Jump to content
  • Announcements

    • Allan

      Forum Rules   04/13/2018

      Hello folks! As some things are being fixed, we'll keep you updated. Per hour the Forum Rules don't have a dedicated "Tab", so here is the place that we have our Rules back. New Users Lounge > [READ] - InsanelyMac Forum Rules - The InsanelyMac Staff Team. 
Andy Vandijck

AutoAPBDecrypt 1.2, the automatic Apple Protected Binary Decryptor

26 posts in this topic

Recommended Posts

This tool will automatically decrypt all Apple Protected Binaries on a system and put them in SysDecrypts/32-Bit or SysDecrypts/64-Bit on the Desktop.
This tool works for Lion and Mountain Lion (optimized versions for each).
Enjoy...
Source is included... ;)
EDIT: V1.1
- Added better universal binary decryption (stops crashes)
- Improved button thread (separate thread now)
- Lock for button after click (to not start 2 scans at once)
- Added second pass on 64bit folder in new Universal folder (use these first, then 64-bit, it´s a folder containing both 32+64 bit decrypts)

EDIT: V1.2

- Improved performance and updated for latest OS X

- Added flag for pre 10.6 decryption (checkbox)

EDIT2: Added Github repo.

https://github.com/andyvand/AutoAPBDecrypt

AutoAPBDecrypt.zip

AutoAPBDecrypt-1.2.zip

post-100023-0-96333300-1418829900_thumb.png

Share this post


Link to post
Share on other sites

crashed:

 

