by r3L4x
aka Real McCoy AIM Password Stealer
Written in Visual Basic
Released in March 2003
Readme for Real McCoy AIM Password Stealer by r3L4x v3.01 - [email protected] ()()()()()()()()()()()()()()()()()()() *Written in vb6, NEED VB RUNTIMES* The latest version of Real McCoy features an 'edit server' type program used in coding your ICQ number directly into the aim.exe, what this means is once you set the ICQ number you can send it to your friend/distribute it on kazaa (why anyone would do that I don�t know) and it will still work, because your ICQ number isn�t set in the registry, it is directly in the exe file. The edit server is located in the decrypter. Don�t worry, there is no 'server' as in a Trojan anywhere in this file. Although, some antivirus companies watch astalavista and mark programs on there as viruses. Edit server is just a term used when describing how a program edits the code of a compiled exe. to be on the safe side I would pack AIM.exe after configuring the settings. a good packer can be found at: www.un4seen.com/petite/ Password Recovery ----------------- 3 diff ways -Through the registry, use decrypter - Editer to see keys -Through ICQ Page, configure with decrypter - Editer -Through log, which is stored in %root%\WIN32DVR.EXE (a COMPLETELY harmless file, open in notepad to reveal log) %root% = root folder, eg: C:\WINDOWS it differs from OS to OS here is a list of functions --------------------------- Edit server Advanced PW Recovery ICQ Notification Registry Editing w/ encryption file recovery System Tray Icon sys tray Menus - exactly like AIM Shell execution of real AIM mouse over affects convincing icons Known Bugs ---------- The only one i can think of is a bug where the log in screen looks totally strange and nothing near what it should look like. I really dont know how to fix this, all my testers have had no problems at all. It was always tested in 1024x768 res. and 32 bit color. r3L4x size: 217.088 bytes startup: noneMegaSecurity