Unfortunately, this site has restricted functionality as this browser does not support the HTML button formaction attribute.
Unfortunately, this site has restricted functionality as this browser has HTML web storage turned off.

Pirate, 4. by Pirate

1 of 2 files jim thomas
PHRACK-The Legion of Doom Busts.
  • TXT / Text   Magazine
  • 171 kB   DOWNLOAD   SHARE
hide RetroTxt from Defacto2   The open source WebExtension to view many ANSI, ASCII and NFO files in a browser. Available for Chrome Firefox Brave Edge.
[+] Configuration Select all
         **                                                   **
         **     PPPPP    I    RRRRR    AAAAA  TTTTT   EEEEE   **
         **     P  PP    I    R  RR    A   A    T     E       **
         **     PPP      I    RRR      AAAAA    T     EEEEE   **
         **     P        I    R  R     A   A    T     E       **
         **     P        I    R   R    A   A    T     EEEEE   **
         **keepin' the dream alive                            **
                  -=>   VOLUME 3, ISSUE 4, February, 1989    <=-
                           **** WELCOME ****
              To the fourth issue of -=* PIRATE *=-!
Special thanks for getting this issue out go to:
  Chris Robin
  Gene & Roger
  Hatchet Molly
  Hot Mix #1
  Knight Lightning
  Maxx Cougar
  Nicodemus Keezarvexius
  Pru Dohn
  Taran King
  The California Zephyr
  Ty Rexx
Any comments, or if you want to contribute, most of us can
be reached at one of the following boards:
  RIPCO              (Illinois)
  SYCAMORE ELITE     (815-895-5573)
  COMPANY OF WOLVES  (301-791-1595)
  THE ROACH MOTEL    (California)
  PACIFIC ALLIANCE   (818-280-5710)
Dedicated to sharing knowledge, gossip, information, and tips
for warez hobbyists.
                    ** CONTENTS THIS ISSUE **
File 1.  Introduction and contents issues 1-4
File 2.  Editorial: Defense of pirating
File 4.  Zipfile Tips
File 5.  Company of Wolves Unprotects
File 6.  PTL Cracking Primer
File 7.  What Makes a Good Board
File 8.  BBS Symbols and Faces
File 9.  Gene and Roger at the BBS: *EURO-AMERICAN CONNECTION*
File 10. Some of our favorite numbers
                               ** WHO ARE WE? **
We've been asked "who are you guys?" Well, the guys are not all guys, and
sexism sucks. The people who put out pirate are mostly IBMers with some apple
and ST influences. We're a loose collective, mostly from the midwest, but with
contributors from around the country. Collectively, we're on probably all of
the good national boards, and those listed as "contact points" are not
necessarily those we frequent the most, but those we like a lot and where we
check in at least once every few weeks. Our goal is to try to provide news of
general interest to *all* BBS enthusiasts, share information and gossip, and to
give newcomers tips on how not to be lame. We hope this will improve BBSing for
everybody. We are committed to keeping information free to the people, and we
oppose control of knowledge by an elite few. As warez hobbyits, we believe that
knowledge of current software is of benefit to the software industry despite
their claim that sharing is unethical. We also believe that informed consumers
make for better products, and that sharing information on warez is a patriotic
and democratic duty.
As some may notice, the format of *PIRATE* changes each issue, for the better,
we hope. We have noticed some *PIRATE* files listed as g-philes on some boards,
so we thought it might be helpful to include an index periodically of previous
                           PIRATE INDEX (Issues 1-4)
*PIRATE* Index to Issue #1 (June, 1989)
File 1. What's a Pirate?
File 2. Pirate Do's and Don'ts
File 3. Pirate tips
File 4. Why Software ownership is bad for society
File 5. Copyright Law
File 6. Computer laws in Wisconsin
File 7. Editorial: Big Brother in the Computer Room?
File 8. Sysop's corner
File 9. What's hot, what's not
File 10. Wants and Needs
File 11. Board Review of the Month: THE GREAT ESCAPE
File 12. A few decent boards
*PIRATE* Index to Issue #2 (September, 1989)
File 1. Introduction, editorial, and general comments
File 2. Whither the World of Pirates?
File 3. How to get things running
File 4. Sysops and the Law -- Sysops' Legal Liability
File 5. Hackers in the News
File 6. Illinois and Texas Computer Laws
File 7. Is Teleconnect Dangerous? They're after our rights!
File 8. Viruses
File 9. BBS NEWS: Review (ATLANTIS) and APPLE #s
*PIRATE* Index to Issue #3 (January, 1990)
File #1. Introduction, editorial, and general comments
File #2. News Reprint: Who's the REAL software threat??
File #3. Unprotects and cracking tips (part 1)
File #4. Unprotects and cracking tips (part 2)
File #5. Unprotects and cracking tips (part 3)
File #6. Unprotects and cracking tips (part 4)
File #7. Unprotects and cracking tips (part 5)
File #8. Unprotects and cracking tips (part 6)
File #9. Gene n' Roger's "review of the month" (DEAD ZONE)
*PIRATE* Index to Issue 4  (March, 1990)
File 1.  Introduction and contents issues 1-4
File 2.  Editorial: Defense of pirating
File 4.  Zipfile Tips
File 5.  Cult of Wolves Unprotects
File 6.  PTL Cracking Primer
File 7.  What Makes a Good Board
File 8.  BBS Symbols and Faces
File 9.  Gene and Roger at the BBS: Euro-American Connection
File 10. Some of our favorite numbers
***  Pirate Magazine Issue IV  /  File 3 of 10  ***
***  PHRACK/LoD bust of January, 1990           ***
As most of you know, PHRACK is down for awhile. It seems that in doing the good
deed of sending out back issues across e-mail lines, some eyebrows were raised.
The following newspaper accounts and commentary come from Dr.Ripco.
(From the CHICAGO SUN-TIMES 2/7/90)
         Two students with reputations as master computer hackers were
indicted here Tuesday on charges of stealing and publishing highly sensitive
information about the 911 emergency phone system in nine southern states. The
indictment alleges Robert J.  Riggs, 20, a student at DeVry Institute in
suburban Atlanta, is a member of "The Legion of Doom," a nationwide group of
hackers said to be involved in illegal activities. His co-defendant is Craig
M. Neidorf, 19, a University of Missouri student who publishes Phrack, a
hacker magazine transmitted by computer. The indictment charges Riggs gained
unauthorized access to computers of the Bell South Telephone Co. in Atlanta in
December, 1988, and obtained the 911 file. It was sent to Neidorf via a
computer bulletin board in Lockport.
               * * * * * * * * * * * * * * *
(from the Chicago Tribune 2/7/90)
         Two college students who were members of a nationwide network of
computer hackers called the Legion of Doom were charged Tuesday with
breaking into the BellSouth Corp. 911 emergency system and publishing the
system through a hackers' "bulletin board."
         Robert J. Riggs, 20, a DeVry Institute student in Atlanta, and Craig
Neidorf, 19, a University of Missouri student from Chesterfield, Mo., were
charged with wire fraud, interstate transportation of stolen property and
computer fraud and abuse.
         The indictment, announced in Chicago by U.S. Atty. Ira Raphealson,
charges that Riggs broke into the BellSouth system in December 1988 "by using
a computer outside the telephone company to break into the telephone company's
computer system in which the computer file was stored."
         The computer program for the BellSouth 911 system, valued at $79,449,
controls emergency calls in nine Southern states - Alabama, Mississippi,
Georgia, Tennessee, Kentucky, Louisiana, North Carolina, South Carolina and
         Riggs then transfered the BellSouth 911 information to the computer
"bulletin board" in Lockport. At this point, Neidorf loaded it into his
computer in Missouri and edited it for publication in a computer hacker
publication known as "Phrack," the indictment charges.
         Assistant U.S. Atty. William Cook, who prepared the indictment,
declined to say if the police or fire departments in any of the affected citie
         If convicted of all charges, Riggs would face a prison sentence of
32 years and a fine of $220,000. Neidorf faces 31 years in prision and a
fine of $122,000. Riggs faces similar charges in Atlanta, Cook said.
Whats interesting about this is what they are charging Craig (Knight Lightning)
with. it appears publishing the information (based on prision time) is nearly
as criminal as breaking in and getting the program. its unlikely that either
one will serve much time if any at all but it does present a crimp into what
can be 'published' and what cannot on bulletin boards.
what the article did not mention or name is the board in Lockport. i take it
they are taking about Lockport Illinios which i'm unfamilar with which board
this could be. although they have indicted 2 people, one who sent the info and
one who took it, does that mean the bbs used for the transfer is out of the
picture so to speak?
much food for thought....
                                                        Dr. Ripco
                                 * * * * * *
As of this writing, nobody is completely certain what has happened or what will
happen, but we obtained the following from the major board where the crowd
hangs out.
The names were changed to protect the, uh, innocent.
31/53: phrack...
Name: Magnum Guru
Date: Sat Jan 20 02:58:54 1990
Welp, Phrack magazine is dead. Those of you who pay attention to BITNET know
that the phrack accounts at U of M have been shut down. The story is as
Government agents (not sure of the dept., probably SS) have apparently been
monitoring the e-mail of the Phrack kids (Night Thunder & Prince Tarzan) for
some time now. Apparently, a portion of a file sent to them (and subsequently
published) contained copyrighted information. This is all they needed. They
have now seized the entire Phrack net mailing list (over 500 accounts), plus
every piece of information that Andar & Geric have (and they have a *LOT*) on
real names, addresses and phone numbers.  This is evolving directly out of the
busts of three LOD members (Urvile, Leftist & Prophet). The Prophet (who is on
probation) is apparently being threatened with a prison term if he doesn't
cooperate. We don't know for sure if he cooperated or not, but what would you
do in the same position?  The same officials are apparently *VERY* interested
in our co-sys, Mr. BA. His net account is being watched, etc. I'll let
him tell the story.
   Anyone wishing to communicate with E or myself should do so through the
board only. I will be adding a secure (and I mean fucking secure) encryption
routine into the e-mail in the next 2 weeks - I haven't decided exactly how to
implement it, but it'll let two people exchange mail encrypted by a password
only know to the two of them. Hmmmm... carry this conversation to the
programming board.
Anyway, I do not think I am due to be busted, but then again, I don't do
anything but run a board. Still, there is that possibility. I assume that my
lines are all tapped until proven otherwise.
There is some question to the wisdom of leaving the board up at all, but I have
(have) personally phoned several government investigators and invited them to
join us here on the board. If I begin to feel that the board is putting me in
any kind of danger, I'll pull it down with no notice - I hope everyone
It looks like it's sweeps-time again for the feds. Let's hope all of us are
still around in 6 months to talk about it.
32/53: hmm
Name: Ashman
Date: Sat Jan 20 07:50:12 1990
this is getting truly annoying..
33/53: Phrack, etc...
Name: Phobos Kutter
Date: Sat Jan 20 09:30:10 1990
RE: phrack...
I sounds to me as though the "SS" was really reaching.  I mean, to get them on
"copyright" violations is sort of like that had such a hard on for the
Phrack boys it was as though they went after gangsters with income tax evasion!
What is the legality of them spreading all of this information that they have
obtained throughout the world?  I mean, if they got names, etc.., isn't that
private information?  Do they or wl they publish all of it to the maniacs out
35/53: Phrack and Pac*Hell
Name: Rip Torn
Date: Sat Jan 20 21:05:55 1990
A copyright infringement isn't all that major that the SS would bust them for
just that.  I'm willing to bet they intercepted something bigger than a simple
copyright piracy case.  Although they would be interested since the information
is being transported across state (and quite likly) national boundries.
About the San Jose case, sounds like they just got access to the TAN (Technical
Access Network), and went from there.  Along with their other antics, they'll
prob get a prison term, because they are really strict on the wiretap bit.  I
don't get the part about the false names and addresses.  The courts have said
in the past, you can just pick a name out of the blue and use it, and you can
give any kind of information (like a false address or phone number for
instance) as long as the documentation is not for an official purpose and is
not intended to defraud someone.
I noticed Peter Neumann in there, he's a guy to listen to, and many of you
might reconize him from the Risks forum on the net.  He is one of the few
public figures involved in computers that knows which way is up.
Phrack will most likly get a slap on the wrist, but will have a sober look at
the world, and won't be inclined to be as high profile as they were.
The San Jose case, I'm betting it'll turn high profile, and there will be alot
of pressure for a nice long lock up.
Most of this is based on my dealings with local, state, and federal law, as
well as experience I gain while working for the County of San Diego.
36/53: phrack
Name: Midnight Star
Date: Sat Jan 20 21:36:56 1990
I would think they knew of dealings between phrack & hackers/phreakers, but
they had to have some real evidence in order to get in, once they did, they
found much info that would make for a good prosecution... As any hacker knows,
its the little things that matter
37/53: The Bottom line.
Name: The Rap Master
Date: Sun Jan 21 10:05:38 1990
    The bottom line is..a crackdown.  We can now expect a crackdown because of
the shit with the virus,the boys in cali, and the phrack kids.... The phrack
boys were just the start, i'm sure of it.. Unfortunately with all of this in
the news now, they will be able to get more government money to combat hackers.
And thats BAD fucking news for us.  I think they are going after all the
"teachers" etc/.. people who educate others into this sort of thing.. (which i
didn't need to say because it's obvious after what happened to Andar & Geric) i
wonder if they think that maybe these remote cases are linked in any way.. The
only way they can probably see is that we are hackers.. And so that is where
their energies will be put.. To stop ALL hackers..and stop people BEFORE they
can become a threat.. After they wipe out the educators that is.  Just a
38/53: Phrack
Name: Phobos Kutter
Date: Sun Jan 21 13:09:20 1990
It's a scary thought... - How did the intercept the information?? -
An information, ok, that's legal.... but how private is electronic mail?  Per
haps we need a sub board to discuss some of these LEGAL issues...
39/53: ripper
Name: Magnum Guru
Date: Sun Jan 21 17:12:22 1990
Well, I know PT & NT pretty well, and they've been paranoid about doing
*anything* illegal. I think the SS just had a hard-on to hassle them and this
was the only excuse that they could come up with...
41/53: Phrack
Name: The Mogul
Date: Mon Jan 22 01:19:32 1990
I'm not sure what to make out of the Phrack.  I think the SS, FBI, and whoever
has been waiting to bust them so long on ANYTHING that they waiting untill PT
NT crossed the line in any way.  I mean, hell..PT and NT were paranoid, and
they suspected everything..so they stopped..and the SS, FBI and whoever had
nothing to go on...
Rap Master was right, PT and NT were "educators"..a lot of hacks/phreaks looked
up to them..maybe the SS and FBI thought that maybe if they couldn't get the
little guys, then to go for "the big guys"..(same philosophy of the drug war,
eh?  Get the dealers, not the users?)  Oh well..
I dunno..thats just my opinion... Shit, the public doesn't understand us enough
for the government to declare war on us...  Maybe if you collect everyones
opinion on this, we can come to ONE conclusion..
42/53: Phrack
Name: Viking Warrior
Date: Mon Jan 22 02:40:13 1990
Geric was very upset when I talked to him a few days ago.
The Secret Service had been to their school and had taken all information off
of their public accounts through the university...this included the ENTIRE
phrack internet mailing list, future files, old issues, various lists of info
on people they knew, etc...
Geric assured me that they didn't go through his room, or even mess with his
pc, but that didn't matter, as they got enough from the system at school.
The problems stem from various articles published through Phrack, most
specifically an article dealing with E911 that was written by The Prophet.
They have said that this was stolen from a computer system, and was accepted
and distributed knowing that it was illegally obtained propriatary information.
(The Prophet was one of the 3 LOD members busted this summer in Atlanta)  This
led to various questions dealing with LOD in general and a great deal of hazing
towards Geric.
For the most part, they pulled the same crap:  "We know what you did, so if
you're smart you'll talk, or we'll make your life shit."  And the other
approach, "Look, we know you're a smart kid with a bright future and we really
 wouldn't want to see you fuck things up."  Basic cop bullshit.
Geric was visited first by 3 agents, and Andar was supposedly to be visited the
following day.  (They are at different schools now)
They were interested in the Telenet Directory, The EFT Files, which by now,
everyone knows that I wrote, since they had been grabbing the boys e-mail.
That pisses me off greatly, as Electronic Mail is supposed to be covered under
the same protection as regular mail now, or so I understood.  I thought it was
a felony to interfere with peoples mail.  Can you commit a felony, to stop a
suspected one from occurring?  I hope not...hell, maybe Noriega is in charge
In any case, I think I'm in for a world of shit...
43/53: MY feelings about this fucked up situation
Name: Viking Warrior
Date: Mon Jan 22 03:31:01 1990
I do not live in a fascist country...or so I thought.
INformation is withheld, people are threatened daily by an elite group of
Government thugs who operate above the law, hell, what do you call that kind of
I'm growing more and more pissed by the minute...if I do get nabbed, which I
semi-expect to, so you SS boys take a good look at this, I am dangerous.  Maybe
not in a physical manner, although I'm kinda suicidal, and don't know how I'll
be on any given day, and I've only tried to kill my roommate once with a big
knife, and I've only broken wine bottles over two people...
But, I am dangerous in that I'm quite eloquent and VERY outspoken on topics
about which I feel strongly.  Guess what?  I kinda have a personal leaning
towards computer crime.  Think carefully about reprocussions world-wide when
reporters find out just how insecure your precious Internet is, or think about
the stock fluctuations on Fortune 500 companies when their shareholders find
out just how easily the company could be shut down for a few days with a few
keystrokes, or consider the implications following just a few choice comments
about the lack of security at large banking institutions...hell, How fucking
skilled does someone have to be to sit on a nua and capture every fucking Saudi
Visa?  (No offense P) but that shit is totally ridiculous.  Security is
pathetic, and the ones who can fix it, or at least point it out are suppressed,
and placed in jail.
