Trying to extract ltoken (yes, it's a 3.9 bootloader)
I've been trying to extract the ltoken off of my anySIM-unlocked iPhone (with bootloader 3.9). The only method I've seen is the IPSF method so that's the method I've been trying to use (spoofing IPSF's server).
I'm running 1.1.2 right now, but I tried on 1.1.1 as well with the same results.
When I run IPSF 1.6, I get an error that it is unable to download the baseband firmware (since IPSF flashes a temp firmware onto the baseband).
When I run IPSF 1.8, it goes through to the "preparing to unlock" part. It gets VERY close, and then I get a spinning wheel in the center of the screen (like the spinning beach ball in OS X), and after a few minutes the iPhone will reboot.
Using netcat it does connect to my machine to verify the license (and I respond with a 200 HTTP/1.1 OK), so it is indeed able to connect to my machine.