How to check your browser for viruses. Online check of the system, files and links for viruses Check a file for malicious code online

While working with the browser, pop-up ads appear (as a rule, advertisements), which you cannot close the first time? You don't recognize the homepage or search engine? Are you automatically redirecting to unknown web pages? Have new extensions you don't know about installing? Are there new icons in the toolbar? Does the browser logo look weird? It is obvious that your browser is infected with a virus. How can this problem be solved? Read about this below in our article - step by step, in detail.

Let's start simple. Namely, how to check your browser for viruses online.

Surfpatrol.ru

If you still have questions, we suggest you watch a video describing the process.

Video - How to check your browser for viruses, security and errors

Detection and removal of the redirect virus

Step 1. Entering Safe Mode

The process for removing a redirect virus is generally the same for all versions of Windows from XP to Windows 8.

Windows 8 users can switch to Safe Mode.

Step 2. Checking proxy server settings

Important! Browser redirect viruses can exploit a remote server that is not the one you normally connect to. By disabling this, you will already be taking a big step towards removing the virus.

Check your system proxy settings:

Step 3. Browser management

It will not be clear at this point where the browser redirect virus comes from, and it will be until you check the reports from the removal tools.

Once this is done:

Virus removal tools

There are currently several tools available that can be used against the redirect virus.

The best way would be to download and run the Kaspersky TDSSKiller rootkit remover and then the reliable MalwareBytes Anti-Malware Free. Use HitmanPro for additional checks.

• Kaspersky TDSSKiller;
• MalwareBytes Anti-Malware Free;
• HitmanPro;
• Google.

Kaspersky TDSSKiller

MalwareBytes Anti-Malware Free

This program will automatically launch after installation, and a message will appear recommending you upgrade. Click "Fix Now" to run the first scan. When it is completed (the program may ask you to click the Update button first), the program will display a list of found threats. Click "Quarantine All" and then "Apply Actions".

HitmanPro

After installation (a one-time run without installation option is also available), HitmanPro scans your computer (including browsers) for stubborn rootkits, malware and other malicious files. Files will be displayed as they are found. After scanning is complete, click Next to delete them.

You will need to click “Activate Free License” to get a free 30 day trial for HitmanPro if you don’t plan on buying it.

After these scans are finished, shut down with your usual PC antivirus scanning software, which can be a free antivirus utility like Avira, AVG or Kaspersky, or a premium package like BitDefender Internet Security.

We hope you find the article useful and you can easily clean your browser from viruses.

Not all people use antivirus software on their PC or laptop. Automatic computer scanning consumes a lot of system resources and often interferes with comfortable work. And if suddenly the computer begins to behave suspiciously, then you can analyze it for online problems. Fortunately, there are enough services for such a check today.

Below we will consider 5 options for analyzing the system. True, this operation will not work without loading a small auxiliary program. Scanning is carried out online, but antivirus needs access to files, and it is rather difficult to do this through a browser window.

Services that allow checking can be divided into two types - these are system and file scanners. The former check the computer completely, the latter are able to analyze only one file uploaded to the site by the user. Online services differ from simple anti-virus applications in the size of the installation package and do not have the ability to "cure" or delete objects susceptible to infection.

Method 1: McAfee Security Scan Plus

This scanner is a quick and easy way to scan your PC for free and assess the security of your system in a few minutes. It does not have the function of removing malicious programs, but only informs about the detection of viruses. To run a computer scan with it, you will need:

The program will start scanning and then display the results. Click on the button Fix Now will redirect you to the purchase page for the full version of the antivirus.

Method 2: Dr.Web Online Scanner

This is a good service with which you can check a link or individual files.

The first tab gives you the option to scan a link for viruses. Paste the address into the text line and click “ Verify".

The service will start the analysis, at the end of which it will give the results.

In the second tab, you can upload your file for verification.

1. Select it with the button "Choose file".
2. Click on "Verify".

Dr.Web will scan and display the results.

Method 3: Kaspersky Security Scan

Kaspersky Anti-Virus is capable of quickly analyzing a computer, the full version of which is well known in our country, and its online service is also popular.

