Author Topic: Is virustotal.com legimate ?  (Read 845 times)


jj2007

  • Member
  • *****
  • Posts: 12691
  • Assembler is fun ;-)
    • MasmBasic
Re: Is virustotal.com legimate ?
« Reply #1 on: January 30, 2022, 09:50:09 PM »
What a mess, Erol, but this line says it all: "I called the Microsoft consumer support department that deals with viruses and malware.   They did a number of scans that removed about 15 different malware programs"

Vortex

  • Member
  • *****
  • Posts: 2674
Re: Is virustotal.com legimate ?
« Reply #2 on: January 30, 2022, 09:58:11 PM »
Hi Jochen,

That is surely a mess and we cannot trust that site. It's easy to verify.

DoNothing3.asm :

Code: [Select]
include     \masm32\include\masm32rt.inc

.code

start:

END start

https://www.virustotal.com/gui/file/4de55e19002513d2ecd1b79fba5a1fafda43b14f84050aed1e5f34c64797a594

Quote
4 security vendors and no sandboxes flagged this file as malicious
Quote
Malwarebytes

MachineLearning/Anomalous.100%
MaxSecure

Virus.Mabezat.Dam
Rising

Malware.Heuristic!ET#92% (RDMK:cmRtazocYn5Q7bcRqGsxsGOLlmeN)
SecureAge APEX

ERROR Unable To Scan (corrupt PE File).

Unbeliavable but true. They are just trying to scare people and enforce folks to purchase AV software. I cannot find any other explanation for this case.

I would rather suggest Jotti's site looking more reliable :

https://virusscan.jotti.org/en-US/filescanjob/e3fj6nayj8

hutch--

  • Administrator
  • Member
  • ******
  • Posts: 9558
  • Mnemonic Driven API Grinder
    • The MASM32 SDK
Re: Is virustotal.com legimate ?
« Reply #3 on: January 31, 2022, 12:52:05 AM »
I have seen the same effect, what I call "The Mickey Mouse Club" share around their results untested. I have one simple window the displays an image loaded as a PNG and converted to a bitmap and the Mickey Mouse Club all flag it as having some obsure trojan in it and it is a garrantee with it built from source that there is no infection.

I use the default M$ AV and do occasional scans with Kaspersky KVRT.EXE.
hutch at movsd dot com
http://www.masm32.com    :biggrin:  :skrewy:

raymond

  • Member
  • ***
  • Posts: 308
    • Raymond's page
Re: Is virustotal.com legimate ?
« Reply #4 on: January 31, 2022, 05:53:40 AM »
What a mess, Erol, but this line says it all: "I called the Microsoft consumer support department that deals with viruses and malware.   They did a number of scans that removed about 15 different malware programs"

From my own experience with the MS support: it's almost useless.

Some time ago, I was receiving some "junk" e-mail doctored to indicate it was coming from them. Looking at the message source, I immediately realized that MS was not involved. I then tried to forward it to the Outlook team but my Windows system simply refused to transmit it back to MS on the basis that it contained a virus.

I then contacted MS asking how they could transmit such an e-mail to a customer but refuse the customer from forwarding it back to them!!! :skrewy: :skrewy:

Never got a straight answer. The only suggestion I ever got was how to minimize the amount of junk mail. :eusa_boohoo:
Whenever you assume something, you risk being wrong half the time.
http://www.ray.masmcode.com/

morgot

  • Member
  • **
  • Posts: 115
Re: Is virustotal.com legimate ?
« Reply #5 on: February 03, 2022, 11:26:37 PM »
MachineLearning antivirus soft is the new kind of shit.
Sorry for the bad English

hutch--

  • Administrator
  • Member
  • ******
  • Posts: 9558
  • Mnemonic Driven API Grinder
    • The MASM32 SDK
Re: Is virustotal.com legimate ?
« Reply #6 on: February 03, 2022, 11:45:29 PM »
I might add, I ditched MalwareBytes after it automatically deleted my defragger Auslogic. They used to be good but have joined the "Mickey Mouse Club" of shared profiles and they are just crap like the rest. The M$ AV works OK, occasionally a false positive but you can allow it if it gets flagged. For anything serious, KVRT.EXE directly from Kaspersky is not related to the "Mickey Mouse Club".
hutch at movsd dot com
http://www.masm32.com    :biggrin:  :skrewy: