Fusion Of Tech And Fun !!

Step One
Sign up at:

http://fileave.com

Step Two
Download the java applet here:

http://www.multiupload.com/FI90XXVIAW

Its safe check for yourself:

File Info

Report date: 2010-03-08 19:31:15 (GMT 1)
File name: Java_Applet.rar
File size: 17123 bytes
MD5 Hash: 3d97db8f2b5488a9159223347111286e
SHA1 Hash: 4a8d3dcdaf9ea45e3e9a905f1695201604d811f6
Detection rate: 0 on 21 (0%)
Status: CLEAN

Detections

a-squared – -
Avast – -
AVG – -
Avira AntiVir – -
BitDefender – -
ClamAV – -
Comodo – -
Dr.Web – -
Ewido – -
F-PROT6 – -
G-Data – -
Ikarus T3 – -
Kaspersky – -
McAfee – -
NOD32 – -
Panda – -
Solo – -
TrendMicro – -
VBA32 – -
VirusBuster – -
Zoner – -

Scan report generated by
NoVirusThanks.org
and unzip the file with Winrar

Step Three
Upload the files needed for the setup (All the files inside the Java Applet file + the virus you want to spread)
How to upload your virus you want to spread
1: Login on http://fileave.com

2: Click on “Files”

3: Click on “Upload Files”
4: Sellect all the files from the java applet you downloaded + the virus you are going to spread and press “Upload”
5: after that is done return to your files and it should look like this:

Step Four
First Copy your link from your virus MAKE SURE YOU COPY YOUR OWN LINK FROM THE FILE YOU WANT TO SPREAD NOT THE ONE FROM THIS PICTURE!!

After you copied that URL go back to your files again and Press “Edit” from your “Index2.html”

Something like this will show up

there are 2 things saying “YOUR URL HERE” (you only see 1 on the picture but when you scroll to the left there is another one!)

And

Once you replaced them press “Save” And you automaticly return to your files!

STEP 5

Now your java applet should WORK simply press on your “Index.html” and it will load and a screen will popup

If you press “Run” You will get infected with the virus!

Step Six
The URL to the Applet looks something like this

Copy the URL and go to:

http://dot.tk

Put your URL in there and press Next (were it says “Volgende” on the picture but im Dutch)
CLICK THE URL TO OPEN THE LAST 2 PICTURES, I CAN ONLY HAVE 10 PICTURES UPLOADED IN 1 THREAD AND I HAVE 12 SO JUST CLICK THE LAST 2 PICTURES BY YOURSELF!

http://i47.tinypic.com/jjbs53.png

Now change the name into whatever you want!

http://i47.tinypic.com/2i8kjy8.png

As you can see i changed it into blabla123.tk
fill in the Captcha and scroll down and click on “Confirm” there is no need to press on “Next” because the site will also work without a email!

Step Seven
SUCCES !!! if you go to the website you changed the URL into (mines is blabla123.tk) it will go to your Applet!!

Enjoy!!!!

Start ur computer in safe mode with command prompt and type the followinf command to enable registry editor:-

reg delete HKCU\software\microsoft\windows\currentversion\pol icies\system /v “DisableRegistryTools”
and run HKLM\software\microsoft\windows\currentversion\pol icies\system /v “DisableRegistryTools”

after this ur registry editor is enable
type explorer
go to run and type regedit
then follow the following path :-
HKLM\Software\Microsoft\Windows\Currentversion\Run

on the right side delete the entries which contain ‘Brontok’ and ‘Tok-’ words.

after that restart ur system
open registry editor and follow the path to enable folder option in tools menu

HKCU\Software\Microsoft\Windows\Currentversion\Pol icies\Explorer\ ‘NoFolderOption’
delete this entry and restart ur computer

and search *.exe files in all drives (search in hidden files also)
remove all files which are display likes as folder icon.

Anti AV Techniques

In order to make our batch file virus a little more inconspicuous, unreadable or undetectable we use batch encryption techniques to fool AV’s and people trying read or decipher our code. There are many different ways and today I’ll explain all the possible ways I know for batch encryption and AV & AV heuristics fooling. I used ESET NOD32 Anti-Virus for its great heuristics capabilities and Avast4 Professional Edition for normal detection. Please remember all techniques have been tested on Windows Vista and work!