In the next window, you can see additional information about the problems found by clicking on the inscription "More"... And if you use the button "How to fix everything" the application will redirect you to its website, where it will offer to install the full version of the antivirus.

Method 4: ESET Online Scanner

The next option for checking your PC for viruses online is a free ESET service from the developers of the famous NOD32. The main advantage of this service is its thorough scanning, which can take about two hours or more, depending on the number of files on your computer. The online scanner is completely removed after the end of the work and does not leave any files behind.

ESET Scanner will update its databases and start analyzing your PC, after which the program will display the results.

Method 5: VirusTotal

VirusTotal is a service from Google that can check links and files uploaded to it. This method is suitable for cases when, for example, you downloaded a program and want to make sure that it does not contain viruses. The service can simultaneously analyze a file against 64 (currently) databases of other anti-virus tools.

1. To check a file using this service, select it for download by clicking on the button of the same name.
2. Next click "Verify".

The service will start analyzing and display results for each of the 64 services.

To crawl a link, do the following:

1. Enter the address in the text field and click on the button Enter URL.
2. Next press "Verify".

The service will analyze the address and show the verification results.

Hello dear readers of the blog site. I want to raise today the problem of website infection with viruses, because for me and many other webmasters it has become topical and very relevant.

Everyone, probably, has an antivirus on their computer and it is believed that it will be enough to update the plugins included in it in time (read about mine) in order to protect themselves from infection. But often the enemy comes from the rear, namely from your own computer (as happened with me).

Therefore, at the beginning of the article, I want to immediately cite ways to check the site for viruses(online, script or locally), as well as give recommendations so that you do not step on the same rake as me, exposing all your Internet projects to infection and getting partial or even complete blocking of them in search engines. Fearfully?

At least at the moment, the situation is being settled for me, but for you, based on my experience, everything should go much faster or not at all. Go.

How and where you can check the site for viruses - online services

The best option would be not to get infected at all, and if it did happen, then it’s better when you yourself notice the virus on your site, and not find out about it when it is blocked in the search results or the browser you use.

Search engines are forced to take such harsh measures in order to avoid a general epidemic, but the resources that have fallen under their hot hand are having a hard time (in the continuation of this article, I will describe in detail my feelings about this).

By the way, search engine sanctions are not always timely and reasonable, and the virus detection and blocking system they currently use is, one might say, in its infancy.

This can be seen from the example described by me just below, or you can recall the story with the blocking in the issuance of a large number of Runet forums, tk. got into the list of sites spreading viruses (accidentally or justifiably - not entirely clear). Therefore, all other resources loading media data from it were also blocked (a similar situation happened to me, but we will talk about this a little below).

Attention! Immediately after detecting an infection, save the log files of access to your server (or request them from the hoster). Depending on the server settings, they can be periodically deleted, and without them it will be quite problematic to find hacking paths and the vulnerabilities that malware used to prevent reinfection.

So, how can you check your site for viruses? For this, popular online verification services may be suitable, which I will give in this list, and you will supplement it (if desired) in the comments:

In addition to online services, you can check your site for viruses in the following ways:

What to do in case of infection and how to protect yourself from it

Not so long ago, a video from the Yandex team appeared on the topic what to do if you get a virus where the following points were highlighted:

1. What types of infection are there?
2. How to find malicious code on a website?
3. First things to do:
   1. Change passwords (for ftp and ssh access in the first place, as well as for the database and the administrative panel)

Even if you remove the malicious code from the site, if you do not take the security measures described above, you run a high risk of contracting the virus again.

To search for viral code you can use the tips displayed in Yandex Webmaster or look in its help for examples of scripts that you should look for. If you don't understand anything at all, then write to technical support through the Webmaster (there is always a corresponding link in the right column). After discussion, in the end, they will simply show you the place from where the virus should be removed (well, and how to do this, they will probably also prompt you).

How to check the action of a virus on a website yourself? You need to clear the cache in the browser, delete cookies and go to your resource from the search results so that the malicious code does not understand that you are the owner and does not hide its identity from you. See the video below for more details.

