SERIAL NUMBER IS FISHY - DECLINE YOUR PATCH'ITCH'ING


111 Quick Reinstaller v2.21
A Cracking Tutorial 
by ASTAGA [D4C/C4A]


DISCLAIMER 

This reading material is not intended to violate Copyrights 
and/or it is law, but educational purposes only. I hold no 
responsibility ( by all means and in any shape whatsoever ) 
of the mis-used of this material.
Read END NOTES section at the end of this file.



ABOUT THE PROGRAM 


This is program for Windows reinstallation and resurrection. 
Program for users all over the world which can help them 
with Windows 95/98 crashes. This program will help you to 
solve all your problems with your Windows stability!
Quick Reinstaller is a powerful tool which allows you quickly 
reinstall and resurrect your system without any problem. 
Quick Reinstaller compatible with Windows 95 and Windows 98. 
This program was especially designed for reinstalling and 
resurrecting your system configuration after unrecoverable 
crash or if you want to restore your old system configura
tion. In case your system was crashed or became unstable you 
can quickly reinstall it using Quick Reinstaller. Quick 
Reinstaller can work with a few System Configuration files. 
You can store system configurations and reinstall them when 
you need it. Quick Reinstaller can make CleanUp for you. 
Using Quick Reinstaller you can reinstall or resurrect your 
system without hard drive formating and your using of Windows 
became more stable and interesting.
Features:
*  Partial System Restoration 
*  Fast access to previously saved configurations 
*  Ability to add user defined files groups to System 
   Configuration file 
*  Ability to add user defined products to System Configura
   tion file 
*  Quick Help mode 
*  Intellectual system of products recognition(no more databases) 
*  Ability to restore System Configuration from MS-DOS 
*  Decrease of System Configuration files size 
*  Very small temporary file(Earlier versions create 30Mb swap 
   file, now it have size 300Kb) 



WHERE TO DOWNLOAD


Author   	: Kruglov Denis
Copyright	: Kruglov Denis
Homepage 	: http://www.angelfire.com/mb/111soft/qr20d.html
URL		: http://www.angelfire.com/mb/111soft/qr221.zip
		  http://www.chat.ru/~onesoft/qr221.zip
Size 		: 1.1 MB  as of December 17,2000
Rel Date	: Aug 31, 2000




HOW TO GET VALID SERIAL NUMBER by using SoftIce


This lesson show you how HMEMCPY can manipulates and drives 
you lost in the jungle.


1.  Run QR.EXE, in the registration dialog box type these below 
    informations :

	Name	 : Red Rackham
	Code    : 73881050

    Do not click OK button yet
    

2.  Load SoftIce by pressing [ CTRL + D ], set a breakpoint as 
    follow :

	BPX hmemcpy     [enter]   and
   	F5  to return to the main program


3.  Now, click OK button... you'll return back into SoftIce!
    In fishing S/N ( using HMEMCPY ), there are 5 ways to reach 
    main program's code :


	A.	The common usage to get the caller is using combination
		between F11,F5, and F11 once again ( because you have two
         	field box to be keyed-in for name and code ) - followed
         	with F12 several times until you reach the main program's 
		code.
		Using this way you'll break at 015F:00484894 

	B.	Pressing F5 2 times followed with F12 several times.
		Using this way you'll break at 015F:00484C09

	C.	Pressing F5 2 times, F11 once followed with F12
		several times.
		Using this way you'll break at 015F:00484C09

	D.	Pressing F12 until you reach the main program's code.	
		Using this way you'll break at 015F:0048486F 

	E.	Press F10 hundred times until you reach the main
		program's code. I won't do it this way, sorry !
		However, in fact, press F10 around 10 times ( or
		more ) until you see USER!BOZOSLIVEHERE+1C1E and
		start your luck by using SoftIce's "PAGE(IN)" command.
		This Old 'paco' trick still worth to be read, find 
		somewhere else in the Net i.e CrackZ, Sandman, and or
		T@RNADO's web site.


    I've tried applying A, and D approach which brings me deep
    into the jungle and fake code even real code never showed up.
    Now, let's try the "B" or "C" approach : 

    In within SoftIce press F5 2 times, F11 once then F12 11/12 
    times until you see and break at :

	______________________________________________________________

	015F:00484C09  E81AB0F9FF     CALL  0041FC28		break
	015F:00484C0E  8B85ECFEFFFF   MOV   EAX,[EBP-0114] <== here 
	015F:00484C14  8B55F4         MOV   EDX,[EBP-0C] ==> D EAX
	015F:00484C17  E850F2F7FF     CALL  00403E6C ==> D EDX
	015F:00484C1C  0F852A010000   JNZ   00484D4C
	015F:00484C22  8D95ECFEFFFF   LEA   EDX,[EBP-0114]

	_________________________ QR!CODE+00083C09 ___________________

	: bc 00  [enter] ==> no longer needed
	: bpx 015F:00484C09  [enter]

	Press F10 once - stop at 015F:00484C14 - display EAX register

	: d eax  [enter]  	see that fake code at virtual address
				0167:00C3AC80 ???

	Press F10 once - stop at 015F:00484C17 - display EDX register

	: d edx  [enter]  	see that 7108145 at virtual address
				0167:00C3BBB4 ???
				Write it down this suspicious number.


5.  Disable all breakpoints by typing 

	BD *   [enter]
	Press F5 or X to return to the main program
     

6.  Repeat registration procedure and keyed-in 7108145 as 
    your S/N. 
    Click OK button .....  there you're registered.


7.	Where the hell is my registration code is stored ??

	The correct registration code is stored in the registry as
	follows : 
	REGEDIT4
	[HKEY_CURRENT_USER\^üœz]
	"ºxõü"="E056E563F47DD3"  <== reg code
	and
	REGEDIT4
	[HKEY_CURRENT_USER\Software\111 Software, Inc.\111 Quick 
	Reinstaller\INI]
	"Temp Path"="C:\\WINDOWS\\TEMP\\"
	"Fields"="001101"
	"Reg Name"="Red Rackham"


8.  How can I practise with my own user name ?

	-  I strongly recommended you not to do this !




					E N D   N O T E S


		Distributing your serial number is illegal and is no 
			different than distributing illegal 
				copies of the registered 
				 software. Violation of
					this rule may 
					  result in 
			temporary or permanent revocation of this
			     license and cancellation of the 
			              serial number; 
				   the original licensee
			   will also be held responsible for 
			    damages, physical and estimated.


   Do not distribute your crack release based on this tutorial, because
   you become a LAMER(s)!!!!!!!!
   ( tHATDUDE (PC97) defined LAMER(s) is the guy who sits in front of
   personal computer, using Hex Editor, ripping off other group(s)
   crack release, repacking (distro) them under his name. 
   Adopted from newsgroup alt.cracks, alt.crackers - February 1997 ) 

    More about LAMER(s):
	lamer /n./ [prob. originated in skateboarder slang]
	Synonym for luser, not used much by hackers but common among warez 
	d00dz, crackers, and phreakers. Oppose elite. Has the same connota
	tions of self-conscious elitism that use of luser does among 
	hackers.
      < SOURCE: http://sagan.earthspace.net/jargon/jargon_27.html >


 		Never attribute to malice that which is adequately 
				explained by stupidity


ASTAGA [D4C/C4A] tute-111quickreinstaller221.zip
[EOF] 12/17/00 6:08:55 PM

Kruglov Denis - 1065107
Pirates Order - 213617