Warning - Porn Infected Wordpress Themes!

23 replies
I downloaded 10 free wordpress themes from this site and found (quite by accident) that there are porn links hidden in the "functions.php" file and served through the "footer.php" file.

Here is a screenshot of the infected code in the functions.php file.

I just wanted to warn anyone using these themes to check for the hidden code. I was able to remove it by editing both the "functions.php" and "footer.php".

I'm not a programmer or php expert so there may be other files infected as well. I looked and didn't find any but I'm not sure. I also found similar code in some themes I downloaded from another site but I can't remember what that site was.

I recommend that you check your themes just in case. I meant to report this some time ago but forgot. Sorry about that. I was reminded when someone posted that their site got deranked after apply a StudioPress Revolution Theme.

Hope this helps.

Techguy
#infected #themes #warning #wordpress
  • Profile picture of the author Lee Wilson
    Just before anybody gets the wrong impression ...

    Brian Gardner I would consider a very trustworthy person. His themes are NOT free! Wherever you got them from, I very much doubt has anything to do with him. Did you contact him about it?
    {{ DiscussionBoard.errors[2079415].message }}
    • Profile picture of the author Techguy
      Originally Posted by L Wilson View Post

      Just before anybody gets the wrong impression ...

      Brian Gardner I would consider a very trustworthy person. His themes are NOT free! Wherever you got them from, I very much doubt has anything to do with him. Did you contact him about it?
      No, I'm not aware of Brian Gardner.

      I was wondering why some sites had these available for free and the Studiopress site was selling them. I did notice that the themes had been made opensource at one time. Was that a scam?

      I'm not accusing anybody by name. I link to the site where I downloaded the themes. I just downloaded them again and they are still infected. See my first post for the link.

      I can delete this post if it will do more harm than good. I just wanted to warn people who might be using an infected theme.

      Also, I'm sure that these are not the only themes that can be infected in this way. So this is just FYI.

      Techguy
      {{ DiscussionBoard.errors[2079439].message }}
      • Profile picture of the author Lee Wilson
        Originally Posted by Techguy View Post

        No, I'm not aware of Brian Gardner.

        I was wondering why some sites had these available for free and the Studiopress site was selling them. I did notice that the themes had been made opensource at one time. Was that a scam?

        I'm not accusing anybody by name. I link to the site where I downloaded the themes. I just downloaded them again and they are still infected. See my first post for the link.

        I can delete this post if it will do more harm than good. I just wanted to warn people who might be using an infected theme.

        Also, I'm sure that these are not the only themes that can be infected in this way. So this is just FYI.

        Techguy
        Sorry, wasn't accusing you of anything, just wanted to jump in before word gets out that the revolution themes contain spam links.

        Brian gardner is the man behind the revolution themes and revolution 2 was discontinued quite a while ago. The studiopress themes went open source, but not actually free, although I do believe he may have a few free themes available, revolution 2 was definitely not.

        It might be very helpful to him if you let him know where you downloaded them, you should be able to contact him here. Brian Gardner ? Starbucks Addict Since 1974

        Lee
        {{ DiscussionBoard.errors[2079475].message }}
        • Profile picture of the author Techguy
          Originally Posted by L Wilson View Post

          It might be very helpful to him if you let him know where you downloaded them, you should be able to contact him here. Brian Gardner ? Starbucks Addict Since 1974

          Lee
          I already went there and tried but the contact us page was blank. I didn't see any other way to contact him. I even searched this forum. Maybe you can contact him somehow? He definitely needs to know.

          Thanks, Techguy
          {{ DiscussionBoard.errors[2079488].message }}
          • Profile picture of the author Lee Wilson
            Originally Posted by Techguy View Post

            I already went there and tried but the contact us page was blank. I didn't see any other way to contact him. I even searched this forum. Maybe you can contact him somehow? He definitely needs to know.

            Thanks, Techguy
            Yeah, I just found the same. I've just pm'd him about it. He probably can't do much but it's a bit annoying. Having bought from him before, I know the kind of attention he gives to his work and customers, he don't need that reputation going around.

            Lee
            {{ DiscussionBoard.errors[2079525].message }}
            • Profile picture of the author ss442
              "Thanks for the heads up".

              "Maybe these were meant for the Securities and Exchange Commission or other government offices".
              Signature

              Ed Sunderland

              {{ DiscussionBoard.errors[2079566].message }}
  • Profile picture of the author AmyBrown
    The infection is not present in themes downloaded directly from StudioPress. Part of what you pay for when you purchase the themes from StudioPress are clean files and support. Not sure which themes are included in the pack you downloaded (and I'm not going to that site) but the recent themes are released under the GPL. Any free theme should be checked for icky stuff.