Check the script files for obfuscation (obfuscation of the code - it stands out brightly against the general background), and also look into the .htaccess located in the root of the site and in other folders where it takes place. B. htaccess attackers very often add mobile redirect code- visitors to your site who came from smartphones or tablets will be redirected to some other resource.

It is even worse if the virus adds a normal redirect to .htaccess, because in the latter case your site may be completely removed from the search engine results. Sometimes infection occurs even at the server level, when a special module is added to Apache, which is a virus.

If there is a backup of the engine distribution kit, then you can use programs or online services (for example, DIFF CHECKER) compare current content engine with what it was before the virus attack.

Well, or you can just delete all the files on the server and fill in what is in your backup. It is possible that some of the extensions or changes made will have to be re-added, but this is still better than living with a virus.

And finally, the promised video from Yandex, where it is described how to check the site itself for viruses, as well as all addresses are indicated and methods for detecting and removing malicious code are described:

There is also a very useful video - How to remove malicious code from a website with your own hands:

1. Reliable antivirus with a fresh database. Which one I don’t know, but ideal ones do not exist. I personally use Doctor Web.
2. Anything in addition to it. Since the time of infection, I have been using Malwarebytes Anti-Malware, both as a scanner and as a monitor. Does not create a special load and knows how to block potentially dangerous sites.
3. I advise you to be manic about updating your website engine (s), as well as plugins and extensions for it.
4. The same applies to updating browsers, FTP managers, flash players, Java and other nonsense through which passwords can be snatched or a virus introduced. Personally, I use the Surfpatrol plugin in all browsers, which informs about the appearance of updates or vulnerabilities in a particular component.

Always up-to-date problem with secure storage of passwords, including in filesile (by default they are not encrypted there). For myself, I found a solution in the form.

5. Read this article to the end in order to understand what an arrogant fool I was and to learn a lesson from my mistakes.

Why do I need to check a website for viruses - an instructive story

My history of infection began in mid-November 2012 and I really want to hope that it is now over. I mean the virus infection of most of the sites that I am currently dealing with as a webmaster. Somehow I have a strange nature (to see Russian to the core) in terms of protection from the alleged threat - all the time I rely on chance.

As a result, I lost several tens of thousands of rubles (there would be no way to immediately connect and sleep peacefully), and now I have also gotten a bunch of unnecessary problems with blocking sites by Google and Yandex for spreading and infecting users' computers with viruses.

By a lucky coincidence, the site was not applied in full, but only covered with a shock wave, although it could have been ... But let's talk about everything in order. My bright belief is that the theft of virtual money and the infection of sites with viruses occurs with anyone, but not with me, and besides, the developers of a program specially designed for safe operation (and DoctorWeb) should be concerned with the problem of hacking and infection. Let them have a headache.

In general, the Trojan made its way onto my computer quite routinely and not one, but in the company of dozens of others. There was even an option with a screen lock (a banner requiring you to pay for access to your own computer), which I bypassed quite easily. DoctorWeb periodically scolded at infected objects, but by and large, nothing bad happened during the year. It was not easy to carry out a full anti-virus scan of the system, because for a long time and at the same time it is impossible to fully work with the computer due to its lag.

Well, one "fine" evening, when I was thoroughly exhausted by the writing and publication of another opus, looking forward to one and a half or two hours of well-deserved rest while watching the next masterpiece of bourgeois cinema, a terrible incomprehensible thing happened. Mine began to give an error. Well, I think it's okay, the server is probably overloaded now and after half an hour everything will return to normal by itself.

No matter how it is. I had to go into my account and try to find the reason for this disgrace. First I decided to check with the debugger built into this service that RSS feed that my blog was giving. It turned out that at the end of the RSS feed code there are tags for loading some script with a suspiciously abrocodabrous name. It could not be in the tape code in any way, and even spelled out at the very end (on the side of the burn).

Searching the net for the name of the script gave nothing (apparently a randomly generated name). Okay, I think now I'll have to remember where the legs of RSS in WordPress come from, go into the code and, with my scanty brains, try to edit something. However, realizing the complexity of this process, I decided to look for easier ways, namely, I looked at the code of the page itself, with the newly published article.

