Stop 302 Redirects Hijacking Web Page PR (Page Rank)
and Stop Scrapers from Using Your Content

Have You Experienced A 302 Redirect Web Page Hijacking or Scraping?


This article was written to show innocent parties, who have experienced having their website or keyword rank hijacked with 302 Redirects, meta refresh redirects, no follow meta tags, other deceptive redirects and Scraper Directories using their content, and how to recognize when someone is hijacking your web page and how to stop it.

302 redirects tell the search engine that the page's information has moved temporarily to the hijackers web site and that information now belongs to the hijacker. Scraper Directories "scrape" content off your site and put it on their site to steal your keyword rank.

Once a web page is hijacked with a malicious 302 redirect, or the content is scraped, the PR (page rank) of the victim site quickly drops in Google as Google wrongly attributes the victim's content to the hijacker/scraper website so the problem needs to be removed before it destroys the web site completely.

Some of these 302 redirects are merely tracking URLS and are not a deliberate attempt to hijack your web page so please read all of the following before taking action.

Update: As of mid April 2005 Google said it implemented changes in it's algorithum so it wouldn't attribute malicious 302 redirects to the wrong site's index anymore. It also removed the means to find them via a site command. This doesn't necessarily mean the 302 redirect problem is solved, only that we have to look elsewhere to find them.

Often what people think are problems from a 302 are usually just problems with their code either causing indexing problems or something they are doing has been recently outlawed by Google. For a thorough examination of your website see the Website Evaluation page.

Also see: Stop Those who are Stealing your Content

What Benefit is there in Hijacking or Scraping A Web Site?

The reason a hijacker installs 302 redirects, or another type of deceptive redirect, is for the purpose of stealing your traffic, your Keyword Rank and/or PR (page rank).

The 302 redirect hijacker gets the benefit of the PR and Keyword Rank that you have worked so hard for and thus you may not only loose what rank your website has gained in the search engine you may also be penalized for various reasons depending on the method being used by the hijacker.

A Scraper is a website that scrapes your website (copys your title, description, some or all of the text on your page) and puts them on their site and they often do this several times on one page (repeating the title, description, keywords or content several times) so that their website now outranks your site for your own content.

See more information on How to Find a Hijacker

How to Tell if your Website has been Hijacked or Scraped:

Hijacking Examples

1. ID Redirects
2. Meta Refreshes
3. 302 Redirects
4. Frames
5. Your Title in Their Title
6. Bad Links = Split Domain

 Hijacking Example 1 with an ID Redirect

If the link includes another sites URL and then your domain on the end, with some code in between, then your site is being redirected. Sometimes they use an ID number such as ID=4125 instead of the url to your website and then their program will attribute that number to your URL so if you see ID in the url click on it and see what happens. It may move so fast you can't see it, in which case you need to check a server header checker (explained below).

Here is an example of one of these redirected URL's. The code before and after your URL will contain various forms of redirecting it (bogus urls are being used below with http removed so this page validates):

HijackersWebSiteURLgoeshere/id-codecausingRedirect goes here.?site=
www.YourWebSiteURLGoesHere.com

 Hijacking Example 2 with Meta Refresh

Sometimes the URL will look innocent but will go to the dishonest site and there will be code on that site that will redirect to your site with a Meta Refresh Tag (automatically redirecting the browser to your site). The Meta Refresh is a favorite of spammers so search engines are banning sites using them. To see if a site is using a Meta Refresh, view the code by clicking on view/source in your browser menu and see if there are any meta refresh tags in the code at the top of that page. Look for a meta redirect tag set for "0" seconds, that is redirecting to your site, similar to the following:

meta http-equiv="refresh" content="0"; url=http://www.YourOwnDomainNameHere

However there are ways of hiding a redirect so that the general viewer can't see it, as follows:

 Hijacking Example 3 with a Server Side 302 Redirect in .htaccess

A hijacker may also use a Server Side 302 or set up 302 Redirects in an .htaccess file telling the server to redirect to your site. 302 redirects tell the search engines their site, or page, has moved temporarily to your site and to credit the content of your site to their site and thus stealing your PR. Many directories use 302 redirects on the links in their directory to track clicks, however it results in the same problem, because Google is attributing those links to your site and stealing your PR. You can't tell they are using 302 redirects by just viewing the URL, you need to copy the link into a server header checker. If the results show they are using 302 redirects then the directory may be stealing your page rank. If it shows a 200, then the page is probably OK (if this search produces an error make sure there are no breaks in the link).

One way to prevent unknowingly submitting to a site like this is to ALWAYS check out a directory's links with a server header checker before submitting your link to their site or it may cause your site irreparable harm instead of helping your page rank. See Directories to Avoid for more information.

