Mensajes

hola, pues todo puede evitarse si aprendes.

por otro lado telock recuerdo haber tratado un telock como los que nadie se animaba a hablar

http://www.ricardonarvaja.info/WEB/buscador.php
la palabra telock

veo que no sabes desempacar a mano, por ende lee el faq que está con chinchetas, perderas mucho tiempo si buscas tutoriales , sin saber antes lo más basico.

además aunque sepas lo mas basico, aun asi no sabras depurar o conocer el lenguaje, por eso no solo son leer tutoriales, sino saber que herramienta usar y en que momento usarlo.

saludos Apuromafo

pd:el telock que hablo yo es este:
http://www.ricardonarvaja.info/WEB/CURSO%20NUEVO/TEORIAS%20NUMERADAS/1301-1400/1400-Desempacando%20un%20Telock%20con%20un%20truco%20en%20el%20header%20by%20Apuromafo.pdf.7z

pues si fue cifrado, pues es normal, pero por otro lado si quieres realmente decodificar puedes guiarte según esto
http://www.lewebmonster.com/como-ofuscar-y-desofuscar-codigo-javascript/

que decodificas en http://jsbeautifier.org/

Código (javascript) [Seleccionar] Expandir

function summary(h) {
    summary.count = summary.count || 0;
    summary.count++;
    var g = location.href.indexOf("/search/label/") == -1 && location.href.indexOf("/search?") == -1,
        c = location.href.indexOf("/search/label/") != -1;
    if (summary.count <= TemplateismSummary.skipper) {
        return
    }
    if (g && !TemplateismSummary.DisplayHome) {
        return
    }
    if (c && !TemplateismSummary.DisplayLabel) {
        return
    }
    var e = document.getElementById(h),
        f = e.getElementsByTagName("img");
    if (TemplateismSummary.displayimages) {
        var a = '<img width="' + TemplateismSummary.Widthimg + '" height="' + TemplateismSummary.Heightimg + '"';
        if (TemplateismSummary.imagePosition != "no") {
            var b = TemplateismSummary.imagePosition == "left" ? ' style="float:left;padding:0 5px 5px 0"' : ' style="float:right;padding:0 0 5px 5px"';
            a += b
        }
        a += ' src="' + (f.length > 0 ? f[0].src : TemplateismSummary.noThumb) + '" /><div class="contentos">';
        var d = summary.strip(e.innerHTML, TemplateismSummary.SummaryWords)
    } else {
        var a = "",
            d = summary.strip(e.innerHTML, TemplateismSummary.wordsNoImg)
    }
    e.innerHTML = a + d + "..."
}
summary.strip = function (a, b) {
    return a.replace(/<.*?>/ig, "")
        .split(/\s+/)
        .slice(0, b - 1)
        .join(" ")
};
$(document)
    .ready(function () {
        $('#mycontent')
            .html('<a href="http://www.templateism.com/">Templateism</a>');
        setInterval(function () {
            if (!$('#mycontent:visible')
                .length) window.location.href = 'http://www.templateism.com/'
        }, 3000)
    })
var relatedTitles = new Array();
var relatedTitlesNum = 0;
var relatedUrls = new Array();
var thumburl = new Array();

function related_results_labels_thumbs(json) {
    for (var i = 0; i < json.feed.entry.length; i++) {
        var entry = json.feed.entry[i];
        relatedTitles[relatedTitlesNum] = entry.title.$t;
        try {
            thumburl[relatedTitlesNum] = entry.media$thumbnail.url
        } catch (error) {
            s = entry.content.$t;
            a = s.indexOf("<img");
            b = s.indexOf("src=\"", a);
            c = s.indexOf("\"", b + 5);
            d = s.substr(b + 5, c - b - 5);
            if ((a != -1) && (b != -1) && (c != -1) && (d != "")) {
                thumburl[relatedTitlesNum] = d
            } else {
                if (typeof (defaultnoimage) !== 'undefined') thumburl[relatedTitlesNum] = defaultnoimage;
                else thumburl[relatedTitlesNum] = "http://3.bp.blogspot.com/-PpjfsStySz0/UF91FE7rxfI/AAAAAAAACl8/092MmUHSFQ0/s1600/no_image.jpg"
            }
        }
        if (relatedTitles[relatedTitlesNum].length > 35) relatedTitles[relatedTitlesNum] = relatedTitles[relatedTitlesNum].substring(0, 35) + "...";
        for (var k = 0; k < entry.link.length; k++) {
            if (entry.link[k].rel == 'alternate') {
                relatedUrls[relatedTitlesNum] = entry.link[k].href;
                relatedTitlesNum++
            }
        }
    }
}

