Need infections

[Bill Stout]

Hi all,

I can't find enough infections to beta test out product. Where can I find these?

[Sweetie(*)(*)]

Hi, its not often some one requests advice to get a virus....lol.

If u get Kazaa-lite or Kazaa resurrection, you could download from the software catagory. There are a lot of viruses that are labled as programs, keyloggers etc.
Most are pretty old although sometimes u come across a newer one.

Kazaa lite can be pretty hard to get a hold of, especially a real version, if u have any trouble PM me an ill send u a link.[not sure about posting a link here for P2P pros]

[Don Pelotas]

Sorry, but you will have to go somewhere else as we are not allowed to link to such places.

From the TOS: "Furthermore, you agree not to post any links to warez sites or sites from which malware (viruses, worms, trojans, backdoors etc.) can be downloaded".

[Sweetie(*)(*)]

I hope my post is ok im not reffering to web sites.
If its not pls let me know an ill remove it.
thanks.

[Don Pelotas]

I think you are ok Sweetie, as you said you didn't post any links.

I was only talking in general, and you posted while i typed, so my post was not directed towards you.

Regards

[Sweetie(*)(*)]

Thanks Don,
As the Malware threats on P2P sharing are usually quite old, any scanner worth it's weight shouldn't have any trouble detecting them.

[Bill Stout]

Thanks for the replies guys. Oddly enough many of the references I found are from here: http://www.wilderssecurity.com/showthread.php?t=11975

So far I've collected links to live examples of the objects (as identified by McAfee) in the list below. Many of these are just javascript exploits, but I'm collecting attacks against IE. Next I'll need to send myself (demo) infected .msg files with something harder core then EICAR samples (http://www.testvirus.org/).

For my demo, I log in as 'administrator', set IE security to low, hit the exploit sites and any site that looks infectious, copy and paste between IE and MS Office apps, download and open files, then scan the local system with McAfee and Ad-Aware Pro (which shows no infections). I need to add viewing infected Outlook messages and opening infected attachments to the demo.

• AX-Runner (Active-X)
• Exploit-CodeBase.gen
• Exploit-MIME.gen.exe
• Exploit-XPHelpDelete
• ForceFrame
• JS-Downloader-FU
• JS-Exploit-DialogExp
• JS-Exploit-FormPaste
• JS-Exploit-OVC.demo
• VBS-Inor
• Exploit-viaSWFurl
• Exploit-WsBaseUrl
• JS-Exploit-AutoScan
• JS-Exploit-BadParent
• JS-Exploit-BodyRefreshLoadsJPU
• JS-Exploit-DragDrop
• JS-Exploit-FileProxy
• JS-Exploit-Finddeath
• JS-Exploit-Linkiller
• JS-Exploit-Navagate
• JS-Exploit-SafeRef
• JS-Exploit-Search
• JS-Exploit-WhoFramed