Guide for jailbreaking/unlocking 2.0 and 2.0.1 software on Mac and Windows.

[Lincoln]

Update, 8/18/08: Firmware 2.0.2 was released today. Neither PwnageTool nor WinPwn support the 2.0.2 firmware in their current releases. This notice will be removed and the guide updated (if necessary) once the firmware has been jailbroken.

--------------------------

There are quite a few guides out there that explain jailbreaking the 2.0 (and now some 2.0.1) software, but they're all quite confusing and incomplete. The first post in this guide is for Macs only and , uses PwnageTool 2.0.2, goes over jailbreaking both the 2.0 and 2.0.1 firmwares, and is written by me. The second post explains unlocking and jailbreaking the V1 iPhone and iPhone 3G on Windows using WinPwn - credit to iClarified, and the third is a Q & A along with explanations of the iTunes errors, credit to Macrumors.

By following this guide, you will get a firmware that will jailbreak your device, not unlock it. If you wish to unlock, do not disable BootNeuter.

Windows users: The following guide is Mac only. If you would like me to create an IPSW for you, simply state what you would like in the file (options, boot logos, etc.) and I will be happy to send it to you. Also, the second post in this thread is on unlocking a 2.0 iPhone on Windows. Credit to MacRumors.

There are two modes in the current release of PwnageTool:

Simple Mode - Simple Mode does not allow you to customize the firmware (use custom logos, etc.) I recommend you do not use this mode, however, if you want to, a guide on Simple Mode can be found here.

Expert Mode - allows you to customize the firmware. We will use Expert Mode in this guide.

Devices that can be used with PwnageTool:

iPhone: can be jailbroken, unlocked, and activated.
iPod touch: can be jailbroken.
iPhone 3G: can be jailbroken and activated.

Required Downloads:

PwnageTool 2.0.2

2.0 firmware for iPhone V1
2.0 firmware for iPhone 3G
2.0.1 firmware for iPhone V1
2.0.1 firmware for iPhone 3G


Step 1) Sync and Backup
As always, sync and backup your iPhone before beginning the process. (What with the excruciatingly long backup times, you may want to start this an hour or so before you plan to use Pwnage.)

Step 2) Select mode and device
Open PwnageTool and click "OK" on the pop-up message that appears. At the top, select "Expert Mode" and then click on the device you have. (iPhone, iPod touch, iPhone 3G.) Now click the blue arrow.



Step 3) Select firmware
You will not be prompted to select the IPSW file (firmware) you wish to Pwn. PwnageTool will browse your disk for IPSW files and display them select whichever you want to run on your device. Firmware 2.0 will be named iPhone1,1_2.0_5A347 and Firmware 2.0.1 will be named iPhone 1,1_2.0.1_5B108. Click the blue arrow.



Step 4) Options Screen
You will now see a screen with several options. This is where you will build the custom firmware.

Step 5) General Settings
Click on the "General" button and then the blue arrow. Uncheck the "Activate the phone" option (only do this if you are a legit AT&T customer). Click the blue arrow.

Step 6) BootNeuter Settings
NOTE: Skip this step if you want to unlock your iPhone. Uncheck "Auto delete BootNeuter.app" and "Unlock baseband." Then uncheck "Neuter bootloader." Click the blue arrow.

Step 7) Cydia Settings
You will now see the Cydia settings. Here you can have any packages available through Cydia pre-installed. Note that while PwnageTool 2.0.2 installs Installer, you cannot pre-install Installer packages with this release. Click the blue arrow.

Step 8) Custom Package Settings
You will now boxes for Installer and Cydia - by default, both are selected If you do not wish to install one (or both) simply uncheck them. Click the blue arrow.

Step 9) Custom Logos
Here you can select custom logos to use when booting the iPhone and when it is in recovery mode. The logo must be in the .png format, must be in RGB or Grayscale format with Alpha channel, must have a resolution lower than 320 by 480, and can be no larger than 100 Kb. Click the blue arrow.

