iPhone Dev Team released PwnageTool 3.1.4 for iPhone OS 3.1.2 couple of weeks back to allow users to jailbreak their iPhone and also preserve the baseband firmware so that they can unlock their iPhone.
This step-by-step guide will show iPhone 3GS users how to use Dev Team's PwnageTool 3.1.4, which is similar to our guide for iPhone 3G users.
Some important points to note before we start:
-
Hacking your iPhone could void its warranty. So please proceed with caution and at your own risk.
-
This guide is applicable only for iPhone 3GS users. iPhone 3G users can refer to this guide. We’ll publish the guide iPhone 2G users shortly.
-
PwnageTool does not unlock iPhone 3G. It allows you to only jailbreak your iPhone 3GS by allowing you to create a pre-jailbroken iPhone OS 3.1.2. But as it also preserves your iPhone’s baseband from getting updated so that you can use UltraSn0w to unlock it.
-
This guide cannot be used to downgrade your baseband from 05.11.07 to 04.26.08 (currently there no method away to downgrade the baseband from 05.11.07 included in iPhone OS 3.1).
-
If you already have a jailbroken iPhone and have installed jailbreak apps then this method will also result in wiping out the jailbreak apps. You'll need to reinstall them via Cydia.
-
PwnageTool is only for Mac users. The only way to update to iPhone firmware 3.1.2 and preserve baseband is by using the PwnageTool 3.1.4. PwnageTool is only available for Mac users, so Windows users who want to unlock their iPhone 3GS should either get the custom firmware created by the PwnageTool on a Mac from someone they trust or borrow their friend's Mac and follow this guide.
Preparatory steps before Jailbreaking your iPhone 3GS and preserving its baseband:
1. Please take a backup of your iPhone, refer to this post for more details.
2. Please download PwnageTool from any of these download links:
- http://downloads2.touch-mania.com/PwnageTool_3.1.4.dmg
- http://download.sourcekills.com/PwnageTool_3.1.4.dmg
- http://old.bielsipod.de/Daten/PwnageTool_3.1.4.dmg
- http://www.hackthatphone.net/PwnageTool_3.1.4.dmg
- http://miphone.ca/iphone-dev/PwnageTool_3.1.4.dmg
- http://www.appleturk.net/ATWT/PwnageTool_3.1.4.dmg
- http://www.apfelphone.net/dl/PwnageTool_3.1.4.dmg
- http://apfelportal.de/host/images/dev-team/PwnageTool_3.1.4.dmg
3. You need to download the iPhone firmware 3.1.2 file for iPhone 3GS from this link (iPhone2,1_3.1.2_7D11_Restore.ipsw).
Create Custom Firmware 3.1.2 using PwnageTool 3.1.4:
1. Launch PwnageTool 3.1.4. You will see the following warning message, click OK. 
2. Please select the Expert Mode from the menu bar in the next screen.
3. Then select iPhone 3G(S) (iPhone 3G(S) option is applicable for both iPhone 3G and iPhone 3GS) from the options presented and then click on the blue arrow button to continue. 
4. You will see the "Browse for IPSW" screen. PwnageTool will automatically find the iPhone2,1_3.1.2_7D11_Restore.ipsw file that you had downloaded on your Mac. If PwnageTool doesn't automatically find the ipsw file you can click Browse and select the file.
5. Click iPhone2,1_3.1.2_7D11 to select the IPSW file, a checkmark will appear next to it. Then click the blue arrow button to continue.
6. In the next screen, select General and then click on the blue arrow button to continue. 
7. The General settings allows you to decide the partition size (you have to increase the size of the root partition, 695 MB worked fine for us). Keep "Activate the phone" option checked if you want to unlock your iPhone or deselect it if you are using an official iPhone carrier. Click the blue arrow button to continue. 
8. In the next screen, you will see the Bootneuter settings greyed out for the 3G iPhone. Click the blue arrow button to continue. 
9. In the next Cydia settings screen; you can pre-install the packages in the custom firmware so you don't have to manually install them later. Select the packages and click the blue arrow button to continue
10. The Custom Logos Settings screen allows you to change the boot and restore logos. Once you have selected the boot and restore logos, click the blue arrow button to continue. 
11. In the next screen, select Build and then click on the blue arrow button to continue. You will be prompted to save the custom firmware file, save it as iPhone2,1_3.1.2_7D11_Custom_Restore.ipsw so that you differentiate the custom firmware file created by PwnageTool with the firmware file you had downloaded earlier.
12. While building the custom firmware, you will be prompted to enter a password. Enter your administrator password and then click OK.
13. You will then be prompted with following message: 
Its safer to select "No".
14. PwnageTool will put your iPhone into DFU mode (Device Firmware Upgrade mode). It will prompt you to turn off your iPhone 3GS (ensure that it is connected to your Mac). 
15. Then you will be prompted to hold both the Home and Power buttons for 10 seconds. 
16. Finally, you will prompted to release the Power button while you continue holding down the Home button for another 10 seconds. 
