How to Jailbreak Your iPhone 3GS Using PwnageTool (Mac) [4.0]

POST

MAIL

Posted June 22, 2010 at 7:11pm by iClarified

These are instructions on how to jailbreak your iPhone 3GS on iOS 4.0 using PwnageTool for Mac.

Currently, PwnageTool only works on previously jailbroken 3GS devices with the old bootrom.

● If you have a Jailbroken iPhone 3GS with the OLD BOOTROM and you DID NOT use Spirit to jailbreak then you can create the ipsw with PwnageTool 4.0 and restore with your jailbroken recovery mode.
● If you have an iPhone 3GS with the NEW BOOTROM this is NOT supported by PwnageTool 4.0. Please don't use this tutorial.

Step One
Make a folder called "Pwnage" on the desktop. In it, you will need a couple of things. PwnageTool 4.0, found here or here

You will also need the 4.0 iPhone firmware.
4.0.0 (3GS): iPhone2,1_4.0_8A293_Restore.ipsw

When downloading the IPSW file, it is best to download it with Firefox since Safari often auto extracts it!

How to Jailbreak Your iPhone 3GS Using PwnageTool (Mac) [4.0]

Step Two
Double click to mount PwnageTool then drag the PwnageTool icon into the Pwnage folder.

Then from the Pwnage folder double click to launch the PwnageTool application.

Click Ok if presented with a warning.

Step Three
Click to select Expert Mode from the top menu bar

Step Four
Click to select your iPhone. A check-mark will appear over the image of the phone.

Step Five
Click the blue arrow button to continue. You will be brought to the "Browse for IPSW" page. On my laptop, it automatically found the IPSW. If PwnageTool doesn't automatically find the ipsw file you can click Browse for IPSW....

Click to select the found IPSW file, a checkmark will appear next to it. Then click the blue arrow button to continue.

Step Six
You will then be brought to a menu with several choices. Click to select General then click the blue arrow button.

The General settings allows you to decide the partition size. Check Activate the phone if you are not with an official carrier then click the blue arrow button.

NOTE*: Deselect Activate if you have an iPhone legitimately activated on an official carrier.

The Cydia settings menu allows you to create custom packages so you do not have to manually install the necessary them later.

Click to select the Download packages tab. Then click the Refresh button to display all the available packages. Double clicking the package you want will download it and make it available in the Select Packages tab.

Checkmark the ones you want then Click the blue arrow button.

The Custom Packages Settings menu displays listed package settings for your custom IPSW. For know leave these settings as is. Click the blue arrow button to continue.

The Custom Logos Settings menu allows you to add your own images as boot logos. Click the Browse button to select your Boot logo and Recovery logo. If you would like to use the iClarified ones they can be found here: Boot Logo, Recovery Logo

Remember the rules for them: RGB or Grayscale format with Alpha channel and dimensions below 320x480...

Click the blue arrow button to continue.

Step Seven
You are now ready to begin the pwnage process! Click the Build button to select it then click the Blue arrow button to begin.

Step Eight
You will be asked to save your custom .ipsw file. Save it to your Pwnage folder you created on your Desktop.

Your IPSW is now being built. Please allow up to 10 minutes.

You will be asked to enter your administrator password. Do this then click the OK button.

Step Nine
Once your ipsw has been built you will be asked to place your iPhone into recovery mode. Click OK to close the popup message telling you this, then connect your iPhone to the computer and follow these instructions on how to put your iPhone into recovery mode.

Step Ten
Once In iTunes, hold the Alt/Option key and click Restore.

Step Eleven
Navigate to the Pwnage folder on your desktop using the dialog window that appears. Select the custom IPSW that was created and click the Open button.

Step Twelve
iTunes will now restore the firmware on your iPhone. This can also take up to 10 minutes. Once done you will be rebooted into jailbroken iPhone OS 4.0!

***THANKS: Thank you to the Dev-Team for their hard work in making this jailbreak and tutorial possible!

Follow iClarified

Somesh Pant - September 15, 2010 at 9:33am

Hi, I have these details about my iphone: [iBoot-359.3] : Thats old boot rom, i think. Version: 4.1 (8B117) Model: MC137LL Modem Firmware: 05.14.02 I accidently updated it recently using iTunes, my bad. I want to jailbreak/downgrade it so that i can jailbreak it easily. Any pointers if someone has done it before or from admins from this site. I have tried almost all ways in search engines, but didnt work. Please help. Thanks, Somesh

Reply · Like

Somesh Pant - September 15, 2010 at 9:34am

yes, i get 16XX error when i tried pwnagetool 4.1 to restore it.