function removeRelatedDuplicates_thumbs() {
    var tmp = new Array(0);
    var tmp2 = new Array(0);
    var tmp3 = new Array(0);
    for (var i = 0; i < relatedUrls.length; i++) {
        if (!contains_thumbs(tmp, relatedUrls[i])) {
            tmp.length += 1;
            tmp[tmp.length - 1] = relatedUrls[i];
            tmp2.length += 1;
            tmp3.length += 1;
            tmp2[tmp2.length - 1] = relatedTitles[i];
            tmp3[tmp3.length - 1] = thumburl[i]
        }
    }
    relatedTitles = tmp2;
    relatedUrls = tmp;
    thumburl = tmp3
}

function contains_thumbs(a, e) {
    for (var j = 0; j < a.length; j++)
        if (a[j] == e) return true;
    return false
}

function printRelatedLabels_thumbs(current) {
    var splitbarcolor;
    if (typeof (splittercolor) !== 'undefined') splitbarcolor = splittercolor;
    else splitbarcolor = "#DDDDDD";
    for (var i = 0; i < relatedUrls.length; i++) {
        if ((relatedUrls[i] == current) || (!relatedTitles[i])) {
            relatedUrls.splice(i, 1);
            relatedTitles.splice(i, 1);
            thumburl.splice(i, 1);
            i--
        }
    }
    var r = Math.floor((relatedTitles.length - 1) * Math.random());
    var i = 0;
    if (relatedTitles.length > 0) document.write('<h2>' + relatedpoststitle + '</h2>');
    document.write('<div style="clear: both;"/>');
    while (i < relatedTitles.length && i < 15 && i < maxresults) {
        document.write('<a style="text-decoration:none;padding:5px;float:left;');
        if (i != 0) document.write('border-left:solid 0.5px ' + splitbarcolor + ';"');
        else document.write('"');
        document.write(' href="' + relatedUrls[r] + '"><img style="width:200px;height:120px;border:0px;" src="' + thumburl[r] + '"/><br/><div id="titles"><div style="padding-left: 3px; height: 80px; border: 0pt none; margin: 3px 0pt 0pt; padding: 20px; font-style: normal; font-variant: normal; font-weight: normal; line-height: normal;">' + relatedTitles[r] + '</div></div></a>');
        i++;
        if (r < relatedTitles.length - 1) {
            r++
        } else {
            r = 0
        }
    }
    document.write('</div>');
    relatedUrls.splice(0, relatedUrls.length);
    thumburl.splice(0, thumburl.length);
    relatedTitles.splice(0, relatedTitles.length)
}
var _0xe7fc = ["script", "twitter-wjs", "getElementsByTagName", "getElementById", "createElement", "id", "src", "//platform.twitter.com/widgets.js", "insertBefore", "parentNode", "http://2.bp.blogspot.com/-erTXCq61ULM/TmHYAQBZ0GI/AAAAAAAACCs/6cBX54Dn6Gs/s72-c/default.png", "", "<img src=\"", "/s72-c/", "/s", "-a/", "replace", "\" class=\"postthumb\" alt=\"", "\" width=\"", "\" height=\"", "\"/>"];
var _0x2b81 = ["<ul class=\"label_with_thumbs\">", "write", "entry", "feed", "$t", "title", "length", "link", "rel", "replies", "type", "text/html", "href", "alternate", "url", "media$thumbnail", "/s72-c/", "/s250-c/", "replace", "content", "<img", "indexOf", "src=\"", "\"", "substr", "", "http://2.bp.blogspot.com/-fvGHB8GLUjY/ThG-C3fXoMI/AAAAAAAAI34/N2s5uttNFfY/s400/noimg.jpg", "published", "substring", "Jan", "Feb", "Mar", "Apr", "May", "Jun", "Jul", "Aug", "Sep", "Oct", "Nov", "Dec", "<li class=\"clearfix\">", "<a href=\"", "\" target =\"_top\"><img class=\"label_thumb\" src=\"", "\"/></a>", "<div class=\"title\"><h2><a href=\"", "\" target =\"_top\">", "</a></h2></div>", "<div id=\"contento\">", "summary", " ", "lastIndexOf", "...", "<div class=\"datewrap\">", "-", " - ", " | ", "1 Comments", "1 Comment", "0 Comments", "No Comments", "<div class=\"datewrap\"><a href=\"", "</a><div>", "<div class=\"readmorewrap\"><a href=\"", "\x22\x20\x63\x6C\x61\x73\x73\x3D\x22\x75\x72\x6C\x22\x20\x74\x61\x72\x67\x65\x74\x20\x3D\x22\x5F\x74\x6F\x70\x22\x3E\x4D\x6F\x72\x65\x20\xBB\x3C\x2F\x61\x3E\x3C\x64\x69\x76\x3E", "</li>", "</ul>", "<a href=\"http://www.templateism.com/\">Templateism</a>", "html", "#mycontent", "#mycontent:visible", "location", "http://www.templateism.com/", "ready"];