And oh, horror, below there was a call to the same mysterious script. I got back to the Internet again with requests related to viruses on the site and ways to check them and detection. I came across an advice to first look into the index.php file that lives in. Well, I was a little taken aback - a call to this script was written at the very bottom.

Registered by whom? Well, certainly not me, because I haven't been drunk for a long time and I don't suffer from sleepwalking either. The feeling was like a sickle ... I am not the chosen one and not invulnerable, and my blog is not spoken from hacking and virus infection. Well, I quickly removed the call of this script from index.php. I copied all the FTP blog files to my computer (read about) and, using the built-in search capabilities, tried to find traces of it in other files.

Fu ... Nothing anywhere. Using the advice from all of the same Internet (how much benefit it brought into our lives and how many new dangers it gave rise to along with this), I started changing passwords for accessing my blog from all sides: hosting control panel, virtual server control panel, site access data FTP and password for the database.

I changed everything and at the same time was glad that the search most likely did not notice the fact of infection, because I have caching enabled by means of a weekly lifetime of the collected Html pages. But, as always, I managed to notice, index and take into account everything. True, there were no sanctions or blockings this time, for which, in general, thanks to him, because he could have been mowing.

However, a month later, one of the readers asked me about the viruses detected by Google on his website and asked me to explain what to do and how to understand the data on his domain on the Safe Browsing page of this search engine. To be honest, I have seen such a page only once, during the infection of a client site, which I did a hundred years ago and which managed to pick up something during this time. More precisely, there in the .htaccess were redirects to resources that infect users' computers. But not the point.

This Dear Reader not only cited the Safe Browsing page for his site, but also indicated that for my domain () such a page also has a record of the fact that the site was infected with a Trojan and this happened at least less than 90 days ago:

The inscription surrounded by an orange frame appeared a little later, and about this I also have a sentimental story full of secrets, mysteries and sprinkling ashes on the head. By the way, you yourself can see possible viral complaints and claims that the great and terrible Google has to your resource. Just replace my domain in this line with yours. Not scary?

Http://www.google.com/safebrowsing/diagnostic?site=site&hl=ru

In general, Google did not miss anything and put my blog under control as unreliable in terms of possible virus infection, although at that time the number of infected pages it found was zero. Now no, but once it was once, then in the future it is necessary to keep a cap on me, so that if something happens right away and slam.

A couple of days later, my traffic from this search engine began to sink, and today it is below what it was before by about a quarter (however, against the background of the growth in the number of visitors from Yandex, this is not so noticeable now). Is it connected with a slipped virus? And Google knows him.

But this was not enough for me and I, apparently, decided to further aggravate the situation with my truly Russian carelessness, because I assumed that only one single site was infected from those with which I work on my computer. It turned out that this is not so, and by logical thinking and conclusions I can now say that the passwords were pulled from my.

What is noteworthy, I clearly remember that when I sat down to write the same opus, upon the publication of which a virus was found on the site, I traditionally launched Filezila, because I upload illustrations () to the blog not by means, but directly to the FTP hosting. And this same Filezila immediately wanted to update, and I stopped him, because I did not want to waste time on this. Most likely, it was a security update, although, of course, not a fact.

But anyway, one of main methods of protection from hacking and virus infection of a computer or website serves timely software update... These updates are often due to the discovered and patched security holes, and not the addition of new functionality. Moreover, as it turned out later, my browsers, flash player, and Java were not updated in time.

Just not long before that I read that another hole was found in Java and recommended to be updated. Well ... we (that is, me) are busy people and spend time on trifles, which, most likely, will not be useful, there is no time. Well, so I got a Trojan on my computer, and then a virus on the site. Just like with a webmoney wallet - everything is knurled.

Later, in hindsight, I thought about updating critical computer components in a timely manner and installed the extension in all browsers. Surfpatrol, which informs in time about the appearance of a new version or a new hole in a vital component of the system (read about other useful ones as well).

And, of course, I launched a full scan of my computer by Doctor Web, which worked for almost a day (I scanned several tens of millions of files - I have accumulated backups of various sites over the years before ...). I found about a dozen Trojans and fixed all of them after a reboot.

