Moz Q&A is closed.
After more than 13 years, and tens of thousands of questions, Moz Q&A closed on 12th December 2024. Whilst we’re not completely removing the content - many posts will still be possible to view - we have locked both new posts and new replies. More details here.
Site being targeted by hardcore porn links
-
We noticed recently a huge amount of referral traffic coming to a client's site from various hard cord porn sites. One of the sites has become the 4th largest referrer and there are maybe 20 other sites sending traffic.
I did a Whois look up on some of the sites and they're all registered to various people & companies, most of them are pretty shady looking.
I don't know if the sites have been hacked or are deliberately sending traffic to my client's site, but it's obviously a concern. The client's site was compromised a few months ago and had a bunch of spam links inserted into the homepage code.
Has anyone else seen this before? Any ideas why someone would do this, what the risks are and how we fix it?
All help & suggestions greatly appreciated, many thanks in advance.
MB.
-
"in a case like this is it sensible to preemptively remove the links with the disavow tool?"
Once again, the Disavow tool was offered as a last resort by Google. Many webmasters seem frustrated the tool is not working as they expected, and the issue is typically they ignored Google's instructions for the tool's usage.
Prior to using the Disavow tool, you need to make an exhaustive effort to remove the links. Send a polite letter to the WHOIS address for the domain explaining the problem and identifying specific links from that domain which are pointing to your site. If there is no response within 3 days, send the same letter to an email address found on the site itself. If you still do not receive a response, check for a Contact Form on the site.
Try to learn what is going on with the site. Ask site owners how these links were created. It surely can be the result of negative SEO, but in the overwhelming majority of cases I have worked with, it is either the client or an agent acting on behalf of the client. Try digging a little deeper.
-
Hi again Ryan/Gordon,
Sorry to bring this one up again, but we could use some more input if possible. It turns out the number of referring URLs is way higher than we originally thought. I've also done some digging in OSE and have found a huge number of links from dubious sources. It's going to take some time to refine the list but we're probably looking in the thousands.
There's no doubt that this is malicious as we have never done anything to build links like these.
We've not yet noticed any penalty or received any warnings but in a case like this is it sensible to preemptively remove the links with the disavow tool?
One other thought: it seems suspicious that this has happened around the same time that the site itself was hacked with similar links inserted into the homepage.
My best guess is that the site hasn't been specifically targeted but has been caught up in some kind of automated spam attack. I've looked at some of the other offending sites and all the links are in odd places - hidden in the code or in strange anchor text. Is it possible that a robot has crawled all these sites and inserted spam links to create some kind of massive "link wheel"?
In this case what's the best preemptive solution before we get slapped with a penalty?
Thanks again...
-
There are not any general endorsements I can share. Your chosen expert may vary depending on your hosting environment, site software and budget.
-
I appreciate your time & help Ryan. I will pass all those suggestions on.
If they choose to bring in a security expert in to take a look, do you have any recommendations?
-
"As for the client's site hacking, as far as I'm aware their webmaster & in-house team dealt with that when it happened."
The webmaster and inhouse team likely had a gap which was exploited. It may be best to bring in an outside security consultant to review the matter.
"if our messages go unacknowledged, what else can we do about it?"
In my experience, 25 - 60% of removal requests are honored, depending on the site. If you are working with numerous site owners, either some of them will respond or you are likely doing something wrong. Ways to contact a webmaster:
-
use the WHOIS information to send an email
-
use information from the site. Before you say they don't have anywhere, check thoroughly.
-
use the site's Contact Us form
-
call the site with the number on the site or their WHOIS phone number
-
mail the site
-
check for social pages such as facebook and contact them via that method
You shared there are around 20 sites linking to your client's site. Some of them should respond.
-
-
That's good. Sorry, but I had missed the part where you said your clients site was compromised previously....
-
Thanks Gordon,
The links are no-follow so for the time being I'm not too worried about link spam penalties. We'll try to contact the site owners first and will then disavow the links if nothing else works...
Cheers, Matt
-
Thanks for your detailed reply Ralph As for the client's site hacking, as far as I'm aware their webmaster & in-house team dealt with that when it happened. I will pass your notes on to the team and check they are 100% confident that the security lapses are fixed. We are in the process of identifying & contacting the webmasters of the referring sites to requests the links be remove. However, if our messages go unacknowledged, what else can we do about it? The links are mostly no-follow which is a minor blessing and we haven't seen any link manipulation warnings in GWT yet. Still confused on their motives/reasons though.
