Yes, noticed it also. I have had several drive by Malware not getting picked up as of late (more than normal). I hope this is not a trend since the whole Intel purchase.... I have reported several samples to avert (comes back as clean) and never get a reply back of the findings in the end other than the automated initial response. Like you virus total is showing others already picking up on the threats..
As with any technology that's reliant on the health of the underlying host operating system, McAfee like other AV's will get into this state, and you have to succumb to the industry best practice of flattening and rebuilding the compromised host to reliably recover the machine.
Like the other poster, I've seen the trend of the virulence of drive by downloads getting very nasty these days. Even if you have patched perfectly and all your users are running the latest browsers, and have every single plugin fully patched you can still get boxes owned..especially with this vulnerability. Here, you're dealing with things like the .LNK vulnerablility in stuxnet which was just one of FOUR 0-day exploits in it... and as such it's not at all surprising for variants to be able to take down the AV engine.
Submitting samples is unfortunately the only way to contribute to the hopelessly reactive technology in anti-virus, but alas, it's the best we have in a lot of instances. And this has absolutely nothing to do with the acquisition, I'm sure. AV was unfortunately kinda broken in this way before Intel bought McAfee. :-\
Just to be precise, Intel does not yet "own" McAfee. Rather, Intel has "entered into a definitive agreement to acquire McAfee. The agreement can only proceed pending "McAfee shareholder approval, regulatory clearances and other customary conditions specified in the agreement".
Submit your sample to ThreatExpert and find out what it does, then if malicous, submit a sample through the support portal when logged in- with the ThreatExpert link
Hi... I've actually been submitting the samples whenever I get them. It's just that turnaround for what should already be positive detections seems to take longer than expected. I'll keep submitting for now, but in my opinion, it would be great to have a final and definitive workaround for these types of viruses.
But are you submitting them through the support portal when logged in?
Any samples I've submitted, i've had a really quick turnaround- the last two being >1 day.