Being the nice guy that I am, I decided it'd be cool to reverse engineer the service he used to try and hack people, and I was successful; got the guy's E-Mail and a few accounts associated with the guy.
The tool he uses is literally a pay-to-use Windows password stealer. He just embeds the Java program, which then steals and does whatever, and sends a link to a zip file containing your Windows FTP passwords, Chrome/Firefox/IE passwords, browser cookies, any MSN chatlogs you might have, and some other crap. It sends the email by using a hash which is associated to your account through the main server. I highly doubt your Graal accounts would be compromised from this tool, unless you have another password somewhere which might lead to it, that is, if you were stupid enough to run the Java applet for whatever reason.
Anyway, I managed to reverse engineer the system and came up with this:
Logged in as him, downloading one of his stolen things.
The email can be traced to some accounts online for a guy going by the name of Brozza, who I distinctly remember from a rather hilarious thread from a while ago:
http://forums.graalonline.com/forums....php?p=1656707
So there you go. There's your script kiddie, email, Graal account, full name, and all.