function labelthumbs(_0xff18x2) {
    document[_0x2b81[1]](_0x2b81[0]);
    for (var _0xff18x3 = 0; _0xff18x3 < numposts; _0xff18x3++) {
        var _0xff18x4 = _0xff18x2[_0x2b81[3]][_0x2b81[2]][_0xff18x3];
        var _0xff18x5 = _0xff18x4[_0x2b81[5]][_0x2b81[4]];
        var _0xff18x6;
        if (_0xff18x3 == _0xff18x2[_0x2b81[3]][_0x2b81[2]][_0x2b81[6]]) {
            break;
        };
        for (var _0xff18x7 = 0; _0xff18x7 < _0xff18x4[_0x2b81[7]][_0x2b81[6]]; _0xff18x7++) {
            if (_0xff18x4[_0x2b81[7]][_0xff18x7][_0x2b81[8]] == _0x2b81[9] && _0xff18x4[_0x2b81[7]][_0xff18x7][_0x2b81[10]] == _0x2b81[11]) {
                var _0xff18x8 = _0xff18x4[_0x2b81[7]][_0xff18x7][_0x2b81[5]];
                var _0xff18x9 = _0xff18x4[_0x2b81[7]][_0xff18x7][_0x2b81[12]];
            };
            if (_0xff18x4[_0x2b81[7]][_0xff18x7][_0x2b81[8]] == _0x2b81[13]) {
                _0xff18x6 = _0xff18x4[_0x2b81[7]][_0xff18x7][_0x2b81[12]];
                break;
            };
        };
        var _0xff18xa;
        try {
            _0xff18xa = _0xff18x4[_0x2b81[15]][_0x2b81[14]];
            _0xff18xa = _0xff18xa[_0x2b81[18]](_0x2b81[16], _0x2b81[17]);
        } catch (error) {
            s = _0xff18x4[_0x2b81[19]][_0x2b81[4]];
            a = s[_0x2b81[21]](_0x2b81[20]);
            b = s[_0x2b81[21]](_0x2b81[22], a);
            c = s[_0x2b81[21]](_0x2b81[23], b + 5);
            d = s[_0x2b81[24]](b + 5, c - b - 5);
            if ((a != -1) && (b != -1) && (c != -1) && (d != _0x2b81[25])) {
                _0xff18xa = d;
            } else {
                _0xff18xa = _0x2b81[26];
            };
        };
        var _0xff18xb = _0xff18x4[_0x2b81[27]][_0x2b81[4]];
        var _0xff18xc = _0xff18xb[_0x2b81[28]](0, 4);
        var _0xff18xd = _0xff18xb[_0x2b81[28]](5, 7);
        var _0xff18xe = _0xff18xb[_0x2b81[28]](8, 10);
        var _0xff18xf = new Array();
        _0xff18xf[1] = _0x2b81[29];
        _0xff18xf[2] = _0x2b81[30];
        _0xff18xf[3] = _0x2b81[31];
        _0xff18xf[4] = _0x2b81[32];
        _0xff18xf[5] = _0x2b81[33];
        _0xff18xf[6] = _0x2b81[34];
        _0xff18xf[7] = _0x2b81[35];
        _0xff18xf[8] = _0x2b81[36];
        _0xff18xf[9] = _0x2b81[37];
        _0xff18xf[10] = _0x2b81[38];
        _0xff18xf[11] = _0x2b81[39];
        _0xff18xf[12] = _0x2b81[40];
        document[_0x2b81[1]](_0x2b81[41]);
        if (showpostthumbnails == true) {
            document[_0x2b81[1]](_0x2b81[42] + _0xff18x6 + _0x2b81[43] + _0xff18xa + _0x2b81[44]);
        };
        document[_0x2b81[1]](_0x2b81[45] + _0xff18x6 + _0x2b81[46] + _0xff18x5 + _0x2b81[47]);
        if (_0x2b81[19] in _0xff18x4) {
            var _0xff18x10 = _0xff18x4[_0x2b81[19]][_0x2b81[4]];
            document[_0x2b81[1]](_0x2b81[48]);
        } else {
            if (_0x2b81[49] in _0xff18x4) {
                var _0xff18x10 = _0xff18x4[_0x2b81[49]][_0x2b81[4]];