Fuck that.  If that's what you expect to do to me, then you had better be
prepared to blow my fucking head off when you kick in the door, because I will
be heard.
47/53: well
Name: Ashman
Date: Mon Jan 22 09:21:39 1990
as long as nothing illegal is not posted.. the board is ine.. well... All i
have to say is that i ss/eds/or in my case CIA start playing dirty.. we have
been very nice in general about everything.. In act I cannot think o any time
when i have bought a system down.. But i it comes to it... we can fight ire
with ire.. <add f's where chars are missing.. i gotta get a new keyboard..> coz
i seriously agree with erik.. and when you guys start breaking the law to get
at us... well.. what the hell is the law or... i never liked the damn thing
anyway.. jesus.. as a final note... i will set up some sort of insurance... not
just or myself... but or anyone who needs it... and cant provide it or
themselves.. we can play below board just as much as any authorities can... so
49/53: dumb feds
Name: Silver Hawk
Date: Mon Jan 22 14:11:13 1990
Kill 'em all..as I like to say.  Seriously, what can they prove if you are a
safe hacker?  (hacking via outdials, phreaking with divertors only..no codes
etc.  nothing traceable)  They can't prove a damn thing.  So what do they do,
but nail you on something trivial like copyright violation.  All that shows is
that they have such a weak case that there is nothing solid to bust on.  Enough
rambling for this paragraph...
What we need to do is set up a hackers network where everyone has their hands
in a few systems.  That way, we have this sort of insurance that Phoenix talked
about:  if one hacker gets busted 2 systems _die_.  2 hackers get busted 4
systems bite the dust.  3 hackers...9 systems.  They need to quit messing with
people who wouldn't otherwise be harmful to the computer world.  I know there
are freeloaders around that get their kicks from trashing Apple][ boards and
unixes, but this doesn't represent the majority of the hacker population.  It
sure doesn't represent me!
50/53: busts
Name: Midnight Star
Date: Mon Jan 22 15:33:56 1990
I don't think that would be a very wise idea... It would just cause the
"authorities" and the general public to look toward us as destroyers, not
explorers... The ONLY times I have killed a system is when I really get pissed
off that the sysop keeps changing all the operator passwords (well... so maybe
i am a little malicious at times, but not like some people on this board)
51/53: Arg...
Name: Viking Warrior
Date: Mon Jan 22 18:22:55 1990
Wiping out systems as a means of retribution, or vengeance for a fellow
hacker's bust is NOT a good idea.  You cannot take a bully approach when
dealing with the world biggest bully (The US Government)  you will lose.
You have only one manner of defense, and that is to outsmart your opponent, or
to publicly humiliate him when faced with immediate danger.
Numb ->117  (51u7u2k2-117)
 Sub ->busting hackers
From -> (#227)
To   ->
Date ->02/08/90 08:58:00 PM
Reading the previous msgs. about the legion of doom and the possible prison
term of 32 years infuriates me.  sure, what those dudes did is not right, but
lets keep their crime in perspective.  they stole some shit off of a computer
system which was online and available to the public.  ok, most of the public
doesn't know how to get stuff like that, but the fact that they did get it
means it could be considered available.  the phone company surely knows of
phreakers, and that these people can be quite clever, therefore they knew the
information could be had.
30 years in jail for a fucking program, come on!!!  people are killed and the
murderers get less.  i realize that they probably won't get 30 years, but just
the possibility of getting it is outrageous.
Numb ->117  (51u7u2k2-117)
Sub ->Reply to: busting hackers
From -> (#321)
To   ->all
Date ->02/09/90 02:59:00 AM
    32 years for printing a publication. Hey you guys think there is some
issues of freedon of press or speech here. No probabably not because of the
subject matter but anyway It does seem kind of harsh considering there are alo
of other more important things to bust assholes for like murder and drug
smuggling. Its just another waste of tax payers money just like trying to
eleminate abortion. Who gives a fuck if you can't bring a kid into this world
right then there should be a choice. Too many people in this world anyway.
Numb ->118  (51u7u2k2-118)
 Sub ->Reply to: Reply to: busting hackers
From -> (#70)
To   ->J CRAZY
Date ->02/09/90 03:12:00 AM
Numb ->119  (51u7u2k2-119)
 Sub ->Reply to: busting hackers
From -> (#450)
To   ->
Date ->02/09/90 06:58:00 AM
The prison sentence..or the one that they face is quite high! That is more
than they give murderers/rapists and any other hard crime! I'm not saying that
they should go scot free,but lets be realistic and give a sentence that does
fit the crime. Whatever 31 years is way to long.
Numb ->120  (51u7u2k2-120)
 Sub ->stuff
From ->  (#75)
To   ->folks
Date ->02/10/90 03:00:00 AM
I don't think they're actually being PROSECUTED for publishing the information
they just play up the fact that the information was distributed in their cop
press releases to build public antipathy towards the suspects... Generic peopl
tend to think very highly of things like 911 that shouldn't be "monkeyed with"
so when they hear that kids are spreading "confidential" information about
those systems around, they get afraid and are sympathetic to prosecution.  The
only charges I can imagine are related to 'breaking and entering' into the
Bellcore computer.
To the best of my knowledge, there is no precedent for a "clear and present
danger" prosecution against publication of information on law enforcement
procedures.  A successful one, anyway.
                                * * * * * * *
The following came across the wires from a member of LoD explaining his view,
which contrasts remarkably from "official" media descriptions. The bottom line
is that it seems like the pheds are engaging in a witch hunt of sorts and
whether they can make charges stick is irrelevant for the Heavy Hasslers with
the power.
                         -< Life, The Universe, & LOD >-
To set the record straight, a member of LOD who is a student in Austin and who
has had his computer account at UT subpoenaed by the DA out of Chicago because
of dealings with the above happenings:
My name is {deleted}, but to the computer world, I am Erik Bloodaxe.  I have
been a member of the group known as Legion of Doom since its creation, and
admittedly I have not been the most legitimate computer user around, but when
people start hinting at my supposed Communist-backed actions, and say that I
am involved in a world-wide consipracy to destroy the nations computer and/or
911 network, I have to speak up and hope that people will take what I have to
say seriously.
Frank, Rob and Adam were all definately into really hairy systems.  They had
basically total control of a packet-switched network owned by Southern Bell
(SBDN)...through this network they had access to every computer Southern Bell
owned...this ranging from COSMOS terminals up to LMOS front ends.  Southern
Bell had not been smart enough to disallow connections from one public pad to
another, thus allowing anyone who desired to do so, the ability to connect to,
and seize information from anyone else who was using the network...thus they
ended up with accounts and passwords to a great deal of systems.
This was where the 911 system came into play.  I don't know if this system
actually controlled the whole Southern Bell 911 network, or if it was just a
site where the software was being developed, as I was never on it.  In any
case, one of the trio ended up pulling files off of it for them to look at.
This is usually standard proceedure: you get on a system, look around for
interesting text, buffer it, and maybe print it out for posterity.  No member
of LOD has ever (to my knowledge) broken into another system and used any
information gained from it for personal gain of any kind...with the exception
of maybe a big boost in his reputation around the underground.  Rob took the
documentation to the system and wrote a file about it.  There are actually two
files, one is an overview, the other is a glossary.  (Ray has the issue of
PHRACK that has the files) The information is hardly something anyone could
possibly gain anything from except knowledge about how a certain aspect of the
telephone company works.
The Legion of Doom used to publish an electronic magazine called the LOD
Technical Journal.  This publication was kind of abandoned due to laziness on
our part.  PHRACK was another publication of this sort, sent to several
hundred people over the Internet, and distributed widely on bulletin boards
around the US.  Rob sent the files to PHRACK for the information to be read.
One of PHRACK's editors, Craig, happened to be the one who received the files.
If Rob had sent the files to one address higher, Randy would have been the one
who would probably be in trouble.  In anycase, Craig, although he may have
suspected, really had no way to know that the files were propriatary
information and were stolen from a Southern Bell computer.
The three Atlanta people were busted after having voice and data taps on their
lines for 6 months.  The Phrack people were not busted, only questioned, and
Craig was indicted later.
What I don't understand is why Rob and Craig are singled out more often than
any other people.  Both of them were on probation for other incidents and will
probably end up in jail due to probation violations now.  Frank and Adam still
don't know what is going on with their cases, as of the last time I spoke with
The whole bust stemmed from another person being raided and rolling over on
the biggest names he could think of to lighten his burden.  Since that time,
Mr. William Cook, the DA in Chicago, has made it his life's goal to rid the
world of the scourge of LOD.  The three Atlanta busts, two more LOD busts in
New York, and now, my Subpoena.
People just can't seem to grasp the fact that a group of 20 year old kids just
might know a little more than they do, and rather than make good use of us,
they would rather just lock us away and keep on letting things pass by them.
I've said this before, you cant stop burglars from robbing you when you leave
the doors unlocked and merely bash them in the head with baseball bats when
they walk in.  You need to lock the door.  But when you leave the doors open,
but lock up the people who can close them for you another burglar will just
walk right in.
If anyone really wants to know anything about what is going on or just wants
to offer any opinions about all this directly to me, I'm
[email protected]
but my account is being monitored so don't ask anything too explicit.
***  Pirate Magazine Issue IV  /  File 4 of 10  ***
***  >Zipping and Archiving<                     ***
Swapping warez requires considerable zipping, unzipping, and rezipping, and we
offer the following tips to help assure that we get the most out of our ZIP
programs and procedures. ALthough most boards will accept any reputable
compression, there's not much disagreement on which compression method is the
best: Phil Katz's PKZIP is the standard. It's fast, tight, and offers many
options.  Although some, such as ICE 1.14, may have higher compression ratios,
no other program has the all around power and utility as PKware.
Unfortunately, too many warez hobbyists don't use PKZIP to it's full potential,
and this can result in lost files, confused archives, or incomplete files on
uploading. We offer the following tips to improve zipping procedures.
1. Always zip from the original disks or programs when possible rather then do
a file dump and then rezip. In a file dump, it is easy to forget to include
2. *ALWAYS* put a zip comment in each zip file so you (or others) know what
that file is. If you are zipping up a program called "LAWRITE" that has 6
disks, with the first being the program disk, type this command:
    PKZIP LRT21-1  (for "Law Rite, ver. 2.1, disk 1). Then, type:  PKZIP -Z
    LRT21-1   (this will allow a zip comment) and type at the prompt something
    like: "LAWRITE BY MACON, VER. 2.1, PROGRAM DISK  (1/6).  This lets you (or
    whoever) know what the program is, what the disk is should the installation
    procedure ask for the specific disk, and give you the version so it won't
    be confused with an upgrade.
3. Experienced hobbyists keep their backup zip files as they come
OTHER FILES.**  There are two ways to do this.  The first is to INSTALL a
complete program, including all options, so a complete program exists on hard
disk. Then, we go into each subdirectory and zip the files. For example, if
LAWRITE has a main directory called LAWRITE and three subdirectories called a)
FILES, b) LAW, and c) DICTNRY, you first go into each of the three
subdirectories and zip the the files with the command:  PKZIP -M FILES (or LAW
or DICTNRY).  This will zip all the files in that directory and remove them
after zipping. This saves the need to delete files individually.  THEN: Go into
the LAWRITE directory and type the command:
  PKZIP -m -P -r LRT21 (note lower case m & r and UPPER case P)
This will zip the entire program, Law Rite 2.1. The -m command
removes individual files, the -P switch retains the file's original
path, and the -r recurses the subdirectories. For a helpful article on
this, even for experienced users, see Steven J. Vaughan-Nichols:
"Zippity PKzip" in PC COMPUTING, Feb., 1990 (p. 96-99).
When finished, you should have one main zip file that contains all the files
from the LAWRITE directory and three additional zip files from the three
subdirectories. BE SURE TO ADD A "README.NOW" note and explain that, when
unzipping, these directories and subdirectories should be created, unzipped in
the LAWRITE directory (with the PKUNZIP command). If you have a large program
with several zip files in it (ALWAYS RUN THE PKUNZIP -v *.zip command to see
what's in a zip file before unzipping), you might first create subdirectoriese
named after those zip files just to be safe, and keep your fingers crossed that
whoever zipped it knew what they were doing.  That's why it is crucial to name
those other zip files exactly as the subdirectory appears.
The disadvantage of this kind of zipping for hobbyists is that when unzipping,
the files will be from an installed program and not the original disk. This
means that if unzipped on a different computer, some needed files may be
missing. Besides, it's always helpful to have a second backup that
doesn't take much space that is complete. That's why we prefer
to keep zips off the original disks, because you never know what
kind of system it will be unzipped on, and installation programs
rarely copy over all files, but only those needed during the
initial configuration.
We suggest creating a test directory with a few subdirectories and placed some
short, unneeded files in them and then spending an hour practicing with the
PKzip/UNzip commands until you are familiar with them. You might also consider
experimenting with various batch commands, and use wildcards to create an
auto-zip program that saves typing time.
There have been reports that ICE 1.14 is a hacked version of LHarc, but this
does not appear true. A nice summary of other compression programs appeared in
PC COMPUTING (see above):
FOUR OTHER DATA COMPRESSORS PKzip stands above other data-compression shareware
in terms of overall performance. Here are some more very popular utilities:
ARC 5.02. Long the industry standard, Arc 6.02 has deteriorated into a
middle-of-the-road performer in terms of speed and compression ratios.  It has
the bad habit of aborting a job and leaving a file half-compressed if it
doesn't have enough disk space to complete the operation....
ICE .14. One of the newest entries in the data-compression arena, Ice (also
known as LHarc) emerged as a popular shareware program in Japan.  It has the
highest compression ratio of any program mentioned here, but it's painfully
slow--and very difficult to use, in part because of its limited documentation.
Ice .14 is currently available on GEnie.
PAK 2.1.  Though it's been around for a while, Pak has never had the prominence
of either Arc or PKzip, mostly because its performance lags behind that of the
other two programs. Pak excels at handling multiple file specifications and can
create and convert files read by Arc.
Zoo 2.01. Neither the fastest nor the most efficient compression utility
available, Zoo offers some advantages. This shareware program allows you to
selectively extract multiple generations of the same file--a terrific feature
for programmers and writers. It also spans several operating systems, including
Xenix, VAX/VMS, and Amiga DOS, so that you can archive files across platforms.
It's a difficult program to master, and the documentation isn't much help in
figuring it out.
***   Pirate Magazine Issue IV / File 5 of 10   ***
***  Cracking Tips by NICODEMUS KEEZARVEXIUS    ***
***      (and Company of Wolves)                ***
Company of Wolves and ace cracker Nicodemus Keezarvexius will appear here
periodically in their own corner. A few of the following were printed last
issue but we thought we'd reprint them to keep CoW's work in a single file. Any
suggests or requests, you can reach NK at PC-EXEC (414-789-4210) or the CoW
board (301-791-1595).
In this file: Unprotects for
                    BOP'N WRESTLE
                    IMPOSSIBLE MISSION II
                    MIGHT AND MAGIC
                    POOL OF RADIANCE
                      THE COMPANY OF WOLVES
                    MINDSCAPES BOP'N WRESTLE
1. Norton Utilities (or similar program)
2. A copy of the file Bop.exe from your original disk.
3. A bit of your time
First load one of the above file into Norton.
Then search for the string B8 00 19 CD.
Change these bytes to 31 C0 EB 2F.
Save the changes
Rename Bop.exe to Bop.try
type E CS:96D [return] 31 [space] C0 [space] EB [space] 2F
Save the changes with the W command
Exit debug
Rename Bop.try back to Bop.exe
Enjoy the game on any drive you choose to.
The program will now skip the check for copy protection all together. The first
change (31 C0) is an xor ax,ax. The Second (EB 2F) jumps to a return. (just in
case you wanted to know)
If you have any problems with any of the patches above check the date of the
file BOP.EXE on your original disk A for the date 11/06/87. If your file has a
different date then they probably changed the copy protection method and your
out of luck with this patch.
Norton Utilities (or simular program).
A copy of the file Karateka.exe from your original disk.
A bit of your time.
First load KARATEKA.EXE into Norton.
Then search for the string E8 81 14.
Change the string to 90 90 90.
Skip ahead 4 bytes to the string 75 2D.
Change the 75 to EB.
Search for the string E8 74 14.
Change the string to 90 90 90.
Once again skip ahead 4 bytes to the string 75 20 and Change the
75 to EB.
Write the changes.
The program will now skip over the part where it looks for the copy protection
but you aren't done yet.
Now search for the string B2 00 B4 0E CD 21.
Change all of these bytes to 90.
Write the changes.
Now the program will play on whatever drive you want.
If you have any problems with any of the patches above check the date of the
file KARATEKA.EXE on your original disk for the date 07-01-87. If your file has
a different date then they proabably changed the copy protection method and
your out of luck with this patch.
                             MISSION IMPOSSIBLE II
                      THE COMPANY OF WOLVES
Norton Utilities (or simular program).
A copy of the game file from your original Manhunter disk.
IM2_CGA.EXE if you have CGA graphics,IM2_TAN.EXE for Tandy,
A bit of your time.
First load the appropiat file into Norton.
Search for the string A2 CA 99 A2 28 9C.
Change these 6 bytes and the next 6 bytes (total of 12) to 90's.
Write the changes.
Then search for the bytes CD 21 B9 01 14.
Change the CD 21 to 90 90.
Write the changes.
Now search for F6 C4 10.
Change the byte immediatly following the 10 (75) to EB.
Write the changes.
Next search for the bytes BB 09 9A 8B CD.
Change the 2 bytes before this string (72 xx (xx is different for
some of the above files)) to 90 90.
Write the changes.
Now search for B9 10 00 F3 A7.
Change the 2 bytes following this string (75 xx) to 90 90.
Write the changes.
Now search for B9 04 00 F3 A7.
Change the 2 bytes following this string (75 xx) to 90 90.
