BleepingComputer.com: Virus Scan Questions

Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

Virus Scan Questions

#1 User is offline   Romath 

  • New Member
  • Pip
  • Find Topics
  • Group: Members
  • Posts: 4
  • Joined: 29-June 07

Posted 07 November 2009 - 02:25 PM

A webmaster I've been dealing with about an allegedly virus-laden file claims that many online malware scan sites are invalid for scanning Win XP/SP3 files because the sites use Linux versions of A-V engines; i.e., it's necessary to use a Windows-specific program for a valid scan. Two examples online that use 20 to 30 well-known and lesser-known A-V engines to scan files are http://virusscan.jotti.org/ and http://www.virustotal.com. Is there any truth to the webmaster's claim? Thanks.

This post has been edited by Romath: 08 November 2009 - 02:20 PM

#2 User is offline   quietman7 

  • Bleepin' Janitor
  • PipPipPipPipPipPip
  • Find Topics
  • Group: Global Moderator
  • Posts: 25,109
  • Joined: 09-July 05
  • Location:Virginia, USA

Posted 09 November 2009 - 11:24 AM

From Jotti's main page:

Quote

Jotti's malware scan is a free online service that enables you to scan suspicious files with several anti-virus programs. Scanners used are Linux versions; detection differences with Windows versions of the same scanners may occur due to implementation differences. There is a 15MB limit per file. Keep in mind that no security solution offers 100% protection, not even when it uses several anti-virus engines (for example, this scan service)...
Jotti Malware Scan

Quote

...Jotti’s malware scan is a free online service that enables you to scan suspicious files with several anti-virus programs. Scanners used are Linux versions; detection differences with Windows versions of the same scanners may occur due to implementation differences.
List of Online Malware Scanners

About VirusTotal

These and similar sites are essentially used to check for malware in a file you upload. Most of the major anti-virus vendors participate in VirusTotal, Jotti's, and UploadMalware.com with their antivirus engines. Malware uploaded to these sites is distributed to antivirus vendors. The samples can be analysed by automatic tools and security analysts to detect malicious code and to improve anti-virus engines.

From what I read, both the Linux and Windows scan engines have approximately the same capabilities but they scan for different malware patterns and there can be some differences in the results. Sites such as BC which help members with malware removal use both Jotti and VirusTotal and the majority of folks use Windows.
Microsoft MVP - Consumer Security 2007-2012 Posted Image
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

Share this topic:


Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

1 User(s) are reading this topic
0 members, 1 guests, 0 anonymous users