This tutorial is addressed to them DONATE iPhone 3GS new bootrom owners! To check which bootrom your phone has you can use iDetector by here.
Those with new bootrom iPod Touch 2G/3G CANNOT use this tutorial, iH8sn0w will make another one for these 2 devices later today!
This tutorial can be used by all owners of an iPhone 3GS with a new bootrom who have now installed firmware 3.1.2 on it, or have SHSH saved for firmware 3.1.2 and can restore to firmware 3.1.2 using the downgrade tutorial of here.
This tutorial is complicated and requires at least intermediate computer skills. Do not start it if you do not have such knowledge, because you will solve absolutely nothing. Do not use it if you do not have SHSH saved for firmware 3.1.2, because only from firmware 3.1.2 you can restore to jailbroken iOS 4.0.
This type of jailbreak is tethered, so you will have to run the iBooty program to start the phone after each reboot.
If you had a tethered jailbreak on firmware 3.1.2 made with blackra1n and you used Spirit over blackra1n, and your phone is now in Recovery Mode, then you CANNOT use this tutorial! You must restore to firmware 3.1.2 and jailbreak with redsn0w/blackra1n.
If you used the first tutorial to switch to jailbroken iOS 4.0 and now the phone goes into Sleep Mode automatically, then you have to go back to 3.1.2.
You have the original tutorial here.
I have NOT tested this tutorial because I do not have a phone with a new bootrom, so follow it at your own risk.
[youtube]http://www.youtube.com/watch?v=-znphEadY60[/youtube]
Step 1
Download these files to your computer:
Payload Pwner-r6
iBooty V1.5
iOS 3.1.2 and 4.0 from here
sn0wbreeze 1.7 [download id=”70″]
LibUSB
Step 2
If you don't install LibUSB correctly then your USB ports will stop working. I recommend that you install LibUSB only with the mouse and keyboard connected to the PC and restart after installation.
Install the LibUSB downloaded in step 1.
Users of Windows 7 32 bit must set the compatibility of the program with Windows XP, otherwise they will no longer be able to use the USBs (right click on libusb, propreties, compatibility, Windows XP and check Run as Admin).
Those with Windows 7 64 bit must follow the tutorial this to install LibUSB.
Step 3
Use the Payload Pwner downloaded in step 1 to make the payloads. Follow the program instructions to do the process.
Step 4
Make a custom firmware using sn0wbreeze 1.7 downloaded in step 1. If you do not customize the firmware with sn0wbreeze 1.7 then you will not be able to update to iOS 4.0 using this tutorial. You have a tutorial for that here, but exte IMPORTANT to use expert mode, select the general option and tick "Disable NOR flash" otherwise the process will not work. After checking this option, you will be able to customize the ipsw.
PwnageTool does not have this option so do not use a custom ipsw made with PwnageTool because it will not work.
Step 5
1. Unzip the contents of the iBooty archive in the folder where you saved the payloads from step 3. If you do not copy them to the exact same folder, then iBooty will not work.
2. Unzip the custom firmware made in step 3, with Winrar or 7-zip archiver.
3. Copy the file kernelcache in the folder where you have iBooty. Copy the file as well Device Tree folder "Firmware\all_flash\all_flash.n88ap.production\DeviceTree.n88ap" in the folder where you have iBooty.
4. Rename the following files from the folder where you have iBooty and implicitly these files:
- DeviceTree 4.0-Custom in "devtree.40"
- ketnelcache in "kernel.40"
- iBEC 4.0-Custom to "ibec.40"
In your folder there should be the following files:
– iboot.payload <– Made with Payload Pwner.
– devtree.40 <– Taken from the custom ipsw made with sn0wbreeze 1.7.
– ibec.40 <– Made Payload Pwner and renamed.
– irecovery.exe <– Comes with iBooty.
– readline5.dll <– Comes with iBooty.
– iBooty.exe <– Comes with iBooty.
– kernel.40 <– Taken from the custom ipsw made with sn0wbreeze 1.7.
– sn0w.img3 <– Comes with iBooty.
– wait.img3 <– Comes with iBooty.
Step 6
You must be on firmware 3.1.2 when you do this step otherwise it will not work.
Open iBooty and select "Prepare Device for Custom Firmware" then follow the steps, and if the process was successful you will see an image at the end.
Now you can open iTunes and restore to that custom firmware using the SHIFT + Restore method.
Step 7
To restart the phone, open iBooty and press Boot It.
