Site being targeted by hardcore porn links
-
We noticed recently a huge amount of referral traffic coming to a client's site from various hard cord porn sites. One of the sites has become the 4th largest referrer and there are maybe 20 other sites sending traffic.
I did a Whois look up on some of the sites and they're all registered to various people & companies, most of them are pretty shady looking.
I don't know if the sites have been hacked or are deliberately sending traffic to my client's site, but it's obviously a concern. The client's site was compromised a few months ago and had a bunch of spam links inserted into the homepage code.
Has anyone else seen this before? Any ideas why someone would do this, what the risks are and how we fix it?
All help & suggestions greatly appreciated, many thanks in advance.
MB.
-
"in a case like this is it sensible to preemptively remove the links with the disavow tool?"
Once again, the Disavow tool was offered as a last resort by Google. Many webmasters seem frustrated the tool is not working as they expected, and the issue is typically they ignored Google's instructions for the tool's usage.
Prior to using the Disavow tool, you need to make an exhaustive effort to remove the links. Send a polite letter to the WHOIS address for the domain explaining the problem and identifying specific links from that domain which are pointing to your site. If there is no response within 3 days, send the same letter to an email address found on the site itself. If you still do not receive a response, check for a Contact Form on the site.
Try to learn what is going on with the site. Ask site owners how these links were created. It surely can be the result of negative SEO, but in the overwhelming majority of cases I have worked with, it is either the client or an agent acting on behalf of the client. Try digging a little deeper.
-
Hi again Ryan/Gordon,
Sorry to bring this one up again, but we could use some more input if possible. It turns out the number of referring URLs is way higher than we originally thought. I've also done some digging in OSE and have found a huge number of links from dubious sources. It's going to take some time to refine the list but we're probably looking in the thousands.
There's no doubt that this is malicious as we have never done anything to build links like these.
We've not yet noticed any penalty or received any warnings but in a case like this is it sensible to preemptively remove the links with the disavow tool?
One other thought: it seems suspicious that this has happened around the same time that the site itself was hacked with similar links inserted into the homepage.
My best guess is that the site hasn't been specifically targeted but has been caught up in some kind of automated spam attack. I've looked at some of the other offending sites and all the links are in odd places - hidden in the code or in strange anchor text. Is it possible that a robot has crawled all these sites and inserted spam links to create some kind of massive "link wheel"?
In this case what's the best preemptive solution before we get slapped with a penalty?
Thanks again...
-
There are not any general endorsements I can share. Your chosen expert may vary depending on your hosting environment, site software and budget.
-
I appreciate your time & help Ryan. I will pass all those suggestions on.
If they choose to bring in a security expert in to take a look, do you have any recommendations?
-
"As for the client's site hacking, as far as I'm aware their webmaster & in-house team dealt with that when it happened."
The webmaster and inhouse team likely had a gap which was exploited. It may be best to bring in an outside security consultant to review the matter.
"if our messages go unacknowledged, what else can we do about it?"
In my experience, 25 - 60% of removal requests are honored, depending on the site. If you are working with numerous site owners, either some of them will respond or you are likely doing something wrong. Ways to contact a webmaster:
-
use the WHOIS information to send an email
-
use information from the site. Before you say they don't have anywhere, check thoroughly.
-
use the site's Contact Us form
-
call the site with the number on the site or their WHOIS phone number
-
mail the site
-
check for social pages such as facebook and contact them via that method
You shared there are around 20 sites linking to your client's site. Some of them should respond.
-
-
That's good. Sorry, but I had missed the part where you said your clients site was compromised previously....
-
Thanks Gordon,
The links are no-follow so for the time being I'm not too worried about link spam penalties. We'll try to contact the site owners first and will then disavow the links if nothing else works...
Cheers, Matt
-
Thanks for your detailed reply Ralph As for the client's site hacking, as far as I'm aware their webmaster & in-house team dealt with that when it happened. I will pass your notes on to the team and check they are 100% confident that the security lapses are fixed. We are in the process of identifying & contacting the webmasters of the referring sites to requests the links be remove. However, if our messages go unacknowledged, what else can we do about it? The links are mostly no-follow which is a minor blessing and we haven't seen any link manipulation warnings in GWT yet. Still confused on their motives/reasons though.
-
"The client's site was compromised a few months ago and had a bunch of spam links inserted into the homepage code."
Has the issue been fully resolved? What steps have you taken to ensure the site's code is clean and remains clean? Some examples:
- placing the code on a test server and having an expert examine the code
- crawling the site and examining all links
- upon completion of the code analysis, implement a system which detects any coding changes and notifies you of the change
- ensure you are using professional development services with professionally developed extensions
- check your hosting. At a minimum, VPS hosting should be used. Do you have a firewall in place? What type of precautions does the host take (i.e. are you with a major host such as Rackspace, HostDime, etc? Or a host no one has heard of?)