17. If it is successful in putting your iPhone 3GS in DFU mode, PwnageTool will display the following message: 
18. iTunes will also pop-up with the following message: 
Select "Ok".
Restore your iPhone 3GS in DFU mode with Custom iPhone Firmware created using PwnageTool 3.1.4:
You can now use the custom iPhone firmware created using the PwnageTool 3.1.4 to restore your iPhone 3GS in DFU on either Mac or Windows by following these steps.
1. Connect your iPhone to your Mac or PC and select your iPhone from the list of devices in iTunes.
2. In the Summary Tab, Hold down Option and press the "Restore" button. If you are using Windows hold down Shift and press the Restore button. (This is a VERY IMPORTANT STEP as just pressing the "Restore" button will result in restoring your iPhone with the latest firmware which is firmware 3.1.2 currently, by holding down Option in case of Mac or Shift in case of Windows, allows you choose the custom iPhone firmware file.) 
3. You should be able to see all the older iPhone firmware files you had downloaded so far, select the custom iPhone firmware (iPhone2,1_3.1.2_7D11_Custom_Restore.ipsw file) that was created earlier using PwnageTool to restore your iPhone 3GS (it’s important that you use the custom firmware file iPhone2,1_3.1.2_7D11_Custom_Restore.ipsw).
4. Once your iPhone 3GS is restored, it will be jailbroken and updated with iPhone firmware 3.1.2 but the baseband will still be 04.26.08 (and not 05.11.07) so you can unlock your iPhone 3GS using UltraSn0w. You can check it by going to Settings -> General -> About and looking for Version, it should be 3.1.2 (7D11) and Modem firmware should be 04.26.08.
5. The last step is to set up your iPhone 3GS from a backup.
As always, don't forget to drop us a line to tell us how it goes.
[via iClarified]
Follow us on Twitter
i am getting error 1600 have deleted the file in itunes library and all
worked for me perfectly. thanks!
Cydia crashes when I try to open it. Used ICY to SSH into the phone so I could delete the files in /var/lib/apt/lists, but there were no files there to delete. Any suggestions would be greatly appreciated.
P.S. If I do not set up my phone from back up, cydia works just fine. Any ideas on why setting up my phone from my backup causes cydia to crash? Thanks. . .
will this work on firmware 05.11.07, so that i can now use it on t-mobile becz i jailbroke using the last pwange and we all kno that had the boot updater. so will using this fix the problem?
When I copy the Pwnage Tool to my Applications folder it says there are some items that could not be copied because they require special authotization. I run the app anyway and everything goes fine until the part when the app is supposed to guide me thru the steps to put the phone (never jailbroken before) in DFU mode. It just says it's on Restore mode and opens iTunes…
Can anyone help me with this? Many thanks in advance!
I am having iphone 3gs 3.1.2 Modern firmware: 05,11,07. Have not jailbroken it before.. can I use this tool to jailbreak it? tried blackrain but failed..
thanks.
Thanks for this great tip and tutorials. I have been looking things like this in the internet and now I have found another one!
Just to share with you guys and this is for apple itouch lovers who want to convert their itouch 2G an iPhone-like very easily.
Here are the steps http://pinoytutorial.com/techtorial/how-to-convert-itouch-to-iphone/
apple is supposed to be comming out with another firmware update 3.1.3 within the coming weeks from what ive heard from a teck
I did all this successfully only to discover sadly later that i could not install redsnow.then something prompted me to chk the baseband and to my horror it 05.11.07.now my iphone has been reduced to itouch.my only hope is for a miracle to come so i can use red snow or snowbreeze to get my sim working.dev team ppl please help
wow look at all these updates..
and yet it still hasnt thoroughly fixed the flaws from the iphone OS 3.1. As of this moment my 3G S is still running OS 3.0.1 jailbroken and unlocked.
I will probably keep this OS until apple releases an update to fix those battery, random shutdown, all that crap.
Well, my question here is that I run os 3.1. How can I update to 3.1.2 without losing all my Cydia apps and what not? Is there a way to do this? Can anyone fill me in please? Can I just create the custom firmware and restore in itunes or is that a no no? Thank you!
I have a iphone 3g 16 running on 3.1 ….only issue im having is the voicemail password incorrect message keeps popping up…any suggestions?
oh and one more thing …about 200 of my pics are gone?.. and I no longer have the picture mail mms thingy ??? please help?
I wonder if when the PT puts my iPhone in recovery mode I could just leave the Expert Mode and click on the DFU button on the top of the PY window and see if the jailbreaking process can be picked up from there… any thoughts? I really need some help, thanks a lot!!
I still get error 1604 … Any suggestion?
I haven't been able to update to 3.1 on my 3GS bc I have a windows-based computer. I need to jailbreak and keep my baseband. So far, two of my applications are not working anymore bc they require 3.1 – the jerks! Please come out with PWNAGE tool for windows 7 soon. Thank you!!