    This contact form works for me: Contact
    Signature
    "Test fast, fail fast, adjust fast."
    Tom Peters

    {{ DiscussionBoard.errors[2079568].message }}
    • Profile picture of the author rft123
      Thanks for the information. I'm sure that you have saved many people a lot of headaches by being so thoughtful as to warn everyone about the infected files.
      Signature
      Click Here to learn how to get TONS of dirt cheap traffic to your site
      {{ DiscussionBoard.errors[2079583].message }}
    • Profile picture of the author Susan Hope
      Absolutely sure this has nothing to do with Studio Press as it is now or Brian Gardner - if you get in touch with him, how about you change the title of this thread to "Warning, infected WP themes - link in thread" so that his company name is not associated with this site with infected themes.

      Just a thought
      Sue
      Signature
      One-to-One WordPress Coaching Service Available at Low Hourly Rate - Let the frustration end now! WordPress Installs, Theme Design, Site Tweaks & other WordPress services available
      Find me on Pinterest: PINTEREST
      {{ DiscussionBoard.errors[2079596].message }}
  • Profile picture of the author Fernando Veloso
    Just sent a message to Brian.

    OP, please edit your thread title.

    Edit: This is another reason WHY people should use clean paid themes OR free options from http://wordpress.org/extend/themes/.

    Signature
    People make good money selling to the rich. But the rich got rich selling to the masses.
    {{ DiscussionBoard.errors[2079625].message }}
  • Profile picture of the author Lee Wilson
    I've had a reply from Brian so he's aware of this now.

    Lee
    {{ DiscussionBoard.errors[2079657].message }}
    • Profile picture of the author Tbonez
      Thank you Warriors for letting others know that the themes being given away at the site mentioned are from unethical & unscrupulous hacks.

      It is something we see quite frequently across the web and so do the other Theme companies like Woo, iThemes, DIY, etc.

      It is a strong reason for purchasing themes from the actual company and as you are guaranteed to get a clean, working theme along with support.

      As we have told many people who come to us, wondering why our themes are being given away ... our themes are quite popular and hackers are aware of this, so they hope to dupe people, for their own benefit.

      Remember nothing is ever that free.. Read:
      How Downloading a Premium Theme/Plugin From the Wrong Place Can Ruin Your Site
      {{ DiscussionBoard.errors[2080118].message }}
  • Profile picture of the author Istvan Horvath
    1. If there is a product sold somewhere by its creator for a decent price... and you "get" it miraculously for free from an obscure site - what do you expect?

    2. "infected" suggests a contamination by accident. In this case it is not true: those links are placed there deliberately to get backlinks.

    3. I knew it cannot come from Brian, I know him for years, he's not that type of designer

    4. Lastly, I would say those that are trying to get a paid product for free... deserve to have all kind of ****ty links on their blog.
    Signature

    {{ DiscussionBoard.errors[2080454].message }}
    • Profile picture of the author JoeCool
      What's that old saying?

      Oh yeah...

      You get what you pay for!


      ~ JoeCool
      Signature

      My Favorite Charity .:: www.Unitus.com ::. Helping Third World Entrepreneurial Families Help Themselves.

      {{ DiscussionBoard.errors[2080595].message }}
    • Profile picture of the author Techguy
      Originally Posted by Istvan Horvath View Post

      1. If there is a product sold somewhere by its creator for a decent price... and you "get" it miraculously for free from an obscure site - what do you expect?

      2. "infected" suggests a contamination by accident. In this case it is not true: those links are placed there deliberately to get backlinks.

      3. I knew it cannot come from Brian, I know him for years, he's not that type of designer

      4. Lastly, I would say those that are trying to get a paid product for free... deserve to have all kind of ****ty links on their blog.
      Well, for the record, I found the free themes before I found the paid versions, because my search was for "free wordpress themes". I was not looking to buy a theme.

      And I agree that those looking for free stuff are now being taking advantage of. That's how most of my customer get infected with viruses, yet they still want free.

      Free is the most effect word in advertising according to those who know. An it probably will always be...for better or for worse.

      Techguy
      {{ DiscussionBoard.errors[2081523].message }}
  • Profile picture of the author thebitbotdotcom
    What a shame that somebody would take his themes and do that.
    Signature
    Do Your Copywriting Skills Suck?

    Let Us Help You Develop Your Writing Skills!

    Submit Guest Posts With [ TheBitBot.Com ]
    {{ DiscussionBoard.errors[2081792].message }}
  • Profile picture of the author msfunding
    I use thesis themes and in the last 2 day I have had some warnings on my site about infected files although I have not uploaded anything. I have Akismet can anyone advise of additional plugins that might help..
    {{ DiscussionBoard.errors[2083209].message }}
  • Profile picture of the author Istvan Horvath
    msfunding,

    I am confused: are you using the theme or not? If you didn't upload it how are you "using it"?

    Akismet won't help if the site is hacked and infected; its job is to stop/catch spam comments and trackbacks.
    Signature

    {{ DiscussionBoard.errors[2083995].message }}

Trending Topics