Tutorial: Upgrade Your iPhone Firmware 2.x to 3.0 Using PwnageTool 3.0

June 20, 2009 · Comments

in Tutorials, iPhone

MyPhoneRiches

Update: PwnageTool 3.01 is now available and is said to fix the PPC issue on Mac OS X and the Icy Installer bug.

This guide will help you upgrade and jailbreak your iPhone v2.x to 3.0 firmware using PwnageTool 3.0 created by the iPhone Dev-Team.

This tutorial is specifically for the iPhone 2G (1st Generation iPhone) and PwnageTool 3.0 for Mac OS X. Although the same steps apply to jailbreak an iPhone 3G, just make sure you have iTunes 8.2 and Mac OS X 10.5.7. But if you rely on Yellowsn0w to obtain a cellular service, PwnageTool will not work so you have to wait for Ultrasn0w.

Step 1. Download PwnageTool 3.0. Open the PwnageTool_3.0.dmg, then drag the extracted PwnageTool.app to your Desktop.

Note: If this is the first time you are jailbreaking your iPhone 2G, you need to download the following bootloader files: 3.9BL and 4.6BL and drag them to your desktop too.

Step 2. Open Firefox (not Safari) and download the iPhone 3.0 firmware (for iPhone 2G or 1st Generation iPhone). Place it on the desktop along with the others you just downloaded (it is important that all these files are located in one place).

Step 3. Connect iPhone to computer and open iTunes (upgrade to iTunes 8.2 if prompted). Select Cancel when prompted to download iPhone 3.0.

Step 4. Backup your iPhone to iTunes, then disconnect your iPhone and close iTunes.

Step 5. Open PwnageTool 3.0

Step 6. Select Expert mode and click iPhone. Click on the blue arrow button.

Step 7. Wait for PwnageTool to browse for the iPhone 3.0 firmware (.ipsw) you downloaded in Step 2. If it can’t find it, you will be given a chance to manually browse through your computer hard drive and select it.

Step 8. Select iPhone1,1_3.0_7A341 and click the blue arrow button.

Step 9. Select General and click the blue arrow button.

Step 10. Select Activate the phone and Enable baseband update. Select Root partition size as 666 MB (to get an easter egg :p). Click the blue arrow button.

Step 11. Select the default Bootneuter settings. Click on the blue arrow button.

Step 12. The Cydia settings allow you to create a custom package of Cydia apps to automatically include in your iPhone.

Step 13. Click on Download packages, select from Source pull-down list and click on the Refresh button. Select the applications you like to add (command-click to select more than one) and click on Add to queue. Go back to Select packages and make your final selection. Click the blue arrow button.

Step 14. Leave the default Custom packages settings for now. Click on the blue arrow button.

Step 15. Unless you have a custom logo that you want to use instead of the Pineapple and Steve Jobs logos, select them here now. Otherwise, click on the blue arrow button.

Step 16. Click on the Build button to create a custom firmware that you will select later to install in your iPhone.

Note: If this is the first time to jailbreak your iPhone 2G, you will be asked to select where your Bootloader v3.9 and Bootloader v4.6. Just click No and browse your hard drive for the files respectively.

Step 17. Wait while your custom firmware is being created.

Step 18. Enter your username and password when prompted.

Step 19. Just click No even if you have an already jailbroken iPhone 2G to allow for a more thorough restore. You will be then asked to turn-off the device (make sure it is connected to the USB port).

Step 20. Be ready to follow directions now. It will ask you to hold the Home button and the Power button for 10 seconds. Then, you will have to release the Power button while continue to press the Home button for 10 seconds to enter DFU mode.

Step 21. If you fail, it will show you a message. Click Yes. Unplug the iPhone from the USB. Turn it off, then turn it back on. Plug it back into the USB and turn off the iPhone when prompted.

Step 22. When done correctly, PwnageTool 3.0 will display a message telling you that it successfully entered DFU mode. iTunes will also pop-up.

Note: If you get the success message above but failed to display your iPhone in iTunes and instead get an error message, try this: 1) After you turn off your iPhone, unplug it from your Mac. 2) While holding the Home button, plug in the cable. 3) Still holding the Home button, wait for iTunes to open.