-
"The client's site was compromised a few months ago and had a bunch of spam links inserted into the homepage code."
Has the issue been fully resolved? What steps have you taken to ensure the site's code is clean and remains clean? Some examples:
- placing the code on a test server and having an expert examine the code
- crawling the site and examining all links
- upon completion of the code analysis, implement a system which detects any coding changes and notifies you of the change
- ensure you are using professional development services with professionally developed extensions
- check your hosting. At a minimum, VPS hosting should be used. Do you have a firewall in place? What type of precautions does the host take (i.e. are you with a major host such as Rackspace, HostDime, etc? Or a host no one has heard of?)
- Use a service such as Symantec or McAfee SSL which offers daily site malware scanning
Every time I have worked with a compromised site, there have been major gaps or a complete lack of site security.
With respect to the links, the Disavow Tool can be used as a means of last resort. Google is very clear the tool should not be used until all other methods have been exhausted.
Have you tried contacting any of the webmasters to inquire about the links? That would be a start. You stated they are from independently owned sites. If that is true, then some of those webmasters will likely be cooperative and help you understand why they are linking to you.
We are happy to help Matthew. There is a lot more detailed information required which is missing from your question. There are dozens of possible causes and solutions.
-
Hi Matthew,
Sorry to hear this, and it's not good news. As to how/why it's happened, I can only guess one of two resaons. Either someone who knows nothing about SEO has decided s/he would "help" the whole SEO process and buy some links in. Or, and possibly more likely it may be a competitor who is doing a negative SEO campaign with the desire to lower your organic rankings, ensuring you will be penalised by Google.
You can now use the Google Webmaster tools and use the disavow tool to tell Google to ignore those links.
Hope that helps and all the best.
Gordon
Got a burning SEO question?
Subscribe to Moz Pro to gain full access to Q&A, answer questions, and ask your own.
Browse Questions
Explore more categories
-
Moz Tools
Chat with the community about the Moz tools.
-
SEO Tactics
Discuss the SEO process with fellow marketers
-
Community
Discuss industry events, jobs, and news!
-
Digital Marketing
Chat about tactics outside of SEO
-
Research & Trends
Dive into research and trends in the search industry.
-
Support
Connect on product support and feature requests.
Related Questions
-
How many links can you have on sitemap.html
we have a lot of pages that we want to create crawlable paths to. How many links are able to be crawled on 1 page for sitemap.html
White Hat / Black Hat SEO | | imjonny0 -
Should I delete older posts on my site that are lower quality?
Hey guys! Thanks in advance for thinking through this with me. You're appreciated! I have 350 pieces of Cornerstone Content that has been a large focus of mine over the last couple years. They're incredibly important to my business. That said, less experienced me did what I thought was best by hiring a freelance writer to create extra content to interlink them and add relevancy to the overall site. Looking back through everything, I am starting to realize that this extra content, which now makes up 1/3 my site, is at about 65%-70% quality AND only gets a total of about 250 visitors per month combined -- for all 384 articles. Rather than spending the next 9 months and investing in a higher quality content creator to revamp them, I am seeing the next best option to remove them. From a pros perspective, do you guys think removing these 384 lower quality articles is my best option and focusing my efforts on a better UX, faster site, and continual upgrading of the 350 pieces of Cornerstone Content? I'm honestly at a point where I am ready to cut my losses, admit my mistakes, and swear to publish nothing but gold moving forward. I'd love to hear how you would approach this situation! Thanks 🙂
White Hat / Black Hat SEO | | ryj0 -
Preventing CNAME Site Duplications
Hello fellow mozzers! Let me see if I can explain this properly. First, our server admin is out of contact at the moment,
White Hat / Black Hat SEO | | David-Kley
so we are having to take this project on somewhat blind. (forgive the ignorance of terms). We have a client that needs a cname record setup, as they need a sales.DOMAIN.com to go to a different
provider of data. They have a "store" platform that is hosted elsewhere and they require a cname to be
sent to a custom subdomain they set up on their end. My question is, how do we prevent the cname from being indexed along with the main domain? If we
process a redirect for the subdomain, then the site will not be able to go out and grab the other providers
info and display it. Currently, if you type in the sales.DOMAIN.com it shows the main site's homepage.
