Title: Cloned website? Last modified: December 20, 2016 --- # Cloned website? * [rmoverman](https://wordpress.org/support/users/rmoverman/) * (@rmoverman) * [9 years, 5 months ago](https://wordpress.org/support/topic/cloned-website/) * I think maybe someone cloned my website. Can anyone verify this? * WARNING: the store2.sellerpeak.tk site may have phishing plugins active! I have never seen the store2.sellerpeak.tk URL before, and a copy of my website appears there, but with all the product picture links broken. * Here is the email I received from wordfence: ============================ This email was sent from your website “(MY REAL WEBSITE)” by the Wordfence plugin at Monday 19th of December 2016 at 01:30:15 AM The Wordfence administrative URL for this site is: [http://store2.sellerpeak.tk/wp-admin/admin.php?page=Wordfence](http://store2.sellerpeak.tk/wp-admin/admin.php?page=Wordfence) * A user with username “admin” who has administrator access signed in to your WordPress site. User IP: 162.158.30.12 User hostname: 162.158.30.12 User location: Muscat, Oman * NOTE: You are using the free version of Wordfence. Upgrade today: – Advanced features like IP reputation monitoring, country blocking, an advanced comment spam filter and cell phone sign-in give you the best protection available – Remote, frequent and scheduled scans – Access to Premium Support – Discounts of up to 90% for multiyear and multi-license purchases * Click here to upgrade to Wordfence Premium: [https://www.wordfence.com/zz1/wordfence-signup/](https://www.wordfence.com/zz1/wordfence-signup/) * — To change your alert options for Wordfence, visit: [http://store2.sellerpeak.tk/wp-admin/admin.php?page=WordfenceSecOpt](http://store2.sellerpeak.tk/wp-admin/admin.php?page=WordfenceSecOpt) To see current Wordfence alerts, visit: [http://store2.sellerpeak.tk/wp-admin/admin.php?page=Wordfence](http://store2.sellerpeak.tk/wp-admin/admin.php?page=Wordfence) * ========================= Viewing 1 replies (of 1 total) * [wfalaa](https://wordpress.org/support/users/wfalaa/) * (@wfalaa) * [9 years, 4 months ago](https://wordpress.org/support/topic/cloned-website/#post-8595717) * Hi, This seems to be a full duplicate of your website including the database, if you don’t know anything about this copy and also your hosting provider doesn’t recognize it, then I suggest checking with your hosting provider more details about this duplicated database date of creation along with this new sub-domain too, how/when it was created? although it’s a little bit strange to hack a website just to create another duplicate of it on the same domain, but it’s recommended to check “[Has my site been hacked? How to Check](https://www.wordfence.com/learn/has-my-site-been-hacked/)” and “[How to Clean a Hacked WordPress Site using Wordfence](https://www.wordfence.com/docs/how-to-clean-a-hacked-wordpress-site-using-wordfence/)” articles in this case. * Thanks. Viewing 1 replies (of 1 total) The topic ‘Cloned website?’ is closed to new replies. * ![](https://ps.w.org/wordfence/assets/icon.svg?rev=2070865) * [Wordfence Security - Firewall, Malware Scan, and Login Security](https://wordpress.org/plugins/wordfence/) * [Frequently Asked Questions](https://wordpress.org/plugins/wordfence/#faq) * [Support Threads](https://wordpress.org/support/plugin/wordfence/) * [Active Topics](https://wordpress.org/support/plugin/wordfence/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/wordfence/unresolved/) * [Reviews](https://wordpress.org/support/plugin/wordfence/reviews/) ## Tags * [clone](https://wordpress.org/support/topic-tag/clone/) * [phishing](https://wordpress.org/support/topic-tag/phishing/) * 1 reply * 2 participants * Last reply from: [wfalaa](https://wordpress.org/support/users/wfalaa/) * Last activity: [9 years, 4 months ago](https://wordpress.org/support/topic/cloned-website/#post-8595717) * Status: not resolved