Step 23. In iTunes, hold the Alt/Option key and click Restore.

Step 24. Navigate to where you saved the iPhone1,1_3.0_7A341_Custom_Restore.ipsw file (Step 16). Click the Open button.

Step 25. Wait for the restore to finish.

Step 26. After the restore is completed, your iPhone will restart and will launch BootNeuter.app to unlock the device. As soon as this is done, you will be asked whether to Set up as a new iPhone or Restore from a backup.

Step 27. If you did a backup prior to upgrading to 3.0, select Restore from a backup.

You will get back all your apps purchased from the iTunes App Store but not the “cracked apps”. To get those back too, download the free AppSync for OS 3.0 from Hackulo.us in Cydia (take note of the warning from the author of the app) and do another sync with iTunes.

You should now be good to go!

Related Posts

Tagged as: iPhone, Jailbreak

  • dlf
    Hey thanks for this great step-by-step tute!
    Could i ask a question regarding a 3G phone;
    I'm going to have a go upgrading and jailbreaking my 3G currently running jailbroken FW2.2.1.
    I have downloaded the FW3.0 via iTunes, but not installed it. Would you know if I can use this ipsw with pwnagetool 3.0, or do I need to download another ipsw?
    I am not looking to unlock the phone.
    Thanks for any help! /dlf
  • Yes, you will need the iPhone 3G firmware (iPhone1,2_3.0_7A341_Restore.ipsw).

    In Step 10 General Settings, unselect "Activate the phone" and choose a larger partition size (around 700 MB).
  • dlf
    Thanks! sorry to be a pain but I'd like to double check one more thing.. would it be a good idea to upgrade normally to os 3.0 with itunes before doing the backup (i.e. un-jailbreak)?
    and then create a custom ipsw with pwnagetool after this?
    or would there be no point with this?
    i'd just like to keep it tidy. thanks again!
  • Upgrade to 3.0 using the PwnageTool and not in iTunes.
  • dlf
    Hey thanks so much for the tute and your help!!! jailbroken and free. all working A-ok.
    previously jb 3G 2.2.1 upgraded to os 3.0 and jailbroken as per above. didn't upgrade to 3.0 via itunes before using pwnageTool. used original ipsw from itunes by downloading it through itunes 8.2 but not installing it on iphone. then, without knowing exactly were in the drive it was located, pwnagetool found it and created custom ipsw from it.
    after that, no difficulties with itunes, straight forward all the way following the instructions in this tute.
    cydia and ice running fine.
    don't know what else to say really, more than i'm very happy.
    thanks for the step-by-step tute again.. cheers!
  • GanjaManja
    for those trying to figure out where the .ipsw's are downloaded to on their computer:
    If you chose "Download Only" on iTunes, or you clicked "Upgrade" but disconnected your iPhone while iTunes downloaded the new 3.0 iPhone OS (so it DLed without installing), you can find the firmwares in the folder:
    /Users/your_username/Library/iTunes/iPhone Software Updates/
    on Windoze I *think* it's in (i only use Mac OS)
    C:/Users/username/AppData/Roaming/Apple Computer/iTunes/iPhone Software Updates/

    PwnageTool worked like a charm on my 2G iPhone (updating from 2.2.1). The new Copy/paste is great (way better than hClipboard), Spotlight may become useful in the future but not yet. It's definitely faster and smoother.

    Only one wierd thing happened: Cydia apps installed in Pwnage Tool itself (ie. compiled directly into the Custom.ipsw) do NOT show up in the Cydia > Manage > Packages list... but i know that at least some of them are installed - I am using the "T-mobile US Carrier", and had no problem using T-Mobile immediately after I finished upgrading, and SSH'ing into OpenSSH works just dandy... However neither "T-mobile US Carrier" , Open SSH, Mobile Terminal nor any other packages I installed in Pwnage Tool show up, even though they're installed. (There is also no Icon for MobileTerminal, so I can't use it)
    it's easy enough to reinstall them via Cydia (which thinks they're not there anyway), so no big problem.

