Unlock iPhone 3G - Yellowsn0w

This is the low down on the FREE iPhone Dev Team tools for use with the 2.2.1 firmware from Apple, read the whole post in full before attempting anything! Always and only use tools from the iPhone Dev Team.

1. GOLDEN RULE: If you have a 3G iPhone running 2.2 firmware and you want to keep your ability to use yellowns0w (or the option to use it in the future) do NOT use QuickPwn, and do not use the official ipsw or the iTunes update process without using PwnageTool.
2. Yellowsn0w will NOT work with the baseband version (02.30.03) that is present in the recent 2.2.1 update. If you want to use Yellownsn0w you will need to create and restore using a custom .ipsw that will allow you to update safely to 2.2.1 without applying the 02.30.03 baseband update. You’ll then have a 3G iPhone running 2.2.1 with an older baseband version that is still vulnerable to yellowsn0w, following these steps ensures that yellowsn0w will still operate.

3. Please read all parts of this post before downloading and using these tools.
4. Read items 1, 2 and 3 again and again.
5. At the bottom of this post are the bittorrent files for the latest versions of PwnageTool and QuickPwn.
6. These apps are suitable for the recent 2.2.1 release.
7. The Yellowsn0w version has been updated to 0.9.7. Yellowsn0w is available from Cydia or Installer - this version allows compatibility with pwned 2.2.1 system (not baseband). Again„ remember 0.9.7 yellowsn0w DOES NOT WORK WITH 2.2.1 (02.30.03) directly - you need to be running a ‘pwned’ version of 2.2.1 which didn’t upgrade the baseband during the restore/upgrade.
8. Users of OS X 10.5.6 will be unable to use DFU mode correctly, please see the note towards the end of this post to easily fix this issue.

Tutorial

Backup/Sync your iPhone with iTunes.

Download firmware 2.2.1 either via iTunes or from here iPhone 3G 2.2.1 firmware

- If you do download it from iTunes, make sure to choose Download Only, you need to create a custom 2.2.1 firmware that doesn’t have the baseband update that will disable yellowsn0w from unlocking your device.

(here is the prompt in iTunes, make sure to select Download Only when you plug you iPhone into iTunes)

Download the latest version of the PwnageTool_2.2.5 from the iPhone Dev Team

Mac PwnageTool

• http://iphone-dev.fgv6.net/PwnageTool_2.2.5.dmg
• http://iphone.schwarzmetall.cn/PwnageTool_2.2.5.dmg
• http://rabstalk.bplaced.net/mirrors/PwnageTool_2.2.5.dmg
• http://jmcoon.net/PwnageTool_2.2.5.dmg
• http://downloads2.ipod.backshot.eu/PwnageTool_2.2.5.dmg
• http://www.iphone-storage.de/PwnageTool_2.2.5.dmg
• http://miphone.ca/iphone-dev/PwnageTool_2.2.5.dmg

Use PWNAGE Tool 2.2.5 to create a custom 2.2.1 iPhone 3G firmware with the Baseband Update disabled

I have PWNAGE on Expert Mode, so I can see all the steps, you can use Basic if you prefer, in either case just follow the blue arrow and read the direction at the bottom of the screen - it tells you what’s going on.

Here you can customize your firmware bundle, select Cydia and Installer to install (or not) and choose if to use custom boot and restore images. Click the blue arrows to continue - by default PWNAGE installs both Cydia and Installer, replaces the boot and restore images, and will jailbreak and activate your device without updating teh baseband and disabling yellowsn0w from working.

Your custom 2.2.1 firmware is being assembled, sit back and relax, but not for too long. You’ll be prompted to enter your Mac’s admin password, enter it and continue. Then save the custom 2.2.1 firmware (.ipsw file) to your Desktop or somewhere you can find it easily.

If you have not PWNED or QuickPWNED your iPhone 3G already, you will need to put the device into DFU mode, which is a safe mode that Apple developed for the iPhone for them to diagnose and upload firmware onto the iPhone

Pwnage will prompt you to turn off your device, do this by pressing the top Power button on the iPhone until you see the red slide to unlock screen on your iPhone. Trun it off. Then get ready to hold power and home at the same time.

Keep holding Power and Home for the 10 seconds until you hear the tone and PWNAGE says to release the power button.

Keep holding the Home button until iTunes pops up and tells you it found an iPhone in resotre mode.

(dont worry if you mess this up a couple times, you can always try again) - If you are on Mac OS X 10.5.6 please see -  Fixing DFU mode on 10.5.6

iTunes will detect the iPhone 3G in recovery mode, click ok -

Then hold down the alt/option key on the Mac keyboard, click Restore in iTunes (make sure you are holding the option key, this will allow you to find the custom firmware and not install the original one that will disable Yellowsn0w and lock your iPhone)

Find the custom firmware you created with the PWNAGE Tool and restore the iPhone 3G with the CUSTOM 2.2.1 firmware you created with the PWNAGE Tool.

Once the restore is complete your iPhone will reboot and will be activated and jailbreaked.

(if not please re-run PWNAGE Tool and create the custom 2.2.1 firmware again and make sure to follow the directions carefully, replace the custom firmware and repeat from DFU mode)

Set up your wifi on your iPhone 3G

Update Cydia (cydia and some other apps may need updating)

Rebooted the iPhone 3G

Add http://apt9.yellowsn0w.com repo to cydia (it should already be listed). Open Cydia, go to Manage, Tap on Sources, if you don’t see http://apt9.yellowsn0w.com listed, tap on Edit, then Add, tap Done. Once you have added it or if it was listed already, tap on the apt9.yellowsn0w.com source and Install Yellowsn0w 0.9.7 (or latest version). Exit Cydia

Reboot, wait about 2 mins and you should be totally unlocked and able to use any Sim Card.

If you are having trouble getting signal, try resetting Network Settings on your iPhone in Settings -> General -> Reset -> Reset Network Settings. You can also try toggling Airplane Mode in Settings. If this doesn’t work, try reinstalling Yellowsn0w again from Cydia. Any other issues, please post a comment and let us know if we can help.

Any problems, please let me know in the comments or the forum and I will help you.

Fixing DFU mode on 10.5.6

As noted previously OS X 10.5.6 introduced a bug that affected the use of DFU mode. with some Macs. There have been previously published hacks and techniques to fix this, but here is another method that can be used to temporarily restore DFU functionality in order to use QuickPwn or PwnageTool.

1. You will need an account with ADC (Apple Developer Connection) this is free and takes a few minutes to sign up, you should read the terms and conditions carefully and you should only sign up if you are thinking of developing applications in the future - http://developer.apple.com/mac/
2. Download the disk image “IOUSBFamily-315.4-log.dmg”  for Mac OS X 10.5.5 Build 9F33” (yes, that is a “5” in 10.5.5 - this is a developer debug package of the USB kernel extension).
3. Unplug non-vital USB equipment, such as external DVD writers, USB scanners, USB mass storage devices, at the most leave a Keyboard and Mouse connected.
4. Install IOUSBFamily-315.4.1.pkg from within the disk image
5. Reboot your system!
6. Perform necessary DFU activity with QuickPwn or PwnageTool.
7. Download the disk image “IOUSBFamily-327.4.0-log.dmg” for Mac OS X 10.5.6 Build 9G55”
8. Intall IOUSBFamily-327.4.0.pkg from within the disk image
9. Reboot your system!
10. Reattach your USB peripherals.

 Retweet This Post

Bookmark It

Hide Sites