Write the changes.
Now search for B8 09 02 CD 13.
Change the CD 13 to 90 90, and the byte following it (73) to EB.
Write the changes.
Now the check for the copy protection (a bad sector on disk A) is disabled. If
you don't intend to use the game on your hard disk you can now play the game
from and DISKCOPYed disk. If you want to play this game from a single directory
on any fixed disk follow the procedure below.
2. FIXING THE PROGRAM TO PLAY FROM 1 DIRECTORY: Once again load the appropiate
EXE file into Norton.  Search for the string CHARSf.  Basicly you will type
the file name after the CHARSf over CHARSf.  For example if the full string is
CHARSfTHISFILE.A  to THISFILE.A(00) (Note. the end of the file name is denoted
by a 00) hex). Be sure to look to see if the . after the file is indeed a . or
a 00 hex because some files have extentions and some don't and make sure that
you end the name you just typed over ends with a 00.
Write the changes.
Repete the prodcedure until you reach the end of the file.
Next do the same thing exept look for the string ROOMSf.
Now when you copy the game just copy all of the files from all directories from
your original disks to the directory on the hard drive you intend to use. You
can now enjoy the game without flipping thru floppy disks.
                                MIGHT AND MAGIC
1. Norton Utilities (or similar program)
2. A copy of the file MM.EXE from your original disk.
3. A bit of your time
First load the file MM.EXE into Norton.
Then search for the string CD 13 72 EE.
Change these bytes to 90 90 90 90.
Write the changes.
Next search for the string CD 13 72 05.
Change these bytes to 90 90 90 90.
Write the changes.
Next search for the string CD 13 72 05.
Change the CD 13 to 90 90 and the 72 05 to EB 05.
A few bytes after this is a 75 F6, change these bytes to 90 90.
you will have to do this 4 more times here are the jumps to look
for: 75 20, 75 18, 75 10, 75 08. These will all be 7 bytes apart,
change them all to 90's.
Once again their will be another jump 7 bytes after the last one
you changed (74 03), change it to EB 03.
Write the changes.
The program will now skip the check for copy protection all
If you have any problems with any of the patches above check the
date of the file MM.EXE on your original disk 1 for the date
11/18/87. If your file has a different date then they probably
changed the copy protection method and your out of luck with this
                      FOR POOL OF RADIANCE.
Norton Utilities (or similar program)
A copy of the file start.exe from your pool of radiance disk
A bit of your time
First load START.EXE into Norton
Then search for one of the key words from the code disk
Change the 6 letters of each word to whatever you want (make then
all the same for convince)
Save the changes
I just completed a new fix which will completely skip over the part where the
program asks you for the word from the code disk.  For Norton Utilities users
search for the string 9A 25 00 1D 00, change all of these bytes to 90's. For
all of you Debug fans out there rename the file START.EXE to say 123.AAA (or
whatever), then type S cs:100 900 9A 25 00 1D 00. It should show a match at
xxxx:05D7. Change the bytes by typing the following: E 05D7 EenterL, 90 EspaceL
90 EspaceL 90 EspaceL 90 EspaceL 90 EenterL.  Then write the file with the W
command and quit Debug. Now rename the file you just fixed to START.EXE and
your done.
I have just been made aware of another version of start.exe dated 12/12/88. To
get around the copy protection for this version with Norton search for the same
string listed above, with this version change the first four bytes to 90's and
leave the 00 alone.
Thanx Karl.
Copy the file CHARFIX.EXE (included in this fix) into the directory where your
saved games reside. Change to that directory. Run the program, it is self
If you have any problems with any of the patches above check the
date of the file START.EXE on your original disk A for the date
10-26-88. If your file has a different date then they probably
changed the copy protection method and your out of luck with this
                             MINDSCAPE'S GAUNTLET
1. Norton Utilities (or similar program)
2. A copy of the file's gintro.exe and gprog.exe from your
original disk.
3. A bit of your time
First load one of the above files into Norton.
Then search for the string F3 A7.
Change the byte immediately following (74) to EB.
Continue the search and once again change the 74 to EB.
Save the changes
Repeat the steps above for the other .EXE file.
For you Debug fans rename each of the two files to 1.aaa and 2.aaa
respectivaly.  Search (the S command) for F3 A7, you should get at least 3
matches.  You will need to unassemble each of the matches, the first copy
protection match should read REPZ CMPSW, JZ 2D96, ect..., and the second REPZ
CMPSW, JZ 2DB1, ect... With the E command using the FULL address of the JZ
commands change the 74's to EB's.  Write the files with the W command and
repeat the process for the other file.  When finishes erase Gintro.exe and
Gprog.exe and rename 1.aaa gintro.exe and 2.aaa gprog.exe.
In this version of the program will still look for the copy protection (which
is a sector at the end of the hard disk that the install program writes then
marks bad to prevent overwriting to that sector) but will continue the program
as if the comparison (F3 A7) was successful.
If you have any problems with any of the patches above check the date of the
file GINTRO.EXE on your original disk A for the date 03/25/88. If your file has
a different date then they probably changed the copy protection method and your
out of luck with this patch.
                 How to fix copy protection from
                      Mindscape's Paperboy.
1. Norton Utilities (or similar program)
2. A copy of the file's papercga.exe, papercgt.exe, and
papercg2.exe from your original disk.
3. A bit of your time
First load one of the above files (whichever applies to your graphics, papercga
for cga graphics, papercgt for tandy graphics , or papercg2 for ega graphics)
into Norton.  Then search for the string 3D 33 00 75 FE.  Change the 74 FE to
90 90.  Save the changes
The program will still look for the copy protection files DEMAA.COM and
DEMAB.COM but will skip the instruction that locks up the system (74 FE (jump
back two bytes if comparison is not zero)).
If you have any problems with any of the patches above check the date of the
file PAPERxxx.EXE on your original disk A for the date 06/17/88. If your file
has a different date then they probably changed the copy protection method and
your out of luck with this patch.
***  Pirate Magazine Issue IV  /  File 2 of 10  ***
***  Response to a U's Anti-Piracy Policy       ***
The following response to a University anti-piracy announcement was downloaded
from a midwest BBS. We reprint it without permission, and it is apparently a
draft. We thought the comments were sufficiently interesting to pass on.
                         Jim Thomas and Gordon Meyer
                              (February, 1990)
      %Jim Thomas is an associate professor in Sociology.
      Gordon Meyer received his M.S.   in Sociology in
      1989.  They are currently researching the
      computer underground from which the data for this
      note are drawn.%
      Draft copy: Uploaded to PC-EXEC for comments. Not to
                  be cited without permission
The university policy against  computer software piracy has been widely
publicized,  including in a recent issue of Computing News (December, 1989).
There is no question that the university must protect  itself against actions
of the NIU  community for which it could be held legally accountable.
However,  based on our current research of the "computer underground" and the
activities of "phreaks, hackers,  and pirates," we find no evidence to
support the many value judgments  offered in the rationale circulated by the
Our intent here is neither to justify software piracy nor to challenge
University policy.  However, because the area of copyright and  "computer
abuse" law is so new, and because these laws tend to rely on media and other
depictions of "computer underground" activity as criminally sanctionable, it
is important to counter conceptions  of underground activity that seem
unsubstantiated by evidence.
The university's normative justification of the University policy can be
summarized in three broad principles:
 1.  Software piracy shows disrespect for the intellectual work and property
     of others and subverts the mission of higher education.
 2.  Software piracy deprives authors of a "fair return" for their work.
 3.  Software piracy is unethical.
The data from  our research do not support  these judgments for several
First,  software pirates make a  clear distinction between "pirates," persons
who collect and  share software as hobbyists akin to stamp collectors,
and "bootleggers." Bootleggers are persons who distribute software for
material gain.  Pirates may copy and install programs, but generally their
goal is to collect, and they derive satisfaction  from running programs for
which they have no need and that they will rarely, if ever, use.
Second, software pirates, despite the claims of the SPA (Software Publishsers
Association) report spending considerably more money purchasing software than
the average user. Many of these purchases are for trading,  and there is  a
strong ethos in the pirate world that if one uses a program, one purchases
it.  Reasons for purchasing include documents,  information  and discounts on
updates, and online technical support.  It is quite common for pirates to
purchase programs identical  to those they have already obtained.
Third,  the "no  return" policy of most  software merchandisers makes it
difficult for potential buyers  to assess the ability of a program to meet
their needs or work adequately on their system.  Piracy creates an informed
public  by assuring that programs are available for pretesting, by providing
a pool of reasonably literate users to  publicly discuss whether Word
Perfect is better    than XYwrite or WordStar,  and to even offer
technical assistance to those who have purchased a program.  In this sense,
the "unauthorized" copying of software can be  seen as contributing to the
university mission of expanding knowledge,  of preventing exploitation of
consumers through education, and above all, for expanding computer literacy
by contributing to  the free flow of information.
Fourth, pirates spend a considerable sum on their hobby.  One of the most
active topics of discussion among pirates is that of the need to continually
upgrade,  the continual purchase of diskettes on which to store programs,
and with the popularity of 9600 baud modems to invest between $600-900  for
telecommunications hardware.   Because most pirates  exchange software across
telephone lines,  piracy has benefitted telephone companies because of the
growth of Bulletin Board Systems (BBSs).  Our data indicate that an average
monthly phone bill of $200 or more is common,  and active pirates easily
double that cost.
Fifth, there is simply no evidence to corroborate that piracy deprives
authors of revenue.  Our data suggest that pirates annually purchase no less
than three times  the 1.5 programs the SPA estimates for the "average" user.
Further,  few students or faculty could afford the price of Dbase 4 and
other large programs,  and few people could afford to spend several thousand
dollars a year on computer games. Programs would simply remain unpurchased.
However, piracy creates an interest, expands consumer literacy,  and
contributes to a "user culture" that  benefits the industry as a whole.  We
suggest that without such a culture,  there would be less interest in software
and, consequently, less revenue for authors.
Sixth,  the claim that piracy is unethical is usually a glib one made without
a strong rationale. Although we make no metaphysical claims here,  we do
suggest that  piracy and current attempts to criminalize it are far to serious
to be so glibly stigmatized, and the issues require far more research and
The rapid  growth of computer and  telecommunications technology brings with
it new questions of the nature of "private property," free and open access to
information and resources,  and definitions of "authorship." Few among us
condone any form of predatory behavior.  However,  we find equally disturbing
the tendancy to perpetuate claims and definitions that should be brought into
a public forum for debate rather than  simply asserted from the position of
authority that leads to criminalization.
***  Pirate Magazine Issue IV  /  File 6/10     ***
***  PTL Cracking tips (reprinted)              ***
{This file has been around for awhile, but it's sufficiently good
that it deserves reprinting (eds.)}
IN THIS FILE: Unprotects for:
     Title:         Case Study: A Colorful CLS
     Title:         Cracking On the IBM PC Part I
     Title:         Cracking On the IBM PC Part II
     Title:         MEAN-18 UnProtect For CGA/EGA Version
     Title:         Space Station Oblivion Crack
     Title:         F-15 Unprotect
     Title:         BATTLEHAWKS-1945 Doc Check Crack
     Title:         Yeager's Advanced Flight Trainer
     Title:         Microsoft Flight Simulator 1.00 Unprotect
                              Version 1.3
                            Specular Vision
                          Special Thanks to:
                            Mr. Transistor
                           The Grand Elusion
                            Banzai Buckaroo
                      Another fine PTL Production
                        Call The Myth Inc. BBS
     ------------------       (Page  Numbers will be aprox.  until
                                  final version is finished)
          i.        Table of Contents                         2
          ii.       Introduction                              3
          I.        How to Crack                              4
                      Debugging DOS                           4
                      Cracking on the IBM PC Part 1           7
                      Cracking on the IBM PC Part 2          11
          II.       Example Cracks                           14
                      Mean-18 by Accolade                    14
                      Submarine by Eypx                      18
                      Space Station Oblivion by Eypx         22
          III.      Removing Doc Check Questions             23
                      F-15 Strike Eagle by MicroProse        23
                      Battlehawks 1945 by Lucasfilms         25
                      A - Interrupt Tables                   36
                          (This will be an add-on file)
01 90 FE C5 80 FD 0C
04.   After modifying the bytes,  write the modified  file
E1 90 CD 20
     Comments Key:
     Comments in the following material will be made by one of the
     following  and the lines that enclose the comments  show  who
     made the comment.
     Specular Vision = -------------
     Mr. Transistor  = +++++++++++++
     Ironman         = |||||||||||||
     Special thanks to Mr.  Transistor, for coming out of "Retire-
     ment" to help compose this document.
     Let's start with a simple introduction to patching a  program
     using the DOS DEBUG program.  The following article will  in-
     troduce you to the basic ideas and concepts of looking for  a
     certain area of a program and making a patch to it.
     By:            Charles Petzold / Specular Vision
     Title:         Case Study: A Colorful CLS
       This article originally appeared in the Oct.  14,1986 Issue
     of PC Magazine (Vol 15. Num 17.). Written by Charles Petzold.
       The hardest part of patching existing programs is determin-
     ing  where the patch should go.  You really have to  make  an
     intelligent guess about the functioning of the program.
       As an example,  let's attempt to modify COMMAND.COM so that
     is colors the screen on a CLS command.   As with any type  of
     patch try it out on a copy and NOT the original.
       First, think about what we should look for.  CLS is differ-
     ent from all the other DOS internal Commands,  It is the only
     internal command that does something to the screen other than
     just write to it with simple teletype output.  CLS blanks the
     screen and homes the cursor.   Since it can't do this through
     DOS Calls (unless ANSI.SYS is loaded), it is probably calling
     the BIOS Directly.   The BIOS Interrupt 10h call controls the
     video,  and so the CLS command probably uses several INT  10h
     instructions.  The machine code for INT 10h is CD 10.
       (While  this  same method will work under  any  version  of
     PC-DOS,  Version 2.0 and later, the addresses I'll  be  using
     are from PC-DOS 3.1. Other versions of PC-DOS(or MS-DOS) will
     have  different addresses;  you should be absolutely  certain
     that you're using the correct addresses.)
       Load COMMAND.COM into DEBUG:
                    DEBUG COMMAND.COM
     and do an R (Registers) command.  The size of COMMAND.COM  is
     in  register CX.   For DOS 3.1's COMMAND.COM,  this value  is
       Now do Search command to look for the CD 10 bytes:
                    S 100 L 5AAA CD 10
     You'll get a list of six addresses, all clustered close to-
     gether.  The first one is 261D. You can now pick an address a
     little before that (to see what the first call is doing)  and
     start disassembling:
                    U 261B
      The  first INT 10 has AH set to 0F which is a Current  Video
     State  call.   The code checks if the returned  value  of  AL
     me  to get started.   Next we'll look at two other  articles,
     both written by Buckaroo Banzi.   These two articles  CRACK-1
     and  CRACK-2 give you an introduction to the  different  copy
     protection schemes used on IBM PC's, and how to find and  by-
     pass them.
     By:            Buckaroo Banzai
     Title:         Cracking On the IBM PC Part I
       For  years,  I have seen cracking tutorials for  the  APPLE
     computers,  but never have I seen one for the PC.  I have de-
     cided to try to write this series to help that pirate move up
     a level to a crackest.
       In this part, I will cover what happens with INT 13 and how
     most copy protection schemes will use it.  I strongly suggest
     a  knowledge of Assembler (M/L) and how to use  DEBUG.  These
     will be an important figure in cracking anything.
     INT-13 - An overview
       Many  copy  protection  schemes  use  the  disk   interrupt
     (INT-13).  INT-13 is often use to either try to read in a il-
     legally   formatted   track/sector  or  to   write/format   a
     track/sector that has been damaged in some way.
       INT-13 is called like any normal interrupt with the  assem-
     bler  command INT 13 (CD 13).  [AH] is used to  select  which
     command to be used, with most of the other registers used for
     INT-13 Cracking College
       Although,  INT-13 is used in almost all protection schemes,
     the easiest to crack is the DOS file.  Now the protected pro-
     gram  might use INT-13 to load some other data from a  normal
     track/sector on a disk, so it is important to determine which
     tracks/sectors  are  important to the protection  scheme.   I
     have  found  the best way to do this is to  use  LOCKSMITH/pc
     (what, you don't have LS. Contact your local pirate for it.)
       Use LS to analyze the diskette. Write down any track/sector
     that seems abnormal.  These track are must likely are part of
     the protection routine.   Now, we must enter debug. Load in
     the  file  execute a search for CD 13.   Record  any  address
       If no address are picked up,  this mean 1 or 2 things,  the
     program is not copy protected (right...) or that the check is
     in an other part of the program not yet loaded.   The  latter
     being  a real hassle to find,  so I'll cover it in  part  II.
     There is another choice.   The CD 13 might be hidden in  self
     changing  code.   Here is what a sector of hidden code  might
     look like
     -U CS:0000
     1B00:0000 31DB     XOR    BX,BX
     1B00:0002 8EDB     MOV    DS,BX
     1B00:0004 BB0D00   MOV    BX,000D
     1B00:0007 8A07     MOV    AL,[BX]
     1B00:0009 3412     XOR    AL,12
     1B00:000B 8807     MOV    [BX],AL
     1B00:000D DF13            FIST   WORD...
       In  this  section of code,  [AL] is set to DF  at  location
     1B00:0007.   When you XOR DF and 12,  you would get a CD(hex)
     for  the  INT opcode which is placed right next to a  13  ie,
     giving you CD13 or INT-13.   This type of code can't and will
     not be found using debug's [S]earch command.
     Finding Hidden INT-13s
       The  way I find best to find hidden INT-13s,  is to  use  a
     program called PC-WATCH (TRAP13 works well also).   This pro-
     gram  traps  the interrupts and will print  where  they  were
     called  from.   Once running this,  you can just  disassemble
     around  the address until you find code that look like it  is
     setting up the disk interrupt.