By this time, I had read on the Internet about the need to install the Surfpatrol already mentioned just above, and in addition to the antivirus I installed Malwarebytes Anti-Malware, who found a dozen more nasty files on my computer and began to block unreliable, in his opinion, sites that I tried to open from my computer (including one of mine, and Serch and ...).

I repeated all the same on the computers of my household members who are sitting with me on the same local network. True, at first they rolled a barrel on Malwarebytes Anti-Malware, which blocked some of their favorite sites, but after explaining the process of adding such resources to the Black List of this software, the groans and cries subsided.

Blocking a site in Google and Yandex for viruses

Thus, I strengthened the rear, completely forgetting not knowing that the enemy had already got what he needed - access to all five sites, passwords to which were hammered into the Filesile installed on my computer. The enemy had a lot of time and it took me much longer to clean the files on the web server from the consequences of his intervention.

Second wave of trouble associated with the penetration of viruses or malware, rolled after the New Year holidays. I don’t remember what happened earlier and what happened later, so I’ll tell you how I’ll tell you. From one young but promising site, traffic dropped dramatically during the holidays. That's okay, but the abnormal thing was that this traffic didn't want to come back.

I began to look for the reason using the scientific poke method and somehow ended up in the Yandex search results, where this very project took second place in the midrange request. The position remained unchanged, but there was no traffic. Mystery. For some reason, I decided to follow the link from this issue and was a lot surprised that I did not get to my resource, but ended up somewhere in the wrong place.

Insight came pretty quickly, because I again found in index.php from the root of this website (already at its beginning) a whole block encoded in base64 malicious code. There still stood before him eval, which also indirectly indicated that it was time to check the site for viruses.

In general, base64 itself is quite often used, for example, beautiful green check marks for the site are encoded into it, which you can see in the "I use to make money" block (top right). In my style.css file it looks like this:

Here, and that fragment of the encoded virus script (not pictures, as in the example) looked even more voluminous. I did not decipher it, because everything was clear anyway. This virus was found not only in index.php, but also in two files from the site root (not manually, of course, but by searching through the contents of files in Total Commander).

By the way, I left the infected archive with the website backup as a trophy and now, when I tried to open the index.php file, I received a warning from Doctor Web (ten days ago he was silent like a fish):

Well, during a full scan of the archive with the infected backup of the site, Doctor Web just found those three files with the redirect virus:

Of course, I am not an expert, but I dare to assume that this signature was not yet added to the Doctor Web database at that time, but appeared in it relatively recently. In any case, the Doctor did not prevent me from opening files with this virus at that time.

Having cleaned the site, I immediately noticed the traffic that came through, which now went on the right channel, and was not meanly redirected to some kind of affiliate program. My heart felt better, but the search did not leave this matter unattended. In five days this young site was blocked by both Yandex and Google as a distributor of malware and traffic dropped to almost zero again. It was a shame that the malware was no longer there, and the search response was clearly belated.

However, I did not argue with them, but simply went to the Google panel for Webmasters and on the Status tab - Malicious programs clicked on the button that sent the site for review. Naturally, the example given there did not contain any malware. Sorry, but then it was not before taking screenshots, but in the absence of viruses found on the site Submit button for revision does not appear. But you will find it without me - right above the list of found problem pages:

Then I went into Yandex panel for Webmasters and made sure that on the "Security" tab my site was also recognized as a distributor of viruses and blocked. The button for submitting for review was not there, so I just wrote to their technical support (link in the right column). I didn't make screenshots then either, so I show it with a clean example:

I don’t remember who reacted earlier (in my opinion, Yandex after all), but after about a day or two, information about viruses found on the site disappeared from the panels for Webmasters, and after a while the blocking in search results and browsers was also removed. They consisted in the inability to go to this resource from the search results and blocking their opening in some.

It was the Google browser (it's understandable why), Yandex browser and Firefox to the heap, because there was a corresponding extension, which, having received a signal from Google about the presence of a virus, confidently blocked the site, although three dozen other sources of viral danger, where this application also drew information , said that everything is in order. You can't argue with Google.

In general, at the moment the traffic to this project has returned in full and the ratio of visitors coming from both search engines has remained unchanged. This makes me happy. But everything could be much simpler and more prosaic, if I was not too lazy back in November, when the first bell rang, change passwords access through FTP not only for the site, but also for all other sites.

And so the story continued... At one point, I ran into a strange problem with a CSS file of one of the sites.

But if the iframe loads something from another resource, and this site was included in the list of infected with a virus from Google and Yandex, then nothing good can be expected from such a combination.

Well, according to the already established practice (choose from the possible options the one that will cause the greatest problems in the future), the script was installed under the domain of that project on Joomla, which was completely dotted with shells and generated a cache at a crazy pace. At one "fine moment", while working with a site in Chrome, I suddenly find that the browser does not allow me to go to one of the pages, "loudly" swearing and claiming that it is for me dangerous in terms of infecting the computer with viruses... They sailed.

I wanted to start banging my head on the table (I had the same desire a little later, when my blog hit).

By the way, almost at the same time, a message from Google came to the mail in English (it is automatically sent in such cases to the type [email protected] so do not use such addresses, for example, in, and start monitoring them). Naturally, with trembling hands, I went to the already familiar section of G. Webmaster's interface to see how bad everything was in terms of viral danger.

It turned out that not all the pages of the site were blocked, but only 19 of them (it is about them that is mentioned in the above screenshot of the Safe Browsing window from Google), and when you clicked on them in the Google Webmasters panel, you could read about the reason for the blocking ... The search giant swore at a social voting iframe that downloaded data from a virus-infected site. I didn't take screenshots, because there was no time for that.

What is noteworthy, even five days before these events, I cleaned that ill-fated site (and in its webmasters' panels from Yandex and Google, not a word was said about viruses), but I did not begin to prove it, and with bulging eyes I began to feverishly search for everything the pages of your blog, where the votes were displayed and all the codes for calling them should be deleted.

I managed it in an hour, quickly sent my blog for revision in the Google panel for Webmasters and after a few hours information about the virus threat has disappeared from this panel, and an hour later, the blocking of the allegedly infected pages in Chrome was removed. In general, it carried over, but a decent amount of nerves was lost.

Sooooo hope that my epic ended on this, at least for the near future. I also hope that you will not step on the same rake as me, and at the first danger or suspicion, throw off your laziness and rush change passwords for all controls those sites to which, according to the idea, the hands of intruders could reach. And also to clean the computer from viruses and enhance antiviral protection.

Also, check the settings for sending you messages from the panels of Yandex and Google webmasters, because timely detection of a danger is already buzzing in itself. It is better to indicate those mailboxes (it does not matter or else) in which you periodically monitor the Spam folder, where messages about the infection of your site can easily get.

Well, sometimes use the tools mentioned just above to check the site for viruses online, and in case of suspicion, you can download the files to your computer and check with an antivirus or Aibolit script in Denver, if the hosting does not pull this check.

Good luck to you! See you soon on the pages of the blog site

You may be interested

BotFAQtor: how to get rid of bots on the site
How did I increase my website traffic to 300 people a day? Apometer is a free service for tracking changes in search results and updates of search engines
SendPulse - Push notifications for a website and a free option for connecting them from SendPulse
How to make a horizontal or vertical dropdown menu for a website based on CSS and Html in an online service
Site analysis in free online services Pr-cy, Cy-pr, Be1, Xseo and others
Google Forms - How to Create an Online Survey on Your Google Forms Site

Greetings, I will show you what you need to do to check the site for viruses online for free. The thing is excellent, but approach your choice with responsibility, some sin with incorrect data, meet the review of 8 resources.

Resource list

Checking via Yandex and Google

There is no check, but there is an autonomous site parser for malicious code that looks at the state of the resource when the robot crawls. To use, you need to have Yandex and Google webmaster. How to register a topic not for this article. In the office we find the section "diagnostics", and the sub-item "security and violations".

If ok, then the inscription will be as in the screenshot. In google webmaster you need to go to “security issues”. If everything is ok, then the online service will write an approval.

It is not possible to perform a check upon request, it occurs automatically. Regularly log into the webmaster account of Yandex and google search engines.

How to search for viruses for free with 2ip.ru

Hooked by simplicity follow the link, enter the name and wait for five seconds of processing.

Possesses a quick check for the presence of a site in the black list of search engines. Plus, it checks redirects and the presence of junk code that is dangerous to the visitor. For beginners, it is suitable for a single use once a day.

Dr web quick check

Many do not know Dr web has online virus scanner for websites... Fill in the domain name and click on the check button.

After verification, a pop-up window of results will appear. If 3 icons are smiling, it means they are in order, below are suspicious files and a check, if it says Ok, it means clean.

Doctor Web's service is fast, giving you the opportunity to look at potential problems. There is information, but I expected more from DrWeb.

Xseo: check for presence in prohibited databases

An unknown online program with a huge arsenal with a large number of parameters. There is also a virus check, a simple one but worth listening to. Go in and fill in the domain field.
... In the right column, there are other free tools.

Virustotal: Run 65 antivirus programs for free

Virustotal analysis for viruses comes down to parsing on popular sites with the output of the results. Here is the official site and enter the domain.

The report contains no numbers or signs, there is a table of popular antivirus scanners with the scan results, safe - green, red - infected.

Out of 65 scanners, the infection rate was one. We'll talk about Quterra below, the blog is clean. For me, the virus scanner from virustotal is the most democratic and gives a choice. After reading the reviews, I came to the conclusion that if no more than three are swearing, then in order, if not, then we must look for a worm.

Quttera.com: it became easier to check a website for viruses online

Quterra.com offers to check the site for viruses online. There is a lot of information about your free reports, then what is paid for? Seriously, as a webmaster, I got scared by three errors from the home page. It turned out to be unfamiliar plugins. Official address and according to the old scheme, name and check.

A long check of the resource will go from head to toe, including all pages. Be patient, the results of the detection are really pleasing. After the analysis, we press “detailed report”. In the menu, there are three active sections, the errors themselves and the suspected viruses are located in the “scanned files analysis” section.

1. Tab section.
2. Malicious. I have it pointing to the autoptimize plugin file, which includes all the site styles, making them load faster.
3. Suspicious. Medium threat level. I found a threat in the author's comment.
4. Potential threats. Found again with autoptimize code.

To view the threats, click on the required section and find the suspicious file and the code itself.

• A link to a suspicious object.
• Link “view code”, opens a pop-up window with a piece of code that does not meet security rules.

I concluded that autoptimize provides an opportunity for hacking, we must look for an alternative.

Rescan Russian scanner

A new online tool, the address is here, a distinctive feature: in Russian and enough information. Checking and starting is standard.

After a few seconds, it will issue a report, wpsovet passed the check for all items. The service boasts of cooperation with major hosting providers, timeweb, hostland, fastvps and others, it's hard to check, but let's take its word for it.

Sucuri: surprised

We go to the address, and insert the site data by clicking scan website.

All points are good except for the last one, but as he determined that wordpress was not updated to the latest version, he hid the information about the engine version on the blog. Surprised, however, did not think. In the third point: the lack of a secure connection SSL and https protocol.

Aw-snap: check all pages

I have known aw-snap for a long time, moved more than once. Scans the source code and all pages for errors and viruses. The address is here, don't look at the outdated design and spreadsheet layout. Enter the address and see the report.

I see that the main mistakes in CSS, more precisely in the use of the display: none property, which hides content from the visitor. I cannot fix this jamb, it is built on this method of hiding elements under different conditions.

Kaspersky: adding virus sites to the database

You have found a viral and infected resource, you can add it to a special Kaspersky online database. We go to this address, insert the domain of the checked resource, along the way choosing clean or infected.

Depending on the choice, Kaspersky will check the resource and issue a decision whether to blacklist it. I don't quite understand how it works and how to find out the result of the virus scan.

Outcome

The rest of the popular antiviruses cannot scan the site for viruses online, neither nod32, nor avast, nor eset. They have.

I can summarize after checking with all antiviruses online:

• We need to look for a replacement for the autoptimize plugin.
• Update engine and plugins regularly.
• We'll have to change the comments.

Until then, see you, and at the end of the video.