FAQ: Detection of EICAR Test Virus and ClamAV Test String

The eicar test virus will trigger the 'DefaultAV' ClamAV engine when it comes into Sentry as an attachment (in a file). Sentry administrators can test this by sending the eicar test virus into Sentry as an attachment. The test file can be base64 encoded or not, compressed or not.

For more information on the eicar test virus see: http://www.eicar.org/86-0-Intended-use.html.

 

Sentry administrators can test the ClamAV engine with a simple string using the ClamAV test string.

The base64 encoded ClamAV test string is below.. (encoded so it gets through the mail filters).

JENFbGlhY21hVHJFU1R1U2Npa2dzbiRGUkVFLVRFU1QtU0lHTkFUVVJFJEVFRUVFJA==

You can decode this to get the actual string here: http://www.base64encode.org/

Have more questions? Submit a request

0 Comments

Article is closed for comments.