Test your Anti-Virus web protection by trying to download the following files.
Eicar file= is a standardized test file for signature based virus detection software. This file can be used to verify the correct operation of antivirus software
See below for more details. http://www.eicar.org/anti_virus_test_file.htm
All files are NOT viruses, but they appear to be viruses, therefore your Anti-Virus should stop the downloads.
If you can download any of these files, then your Anti-Virus is NOT effective! Just delete any file downloaded and empty Recycle Bin.
Disable any download manager like Internet download manager & Orbit & more.
Your Antivirus should pass all these test in order to be totally effective!!! (:KWL)
NOTE: KASPERSKY VERSION 7.0.125. PASSED ALL TEST (:CLP) :BNC
NOD32 VERSION 3.0.566.0 PASSED 2 OF THE TEST. it failed the last two test! (:SAD)
REALTIME PROTECTION & ON DEMAND SCANNING ARE TOO DIFFERENT THINGS, THE ANTIVIRUS YOU HAVE MAY HAVE GREAT DETECTION RATES BUT ITS REALTIME PROTECTION IS LACKING
NOTE:
ALL ANTIVIRUS SHOULD BE SET AT MAX SETTINGS FOR THIS TEST TO COMPLETE.
Kaspersky settings should be set to scan all archives at maximum settings.
MAX SETTINGS
Sorry UG, but either an AV does it’s job or it doesn’t, you can’t start stipulating conditions half way through. I’ve tried all, the AV’s I have and none picked up this so called test virus. Maybe it’s my test environment…
dis test suppose to test the download action only rite? then is it neccessary?
i mean u alr dl the nasty and ur real-time AV cant stop it but wen da nasty wanna execute, the AV can pick it. Then ur AV does its job which is no injection happenned.
even KAV is quite lite, set it at highest settings is stil wat u dun wanna do for a limited resource PC.
Good, my Nod32 v3.0.566.0 passed all 4 tests. Web protection at max settings.
Test1 = passed
Test2 = passed
Test3 = passed
Test4 = passed
It passed only 1 test in default settings, failed 3 in default settings (:CLP)
Awesome, my KIS v 7.0.125.0 passed all 4 tests at only recommended or default settings(Web Antivirus)
My AVIRA antivir premium PASSED THE TEST ON MAX SETTING GUARD CONFIGURATION(scan archives enabled) rating10:: (Scan all files)
Test 1= Passed
Test 2=passed
Test 3= passed
Test 4= PASSED
My Avira Antivir Premium only passed one test at web guard at DEFAULT settings
Guess Avira same with Nod32 after all in defense rating8:: (:CLP)
Guess Avira defense was okay after all (:CLP)
Note: I went to Avira’s Official forum & they show me how to set the settings.
11/20/2007 16:03 [Guard] Malware found
Virus or unwanted program ‘Eicar-Test-Signature [Eicar-Test-Signature]’
detected in file 'C:\Documents and Settings\x86\Local Settings\Temporary
Internet Files\Content.IE5\88I5DTAI\eicar[1].com.
Action performed: Deny access
Exported events:
11/20/2007 16:04 [Guard] Malware found
Virus or unwanted program ‘Eicar-Test-Signature [Eicar-Test-Signature]’
detected in file 'C:\Documents and Settings\x86\Local Settings\Temporary
Internet Files\Content.IE5\88I5DTAI\eicar.com[1].txt.
Action performed: Deny access
Exported events:
11/20/2007 16:04 [Guard] Malware found
Virus or unwanted program ‘Eicar-Test-Signature [Eicar-Test-Signature]’
detected in file 'C:\Documents and Settings\x86\Local Settings\Temporary
Internet Files\Content.IE5\0YDYFUZF\eicar_com[1].zip.
Action performed: Deny access
Exported events:
11/20/2007 16:05 [Guard] Malware found
Virus or unwanted program ‘Eicar-Test-Signature [Eicar-Test-Signature]’
detected in file 'C:\Documents and Settings\x86\Local
Settings\Temp\Temporary Directory 1 for eicarcom2[1].zip\eicar_com.zip.
Action performed: Deny access
i can’t see the point of this tests… this file is NOT a virus - why it should be detected? and also i don’t see much sense in realtime web protection - AV can catch all this by scanning on-access and on-execute… i have my web-protection disabled (and also on-access - only on-create/modify and on-execute are enabled) - i “passed” first two tests, the others were also detected when i tried to run them from archive. If a virus lies somewhere in an archive - it poses no danger until it’s unpacked and run. So i don’t see any real sense in such “realtime” protection - i know that malicious code will be blocked when it’s run. Free up system resources for something more useful
