Frequently Asked Questions

Understanding Your SiteLock Malware Scan Report

Print this Article
Last Updated: April 13, 2015 9:33 AM

SiteLock's Malware Scan checks your website's pages for for malware signatures, links and JavaScript within the source code. You can find more information about the scan in What types of scans does SiteLock offer?

This information will help you understand the results of the Malware Scan.

Domain

This will show the website that was reported for having malware issues.

Page

This is the exact URL where SiteLock found the issue.

Type

There are two categories for the type of compromise SiteLock found:

Page The page is currently infected, or the page itself has been blacklisted for containing malicious content.
Link There is a hyperlink within the website's code that is pointing to a blacklisted site, or a site that has been flagged for being a known hacking website.

Source

This is the source which identifies the issue we detected as malware.

For more information about SiteLock's various sources, see this section:

Malware Sources

SiteLock has numerous sources it uses for known malware issues on the Internet.

Google

Not much introduction is needed for the largest search engine in the world. When the report is returned and the Google notification is highlighted it means that the issue is recognized in Google's database as a known malicious infection. This is very serious as Google has direct authority on blacklisting the website for containing virus content.

Yandex

This is a Russian Internet company which operates the largest search engine in Russia with about 60% of the market share. Yandex is ranked as the 4th largest search engine worldwide attracting more than 56 million users. When the report is returned and the Yandex notification is highlighted it means that the issue is recognized in Yandex's database as a known malicious infection.

PhishTank

This is the largest clearinghouse of data relating to phishing scams, and is entirely community powered. Internet users submit websites they believe to be a phishing scam, and the entire community determines if the site is a scam or is legitimate. When the report is returned and the PhishTank notification is highlighted it means that the issue is recognized in PhishTank's database as a known phishing scam.

Anti-Virus Blacklist

We have a number of strategic partnerships that help us to provide the highest quality results when locating malware. When the report is returned and the Anti-Virus Blacklist notification is highlighted, it means that users who visit that site will likely get a warning from their anti-virus software that the site is not safe to visit.

SiteLock

This report is returned when SiteLock scanners have detected a virus that is in our own database of known malware signatures. We are continuously updating this database to provide the most comprehensive results of malicious attacks hackers use every day.

Extra Info

This category is to provide further information regarding the details on the virus that our scanner has picked up. This is separated by the two types of malware we find which are Page and Link.

  • If the reported compromise is on a Page, we provide a description of the malware infection (e.g. SiteLock-JS-SEOSPAM). If no description is provided, it means the reported page is blacklisted.
  • If the reported compromise is a Link, we provide the blacklisted or reported hyperlink that is making our scanner report the malware issue. Sometimes this will be a single website; other times there will be multiple websites listed, depending on the severity of the attack.