       An  other way to decode the INT-13 is to use  debug's  [G]o
     command.   Just  set  a breakpoint at  the  address  give  by
     PC-WATCH  (both  programs give the return address).   Ie,  -G
     CS:000F (see code above).   When debug stops,  you will  have
     encoded  not only the INT-13 but anything else leading up  to
     What to do once you find INT-13
       Once you find the INT-13,  the hard part for the most  part
     is over.   All that is left to do is to fool the computer  in
     to thinking the protection has been found.   To find out what
     the computer is looking for, examine the code right after the
     INT-13.  Look for any branches having to do with the
ny CMP to the AH register.  If a JNE or JC
      (etc) occurs, then [U]nassembe the address listed with the
     jump.  If it is a CMP then just read on.
       Here you must decide if the program was looking for a  pro-
     tected  track or just a normal track.   If it has a CMP  AH,0
     and it has read in a protected track,  it can be assumed that
     it  was looking to see if the program had  successfully  com-
     plete  the  READ/FORMAT of that track and that the  disk  had
     been  copied thus JMPing back to DOS (usually).   If this  is
     the case,  Just NOP the bytes for the CMP and the correspond-
     ing JMP.
       If  the program just checked for the carry flag to be  set,
     and it isn't,  then the program usually assumes that the disk
     has been copied. Examine the following code
           INT 13      <-- Read in the Sector
           JC 1B00     <-- Protection found
           INT 19      <-- Reboot
     1B00  (rest of program)
       The program carries out the INT and find an error (the  il-
     legally formatted sector) so the carry flag is set.  The com-
     puter,  at the next instruction,  see that the carry flag  is
     set  and know that the protection has not been  breached.  In
     this case, to fool the computer, just change the "JC 1B00" to
     a "JMP 1B00" thus defeating the protection scheme.
     NOTE: the PROTECTION ROUTINE might be found in more than just
           1 part of the program
         00   - Successful
         01   - Bad command given to INT
        *02   - Address mark not found
         03   - write attempted on write protected disk
        *04   - request sector not found
         08   - DMA overrun
         09   - attempt to cross DMA boundary
        *10   - bad CRC on disk read
         20   - controller has failed
         40   - seek operation failed
         80   - attachment failed
     (* denotes most used in copy protection)
     AH=2    Read Sectors
          DL = Drive number (0-3)
          DH = Head number (0or1)
          CH = Track number
          CL = Sector number
          AL = # of sectors to read
       ES:BX = load address
           AH =error number (see above)
               [Carry Flag Set]
           AL = # of sectors read
     AH=3 Write (params. as above)
     AH=4 Verify (params. as above -ES:BX)
     AH=5 Format (params. as above -CL,AL
                  ES:BX points to format
       For more information on INT-13 refer to appendix A.
     In part II,  Buck cover's Calls to INT-13 and INT-13 that are
     located  in  different overlays of the program.   This  is  a
     method that is used often.
     Cracking Tutorial II.
     By:            Buckaroo Banzai
     Title:         Cracking On the IBM PC Part II
       OK guys,  you now passed out of Copy Class 101 (dos  files)
     and have this great new game with overlays.   How do I  crack
     this one.  You scanned the entire .EXE file for the CD 13 and
     it's nowhere.  Where can it be you ask yourself.
       In  part II,  I'll cover cracking Overlays and the  use  of
     locksmith in cracking.   If you haven't read part I,  then  I
     suggest you do so.  The 2 files go together.
     Looking for Overlays
it can mean
     4 things.
          1:  The .EXE (though it is mostly .COM) file is  just  a
              loader for the main file.
          2:  The .EXE file loads in an overlay.
          3:  The CD 13 is encrypted &/or hidden in the .EXE file.
          4:  Your looking at the WRONG file.
       I  won't  discuss case 1 (or at least no here)  because  so
     many UNP files are devoted to PROLOCK and SOFTGUARD,  if  you
     can't figure it out with them, your stupid.
       If you have case 3, use the technique in part I and restart
     from the beginning. And if you have case 4, shoot your self.
       You  know  the program uses overlays but don't see  and  on
     disk?   Try looking at the disk with good old Norton's.   Any
     hidden files are probably the overlays.   These are the  ones
     we  are after.   If you still can't find them,  use  PC-WATCH
     (this program is a must!!! For all crackists.   Traps ALL in-
     Using PC-Watch to Find Overlays
       Start up PC-Watch and EXCLUDE everything in the left  Col..
     Search  the  right Col.  until you find DOS21 -  OpnFile  and
     select it.
          Now run the program to be cracked.
          Play the game until the protection is checked.
          Examine  you PCWatch output to see what file was  loaded
           right before it.
          This probably is the one holding the check.
          If not, go through all the files.
     You Have Found the Overlays
       Great,  now just crack the overlay as if it was a DOS file.
     You don't need to worry about .EXE file,  debug can write  an
     overlay  file.   Part I explains the basics of  cracking.   I
     suggest that you keep a backup copy of the overlay so if  you
     mess up,  and you will, you can recover quickly. Ah,  and you
      I find it useful,  before I even start cracking,  to analyze
  the  protected  disk to find and id  it's  protection.   This
     helps in 2 ways.   First,  it helps you to know what to do in
     order to fake out the protection.   Second,  it helps you  to
     find what the program is looking for.
      I  suggest that you get locksmith if you don't already  have
     it.   Check your local pirate board for the program.   I also
     suggest  getting PC-Watch and Norton Utilities 3.1.(Now  4.1)
     All of these program have many uses in the cracking world.
     OK,  now let's put some of this information into practice  by
     examining a few cracks of some common programs.   First we'll
     look at a Crack for Mean-18 Golf by Accolade.   Accolade  has
     been one of those companies that has a fervent belief in Copy
     Title:         MEAN-18 UnProtect For CGA/EGA Version
     This crack works by eliminating the code that tests for known
     bad  sectors  on the original diskette to see if  it  is  the
     genuine article or an illegal copy.   The code begins with an
     INT 13 (CD 13 HEX),  a DOS BIOS disk service routine followed
     a few bytes later by another INT 13 instruction.  The program
     then checks the returned value for the bit configuration that
     signifies the bad sectors and, if all is as expected, contin-
     ues on with program execution.
     The code that needs to be patched is in the GOLF.EXE file and
     in the ARCH.EXE file.  It is identical in both files and lies
     near the end of each file.
     In the following steps,  you'll locate the start of the  test
     code and patch it by replacing it with NOP instructions  (HEX
     90).   The  method described uses the DOS DEBUG  utility  but
     Norton's Utility (NU) works too.
     Copy  all  of the files from the MEAN-18 disk  onto  a  fresh
     floppy  using  the DOS COPY command and place  your  original
     diskette out of harm's way.
     Assuming DEBUG is in the A:  drive and the floppy  containing
     the files to be unlocked is in the B: drive , proceed as fol-
     First  REName  the  GOLF.EXE  file  so  it  has  a  different
     EXTension other than .EXE.
                    REN GOLF.EXE GOLF.DEB
     Next  load the file GOLF.DEB into DEBUG and displays the  "-"
     DEBUG prompt.
                    A:> DEBUG B:GOLF.EXE
     Search for the beginning of the code to be patched by typing:
                    - S CS:100 FFFF CD 13
     Searches  the file for the two byte INT 13  instruction.   If
     all goes well, two addresses should appear on the screen.
     XXXX indicates that the numbers preceeding the ":"  vary from
     system  to system but the numbers following the ":"  are  the
     same on all systems.
     The  next  step is to use the "U"  command  as  indicated  to
     un-assemble  a few bytes in order to verify your position  in
     the file)
                    - U CS:019C
     (Un-assembles  32 bytes of code.   Verify the  following  se-
     quence of instructions:
                    INT       13
                    JB        01E9
                    MOV       AL,[BX+01FF]
                    PUSH      AX
                    MOV       AX,0201
                    INT       13
                    POP       AX
                    JB        01E9
                    CMP       AL,F7
                    JNZ       01B5
     These are the instructions you'll be patching out in the fol-
     lowing step)
                    - A CS:019C
     This command assembles the new instructions you enter at  the
     keyboard into the addresses shown.  Beginning at CS:019C, and
     for the next 21 bytes, ending with and including CS:01B0, en-
     ter  the no op command "NOP" (90h) followed by a <return>  or
     <enter>.   Just hit <enter> at address XXXX:01B1 to  end  the
     assemble command.)
                    XXXX:019C  NOP <enter>
                    XXXX:019D  NOP <enter>
                    XXXX:01AE  NOP <enter>
                    XXXX:01AF  NOP <enter>
                    XXXX:01B0  NOP <enter>
                    XXXX:01B1 <enter>
     This just wipes out the section of code containing the INT 13
     Now  do  a HEX dump and verify that bytes 019C  through  01B0
     have been set to 90 HEX.
                    - D CS:019C
     If they have, write the patched file to the disk as follows)
                    - W
     This    writes    the    patched    file    back    to    the
     now,  it  can be run from any drive,  including  the     hard
     Now just [Q]uit or exit back to DOS.  This command can be ex-
 ecuted at any "-" DEBUG prompt if you get lost.  No modifica-
     tion will be made to the file on the disk until you issue the
     "W" command.
                    - Q
     The process is the same for the ARCH.EXE file but because  it
     is a different length, the segment address, (XXXX part of the
     13  instruction  at address XXXX:019C and the second  one  at
     XXXX:01A8 as before.
     You  will again be patching 21 bytes and you will start  with
     019C and end with 01B0 as before.   After doing the HEX  dump
     starting  at address 019C,  you again write the file back  to
     Debug will prompt you for the new value of CS with:
       You  respond  by typing the value of DS you  saw  when  you
     dumped the registers the first time.   For example,  I  typed
     "12CE<cr>".   The  value you type will be  different.   Debug
     will  again respond with the "-"  prompt which means  we  are
     ready to do our search.   Type in the following after the "-"
                    S CS:0 FFFF CD 13<cr>
       The computer should respond with three lines of information
     which are the addresses of the three Interrupt 13 calls built
     into the program.   The first four digits are the segment ad-
     dress  and will equal to the value of CS you have  just  set.
     The second four digits following the colon are the offset ad-
     dresses which are of primary interest to us.   On my  machine
     they came back as follows:
       The segment addresses will be identical and the three  off-
     set  addresses should all be relatively close together.   Now
     look at the first offset address.  (As you can see,  mine was
     "4307".) Write it down.  Now we do a bit of Unassembly.
       Type "U4307<cr>"  which is the letter "U", followed immedi-
     ately  (with no blank spaces) by whatever your  first  offset
     address turned out to be, followed by a carriage return.   If
     you are not familiar with unassembled machine code,  it  will
     look like lines of gibberish as follows:
                    12CE:4307 CD13        INT      13
                    12CE:4309 4F          DEC      DI
                    12CE:430A 744C        JZ       4358
                    12CE:431F CD13        INT      13
                    12CE:4321 4F          DEC      DI
                    12CE:4324 BF0400      MOV      DI,0004
                    12CE:4326 B80102      MOV      AX,0201
       In  my computer,  Unassemble will automatically  output  16
     lines of code to the screen.  Yours may differ.  Note, in the
     (INT  13) correspond to the first two addresses we  found  in
     our search.  Now we continue the unassemble, and here comes
     another  tricky part.   Just type in "U<cr>"  after  the  "-"
       You'll get sixteen more lines of code with the third Inter-
     rupt 13 on a line which begins with the address (CS):4335  if
     you  have  the same version of Submarine as I do.   It's  not
     terribly  important  to  this  exercise,   but  it  will   at
     least show you that things are proceeding okay.   Now type in
     "U<cr>"  again  after the prompt.  You are  now  looking  for
     three key lines of code.   On my program they appear as  fol-
                    12CE:4335 07          POP      ES
                    12CE:4356 5D          POP      BP
                    12CE:4357 CB          RETF
     The true key is the instruction "POP ES".   This  instruction
     begins  the normal return sequence after the program has  ex-
     ecuted its Interrupt 13 instructions and accompanying checks.
     If  Debug on your machine prints fewer than 16 lines of  code
     at a shot, you may have to type in "U" more than twice at the
     "-" to find these instructions.  (If you haven't found any of
     this stuff, either get help on the use of Debug or go back to
       This first bit tells Debug that new Assembler code will  be
     inserted at the address of the first Interrupt 13.   If  your
     first  Interrupt 13 is at an address other that  "4307",  use
     the correct address,  not mine.  The computer will prompt you
     with the address:
     After which you will immediately type:
                    JMP 4354<cr>
     This instruction jumps the program immediately to the  normal
     return code instructions.  Again, at the risk of being redun-
     dant, if your "POP ES" instruction is at a different address,
     use that address, not "4354"!
     The computer will prompt you with the address of the next in-
     struction  if  all went well.   MAKE SURE you  just  hit  the
     carriage  return at this point.  Debug will then  return  the
     familiar "-" prompt.
     Now  it's  time  to examine your  handiwork.   Let's  do  the
     unassemble again starting at the address of what had been the
     first Interrupt 13 instruction, but which is now the Jump in-
     struction.  Type in "U4307<cr>" or "U" followed by the appro-
     priate address and a carriage return.   The first line begin-
     ning with the address should appear as follows:
                    12CE:4307 EB4B        JMP      4354
     The key here is the four bytes immediately following the  ad-
     dress.   In my example they are "EB4B".   Yours may  not  be.
     But,  they are VERY IMPORTANT because they represent the  ac-
     tual machine code which is the Jump instruction.  WRITE THESE
       Now  if  you want to have some fun before we go  on,  reset
     register  CS to its original value by first typing  "RCS<cr>"
     and execute your program.   If you have followed my  instruc-
     tions, it should run fine.  Get help if it doesn't.  Now, you
     should be all set.  You can load onto your hard disk,  if you
     haven't already.  You can run it from a RAM disk using a  BAT
     file if you really want it to hum.   Or,  if you have the fa-
     cilities,  you can copy it from 5-1/4" floppy to 3-1/2"  dis-
     kette and run it on machines which accept that medium if  you
     upgrade to a new computer.
     Now let's take a look at a newer crack on the program,  Space
     Station Oblivion by Eypx.  At a first [S]earch with Debug and
     Norton's  Utility no CD 13's could be found,  and yet it  was
     using them... So a different approach had to be taken...
     By:            PTL
     Title:         Space Station Oblivion Crack
     First of all,  you must determine which file the INT 13's are
     in,  in this case it had to be the file OBLIVION.EXE since it
     was the main program and probably contained the INT 13's.  So
     then rename it to a different EXTension and load it into  De-
     Then do a [S]earch for INT 13's.
                    -S 100 FFFF CD 13
     Which will promptly turned up nothing.  Hmmm...
     Next you might decide that, maybe, the code was modifying it-
     self.   So quit from Debug and load up PC-Watch,  include all
     the  INT  13  Calls.   For those of  you  not  familiar  with
     PC-Watch,  it is a memory resident program that can be set to
     look  for  any type of BIOS call.   When that  call  is  made
     PC-Watch prints to the screen the contents of all the  regis-
     ters  and the current memory location that the call was  made
     After PC-Watch is initialized, then run the OBLIVION.EXE file
     from the hard disk,  leaving the floppy drive door open,  and
     sure  enough,  when the red light comes on in   the  diskette
     drive,  PC-Watch  will report the address's of  some  INT  13
     calls.  Which you should then write down.
     From  there,  quit the game, reboot,  (To dump PC-Watch  from
     memory) and load the OBLIVION.EXE into Debug and issue a [G]o
     command with a breakpoint.  What address should you use for a
     breakpoint?   You guessed it, the same address PC-Watch gives
     Well,  it locked up did'nt it?  Which is quite common in this
     line of work so don't let that discourage you.   So next  re-
     loaded  it into debug and this time [U]nassemble the  address
     that you got from PC-Watch.   But instead of finding the  INT
     13's you'll find harmless INT 21's.
     Hmm...  could  it be that the program was converting  the  CD
     21's to CD 13's during the run?   Well,  to test the idea as-
     semble an INT 20 (Program Terminate) right after the first
     INT 21. Then I run the program, and yes immediately after the
     red light comes on the drive, the program will terminate nor-
     Then [U]nassemble that same area of memory,  and low and  be-
     hold,  some  of the INT 21's have magically turned  into  INT
     13's.  How clever...
     So,  then it is just a matter of locating the address of  the
     routine that it jumped (JMP) to if the correct disk was found
     in  drive A:.   Once you have that address,  just go  to  the
     start of all this nonsense and [A]ssemble a JMP XXXX command.
     Where  XXXX was the address to jump to if the  original  disk
     was in drive A:.
     Then  just [W]rite the file back out to the disk  and  [Q]uit
     debug,   and  then  REName  the  file  back  to  OBLIVION.EXE
     afterwhich it should work fine.
     A  new fad has recently started up with software vendors,  it
     involves  the use of "Passwords" which are either  stored  in
     the  documentation or are actually the documentation  itself.
     Then  when you reach a certain part of the  program  (Usually
     the beginning) the program will ask for the password and  you
     have  to look it up in the Docs before being allowed to  con-
     tinue.   If the wrong password is entered,  it  will  usually
     drop you to DOS or take you to a Demo version of the program.
     This  new form of copy protection is very annoying,  but  can
     usually  be cracked without too much effort,   and the  files
     and the disk are usually in the standard DOS format.   So now
     we'll take a look at cracking the Doc check questions.
     First  of  all  we'll crack the startup  questions  in   F-15
     Strike Eagle by MicroProse.
     By:            JP ASP
     Title:         F-15 Unprotect
     Make a copy of the original disk using the DOS DISKCOPY  pro-
                    >DISKCOPY A: B:
     Then  insert the copy disk in the A drive and invoke DOS  DE-
     Now we'll [F]ill an area of memory with nothing (00).