Process:		 AutoAPBDecrypt [78868]
Path:		 /Volumes/VOLUME/*/AutoAPBDecrypt.app/Contents/MacOS/AutoAPBDecrypt
Identifier:	 com.AnV.Software.AutoAPBDecrypt
Version:		 1.0 (1.0)
Code Type:	 X86-64 (Native)
Parent Process: launchd [128]
User ID:		 501
Date/Time:	 2013-01-26 23:34:54.124 +0100
OS Version:	 Mac OS X 10.8.2 (12C60)
Report Version: 10
Interval Since Last Report:		 59536 sec
Crashes Since Last Report:		 3
Per-App Interval Since Last Report: 258 sec
Per-App Crashes Since Last Report: 1
Anonymous UUID:					 60BBFB0D-9843-A169-CDE8-BDFEFC328E04
Crashed Thread: 0 Dispatch queue: com.apple.main-thread
Exception Type: EXC_BAD_ACCESS (SIGSEGV)
Exception Codes: KERN_INVALID_ADDRESS at 0x0000000000000010
VM Regions Near 0x10:
-->
__TEXT				 0000000109dff000-0000000109e02000 [ 12K] r-x/rwx SM=COW /Volumes/VOLUME/*/AutoAPBDecrypt.app/Contents/MacOS/AutoAPBDecrypt
Application Specific Information:
Performing @selector(runDecrypt:) from sender NSButton 0x7fd8d8c20f40
Thread 0 Crashed:: Dispatch queue: com.apple.main-thread
0 com.AnV.Software.AutoAPBDecrypt 0x0000000109e00207 -[AppDelegate DecryptFile32:output:] + 477
1 com.AnV.Software.AutoAPBDecrypt 0x0000000109e00bf3 -[AppDelegate RecursiveHandle:] + 698
2 com.AnV.Software.AutoAPBDecrypt 0x0000000109e00cc7 -[AppDelegate RecursiveHandle:] + 910
3 com.AnV.Software.AutoAPBDecrypt 0x0000000109e00cc7 -[AppDelegate RecursiveHandle:] + 910
4 com.AnV.Software.AutoAPBDecrypt 0x0000000109e00cc7 -[AppDelegate RecursiveHandle:] + 910
5 com.AnV.Software.AutoAPBDecrypt 0x0000000109e00cc7 -[AppDelegate RecursiveHandle:] + 910
6 com.AnV.Software.AutoAPBDecrypt 0x0000000109e00cc7 -[AppDelegate RecursiveHandle:] + 910
7 com.AnV.Software.AutoAPBDecrypt 0x0000000109e01004 -[AppDelegate runDecrypt:] + 179
8 com.apple.AppKit			 0x00007fff859aea59 -[NSApplication sendAction:to:from:] + 342
9 com.apple.AppKit			 0x00007fff859ae8b7 -[NSControl sendAction:to:] + 85
10 com.apple.AppKit			 0x00007fff859ae7eb -[NSCell _sendActionFrom:] + 138
11 com.apple.AppKit			 0x00007fff859accd3 -[NSCell trackMouse:inRect:ofView:untilMouseUp:] + 1855
12 com.apple.AppKit			 0x00007fff859ac521 -[NSButtonCell trackMouse:inRect:ofView:untilMouseUp:] + 504
13 com.apple.AppKit			 0x00007fff859abc9c -[NSControl mouseDown:] + 820
14 com.apple.AppKit			 0x00007fff859a360e -[NSWindow sendEvent:] + 6853
15 com.apple.AppKit			 0x00007fff8599f744 -[NSApplication sendEvent:] + 5761
16 com.apple.AppKit			 0x00007fff858b52fa -[NSApplication run] + 636
17 com.apple.AppKit			 0x00007fff85859cb6 NSApplicationMain + 869
18 libdyld.dylib				 0x00007fff86d8d7e1 start + 1
Thread 1:: Dispatch queue: com.apple.libdispatch-manager
0 libsystem_kernel.dylib		 0x00007fff8cef3d16 kevent + 10
1 libdispatch.dylib			 0x00007fff8a7e7dea _dispatch_mgr_invoke + 883
2 libdispatch.dylib			 0x00007fff8a7e79ee _dispatch_mgr_thread + 54
Thread 2:: com.apple.appkit-heartbeat
0 libsystem_kernel.dylib		 0x00007fff8cef3386 __semwait_signal + 10
1 libsystem_c.dylib			 0x00007fff8d3fc800 nanosleep + 163
2 libsystem_c.dylib			 0x00007fff8d3fc717 usleep + 54
3 com.apple.AppKit			 0x00007fff85aa3958 -[NSUIHeartBeat _heartBeatThread:] + 543
4 com.apple.Foundation		 0x00007fff8baa4612 __NSThread__main__ + 1345
5 libsystem_c.dylib			 0x00007fff8d372742 _pthread_start + 327
6 libsystem_c.dylib			 0x00007fff8d35f181 thread_start + 13
Thread 3:
0 libsystem_kernel.dylib		 0x00007fff8cef36d6 __workq_kernreturn + 10
1 libsystem_c.dylib			 0x00007fff8d374eec _pthread_workq_return + 25
2 libsystem_c.dylib			 0x00007fff8d374cb3 _pthread_wqthread + 412
3 libsystem_c.dylib			 0x00007fff8d35f171 start_wqthread + 13
Thread 0 crashed with X86 Thread State (64-bit):
rax: 0x0000000000000001 rbx: 0x00000000ffffffff rcx: 0x0000000000000001 rdx: 0x0000000109e02f94
rdi: 0x0000000001000007 rsi: 0x0000000109e02f94 rbp: 0x00007fff55dfff20 rsp: 0x00007fff55dffe80
r8: 0x0000000000000042 r9: 0x0000000000000042 r10: 0x0000000000000000 r11: 0x0000000000000246
r12: 0x00000000ffffffff r13: 0x0000000000000000 r14: 0x0000000000000007 r15: 0x0000000000000000
rip: 0x0000000109e00207 rfl: 0x0000000000010246 cr2: 0x0000000000000010
Logical CPU: 3

 

or do you need the whole output?

Share this post


Link to post
Share on other sites

crashed:

:

