Can Defox IV be unpacked?
 

I come to the conclusion thet Defox IV is the best protection available to te date of VFP written programs.
My question is:
1. The apps protected with Defox IV can be unpacked?
2. What is the method?

vh 2011 have method new unpack any version defox

And where we can find the VH2011 for download and trial?

Interesting. In 2009 VH state that it can unprotect defoxIII, but actually it wasn't true. Can you prove that VH2011 can unprotect defoxIV? Here in attachment there is small application protected with defoxIV. Can you unprotect it?

As you may already known, Leonid is the author of DefoxIV. :cool:
And he is good friend with the Refox author. When Refox find application protected with defox ask you to "call" the author who is friend with Leonid.

"if this is your own application for which you are the lawful copyright holder, you can ask the author of ReFox for help to get the application fully decompiled"

Welcome to our discuttion Mr. Leonid.
As we know you are the author of the Defox IV which, in my oppinion, is the best VFP protector to the date.
Let's put your software to the trial.
As is apparent from your words to praise you can not decrypt with the VH2011.
What I find suspicious and I must honestly say that i suspect you of unfair competition with Mr. Jan Brebera, author of Refox , is that when you load a protected (Defox IV) software application in Refox it give us a message to get in touch with the author to tell us how to proceed. So....something is rotten. It does not seem fair. I think somehow you two are trying to cheat making a cartel.
We relied on the fact that you appear in the discussion and give us more explanations.
In other words, for us, start the contest ....

Yes, this is true.


No, this isn't true. I never met him and never mailed with him. Only once we participate in common discussion in the forum. Here is the link

hxxp://www.foxite.com/archives/defox-vs-refox-0000246133.htm

Refox XII itself can show defox protected application file structure and unprotect two fxp files that are added by defox and present in all defox protected applications. Author states that he itself can unprotect also other files (all this is about DefoxIII, DefoxIV was released later), but I very doubt that this is true. In the thread from the link above I posted simple application protected with DefoxIII and asked to unprotect it. Nobody post the answer. I believe Refox author include this possibility in Refox XII in order to compromise its concurent Defox and so raise the sells of Refox XII. But I doubt he succeed. Really I don't see any reason to buy Refox XII (and even to use it).

I don't have VH2011, so I didn't try. And it is interesting for me to know whether it is true or not, so, I post here protected sample. If I will not get it unprotected I will consider that it isn't true.

If you read all the thread in the link above, you'll check that I suggest not to use Refox XII for protection purposees because it is very weak. Doubt I'll do it if I were a member of cartel.

@ Leonid
Probably you're right and you're not good friends with Jan Brebera. I've heard so. It means that I am wrong. My mistake. Anyway, your DeFox application is good one in my opinion.

Thank you Mr. Leonid for your answers. If your protection is the best availble and a "strong" one remains to be seen.

main.fxp
q3216549.fxp
...and working

Regarding defox III....

Sorry, this code
isn't from DefoxIII. It even isn't from DefoxII. It's from the very first versoin of Defox released in 2006. And its protection of course was very week and easy to unprotect.

The Defox IV code sample will be next.

I hope it will be test.scx from my sample. All other code is out of interest because have lower protection level. BTW, if you have VH2011 why do you post such a statements instead of simply post code? Or VH2011 needs so much time to unprotect smth?

The VH 2011 is linked to the MAc adress of my network card. To the moment i write these words i not installed yet, because the lack of time, the VH2011 software. In the sample directories of the VH2011 are test samples of your Defox III and Defox IV programs encrypted and decrypted with the VH2011. In the apropriate time i will get a try. In the mean time is the Easter and i wish you a happy Easter time. Yours, GIV

with love for leonid test unpack

http://www.megaupload.com/?d=9GGWP6MJ

IF .NOT. HEXC(M.PWD)=="8A 2C E4 70 46 51 57 A7 F3 BD 97 73 57 ED BE 1E"
WAIT WINDOW "Wrong password"
ENDIF
CLOSE DATABASES ALL
SET TALK OFF
SET SAFETY OFF
IF .NOT. FILE("tmp.dbf")
CREATE DATABASE tmp
CREATE TABLE tmp (F1 I)
ELSE
USE EXCLUSIVE tmp
ZAP
INSERT INTO tmp VALUES (100)
INDEX ON RECNO() TAG TMP DESCENDING
ENDIF
RAND(-1)

1. Case closed.
2. Dear Goku you ruinned the poor Leonid the Easter time.
3. Regarding the decrypting capabilities of VH2011 for the Defox IV this is Mr. Chen response to the question i put to him:

So Defox IV is not anymore a threat to us.
We hope it comes a better protection and i did not expect to fall so soon the protection of Defox IV.

Ok. I must confirm that this is the code from Load method of test.scx form. But still can't see the whole unprotected form. The link you provided above is unavailable for me. Must state that I consider that application is fully cracked only in the case you provide fully functional unprotected application with the same functionality (as I provided for VFP Compiler protected application http://www.foxite.com/archives/who-can-hack-this-one-0000260749.htm). In this case it must run with the password that you know, better of all with empty password or any password. You will be sufficiently close to it if you can get the whole unprotected form test.scx. While I see only the code above I consider you are still very far from cracking application.

Other link here. Or see attached one.

I get to the link and get unprotected application. Congratulations to Chen. But for some reasons it runs with errors. You may check it. The password is "veryverysecurepwd".

Leonid is arrogant and accept that your protection is not good in assambler to reconstruct the app remembers nothing is impossible

Ay other people who can also do some name and send them a greetings
Aming
DM
RH
Core
Huan loug

The truth you speak.
 

I sayd before and say again. Do not speak about your things saying the are better making other ones not good. Leonid says before that Refox XII level III protection is verry weak. This is not polite.... I stand before Goku.

I must confirm that Defox III and DefoxIV can be unpacked sucessfuly. I tryed the full version of VH2011 on two of those targets. Many of forum colegues know who are the targets. The recovery process is slow and a technical one but the sources are recovered 99,99%. The reconstruction of the original aplication is not a easy one and the Defox is the first protection that makes the restauration process a little bit dificult. For a skilled reverser is a relative simple job. I must congratulate Mr. Leonid for his hard work.

The new Defox V
 

It's one of the most valuable protectors on the scene.
In my oppinion it's the best.
But.....
It can also be unpacked easely by skilled unpackers.
Great work Leonid Lepin.