                    -F CS:100 L FEFF 0
     Next we will [L]oad into address CS:0100 the data that is  on
     the A: disk (0) from sector 0 to sector 80.
                    -l cs:100 0 0 80
     Now  lets [S]earch the data we loaded for the area where  the
     copy protection routine is.
                    -s cs:100 l feff FA EB FD
     Then for each of the occurences listed, use the address DEBUG
     returned in the [E]nter command below.
                    -e xxxx 90 90 90
     Here's the part we are interested in,  it's where you  change
     all  the autorization codes to a space.   Notice how you  can
     use the [S]earch command to look for ASCII text.
                    -s cs:100 l feff "CHIP"
     Then for each occurance of "CHIP"  use the address DEBUG  re-
     turned in the [F]ill command below.
                    -F XXXX L F 20
     Write out the modified data
                    -W CS:100 1 0 80
     Quit DEBUG
       You should now be able to DISKCOPY and boot from all copies
     also  just press the space bar when it ask for ANY  authority
     code and then press "ENTER". Now there is no need to remember
     (or look up) any codes that are so finely tucked away in  the
     Here is a similar method that was used break the passwords in
     the  program BATTLEHAWKS 1945 by Lucasfilms.  However  Norton
     Utilities  is  used to search for the  passwords  and  change
     By:            PTL
     Title:         BATTLEHAWKS-1945 Doc Check Crack
     In  keeping in line with their previous programs,  Lucasfilms
     has  released yet another program which uses Doc  Checks  for
     its means of copy protection, Battlehawks 1942.
     When you run this program,  it first goes through a series of
     graphic displays, then it goes through a series of questions,
     asking what type of mission you want to fly,  such as  Train-
     ing, Active Duty, or which side of the war you want to be on.
     Then right before the simulation begins,  it shows you a pic-
     ture of a Japanese Zero and ask you for a password which you
     are  then  supposed to get by looking up the picture  of  the
     Zero in the User Manual and typing the corresponding password
     in.   After which it enters the simulation,  in the event you
     enter  the wrong password,  it puts you into a training  mis-
     Removing  the  Doc Check in a program like  this  is  usually
     pretty  easy.   The ideal way to do it is to remove  the  Doc
     Check routine itself,  but if you don't have all day to debug
     and  trace  around the code this might not be the  best  way.
     For  instance if you only have your lunch hour to work on  it
     (Like  I did),  then you need to use the standard  Q.D.C.R.S.
     (Quick Doc Check Removal System).
     How do you do a QDCRS?  Well first of all,  play around  with
     the program,  find out what it will and will NOT accept as  a
     password.   Most  programs will accept anything,  but  a  few
     (Like Battlehawks) will only accept Alpha characters.
     Once you've learned what it likes,  make an educated guess as
     to what program the Doc Check routine is in.   Then load that
     program into Norton's Utility (NU).
     At this point,  take a look at the passwords,  and write down
     the most unusual one that you can find (I'll explain  later).
     Now  type that password in as the search string,  and let  NU
     search through the file until it finds the password.   Now  a
     couple of things can happen.
          1. It only finds one occurrence
          2. It finds more than one occurrence
        3. It doesn't find any occurrence
     In  the event of case 2 then YOU have to determine where  the
     passwords  are stored,  you can do this by opening your  eyes
     and looking.
     In the event of case 3,  go to the kitchen and start a pot of
     coffee, then tell you wife to go to bed without you,  because
     you have a "Special Project" that you have to finish tonight.
     And by the way, Good Luck.  You'll need it.
     Hopefully case 1 will occur,  now you have to take a look  at
     the data and ask yourself 2 questions:
          1. Are all the passwords the same length?
          2. Is there a set number of spaces  between  each  pass-
          3. Does the next password always start a certain  number
             of characters from the first character of the  previ-
             ous password?
     If you can answer yes to any of the above questions,  you  in
     luck.  All you have to do is change the passwords to spaces
     (If the program allows that,  Battlehawks doesn't) or  change
     them to you favorite character. The letter X works good, it's
     easy to type and easy to remember.
     If you can't answer yes to any of the questions then you  ei-
     ther need to bypass the Doc Check routine itself or you  need
     to be adventurous and experiment. Battlehawks will not follow
     any  of the above patterns,  and your quickly running out  of
     time, so you'll have to try something, fast...
     So  just  wiped out all of the data area with  X's,  all  the
     passwords and associated "garbage" between them.   Then saved
     the changes and drop out of NU and into BH.  Then when it ask
     for the password,  just filed the area with X's.  Next  thing
     you  know,  you'll be escorting a bombing run on  a  Japanese
     So,  this one turned out to be fairly simple.   Where you may
     run into trouble is on Doc Checks that use a graphic  system,
     such as Gunship by MicroProse.  When it comes to this type of
     Doc Check, you almost have to bypass the routine itself.  And
     again, a good way to do this is with setting break points and
     using the trace option in Debug.
     That  was the easy version Doc Check crack,  however there  a
     "Better"  way to crack Doc Checks,  is to bypass the  routine
     completely  so  the user can just press enter and  not  worry
     about spaces.   Let's take a lot at this method by looking at
     a crack for the program, Yeager's Advanced Flight Trainer, by
     Electronic Arts.
     By:            PTL
     Title:         Yeager's Advanced Flight Trainer
     Now we'll take a look at cracking self booters.  A few compa-
     nies  have found this to be the best copy  protection  scheme
     for them, one of which is DataEast, makers of Ikari Warriors,
     Victory Road,  Lock-On, Karnov, etc...  This posses a special
     problem  to the Amateur Cracker, since they seldom use  stan-
     dard DOS formats.  So let's jump right in!
     This  is the area where a "Higher than Normal"  knowledge  of
     Assembly  Language and DOS Diskette structures,  so first  of
     all, the Basic's.
     The Disk's Physical Structure
     Data is recorded on a disk in a series of concentric circles,
     called Tracks.   Each track if further divided into segments,
     called  Sectors.   The  standard  double-density  drives  can
     record  40 tracks of data, while the new quad-density  drives
     can record 80 tracks.
     However, the location, size, and number of the sectors within
     a  track are under software control.   This is why  the  PC's
     diskettes are known as soft-sectored.  The characteristics of
     a  diskette's sectors (Their size, and the number per  track)
     are set when each track is formatted.  Disk Formatting can be
     done either by the operating system or by the ROM-BIOS format
     service.   A lot of self booters and almost all forms of copy
     protection  create unusual formats via the ROM-BIOS  diskette
     The  5 1/4-inch diskettes supported by the standard  PC  BIOS
     may  have  sectors that are 128,256,512,  or 1,024  bytes  in
     size.   DOS, from versions 1.00 through 4.01 has consistently
     used sectors of 512 bytes, and it is quite possible that this
     will continue.
     Here is a table displaying 6 of the most common disk formats:
     Type      Sides        Sectors       Tracks       Size(bytes)
      S-8        1             8            40            160K
      D-8        2             8            40            320K
      S-9        1             9            40            180K
      D-9        2             9            40            360K
     QD-9        2             9            80            720K
     QD-15       2            15            80          1,200K
     S  - Single Density
     D  - Double Density
     QD - Quad Density
     Of all these basic formats,  only two are in widespread  use:
     S-8  and D-9.   The newer Quad Density formats are for the  3
     1/2" and 5 1/4" high density diskettes.
            * SIDES.PER.DISK
     And  here are the formulas for converting  sequential  sector
     numbers to three-dimensional coordinates:
            MOD SIDE.PER.DISK
            * SIDES.PER.DISK)
          (Note:  For double-sided nine-sector diskettes, the PC's
          most  common disk format, the value of  SECTORS.PER.SIDE
          is  9 and the value of SIDES.PER.DISK is 2.   Also  note
          that  sides and tracks are numbered differently  in  the
          ROM-BIOS numbering system: The sides and tracks are num-
     Diskette Space Allocation
     The  formatting  process divides the sectors on a  disk  into
     four sections, for four different uses.  The sections, in the
     order they are stored, are the boot record,  the file alloca-
     tion  table (FAT),  the directory, and the data  space.   The
     size of each section varies between formats,  but the  struc-
     ture and the order of the sections don't vary.
          The Boot Record:
          This section is always a single sector located at sector
     1 of track 0, side 0.  The boot record contains,  among other
     things,  a short program to start the process of loading  the
     operating system on it.   All diskettes have the boot  record
     on them even if they don't have the operating system.  Asisde
     from  the start-up program,  the exact contents of  the  boot
     record vary from format to format.
          The File Allocation Table:
          The  FAT follows the boot record,  usually  starting  at
     sector 2 of track 0,  side 0.   The FAT contains the official
     record of the disk's format and maps out the location of  the
     sectors used by the disk files.   DOS uses the FAT to keep  a
     record of the data-space usage.  Each entry in the table con-
     tains  a specific code to indicate what space is being  used,
     what space is available,  and what space is unusable (Due  to
     defects on the disk).
          The File Directory:
          The file directory is the next item on the disk.   It is
     Here  is a simple routine to just make a backup copy  of  the
     Flight Simulator Version 1.0 by Microsoft.  I know the latest
     version  is  3.x but this version will serve the  purpose  of
     demonstrating  how to access the data and program files of  a
     By:            PTL
     Title:         Microsoft Flight Simulator 1.00 Unprotect
     This procedure will NOT convert the Flight Simulator disk  to
     files  that can be loaded on a hard drive.   But...  it  will
     read  off the data from the original and put it onto  another
     floppy.  And this should give you an idea of how to read data
     directly from a disk and write it back out to another disk.
     First of all take UNFORMATTED disk and place it in drive  B:.
     This will be the target disk.
     Now  place your DOS disk (which has Debug) into drive A:,  or
     just load Debug off you hard disk.
     Then  we  are going to enter (manually) a little  program  to
     load the FS files off the disk.
                    -E CS:0000 B9 01 00 BA 01 00 BB 00
                               01 0E 07 06 1F 88 E8 53
 hexadecimal  which is location 17,415  decimal  in  the
***  Pirate Magazine Issue IV  /  File 7 of 10  ***
***  Good Boards and BBS Ethics                 ***
What makes a BBS a *GOOD BOARD*? Here's a discussion logged from a good BBS. We
think the *USERS* make a good BBS, and we like Steve King's "BBS ETHICS," so
reprint it here. It appears on most TELEGARD systems, and in case you haven't
read it, you should.
  Date: 6:19 pm  Wed Dec 27, 1989      Public 17/53
  From: Sparkplug                      General Messages
    To: Potato Man
 Title: Good BBS
A good BBS is not only having all files online (as the phringe used to do) but
also! having a good user base that is helpfull and not worring about petty
problems.  There aren't many real good boards among the many boards available
here locally, but a board that comes to mind that you should try to emulate and
exceed is winplace's old board wasteland I, This is just my opinion and I hope
that this board becomes as good as you hope it to be!
  Date: 1:33 pm  Wed Dec 27, 1989      Public 15/53
  From: Potato Man                     General Messages
 Title: What makes a BBS a "GOOD" BBS?!
Well I had this chat talk with a user and he referred to few BBSs as the "GOOD"
BBSs and I stopped him to ask him why are those the good BBSs and if there's
anything the matter with this one so the answer to that was that I should'nt
even "DARE" to compare my BBS with those "GOOD" ones!  The question is WHY?
What am I missing in this BBS that the others don't or what the A or B bbs is
missing (not mine in particular).  So that brings up another very INTERESTING
topic that I expect to hear some views on...WHAT MAKES A BBS TICK???
Is it the users?
Is it the file section?
Is it the Message section?
Is it the mass storage?
etc etc....
If you want my opinion, I think that the users make a BBS tick and thats the
bottom line, a BBS with no users or dorky users or users that are just there
and they just exist without offering anything is just NOT a BBS... This guy
also said that the BIG BBSs (the ones with mass storage, and lots of phone
lines and stuff!) are BAD! he says that "you rich guys! (without even knowing
me or my W2) think you can put 300 or 600 megs online and have a BBS" well I
personally think that a BBS with most of the files being ONLINE and not OFFLINE
has a TREMENDOUS advantage over the BBS that has every file in the world but
all of them are OFFLINE!... What good would it do me if I need a file right now
and I call my supporting BBS to take it down but due to the lack of space the
sysop has it OFFLINE and then I kinda have to beg for the file to be online and
call back till he or she decides to put it up for me (not necessarily the case
always!).  I was also reffered to as "a snobish guy"! (again without knowing
me)..Now please really tell me if (and this is your best chance to get back at
me!) I seemed snobish or not willing to help any and all of you outthere... I
wanna make this BBS work and try to make it (if not the BEST in the MIDWEST) at
least one of the best, I want it to have a unique look I want it to have
respect for its users and I want its users to have respect for it..
Please FEEL FREE to respond to this message and I do expect you to FREELY
express your opinions and let us know WHAT MAKES A BBS TICK?!
  Date: 12:58 am  Sat Dec 30, 1989     Public 22/54
  From: Gil Fish                       General Messages
 Title: Good BBS's
Well, I feel what makes a good BBS is a friendly attitude between the users and
the sysop('s). I just logged off the Melting Point and felt verbaly abused.
That board bombards you with demands that you participate in every aspect of
his bbs. This is not an attack on him, as I'm sure he isnt attacking me
personally, but I dont like to have demands thrown at me in mass e-mail.  And
this post or die attitude many boards are getting is putting me off too. I dont
know, mabey the majority of us pirates are a bunch of assholes that need to be
screamed at, but I like to think not.
  Date: 5:26 pm  Sat Dec 30, 1989      Public 24/54
  From: Rocky Roccoco                  General Messages
    To: Gil Fish
 Title: Melting Point
i think people should contribute to a board,there are those of you who log on a
bbs,look through the board,then log off!.....thats just wasting the time of the
sysop (trying to provide a quality bbs not a library book) and wasting the time
of other user that are probably autodialing like mad to get on and contribute.
i have a few users that do it and i get fed up with it. ....also the sysop go's
out and spends MULTI THOUSANDS OF DOLLARS makeing a bbs buying the equipment
and so forth.....i think the sysop has a right to know who's using his bbs and
what the user has to offer him in exhchange for the privelige of haveing time
on the system......so all you out there that read this and dont abide by "the
way it is" shouldnt bitch about it.....just dont call anymore.....its not good
to lose people on a board but if u look at it this way.......there are alot
more people out there to take your user number!  replies are always encouraged
in the constant effort of keeping users happy with the systems they
call........SO LETS SEE SOME POSTS!!!!!!
                     Ethics for BBS users - By Steve King
The following are a few points of general BBS etiquette.  If  you wish  to
maintain your welcome on whatever system you  happen  to call,  it would be to
your advantage to observe these few  rules.  (Sysops - feel free to download
this & display it on your BBS)
1.   Don't habitually hang up on a system.  Every Sysop is  aware that
accidental disconnections happen once in a while but we  do tend  to  get
annoyed with people who hang up every  single  time they call because they are
either too lazy to terminate  properly or  they labor under the mistaken
assumption that the 10  seconds they  save  online is going to significantly
alter  their  phone bill.   "Call Waiting" is not an acceptable excuse for
long.   If you  have it and intend to use the line to call BBS systems,  you
should  either  have it disconnected or find some  other  way  to circumvent
2.  Don't do dumb things like leave yourself a message that  says "Just
testing to see if this thing works".  Where do  you  think all those other
messages came from if it didn't work? Also, don't leave  whiney messages that
say "Please leave me a message".   If ever there was a person to ignore, it's
the one who begs  someone to  leave him a message.  If you want to get
messages,  start  by reading the ones that are already online and getting
involved  in the conversations that exist.
3.   Don't use the local equivalent of a chat command unless  you really  have
some clear cut notion of what you want to  say  and why.  Almost any Sysop is
more than happy to answer questions  or offer  help concerning his system.
Unfortunately, because  about 85%  of the people who call want to chat and
about 99%  of  those people have absolutely nothing to say besides "How old are
you?" or  something  equally  irrelevent,  fewer  Sysops  even   bother
answering their pagers every day.
4.  When you are offered a place to leave comments when exiting a system,
don't try to use this area to ask the  Sysop  questions.  It is very rude to
the other callers to expect the Sysop to carry on  a  half  visible
conversation with someone.  If  you  have  a question or statement to make and
expect the Sysop to respond  to it,  it should always be made in the section
where all the  other messages  are  kept.  This allows the Sysop to help  many
people with  the  same problem with the least amount of  effort  on  his part.
5.   Before  you log on with your favorite psuedonym,  make  sure that  handles
are allowed.  Most Sysops don't want  people  using handles  on the system.
There is not enough room for them,  they get  silly  games of one-upmanship
started, it is much  nicer  to deal  with a person on a personal basis, and
last but not  least, everyone  should be willing to take full responsibility
for  his actions or comments instead of slinging mud from behind a  phoney
6.   Take the time to log on properly.  There is no such place as RIV, HB, ANA
or any of a thousand other abbreviations  people use instead of their proper
city.  You may think that everyone  knows what  RIV is supposed to mean, but
every BBS has  people  calling from  all around the country and I assure you
that  someone  from Podunk, Iowa has no idea what you're  talking about.
7.  Don't go out of your way to make rude observations like "Gee, this system
is slow".  Every BBS is a tradeoff of features.   You can  generally  assume
that if someone is  running  a  particular brand  of  software,  that he is
either happy with  it  or  he'll decide  to find another system he likes
better.  It  does  nobody any good when you make comments about something that
you perceive to  be a flaw when it is running the way the Sysop wants  it  to.
Constructive criticism is somewhat more welcome.  If you have  an alternative
method that seems to make good sense then run it  up the flagpole.
8.   When leaving messages, stop and ask yourself whether  it  is necessary  to
make it private.  Unless there is  some  particular reason  that  everyone
shouldn't know what you're  saying,  don't make  it private.  We don't call
them PUBLIC bulletin boards  for nothing, folks.  It's very irritating to other
callers when there are huge blank spots in the messages that they can't read
and  it stifles interaction between callers.