Steve - August 23, 2010 at 12:52am

When I go to restore my iPhone with my custom firmware, i keep getting an error 1600.. any ideas to help?

MV - August 26, 2010 at 9:34am

I have the same problem, any ideas on how to solve this?

Markus - July 30, 2010 at 8:44am

I have a 3GS with the new bootrom (MC...) and it was never jailbreaked. iOS4 is installed. How can I unlock this iphone? A "downgrade" with PWnage to OS 3.x dosen´t work. iTunes said, that this is not possible... any ideas or recomendations?

matador - July 30, 2010 at 7:57am

Will anyone be able to help here please......? I am running 3.0.1 firmware on iphone 3GS .... the bootrom is without doubt the old one....... device is jailbroken (redsnow) and unlocked (ultrasnow). I have no access to a Mac computer.... Wish to upgrade to iOS 4.x.x. Supposing I download a custom firmware 4.x.x (not official apple firmware), can I upgrade and jb/unlock successfully? thanks in advance for your help.... :)

qutecpye - August 5, 2010 at 11:13am

I am in the same boat as you are, I have a 3gs running 3.1.2 firmware (unlocked and jb via blacksn0w, old bootroom ) and no access to Mac either so if you find anything would you please let me know. Thank you very much in advance:)

BRIA - July 28, 2010 at 9:26am

iPhone friends, i have a iPhone 3gs running 4.0 (8A293) with bootloader 05.13.04 and old bootrom. Previously i was running jailbroken 3.0 (not spirit) but accidently updated to 4.0 trough iTunes. I'm aware of the importance of saving the shsh files (didnt did that on 3.0) but can i still request my old shsh files with Umbrella? Because when i'm using umbrella it says that it saved iPhone3gs 4.0.1 shsh files. Does that means that i can downgrade to 3.1.2 or upgrade to 4.0.1 and jailbreak with pwnagetool? Most likely it should be for 4.0.1 but i just want to know for sure!! Many thanks! Grtz Bria

Adlin - July 26, 2010 at 5:52am

When I jailbreak, after loading the custom firmware, would I need to activate the phone?

Linda - July 27, 2010 at 12:04pm

You need to Jailbreak first, then you need to Unlock to use another carrier. If you already have an AT&T contract with an iPhone, then it should still work without unlocking. The Jailbreak and Unlock are two different software hacks.

james - July 23, 2010 at 3:18am

I have a 3gs old bootroom, but the previous owner jbd with spirit. What can I do to upgrade to 4.0? Thanks

Ridell - July 27, 2010 at 5:09am

Hey, You can upgrade, no problem. But you can't jailbreak it. I don't know why, just that it doesn't work. I am in the same situation and I got errors all the time so I decided to downgrade to 3.1.3 again and hope for a JB also for us old Spirit users. Can someone perhaps explain what is different in a Spirit jailbroken phone compared with a Pwnage jailbroken phone? I always used Pwnage before but a friend showed Spirit and it was so simple so I used it. Shoulnd't have done that when all comes around. I miss 4.0. I liked it.

Rashdude - July 27, 2010 at 9:02pm

Any further word on us old Spirit jailbreakers for iSO4?

ratatat - July 22, 2010 at 3:22am

i have an iphone 3gs version4.0 model MC137LL serial number 88923xxxxxx modem firmware 05.13.04 it has never been jailbroken before but it is(if i'm correct) in the old bootrom. Is it possible for me to jailbreak this phone?if so can you please help me. tnx

abba77 - July 21, 2010 at 9:06pm

Sorry if this is known, I could not find any info. Are there any plans for a 3GS tool for Windows. I'm still on 3.0.1 on my old bootrom 3GS. and would like to get on 4.x soon. I would imagine redsnow would be the tool, but have not found any news about it. Who/Where should I follow to keep upto date for this. Thx.

Cirpen - July 21, 2010 at 2:59am

Hi there, I'm about to send my iPhone 3gs back to my service provider to repair/replace my iPhone due to dust under the screen. I'm currently using iOS4 with modemfirmware 04.26.08, jailbroken with PwnageTool. I have SHSHs on file in Cydia. I don't use any unlock tool. Probably silly question but do I have to unjailbreak my iPhone so I get iOS4 with the new firmware before I send it to the repair shop? Is it possible to unjailbreak it and keep my current firmware? Do I need my old firmware in the future? And if i update via itunes and get the latest update and firmware can I jailbreak it when I get it back? Thanks in advance

Ozl - July 20, 2010 at 1:46am

Im using 3GS 4.0 updated on iTunes official, this is a friends phone and i created a custom ipsw with Pwnage tools 4.0.1 but when i try to restore, it gives me error 1600, any ideas? Thanks for reading!