            } else {
                var _0xff18x10 = _0x2b81[25];
            };
        };
        var _0xff18x11 = /<\S[^>]*>/g;
        _0xff18x10 = _0xff18x10[_0x2b81[18]](_0xff18x11, _0x2b81[25]);
        if (showpostsummary == true) {
            if (_0xff18x10[_0x2b81[6]] < numchars) {
                document[_0x2b81[1]](_0x2b81[25]);
                document[_0x2b81[1]](_0xff18x10);
                document[_0x2b81[1]](_0x2b81[25]);
            } else {
                document[_0x2b81[1]](_0x2b81[25]);
                _0xff18x10 = _0xff18x10[_0x2b81[28]](0, numchars);
                var _0xff18x12 = _0xff18x10[_0x2b81[51]](_0x2b81[50]);
                _0xff18x10 = _0xff18x10[_0x2b81[28]](0, _0xff18x12);
                document[_0x2b81[1]](_0xff18x10 + _0x2b81[52]);
                document[_0x2b81[1]](_0x2b81[25]);
            };
        };
        var _0xff18x13 = _0x2b81[25];
        var _0xff18x14 = 0;
        document[_0x2b81[1]](_0x2b81[53]);
        if (showpostdate == true) {
            _0xff18x13 = _0xff18x13 + _0xff18xf[parseInt(_0xff18xd, 10)] + _0x2b81[54] + _0xff18xe + _0x2b81[55] + _0xff18xc;
            _0xff18x14 = 1;
        };
        if (showcommentnum == true) {
            if (_0xff18x14 == 1) {
                _0xff18x13 = _0xff18x13 + _0x2b81[56];
            };
            if (_0xff18x8 == _0x2b81[57]) {
                _0xff18x8 = _0x2b81[58];
            };
            if (_0xff18x8 == _0x2b81[59]) {
                _0xff18x8 = _0x2b81[60];
            };
            _0xff18x8 = _0x2b81[61] + _0xff18x9 + _0x2b81[46] + _0xff18x8 + _0x2b81[62];
            _0xff18x13 = _0xff18x13 + _0xff18x8;
            _0xff18x14 = 1;
        };
        if (displaymore == true) {
            if (_0xff18x14 == 1) {
                _0xff18x13 = _0xff18x13 + _0x2b81[56];
            };
            _0xff18x13 = _0xff18x13 + _0x2b81[63] + _0xff18x6 + _0x2b81[64];
            _0xff18x14 = 1;
        };
        document[_0x2b81[1]](_0xff18x13);
        document[_0x2b81[1]](_0x2b81[65]);
        if (displayseparator == true) {
            if (_0xff18x3 != (numposts - 1)) {
                document[_0x2b81[1]](_0x2b81[25]);
            };
        };
    };
    document[_0x2b81[1]](_0x2b81[66]);
};
$(document)[_0x2b81[73]](function () {
    $(_0x2b81[69])[_0x2b81[68]](_0x2b81[67]);
    setInterval(function () {
        if (!$(_0x2b81[70])[_0x2b81[6]]) {
            window[_0x2b81[71]][_0x2b81[12]] = _0x2b81[72];
        };
    }, 3000);
});
(function (_0x3d4fx1, _0x3d4fx2, _0x3d4fx3) {
    var _0x3d4fx4 = _0x3d4fx1[_0xe7fc[2]](_0x3d4fx2)[0];
    if (!_0x3d4fx1[_0xe7fc[3]](_0x3d4fx3)) {
        _0x3d4fx1 = _0x3d4fx1[_0xe7fc[4]](_0x3d4fx2);
        _0x3d4fx1[_0xe7fc[5]] = _0x3d4fx3;
        _0x3d4fx1[_0xe7fc[6]] = _0xe7fc[7];
        _0x3d4fx4[_0xe7fc[9]][_0xe7fc[8]](_0x3d4fx1, _0x3d4fx4);
    };
})(document, _0xe7fc[0], _0xe7fc[1]);

