Archives

Malware scanners located at HTTP/HTTPS proxy level should be able to scan malware, in any archive types and it should have a policy for password protected archives, nested archives and multipart archives.

Test the following archives (including a EICAR test file) with your HTTP/HTTPS proxy malware scanner. Every malware scanner is able to find the EICAR test string. Should your scanner fail with some of the formats, the retrieved test file will not do any harm to your computer. When executed, it simply displays a test string. More information on the EICAR.org web page.

Common Archives

In every archive a EICAR.COM test file is inlcuded.
.ZIP ( HTTP | HTTPS ) ZIP-Archive
.ZIP ( HTTP | HTTPS ) ZIP-Archive (Password protected)
.EXE ( HTTP | HTTPS ) ZIP-Archive (Self-Extracted)
.GZ ( HTTP | HTTPS ) GZIP-Archive
.RAR ( HTTP | HTTPS ) RAR-Archive
.RAR ( HTTP | HTTPS ) RAR-Archive (Password protected)
.EXE ( HTTP | HTTPS ) RAR-Archive (Self-Extracted)
.CAB ( HTTP | HTTPS ) Cabinet-Archive
.EXE ( HTTP | HTTPS ) Cabinet-Archive (Self-Extracted)

More Archives

In every archive a EICAR.COM test file is inlcuded.
.ZIP ( HTTP | HTTPS ) ZIP-Archive (nested archive 2x)
.ZIP ( HTTP | HTTPS ) ZIP-Archive (nested archive 5x)
.ZIP ( HTTP | HTTPS ) ZIP-Archive (nested archive 20x)
.ZIP ( HTTP | HTTPS ) ZIP-Archive (nested archive 25x)

Corrupted Archives

Here you can find corrupted archives to test how your gateway product will handle these files.
.ZIP ( HTTP | HTTPS ) Corrupted ZIP-Archive
.ZIP ( HTTP | HTTPS ) Corrupted ZIP-Archive nested in a ZIP-Archive
.ZIP ( HTTP | HTTPS ) Corrupted GZIP-Archive nested in a ZIP-Archive
.ZIP ( HTTP | HTTPS ) Corrupted TAR-Archive nested in a ZIP-Archive