Process:         AutoAPBDecrypt [78868]
Path:         /Volumes/VOLUME/*/AutoAPBDecrypt.app/Contents/MacOS/AutoAPBDecrypt
Identifier:     com.AnV.Software.AutoAPBDecrypt
Version:         1.0 (1.0)
Code Type:     X86-64 (Native)
Parent Process: launchd [128]
User ID:         501
Date/Time:     2013-01-26 23:34:54.124 +0100
OS Version:     Mac OS X 10.8.2 (12C60)
Report Version: 10
Interval Since Last Report:         59536 sec
Crashes Since Last Report:         3
Per-App Interval Since Last Report: 258 sec
Per-App Crashes Since Last Report: 1
Anonymous UUID:                     60BBFB0D-9843-A169-CDE8-BDFEFC328E04
Crashed Thread: 0 Dispatch queue: com.apple.main-thread
Exception Type: EXC_BAD_ACCESS (SIGSEGV)
Exception Codes: KERN_INVALID_ADDRESS at 0x0000000000000010
VM Regions Near 0x10:
-->
__TEXT                 0000000109dff000-0000000109e02000 [ 12K] r-x/rwx SM=COW /Volumes/VOLUME/*/AutoAPBDecrypt.app/Contents/MacOS/AutoAPBDecrypt
Application Specific Information:
Performing @selector(runDecrypt:) from sender NSButton 0x7fd8d8c20f40
Thread 0 Crashed:: Dispatch queue: com.apple.main-thread
0 com.AnV.Software.AutoAPBDecrypt 0x0000000109e00207 -[AppDelegate DecryptFile32:output:] + 477
1 com.AnV.Software.AutoAPBDecrypt 0x0000000109e00bf3 -[AppDelegate RecursiveHandle:] + 698
2 com.AnV.Software.AutoAPBDecrypt 0x0000000109e00cc7 -[AppDelegate RecursiveHandle:] + 910
3 com.AnV.Software.AutoAPBDecrypt 0x0000000109e00cc7 -[AppDelegate RecursiveHandle:] + 910
4 com.AnV.Software.AutoAPBDecrypt 0x0000000109e00cc7 -[AppDelegate RecursiveHandle:] + 910
5 com.AnV.Software.AutoAPBDecrypt 0x0000000109e00cc7 -[AppDelegate RecursiveHandle:] + 910
6 com.AnV.Software.AutoAPBDecrypt 0x0000000109e00cc7 -[AppDelegate RecursiveHandle:] + 910
7 com.AnV.Software.AutoAPBDecrypt 0x0000000109e01004 -[AppDelegate runDecrypt:] + 179
8 com.apple.AppKit             0x00007fff859aea59 -[NSApplication sendAction:to:from:] + 342
9 com.apple.AppKit             0x00007fff859ae8b7 -[NSControl sendAction:to:] + 85
10 com.apple.AppKit             0x00007fff859ae7eb -[NSCell _sendActionFrom:] + 138
11 com.apple.AppKit             0x00007fff859accd3 -[NSCell trackMouse:inRect:ofView:untilMouseUp:] + 1855
12 com.apple.AppKit             0x00007fff859ac521 -[NSButtonCell trackMouse:inRect:ofView:untilMouseUp:] + 504
13 com.apple.AppKit             0x00007fff859abc9c -[NSControl mouseDown:] + 820
14 com.apple.AppKit             0x00007fff859a360e -[NSWindow sendEvent:] + 6853
15 com.apple.AppKit             0x00007fff8599f744 -[NSApplication sendEvent:] + 5761
16 com.apple.AppKit             0x00007fff858b52fa -[NSApplication run] + 636
17 com.apple.AppKit             0x00007fff85859cb6 NSApplicationMain + 869
18 libdyld.dylib                 0x00007fff86d8d7e1 start + 1
Thread 1:: Dispatch queue: com.apple.libdispatch-manager
0 libsystem_kernel.dylib         0x00007fff8cef3d16 kevent + 10
1 libdispatch.dylib             0x00007fff8a7e7dea _dispatch_mgr_invoke + 883
2 libdispatch.dylib             0x00007fff8a7e79ee _dispatch_mgr_thread + 54
Thread 2:: com.apple.appkit-heartbeat
0 libsystem_kernel.dylib         0x00007fff8cef3386 __semwait_signal + 10
1 libsystem_c.dylib             0x00007fff8d3fc800 nanosleep + 163
2 libsystem_c.dylib             0x00007fff8d3fc717 usleep + 54
3 com.apple.AppKit             0x00007fff85aa3958 -[NSUIHeartBeat _heartBeatThread:] + 543
4 com.apple.Foundation         0x00007fff8baa4612 __NSThread__main__ + 1345
5 libsystem_c.dylib             0x00007fff8d372742 _pthread_start + 327
6 libsystem_c.dylib             0x00007fff8d35f181 thread_start + 13
Thread 3:
0 libsystem_kernel.dylib         0x00007fff8cef36d6 __workq_kernreturn + 10
1 libsystem_c.dylib             0x00007fff8d374eec _pthread_workq_return + 25
2 libsystem_c.dylib             0x00007fff8d374cb3 _pthread_wqthread + 412
3 libsystem_c.dylib             0x00007fff8d35f171 start_wqthread + 13
Thread 0 crashed with X86 Thread State (64-bit):
rax: 0x0000000000000001 rbx: 0x00000000ffffffff rcx: 0x0000000000000001 rdx: 0x0000000109e02f94
rdi: 0x0000000001000007 rsi: 0x0000000109e02f94 rbp: 0x00007fff55dfff20 rsp: 0x00007fff55dffe80
r8: 0x0000000000000042 r9: 0x0000000000000042 r10: 0x0000000000000000 r11: 0x0000000000000246
r12: 0x00000000ffffffff r13: 0x0000000000000000 r14: 0x0000000000000007 r15: 0x0000000000000000
rip: 0x0000000109e00207 rfl: 0x0000000000010246 cr2: 0x0000000000000010
Logical CPU: 3

 

or do you need the whole output?

