VirusTotal delivers the collective wisdom of 32 viruskillers on-demand

Virustotal is a web service that provides on-demand scanning of your local files for worms, trojans, and all kinds of malware detected by antivirus engines. It allows you to upload any local file up to 10 megs in size and will perform a scan across 30+ different virus scanning engines (which include all of the leading heavy-hitter virus killer engines on the market).

Let’s assume for the sake of discussion that most of us have fairly competent, updated virus-killer and antispyware software and firewalls that keep malware attacks at bay. But what if you want to open a file or run an .exe that is, by your estimation, of dubious origin? It is possible for you to manually override your antispyware and firewalls merely because you are accustomed to doing so when they intercept legitimate software and files and ask for your arbitration. Or, alternately, you might have a dangerous file that is simply not being recognized as such for whatever reason by the security software you are using.

This issue is of particular concern to me as I like to think that all the software featured on Freewaregenius is malware free, and the way I “check” for this is to simply try out the software and see how the security software I run responds, which is not really a guarantee that a file is malware free.

Enter Virustotal, a service that will scan any file that you upload to it using more than 30 virus detection engines with all the latest updates, making it far more likely that if the file in question is dubious that it will be recognized as such by a subset of these engines at the very least. Here are more notes on this service:

    • Types of malware detected: can detect worms, trojans, and all kinds of malware detected by antivirus engines. This does note include adware (I tested with a known adware program),
    • Virustotal Report ScreenshotThe scanning process
    • but most (not all) of the engines will identify spyware.
    • How to upload a file: simply upload using the form on the site or email to scan[at]virustotal.com with “Scan” as subject and the file included as an attachement. Another option is to use the downloadable “VirusTotal Uploader” (see screenshot) which can upload straight from the Windows context menu. Your file in all cases can be up to 10 megs in size maximum.
: once uploaded your file will likely be entered into a queue before it is processed, but in my experience that takes less than a minute to clear. If the file has been uploaded to VirusTotal previously you are given the option to see the report that is on file or to re-scan. Virustotal will scan your file sequentially in one virus engine after another and
display the results as they become available. Typically this entire process takes less than 5 minutes, but there are high-load instances where it could take up to 15 minutes+.
  • Engines supported: include Kaspersky, NOD32, Avira, and AVG. For a complete list go here.
  • How to read the results: is up to you. check out the latest AV-Comparative tests to figure out which virus killer engines are the most effective, and of course the more warnings your file generates the more concerned you should be. What’s cool is that even when you have one or two warnings they are usually spelled out in a way that can shed some light on what the potential issue may be. See the screenshot above for an example of results.Virustotal Uploaded in the context menu
  • Statistics: some interesting numbers in the stats page.

Overall this is a fantastic service that delivers the collective wisdom of the malware-fighting community to your fingertips on demand. Note, however that this is not a substitute for having an antivirus program with real-time protection locally on your machine. For someone like myself who might need to know exactly what software I am publicizing/recommending to my readers on my site this simply is an amazing resource.

Go to the Virustotal page.


 
 
 
Samer Kurdi

Samer Kurdi

Has been reviewing software since 2006 when he started Freewaregenius.com
flattr this!
  • Tim

    Been using this for a while now

  • Pingback: VirusTotal delivers the collective wisdom of 32 viruskillers on-demand « Webwide’s Logs()

  • Pingback: thak’s cool links » VirusTotal()

  • Fossil

    Great! Thanks

  • http://www.seriall.com Damon

    http://www.seriall.com I believe that is the website. I’m sure you have heard of it. Anyway admittingly I did use this site while I was in college, and of course it’s known for viruses since it’s offering free software keys illegally. Well I downloaded a file without running it and it is a virus. Tried uploading the file to the site after McAfee caught it, and it has 0 bytes, so it won’t scan the file at the website. I just wanted to bring this up as a possible weakness in the system, but I do appreciate your site. The file I downloaded was a registration key for 2614. Adobe CS3 Design Premium CS3 serial number. The 2614 is the number entry for that file. Anyway, I just renamed the file after the Anti-Virus caught and deleted it after the file was cleaned. Please don’t think I’m trying to give you a virus I just didn’t know viruses came in 0 byte files. Again this file executes as soon as you download it. It doesn’t have to be run. I have no idea what its mal-effects are.

  • CT

    I’ve been using this service for a while – Very Handy!
    Even more useful with it’s “Uploader” http://www.virustotal.com/metodos.html – which adds “Send to VirusTotal” to your Windows Explore menu!

    Of course, whenever I’m not sure, I alway run a suspect program under “Sandboxie”, or on a Virtual Machine! [I try to practice ‘Safe(r) Computing!]

  • Pingback: Adakah Fail Ini Virus? Tanyalah VirusTotal | SembangKomputer.Com()

  • http://www.myadobe.ro Mihai

    A great service for virus makers :)
    So easy for them to test their newly created virus with a service that brings all antivirus engines in one place.
    GG

  • Pingback: Virus Total - Online Scanner | 4 Free On Internet()

  • http://carbonize.co.uk Carbonize

    I personally use VirusTotal to scan any obvious viruses I get through email. I then report it to any of the main anti virus vendors that did not detect it such as Avast, AVG, Avira, Microsoft etc.