Home / Search engine optimization articles / Website Hosting Scams. How they are done and how to spot them
Website Hosting Scams. How they are done and how to spot them

Website Hosting Scams. How they are done and how to spot them

Rogue Website Hosting Companies

Outright scams by website hosting companies are rare, but they do exist and should be watched out for. We had a case in the forum where the web host used the server to intercept all page requests for all sites of all of their website hosting customers. If a request was from a person, the normal page was returned, but if a request was from a major search engine spider, the web host’s server scam modified the page that was returned, by dynamically adding a set of links to it. This was done to all the web host’s customers’ sites, and without their knowledge or permission.Most of the added links pointed to the web host’s own websites, but some pointed to non-existant (virtual) sub-folders within the customer’s site. When any search engine spider requested a page within those non-existant sub-folders, the system dynamically created a page of links to the host’s own sites, and the host’s sites got even more links pointing to them. When people requested any of the non-existant pages, they were redirected to the site’s home page, but for search engines, each hosting customer’s site contained sections that the customer didn’t put there, and didn’t know existed. The extra sections couldn’t be seen by FTP, because the sub-folders and pages didn’t physically exist. They were virtual, dynamically created, sub-folders and pages, which were only ever seen by search engine spiders.

The purpose of the scam was to add many links, with targetted link text, to the website host’s own sites, so that they would be pushed up the search engines’ rankings. In doing it, the customers lost out in ranking positions, because the host was channeling PageRank out of the customer sites, which caused them to lose a little ranking power.

We were able to get Google to deal with the web host’s site without harming the innocent customer sites, so that case worked out ok. But it isn’t an isolated case, and the possibility of a website hosting company scamming customers is something to be aware of. The problem with that type of scam is that most customers wouldn’t know how to spot it. There are no extra files to be seen by FTP, and, without knowing the file paths and names of the virtual pages, how can such a scam be spotted?

How to spot the scam

Fortunately, Google comes to our aid. Do any search in Google. At the foot of the results page there is a link to “Language Tools”. Click it. Near the top of the returned page is a box in which you can enter the URL of a page to be translated (“Translate a web page:”). Enter your page URL there, leave the setting at German to English, and click “Translate”. There will be no German words in your page, so it will all come back in English. If the web hosting company has changed anything in your page, you will see the changes in the translated page.

How does that work? When the web server serves one page to people, and a different page to search engine spiders, it is called cloaking. The scam that I’ve described serves different pages to search engines than those that are served to people. Search engines get the added links, but people don’t. It is cloaking. Cloaking looks at the IP address of the requestor before deciding which page to send. If it is the IP of a search engine spider, the page with the added links is returned. We can’t spoof a Google spider’s IP address, but Google’s translation tool uses a Google spider’s IP address, because it is a Google spider, so the host returns the page that is intended for search engines. That’s how you can see any modificatoons that have been done to your pages by your website hosting service.

If your website hosting company is a small business, you might want to check a few pages from time to time.

Hacking Problems

A case (sitemaps hacked??) recently appeared in the SearchEngineWatch forum where websites had been hacked, so that pages are modified when search engine spiders request them. Those particular modifications were to benefit porn sites. In this case, the hack is easy to spot by FTP because real sub-folders and files are added to the sites, so it isn’t invisible as in the previous case.Google people checked it out, and concluded that it wasn’t the hosts who were to blame, but the likelihood is that cPanel usernames and passwords had been hacked so that the new sub-folders and files could be placed in the sites. The hack caused one of the sites to be penalised by Google, but it is likely to be re-included now that the cause has been exposed.

This type of hack is bound to be on the increase, and should be watched out for. It is easily spotted by FTP, due to the extra sub-folders, but it is better to prevent it in the first place by using totally obscure passwords.

Related reading:
AdSense ready websites scams

4 comments

  1. Since I signed up with hosting company Ipage, my emails are mostly spammers, from web designers, logo building. Ipage own support suggested I use one of their professional developers. I get calls after calls from telemarketers. They want a fee for every web site I own to keep my name private from public, fee for backup of site, fee to run virus scans on my web site, fees , fees.
    I paid for 3 years of hosting, 1 more year of being scammed. Tec support comes from over seas, who barely understand web hosting.

  2. John, I have the same problem, very dissatisfied >:(

  3. BEWARE of THCSERVERS.COM !!

    DO NOT BUY THEIR HOSTING !!

    They are nothing but a scam. I will narrate what happened briefly.

    I signed up for an account with them after seeing an offer, and have been a regular customer since 6 months.

    Suddenly one day I received an email saying my account is suspended with reason “site is serving up redirection links to spam or malware”.

    I am a web developer and I use the hosting only for hosting my own site and client sites which I make. I have been using hostgator and bluehost since several years, NEVER had problems with them.

    So I contacted them to find out why. They are just saying we got email from some spam site that my hosting is generating SPAM. And then they ask me to send me my legal documents, ID proof and address proof for verification for ICANN. ICANN ??? ICANN is used in domain registration and not hosting. I told the support staff this, and he is lost, he then changes his sentence and says we need that to verify that you didnt use a fake name and address.

    I was like WHAT? I have an account with your for 6 months, you didn’t bother about my name and address, and now you are bothering about it. And if they really required these verification, why after 6 months ?? Why not after Sign up ?? Now they have my files and everything and harassing me to send documents or they won’t reactivate my account at all.

    I am asking them to send me the backup of my files. They are not even sending that. Instead they are saying to me, do whatever you want and acting very rude in the chat. Here is the proof of their chat.

    http://prntscr.com/c2d818

    DO NOT BUY THEIR HOSTING, THEY ARE A SCAM !!

  4. Buy Email List Canada

    I am so grateful for your post.Thanks Again. Great post !!

Leave a Reply

Your email address will not be published. Required fields are marked *