- Use a service such as Symantec or McAfee SSL which offers daily site malware scanning
Every time I have worked with a compromised site, there have been major gaps or a complete lack of site security.
With respect to the links, the Disavow Tool can be used as a means of last resort. Google is very clear the tool should not be used until all other methods have been exhausted.
Have you tried contacting any of the webmasters to inquire about the links? That would be a start. You stated they are from independently owned sites. If that is true, then some of those webmasters will likely be cooperative and help you understand why they are linking to you.
We are happy to help Matthew. There is a lot more detailed information required which is missing from your question. There are dozens of possible causes and solutions.
-
Hi Matthew,
Sorry to hear this, and it's not good news. As to how/why it's happened, I can only guess one of two resaons. Either someone who knows nothing about SEO has decided s/he would "help" the whole SEO process and buy some links in. Or, and possibly more likely it may be a competitor who is doing a negative SEO campaign with the desire to lower your organic rankings, ensuring you will be penalised by Google.
You can now use the Google Webmaster tools and use the disavow tool to tell Google to ignore those links.
Hope that helps and all the best.
Gordon
Got a burning SEO question?
Subscribe to Moz Pro to gain full access to Q&A, answer questions, and ask your own.
Browse Questions
Explore more categories
-
Moz Tools
Chat with the community about the Moz tools.
-
SEO Tactics
Discuss the SEO process with fellow marketers
-
Community
Discuss industry events, jobs, and news!
-
Digital Marketing
Chat about tactics outside of SEO
-
Research & Trends
Dive into research and trends in the search industry.
-
Support
Connect on product support and feature requests.
Related Questions
-
Back links issue and how to resolve it
Hi there! We have a client who has been generating back links from external sites over a period of two years with all the same anchor text which all link back to the home page. This anchor text is also their main search phrase they wish to score highly on. In total, they have roughly 300 domain names linking to their site. Over 50 of these domain names all have the same anchor text. These links have been generated through articles and blogs. So roughly 20% of the total number of links all have the same anchor text. Over the past 6 months the client has noticed a steady drop in their rankings for this term. From the back link analysis we have done, we believe it is this which is causing the problem. Does any one else agree? For the remedy, do we go in and see if we can change the anchor text or disavow them through Google webmaster tools? Suggestions? Thanks for your help! P 🙂
White Hat / Black Hat SEO | | Globalgraphics0 -
Pharma Hack/Grey hat SEO. Cannot get site to rank, tons of incoming bad links
I have been working on a website trying to get it to show up in the SERPs again. It is being indexed which is great, it has some errors that I'm fixing now. But for the most part it should be ranking. It don't show any penalties going on, but when I did a backlink search we keep getting the cialis, viagra etc inbound links. First thought was Pharma Hack. But it's not a WP site and I recently rebuilt it. So whatever bad code could have been there it's not anymore. It doesn't show up in google either for the search site:www.mysite.com viagra cialis etc... So I'm wondering if anyone has any insight in a direction to point me? I don't understand what would be causing this to still not rank. Only thing it ranks for is it's name. Any suggestions would be very appreciated.
White Hat / Black Hat SEO | | WeBuyCars.com0 -
One page sites
HI Guys, I need help with a one page site What is the best method to getting the lower pages indexed? Linking back to the site(Deeplinking) is looking impossible. Will this hurt my SEO? Are there any other tips on one page websites that you can recommend?
White Hat / Black Hat SEO | | Johnny_AppleSeed0 -
Untrusted site - malware!
I recently had my link profile done as I was badly effected by something in 2012 (Penguin, Panda.. who knows? never got a message from google in webmaster about anything). Loads of INBOUND links were identified as being 'dodgy'' and the person highlighted them in different colors. However, another seo éxpert' told me to leave them (perhaps remove just 3 of them) and don't bother with the rest. Now I am not sure what to do? Any opinions? RED
White Hat / Black Hat SEO | | Llanero
3 were highlighted as being from untrusted malware. I think I should disavow them but really, would 3 make that much difference for a fall in my site? ORANGE
240 were said to be spam articles and I was advised:
The following pages highlighted in orange are on sites created for the purpose of publishing articles for link building. Since the same articles appear on multiple sites, Google views this as duplicate content. Links to Monteverde Tours in these articles should be removed or tagged "nofollow." Where this is not possible, the domains should be disavowed. YELLOW
85 were said to be from Low-quality directories
The following pages highlighted in yellow are on low-quality directories and link farms. Links to Monteverde Tours on these pages should be removed or the domains disavowed. GREEN
340 were said to be from sites were the page was not found , Account suspended, Problem loading page, Link removed, domain expired
The following pages highlighted in green include pages whose links to Monteverde Tours have been removed and pages that were inaccessible for various reasons, as shown in the Comments column. These pages or their domains should be disavowed to remove them from the Google index. I have read (and asked on this forum) about disavow but the more I read the more I am getting confused about the next action. I tried for one year to get rid of any bad outbound links, did blogging, social media, improved content, landing pages etc but all to no avail. Any opinions appreciated. I am not looking for a magic bullet, I know there isn't one. I know I need to keep improving content etc but after a year of NO improvements should I consider the link removal route? <colgroup><col width="215"></colgroup>
