Newcontext menu of Windows Explorer to create the EICAR standard anti-virus test file;
EICAR.URLin the current user’s
Favoritesfolder that contains a
dataURL which creates the EICAR anti-virus test file when opened in a current WWW browser.
EICAR.COMis a 16-bit
real modeDOS program that prints the text
EICAR-STANDARD-ANTIVIRUS-TEST-FILE!upon execution. Its
is a pure ASCII text of 68 bytes length which should be detected by every anti-virus program.
dataURLs in the following file formats:
real modeDOS program
EICAR.CABis digitally signed using an X.509 certificate issued by WEB.DE TrustCenter E-Mail Certification Authority.
Download and install the CA and root X.509 certificates of WEB.DE to validate and verify the digital signature.
-----BEGIN RSA PUBLIC KEY----- MIIBCgKCAQEAwoDvctTIkyz5KyHlms35ue9lm7I2yPVqZbRjGL26OKxei/R9APYKA47yoJQu QZvr0husZPI/XQEGDicmBH1Gw/T821Y/E3pwUrumhw2dRI83Vn3wqO1OaAfkcOxjtNthr04r YT+8f1SJtZabDP0Fv7dF4ltrUSwvy+lxV4jLLU2y7qtJ6XawLHEIBZAurozEGUVlgF93nsIZ ydcHLxQzUEbSSsegkeY+aaaC/pGFE9Q3P3c4Nn5kOwK8ElwPwbHFMiK4t8RT3DSPXX0XQl2M yoB3XAhZj6VOC9JyHC4COVSTnbFz3mmDkxYL/qyKFkDH/V5JWZhEv+T0Rl2Bebh91wIDAQAB -----END RSA PUBLIC KEY-----
Note: unfortunately WEB.DE abandoned their trust center in 2018 and removed all pages and download links in 2019; fortunately the Wayback Machine archived the TrustCenter page, the CA and the root certificate.
Note: due to its counter signature alias timestamp the digital signature remains valid past the X.509 certificates expiration date!
EICAR.ICOand the setup script
EICAR.INFare packaged in the (compressed and digitally signed) cabinet file
EICAR.CABand verify its digital signature, then open it in Windows Explorer, extract its contents, right-click the extracted setup script
EICAR.INFto display its context menu and click
Installto run the installation.
Note: on Windows Vista and newer
versions of Windows NT,
the application registered for the
Install verb of
*.inf files, requests administrative privileges.
Use the X.509 certificate to send S/MIME encrypted mail.
Note: email in weird format and without a proper sender name is likely to be discarded!
HTML (and even
weirder formats too) in email, I prefer to receive plain text.
I also expect to see your full (real) name as sender, not your nickname.
I abhor top posts and expect inline quotes in replies.
as iswithout any warranty, neither express nor implied.
cookiesin the web browser.
The web service is operated and provided byTelekom Deutschland GmbH
The web service provider stores a
session cookie in the web
browser and records every visit of this web site with the following
data in an access log on their server(s):