Where can I download a virus?

[agreenbhm]

I'm in the process of testing antivirus software for my office. I'm deciding between two different applications, and I'd like to have some side-by-side comparisons of how well they work. I'm not interested in charts or anything like that that has already been done. I want to see for myself, a live test, of how effective each AV product is.

My users are fairly good at contracting viruses ( :p ), but I can't seem to find any! I'm using IE8 and surfing the internet without any AV software. I'm going to tons of warez & crackz sites, clicking on all the links I can find. My biggest problem is staying away from the porn, since anyone that walks around the corner will see that on my screen. I disabled images for IE to avoid this, but that probably also hindered my ability to get infected.

I already tried the Eicar test virus, but this is not a substantial test as far as I'm concerned. I want to get (a lot) of real viruses. Does anyone know of a sample I can get? If you have a known bad link, post it up!

[Orange Battery]

Personally I would use data found by other trusted sources. Just because an anti virus can pick up something in one of your tests doesn't mean it will pick up something else in the future.

[agreenbhm]

Personally I would use data found by other trusted sources. Just because an anti virus can pick up something in one of your tests doesn't mean it will pick up something else in the future.

What I meant by my OP was that I've already looked at all of the data collected by the "professionals" and am interested in a live demo as well. Of course I've taken into account the standardized benchmarks.

[redvamp128]

http://www.eicar.org/anti_virus_test_file.htm

That is the only test file that I know of offhand-

I would in the past say do a search for bonzi buddy-- not really a virus but a difficult spyware to get rid of- I would also say do a search for spyware sherrif -- not really the removal but maybe one of those links could get you infected.

[NotChetHanks]

Im trying to PM you but it won't let me for some reason. :(

[agreenbhm]

http://www.eicar.org/anti_virus_test_file.htm

That is the only test file that I know of offhand-

I would in the past say do a search for bonzi buddy-- not really a virus but a difficult spyware to get rid of- I would also say do a search for spyware sherrif -- not really the removal but maybe one of those links could get you infected.

LOL Bonzi Buddy... I remember that gay little purple ape from the late 90s. As mentioned in my OP, I don't want Eicar. Already tried it, and it's not really a sufficient AV test. It will let you know if your AV engine is working, but can't demonstrate effectiveness at removing a true infection.

[Orange Battery]

I doubt anyone will post such links, just in case users without protection click on them.

[cabron]

If you want really test your antivirus, you can go online to any dangerous websites full of viruses.

[agreenbhm]

If you want really test your antivirus, you can go online to any dangerous websites full of viruses.

Wow, you win the most helpful post eVar award. Did you even read the friggin OP?

[LucidSplendor]

I'm in the process of testing antivirus software for my office. I'm deciding between two different applications, and I'd like to have some side-by-side comparisons of how well they work. I'm not interested in charts or anything like that that has already been done. I want to see for myself, a live test, of how effective each AV product is.

My users are fairly good at contracting viruses ( :p ), but I can't seem to find any! I'm using IE8 and surfing the internet without any AV software. I'm going to tons of warez & crackz sites, clicking on all the links I can find. My biggest problem is staying away from the porn, since anyone that walks around the corner will see that on my screen. I disabled images for IE to avoid this, but that probably also hindered my ability to get infected.

I already tried the Eicar test virus, but this is not a substantial test as far as I'm concerned. I want to get (a lot) of real viruses. Does anyone know of a sample I can get? If you have a known bad link, post it up!

The most virus alerts I've ever gotten were torrent finds looking for "NERO" burning software...practically EVERY SINGLE ONE! I finally bought one, since no one could post a good/working copy.

[agreenbhm]

I doubt anyone will post such links, just in case users without protection click on them.

Anyone dumb enough to click a link that says it's a virus, in a thread about how to get a virus, probably deserves the infection they contract.

[Phenom II]

PM'd you with a site that ruined my OS once

[agreenbhm]

PM'd you with a site that ruined my OS once

Got it. Thanks for the help! I'll report back.

[empty]

No insult to you, but I simply cannot fathom how on earth you feel a live demonstration would somehow sway your choice in picking an AV. So the AV detects it? So what, that's like 1 out of a billion viruses. Perhaps you should leave the AV testing to those that actually know what they're doing (presumably they don't need to go around on tech sites asking for viruses to compile their tests...) and perhaps you might try a nicer attitude also.

