HK & Macau sell unlocked iphones.

01-25-2013, 18:09	#4 (permalink)
cobra iphoni No Life Poster Join Date: Apr 2012 Location: < Man is stronger than stone.> Posts: 755 Member: 1744389 Status: Offline Sonork: 100.1657056 Thanks Meter: 215	Ok, if you already founded a way to swap to china.. IMEI- 012844009474088 iphone 4 16 Gb its locked to sweden and its blacklisted.. you can use for experimental, and if you can unlock it, it will be nice, its been 6 months that im playing with these iphone.. thanks..

01-26-2013, 10:50	#5 (permalink)
thechairman Freak Poster Join Date: Dec 2012 Posts: 170 Member: 1848908 Status: Offline Sonork: 100.1625021 Thanks Meter: 41	Nice research, SEMCSEC. You discovered the root of the method as well. There are two extra requirements to this method to actually perform it (and also explains the high price): 1. Acquisition of "junker" / recall IMEI+SN lists. This can be done on the black market if you look in the right places, and is the only way to administer this method if you do not want the unit to be re-locked. Some people deep in the scene who I discussed this method with have theorized that the core people doing this method work at carriers that are getting back certain defective units (also explains #2) and are able to access the huge lists of junker units. And it MUST be defective / return units to be economical, because buying them would not make sense, and using combos found on the internet would immensely limit you (and also VERY ILLEGALLY steal their activation policy, let alone get you noticed and the newly unlocked unit relocked). 2. Access to the internal database. You would need a certain level of access (there are tricks to pwn your way in and access certain accounts, but enough about that) to be able to do these activation policy transfers. Added (and harmless, not giving away the method) notes follow... These activation policies are what I've seen so far that cause the unlock state of a device to change: - Unlock (obviously) - Retail Unlock (probably won't work with this method as I think it has a certain Model) - China Unicorn (most common with this method) - China Service (2nd most common with worldwide method, 1st most common for SoftBank + Bell unlocks which all also use this method). - Hong Kong + Macau Service (much less common) - Italy Service - KPN Netherlands (most of the time) Hopefully those notes help those who understand the method and have the proper means to administer it. I also hope it doesn't get closed up due to the details in SEMCSEC's post

01-27-2013, 06:13	#13 (permalink)
ghaildhh Freak Poster Join Date: Jan 2013 Posts: 121 Member: 1864147 Status: Offline Sonork: 100.1626392 Thanks Meter: 25	Softbank source needed for all models n all serialls numbers

01-27-2013, 11:44	#15 (permalink)
Haltec No Life Poster Join Date: Mar 2009 Location: Europe Wienna Posts: 1,269 Member: 984046 Status: Offline Thanks Meter: 255	Can someone knowledgeable here, explain what fatalbert is? In relation to iphone unlock? Br Haltec