Hacked Wordpress site

Website, Application, Performance Security
1

Answer these questions to help the Community help you with Security questions.

What is the domain name? www.incomemixology.com

Have you searched for an answer? Yes

Please share your search results url: why does Google search console show urls I did not write? (https://q=why+does+google+search+console+show+urls+I+did+not+write%3F&oq=why+does+google+search+console+show+urls+I+did+not+write%3F&aqs=chrome..69i57j33i160j33i299.12845j0j4&sourceid=chrome&ie=UTF-8)

When you tested your domain using the [Cloudflare Diagnostic Center], what were the results? I could not find a diagnostic test at that url

Describe the issue you are having: Google search console shows me thousands of urls, most in German, that I did not write. Another community board for bloggers suggested my sit has been hacked.

What error message or number are you receiving? There has been a critical error on this website.

[Learn more about [troubleshooting WordPress](https://wordpress.org/support/article/faq-troubleshooting/)

What steps have you taken to resolve the issue?

  1. Research to find assistance. I am not technical
  2. Contacted an IT service near me - no response yet
  3. Contacting Cloudways and Cloudflare support

Was the site working with SSL prior to adding it to Cloudflare? Started new with Cloudflare

What are the steps to reproduce the error:

  1. try any of the strange urls and you will see an error. This page leads to error message. [Preformatted text](https://incomemixology.com/x-Fine-Thread-Socket-Button-Hd-Cap-Screw-Black-Oxide-FT-71933/de/item-smxos/)

Have you tried from another browser and/or incognito mode? Yes

Please attach a screenshot of the error:

image
image1617Ă—1224 98.9 KB

2

While Cloudflare’s product line is designed to provide protection against a wide range of security threats, it is important to note that the current stack of services do not cover hacks that originate from the customer’s own origin.

Based on your description of the issue, it sounds like the compromise may have occurred outside of Cloudflare’s network. It’s possible that a cracked/nulled or compromised plugin was installed on your website, or that an outdated version of WP/plugin was being used. These types of issues fall outside of Cloudflare’s scope of protection.

We recommend that you conduct a thorough investigation into the origin of the issue and take steps to address any vulnerabilities that may exist. This may include checking for and removing any cracked or compromised plugins, updating any outdated software, and reviewing your website’s configuration to ensure that it is properly secured.

We understand that website security can be a complex and challenging issue, and we are here to help you in any way that we can. However, in this case it’s best to seek help from other resources as the problem is external to Cloudflare.

4 Likes
3

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.