Welcome to SecurityForumz.com!
FAQFAQ      ProfileProfile    Private MessagesPrivate Messages   Log inLog in

WTD: Any kind of Virus

  
   Security Forums (Home) -> General Discussions RSS
Next:  PSW.banker.WQP reported by Avg  
Author Message
jpd1977uk

External


Since: Aug 24, 2006
Posts: 1



(Msg. 1) Posted: Thu Aug 24, 2006 7:33 am
Post subject: WTD: Any kind of Virus
Archived from groups: alt>comp>virus (more info?)
Im after any kind of Virus to test my system. Can anyone help?

 >> Stay informed about: WTD: Any kind of Virus 
Back to top
Login to vote
Snowsquall

External


Since: Oct 18, 2005
Posts: 18



(Msg. 2) Posted: Thu Aug 24, 2006 1:20 pm
Post subject: Re: WTD: Any kind of Virus [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
jpd1977uk RemoveThis @gmail.com wrote:
> Im after any kind of Virus to test my system. Can anyone help?

Yes. The following link provides a file that sets the antivirus off as
if it were a virus. That way you know if you were to get a real virus
your antivirus would work and you would be protected.
http://www.eicar.org/anti_virus_test_file.htm

If you are looking for actual viruses, one must realize it could be an
offence to spread/send them out even if accidently. Be careful. But
then that depends on the laws of your land.

 >> Stay informed about: WTD: Any kind of Virus 
Back to top
Login to vote
edgewalker

External


Since: Apr 07, 2006
Posts: 111



(Msg. 3) Posted: Thu Aug 24, 2006 6:09 pm
Post subject: Re: WTD: Any kind of Virus [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
"Snowsquall" <Snowsquall157 DeleteThis @sympatico.ca> wrote in message news:1156450827.551687.316070@b28g2000cwb.googlegroups.com...
>
> jpd1977uk DeleteThis @gmail.com wrote:
> > Im after any kind of Virus to test my system. Can anyone help?
>
> Yes. The following link provides a file that sets the antivirus off as
> if it were a virus.

Good! It is important to note that the EICAR string is meant to demonstrate
the working of the AV rather than to test the working of the AV. In other
words, it doesn't really tell you anything about the AV's ability to detect
viruses. What it does do is allows the user to see what the AV would do
if it actually detected a virus, but without the user actually having to deal
with handling a real virus.

Recently the EICAR string has been used as a tool to demonstrate the working
of the AV's ability to de-archive the file and thus detect the string in the extracted
file. People have misunderstood this as a "test" of the AV's ability to detect viruses
in various container files such as encoded e-mail attachments or compressed archives..

Bottom line - EICAR does not "test" the AV, it is only for demonstration of what
the AV would do if it encountered a real malware sample. It also lets you know
that it is actually running and configured at least properly enough to detect EICAR.

> That way you know if you were to get a real virus
> your antivirus would work and you would be protected.

Not really. But you would know what to expect if it did happen to detect one.
Flashing red screen and and shrill alarm might cause a heart attack for some
unexpecting users. Smile)


> http://www.eicar.org/anti_virus_test_file.htm

IIRC they also supply e-mail attached EICAR and even some e-mail attached
zipped double zipped and triple zipped EICAR to help confuse people about
its real use. Smile)

> If you are looking for actual viruses, one must realize it could be an
> offence to spread/send them out even if accidently. Be careful. But
> then that depends on the laws of your land.

Look for executable files in the binary pictures groups - they are usually
trojans (not viruses) but are malware and should be detected by most
AVs. Do ""NOT"" execute them to see if the on access AV works.
Use EICAR to demonstrate the working of on access because if it does
not detect the actual malware you're hosed. The EICAR test string is
an actual executable file despite its appearance, and is safe to execute.
 >> Stay informed about: WTD: Any kind of Virus 
Back to top
Login to vote
Display posts from previous:   
Related Topics:
I have a virus that kind of looks like an ink stain (that .. - Norton does not recognize it. But I have a virus that puts this ugly black "thing" on every screen display. If I can not get rid of it, I will have to buy a new computer. Suggestions on what I can do?

New kind of definitions to Kaspersky anti-virus - I found that update address ftp.avp.ru/updates_ext has a different set of malware regognitions including adware, porn-dialers etc. Here is a list what is included in the avp.set: kernel.avc krnunp.avc krnexe.avc krnmacro.avc krnjava.avc krnengn.avc..

New kind of definitions to Kaspersky anti-virus - I found that update address ftp.avp.ru/updates_ext has a different set of malware regognitions including adware, porn-dialers etc. Here is a list what is included in the avp.set: kernel.avc krnunp.avc krnexe.avc krnmacro.avc krnjava.avc krnengn.avc..

what kind of AV for w2k serv - as in subject... I'd like to know which should I use with Windows 2000 Server or Adv. Server. I would like to use it for free. Is there any free and good AV? Best regards

Some kind of eBay spoof - Ran a lot of software to get rid of a lot of spyware and malware on this computer, but one thing seems to remain: When we go to eBay, particularly My eBay, it goes to some kind of phishing page. We can work around it, but it's a pain. Any ideas wha...
   Security Forums (Home) -> General Discussions All times are: Pacific Time (US & Canada) (change)
Page 1 of 1

 
 You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



[ Contact us | Terms of Service/Privacy Policy ]