Eng
  1. Skip to navigation
  2. Skip to content
  3. Skip to sidebar


EICAR


Aliases:


EICAR
Eicar-test-file
Eicar_test_file

Clean - Not Malware
Other
W32

Summary

The EICAR Standard Anti-Virus Test file is a special file used to check and confirm the correct operation of security products.



Disinfection & Removal

Automatic Disinfection

Allow F-Secure Anti-Virus to disinfect the relevant files.

For more general information on disinfection, please see Removal Instructions.



Technical Details

EICAR is the European Institute of Computer Anti-virus Research ( http://www.eicar.org).

The EICAR Standard Anti-Virus Test file is a special dummy file which is detected exactly as if it were a virus. It is used to test the correct operation of F-Secure Anti-Virus products; it is also detected by several other antivirus products in a similar manner.

The most common uses for the EICAR test file are:

  • Confirms the anti-virus application is installed correctly
  • Demonstrate what happens when a virus is found
  • Check internal procedures and reactions when a virus is found

When executed, the EICAR test file will simply display the text "EICAR-STANDARD-ANTIVIRUS-TEST-FILE!" and exit.


Using and Creating An EICAR file

Users who would like to check the correct operation of their F-Secure Anti-Virus products can download the EICAR test file from the following links:

Alternatively, to create an EICAR test file, use any text editor to create a file with the following single line in it:

  • X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*

Save the file with any name using a COM extension; for example, EICAR.COM. Make sure you save the file in standard MS-DOS ASCII format. Now you can use this file to demonstrate what occurs when a virus is detected.







Submit a sample




Wondering if a file or URL is malicious? Submit a sample to our Lab for analysis via the Sample Analysis System (SAS)

Give And Get Advice




Give advice. Get advice. Share the knowledge on our free discussion forum.