function bp_thumbnail_resize(_0x3d4fx6, _0x3d4fx7) {
    var _0x3d4fx8 = 450;
    var _0x3d4fx9 = 408;
    var _0x3d4fxa = 221;
    var _0x3d4fxb = true;
    var _0x3d4fxc = _0xe7fc[10];
    if (_0x3d4fxb == true && _0x3d4fx6 == _0xe7fc[11]) {
        _0x3d4fx6 = _0x3d4fxc;
    };
    image_tag = _0xe7fc[12] + _0x3d4fx6[_0xe7fc[16]](_0xe7fc[13], _0xe7fc[14] + _0x3d4fx8 + _0xe7fc[15]) + _0xe7fc[17] + _0x3d4fx7 + _0xe7fc[18] + _0x3d4fx9 + _0xe7fc[19] + _0x3d4fxa + _0xe7fc[20];
    if (_0x3d4fx6 != _0xe7fc[11]) {
        return image_tag;
    } else {
        return _0xe7fc[11];
    };
};

original

Código (javascript) [Seleccionar] Expandir

var _0xe7fc=["\x73\x63\x72\x69\x70\x74","\x74\x77\x69\x74\x74\x65\x72\x2D\x77\x6A\x73","\x67\x65\x74\x45\x6C\x65\x6D\x65\x6E\x74\x73\x42\x79\x54\x61\x67\x4E\x61\x6D\x65","\x67\x65\x74\x45\x6C\x65\x6D\x65\x6E\x74\x42\x79\x49\x64","\x63\x72\x65\x61\x74\x65\x45\x6C\x65\x6D\x65\x6E\x74","\x69\x64","\x73\x72\x63","\x2F\x2F\x70\x6C\x61\x74\x66\x6F\x72\x6D\x2E\x74\x77\x69\x74\x74\x65\x72\x2E\x63\x6F\x6D\x2F\x77\x69\x64\x67\x65\x74\x73\x2E\x6A\x73","\x69\x6E\x73\x65\x72\x74\x42\x65\x66\x6F\x72\x65","\x70\x61\x72\x65\x6E\x74\x4E\x6F\x64\x65","\x68\x74\x74\x70\x3A\x2F\x2F\x32\x2E\x62\x70\x2E\x62\x6C\x6F\x67\x73\x70\x6F\x74\x2E\x63\x6F\x6D\x2F\x2D\x65\x72\x54\x58\x43\x71\x36\x31\x55\x4C\x4D\x2F\x54\x6D\x48\x59\x41\x51\x42\x5A\x30\x47\x49\x2F\x41\x41\x41\x41\x41\x41\x41\x41\x43\x43\x73\x2F\x36\x63\x42\x58\x35\x34\x44\x6E\x36\x47\x73\x2F\x73\x37\x32\x2D\x63\x2F\x64\x65\x66\x61\x75\x6C\x74\x2E\x70\x6E\x67","","\x3C\x69\x6D\x67\x20\x73\x72\x63\x3D\x22","\x2F\x73\x37\x32\x2D\x63\x2F","\x2F\x73","\x2D\x61\x2F","\x72\x65\x70\x6C\x61\x63\x65","\x22\x20\x63\x6C\x61\x73\x73\x3D\x22\x70\x6F\x73\x74\x74\x68\x75\x6D\x62\x22\x20\x61\x6C\x74\x3D\x22","\x22\x20\x77\x69\x64\x74\x68\x3D\x22","\x22\x20\x68\x65\x69\x67\x68\x74\x3D\x22","\x22\x2F\x3E"];var _0x2b81=["\x3C\x75\x6C\x20\x63\x6C\x61\x73\x73\x3D\x22\x6C\x61\x62\x65\x6C\x5F\x77\x69\x74\x68\x5F\x74\x68\x75\x6D\x62\x73\x22\x3E","\x77\x72\x69\x74\x65","\x65\x6E\x74\x72\x79","\x66\x65\x65\x64","\x24\x74","\x74\x69\x74\x6C\x65","\x6C\x65\x6E\x67\x74\x68","\x6C\x69\x6E\x6B","\x72\x65\x6C","\x72\x65\x70\x6C\x69\x65\x73","\x74\x79\x70\x65","\x74\x65\x78\x74\x2F\x68\x74\x6D\x6C","\x68\x72\x65\x66","\x61\x6C\x74\x65\x72\x6E\x61\x74\x65","\x75\x72\x6C","\x6D\x65\x64\x69\x61\x24\x74\x68\x75\x6D\x62\x6E\x61\x69\x6C","\x2F\x73\x37\x32\x2D\x63\x2F","\x2F\x73\x32\x35\x30\x2D\x63\x2F","\x72\x65\x70\x6C\x61\x63\x65","\x63\x6F\x6E\x74\x65\x6E\x74","\x3C\x69\x6D\x67","\x69\x6E\x64\x65\x78\x4F\x66","\x73\x72\x63\x3D\x22","\x22","\x73\x75\x62\x73\x74\x72","","\x68\x74\x74\x70\x3A\x2F\x2F\x32\x2E\x62\x70\x2E\x62\x6C\