CyberSoft.com | Makers of Linux and UNIX anti-virus Computer Security Products
The EICAR Antivirus test file is used for determining if an Antivirus product will sufficiently detect viruses. This test file is not a real virus and it is only used for testing the effectiveness of Antivirus products. For more information on this file and it's history, see the EICAR web site.
How To Use
Download the "eicar.com" test virus and a virus signature for the test virus "eicar.vdl" to your target machine and execute UAD and VFind as shown to test the sample. Please be sure to download the .com and .vdl files.
Version 2 (Current Version)
The EICAR Version 2 test suite was made necessary when some viruses started to use the EICAR test string as camouflage. Many antivirus products would detect the EICAR string and not report the virus. This was never a problem with VFind which reported both the virus and the EICAR test string. The problem was corrected when the EICAR changed the test standard so that the test would only be positive if the string was exact and did not contain any additional bytes of data either before or after the test string. According to the standard, any antivirus product which detects the EICAR test string as a subset of a byte stream of data would fail the test - this test suite conforms to the standard. Please read the Version 2 EICAR like test suite below.
Version 2 (Non Standard)
This version does not conform to the EICAR test standard. It will detect the test string even as a subset of a larger byte stream. This test suite is the same as the obsolete Version 1 test suite.
EICAR 2 (Non Standard) Test Virus (this is not a real virus)
EICAR 2 (Non Standard) Virus Signature
This version of the EICAR test suite has been officially made obsolete by EICAR and is included here for completeness.
Want More Info?
Need more information about how we can help protect your servers and safeguard your desktops no matter what OS they run?