Step 10) Build the IPSW
You are now taken back to the main options screen. Re-check all of your options and then click "Build" at the bottom and click the blue arrow. You will be prompted to name the firmware. The default name is fine, or you can give it a custom name. After a moment, you will be prompted to give your password. Do so, and the building will continue. Soon you will be asked whether or not your device has been Pwned before. If it has a custom boot logo, click yes. Otherwise, click no.



You will then be instructed to enter DFU mode by a series of screen. Follow the on-screen instructions to do so. You may have to try multiple times to make your device enter DFU mode.



Once you have successfully entered DFU mode, you will see the screen shown below.



Step 11) Restore from the custom firmware
Now you need to Restore your device with the custom firmware. Make sure your device is still in DFU mode and connected to your computer, and open iTunes. You will be told that iTunes has detected an iPhone/iPod touch in Recovery Mode and that it must be Restored.

While holding the Option key, click "Restore." This is will bring up a file browser. Use this to navigate to your custom IPSW, and select. Your device will begin to Restore using the custom firmware.

---------------------

If you are unlocking your device and chose to use BootNeuter, the process can take up to 30 minutes. Do not, at any time, during the process close BootNeuter. This will result in the permanent "bricking" of your device.

If you get Error 1600 from iTunes (or if you see in your log a failure to prepare x12220000_4_Recovery.ipsw), try: mkdir “~/Library/iTunes/Device Support”. If that directory already exists, remove any files in it. Then re-run PwnageTool.

If DFU restores are giving you trouble, another route to pwned 2.0 for V1 owners is to use first pwnage at 1.1.4. Once you are pwned there, you can do a normal Recovery-mode restore to your custom 2.0 IPSW.

iPhone does not need to be pre-pwned to be able to DFU-restore into a pwned IPSW - it needs to be pre-pwned only for normal recovery-mode Restores of custom IPSW’s.

------------

The following posts is a guide on unlocking 2.0 iPhones on Windows. Credit to MacRumors.

[Lincoln]

To jailbreak & unlock your 2.0 + V1 iPhone in Windows, follow this guide. Credit to iClarified. To jailbreak your 2.0 + and iPhone 3G, see below.

Credit for this guide goes to iClarified.

This tutorial will use WinPwn to unlock and jailbreak your 2G iPhone on the 2.0 firmware. The latest version of WinPwn does install Installer.app

IMPORTANT: Some 2G users have experienced problems with the latest version of WinPwn. Specifically if you select to install Cydia then WinPwn may crash during the IPSW build. Either deselect Cydia or you can still follow these instructions using WinPwn 2.0.0.3 and the 2.0.0 iPhone firmware.

Please keep these notes in mind...
- You MUST do a full uninstall of winpwn before installing the new version
- Make sure you have the latest version of iTunes (Currently 7.7)
- WinPwn uses 300MB of RAM at peak due to the IPSW being extracted in memory
- You must first click browse and load an IPSW to use WinPwn
- For 2.0 only the *5A347_Restore.ipsw files are valid. The 345 image will not work
- If you see Failed to load image catalog/payload catalog, this is fine and won't cause problems
- If you already have service with AT&T do not activate or install Youtube Fix



To follow this tutorial you will need to have iTunes 7.7 installed (make sure to reboot). Also, you may need to download and install .Net Framework if you are on Windows XP.

Step 1)
Create a folder on your desktop called Pwnage. In it place the following files: Winpwn 2.0.0.4 or Winpwn 2.0.0.4 , 3.9BL , 4.6BL , and the latest 2.0 firmware.

Step 2)
Install WinPwn by extracting the downloaded from Step One and running the setup exe. Once WinPwn has been installed it will put a shortcut icon on your desktop. Double click to launch the app.

Step 3)
Once WinPwn has opened click the Browse .IPSW button.

Step 4)
Locate the 2.0 firmware file from the Pwnage folder on your desktop and click Open.

Step 5)
WinPwn will check the firmware to make sure its valid. Now click the IPSW Builder button.