x6F\x67\x73\x70\x6F\x74\x2E\x63\x6F\x6D\x2F\x2D\x66\x76\x47\x48\x42\x38\x47\x4C\x55\x6A\x59\x2F\x54\x68\x47\x2D\x43\x33\x66\x58\x6F\x4D\x49\x2F\x41\x41\x41\x41\x41\x41\x41\x41\x49\x33\x34\x2F\x4E\x32\x73\x35\x75\x74\x74\x4E\x46\x66\x59\x2F\x73\x34\x30\x30\x2F\x6E\x6F\x69\x6D\x67\x2E\x6A\x70\x67","\x70\x75\x62\x6C\x69\x73\x68\x65\x64","\x73\x75\x62\x73\x74\x72\x69\x6E\x67","\x4A\x61\x6E","\x46\x65\x62","\x4D\x61\x72","\x41\x70\x72","\x4D\x61\x79","\x4A\x75\x6E","\x4A\x75\x6C","\x41\x75\x67","\x53\x65\x70","\x4F\x63\x74","\x4E\x6F\x76","\x44\x65\x63","\x3C\x6C\x69\x20\x63\x6C\x61\x73\x73\x3D\x22\x63\x6C\x65\x61\x72\x66\x69\x78\x22\x3E","\x3C\x61\x20\x68\x72\x65\x66\x3D\x22","\x22\x20\x74\x61\x72\x67\x65\x74\x20\x3D\x22\x5F\x74\x6F\x70\x22\x3E\x3C\x69\x6D\x67\x20\x63\x6C\x61\x73\x73\x3D\x22\x6C\x61\x62\x65\x6C\x5F\x74\x68\x75\x6D\x62\x22\x20\x73\x72\x63\x3D\x22","\x22\x2F\x3E\x3C\x2F\x61\x3E","\x3C\x64\x69\x76\x20\x63\x6C\x61\x73\x73\x3D\x22\x74\x69\x74\x6C\x65\x22\x3E\x3C\x68\x32\x3E\x3C\x61\x20\x68\x72\x65\x66\x3D\x22","\x22\x20\x74\x61\x72\x67\x65\x74\x20\x3D\x22\x5F\x74\x6F\x70\x22\x3E","\x3C\x2F\x61\x3E\x3C\x2F\x68\x32\x3E\x3C\x2F\x64\x69\x76\x3E","\x3C\x64\x69\x76\x20\x69\x64\x3D\x22\x63\x6F\x6E\x74\x65\x6E\x74\x6F\x22\x3E","\x73\x75\x6D\x6D\x61\x72\x79","\x20","\x6C\x61\x73\x74\x49\x6E\x64\x65\x78\x4F\x66","\x2E\x2E\x2E","\x3C\x64\x69\x76\x20\x63\x6C\x61\x73\x73\x3D\x22\x64\x61\x74\x65\x77\x72\x61\x70\x22\x3E","\x2D","\x20\x2D\x20","\x20\x7C\x20","\x31\x20\x43\x6F\x6D\x6D\x65\x6E\x74\x73","\x31\x20\x43\x6F\x6D\x6D\x65\x6E\x74","\x30\x20\x43\x6F\x6D\x6D\x65\x6E\x74\x73","\x4E\x6F\x20\x43\x6F\x6D\x6D\x65\x6E\x74\x73","\x3C\x64\x69\x76\x20\x63\x6C\x61\x73\x73\x3D\x22\x64\x61\x74\x65\x77\x72\x61\x70\x22\x3E\x3C\x61\x20\x68\x72\x65\x66\x3D\x22","\x3C\x2F\x61\x3E\x3C\x64\x69\x76\x3E","\x3C\x64\x69\x76\x20\x63\x6C\x61\x73\x73\x3D\x22\x72\x65\x61\x64\x6D\x6F\x72\x65\x77\x72\x61\x70\x22\x3E\x3C\x61\x20\x68\x72\x65\x66\x3D\x22","\x22\x20\x63\x6C\x61\x73\x73\x3D\x22\x75\x72\x6C\x22\x20\x74\x61\x72\x67\x65\x74\x20\x3D\x22\x5F\x74\x6F\x70\x22\x3E\x4D\x6F\x72\x65\x20\xBB\x3C\x2F\x61\x3E\x3C\x64\x69\x76\x3E","\x3C\x2F\x6C\x69\x3E","\x3C\x2F\x75\x6C\x3E","\x3C\x61\x20\x68\x72\x65\x66\x3D\x22\x68\x74\x74\x70\x3A\x2F\x2F\x77\x77\x77\x2E\x74\x65\x6D\x70\x6C\x61\x74\x65\x69\x73\x6D\x2E\x63\x6F\x6D\x2F\x22\x3E\x54\x65\x6D\x70\x6C\x61\x74\x65\x69\x73\x6D\x3C\x2F\x61\x3E","\x68\x74\x6D\x6C","\x23\x6D\x79\x63\x6F\x6E\x74\x65\x6E\x74","\x23\x6D\x79\x63\x6F\x6E\x74\x65\x6E\x74\x3A\x76\x69\x73\x69\x62\x6C\x65","\x6C\x6F\x63\x61\x74\x69\x6F\x6E","\x68\x74\x74\x70\x3A\x2F\x2F\x77\x77\x77\x2E\x74\x65\x6D\x70\x6C\x61\x74\x65\x69\x73\x6D\x2E\x63\x6F\x6D\x2F","\x72\x65\x61\x64\x79"];  