I'll fix it later today...

Share this post


Link to post
Share on other sites

Hi Andy,

 

I used your tool "AutoAPBDecrypt.app" on Mountain Lion, I let my OS X partition seek it. It works without any problems, the folder "SysDecrypts" with subfolders 32-bit / 64-bit created,

 

on 32-bit I find the following data:

loginwindow

 

 

on 64-bit I find the following data:

backupd

dock

finder

fontd

loginwindow

mds

 

Andy, how should I do now?

Share this post


Link to post
Share on other sites
backupd

dock

finder

fontd

loginwindow

mds

 

 

this is intresting

 

by the looks of what it decrypted we could asume this adressed all the binaries wich are playing up rite now atleast on ATI Cards

 

so spakk u could locate the original binaries back em up and replace ehm with the decrypted ones created in the folder on your desktop and reboot & press your thumbs as far as i understand this

Share this post


Link to post
Share on other sites

Hey!

 

I´m not able to run your utility on 10.7.4 and 10.8.0 on both systems the app crashes a few seconds after i click run!

Furthermore i´m unable to kill the frozen app, Finder doesnt list it after killing, but its still on the desktop!

 

Ciao

 

My specs:

AMD FX 8120

ASUS M5A97

NVIDIA GTX660

8GB DDR3

Share this post


Link to post
Share on other sites

Hi Andy,

 

I used your tool "AutoAPBDecrypt.app" on Mountain Lion, I let my OS X partition seek it. It works without any problems, the folder "SysDecrypts" with subfolders 32-bit / 64-bit created,

 

on 32-bit I find the following data:

loginwindow

 

 

on 64-bit I find the following data:

backupd

dock

finder

fontd

loginwindow

mds

 

Andy, how should I do now?

Now you can replace the original binaries with the decrypted ones.

Make sure to repair permissions with disk utility afterwards.

After reboot it will use the pre-decrypted ones

 

Hey!

 

I´m not able to run your utility on 10.7.4 and 10.8.0 on both systems the app crashes a few seconds after i click run!

Furthermore i´m unable to kill the frozen app, Finder doesnt list it after killing, but its still on the desktop!

 

Ciao

 

My specs:

AMD FX 8120

ASUS M5A97

NVIDIA GTX660

8GB DDR3

I know, there are still some issues on some systems. I will deal with these soon...

Share this post


Link to post
Share on other sites

so, i tried akimoa's idea. with the output from spakk, i searched the binaries on my system and copied them to a folder on the desktop. then i run aad. strange, for me the fontd doesn't show as encrypted. tried that on ml 10.8.2. spakk, what osx is on your system? if you have 10.8.2 too, then please upload the decrypted fontd.

 

so, after that i copied the decrypted binaries and replaced the original one (for the loginwindow i took the one from the 64bits), fixed permissions and rebooted.

 

everything works so far except for the glitches. ;)

 

decrypting was succesfull, scanning the binaries again does nothing, except for loginwindow in 32bit.

Share this post


Link to post
Share on other sites

this is intresting

 

by the looks of what it decrypted we could asume this adressed all the binaries wich are playing up rite now atleast on ATI Cards

 

so spakk u could locate the original binaries back em up and replace ehm with the decrypted ones created in the folder on your desktop and reboot & press your thumbs as far as i understand this

 

ok, thx

 

Now you can replace the original binaries with the decrypted ones.

Make sure to repair permissions with disk utility afterwards.

After reboot it will use the pre-decrypted ones

 

 

I know, there are still some issues on some systems. I will deal with these soon...

ok,i will try that at afternoon, thx Andy

 

so, i tried akimoa's idea. with the output from spakk, i searched the binaries on my system and copied them to a folder on the desktop. then i run aad. strange, for me the fontd doesn't show as encrypted. tried that on ml 10.8.2. spakk, what osx is on your system? if you have 10.8.2 too, then please upload the decrypted fontd.

 

so, after that i copied the decrypted binaries and replaced the original one (for the loginwindow i took the one from the 64bits), fixed permissions and rebooted.

 

everything works so far except for the glitches. ;)

 

decrypting was succesfull, scanning the binaries again does nothing, except for loginwindow in 32bit.

 

i have ML 10,8,2, I have to put manually the app under application and started from there

Share this post


Link to post
Share on other sites

@spakk

 

thank you dude. let's see what happens now ;)

 

How does this look from, it worked?