    Thanks for the nice writeup!
  • GanjaManja
    and to answer the previous post: using the .ipsw/firmware downloaded by iTunes worked just fine - I had no problems at all (apart from finding it!)
  • Ahmad
    OpenSSH and mobileterminal which you installed with pwnage tool were installed... it didnt show up in cydia>manage>packages because cydia had applied filters..
    In manage press settings option on top left and then select the last option which is without any filters then you can see thyem in installed packages
  • Hung
    I can't open the pwnagetool 3.0.dmg it said no compatible file extension. What should I open this file with?
  • You must be using Mac OS X to open the PwnageTool_3.0.dmg file.
  • Marty
    I have a 1st Gen iPhone, jailbroken and updated to 2.2.1. Trying to create new custom firmware with Pwnagetool_3.0 and it crashes about 45 seconds into creating.
    Checked log and crashed on thread 9..
    Reading the start of your tute I can tick yes to everything required. Then you say "Although the same steps apply to jailbreak an iPhone 3G, just make sure you have iTunes 8.2 and Mac OS X 10.5.7." I read that as being IF you have an iPhone 3G you need iTunes 8.2 AND OSX 10.5.7 OK I have a PowerBook G4 with OsX 10.4.11 & iTunes 8.2, BUT I am updating a 1st Gen iPhone already jailbroken!
    What do you feel is my problem, not having an Intel processor, not running 10.5.7 software or something else?
  • dlf
    I've read numerous posts on the iPhone Dev-Team's blog from people having trouble with running the pwnagetool on powerpc macs. For some reason it seems to crash if it's not running on an intel processor, also another thing with i was sloppy with the first time is to copy the pwnagetool to your desktop, out of the disk image, rather than running it from inside the disk image directly. other people seem to have seen crashed because of this too.
    these are two things i've read about, but sorry to say i wouldn't know for sure....
  • pdxdale
    I am having the same problem running pwnageTool 3 on my iBook G4. I also have 10.4.11. I wonder if you need 10.5 for this to work?

    >>>
    first time is to copy the pwnagetool to your desktop, out of the disk image, rather than running it from inside the disk image directly.
    >>>

    I am not able to copy pwnageTool 3 out of the the disk image to the desktop (or anywhere else). The finder reports the following error: One or more items have special permissions and cannot be copied. Do you want to skip them?
  • GanjaManja
    I will say that when PwnageTool'ing iPhone OS 2.02 and 2.2.1, it wouldn't work on my Mac Mini Intel, but would work on my PPC iBook G4... PwnageTool 3.0 worked fine on my Mac Mini Intel.
    Try using a different computer, and like the previous poster suggested, try using an Intel Mac.
  • Moody
    Where does the username and password come from in Step #18?
    Is it a pwnage tool username and password or iTunes username and password?

    I haven't upgraded yet, just reading before I begin the process.
  • Miykal
    @Moody I've tried upgrading and jailbreaking my 1stGen iPhone running os 1.1.3 to 2.2.1 using pwnage tool 2.x (i forgot which version number it was) following some other tutorial. The user name and password required to "bundle" the custom software update is the username and password you use to log in to your OS X.
  • Miykal
    I'm worrying about updating my current OS X 10.5.4 installation to 10.5.7. Does any one has tried with 10.5.4 or is it really necessary to upgrade to 10.5.7 ? with intention that the upgrade won't work under earlier version than 10.5.7?
  • Yes, 10.5.4 should work with a 1st gen iPhone.
  • Miykal
    confirmed, my 1st gen iPhone now running FW 3.0, following your steps. It was smooth and painless on top of my OS X10.5.4. Thanks a ton for your rockin' guide.
  • Wayne Smith
    I have a 1st gen iPhone jailbroken with 2.2.1 and have tried to use the pwnage 3.0, but when it comes to step 16 it fails. I have the ipsw restore file needed on my computer, so I don't know why it has to try to build a custom file. What am I doing wrong?
  • Can you please explain how step 16 (building a custom firmware) fails? Any error messages?

    The custom firmware is required to jailbreak and unlock your iPhone. Otherwise, if the ipsw restore file from Apple works, we won't need PwnageTool.
  • Moviefan
    HI
    Forgive me if this has been addressed, but I need explicit help. I am using T-Mobile with my 2G iphone running 2.2 (on a Mac; 10.5.7). Can I use Pwnage 3.0 to update or do I need to use RedsnOw? Don't they both do the same thing? Also, someone said not to go directly through iTunes to download the ipsw 3.0 but to go through some sort of indirect Restore process. Any comment on that? Or can I go right through iTunes as your tutorial shows with no hang-ups? Sorry for all the questions; I just want to do this right and not end up with a bricked phone!

