For those who test AV's and such

[pparks1]

I'm working on a resource thing at work and I'd like to show a few examples of something like a rogue AV applications and how something like Sandboxie protects you from it.

The problem is, I'm "unable" actually to find anything. It's funny that some people cannot stay away from it and I cannot find simply find anything.

Anyway, i know that trading these types of links is probably not allowed on this board...but if somebody could just PM me some resources, I would appreciate it.


Edit: I find it totally hilarious that I am unable to stumble upon anything bad in an attempt to demonstrate what could happen.. I've literally been searching for rogue AV's and such for the past hour and have turned up NOTHING.

 

[Petey7]

I used to run in to the things where it claims it is scanning you computer remotely in a browser window on www.surfthechannel.com. It had been a while since I've been on there for that very reason so I'm not sure what your chances are right now. It still looks the same so just look for some shows and you should find one soon enough. If you want to increase your chances, make sure to turn of any pop-up and ad-blockers and if using IE, turn off protected mode.

DISCLAIMER: I do not support or recommend the use of sites such as surfthechannel which allow you to illegally view copyrighted content. I am only providing the link for the cause stated in the first post.

 

[G1LLY]

PM'd you something mate...

Hope it's got some useful stuff you can use

 

[pparks1]

I think I have what I needed guys. Although MSE jumped all over the place when I attempted to download anything from inside of sandboxie. So, kudos to MSE.

 

[YTBOY83]

Is Sandbox even worth using?

 

[pparks1]

Is Sandbox even worth using?

Sure, it secludes your browser or whatever else you are running into it's own virtual space that doesn't actually write your actual system or touch your real registry. This way you can test things out first in the sandbox and make sure they are fine.

And it's a safer environment if you are going to surf around porn sites and other shady websites. Once you clear the sandbox, it's all gone. Nothing gets put on your actual machine. I like that.

 

[whs]

Could this help? An Examination of the EICAR's Standard A-V Test Program

 

[Jaxryley]

Sandboxie - been using it since about version 1.6 and have downloaded/ran gigs of samples without a breach.

Another handy tool for an already infected machine where an exe killing rogue is active is RogueKiller which will kill the rogue and in most cases kill it's autostart allowing a scan with other security apps to clean up any dregs.

RogueKiller

KernelMode.info • View topic - List of Malware Sources