9.   If  your favorite BBS has a time limit, observe it.   If  it doesn't, set
a limit for yourself and abide by it instead.  Don't tie up a system until it
finally kicks you off and then call back with  another  name.  This same rule
applies  to  downloading  or playing  games.  Only one person at a time can be
logged on to  a BBS  and  it  isn't fair to everyone else if  you  overstay
your welcome.  Remember, a BBS is best when it can be left wide  open.  If you
try and cheat the rules you just hurt everybody by forcing the  Sysop  to adopt
more strigent policies.  I can't  count  the number of systems that are now
locked tighter than a drum because of people who cheat and abuse.
10.   Don't  call  a BBS just to look at the list  of  other  BBS numbers.
Most especially don't call a system as a new user  and run  right  to the other
numbers list.  There  is  probably  very little  that's more annoying to any
Sysop than to have his  board completely passed over by you on your way to
another board.
11.  Have the common courtesy to pay attention to what passes  in front  of
your face.  When a BBS displays your name and asks  "Is this you?", don't say
yes when you can see perfectly well that it is  mispelled.  Also, don't start
asking questions  about  simple operation  of a system until you have
thouroghly read all of  the instructions  that  are available to you.  I assure
you  that  it isn't  any fun to answer a question for the thousandth time  when
the  answer is prominently displayed in the system  bulletins  or instructions.
Use some common sense when you ask your questions.  The person who said
"There's no such thing as a stupid  question" obviously never operated a BBS.
12.   If by some chance you should encounter an error  while  you are  online
(Heaven forbid!), ALWAYS take the time to  leave  the Sysop  a  message
describing the circumstances.  Don't  just  say "There was an error".  That is
not helpful in the least.  Chances are  that he knows there was an error.  What
he needs to know  is what  you were doing when the error occurred so that he
can  have some chance of finding and correcting it.  If the error  happened
after you input something, tell him what it was.  Remember that a BBS can't
improve unless you're willing to help.
13.  Don't be personally abusive.  It doesn't matter whether  you like a Sysop
or think he's a jerk.  The fact remains that he  has a large investment in
making his computer available, usually  out of  the goodness of his heart.  If
you don't like a Sysop or  his system,  just remember that you can change the
channel  any  time you  want.  Calling a Sysop names or making  uninformed
comments about his lifestyle only shows you for the child you really are.
14.   Keep  firmly in mind that you are a guest on  any  BBS  you happen  to
call.  Don't think of logging on as one of your  basic human  rights.  Every
person that has ever put a computer  system online  for the use of other people
has spent a lot of  time  and money  to  do so.  While he doesn't expect
nonstop  pats  on  the back,  it  seems reasonable that he should at least  be
able  to expect fair treatment from his callers.  This includes  following any
of the rules for system use he has laid out without  grumping about  it.
Every  Sysop has his own idea of how  he  wants  his system  to  be run.  It is
really none of your  business  why  he wants  to  run it the way he does.  Your
business  is  to  either abide by what he says, or call some other BBS where
you feel that you can obey the rules.
Steve King is Sysop of Commnet-80 Riverside (714 359-3189) as well as the
author of the Commnet-80 Bulletin Board System
We've sen a lot of boards with great potential that don't live up to their
promise because of sysop laziness.  So, here's what the contributors to PIRATE
see as a good board:
1. The files are well organized into sections or topics so you don't have to
hunt for everything. TAKE NOTE SYSOPS!! You shouldn't have to search all files
to find the telecom program you're looking for.
2. There is a wildcard function so files can be found between directories and
uploaders can quickly check for duplicates by typing a "S" or "F" and then, if
looking for a program called first choice, the keyword "CHOI*.*" We especially
3. A good board should support 9600 or higher.
4. Users should not be allowed in at 300, and even 1200 should be discouraged.
5. Programs *MUST BE* complete, properly labeled (to include version), and
sorted in some coherent fashion.
6. The users should not be lamerz who upload junk for upload credits and users
should participate regularly in message sections. Most users on good boards
call long distance and can't afford to hang out on message bases for too long.
The way around this is to capture message logs and respond after logging up by
tying out the responses and then uploading the ascii text as a message
response the next time logging on.
6. Sysops *MUST* be friendly, knowledgeable, and willing to put the files in
order, change descriptions, and weed out good/bad users.  Sysops should also
be patient and help nurture novices.
7. Batch up/down loading should be available, and so should bimodem.
***  Pirate Magazine Issue IV  /  File 8 of 10  ***
***  BBS Symbols                                ***
Good users are informed users, and informed users know the symbols that are
used in messages.
The following was sent via BITNET by Ruth Hanschka   ([email protected])
                  "THE IMFAMOUS SYMBOL LIST" {With Additions}
:-)     humorous, joking
:-(     sad, this is no joke even though it looks like one
:-')    tongue in cheek
:-0     shout
;-)     say no more, nudge nudge
=:-0    scares me too
:-!     foot in mouth
:-$     put your money where your mouth is
0:-)    don't blame me, I'm innocent
%-/     don't blame me, I'm hung over
<:-)    don't blame me, I'm a dunce
C:-)    don't blame me, I'm an egghead
[:-|]   sent by a robot
:-)8    sent by a gentleman
8:-)    sent by a little girl
(8-)    sent by an owl
(:\/    sent by a duck
:-)===  sent by a giraffe
(-:|:-) sent by siamese twins
d:-)    I like to play baseball
q:-)    I am a baseball catcher
:-|     I play the harmonica
:-8     I just ate a pickle
        "In printed communications (in this case bulletin boards), it is tough
to get the idea across that you are being sarcastic etc.  Scott Fahlman, with
the help of other participants on FIDONET, might just have the answer..."  This
appears at the top of the original.  There are probably more of them by this
time, but I do not have them.  The original notice asks FIDONET contributors
to send more in.  My copy of this came from a photocopy of a printout in the
University of Hartford Computer Resource Library, so blame them :-') not me.
        And now the additions.  These came from a VAX discussion line.
these really were [:-|].
:-)     joking or sarcastic face
:-}     fiendish grin
;-)     wink
:-(     sad or angry face
|-(     late night
***  Pirate Magazine Issue IV  /  File 9 of 10  ***
***  Gene and Roger at the BBS                  ***
REVIEW OF:  EURO-AMERICAN CONNECTION (708) 296-0242 (Chicago Suburbs)
GENE:  Hey, Rog' -- here's a new board, just started up in December, and I
       think it has the potential to be one of the best boards in the country.
       You go in at 9600 and get 1550+ CPS, all the warez on on-line, and they
       all work. Can't beat that. You've seen the nearly 1 gig of space, and
       there's plans to go multi line. The users are a nice mix of
       instate/outstate. We've both read the message logs, and even you agree
       that there's not a lamer in the bunch. The files are well ad says, it's
       sure about the friendliest board I've been on. If you're having
       problems, Hot Mix is usually around to help, and he doesn't hide like a
       lot of sysops do.  And I like the feature that *ALL* users only get 60
       minutes a day, not counting upload time, and that time returned for
       uploads is a straight one-to-one. Keeps users from hogging or from
       uploading garbage just for more time. And don't forget that HST
       14,400!! One meg in 10 minutes!
ROGER: I dunno, Gene. I've seen lots of new boards, even good ones, come and
       go, and too often they don't live up to their promise. The sysops get
       lazy, the good users upload all their stuff, mooch what they can, then
       move on. You're NAIVETE amazes me! Yeh, yeh, the messages are good, but
       they're mostly about prolems with warez.  I personally like the
       occasional flame and political discussion, and I didn't see any of that
       there. I agree that all the fixin's are there for a super board, but
       we'll see what it looks like in a year. But I'll admit that it's one of
       the best new ones I've seen, and in just looking a file dates, it looks
       like people are putting stuff up consistently.
GENE:  You're just jaded because Stealth went down and Berserker is still at
       2400. C'mon! You *know* in your heart of hearts this is a darn good
       board. And you can't beat the small user's fee--just a couple of bucks
       a month--to store backup copies of stuff. And have you ever seen such a
       generous u/d-load ratio as five-to-one?
ROGER: Look, I'm not knocking the board. But I've just seen to many fast
       starts and quick stumbles.  If Hot Mix and the users can keep it up,
       I'll eat my words. I hope they do. I'll even call it. I'll bet you
       didn't know that the sysop's handle, "hot mix," is from his DJ days as
       a hot mixer of records, did you?
 -----RATING:  -----
    GENE:  An enthusiastic 10!! THIS IS A GREAT BOARD!
    ROGER: Yeh, ok, I'll concede. I give it a 9+ -- but ask me again next year
Here's what you see when you look on, Rog' -- there's lots of different areas
and something for everybody. It's running TELEGARD, and that's about the
hottest sysem around right now, and when 3.0 comes out, nothing will touch
3                                  cdQ
3   EuroAmerican Connection  BBS   3 3
3             Niles, IL            3 3
cdddddddddddddddddddddddddddddddddd4 3   ATTENTION: ALL NEW USERS !!!
cdddddddddddddddddddddddddddddddddd4 3 > Use 10 for User Number     >
cdddddddddddddddddddddddddddddddddd4 3 > Use 1111 for User Phone #  >
cdddddddddddddddddddddddddddddddddd4 3
3       SHUTTLE LOGON  MENU        3 3
Enter BBS Password:
Telegard BBS Version 2.4 Standard - Copyright 1988,89,90
Eric Oman, Martin Pollard, and Todd Bolitho - All Rights Reserved.
Display ANSI logon? No
 ;;;;;;;;;;;;;;;;;;;;;;;;   ;;;;;;;;;;;;;;;;;;;;;;;;     ;;;;;;;;;;;;;;;;;
1;;;;;;;;;;;;;;;;;;;;;;;;  1;;;;;;;;;;;;;;;;;;;;;;;;   1;;;;;;;;;;;;;;;;;;;
1;;;;;;;;;;;;;;;;;;;;;;;;  1;;;;;;;;;;;;;;;;;;;;;;;;  1;;;;;;;;;;;;;;;;;;;
1;;;;;;11111111111111111   1;;;;;;;;;;;;;;;;;;;;;;;;  1;;;;;1111111111111
1;;;;;;                    1;;;;;;111111111111;;;;;;  1;;;;;
1;;;;;;                    1;;;;;;           1;;;;;;  1;;;;;
1;;;;;;;;;;;;;;;;;;        1;;;;;;;;;;;;;;;;;;;;;;;;  1;;;;;
1;;;;;;;;;;;;;;;;;;        1;;;;;;;;;;;;;;;;;;;;;;;;  1;;;;;
1;;;;;;11111111111         1;;;;;;111111111111;;;;;;  1;;;;;
1;;;;;;                    1;;;;;;           1;;;;;;  1;;;;;
1;;;;;;                    1;;;;;;           1;;;;;;  1;;;;;
1;;;;;;;;;;;;;;;;;;;;;;;;; 1;;;;;;           1;;;;;;  1;;;;;;;;;;;;;;;;;;;;;;;
1;;;;;;;;;;;;;;;;;;;;;;;;; 1;;;;;;           1;;;;;;  11;;;;;;;;;;;;;;;;;;;;;;
1;;;;;;;;;;;;;;;;;;;;;;;;; 1;;;;;;           1;;;;;;   11;;;;;;;;;;;;;;;;;;;;;
1111111111111111111111111  111111            111111     111111111111111111111
> > > > >         ;;;;;;;;      ;;;;;;;;      ;;;;;;;;;
> hmn hmn        ;;FFFFFF;;    ;;FFFFFF;;    ;;FFFFFFFF;
>   >?  >        ;;;;;;;;F     ;;;;;;;;F     ;;;;;;;;; F
                 ;;FFFFFF;     ;;FFFFFF;      FFFFFFF;;
;   ; ?FFF?FF;FF ;;      F;;   ;;      F;;  ?;       F;;
;FFF;  FF?   ;   ;;;;;;;;;;F   ;;;;;;;;;;F   ;;;;;;;;;;F
;   ; F???F  ;   ;;;;;;;;;     ;;;;;;;;;      ;;;;;;;;Enter your User # or you
Logon :90
User password   :
Complete phone #: ###-###-
Welcome to EuroAmerican Connection BBS,
Please wait .... thank you.
Last few callers:
2511: Sp. Fly #34 from Waukegan, IL
2512: Jay Cepe #63 from Arlington Hts, IL
2513: The Untouchable #53 from Chicago, IL
2514: Captain Sir Henry Morgan #38 from Ann Arbor, MI
 3  O  | ------------------------------------------------------------ |  O  3
 3  O  | NEWS FLASH from EuroAmerican Connection BBS                  |  O  3
 3  O  |     Sent by HOT MIX on 02/03/90 at 08:30am                   |  O  3
 3  O  |                                                              |  O  3
 3  O  |                         New News!                            |  O  3
 3  O  |                                                              |  O  3
 3  O  | Well I hope everyone noticed that we now have 660 Megs of    |  O  3
 3  O  | very fast ESDI storage! I still have an extra 300 Megs to    |  O  3
 3  O  | install and I'm waiting for some answers, (it may not be     |  O  3
 3  O  | possible) but I did promise a gigabyte and I keep my         |  O  3
 3  O  | promises so the gigabyte is NOT far fetched!                 |  O  3
 3  O  | Anyway..I would like for everyone to be a total part of      |  O  3
 3  O  | this BBS and help it grow in every direction! We do have a   |  O  3
 3  O  | great FILE base but we also need a great MESSAGE base and    |  O  3
 3  O  | that can only happen with your participation!                |  O  3
 3  O  | Please make sure that you DO read your mail (and don't just  |  O  3
 3  O  | see it and delete it) and make sure that you delete it       |  O  3
 3  O  | after you carefully read it! If it's there it's serves a     |  O  3
 3  O  | purpose...Alot of you ask me things that I already           |  O  3
 3  O  | mentioned in mail but you didn't take time to read it!       |  O  3
 3  O  | Thats all...Enjoy the BBS                                    |  O  3
 3  O  |                     HOT MIX                                  |  O  3
 3  O  |                                                              |  O  3
 3  O  | ------------------------------------------------------------ |  O  3
Oooops it seems that it's me and you now! Teddy is out...Let's Party
Now the EuroAmerican Connection supports High Speed Transfers of over 1500 cps
All HST users PLEASE read message in the General Messages area with same title
Always striving to be the BEST (and proving it!)...Coming soon 1.5 GigaBytes!!
You are caller #2515,
Time allowed    - 60 minutes
Mail waiting    - 1 letter
You have called - 64 times
Last on         - 02/24/90
Account limits  - 7 calls, using a maximum of 60 minutes, per day.
Read your mail now? Yes
You have no mail waiting:
  :                 AVAILABLE BULLETINS                :
  :                                                    :
  :                                                    :
  :                                                    :
  :                                                    :
  :                                                    :
  :                                                    :
                        The EuroAmerican Connection BBS
                               SysOp  :  HOT MIX
                               Co-Sys :  MAD COOK
                 List of Users by User Name in Ascending Order
                       Total Number of Users Listed = 147
User Name                            City & State                   Last Logon
=========                            ============                   ==========
AGENT 007                            Lombard, IL                     02/23/90
AMBER                                Lyons, IL                       01/21/90
ANDY COOPER                          Mcgaw Park, IL                  01/15/90
BAD SECTOR                           Leyden Township, IL             02/15/90
BADGER                               Gilbert, AZ                     02/19/90
BARCLAY                              Henry, IL                       02/11/90
BIG MAN                              Chicago, IL                     01/03/90
BILLY THE KID                        Elmhurst IL                     01/14/90
BLACK KNIGHT                         Naperville, IL                  01/13/90
BLACKHAWK                            River Grove, IL                 01/06/90
BONG HITS                            River Forest, IL                02/20/90
BOOMER                               Chgo., IL                       01/25/90
BRIAN                                So.Holland, IL                  02/23/90
BRIAN SMITH                          Wildwood, IL                    02/08/90
BRYAN ALLISON                        Wheaton, IL                     02/08/90
CAPT'N JACK                          Morgantown, WV                  02/23/90
CAPTAIN COOK                         Hoover, AL                      02/10/90
CAPTAIN DEATH                        Columbia, MO                    02/18/90
CAPTAIN SIR HENRY MORGAN             Ann Arbor, MI                   01/31/90
CHLORINE SHARK                       Chattanooga, TN                 01/14/90
CONSOLE COMMANDER                    Buffalo Grove, IL               02/19/90
COSTA SAPUNTZAKIS                    Hinsdale, IL                    02/04/90
DARKSTORM                            Lemont, IL                      01/03/90
DIRTY HARRY                          Wheeling, IL                    02/21/90
DOCTOR CRACK                         Richton Park, IL                02/23/90
DOCTOR DOS                           Naperville, IL                  02/11/90
DON JARVIS                           Chicago, IL                     02/08/90
DON RIEB                             Glenview, IL                    02/24/90
DON STIEN                            Chicago, IL                     02/22/90
DOUG TAPP                            Schaumburg, IL                  01/11/90
DR. FEELGOOD                         Greatlakes Il, IL               01/25/90
EGGHEAD DUDE                         Sesame Street, HI               01/07/90
ELVIS PRESLEY                        Elgin, IL                       02/09/90
EPEIOS                               Dekalb, IL                      02/13/90
ETHAN GRIGGS                         Chicago, IL                     02/03/90
FAST FREDDIE                         Glenview, IL                    02/04/90
FATSO                                Schaumburg, IL                  02/23/90
FELIX FELLNER                        Skokie, IL                      02/22/90
GANDALF                              Buffalo Grove, IL               02/23/90
GILGAMESH OF URUK                    Itasca, IL                      02/15/90
GLENN ROSE                           Westmont, IL                    02/09/90
GOLDEN MEDUSA~                       Northbrook, IL                  01/29/90
GORDON THOMPSON                      Dekalb, IL                      02/21/90
GRAFFIX MAN                          Lisle, IL                       02/11/90
GREG KLIMA                           Chicago, IL                     01/21/90
GUEST USER                           Your Town                       02/17/90
HACKMAN                              Downers Grove                   02/11/90
HI-FI                                Glenview, IL                    01/23/90
HOT MIX                              Niles, IL                       02/24/90
JAEGERMECH                           Wheeling, IL                    02/21/90
JAMMER                               Oslo Norway, NO                 02/22/90
JAY CEPE                             Arlington Hts, IL               02/21/90
JAY CHEN                             Chicago, IL                     01/20/90
JEDI                                 Chicago, IL                     02/24/90
JEFF YANG                            Wheaton, IL                     01/20/90
JERRY CLAXTON                        Huntley, IL                     01/27/90
JIM MCMAHON                          Baltimore, MD                   02/23/90
JIM RICHARDS                         Sycamore, IL                    01/20/90
JIM SHOE                             Chgo Il, IL                     01/28/90
JIM VANATOR                          Chicago, IL                     02/21/90
JOE CHARLIER                         Elk Grove Il, IL                02/03/90
JOE MARTIN                           Chicago, IL                     02/22/90
JOHNNY                               Morton Grove, IL                01/06/90
JULIUS CAESAR                        Skokie, IL                      01/25/90
KAT                                  Niles, IL                       02/20/90
KEITH DOERING                        Schaumburg, IL                  02/18/90
KENNY JASON                          Chicago, IL                     01/13/90
KING LEECH                           Chicago, IL                     02/23/90
LORD HAVOC                           Chicago, IL                     01/05/90
LORD SHIVA                           Joliet, IL                      02/22/90
LORD X                               Chicago, IL                     02/03/90
MAC                                  Willowbrook, IL                 02/07/90
MAD COOK                             Des Plaines, IL                 02/21/90
MADMAN                               Mount Prospect, IL              02/13/90
MAMOMAN VAKAMAN                      Rolling Meadows Il, IL          02/15/90
MASTER BLASTER                       Waukegan, IL                    02/10/90
MASTER NINJA                         Schaumburg, IL                  02/24/90
MAVERICK                             Lincolnwood, IL                 02/24/90
MEDIEVAL KNIGHTMARE                  Chicago Heights, IL             02/21/90
MERLIN                               Hinsdale, IL                    02/23/90
METAL GODS                           Waukegan, IL                    02/22/90
MIKE REED                            Palatine, IL                    02/02/90
MIKE YOUNG                           Elgin, IL                       01/21/90
MISTER MONOCHROME                    Chicago, IL                     02/21/90
MR Z                                 Tulsa, OK                       02/23/90
MR. HARDWARE                         Skokie Il, IL                   02/23/90
NICE PERSON                          Deerfield, IL                   02/23/90
NIGHTOWL                             Wheeling, IL                    01/12/90
NUN TUCKET                           Wheeling IL                     01/16/90
OL' YELLER                           Arlington Hts. IL               02/17/90
OLD GUY                              Northbrook, IL                  02/17/90
OLIVER WENDELL JONES                 Chicago, IL                     02/15/90
PIG KILLER                           Cicero, IL                      01/27/90
PINK PANTHER                         Chicago, IL                     02/21/90
POWER BREAKER                        Chicago, IL                     02/18/90
PUNKY STAR                           Chicago, IL                     02/24/90
QUICK SILVER                         Mt. Prospect Il, IL             01/28/90
RAINMAN                              Evanston, IL                    01/21/90
RAISTLIN MAJERE                      Barrington, IL                  01/17/90
RAZZMATAZZ CHAZ                      Oak Park, IL                    02/23/90
REEGADE                              Wheaton, IL                     01/18/90
RICHARD STANALAND                    Tulsa, OK                       02/15/90
ROADRUNNER                           Chicag0, IL                     02/03/90
ROBOCOP                              Des Plaines, IL                 01/08/90
ROCCO                                Park Ridge, IL                  02/22/90
ROCKET                               Chicago, IL                     02/24/90
RODNEY CLINGERMAN                    Maywood, IL                     02/23/90
RON EARL                             Dekalb, IL                      02/20/90
RON TOCCO                            Grayslake Il, IL                01/28/90
RONALD GOLZ                          Midlothian, IL                  01/14/90
RONALDGOLZ                          Midlothian, IL                  01/12/90
SAM HOUSTON                          Chgo, IL                        02/17/90
SCHATTEN                             Desplaines, IL                  02/04/90
SINISTER EXAGGERATOR                 Chicago, IL                     02/24/90
SLADE                                Grayslake, IL                   02/15/90
SP. FLY                              Waukegan, IL                    02/23/90
SPANKY                               Skokie, IL                      02/23/90
SPARKY                               Schaumburg, IL                  01/09/90
SPEED DEMON                          Brookfield, IL                  02/20/90
STARBUCK                             Sycamore, IL                    01/17/90
STARSHIP                             Glen Ellyn, IL                  02/09/90
STASH                                Park Ridge, IL                  02/22/90
STEEL RAT                            Great Lakes, IL                 01/05/90
STEVE                                Oak Park, IL                    01/21/90
SUB ZERO                             Hinsdale, IL                    01/28/90
SWITCH BLADE                         Chicago Il, IL                  02/13/90
TED KOPPEL                           Chicago, IL                     02/24/90
THE COUNSEL                          Mt. Prospect, IL                02/23/90
THE HEAD ZOOKEEPER                   Lhfjkl'F, IL                    02/19/90
THE MAD CELT                         Glenview, IL                    02/24/90
THE MAN                              Dekalb, IL                      02/20/90
THE MISFIT                           Wheeling, IL                    02/16/90
THE ONE AND ONLY SQUID               Marengo, IL                     02/18/90
THE REPORTER                         Niles, IL                       02/21/90
THE SEEKER                           Chicago, IL                     02/01/90
THE SPIDER                           Glenview, IL                    02/22/90
THE UNTOUCHABLE                      Chicago, IL                     02/24/90
THUNDER STICK                        Elgin, IL                       02/23/90
TIM CHAPMAN                          Warrenville, IL                 02/22/90
TONY WALLS                           Hometown, IL                    02/05/90
TORA TORA                            Lombard, IL                     02/22/90
TYPHON                               Glen Ellyn, IL                  02/16/90
VIC RODELL                           Wheeling, IL                    01/22/90
WHIZ KID                             Joliet, IL                      02/23/90
WINPLACE                             Greshaam, OR                    01/25/90
ZACH HARRIS                          Skokie, IL                      02/23/90
ZEUS                                 Niles, IL                       02/24/90
                         Listing of Top 20 Downloaders:
                                                   Downloads  Uploads    UL/DL
       User name and number                        Num    KB  Num    KB  Ratio
       ------------------------------------------  --- -----  --- -----  -----
   1   Punky Star #30                              270 -19012   96 28004   60.
   2   Gandalf #137                                260 -18393    9  1778    3.
   3   Jedi #90                                    180 -29927  164 24695   69.
   4   Mr. Hardware #21                            139 14182  133 24610  173.5
   5   Felix Fellner #14                           130 27041   66 16961   62.7
   6   Maverick #40                                 85 15758   24  7815   49.5
   7   Sam Houston #56                              76 16566   37  8653   52.2
   8   Spanky #3                                    70 18043  174 -22438  -124
   9   Fatso #96                                    66 14839   23  3735   25.1
  10   Mr Z #47                                     63 13958   31  6288   45.0
  11   Zeus #16                                     60 10023   22  2171   21.6
  12   King Leech #15                               59 14619   22  4259   29.1
  13   Jim Mcmahon #119                             55 12777   18  5469   42.8
  14   The Untouchable #53                          52  6985   73 19360  277.1
  15   Golden Medusa~ #72                           48  8473   13  1602   18.9
  16   Hackman #8                                   45  7980   82 23054  288.8
  17   Nice Person #42                              41  6707    8  1643   24.4
  18   Merlin #17                                   36  7657   13  2006   26.1
  19   Richard Stanaland #60                        29  6934   12  2315   33.3
  20   Captain Sir Henry Morgan #38                 27  5319   17  4755   89.3
       ------------------------------------------  --- -----  --- -----  -----
  19   Power Breaker #12                            20  4671   18  4028   86.2
  20   Speed Demon #51                              16  5085   18  3843   75.5
       ------------------------------------------  --- -----  --- -----  -----
                               EuroAmerican Connection BBS
 Thu Feb 23, 1990 >
 Wed Feb 22, 1990 >
 Tue Feb 21, 1990 >
 Mon Feb 20, 1990 >
 Sun Feb 19, 1990 >
 Sat Feb 18, 1990 >
 Fri Feb 17, 1990 >
 Thu Feb 16, 1990 >
 Wed Feb 15, 1990 >
 Tue Feb 14, 1990 >
 Mon Feb 13, 1990 >
 Sun Feb 12, 1990 >
 Sat Feb 11, 1990 >
 Fri Feb 10, 1990 >
                             Average system activity = 62%.
                           Each block represents 2% of usage.
  Date: 3:10 am  Sat Feb 24, 1990      Public 4/5
  From:                                Hints and Tips!
 Title: 386 and an Epson lq1000
     >> This message has 1 reply
Can ANYONE help me on this:
I had an IBM (True Blue) XT with an Epson LQ1000 which worked fine all of the
time. Well now I have upgraded to a 386 and when I plugged in my epson and try
to print anything all I get is alot of $ > mixed into the file and it doesnt
even look like the file I am trying to print. Can anyone help me out to get
this working properly? Is there anything you have to include in the
config.sys/autoexec.bat to get the printer to recognise the files properly?
Thanks alot to anyone for any help.......I will try anything to get it to work
with the 386.
  Date: 2:36 pm  Sat Feb 24, 1990      Public 5/5
  From:                                Hints and Tips!
 Title: well
     >> This message is a reply
    First of all, is the printer serial or parallel? (or both), if u are using
the parallel setup, the u might want start by checking your cables on a diff
machine (but u said it worked on your xt, so that's not the culprit), second,
if it is parallel setup, u want to try slowing your cpu down (if your computer
allows it.....the computer could be shooting out the data too fast, and
there's not enuf time to do handshaking, so you're getting shit printer
out)...if it's serial, make sure your serial port is set at the same baud rate
as the printer is....if it is, make sure u'r cable has its handshaking signal
enabled (make sure the cable is wired properly).....(the first thing i would
try is slowing the computer down, cuz high speeds usually do cause errors
(especially at 33 MHZ!!!))
| ELITE ACCESS ONLY Message ...                                              |
| I want to remind you that if you 're planning to upload something  NEW     |
| make sure that you upload it to the ELITE section !                        |
|      Thank you for your support                                            |
|                              HOT MIX                                       |
 0* PD ONLY UPLOADS                      1* ** NEW UPLOADS **
 2* Miscellaneous                        3* DOCs, Cheats & Solves!
 4* Music/MIDI                           5* DOS Utilities
 6* Hard Disk Utilities                  7* Cracking/Unprotect Utilities
 8* VGA Graphics etc                     9* ANSI/Graphic Programs
10* Telecommunications                  11* Printer Utilities
12* Word Processing                     13* DeskTop Publishing
14* DataBases                           15* Spreadsheets
16* Financial                           17* Integrated
18* OCR/SCAN utilities                  19* CAD/CAM programs
20* 386 Utilities                       21* Programming Languages
22* Operating Systems                   23* XENIX/UNIX/VpIX
24* Entertainment                       25* Older Games
26* Telegard BBS software!              27* Other BBS software!
28* PD IBM Games                        29* PD Utilities
30* ELITEs!                             31*  FREEWARE  <NR>
***  Pirate Magazine Issue IV  /  File 10 of 10 ***
***  Numbers to Call                            ***
Area Code 201 - (NJNEW) Newark
BBS Name           Number    Sysop        Software    Baud   Comments
Soft Board         228-5862
Realm              335-9586               Forum
Eastern Telecom    402-1772  Dr. Null Ptr.Forum       12/24
Underground II     502-9115  Rambone      Emulex/II   12/24
Joe's Garage       661-4327  Joe          WWIV        12/24
Al's Cabin         827-7815
Metal AE           879-6668               Emulex/II   12/24
Runaway Train      927-1154               GBBS
Area Code 203 - (CTHAR) Hartford
BBS Name           Number    Sysop        Software    Baud   Comments
Stairway Heaven    393-0899               Emulex      12/24  Home of PHUCK
DSC Inc.           456-3531  Rengd. Chem. TCS         12/24  Phortune 500
Area Code 205 - Alabama
Byte Me            979-2983  Omega Ohm    WWIV        12/24
Firebase Eagle     554-0480  Shamus       Power Plus  12/96
Area Code 206 - (WASEA) Seattle
BBS Name           Number    Sysop        Software    Baud   Comments
The Void           232-4941                           1200
Society of Sin     234-2777
Thieves Guild      235-6779               Monarch     1200
Ethernal Dimension 255-1282  Jhereg       Monarch     12/24
Alternate Reality  352-4606  Mr. Classic  Emulex/II   12/24
Agnostic Front     432-6904               Emulex/II   12/24  Home of WASP
Dark Tangent       454-3552                           12/24
Gateway            588-5239
Neutral Zone       839-5865               Emulex/II   12/24
Area Code 212 & 718 - (NYNYO) New York
BBS Name           Number    Sysop        Software    Baud   Comments
Alternate Universe 326-0720               TCW         12/24  Area Code (718)
Hackers Den        358-9209  Red Knight   Emulex/II   12/24  Area Code (718)
Adventure's Guild  591-0925  Realm Keeper Monarch     12/24  (718), TSAN
Area Code 213 - (CALAN) Los Angeles
Best of Both       325-3237               WWIV        12/24  New Users 2400
Mystic Knights     426-6490  The Sniper   Emulex/II   12/24  TSAN
The Archives       545-0707                                  Mac ONLY
Insomnia           833-8309               Emulex/II   12/24
The Manor          865-3826               WWIV        12/24
Freakers Den       941-1534  Black Jack   WWIV        12/24
Area Code 214 & 817 - (TXDAL) Dallas
BBS Name           Number    Sysop        Software    Baud   Comments
Oblivion           221-4638
Far Side           231-7920  The Molester Emulex/II   12/24
Redlight Inn.      393-0156               Emulex/II   12/24
Mentality Distrup. 258-4935               TNW         12/24
Dead Zone          522-5321                           12/24
Ice Dimensions     641-7085               Emulex/II   12/24
Pub & Tavern       690-4634  Jolly Bard.  Emulex/II   12/24
D.U.N.E.           733-0568  Fred Kruuger WWIV        12/24
Area Code 216 - (OHCLE) Cleveland
BBS Name           Number    Sysop        Software    Baud   Comments
Rich's BBS         482-6079  Rich Little  PCB         12/24
Walden Pond        792-0981  Brooksie     Forum       12/24
Area Code 217 - (ILCHA) Champaign
BBS Name           Number    Sysop         Software   Baud   Comments
Golf City BBS      332-4019  Egghead Dude  WWIV       12/24
Realm of Darkness  359-2071  Dark Shadow   Emulex/II  12/24
Area Code 301 - Maryland
BBS Name           Number    Sysop         Software   Baud   Comments
Speakeasy          358-0849                WWIV       12/24
Black Box BBS      360-2018                WWIV       12/24
Gates of Dawn      384-2938  Pho. Apollo   Apex       12/24  NAPPA #1
Salsbury Hill      428-3269  Laughing Gas  WWIV       12/24
Devil's Courier    437-7017  Lord Omar     WWIV       12/96
Anarchy Inter.     464-7023  Anthrax Angel Emulex/II  12/24
The Future World   486-4515  The Killer    WWIV       12/24
The Gallows        486-5073  Prank Call    WWIV       12/24
Just Another BBS   551-2583  Jack Cassidy  Forum      12/96
Ram Free           557-6841                Monarch    12/24
Clendestine Corner 647-6631                WWIV       1200
Courier's Annex    666-2077  Aragon        WWIV       12/96
The Free World     668-7657  Major Havoc   WWIV       12/24
Jolly Roger BBS    675-2566                Emulex/II  12/24
The First Sector   679-3394                WWIV       12/24
Corner Pocket      823-5710                WWIV       1200
The New Republic   828-8291  The Nark      WWIV       12/24
The Iron Curtain   843-5052  Agent Orange  WWIV       12/24
Fun House          924-1543                Emulex/II  12/24
Surf Shop          990-1715                Emulex/II  12/96
Area Code 303 - (CODEN) Denver
BBS Name           Number    Sysop         Software   Baud   Comments
Late Night BBS     399-8811                Emulex/II  12/24
Ace's Place        421-1380                           1200
Fajita Republic    431-2931  Cap't Blood   Monarch    12/24
Insane Asylum      447-2691  Live Wire     Monarch    12/24 CIA Home, Inv.
Altered Plane      526-0801                Monarch    12/24  9pm-6am  Mtn.
Vulgar Unicorn     680-8622  One Thumb     Monarch    12/24
Most Composers     771-5937                Monarch    12/24
Distillery         797-1330                Monarch    1200
Discordian Society 969-8195  Organ Grinder Monarch    12/24
Radio KAOS         979-9533  British       Spectrum   12/24
Area Code 305 -
BBS Name           Number    Sysop         Software   Baud   Comments
Area code 312 & 815 - (ILCHI) Chicago
BBS Name           Number    Sysop         Software   Baud   Comments
Dragon's Lair      215-4937  Dirty Harry   Monarch    12/24
Custom Software    246-7705  Steve Merenkov PCboard   12/96  Join Conf. 3
Alcatraz           256-0422  Black Guardian Pcboard   12/24
Zoo                350-9346  Zoo Keeper    SBBS       12/96
Snarf's Music Std. 351-0288  Snarf         Monarch    12/24
Fox River Valley   426-3279  George Krueger PCBoard   12/96  400 MEGZ
Shop               426-8228  Bud           PCboard    12/96  NO HANDLES!
