Solved

Virus total got hacked ?

Posted on 2016-09-16
10
44 Views
Last Modified: 2016-10-06
https://www.virustotal.com/index.html#!/home  

Virus total changed website design or they got hacked?
0
Comment
Question by:yodaa
  • 4
  • 3
  • 2
  • +1
10 Comments
 
LVL 19

Assisted Solution

by:*** Hopeleonie ***
*** Hopeleonie *** earned 125 total points (awarded by participants)
ID: 41801958
No. https://www.virustotal.com lookst still same.
They may be starting something :-)
0
 
LVL 9

Assisted Solution

by:Carlos Ijalba
Carlos Ijalba earned 125 total points (awarded by participants)
ID: 41802049
It looks perfectly normal to me, post a screenshot of what you see just in case that is the PC where you are looking from that has some internal redirect to some other page.

But so far so good, it's as good as always!
0
 

Author Comment

by:yodaa
ID: 41802353
hmmm

Capture.PNG
0
 
LVL 62

Accepted Solution

by:
btan earned 250 total points (awarded by participants)
ID: 41802566
Not hacked for VirusTotal. http://www.urlvoid.com/scan/virustotal.com/

At this writing on the scan above shows legit website but it seems that your capture shows otherwise in term of the layout.

When using it (https://www.virustotal.com/index.html#!/home) in the browser, it should be redirected to https://www.virustotal.com/#!/home, but it seems that your captures did not have that. Try using the redirected URL and also try other browser, clean away your cache. Hope it is not the ISP issue

For assurance, you can run adwCleaner and Junkware removal kit on your machine.
0
 

Author Comment

by:yodaa
ID: 41802707
ISP issue ?
0
New My Cloud Pro Series - organize everything!

With space to keep virtually everything, the My Cloud Pro Series offers your team the network storage to edit, save and share production files from anywhere with an internet connection. Compatible with both Mac and PC, you're able to protect your content regardless of OS.

 
LVL 62

Assisted Solution

by:btan
btan earned 250 total points (awarded by participants)
ID: 41802714
Some country can control the Web traffic like China and some other.. but this case maybe more a machine as other machine is alright..you should try as those mentioned
0
 
LVL 9

Assisted Solution

by:Carlos Ijalba
Carlos Ijalba earned 125 total points (awarded by participants)
ID: 41802716
Yes your URL of VirusTotal seems weird, as it's not the official one.

Have a look at your hosts file c:\Windows\System32\Drivers\etc\hosts (in case it is a windows machine) to see if there are some redirects there.

Try to open the virustotal URL from other navigators, have you tried from IE, Edge, FireFox & Chrome to see if any of them is affected by a hijacker or search bar and others not?

Try to run a few malware cleaners like btan suggested, you can also try with Malwarebytes, MS own Malicious Software Removal Tool, Spybot Search & Destroy, etc.
0
 

Author Comment

by:yodaa
ID: 41802717
When I google virustotal now and when I clicked on the link It went to original website.
0
 
LVL 62

Assisted Solution

by:btan
btan earned 250 total points (awarded by participants)
ID: 41802934
Have to check the browser for any extension so as to sieve out any potential ones intercepting or causing those issue mention. Like
-Adware (ads software)
-PUP/LPI (Potentially Undesirable Program)
-Hijacker (Hijack of the browser's homepage)
- toolbars

 Try running with MalwareByte AntiMalware, then run HitmanPro.Alert, also later check with AdwCleaner and Junkware Removal Toolkit
https://www.malwarebytes.com/mwb-download/
http://www.surfright.nl/en/alert
http://www.bleepingcomputer.com/download/adwcleaner/
http://www.bleepingcomputer.com/download/junkware-removal-tool/

I am also thinking on doing network packet capture using wireshark or fiddler / Burp Suite but maybe can be overkill if the above did not reveal anything. It is just to make sure the traffic going out is expected.  based on the URL in the HTTP get packet  Did a quick dns check also did not show the site is malicious
http://mxtoolbox.com/SuperTool.aspx?action=dns%3avirustotal.com&run=toolpage
0
 
LVL 62

Expert Comment

by:btan
ID: 41831399
As suggested.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In today's information driven age, entrepreneurs have so many great tools and options at their disposal to help turn good ideas into a thriving business. With cloud-based online services, such as Amazon's Web Services (AWS) or Microsoft's Azure, bus…
Our Group Policy work started with Small Business Server in 2000. Microsoft gave us an excellent OU and GPO model in subsequent SBS editions that utilized WMI filters, OU linking, and VBS scripts. These are some of experiences plus our spending a lo…
Along with being a a promotional video for my three-day Annielytics Dashboard Seminor, this Micro Tutorial is an intro to Google Analytics API data.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

25 Experts available now in Live!

Get 1:1 Help Now