 

I can not test at the momemt, I'm drawing with my operating system on Windows,

Share this post


Link to post
Share on other sites

so, i copied all the binaries from spakk to the right place. fixed permission, rebooted.

 

everything works so far except the glitches. ;)

 

but i think, but maybe this is just subjective, the glitches are a bit better as before. still weird though.

Share this post


Link to post
Share on other sites

so, i copied all the binaries from spakk to the right place. fixed permission, rebooted.

 

everything works so far except the glitches. ;)

 

but i think, but maybe this is just subjective, the glitches are a bit better as before. still weird though.

 

can you please write down where you've stored the files. the full path, please specify :king:

 

I find under windows so many directories on my OSX partition and am unsure which are the right ones, thx

 

 

Hi Andy, the next project which could also be very intersting, this is http://www.insanelym...ilable-kind-of/

 

I know that this has nothing to do with amd project but it's a Cheap alternative to the PC and Apple systems. :wink2:

details:

Raspberry Pi Model B, 512 MB RAM

General:

CPU 700 Mhz arm can be clocked up to 800-Mhz

Composite RCA; HDMi

3.5 mm jack, SD slot

100Mbit LAN

Currently allows Easy Linux and FreeBSD install it and is ideal as a Media Center, the board is huge and also to buy fairly priced.

Price: about 15 to 60 euros depending on the provider

more information on Raspberry Pi http://www.raspberrypi.org/

Edited by spakk

Share this post


Link to post
Share on other sites

I've found it and adjusted !

 

here the directories where I have placed the files:

 

\System\Library\CoreServices\backupd

 

\System\Library\CoreServices\Dock.app\Contents\MacOS\Dock

 

\System\Library\CoreServices\Finder.app\Contents\MacOS\Finder

 

\System\Library\CoreServices\loginwindow.app\Contents\MacOS\loginwindow

 

\System\Library\Frameworks\CoreServices.framework\Versions\A\Frameworks\Metadata.framework\Versions\A\Support\mds

 

\System\Library\Frameworks\ApplicationServices.framework\Versions\A\Frameworks\ATS.framework\Versions\A\Support\fontd

Share this post


Link to post
Share on other sites

I think I fixed the issue.

I'm revising aad to V1.1

New:

- better universal binary checks

- multithread for scanning

- in progress lock for button

I'm testing it by letting it scan my System folder.

Post soon...

Share this post


Link to post
Share on other sites

1. What struck me at first boot

after I modified all the files and have repaired access rights than started osx, first the finder freezes and then the mouse. strong>ression.gif

 

2. second start up, the same problem!! finder freezes

Edited by spakk

Share this post


Link to post
Share on other sites

1. What struck me at first boot

after I modified all the files and have repaired access rights than started osx, first the finder freezes and then the mouse. strong>ression.gif

 

2. second start up, the same problem!! finder freezes

 

Mines working fine ~3 hours after boot.

Share this post


Link to post
Share on other sites

Mines working fine ~3 hours after boot.

 

I will check tomorrow if I did something wrong. thanks for the information.

Share this post


Link to post
Share on other sites

New version that doesn´t crash anymore.

Please test...

Share this post


Link to post
Share on other sites

GOOD JOB Andy

 

the AutoAPBDecrypt 1.1 tool works much better than the first Version.

Better would be a drop-down menu query if desired 32-bit or 64-bit files and than the program replaces automatically the files

SysDecrypts.tiff

Share this post


Link to post
Share on other sites

I can confirm on my 10.7.4/10.8.0 it only works when I use one System to scan the other!

Using the tool to scan the system i am running doesn't crash but finds nothing!

 

I´ll replace the decrypted binaries later and tell you if all went fine!

 

Edit: 10.8.0 works pretty fine for some hours now! Great work!

Share this post


Link to post
Share on other sites

 

here the complete folder with all the binaries found.

as has already been written, were found in my system overall seven binaries, you need move manually the missing Biniaries into the correct files. but I'm not conclusive whether this will help you further.

 

would anyone want for more binaries, then load up here! please

 

SysDecrypts.rar

Edited by spakk

Share this post


Link to post
Share on other sites

Hi Andy...

 

The new versions of AutoAPB is work for my 10.7.4 and 10.8.2, works well with all of your kernel.

test with bronzovka latest kernel 10.7.4 (32 & 64) .... cs_invalid .. (loginwindow) .. bla..bla..bla

10.8.2 still in graphical issues ..

 

Great Jobs Andy....

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now


  • Recently Browsing   0 members

    No registered users viewing this page.



×