Virustotal overloaded?

I saw this tonight when I went to check the detection status of the now infamous ie7.0exe.

 

Putting aside a delay of between 8 and 12 minutes, it is well and truly time that Virustotal should have fixed their site to work with IE7 - check out the mess made of the last few scan entries.

To say that I am disappointed by the lack of detection is an understatement.  Reality is that malware sent via spam mail can be spread around the world within hours, therefore antispyware and antivirus must react within hours.  Such bad results, 12 hours or so after *I* first saw the emails, is simply not good enough.  Some of the Web sites hosting the malware (hacked sites) were shut down faster than the AV companies have responded.

virus.org, on the other hand, is far neater, and includes Trendmicro, a primary focus of mine when dealing with false positives or failures to detect malware.

Published Fri, Mar 30 2007 23:32 by sandi

Comments

# re: Virustotal overloaded?

Friday, March 30, 2007 11:23 AM by Dean

I've seen some times when VirusTotal gets backed up, but not THAT much. It usually clear up fairly quickly though. It would be nice if they fixed the site - it's annoying. Virus.org is a lot cleaner, and it's nice that they have TrendMicro, but they don't AntiVir, Kaspersky, Norton and Sunbelt. I guess it's a trade-off.

As for IE7.0.exe, at least twelve programs did detect it. Yesterday, I ran a rogue codec (Zlob) from activexmediasoftware.com on VT and only the following picked it up:

AntiVir - DR/Zlob.Gen

eSafe - suspicious Trojan/Worm

Fortinet - suspicious

Ikarus - Trojan-Downloader.Win32.Zlob.bpg

TheHacker - Trojan/Downloader.Zlob.bpl

Webwasher-Gateway - Trojan.Zlob.Gen

Twenty-seven others reported "no virus found." Ugh.

# re: Virustotal overloaded?

Friday, March 30, 2007 11:34 AM by Dean

I've seen some times when VirusTotal gets backed up, but not THAT much. It usually clear up fairly quickly though. It would be nice if they fixed the site - it's annoying. Virus.org is a lot cleaner, and it's nice that they have TrendMicro, but they don't AntiVir, Kaspersky, Norton and Sunbelt. I guess it's a trade-off.

As for IE7.0.exe, at least twelve programs did detect it. Yesterday, I ran a rogue codec (Zlob) from activexmediasoftware.com on VT and only the following picked it up:

AntiVir - DR/Zlob.Gen

eSafe - suspicious Trojan/Worm

Fortinet - suspicious

Ikarus - Trojan-Downloader.Win32.Zlob.bpg

TheHacker - Trojan/Downloader.Zlob.bpl

Webwasher-Gateway - Trojan.Zlob.Gen

Twenty-seven others reported "no virus found." Ugh.

# re: Virustotal overloaded?

Saturday, March 31, 2007 2:25 AM by jcanto

"Putting aside a delay of between 8 and 12 minutes, it is well and truly time that Virustotal should have fixed their site to work with IE7 - check out the mess made of the last few scan entries."

Mea culpa about the IE7 problem. We're currently working in a new version of the web page that will fix that problem and many others. About the delay, as you can guess, resources are finite and we're scanning many samples per day.