home *** CD-ROM | disk | FTP | other *** search
-
-
-
- ***************************************************
- *** Pirate Magazine Issue IV / File 5 of 10 ***
- *** Cracking Tips by NICODEMUS KEEZARVEXIUS ***
- *** (and Company of Wolves) ***
- ***************************************************
-
-
- Company of Wolves and ace cracker Nicodemus Keezarvexius will appear here
-
-
-
- periodically in their own corner. A few of the following were printed last
- issue but we thought we'd reprint them to keep CoW's work in a single file. Any
- suggests or requests, you can reach NK at PC-EXEC (414-789-4210) or the CoW
- board (301-791-1595).
-
- In this file: Unprotects for
-
- BOP'N WRESTLE
- KARATEKA
- IMPOSSIBLE MISSION II
- MIGHT AND MAGIC
- POOL OF RADIANCE
- GAUNTLET
-
-
- FROM:
- THE COMPANY OF WOLVES
-
- ----------------------------------------------------------------
- MINDSCAPES BOP'N WRESTLE
- ----------------------------------------------------------------
- NEEDED:
- 1. Norton Utilities (or similar program)
- 2. A copy of the file Bop.exe from your original disk.
- 3. A bit of your time
- ----------------------------------------------------------------
-
- 1. HOW TO UNPROTECT BOP'N WRESTLE:
- First load one of the above file into Norton.
- Then search for the string B8 00 19 CD.
- Change these bytes to 31 C0 EB 2F.
- Save the changes
-
- 2. FOR ALL OF YOU DEBUG FANS:
- Rename Bop.exe to Bop.try
- type E CS:96D [return] 31 [space] C0 [space] EB [space] 2F
- [return]
- Save the changes with the W command
- Exit debug
- Rename Bop.try back to Bop.exe
- Enjoy the game on any drive you choose to.
-
- The program will now skip the check for copy protection all together. The first
- change (31 C0) is an xor ax,ax. The Second (EB 2F) jumps to a return. (just in
- case you wanted to know)
-
- If you have any problems with any of the patches above check the date of the
- file BOP.EXE on your original disk A for the date 11/06/87. If your file has a
- different date then they probably changed the copy protection method and your
- out of luck with this patch.
-
- ----------------------------------------------------------------
-
-
- ----------------------------------------------------------------
- **KARATEKA**
- ----------------------------------------------------------------
- NEEDED:
- Norton Utilities (or simular program).
- A copy of the file Karateka.exe from your original disk.
- A bit of your time.
- ----------------------------------------------------------------
-
-
- 1. HOW TO UNPROTECT BRODERBUND'S KARATEKA:
- First load KARATEKA.EXE into Norton.
- Then search for the string E8 81 14.
- Change the string to 90 90 90.
- Skip ahead 4 bytes to the string 75 2D.
- Change the 75 to EB.
- Search for the string E8 74 14.
- Change the string to 90 90 90.
- Once again skip ahead 4 bytes to the string 75 20 and Change the
- 75 to EB.
- Write the changes.
- The program will now skip over the part where it looks for the copy protection
- but you aren't done yet.
- Now search for the string B2 00 B4 0E CD 21.
- Change all of these bytes to 90.
- Write the changes.
- Now the program will play on whatever drive you want.
-
-
- ----------------------------------------------------------------
-
- If you have any problems with any of the patches above check the date of the
- file KARATEKA.EXE on your original disk for the date 07-01-87. If your file has
- a different date then they proabably changed the copy protection method and
- your out of luck with this patch.
-
- ---------------------------------------------------------------
- MISSION IMPOSSIBLE II
- ----------------------------------------------------------------
-
-
- FROM:
- THE COMPANY OF WOLVES
- ----------------------------------------------------------------
- NEEDED:
- Norton Utilities (or simular program).
- A copy of the game file from your original Manhunter disk.
- IM2_CGA.EXE if you have CGA graphics,IM2_TAN.EXE for Tandy,
- IM2_EGA.EXE for EGA, or IM2_MGGA.EXE for MCGA.
- A bit of your time.
- ----------------------------------------------------------------
-
-
- 1. HOW TO UNPROTECT IMPOSSIBLE MISSION II:
- First load the appropiat file into Norton.