That cannot be allow to take place as we all know, having more than one domain with
exact same content = very bad for seo. I'd rather not rely on Google to figure it out. Should we just have the cname host (where its pointing at) add a robots rule and have it set to not index
the cname? The store does not need to be indexed, as the items are changed almost daily. Lastly, is an A record required for this type of situation in any way? Forgive my ignorance of subdomains, cname records and related terms. Our server admin being
unavailable is not helping this project move along any. Any advice on the best way to handle
this would be very helpful!0 -
Do I lose link juice if I have a https site and someone links to me using http instead?
We have recently launched a https site which is getting some organic links some of which are using https and some are using http. Am I losing link juice on the ones linked using http even though I am redirecting or does Google view them the same way? As most people still use http naturally will it look strange to google if I contact anyone who has given us a link and ask them to change to https?
White Hat / Black Hat SEO | | Lisa-Devins0 -
How would you optimize a new site?
Hi guys, im here to ask based on your personal opinion. We know in order to rank in SEO for a site is to make authority contents that interest people. But what would you do to increase your ranking of your site or maybe a blog post? leaving your link on blogs comment seem dangerous, nowadays. Is social media the only way to go? Trying to get people to write about you? what else can be done?
White Hat / Black Hat SEO | | andzon0 -
Disavow - Broken links
I have a client who dealt with an SEO that created not great links for their site. http://www.golfamigos.co.uk/ When I drilled down in opensiteexplorer there are quite a few links where the sites do not exist anymore - so I thought I could test out Disavow out on them .. maybe just about 6 - then we are building good quality links to try and tackle this problem with a more positive approach. I just wondered what the consensus was?
White Hat / Black Hat SEO | | lauratagdigital0 -
Off-page SEO and link building
Hi everyone! I work for a marketing company; for one of our clients' sites, we are working with an independent SEO consultant for on-page help (it's a large site) as well as off-page SEO. Following a meeting with the consultant, I had a few red flags with his off-page practices – however, I'm not sure if I'm just inexperienced and this is just "how it works" or if we should shy away from these methods. He plans to: guest blog do press release marketing comment on blogs He does not plan to consult with us in advance regarding the content that is produced, or where it is posted. In addition, he doesn't plan on producing a report of what was posted where. When I asked about these things, he told me they haven't encountered any problems before. I'm not saying it was spam-my, but I'm more not sure if these methods are leaning in the direction of "growing out of date," or the direction of "black-hat, run away, dude." Any thoughts on this would be crazy appreciated! Thanks, Casey
White Hat / Black Hat SEO | | CaseyDaline0 -
Closing down site and redirecting its traffic to another
OK - so we currently own two websites that are in the same industry. Site A is our main site which hosts real estate listings and rentals in Canada and the US. Site B hosts rentals in Canada only. We are shutting down site B to concentrate solely on Site A, and will be looking to redirect all traffic from Site B to Site A, ie. user lands on Toronto Rentals page on Site B, we're looking to forward them off to Toronto Rentals page on Site A, and so on. Site A has all the same locations and property types as Site B. On to the question: We are trying to figure out the best method of doing this that will appease both users and the Google machine. Here's what we've come up with (2 options): When user hits Site B via Google/bookmark/whatever, do we: 1. Automatically/instantly (301) redirect them to the applicable page on Site A? 2. Present them with a splash page of sorts ("This page has been moved to Site A. Please click the following link <insert anchor="" text="" rich="" url="" here="">to visit the new page.").</insert> We're worried that option #1 might confuse some users and are not sure how crawlers might react to thousands of instant redirects like that. Option #2 would be most beneficial to the end-user (we're thinking) as they're being notified, on page, of what's going on. Crawlers would still be able to follow the URL that is presented within the splash write-up. Thoughts? We've never done this before. It's basically like one site acquiring another site; however, in this case, we already owned both sites. We just don't have time to take care of Site B any longer due to the massive growth of Site A. Thanks for any/all help. Marc
White Hat / Black Hat SEO | | THB0