Enter your address — we fetch the homepage and look for typical hack signs: foreign redirects, obfuscated malware, hidden iframes, spam content and defacement markers. In seconds, right in your browser.
It's a surface scan of the publicly reachable homepage — fast and helpful, but no guarantee. It finds the most common visible symptoms. Many hacks hide, though: they only show to search engines (cloaking), only to visitors arriving via Google, or sit deep in files and database where an online check can't look.
Not with certainty. A clean result doesn't rule out a hack, because this test only checks the visible homepage. If you have concrete signs (Google warning, host suspension, ranking drop), have it checked more deeply.
Don't panic, but act soon: back up the site (files + database), change all passwords and limit the damage. For cleanup we offer WordPress hack recovery — by hand, at a fixed price.
Typical signs: a Google warning “This site may be hacked”, a host suspension, sudden redirects to spam pages, foreign sub-pages in the Google index, or a sudden drop in rankings.
This online check doesn't — it only sees the served homepage. In our recovery service we deep-scan core, themes, plugins, uploads and the database, and also find hidden backdoors.
No. We fetch the entered URL once server-side and show the result. Nothing is logged or stored.