Comments on: Stop Downloading WordPress Themes from Shady Sites

By: Chota Bheem

Chota Bheem — Thu, 17 Jan 2013 13:17:57 +0000

Yes this is very true. I also had some bad experiences. Thanks Theme Lab for bringing such posts in notice. Great job!!!

By: behnood

behnood — Sat, 29 Dec 2012 10:23:38 +0000

big thanks for the useful post and help.
i was looking for theme to install on my new website and then i met you .
finally i decide to install official wordpress them ,
some of them are very customizable and can be changed to look great.
without risk of phishing or attacking.

many thanks

By: Mohit Kukreja

Mohit Kukreja — Thu, 09 Jun 2011 15:30:46 +0000

Yes this is very true. I also had some bad experiences. Thanks Theme Lab for bringing such posts in notice. Great job!!!

By: Ristoz

Ristoz — Sun, 06 Mar 2011 22:27:27 +0000

There are ways to reverse encrypted the code. They use base64 to encrypt. All you have to do is find and use one of the many free base64 decoders (search Google). Look for a decoder that explains where the code starts and ends otherwise it might not work. A friend of mine who doesn’t know any web design had downloaded a free theme that had the code. We successfully decoded the encryption, removed the hack link, and restored the footer.

With that said, I agree that that the whole thing is shady. Personally, I prefer to contribute to the theme authors.

By: Adrian Lee

Adrian Lee — Sun, 30 Jan 2011 06:25:36 +0000

If you buy a developer license from the vendor, you can pretty much do anything with the themes. So people give them away and get a backlinks to their sites or whatever sites they want. In this case, there’s not much the vendor can do.

I do know that many people do not look at the footer and have no idea there are links there.

My point is, encoded the footer isn’t necessary evil. But the user had better understand the risk they are taking.

By: somebody

somebody — Wed, 15 Dec 2010 11:16:11 +0000

Just want to let people know that worst than some backlinks to websites (be it spam sites or the developers site) shady websites may HAVE VIRUS (technically it’s a worm) installed in them, and sometimes IT`S NOT ENCODED and you may mistake it for genuine code.

One of my colleagues at work installed such a theme and I’m trying to fix things out now.

It didn’t happen, but anybody could have logged in as admin to my site and delete all my content.

By: karen C.

karen C. — Wed, 08 Dec 2010 13:06:51 +0000

Thank you for the warning, I will be more careful when searching, and downloading. I found this to be very helpful.

Sincerely,

Karen C.

By: Chris

Chris — Sun, 10 Oct 2010 15:57:20 +0000

I have come across a few sites like you speak of. I am sure you have all heard of Woo Themes right? Well.. I contacted them, to let them know of 1 site specifically that was giving their paid theme’s away for free.

They responded, said thanks, but there was nothing they could actually do legally, mainly because of the type of licensing. After someone buys the theme from them, they are free to do with it whatever they want. Even if that means putting a encrypted file in the footer, and giving it away for free.

By: Yogi - ThemeWarrior

Yogi - ThemeWarrior — Sun, 10 Oct 2010 15:30:05 +0000

I found a site several days go that was listing our free theme but to my surprise they add encrypted links on our theme’s the footer. Is there a way to prevent those sites not appearing on search engines? Maybe like reporting the site to Google (dunno if this kind of service is available) so it will be flag as some sort of ‘Reported Attack Site’.

By: Blaise

Blaise — Sat, 28 Aug 2010 07:22:13 +0000

This is a really useful post. I hadn’t previously been aware of this issue and I’ll definitely be more careful about selecting themes.