I am having some troubles. The first run-through, i was unable to access the DFU. When i turned off my phone, it turned on too quickly, and i did not get a chance to wait the 5 seconds to press both buttons. I rebooted my Mac, and went through the process again, and this time it doesn't even see the phone. It just says "Connect Device to USB." ITunes can see the phone, but Pwnage Tool cant. Any ideas? The 3GS is a gift for my dad's b-day, so any help would be appreciated. Thanks!
Bill, check out AptBackup app available in Cydia.
http://thebigboss.org/moreinfo/AptBackup.php
hi what sap iphone hack i just want u to know that tom tom car kit is here
it is on apple store for $119.95 free shipping and it takes 2 to 3 weeks.
thank you for your good jobs.
when are they gonna create a custom logo creator ? every time i make one on my own that meets specs pwnage tool says it still isn't compatible.
I never had to manually put my phone in DFU mode, as soon as pwange told me to put my phone into DFU mode iTunes came up and said it had detected a phone in recovery mode. I just closed pwange and continued to do option-restore in iTunes and everything worked out great.
thanks for sharing.
Hey Nick!
Yeah, I have it but I can never seem to get it to work. I back up my apps, but then when I reinstall it and restore either it doesn't work or it doesn't restore all my apps.
Thanks.
Worked for me.
But had to Remove ICY from the IPSW file.
And had to update Cydia first before installing Unlock tool.
my friend told me about how to jailbreak iphone 3GS, but i select the "Simple Mode" instead of "Expert Mode" and i accidentally click restore without holding up option
now its 3.1.2 firmware, but is it still possible for me to re-jailbreak it ?
Hi,
I have a 3GS and jailbroke. I went to unlock it with ultrasn0w and the phone froze. Now it is stuck in recovery mode. The only thing I can do is update it with the latest firmware. If i do that, I won't be able to unlock it. I have tried restoring it with a custom firmware made with pwnagetool, but it won't allow me to. It says something like incompatible firmware. Is there any hope?
What about the ad on this website from autoiphoneunlocker.com? Has anyone tried it? Will it truely unlock 3.1.2 with the newest baseband? If it does, it may be worth it to buy it since I have several iphones I can use it on.
Please, someone help.
Paul, the autoiphoneunlocker only uses what the Dev Team and GeoHot has released. They don't have any new sources. I bought it for 3.0.1. Same thing as what's posted on here, except clearer directions and all the necessary files are all in one place for easy quick download. Well, it does have unlimited upgrades. Hmmm…
I followed these steps and successful JB and unlocked my iphone 3gs with 3.1 OS. However, I could not make any phone calls at all. When I make a call, it suddenly ended it and then it announced that the call is failed. Accept that I still received calls and msm from other people. Can anyone help me to fix it please?
erm… i just get iphone 3Gs then the VERSION 3.1.2(7D11) n the MODEM FIRMWARE 05.11.07 can i jailbreak??
Hi,
I have a factory unlocked iPhone 3Gs, can I use this method to jailbreak or is there an easier process?
//thanks
I am also getting Error 1604 on my 3Gs, all I can do after that to get the phone functional again is to allow iTunes to restore normally not using the custom file created with pwnage. Any have any solutions on how to get the phone to accept the custom file?
I have an Iphone 3GS with VERSION 3.1.2(7D11) n the MODEM FIRMWARE 05.11.07. I use AT&T is my provider so I do not need to unlock but would like to Jailbreak. Can I still jail break with this tool if my Modem Fireware is 05.11.07?
Everything seemed to work, even have cydia on there and thus far seems to be working.
but, my modem version is still displaying the 05.11.07
Did everything step by step and seemed kosher. hmm.
this mean no unlocking for me?
mebbe ill try again from the start.
Referring to the modem being 05.11.07 still, do I need to even unlock it as an AT&T customer? That feature is soley for using iphone with other sim card carriers? (I better get to reading up some more. mebbe i overlooked a few things ;p)
Hi guy, my iphone now is in apple imagine screen. it is frozen there. How to solve this problem? I tune doesn't recognize my iphone
worked great on my girlfriend's and my 3gs thanks dev team. Did this fix the push notification problem or do we have to fix it like last time?
Has there been any news as to when windows users might be able to use this?
i have unlocked and jailbroken my phone but i thing i didn't understand is how to get rid offf this. plzz see the below pics to help. I mean i tried jailbreakin and unlocking it few times and i have a version 3.1.2 for some reason i cant put up the pics but its bunch of blank thing and underneath it says "untitled". every time i download and install something these appear along with it so it is really gettin annoying plzz help
has any1 got the new uk orange iphone???i cant jailbreak or unlock with any softwares!!!!!!help!!!any1 nos what 2 do plz email me seanxia826@googlemail.com……thank you very much!!!
I have the same issue, I don't need to jailbroken it but I trying to jailbroke the latest iphone and I couldn't because error 1602, does someone know how to do it?
I Have the same issue. did you get your iphone jailbroken? I couldn't so far because my firware is 051107
Did you ever get a reply to this post?