Windows Defender ni powerful kuliko inavyodhaniwa, na hutoa real-time protection plus deep scanning.
π Scan Full Folder (Website Files)
Right-click folder β Scan with Microsoft Defender
Msubiri imalize β Itaonyesha kama kuna threats
π Run Offline Scan (Strongest)
Open Windows Security
Go to Virus & threat protection
Click Scan options
Choose Microsoft Defender Offline Scan
Restart β Full deep malware scan
π¦ 2. Malwarebytes Free (Best for Web Malware)
Malwarebytes ni mzuri sana kugundua:
PHP web shells
Backdoor scripts
Trojans
JavaScript injections
Malicious iframes
Download
π https://www.malwarebytes.com
Scan Steps
Install β Open Malwarebytes
Click Scan
Delete/Quarantine any detected threats
π¦ 3. ClamWin (Free Open-Source Windows Scanner)
Tofauti na ClamAV kwenye Linux, version hii inafanya local scans kwenye Windows.
Download
π https://www.clamwin.com
Scan Folder
Open ClamWin
Choose Scan Folder
Select your website folder
Angalia report β Itaonesha infected files na suspicious code
π¦ 4. VirusTotal Local File Scan (Online Multi-Engine Scan)
Ni tool kali sana β inatumia 50+ antivirus engines.
Step:
Visit: https://www.virustotal.com
Click Choose File
Upload suspicious PHP/JS/HTML file
Angalia results
Useful kwa kuscan:
index.php
functions.php
theme files
uploads/
plugins
π¦ 5. ESET Online Scanner (Free, Very Powerful)
ESET scanner hutambua malware ya web injection vizuri sana.
Download
π https://www.eset.com/online-scanner/
Features
Deep scan
Detects advanced obfuscated malware
Perfect for local backups
π¦ 6. Scan Code Manually Using Notepad++
Wakati mwingine malware haionekani kama virus lakini ni malicious PHP or JS code.
Search for Dangerous Patterns
Open Notepad++
Press CTRL + SHIFT + F
Search for strings:
eval(
base64_
gzinflate(
shell_exec
system(
preg_replace('/.*/e'
Hii itakuonyesha files zenye code zilizofichwa.
π¦ 7. Use VS Code + Security Extensions
Extensions kama:
PHP Security Analysis
SonarLint
CodeQL Scan (GitHub)
Huonyesha:
Suspicious functions
Encoded strings
Vulnerable code
π¦ 8. Scan ZIP Files Before Uploading
Usi-upload backup au plugin bila kuiscan.
Right-click ZIP file β Scan with Microsoft Defender
π¦ 9. Check Image Files (Hidden Malware)
Hackers mara nyingi huingiza PHP code ndani ya image files.
Check if an image contains PHP
Open image using Notepad β ukiona code kama:
<?php eval(base64_decode("...")); ?>
Hiyo image ni malware shell disguised.
π¦ 10. Scan Using Python Script (Optional for Advanced Users)
Unaweza kuscan strings za hatari automatically.
import os
danger = ["eval(", "base64_decode", "gzinflate", "shell_exec"]
for root, dirs, files in os.walk("."):
for f in files:
if f.endswith(".php"):
path = os.path.join(root, f)
with open(path, "r", errors="ignore") as file:
content = file.read()
for d in danger:
if d in content:
print(f"[!] Suspicious: {path} contains {d}")
𧩠Hitimisho
Kabla ya kurudisha files kwenye server, ni muhimu kuiscan locally kwenye Windows ili kuhakikisha:
Hakuna malware
Hakuna backdoor
Hakuna injected code
Hakuna suspicious scripts
Scanning local backups ni moja ya hatua muhimu zaidi za cybersecurity.
π Unahitaji Malware Cleanup au Full Website Security Hardening?
Ninaweza kukusaidia:
Kuscan Windows backups zako
Kusafisha infected PHP/JS files
Website malware cleanup
Full server hardening
π WhatsApp: https://wa.me/255693118509
π Website: https://www.faulink.com