Truckstop          478-3045  The Dispatcher Forum     12/96
GGS                530-2209  Pedro Gomez   Wild, Form.12/24  open door 15
Bootleggers BBS    535-2761  Megz Diamond  PCboard    12/96  400 MEGZ
E.T.'s Home        537-3463  Nightowl      Telegard   12/24
Rasputin's Dungeon 653-1765  Rasputin      RBBS       12/96  300 MEGZ
Great Cavern       683-3666  Gary Nelson   PCboard    12/96  NO HANDLES!
O'hare Oasis       693-2904  Pinball Wiz.  Telegard   12/24
New World          749-8137  Virgin Dest.  Telegard   12/24  Private
NIU Connection     753-1800                           12/24  (815)
Jousting Fields    756-3023  Med. Knight.  Spectrum   12/24
M. Lapse of Reason 759-2699  Pink Floyd    PC Board   12/24
Defiant Sceptor    885-1237  The Dealer    PCB, Telg. 12/24  Ask for Club
Sycamore ELITE     895-5573                           12/24  (815)
Aquila BBS         898-5672  898-5806                 12/24
Anonymous Wonder   935-4339  Brown Bomber  Telegard   12/24
Area Code 313 - (MIDET) Detroit
BBS Name           Number    Sysop         Software   Baud   Comments
Seitch Tabr        255-2767                           12/24
Genesis II         291-2520
The Ballroom       295-7279                T.A.G.     12/24
Mission Compatible 295-7308
007's VIP Lounge   348-8535
Dungeon of Doom    352-3666                           12/24
GLBBS              360-0106                WWIV              Pwd: POWERUP
The Nuthouse       381-2931                           12/24
Spider's Web       381-5244                           12/24
PC Playhouse       381-8633
Dude Man Dude HQ   420-4624                           12/24
Crash Landing      455-5821                           12/24  Private
Unlimited Reality  489-0747                QBBS       12/24
Ariel System       569-3194                T.A.G.     12/24
Slipped Disk       585-8315
Starship Enterprise 843-1581
Get Serious        846-0731
Tin Pan Alley      939-6339                Monarch    12/24  NAPPA #10
Beyond Reality     995-0754                           12/24
Area Code 314 - (MOSOL) St. Louis
BBS Name           Number    Sysop         Software   Baud   Comments
Brewery            394-8259                WWIV       12/24
Parthenon          522-1460                WWIV
Enterprise         664-7148
Hellfire Club      772-3153
Pinball Place      863-2954                WWIV       12/24
Area Code 404 - (GAATL) Atlanta
BBS Name           Number    Sysop         Software   Baud    Comments
Revo Emag          435-5737  Black Star    TCE BBS    12/24   TCE Home
Blueberry MUFF     458-7696                WWIV       12/24
The Pit            487-7829  Dispater      WWIV       12/24
Duck Board Elite   564-3592  Mad Gator     Pcboard    12/24
                   923-3870  Mad Gator     PcBoard    12/24
Planet X           591-1620                Emuexl/II  12/24
Iron Sheath        594-0086                T.A.G.     12/24
CIA                676-0900                Emulex/II  12/24
Sun Bane Inc.      921-4635  Lord Foul     Emulex/II  12/24
New Silicon Guild  985-1321                T.A.G.     12/24
Yellow Jacket      985-8244  Simon         Emulex/II  12/24
Tammy Hall         991-6604  Mad Max       WWIV       12/24
Area Code 407 -
BBS Name           Number    Sysop          Software   Baud    Comments
Thrash BBS         631-4601                           12/24
Area Code 408 - (CASJO) San Jose
BBS Name           Number    Sysop          Software   Baud    Comments
The Pubb           251-4689  The Bartender  Monarch    12/24
Billion Boys Club  268-6692  Wind Walker    PCboard    12/24
Nuclear Wasteland  268-7793                            12/24
The BELL Board     297-8383  Gold Finger    Emulex/II  12/24
TCH Trading Post   358-3273                            12/24
Underground I      426-2576  The Enforcer   Monarch    12/24
The Pentagon       426-7228
*.*                429-8312  Baby Eagle     WWIV       12/24
Mt. Olympus        438-3349
Atlantis           475-2729
Dragon's Heaven    735-8685  Master Ryu     Monarch    12/24
Snake Bytes        997-6399                            12/24
Area Code 412 - (PAPIT) Pittsburgh
BBS Name           Number    Sysop          Software   Baud    Comments
The Eagles Nest    539-1965                 Emulex/II  12/24   NAPPA #12
Area Code 415 - (CASFA) San Francisco
BBS Name           Number    Sysop          Software   Baud    Comments
Vector One         221-5033                 WWIV       12/96
Leecher's Paradise 234-4588                            12/24
Lunatic Labs       278-7421  Mad Alchem     Monarch    12/24
The Skull          341-1362                 Forum      12/24
Ojai               341-7564                 Matrix     12/24
Strictly Business  583-1673
Mordor             673-8670
U.C.I.             770-0140
Playboy Mansion    851-4368                            1200
Camelot            887-0983
House of Solitude  948-4925                 Forum      12/24
Wild West          968-4717  Sidewinder     Wild West  12/24
Area Code 416 - Toronto, Ontario, CANADA
BBS Name           Number    Sysop         Software    Baud    Comments
The lost Souls     241-2119  Dark Spirit   Matrix      12/24  Matrix Home
The High Command   247-4491                Emulex/II   12/24
Thieve's Guild     267-3938  Master Thief  Forum       12/24
Time Tunnel        283-6765  Time Master   USSR        12/24
Life After Death   431-9265  Jack Daniels  USSR        12/24
Air Academy        439-8374  Top Gun       FCP         12/24
Euphoria           467-6387  RJ MacReady   Monarch     12/24  FiRM dist.
Saucerful/Secrets  756-3467  Angel Heart   Monarch     12/24
Warez R Us         769-3189  Capt. Caveman USSR        12/24
Hunting Grounds    823-9439  Huntsman      Monarch     12/24
Canadian Tech.     846-7528  Bit Splice    Emulex/II   12/24
Swashbucklers II   ???-????  Desert Foxx   Emulex/II   12/24 Emulex/IIHome/PTL
Area Code 502 -
BBS Name           Number    Sysop         Software    Baud   Comments
Rasputen's Playgrd 782-0260                            12/24
Pirate's Chest     926-2857                            12/24
Area Code 503 - (ORPOR) Portland, Oregon
Area Code 504 - (LANOR) New Orleans
BBS Name           Number    Sysop         Software    Baud   Comments
TMOZ               272-9633  Bulldog       Telegard    12/24
Area Code 507 - (MNROC) Rochester
BBS Name           Number    Sysop         Software    Baud   Comments
Electric Ocean     281-0275                Brand-X     12/24
Didactic Gallery   282-5063  Purl. Illus.  Brand-X     12/19.2 Brand-X Home
Area Code 508 - (MAWOR) Worchester
BBS Name           Number    Sysop         Software    Baud   Comments
Country Morgue     250-8098  Undertaker    TBBS        12/24
Eternal War        285-5325  Warlord       QBBS        12/24
Inf. Intoxication  750-8035  Invi. Stalker TCS         12/24
Area Code 513 - (OHCIN) Cincinatti
BBS Name           Number    Sysop         Software    Baud   Comments
Psychedelic Sanct. 451-6188                Emulex/II   12/24
Ultimate Empire    896-4550  Sax Pistol    Fcp V3.0    12/24
BBS Name           Number    Sysop         Software    Baud   Comments
Rock'in Ranch      249-7248  Ranger Rick   Emulex/II   12/24  TSAN
Knights Rnd. Tbl.  281-3214  DarkMage      Emulex/II   12/24
The Prism          678-1642                Monarch     12/24
Junkyard BBS       932-7394  Junkman       Emulex/II   12/24  TSAN
Area 517 - (MILAN) Lancing
BBS Name           Number    Sysop         Software    Baud   Comments
Hades BBS          259-4641                            12/24
Nite Line          477-9315  Black Jack    Emulex/II   12/24
Mission Compat. 5  529-4287  Energy Wave   Fcp         12/24
The Magick Link    592-2741                Emulex/II   12/24
Area Code 519 - London, Ontario, Canada
BBS Name           Number    Sysop         Software    Baud   Comments
Bopper Land        660-1960  Big Bopper    Monarch     12/24
The Coffee Shop    679-2696                Monarch     12/24
Area Code 602 - (AZPHO) Pheonix
BBS Name           Number    Sysop         Software    Baud   Comments
Boss BBS           242-3935  Sysop Pokey   Emulex/II   12/24
Beta Cygnus        274-8917  Mastermind    Forum       12/24  FiRM Dist.
Radio Free Europe  866-7864                            12/24
Vahalla Islands    942-0087  Pharigm God   Tcs         12/24
ESP Headquarters   942-2111  Mr. Peace     Forum       12/24  ESP Club Home
2001 Odyssey       953-1893                ABBS        12/24
Temple of Doom     996-8002                WWIV        12/24
Area Code 606 - Eastern Kentucky
BBS Name           Number    Sysop         Software    Baud   Comments
The Vortex         331-5133  Terminator    Forum       12/96  PTL Dist.
Area Code 607 - (NYBIN) Binghamton
BBS Name           Number    Sysop         Software    Baud   Comments
Ahab's Abbey       729-7019                            12/24
Wizards Workshop   754-2950  Pirate Master Forum       12/96
Area Code 612 - (MNMIN) Minneapolis
BBS Name           Number    Sysop         Software    Baud   Comments
Avenger's Island   439-9782                Forum
Radio Waves        471-0060  The Sensei    Forum       1200
Playdo Land II     522-3959  Heavy Metal   Emulex/II   12/24
Playdo Land        557-1489                Emulex/II
The Establishment  559-8289
Area Code 615 -
BBS Name           Number    Sysop         Software    Baud   Comments
Syd's Place        691-9073  Syd Womack    PC Board    12/96
Area Code 617 - (MABOS) Boston
BBS Name           Number    Sysop         Software    Baud   Comments
Country Morgue     250-8098                            12/24
Swift's Ridge      364-3304  Sir Swift     Gen. Delux  12/24
Forgotten Dimension421-6755                Monarch     12/24
Player's Guild     455-8154  The Outlaw    Spectrum    12/96  FiRM dist.
Spinward Marches   474-0602                            12/24
Edge of Insanity   484-4921                            12/24
The Realm          527-6567  The Enchanter Emulex/II   12/24
Taster's Choice    868-5731                Emulex/II   12/24
Jabba's PC Hut     884-9498                Genesis     12/24
Lion's Den         889-0777                            12/24
Area Code 619 - (CASAD)  San Diego
BBS Name           Number    Sysop         Software    Baud   Comments
Private Sector     353-0970  The Spy       WWIV        12/24
Somewarez          436-9861  Jon           Emulex/II   12/24
Convent            475-6187                Emulex/II   12/24
Starhelm Greystaff 479-3006
Parallax           486-2858                WWIV        1200
dBORED             748-3644                PCboard
Knavery            942-0408                WWIV        12/24
Area Code 703 - Arlington, Virginia
BBS Name           Number    Sysop         Software    Baud   Comments
Treasure Island    442-6653                Monarch     12/24
The Daily Exchange 466-2120                            12/24
Gathering Gods     641-0190  The Noid      Monarch     12/24
Star Pirates II    644-2347  Darkstar      Apex        12/24
Pirates Island     759-3979                Monarch     1200
Figment/Imagination759-6579                Monarch     12/24
Cornerstone        971-7874  The Maestro   Forum       12/96  FiRM Home
Area Code 713 - (TXHOU) Houston
BBS Name           Number    Sysop         Software    Baud   Comments
??                 356-2042
Sperical Planes    358-2683                            12/24
London at Midnight 373-1769                            12/24
General Electric   438-3156                Pheonix     12/24
Crystal Orbe       488-3744                            12/24
Alternate Mindlink 489-7779
Ultimate Revolution492-1179  Celtic Phrost Emulex/II   1200  NAPPA #4
Hellfire           497-5547  Damian        Emulex/II   12/24
Lighthouse         556-5652                T.A.G.      12/24
Optical Illusion   578-0722                SYS-PC      1200
Killer's Domain    578-1455                            12/24
Shadow's Realm     578-1527                            12/24
Celestial Woodlands 580-8213 The Ranger    SYS-PC      12/24 SYS-PC & BSP Home
Super Dimension    586-9721                SYS-PC
Anarchist's Realm  774-0767                            1200
Smash Palace Mac   821-3901                            12/24
Anarchist's Under. 890-0561  Shadow Walker SYS-PC      12/24
Fantasy World      933-0062
Round Table        980-3977                Emulex/II   12/24
Area Code 714 - (CAANA) Anaheim
BBS Name           Number    Sysop         Software    Baud   Comments
CopyWorks Inc.     496-7069                            12/24
The Wish List      831-6235                            12/24
Zero Gravity       860-5779                Emulex/II   12/24
Focal Point        946-9234  Enforcer      Emulex/II   12/24
Area Code 716 - (NYBUF) Buffalo, New York
BBS Name           Number    Sysop         Software    Baud   Comments
Stoney Man's Farm  439-3269                Emulex/II   12/24  UnderGr. Home
Plutonium Mines    636-4540  Jenetic Bytm. Neuromancer 12/24  PTL dist.
                   636-5185  Jenetic Byte. Nueromancer 12/24  PTL dist.
Land of Fa         773-7526                WWIV        1200
Heaven or Hell     832-0118  Master Blaster Neuromancer12/96  NAPPA #7
Area Code 719 - Colorado Springs, Colorado
BBS Name           Number    Sysop         Software    Baud   Comments
The Edge (718)     631-8135                            12/24
Playdo Land        260-8472  Mr. Bill      Emulex/II   12/24  NAPPA #15
Insane Asylum II   597-3973                            12/24
Forbidden Passage  774-0449  Mr. X         Monarch     12/24  NAPPA/FiRM Dist.
Area Code 801 - Utah
BBS Name           Number    Sysop         Software    Baud   Comments
The Kingdom        292-8118  Xavier        WWIV        12/24
Plutocrazy         295-7522                WWIV        12/24
Berserker          485-7646  Earl Smith    PC Board    12/24
Stealth            521-3837                            12/24  Private
Area Code 805 - (CABAK) Bakersfield
BBS Name           Number    Sysop         Software    Baud   Comments
Sherwood Forest    255-2850  Robin Hood    WWIV        12/24
Theebbs            324-9239                            12/24
Unknown World      373-0574  The CooZ      Monarch     12/24  TSAN
West World         379-1616                Monarch     12/24
Mage's Lair (804)  451-3551  The Mage      Monarch     12/24
Area Code 813 - (FLTAM) Tampa
BBS Name           Number    Sysop         Software    Baud   Comments
The Trading Post   544-2108                WWIV        12/24
Mission Compat. 3  647-2580  Paladin       Emulex/II   12/24
Dungeon of Dread   689-2103                            12/24
Arabian Knight BBS 871-2189  Sinbad        WWIV        12/24
Point Blank        875-5153  Brian Hart    Monarch     12/24
Faw or Foad        962-2937  Wendle WindlesWWIV        12/96  TSAN
Sentry's Post      980-2447  The Sentry    WWIV        12/24
Area Code 818 - (CAGLE) Glendale
BBS Name           Number    Sysop         Software    Baud   Comments
Land of Warlord    280-4065  Shogun        WWIV        12/24
Night Industries 2 281-4587  Air Wolf      WWIV        12/24
Night Undustries 1 284-5946  Space Kid     WWIV        12/24
ACC                287-0408                WWIV        12/24
Phantom's Domain   368-2945  Phantom       Emulex/II   12/24  Pwd: ZERO GROUND
Roach Motel        369-2083  Black Flag    Emulex/II   12/96  WHOA
Stranger Eye       409-9472  Jagged Edge   Emulex/II   12/24  TSAN
Land of Illusion   447-9049  Maurader      Monarch     12/24
Burial Grounds     571-8389                Emulex/II   1200
Cemetery Gates     575-1887  Holy Grenade  WWIV        12/24  FiRM Dist.
Project Genesis    706-8167  One           Monarch     12/24
Gotham City        718-8227  Batman        WWIV        12/24
Krypton            773-0461  Superman      WWIV        12/24
Influx             799-3589                WWIV        12/24  Real names only
Hecker             912-4183                WWIV        12/24
ANI Systems        912-7848  The Tracer    Emulex/II   12/24  Home of WHOA
Crys. Strike Force 965-1580  Battlehawk    Emulex/II   12/24
Area Code 904 - Northern Florida
BBS Name           Number    Sysop         Software    Baud   Comment
Pool Hall          757-3578                WWIV        12/24
South East. Coil.  779-9152                Emulex/II   12/24
BBS Name           Number    Sysop         Software    Baud   Comment
City Limits        357-0316  Tuf Dog       Monarch     12/24
Area Code 914 - White Planes, New York
BBS Name           Number    Sysop         Software    Baud   Comment
Phortress          221-0035                Forum       12/24
Ninja's Place      297-0334  The Ninja     Emulex/II   12/24
Time Zone          354-1185  The Watcher   Forum       12/24  TSAN
Inner Sanctum      683-6926  Seadough      Gen. Delux  12/24
Software Cellar    795-5092                Forum       12/24
Hacker's Hideout   838-2319                Forum       12/24
Area Code 919 - (NCRTP) Research Triangle Park
BBS Name           Number    Sysop         Software    Baud   Comments
Park Place         460-9441  Joe Isuzu     WWIV        12/24
Boinger Board      846-3734                WWIV
pirate-4.txt 80x3765 Font