Someone cloned my site and they are hiding behind cloudflare

Recently i was loosing some organic traffic and checked around only to find a fully working clone of our site. similar word to word and ranking

i already switched to under attack mode. what more can i do? what time span does cloud-flare take to respond as i am a free user

If you make a change in your website, see if it shows up immediately on their site. If it does, they either reverse proxy the site (eg. When they get a view on the homepage, it requests your site’s homepage) or they point their site to your site’s IP address.

thanks for the reply. It was used to update a few hours after i made updates. Talked to my host…i don’t know what they did but tit no longer updates after i make updates on the main site.

the clones looks a little bit scrambled now…not everything loads. But it is still running

is it safe to ignore it now? Because as long as it is online and ranking…looks like a problem

You could temporarily set your site so they can scrape it again, add something malicious to your site (that will break their site, hide it’s content, etc), wait for them to scrape it, then repair and resecure your site.

Contact to the hosting company and raise a complaint, or you may even submit DMCA complaint to take down the website.

This topic was automatically closed after 14 days. New replies are no longer allowed.

Hey someone is cloning my website with instant automatic changes. Is there an idea like using a malicious code on my website the will affect the clone?

Hosted here

do u know how to do this? they are still clonning

If the clone is also using Cloudflare, you can file an abuse report.

To submit an abuse report, go to The Trust and Safety team will then review the details and reply if appropriate.

If not, you should be able to report this to the web host of the cloned site.

i did that. They provided the web-host abuse and also sent a message to the user. But they are still scarping

Is there anything in common across your logs that you can work out? Do their requests go through Cloudflare or bypass Cloudflare and hit your server directly? If they bypass, maybe look at locking down your site to only Cloudflare IPs. If they go through Cloudflare, maybe try blocking IPs/ASNs in the firewall.

Sorry just saw this.

While I’m not endorsing this, something like:
<script type=“text/javascript”>
var x = location.hostname;
if (x != ‘<your site>’) window.location = ‘’;
It’s rough but may work

This topic was automatically closed 5 days after the last reply. New replies are no longer allowed.