Christian Lund - July 15, 2010 at 9:54am

Serious Guys can somebody answer my question I´m on iOS4.0 Have the old bootroom and its 3gs. Can u jailbreak it with this Tutorail because I´m getting Error 1604. Or do u have 2 be on 3.1.3 firmware and of course not jailbroken with spirit.

saczko - July 18, 2010 at 3:40pm

the same problem, help us!

00Ice - July 20, 2010 at 3:28pm

Short answer is no, sorry. In the same boat here because you need to have the shsh blobs saved from 3.1.2 or 3.1.3 to downgrade and then jailbreak and then use this tutorial to upgrade. If this doesnt make sense google it or dont bother until @comex finishes the spirit 4.0 jailbreak

ghamks0v - August 13, 2010 at 3:47am

00Ice, I have the shsh blobs saved from 3.1.2 and I recently upgrdaed to 4.0 Using PwnageTool (Mac) [4.0] but I keep getting the Error 1604 what to do ? Please advise

Paul - July 14, 2010 at 1:32pm

Hello there, I don't know where I'm wrong. I've got a 3gs with old bootrom ***928***** and MC132. f0recast also says it is jailbreakable. I had it actually jailbroken under 3.1.2 and then I upgraded via itunes 9.2 to 4.0. Now I'm trying to jailbreak this. I don't have my SHSH keys saved on cydia. So I used Pwnage 4.0.1 to create a custom image since I have an old bootrom. On the restore I get the marvelous 1604 error... and now I need to retore with apple's ipsw.... what is wrong? why can't I jailbreak the 3gs even though everything says I should? Does anybody have an idea? Cheers, P.

Tarush - July 14, 2010 at 11:43pm

i'm getting the same error. Have been trying things out for quite some time now. I'll let you know if i find something..... and you please let me know if you do. The sad thing is, I don't have an official sim so i'm more or less without a phone now. :(

Paul - July 15, 2010 at 8:38am

I tried with another machine but still the same...

Carecsen - July 24, 2010 at 4:07pm

once you upgraded via itunes you no longer can jb

P rib - July 29, 2010 at 5:56am

Hello - even though it still go the old bortrom ?

Hari - July 29, 2010 at 1:36pm

Even Im getting the same error.. does anybody here have any idea of how to make it work.. Please help me out.. i can't wait to use iOS 4 on my 3gs !

Jesse debasque - July 13, 2010 at 6:22am

Hi quick question for all yall, if I create a custom 4.0 image in Pwnage tool and then restore it in itunes to jailbreak my iphone 3gs with OS4.0 will this wipe out all my data, phones numbers etc?? Any response would be great many thanks!! ; )

geckx7 - July 13, 2010 at 3:51pm

Yes, anytime you reinstall the OS you are going to wipe the phone in the proccess. back it up via itunes then when you are done unlocking SYNC your phone. do not restore from backup

elsuper_js - July 13, 2010 at 1:59am

I have an iphone 3gs working with os 4.0 never jailbreak, there any way I can jailbreak my iphone 3gs or unlock my iphone 3gs for windows. Can someone help me?

geckx7 - July 13, 2010 at 3:52pm

Not yet, your going to have to wait.

elsuper_js - July 14, 2010 at 12:33am

thank you !!1

Godfather - July 13, 2010 at 1:22am

Is 5.11.07 still considered new bootrom? Sorry it's been a while..

felia - July 14, 2010 at 3:53am

bootrom shud be checked from your iphone serial number. yours is firmware

fishdog - July 11, 2010 at 7:35pm

Question: I used Spirit to jailbreak my iPhone 3GS. It worked great. Will upgrading to OS 4.0 cause problems? Will I need to "re-jailbreak" and start over? Thanks!

andos - July 9, 2010 at 5:31am

I have a 3GS I think is with new Bootrom Ser. Numer 8**48G483** Model: MC139MM Modem Firmware: 05.11.07 Can I Jailbrake in iOS4 and Unlock any SIM? Thank YOU.

Dejan - July 9, 2010 at 3:00pm

no, not yet

Kamran Rasul - July 9, 2010 at 4:01am

Hello, I have iPhone 3GS, serial 5K935..., ios 4.0 It seems that this is old bootrom. I tried every method but it never jail broken. Please suggest something. Thanks!

sentenza - July 7, 2010 at 3:33pm

Hi, I have a 3GS old bootROM with IOS 4.0, I don't know if it 's ever been jailbroken, I got it in that state. Is it required that the 3GS had already been jailbroken ??? I tried to follow this tutorial but it always fails. Thanks Best regards

More Comments