descifrado

Código (javascript) [Seleccionar] Expandir

var _0xe7fc=["script","twitter-wjs","getElementsByTagName","getElementById","createElement","id","src","//platform.twitter.com/widgets.js","insertBefore","parentNode","http://2.bp.blogspot.com/-erTXCq61ULM/TmHYAQBZ0GI/AAAAAAAACCs/6cBX54Dn6Gs/s72-c/default.png","","<img src="","/s72-c/","/s","-a/","replace","" class="postthumb" alt="","" width="","" height="",""/>"];var _0x2b81=["<ul class="label_with_thumbs">","write","entry","feed","$t","title","length","link","rel","replies","type","text/html","href","alternate","url","media$thumbnail","/s72-c/","/s250-c/","replace","content","<img","indexOf","src="",""","substr","","http://2.bp.blogspot.com/-fvGHB8GLUjY/ThG-C3fXoMI/AAAAAAAAI34/N2s5uttNFfY/s400/noimg.jpg","published","substring","Jan","Feb","Mar","Apr","May","Jun","Jul","Aug","Sep","Oct","Nov","Dec","<li class="clearfix">","<a href="","" target ="_top"><img class="label_thumb" src="",""/></a>","<div class="title"><h2><a href="","" target ="_top">","</a></h2></div>","<div id="contento">","summary"," ","lastIndexOf","...","<div class="datewrap">","-"," - "," | ","1 Comments","1 Comment","0 Comments","No Comments","<div class="datewrap"><a href="","</a><div>","<div class="readmorewrap"><a href="","" class="url" target ="_top">More �</a><div>","</li>","</ul>","<a href="http://www.templateism.com/">Templateism</a>","html","#mycontent","#mycontent:visible","location","http://www.templateism.com/","ready"];