    Thanks!!!
  • You can use PwnageTool or Redsn0w although they use different methods in jailbreaking. Windows users can't use PwnageTool. Read more here - http://menoob.com/iphone/waiting-for-iphone-dev...

    You can either download the ipsw file from iTunes or from another location. You can do both if you like and PwnageTool will let you select which file to use later on. This tutorial provides you with a link to download the ipsw file and tells you not to download from iTunes (see Step 3).
  • Wayne Smith
    When I go to step 16 I click no on both questions and it says that it failed and stops, then goes to the beginning to start over. My phone is already jailbroken and I am using T-Mobile.
  • Miykal
    Have you placed the extracted BL-39.bin and BL-46.bin files in the same directory as the pwnage tool? my previous experience when upgrading from FW 1.1.3 to 2.2.1 also gave me similar situation with yours, which apparently caused by the fact that the bootloader files are not in the same directory with pwnage tool.
  • Moviefan
    Thanks so much menoob. Had a less technical question now. When I used Pwnage 2.2, at the screen where you can choose an icon (step 15), I browsed and chose a different icon than the pineapple, but when it was done, I still had the pineapple! I saved my file in .png format. Did I do something wrong? Wrong format? Should it have been jpg? No biggie, but this time around I would like to have my custom icon there!

    Thanks!
  • jmoney123
    hi hows it going. I dont know y but i am really struggling with getting my iphone 3g jailbroken and im normally good with this stuff. So first off I have mac os x leopard 10.5.6 with itunes 8.2, do i have to upgrade to 10.5.7 before it will work properly with jailbraking it in pwnage tool 3.0? iiiiiiiiiiiiiiiiiiiiithe pwnage tool 3.0 and went the the process and it made an .ispw package for me? is that ok or not? so anyways i went through this process several times today and i get the 1601 errors on my mac. what exactly do i need to do for this to work out? please help me out
  • Kate
    This tutorial is perfect!!! I have it upgraded and works fine.

    The only small problem I had was that I accidentally selected the wrong IPSW file for restore, and then couldn't find a way to go back and select the right one. So I had to go throug all the trouble of restoring to the Apple factory setting, and then start the whole process again, took an extra hour. It would be great if someone could post a thread suggesting if there are any shortcuts to fix this kind of problem :P
  • If you mean on Step 8 (restore ipsw), then there is a Back button next to the blue arrow button.

    If you mean on Step 23 (custom restore ipsw), then you just have to start again from Step 22 and perform what's said on the Note box. Then select again your custom restore file.
  • Ahmad
    hi,
    Cant i use the itunes upgrade option?
  • Sure you can as long as you know where to find the restore ipsw file when asked.
  • byronchurch
    Somehow I have restored my old 2g to a unregisterd phone and can not access my old backups through itunes becouse it does not recognize the phone and is asking for a sim If i put in my 3gs sim it wants me to go through a new registration to set it up . I just want it for my kids to play with and for a back-up phone if I need it . Is there a way to restore it from an old itunes backup out a sim ? Or can I just Jail break it as a new phone with or without my ATT 3G's sim ? My Grand son is freekin !
  • Ahmad
    i saw a youtube video in which the user told that to jailbreak and unlock 3.0 firmware ,,, your device should be already on 3.0...is it necessary
  • Not necessarily.
  • Guest4356345634563456
    For anyone that cares, I have found the answer to where this message is coming from:

    "One or more items have special permissions and cannot be copied. Do you want to skip them"

    In ./PwnageTool.app/Contents/Resources/CustomPackages/Icy.bundle/files/Applications/Icy.app

    The file "Icy" is suid root. Because finder isn't running as root, it cannot make the copy suid root. It is safe to click 'Continue'. Note that file file will still be copied, it just wont be suid root. In my case, I have no intention of installing or using Icy anyway, so it makes no difference for me. I'm not sure whether it would cause trouble for someone that does use Icy. I'll leave that to someone else.
blog comments powered by Disqus

Previous post:

Next post: