


          WAR & PEACE
   (documentation for ISoaQ)



         by  Letodatus
 







ISoaQ - (v0.70);
by Letodatus (borisnicolaich@mail.ru,
http://isoaq.da.ru)

Contents:
1. Legal stuff
2. How cool this patch is.
3. What's new in this version (history).
4. Functions
5. Hints and troubleshooting common
   problems
6. Thanks & Excuses
7. FAQ -- other instructions and
   troubleshooting thing
8. The Process Tweaker
9. Contacts


  T H E   L E G A L   S T U F F
     (disclaimer & license)
By RUNNING this program you agree to
the following terms:
1. Neither the author nor the official
distributors of this program are responsible
in any form for any damage, misuse or harmful
activity performed with the help or by
the program.
2. You won't distribute this program in
any other form than the original package.
3. You won't alter the program's code (or data).
(this one's funny, heh :)
4. You're aware of the risk of virus infection
and are not to blame me for the possible
infections or any third-party add-ons
brought to your PC via the program (I've come 
across with an altered version of ISoaQ once
which was packaged into installation package
that also contained a Back Orifice server).
[1999/07/03] I've heard someone totally
imitated ISoaQ interface in their trojan :)
5. In other words, you agree to use the
program at your own risk and don't bother me
with anything :)




JUST BY GETTING SOMEONE'S DB FILES
AND USING THIS PATCH YOU CAN:
STEAL VICTIM'S PASSWORD, LOAD THEIR
CONTACT LIST, VIEW THEIR HISTORY,
LOG ON TO THE SERVER PRETENDING
YOU'RE THEM, RECEIVE SERVER-STORED
MESSAGES WHICH ARE SUPPOSED TO BE
GOTTEN BY THEM, ANYTHING!
The only thing you need to do this ALL
is to steal their WHOLE DB dir (if you
intend to steal the pw only, then only
two files are needed: DAT & IDX).

Known bugs:
- DB backuper doesn't work (don't see
  any point in fixing it)
- Too many browser windows are opened


NEW (v0.71)
- A single function for ICQ2000a added
  (add users w/o auth in search mode)
NEW (v0.70)
- The Process Tweaker(tm) is added
NEW (v0.62)
- MessageBox patch for 3.19
- IP patch fixed
NEW (v0.61)
- Some bugs fixed (interface)
- Supports ICQ 3.19
NEW (v0.60)
- General support for ICQ 3.XX binaries
  added
- Support for ICQ 3.17 added (IP unhider,
  No Auth.)
- Interface changed (version selection)
- "Add UIN to registry" now works correctly
  with ICQ 3.XX
NEW (v0.54)
- Some bugs fixed (interface)
- Patcher engine now is prepared for a
  new way of cracking
NEW (v0.53)
- Some new languages added (now translated
  to 14 languages)
- Support for ICQ 2.22 updated (the password patch)
- A language bug fixed (with Portugal)
- A closed function bug fixed (n/a in this
  build of the patcher)
- Some internal rebuilds
NEW (v0.52)
- Some new languages added (now translated
  to 13 languages)
- Support for ICQ 2.22 added (password patch is
  unavailable)
NEW (v0.51a)
- One of the MultiInstance cracks is available
- Minor fixes
NEW (v0.51)
- Some functions for ICQ 2.21 added
NEW (v0.50b)
- Turkish and ChineseBIG5 languages added
- 7 owners limit is now removed though Registry
NEW (v0.50)
- Some vital mechanics rewritten from scratch
- Spanish and Greek languages added
- Named it 0.50 because 0.4X are unreleased
  experimental versions. Don't search for them :)
NEW (v0.33a)
- German langauge added
NEW (v0.33)
- Supports v2.20 1800 which doesn't differ
  from 2.15 any bit
- Few bugfixes
NEW (v0.32c)
- Italian and French languages added 
  (thanks to Luca Cotta Ramusino
   AKA The Digital Alchemist and to
   *PartyMix* AKA CoolMan)
NEW (v0.32b)
- Dutch language added (thanks to The Artic)
NEW (v0.32a)
- Multi-lingual interface mechanism added
- Russian interface partitially made
- Interface handling changed a bit
NEW (v0.32)
- Now 'You were added' notification is
  removed also when adding users direcly
  from contact list.
NEW (v0.31)
- New option added: remove 'You were
  added' notification. Yet untested and
  disabled for public use.
NEW (v0.30)
- Patching engine changed greatly
- Supports ICQ 2.15 1701
- 7 users limit crack removed due
  to my lazyness
- A new option: add users w/o
  authorization directly from contact
  list
NEW (v0.24a)
- A bug fixed
NEW (v0.24)
- Now cracks ICQ 99 v2.13 b1700
NEW (v0.23)
- Now cracks ICQ 99 v2.11 b1700
NEW (v0.22)
- Now cracks ICQ 99 v2.10 b1700
NEW (v0.21)
- Now cracks ICQ 99 v2.05 b1700
NEW (v0.20)
- Run several copies of ICQ.EXE at a time
(disabled by the moment).
- New lame interface:
      * Lotsa useless images
      * Some other major rebuilding (not
        visible at a first glance)
- New lame functions:
      * Automaticly add UIN to registry
      * Delete UINs from reg (most likely won't work)
      * Automaticly change the LastOwner UIN in reg
      * Auto-Backup your DB/NEWDB dirs
      * Auto-Backup your ICQ.EXE
      * Auto-Recover ICQ.EXE 
- File "readme.!!!' renamed into "isoaq.txt".
NEW (v0.13 not released)
- Nothing new, actually. Interface is
  improved a little bit.
NEW (v0.12a)
- Another bug with no auth. fixed...
NEW (v0.12):
- Added patch that allows to use more
  than 7 UINs at once.
- A bug from 0.11 fixed: no auth. now
  works.
NEW (v0.11):
- Now supports 2.03 b1690
- Minor bugfix with warning char "*"
NEW (v0.10):
- Now supports 2.03 b1677
NEW (v0.09):
- New function added for b1672 - IP unhider
NEW (v0.08):
- Now supports ICQ99a DLL 2.02 b1672
NEW (v0.07):
- Now supports ICQ99a DLL 2.01
  build 1620
NEW (v0.06a):
- A minor bug fixed
NEW (v0.06):
- Now you can add people without their
  authorization in ICQ99a too (still
  unstable).
NEW (v0.05):
- ICQ 99a is supported (only pw patch)
NEW (v0.04):
- Added the option to add yourself
  and the people already on the list
- Untested. Expect dirty stupid bugs
  like in v0.02 :)
NEW (v0.03):
- Another nasty bug removed - No Auth.
  won't crash your ICQ any more...
NEW (v0.02):
- MessageBox patch is rewritten. Now it
  should work always, the password's
  location is extracted from ICQ's own
  address table.
- UnPatch feature is removed...


----------------------------------
DAT decryptor will not be written.
If you need a decrypted .DAT you
can simply catch it in ICQ memory.
----------------------------------


In this version of ISoaQ-patcher
8 functions are implemented:
 * Remove requirement to get authorization
   before add a user.
 This will blow the "Enter authorization reason"
 box. This patch is unstable in ICQ99a, so
 you should apply it, add any user you wish
 and then recover icq.exe from backup.
 Or, you may continue using the patched
 version, but expect some minor bugs to appear.
 The only problem I've noticed is that
 ICQ will shut down just after you add
 a user that requires authorization.

 * Remove authorization requirement when
   adding someone directly from contact list.
 Same as the above, but works directly from
 your contact list when a new user msgs you.
 No need to go for a search in the User
 Directory.

 * Make the password appear in the MessageBoxA
 This is actually why i've released this
 patch (initially a part of the ISoaQ 
 project) - too many people 've been asking
 for it.
 When applied, it'll make ICQ show the
 real password if you enter an incorrect one.

 * Allow to add yourself. This will also
 allow you to add other people more than
 once, though i didn't check that out.
 Use with extreme care! Backup your DB files
 before use!
 If on loading contact list ICQ client "sees"
 that you've added yourself, it'll delete
 your whole account from your PC!
 So before restarting ICQ, recover old
 DB files or simply delte yourself from
 your contact list. Se the next sections about
 the possibilities of avoiding that check.

 * IP Unhider. Will show your friend's IP
 even if he set IP-hiding on. I had to added
 it because production of other IP unhiders
 seemed to be stopped :)
 Hey, crackers, was it too difficult to write
 a patch for 99? Why do you drop your
 software and don't support it? :)

 * Allow to add more than 7 users to ICQ.
 Originally ICQ allows you to register 7 users,
 no more. If you try to register the 8th, the
 client will offer to delete the first one.
 There're two obvious cases when the check for
 7 simultaneous users is done, both are removed
 when the patch is applied. However, this crack
 was made in a hurry so i haven't tested it yet
 (1998/12/18). Mail me if it doesn't work.
 
 * Allow to run multiple instances of ICQ.EXE
 Will allow you to launch more than 1 ICQs at a
 time. Disabled in public versions by the moment.
 Pls don't mail me any more on that :)
 
 * Remove 'You were added notification'
 When you add a user to your contact list, he
 won't be notified of that fact any more.
 You can choose to apply this when adding users
 from contact list or through the search engine.


1 unavailable option (completely removed since 0.12):
 * Install protection versus DB files
 deletion.
 As mentioned above ICQ will delete your account
 from your PC if it sees that you've added yourself.
 There are also two other occasions when
 your DB files and registry entries are
 deleted by your client.
 Originally, this patch option will save
 your data from being deleted. I tested it, it works
 fine, BUT THE REASON WHY I DIDN'T INCLUDE
 IT WAS:
  Even when the deleteion routine is bypassed,
  the procedure of loading your contact list
  won't load it if the list contains
  "suspicious" UINs :)
  So you'll see an empty contact list with
  the single contact "system" in the top of it,
  though your original list still exists in
  ICQ's files.
  Forseeing the amount of mail i'd recieve if i include
  this option and that 1/2 of ISoaQ patcher's users
  will mail me complaining that "anti-deletion
  patch doesn't work" i decided to release it
  with the new version which will also include the
  patch to load any contact lists (perhaps :).
  [98/12/22] - i'm not planning to implement it
  any more.

PLUS: There're some other stupid features
  like automatic backup which are not worth detailed
  description.

THINGS TO REMEMBER WHEN USING:
 * Don't forget to backup you ICQ.EXE
 * Don't forget to delete yourself from
   your contact list (when option 3 is
   applied). Otherwise the next time ICQ
   is launched it'll delete your DBs.
 * If using ICQ99 don't forget to close the
   patcher before starting ICQ.

IF IT DOESN'T WORK
 * If the patcher says "Cannot find ICQ.EXE"
   check the location of the program,
   make sure that it is not running and
   is not open by any other software, which
   sets "read-only" to it.
 * If the patch is applied, but the messagebox
   after incorrect password input says
   "Password does not match...", set
   security level to "High", exit ICQ, and
   run it again. The messagebox with password
   appears only on the program's startup
   (when password is compared with the local
   one stored in the <UIN>.DAT, _NOT_ when
   it is sent to ICQ network).


Thanks:
------

1. Thanks
Special thanks to:
Sashka (for Alphas supply, help with USR software
 and everything else)
NICKOLAJ (for providing space at his
 server(SITE #3) and other "web" support)
*PartyMix* (AKA CoolMan) for the help with
 CGI, for the French translation and for
 other 'real-time' support

Thanks for translations to:
The Artic (Dutch)
Luca Cotta Ramusino (AKA The Digital Alchemist) (Italian)
*PartyMix* (French)
DN (German)
Jonathan Wolf (Hebrew)
Salvador Bonavita (Spanish)
MTG (Greek)
Evren Alici (Turkish)
Turk Chan  (ChineseBIG5)

Thanks to:
'Merideth' (for reporting a vast amount of
 orthographical mistakes in the patcher
 and for the rest)
BarryM (for help with testing 'you were added'
 notifications).


	------------------------
	4Dummies/FAQ section.
	This one is based on the
	mail I recieve.
	------------------------
				"Esli tchelovek durak
				 to eto nadolgo..."



Q: -1- Explanation on "Ripping someones passwords" :)
A: 1. Steal theirs DB files
   2. Copy them to your DB dir
   3. Add the UIN to the "icq\owners" part of the registry
   4. Set their security to high if it's not high yet
   5. Use the password patch :)
Since version 0.20 of the patcher there's a function to
add UINs to registry automaticly.
WARNING! I won't answer to any email containing questions on
this one. If you don't know what I meant by the above, well,
then it's probably better for you not to do any
password-stealing. Neither I will explain any of above
points in details -- if you don't know a way of stealing some
files from a PC or even --gosh!-- don't get what the registry is
it's your problem, not mine.


Q: -2- Explanation on "why this damn password thing doesn't work??"
A: If the patch "doen't work" make sure that you expect the
password to appear when it's compared to the one STORED 
on your PC (not at Mirabilis server).
If you don't know how to ensure it
- just watch the box in high sec. mode when the password
is asked for the FIRST time (when your contact list is
not loaded and XXXXXX appears in the top of it instead of
your UIN).

Q: -3- Explanation on "what's the heck is that 'MessageBoxA'"
A: By MessageBoxA I meant the little window that says "Incorrect
password". Please, don't email me about it any more. You can
see the picture of that messagebox window at the homepage
(http://isoaq.da.ru).

Q: -4- Why doesn't 'no auth' thing work?
A: By the moment (0.12a) the patch removed the requierement for
authorization only in the part when you search for user in global
ICQ directory (so you can't bypass authorization request when you
push the button in the "you were added" window). It was done
on purpose so that you had the opotunity to do send a request
sometimes. Maybe it's inconvenient but it's better than
totally changing the flag in user's info from 'authorize' to
'always'.
Mind that versions 0.11 and 0.12 contained a bug and failed
to make a no auth. patch in b1690

Q: -5- What is [Parse] button for?
A: It checks if you've specified ICQ's version correctly, and
if any of patch options were applied already.


Q: -6- Why don't you add an unpatcher or contact list backuper?
A: Unpatcher -- there used to be one once, but writing an unpatcher
for each new version of the patcher really drove me down and
I removed it. Anyway, making backup of icq.exe manually is
much more easier and efficient.
Contact list backuper -- there're so many available, why should
I make it? Perhaps sometime I'll add it but it's not urgent.
0.20 - has it.

Q: -7- What does [Get from the Registry] button do?
A: Just tries to get your ICQ path from the Windows registry.

Q: -8- What are the Registry&Backup (Ex-"Utilities") tabs for?
A: It's for lamers. Use it if you want, but it's easier to do
this all manually. See question -6-

Q: -9- Why don't you release some useful patches immedeatly?
A: Because I want too keep something for myself to trade :)
There doesn't seem to be any way to get the things I need without
a trade.

Q: -10- I indicated the correct path but ISoaQ keeps saying
   "Cannot find ICQ.EXE"
A: Close al these ICQs running, dammit :)  Especially for you
I changed the message "Cannot find ICQ.EXE" to "Cannot find
ICQ.EXE or it's running". ISoaQ just like 99.99999999% of other
windows apps can't open files for writing which are locked by
OS because they're used by some other apps that set the block
or simply because they're running.

Q: -11- I have several UINs and I want to see on of the passwords,
but MessageBox shows only the password of the last UIN used.
A: Set LastOwner key of the registry to the UIN you're trying
to hack, then try again. Since 0.20 there's a function to change
LastOwner key directly from the patcher.

Q: -12- Can you make ICQ
	- Show ppl in invisible
	- Accept the files you send automaticly
	- Remove me from someones ignore list
	- etc...
A: No. If I am able to do something, I do it :)

Q: -13- [Russian] Pochemu GIF s functsiyami na tvoey page
narisovam petlyurovskimi tsvetami? Ti s Ukraine?
A: No, I just like that color combination! :)

Q: -14- How do I get DB files?
A: Once again, it's YOUR problem. Don't email me on this

Q: -15- When tried to add DB files to my ICQ it crashed
with 'abnormal termination' message. Why?
A: Either you haven't downloaded the files entirely or it
is a version compatability problem. Depending on the reason,
try redownloading the files or fixing them with dbconvert




T H E   P R O C E S S   T W E A K E R

The Process Tweaker is a program that alters ICQ's code and
data directly while ICQ is running. Here're some facts that are
aplicable to the Tweaker by the time of writing of this text.
(Alpha 2) 
* The main idea of the Process Tweaker is that it acts like a real
  debugger (sets the breakpoints and handles them automaticly)
* To use - close any open ICQ processes, type in the filename
  with the path into apropriate box, press 'Launch ICQ'
* The Process Tweaker works only with ICQ 2000 Alpha build 3060
* Only two functions are available by the moment
    Show IPs
    Send messages from a spoofed UIN (set to 1 in this Alpha Demo)
* It won't run under Windows NT
* Improper use can harm your ICQ database (DB files)







C O N T A C T S

EMail:   borisnicolaich@mail.ru     -- still works, heh :)

URL  :   http://isoaq.da.ru       -- points to the most recent one

	 http://www.arduofix.com  -- will be up when they turn the domain back again
	 http://xbx.ipc.ru/isoaq		      -- cool SP  (down)
         http://209.249.13.253/isoaq             -- comercial SP  (down?)
         http://www.xbx.org/isoaq                -- comercial SP  (down)
         http://www.bladering.org/isoaq          -- comercial SP  (down?)
 
         http://www2.cybercities.com/l/letodatus      -- free SP (haven't updated it for ages)
         http://thor.prohosting.com/~bornic/          -- free SP (up again)

ICQ UIN: I don't want to publish this one.
         Warning! There're some fakers (I met at least
         TWO) who pretend they're me :)
         Don't believe to what's written in one's
         info :)
         (Of course, this doesn't mean I don't
         have a UIN. I do) 
----------------------------------------------------------------

mailto:borisnicolaich@mail.ru
(but don't spam me with the messages like "what's this crack for?")
Also, don't forget to check HTTP://isoaq.da.ru for updates!

		Letodatus AKA BorisNicolaich