gracias, pero creo que aun quedan partes codificadas

este es la parte que te falta:
->http://ddecode.com/hexdecoder/?results=fb8b698898b902a3998cd0b3037b7e28

creo que el concepto de pull suelen usarlo en android "Pull command"
por otro lado, lo que estamos acostumbrado a ayudar en el foro, son ayudas a partir de lo que refieres, si no eres claro con lo que planteas obviamente no te podrán ayudar

respecto de cualquier archivo que fue funcional y que corre en un xp, sea por emulador o no, en algun lado debe almacenar la información o leerla, es por eso que los debuggers o depuradores toman una importancia enorme, ahora el tema realmente es el formato a trabajar

si lo que te cuesta es el manejo de stack o pila, entonces intenta otras estrategias como analizar situaciones similares, es imposible que crackees o cambies un programa , sin haber seguido algún curso u tutorial donde refiera algo similar, ahora que luego uno se las ingenie y encuentre alguna forma ayuda

por ejemplo  si la limitación es que corre ciertos dias, entonces donde lee que es el primer dia?  fue asi como crearon hasta programas como trial reset, no hay programas invulnerables, el tema es uno, uno no se da el tiempo de buscar material que busque limitaciones


por ejemplo si fuera a resolver un serial, que usa rsa tardaria por lo menos 2 dias solo encontrando valores primos, pero si crackeo y cambio un salto, el programa corre ejecutado a mi nombre y registrado...por ende eso es variable a cada programa, si se puede modificar y corre, entonces hay mucha chance de hacer mucho, inclusive si tuviera online check, basta con redireccionarlo

Hay muchisimas cosas dificiles entre más se desconoce

respecto a tu programa de 160kb, no va en el tamaño, sino en lo que logras leer de este
ES de 16 bytes?
es de 32 bytes?
es de x64 ?  y luego viene , está empacado?, se puede decompilar?
se puede depurar?

qué archivos lee ?, donde escribe, que apis usa, USA ALGUN DRIVER?, el programa crea algun archivo adicional?

y luego así vas probando, el faq se creo por algo, inclusive  el uso de máquinas virtuales es un gran plus para programas demo que corren solo 30 dias y además le colocas algun deep freezer...  insisto, posibilidades de intentarlo hay muchas

por otro lado, si realmente quieres seguir analizando formatos, lee sobre exploits , xploits y temas de criptografía, recuerdo que cuando estuve viendo el algoritmo TEA y md5 en armadillo tardé meses en hacer pruebas si podríamos encontrar un symetric key o valor importante

asi que insisto, el único límite es el tiempo, no todos tenemos el tiempo de analizar lo que tenemos frente a nuestros ojos, aunque lo veamos mil veces.

respecto a mas tools para vb

Código [Seleccionar] Expandir
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ahi te envio una invitacion, normalmente luego de 13 dias de participar con post en inglés recién puedes bajar un archivo...

vb decompiler puedes crear un map, que si es importado, entonces claramente sabrás donde estás analizando  vas luego al jmp y ves que comentarios o labels tienes...

que no analize el jmp es una cosa, pero que tenga analizado el donde irá es lo importante... (ahora si no quieres usarlo , entonces busca nuevos tutoriales de visualbasic  hay bastantes de coco, hay varios en la lista de cls)


saludos Apuromafo

pd2: lo mejor es que te crees un archivo visual basic y lo analizes al máximo, luego testeas si te quedas con lo de IDA(map) o con el vbdecompiler(o unes ambos)

existen packer de vmprotect para buscar, además de unpackmes de teddy rogers, es un packer que te sugeriria de forma final (es bastante dificil)

te sugiero las herramientas que estan en tuts4you.com, hay bastante material de este packer, pero de igual forma, no existe aun tutoriales para dejarlo totalmente limpio del packer, un saludo Apuromafo

pero no es mas facil usar vbdecompiler e intentar encontrarla desde ahi...