- Search for the string A2 CA 99 A2 28 9C.
- Change these 6 bytes and the next 6 bytes (total of 12) to 90's.
- Write the changes.
- Then search for the bytes CD 21 B9 01 14.
- Change the CD 21 to 90 90.
- Write the changes.
- Now search for F6 C4 10.
- Change the byte immediatly following the 10 (75) to EB.
- Write the changes.
- Next search for the bytes BB 09 9A 8B CD.
- Change the 2 bytes before this string (72 xx (xx is different for
- some of the above files)) to 90 90.
- Write the changes.
- Now search for B9 10 00 F3 A7.
- Change the 2 bytes following this string (75 xx) to 90 90.
- Write the changes.
- Now search for B9 04 00 F3 A7.
- Change the 2 bytes following this string (75 xx) to 90 90.
- Write the changes.
- Now search for B8 09 02 CD 13.
- Change the CD 13 to 90 90, and the byte following it (73) to EB.
- Write the changes.
-
- Now the check for the copy protection (a bad sector on disk A) is disabled. If
- you don't intend to use the game on your hard disk you can now play the game
- from and DISKCOPYed disk. If you want to play this game from a single directory
- on any fixed disk follow the procedure below.
-
- 2. FIXING THE PROGRAM TO PLAY FROM 1 DIRECTORY: Once again load the appropiate
- EXE file into Norton. Search for the string CHARSf. Basicly you will type
- the file name after the CHARSf over CHARSf. For example if the full string is
- CHARSfTHISFILE.A to THISFILE.A(00) (Note. the end of the file name is denoted
- by a 00) hex). Be sure to look to see if the . after the file is indeed a . or
- a 00 hex because some files have extentions and some don't and make sure that
- you end the name you just typed over ends with a 00.
- Write the changes.
- Repete the prodcedure until you reach the end of the file.
- Next do the same thing exept look for the string ROOMSf.
-
- Now when you copy the game just copy all of the files from all directories from
- your original disks to the directory on the hard drive you intend to use. You
- can now enjoy the game without flipping thru floppy disks.
-
- -------------------------------------------------------------------
- MIGHT AND MAGIC
- ------------------------------------------------------------------
-
-
- ----------------------------------------------------------------
- NEEDED:
- 1. Norton Utilities (or similar program)
- 2. A copy of the file MM.EXE from your original disk.
- 3. A bit of your time
- ----------------------------------------------------------------
-
-
- 1. HOW TO UNPROTECT MIGHT AND MAGIC:
- First load the file MM.EXE into Norton.
- Then search for the string CD 13 72 EE.
- Change these bytes to 90 90 90 90.
- Write the changes.
- Next search for the string CD 13 72 05.
- Change these bytes to 90 90 90 90.
- Write the changes.
- Next search for the string CD 13 72 05.
- Change the CD 13 to 90 90 and the 72 05 to EB 05.
- A few bytes after this is a 75 F6, change these bytes to 90 90.
- you will have to do this 4 more times here are the jumps to look
- for: 75 20, 75 18, 75 10, 75 08. These will all be 7 bytes apart,
- change them all to 90's.
- Once again their will be another jump 7 bytes after the last one
- you changed (74 03), change it to EB 03.
- Write the changes.
-
- ----------------------------------------------------------------
- The program will now skip the check for copy protection all
- together.
-
- If you have any problems with any of the patches above check the
- date of the file MM.EXE on your original disk 1 for the date
- 11/18/87. If your file has a different date then they probably
- changed the copy protection method and your out of luck with this
- patch.
-
- ------------------------------------------------------------------
- HOW TO FIX COPY PROTECTION FROM
- AND SUPERCHARGE CHARACTERS
- FOR POOL OF RADIANCE.