Step 6)
The IPSW Builder window will open to the Applications tab. Check to select Cydia and if you are not on AT&T then check to select YouTube Fix.

Step 7)
Click to select the Custom Images tab. From here you can can select
your own boot images.

Step 8)
Click to select the Custom Payload tab. From this tab you can select custom payloads you have created to be automatically installed.

Step 9)
Click to select the Advanced tab. Check to select: Activate Phone, Enable Baseband update, and Unlock baseband. We will also need to load the Bootloader files. Click the Bootloader 3.9 button and then select the BL39.bin file in your Pwnage Folder. Then click the Bootloader 4.6 button and select the BL46.bin file in your Pwnage Folder.



Step 10)
Click the Build .ipsw button at the bottom left to build your custom IPSW firmware file. Navigate to your Pwnage folder and click the Save button.

Step 11)
Once WinPwn has finished creating your custom firmware then click the iPwner button from the main menu.

Step 12)
Select the custom firmware file we just built from the Pwnage folder on your desktop and click the Open button.

Step 13)
You will then be notified that your iTunes has been Pwned!

Step 14)
Next we will need to put the iPhone in the DFU mode and restore using iTunes. To put your iPhone into DFU mode please follow these instructions!

Step 15)
iTunes will prompt you that you are in recovery mode. Hold down Shift and click the Restore button in iTunes. A popup window will appear asking you to select your firmware. Select the Custom firmware file we saved in the Pwnage folder and then click the Open button. Once the restore is complete you will have your iPhone unlocked and jailbroken!

-------------

To jailbreak your iPhone 3G running 2.0 + firmware on Windows, follow this guide.

Step 1)
Follow steps 1 through 8 in the Windows guide above, but do not download the bootloaders and download this 2.0 firmware instead.

Step 9)
Click to select the Advanced tab. Check to select: Activate Phone.
NOTE*: Deselect Activate if you have an iPhone legitimately activated on an official carrier.

Step 10 - 15) Follow steps 10 through 15 in the Windows guide above.

[Lincoln]

Q & A

Credit to MacRumors.

-----------
Q & A:

Is it safer than ZiPhone/iLiberty+?

Yes as it changes your file system BEFORE you restore and therefore avoids all the possible problems you can have with other methods.

Will Installer be added automatically?

If you rebuild the firmware using pwnage then 1.1.4 will have installer added to the firmware. Installer is not added to 1.2 or 2.0 beta firmware as it would not work at this time.

Can I just jailbreak ONLY?

Yes - don't tick any boxes on the firmware options and it will ONLY jailbreak your phone.

Can I customize my firmware to add certain applications etc?

Yes.

Can I use PwnageTool with IPSF unlocked phones?

Yes you can. It will from my understanding it will not touch the IPSF unlock but will unlock the phone a different way and is fully compatible.

Can I use BootNeuter without pwning? Can I use Bootneuter without a Mac?

Yes, details here: http://www.hackint0sh.org/forum/showthread.php?t=36528

I would, however, recommend using PwnageTool if you need to change your bootloader as it is the safest method as its fully automated and best for anyone who is not a hacker.


I have no sound/My iPhone is acting strange after being pwned successfully? What is going on?

First of all - ALWAYS set up your iPhone as a "new" phone - never restore from backup unless your phone was not previously jailbreaked!

WARNING! Restoring a backup of a previously jailbreaked phone can cause a number of issues only fixable by another restore so don't restore from a back up of a previously jailbreaked phone!


If you have set up your phone as new and are still having issues then do a full settings reset from settings>general>reset>reset all settings and that should fix it!

I Pwned my iPhone/iPod with the wrong firmware! iTunes says my iPhone is an iPod (or vice versa). What can I do?

My iPhone won't turn on! It's rebooting constantly! I have continuously scrolling text!

Also any other issue in which device is non-responsive

You can fix this!