| Untrusted site - malware! |0 -
When to NOT USE the disavow link tool
Im not here to say this is concrete and should never do this, and please if you disagree with me then lets discuss. One of the biggest things out there today especially after the second wave of Penguin (2.0) is the fear striken web masters who run straight to the disavow tool after they have been hit with Penguin or noticed a drop shortly after. I had a friend who's site who never felt the effects of Penguin 1.0 and thought everything was peachy. Then P2.0 hit and his rankings dropped of the map. I got a call from him that night and he was desperately asking me for help to review his site and guess what might have happened. He then tells me the first thing he did was compile a list of websites back linking to him that might be the issue and create his disavow list and submitted it. I asked him "How long did you research these sites before you came the conclusion they were the problem?" He Said "About an hour" Then I asked him "Did you receive a message in your Google Webmaster Tools about unnatural linking?" He Said "No" I said "Then why are you disavowing anything?" He Said "Um.......I don't understand what you are saying?" In reading articles, forums and even here in the Moz Q/A I tend to think there is some misconceptions about the disavow tool from Google that do not seem to be clearly explained. Some of my findings with the tool and when to use it is purely based on logic IMO. Let me explain When to NOT use the tool If you spent an hour reviewing your back link profile and you are to eager to wait any longer to upload your list. Unless you have less than 20 root domains linking to you, you should spend a lot more than an hour reviewing your back link profile You DID NOT receive a message from GWT informing you that you had some "unnatural" links Ill explain later If you spend a very short amount of time reviewing your back link profile. Did not look at each individual site linking to you and every link that exists, then you might be using it WAY TO SOON. The last thing you want to do is disavow a link that actually might be helping you. Take the time to really look at each link and ask your self this question (Straight from the Google Guidelines) "A good rule of thumb is whether you'd feel comfortable explaining what you've done to a website that competes with you, or to a Google employee" Studying your back link profile We all know when we have cheated. Im sure 99.9% of all of us can admit to it at one point. Most of the time I can find back links from sites and look right at the owner and ask him or her "You placed this back link didn't you?" I can see the guilt immediately in their eyes 🙂 Remember not ALL back links you generate are bad or wrong because you own the site. You need to ask yourself "Was this link necessary and does it apply to the topic at hand?", "Was it relevant?" and most important "Is this going to help other users?". These are some questions you can ask yourself before each link you place. You DID NOT receive a message about unnatural linking This is were I think the most confusing takes place (and please explain to me if I am wrong on this). If you did not receive a message in GWT about unnatural linking, then we can safely say that Google does not think you contain any "fishy" spammy links in which they have determined to be of a spammy nature. So if you did not receive any message yet your rankings dropped, then what could it be? Well it's still your back links that most likely did it, but its more likely the "value" of previous links that hold less or no value at all anymore. So obviously when this value drops, so does your rank. So what do I do? Build more quality links....and watch you rankings come back 🙂
White Hat / Black Hat SEO | | cbielich1 -
Is this a 'real site' or a spam site for backlinks
I have been asked what type of site this is? What kind of page is this? [http://www.gotocostarica.com/](http://www.gotocostarica.com/) In my opinion it is site put up to create back links and should be avoided (especially in the light of the new Penguin and Panda updates coming). But I don't want to give wrong advice. What are your opinions?
White Hat / Black Hat SEO | | Llanero0 -
Secretly back-linking from whitelabel product
Lets say a company (provider.com) offers a whitelabel solution which enables each client to have all of the content on their own domain (product.client.com), with no branding by the content provider. Now lets say that client.com is a site with a lot of authority, and to promote the launch of product.client.com, they put a lot of links from their main site to the subdomain. This can be very valuable link juice, and provider.com would like to be able to take advantage. The problem is, that client.com wouldn't like it if provider.com put in links on their whitelabel site. Suppose the following: All pages on product.client.com start to have a rel="canonical" link to themselves, with a get variable (e.g. product.client.com/page.htm -> product.client.com/page.html?show_extra_link=true) When the page is visited with the extra get parameter "show_extra_link" a link appears in the footer that points to provider.com My question is, would this have the same effect for provider.com as placing a link on the non-canonical version of the pages on the whitelabel site would?
White Hat / Black Hat SEO | | seoczar0 -
Link Building: High Ranking Site vs. Relevancy
Hello, When link building, is it acceptable to link with a site that has high authority but has minimal relevancy to our site? For example, if we sell nutritional products and the link exchange would be with a site that relates to free coupons, would that work? Also, if we are publishing articles on other sites, should we also publish them on our own site? Should we add "nofollow" if we publish them in our site?
White Hat / Black Hat SEO | | odegi0