-
-
- ----------------------------------------------------------------
- NEEDED:
- Norton Utilities (or similar program)
- A copy of the file start.exe from your pool of radiance disk
- A bit of your time
- ----------------------------------------------------------------
-
-
- 1. HOW TO UNPROTECT POOL OF RADIANCE:
- First load START.EXE into Norton
- Then search for one of the key words from the code disk
- Change the 6 letters of each word to whatever you want (make then
- all the same for convince)
- Save the changes
-
-
- 11/08/89
- I just completed a new fix which will completely skip over the part where the
- program asks you for the word from the code disk. For Norton Utilities users
- search for the string 9A 25 00 1D 00, change all of these bytes to 90's. For
- all of you Debug fans out there rename the file START.EXE to say 123.AAA (or
- whatever), then type S cs:100 900 9A 25 00 1D 00. It should show a match at
- xxxx:05D7. Change the bytes by typing the following: E 05D7 EenterL, 90 EspaceL
- 90 EspaceL 90 EspaceL 90 EspaceL 90 EenterL. Then write the file with the W
- command and quit Debug. Now rename the file you just fixed to START.EXE and
- your done.
-
- 01/03/90
- I have just been made aware of another version of start.exe dated 12/12/88. To
- get around the copy protection for this version with Norton search for the same
- string listed above, with this version change the first four bytes to 90's and
- leave the 00 alone.
-
- Thanx Karl.
-
- ----------------------------------------------------------------
-
- 2. SUPERCHARGING YOUR CHARACTERS:
- Copy the file CHARFIX.EXE (included in this fix) into the directory where your
- saved games reside. Change to that directory. Run the program, it is self
- explanatory.
- ----------------------------------------------------------------
-
- If you have any problems with any of the patches above check the
- date of the file START.EXE on your original disk A for the date
- 10-26-88. If your file has a different date then they probably
- changed the copy protection method and your out of luck with this
- patch.
-
- -------------------------------------------------------------
- MINDSCAPE'S GAUNTLET
- ------------------------------------------------------------
-
-
- NEEDED:
- 1. Norton Utilities (or similar program)
- 2. A copy of the file's gintro.exe and gprog.exe from your
- original disk.
- 3. A bit of your time
- -----------------------------------------------------------------
-
-
- 1. HOW TO UNPROTECT GAUNTLET:
- First load one of the above files into Norton.
- Then search for the string F3 A7.
- Change the byte immediately following (74) to EB.
- Continue the search and once again change the 74 to EB.
- Save the changes
- Repeat the steps above for the other .EXE file.
-
- For you Debug fans rename each of the two files to 1.aaa and 2.aaa
- respectivaly. Search (the S command) for F3 A7, you should get at least 3
- matches. You will need to unassemble each of the matches, the first copy
- protection match should read REPZ CMPSW, JZ 2D96, ect..., and the second REPZ
- CMPSW, JZ 2DB1, ect... With the E command using the FULL address of the JZ
- commands change the 74's to EB's. Write the files with the W command and
- repeat the process for the other file. When finishes erase Gintro.exe and
- Gprog.exe and rename 1.aaa gintro.exe and 2.aaa gprog.exe.
-
- In this version of the program will still look for the copy protection (which
- is a sector at the end of the hard disk that the install program writes then
- marks bad to prevent overwriting to that sector) but will continue the program
- as if the comparison (F3 A7) was successful.
- -----------------------------------------------------------------
-
- If you have any problems with any of the patches above check the date of the
- file GINTRO.EXE on your original disk A for the date 03/25/88. If your file has
- a different date then they probably changed the copy protection method and your
- out of luck with this patch.
-
- ----------------------------------------------------
- How to fix copy protection from
- Mindscape's Paperboy.
- -----------------------------------------------------
-
- 1. Norton Utilities (or similar program)
- 2. A copy of the file's papercga.exe, papercgt.exe, and
- papercg2.exe from your original disk.
- 3. A bit of your time
- -----------------------------------------------------------------
-
- 1. HOW TO UNPROTECT PAPERBOY:
- First load one of the above files (whichever applies to your graphics, papercga
- for cga graphics, papercgt for tandy graphics , or papercg2 for ega graphics)
- into Norton. Then search for the string 3D 33 00 75 FE. Change the 74 FE to
- 90 90. Save the changes
-
- The program will still look for the copy protection files DEMAA.COM and
- DEMAB.COM but will skip the instruction that locks up the system (74 FE (jump
- back two bytes if comparison is not zero)).
-
- If you have any problems with any of the patches above check the date of the
- file PAPERxxx.EXE on your original disk A for the date 06/17/88. If your file
- has a different date then they probably changed the copy protection method and
- your out of luck with this patch.
-
-
- >--------=====END=====--------<
-
-
-