1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Someone Copied/stole My Entire Wordpress site

Discussion in 'Black Hat SEO' started by Vladamir, Mar 1, 2017.

  1. Vladamir

    Vladamir Power Member

    Joined:
    Jan 4, 2012
    Messages:
    531
    Likes Received:
    310
    Gender:
    Male
    Occupation:
    Restore Old Boats
    Location:
    Zihuatanejo, Ixtapa, Mexico
    Hi Every, so this morning I woke up with a pingback in my comments and i went to check a website and found its an exact copy of my site with some wording changes to move it from my niche but still has my logo and all my information.

    I filled out a google dmca all their whois is private but well see how far the google dmca goes.

    I wanted to ask I have a ton of security plugins and since the site is wordpress not html i thought it would be relatively difficult to copy the site exactly unless someone had hacked my website. I had installed a nulled version of the genesis framework months ago this could possibly be the leak or I am thinking i use the duplicator plugin to back up my site monthly, could someone hack my duplicator duplication zip somehow or see it through the ftp?

    Im freaking out a little thinking about changing all passwords and deleting all backups off servers and putting them on harddrives, anyone have anything like this happend to them before?
     
  2. MikeyMikey13

    MikeyMikey13 Senior Member

    Joined:
    May 25, 2014
    Messages:
    1,047
    Likes Received:
    265
    Someone probably did a Wordpress>Html, then converted HTML>wordpress.

    I do it all the time lol, never get to meet a victim of it haha. If the guy is smart, the site will be hosted on bulletproof, offshore hosting. If so DMCA will have no jurisdiction.

    But write a message to the hosting company treating them with legal action for having your IP on their servers (even if you don't have an IP).
     
    • Thanks Thanks x 1
  3. Vladamir

    Vladamir Power Member

    Joined:
    Jan 4, 2012
    Messages:
    531
    Likes Received:
    310
    Gender:
    Male
    Occupation:
    Restore Old Boats
    Location:
    Zihuatanejo, Ixtapa, Mexico
    Hi Mikey, so this process of doing wordpress to html to html to wordpress would that allow him to retain everything minus my backend login info and passwords including all plugin scripts and functionality? Like i have this one plugin for searching that does hinted search as you start typing I dont see how a wordpress to html system could duplicate the intricacies of a plugin like that is that possible?
     
  4. MikeyMikey13

    MikeyMikey13 Senior Member

    Joined:
    May 25, 2014
    Messages:
    1,047
    Likes Received:
    265
    Have you used any cracked plugins or themes? Check your access logs

    Unless the kid installed the plugins himself, I doubt he just HTML ripped your site
     
  5. Vladamir

    Vladamir Power Member

    Joined:
    Jan 4, 2012
    Messages:
    531
    Likes Received:
    310
    Gender:
    Male
    Occupation:
    Restore Old Boats
    Location:
    Zihuatanejo, Ixtapa, Mexico
    Yeah thats what I thought it has to be someone hacking into my install. I did install Genesis Extender from wp locker which may have been the culprit but even then seems wierd someone would just try to rip my theme rather than change some of my amazon links to theirs or embed ads in my site, seems like an awful long ways to go to rip a decent, not great website theme for somej crappy printer affiliate site looks like hes starting.

    I use duplicator alot im thinking someone somehow ripped one of my duplicates sitting on the ftp
     
  6. Umm

    Umm Junior Member

    Joined:
    Aug 10, 2016
    Messages:
    145
    Likes Received:
    38
    Gender:
    Male
    May be someone copy your site using program like > httrack. This type of software convert WordPress into the HTML. May be this is the case. You can check their site source and you get the idea.
     
    • Thanks Thanks x 1
  7. Vladamir

    Vladamir Power Member

    Joined:
    Jan 4, 2012
    Messages:
    531
    Likes Received:
    310
    Gender:
    Male
    Occupation:
    Restore Old Boats
    Location:
    Zihuatanejo, Ixtapa, Mexico
    Checked the back end code looks almost the exact same except they removed my goog analytics and seo info, i did a host ip check and found some websites on the same ip from some indian foreign exchange student working in web design in canada his response to my email
    "
    I hope this email finds you well. As per your request the website that you mentioned (http://l does not belong to us, we are not sure how did you reach out to conclusion, but please reach out to website owner directly if you have any concerns.

    fishy considering there were only 8 websites on the ip, most of them crappy affiliate site attempts and 1 webdesign site and 1 webdesigner page.

    I bought genesis and replaced my nulled copy with it and deleted the genesis extender that was from nulled themes, hopefully the exploit or hack was in one of those which are my only ripped/nulled plugins, if not i guess im screwed and one day ill just wake up to my money site being a massive porn popup or have my affiliate links slowly changed to his...fml
     
  8. nmehic

    nmehic Registered Member

    Joined:
    Dec 7, 2016
    Messages:
    80
    Likes Received:
    47
    Gender:
    Male
    Occupation:
    Lurking
    I think it's obvious. That guy ripped your site.
     
  9. Peter Ngo

    Peter Ngo Jr. VIP Jr. VIP

    Joined:
    Apr 23, 2013
    Messages:
    2,044
    Likes Received:
    1,637
    Occupation:
    I browse BHW for a living
    Location:
    The Internet
    It is actually pretty easy to do, simple rip + wordpress integration can get it done. But there is always a risk in using nulled stuffs, if the site is making you good money then i suggest you to buy the licensed at least.

    EDIT: I am no expert, as far as i know, they won't know your backend info, they can only rip your front ends script + designs. But too keep things safe i suggest you to change your login details and pw.