Put your phone into DFU mode. You can do this by pressing and holding the sleep and home button for 10 seconds WHILST THE USB CABLE IS CONNECTED AND ITUNES RUNNING from when the Apple logo appears until it dissapears and then KEEP holding the home button but let go of the sleep button - the screen will stay off but iTunes will recognise the phone.

If you have trouble getting DFU mode use Independence/ iLiberty+ to put your phone into DFU mode!

If your phone is not recognised by Independence/ iLiberty+ you will have to manually put it in DFU - this CAN be tricky to time right but eventually you WILL get it!

Restore to apple original firmware and you can start over again!

iTunes error messages:

Error 1013/1014/1015 - This error message occurs when you downgrade or upgrade to a different baseband than the firmware your restoring to has. This message does NOT mean the restore failed - it simply means the phone firmware does not match the baseband. Use iLiberty/Independence to kick the phone into normal mode and out of recovery mode and it will work.

Error 6 and 10 - This error message is because of a problem with your firmware - this message will occur most often because of using unsuitable boot/recovery images. Make a new custom firmware to fix this and use suitable boot images or use the standard images that came with the pwnage software.

Error 1603/1604 - 160? something

IF YOU ARE RESTORING TO A STANDARD APPLE FIRMWARE *NOT CUSTOM FIRMWARE"

This error is down to itunes not liking your USB ports on your computer. Use a different USB slot or a different computer if possible. That is the easiest fix!

IF YOU ARE RESTORING TO A CUSTOM FIRMWARE AFTER RESTORING FROM STANDARD APPLE FIRMWARE

IF you have pwned your iPhone once and then restored back to apple original firmware successfully and THEN tried to restore custom firmware you WILL get
an error in iTunes as the apple firmware "unpawned" your phone. You have to repwn it using iPwner and then you can restore using custom firmware.

IF YOU ARE RESTORING TO CUSTOM FIRMWARE AND YOUR PHONE IS STILL PWNED

See "if you're restoring to apple firmware" above as it is the same issue.

BootNeuter Error 5: This is because you upgraded to the 2.0 beta firmware without unlocking first in 1.1.4 like your supposed to. You will have to restore to 1.1.4 unlocked and then BootNeuter will work.

[themanofthedark]

always have to outdo me, huh, Jo-er Linc?

[dangerouslaser]

Attention

Winpwn 2.0.0.4 is now available for windows users and a guide for using the tool is located here

[cliffeman]

And for 3G users

http://www.iclarified.com/entry/index.php?enid=1573

[Rip]

Quote:

Originally Posted by dangerouslaser

Attention

Winpwn 2.0.0.4 is now available for windows users and a guide for using the tool is located here

There's a missing step in this guide. (Minor but does create some confusion).

Before Step 12 it should say 'Click iPwner' button.

Then the dialogue will open to select your new FW file.

Incidentally, for some reason I can't seem to create an IPSW with installer added. It crashes or says 'Failed to create'.

If I just check Cydia and You Tube fix it's fine! I'll post back here if I find a solution.

[Lincoln]

Guide updated with WinPwn instructions for V1 and 3G.

[nightvisionmiami]

I have a iPhone 3g 2.0 firmware jailbroken. I installed a few apps throught Cydia which are causing my phone to hang. I want to update to 2.0.1 jailbreak version but I want to know if this will erase all the apps that I have installed with Cydia or will it leave them in place? I would like to start clean to avoid installing those specific apps that I know that cause my phone to hang.

[Lincoln]

Quote:

Originally Posted by nightvisionmiami

I have a iPhone 3g 2.0 firmware jailbroken. I installed a few apps throught Cydia which are causing my phone to hang. I want to update to 2.0.1 jailbreak version but I want to know if this will erase all the apps that I have installed with Cydia or will it leave them in place? I would like to start clean to avoid installing those specific apps that I know that cause my phone to hang.

Yes, it will remove all modifications including apps, themes, and files put in via jailbreaking. However, I recommend you Restore first, then Update, and be sure to set up as a new phone after you Restore, instead of Restoring from your backup.