Unless of course, this is all a ruse and you actually just want a virus so you can infect somebody that's ****ed you off (wouldn't be the first time it's happened)

[Phenom II]

Got it. Thanks for the help! I'll report back.

If the site is still loaded, it Hijacks the browser, then downloads a few exes, and Hijacks the desktop all in a matter of seconds

I found this out with XP and AVG Free

[agreenbhm]

No insult to you, but I simply cannot fathom how on earth you feel a live demonstration would somehow sway your choice in picking an AV. So the AV detects it? So what, that's like 1 out of a billion viruses. Perhaps you should leave the AV testing to those that actually know what they're doing (presumably they don't need to go around on tech sites asking for viruses to compile their tests...) and perhaps you might try a nicer attitude also.

Unless of course, this is all a ruse and you actually just want a virus so you can infect somebody that's ****ed you off (wouldn't be the first time it's happened)

I don't appreciate the accusation. I tend to have a short attitude with those that post dumbass responses without reading posts (not referring to you, but see above). I choose to test this way because that's what I want. If you don't want to help, then fine. And when you say "leave the testing to those that know what they're doing", I know what I'm doing. I know that I clean viruses off of machines (far) too often, and I know an effective removal when I see it (Malwarebytes, for example, in many cases). I'd like to see this for myself with one of the AV apps I'm testing. Is that OK with you?

[redvamp128]

A quick thought - when you google what you are looking for- switch the settings to "do not filter" and you may find what you are looking for. I know that default google filters out known bad sites.

[boogerjones]

Just visit The Pirate Bay, download keygens, and unpack the EXE files with 7-zip. Approximately half of them contain a virus in a separate EXE file.

[Dujun]

Go to Malware Domain List (search for it) and you will find a ton of links for real viruses. They don't all work, but new ones are posted all the time.

Also, be careful :)

[Pupik]

Just search videos on youtube for keywords like "keygen". You'll find a virus in no time.

Here's one for example:

(DO NOT DOWNLOAD THE FILE AND RUN IT!)

[shockz]

If you can find one, those fake antivirus/antispam scanner sites are usually pretty fun to test with. Don't know any of off hand though.

[stereopixels]

I don't appreciate the accusation. I tend to have a short attitude with those that post dumbass responses without reading posts (not referring to you, but see above). I choose to test this way because that's what I want. If you don't want to help, then fine. And when you say "leave the testing to those that know what they're doing", I know what I'm doing. I know that I clean viruses off of machines (far) too often, and I know an effective removal when I see it (Malwarebytes, for example, in many cases). I'd like to see this for myself with one of the AV apps I'm testing. Is that OK with you?

By "know what I'm doing" I assume you mean when the box comes up that asks whether you want to delete the virus or not you know to press "yes"? Seriously, in comparison to the companies out there that dedicate their entire business model to the study of real viruses, their patterns, and anti-virus software heuristics, I'd say your own 'test' is pretty fruitless - if you're serious about protecting your corporate environment, you'll forget endangering it more by downloading viruses on it, and instead do some in-depth study of existing published material on which corporate anti virus solutions work the best.

[sc302 Veteran]

here is what I would do, start going to torrent sites and clicking on ads. there are plenty of viruses there. you want more go to off the wall porn sites, if they don't have anything on their websites click on the ads. finally go to warez sites and password crack sites and click on the ads there. it is almost ridiculous how easy this stuff is to get on your computer when you try to get stuff for free/work around licensing.

you can also try downloading torrents, I would say about 50-70% are loaded with viruses/malware.

[shockz]

By "know what I'm doing" I assume you mean when the box comes up that asks whether you want to delete the virus or not you know to press "yes"? Seriously, in comparison to the companies out there that dedicate their entire business model to the study of real viruses, their patterns, and anti-virus software heuristics, I'd say your own 'test' is pretty fruitless - if you're serious about protecting your corporate environment, you'll forget endangering it more by downloading viruses on it, and instead do some in-depth study of existing published material on which corporate anti virus solutions work the best.

While I agree somewhat, reading can only go so far. I don't know any IT admin who has purchased the licenses for a domain/workgroup/massive networrk to an av product without actually trying it first. There is nothing wrong with throwing a couple viruses/malware at them in a sandbox and seeing how they react and behave. If you even take it from an end user perspective, seeing how they react to these programs and viruses could be valuable information. I'd almost call someone an incompetent/lazy admin if they didn't do this.

[ManMountain]

Why not fire up google and search "collection virus" ...