See message #54 in the following Webmaster World's Discussion forum for a very clear discussion on how the search engines treat 302 redirects and why they harm your site in BEWARE: Your site is at risk from hijackers. For more info read Google's 302 Redirect Problem

 Hijacking Example 4 - Your Site Captured in a Frame

Another method that dishonest webmasters use to benefit their own site and provide no benefit to your own site is to allow you to submit your site but then they install a code that draws your whole web page (including images and working links) into a frame so your whole web page is displayed on their site. This is dishonest because you think they are going to link to your site but what they are actually doing is using your design and content and displaying it as their own without your permission. This also steals traffic from your site because people often see what they wanted on the hijacker's web site without even visiting your web site.You also get no benefit of the PR from that link because the link is inside a frame on their web site which most search engines can't read.

Following is a sample of this kind of url (http was removed and bogus URLs also removed so this page will validate):

HijackersWebSiteURLgoeshere/opensite.cfm?site=
www.YourWebSiteURLGoesHere.comandYourIDnumbergoes hereID=____, etc.

This recently happened to one of my web pages that I had updated which resulted in being #1 in Google for the main keywords and within 2 days this page appeared on someone else's web site inside of a frame. I found proof of this in my site meter's referral URLs and quickly set up a "pop out of frame" script for that page and many others on my site and wrote the owner of the site to remove the link.

Here is a site that lists several different break out of frames scripts. Be sure and check to see if the one you choose works on all browsers. Following is the script I install on pages captured in frames (not mentioned in the above site) because it's the only one I've found that works on a Mac as well as a PC:

<script type="text/javascript">
if(top!= self) top.location.href = self.location.href
</script>

 Hijacking Example 5 - Scraper Directories putting your Business Name or Title and or URL in their Title

Often Scraper Directories (that you may have submitted to yourself) will take your web page (if it's ranking well in the search engines) and set up a separate web page, often called "more info" or "details" with your business name in their title and/or your URL in their title and also your most important text on your page that brings keyword rank to your site. If your site is new or has very little PR this will enable them to out rank your website for your own business name. They also often put a link to your site with a 302 redirect from a scraper directory which also steals your PR.

See How to find Scraper Directories for more info

See also How to Report a 302 Redirect or Scraper Directory

 Hijacking Example 6 - Bad Links causing a Split Domain

If you have submitted your site to search engines as www.YourDomain.com and somone links to your site with just YourDomain.com, i.e., without the WWW in front, Google will think you have two sites under the same domain and credit you with a duplicate content penalty (Supplemental Results). This is known as a Split Domain. It can take months to recover from this after the fact so best to prevent it by doing the following:
  • Put a base href tag with the full address of that page, on every page on your site
  • Set up a 301 redirect in your .htaccess file. so all traffic to YourOwnDomain.com will go to www.YourOwndomain.com or whichever one has the most PR.
  • Change all relative URLS on your site to full URLS (include the full address on all internal links).
Hijackers are even starting to link to sites with a http/, i.e., they left out the colon and two slashes or with a www.domain.com . with a space on the end. The space will show up in your site: command search as www.domain.com%20. So check every link coming into your site carefully for other new techniques designed to put you out of business.
If you link to your site with example.com and then on your inside pages you link to your home page with an index.html then this will cause Google to think you have two home pages and cause duplicate content problems. Competitors often do this to cause problems for your site. This also needs to be controlled in htacces. See merging example.com and example.com/index.html

A 302 Redirect Could be a Google Bug

Some of the above examples have been the result of a Google bug and not necessarily deliberate attempts to hijack your site or your PR, because Google is following these redirects and attributing the resulting PR to the offending site and then penalizing your site for duplicate content.

A very good step-by-step explanation of what happens with one of these redirected URLs can be found in Webmaster World's discussion on this matter in the Your Site is at risk from Hijackers thread. See post # 157 on page 11 of this thread for a very good explanation of other steps to take not listed here..

Google Bug via shared IP Address or Shared Hosting

Some of these Google bugs are a result of 2 sites who are both on the same shared IP address, i.e., one site sets up a 302 redirecting a page on their site to another page on their site and your site is affected because it has the same IP address and Google thinks your site's content has moved to the other site. Some times Google will list the other sites Title in your title if it's on the same IP address.

This can easily be changed by getting a dedicated IP address (usually only $1.00 more a month on a good host). Don't confuse this with a dedicated server which is hundreds of dollars more per month.

All of the above 302 hijacking examples have one result- stealing your traffic or PR and getting your web site penalized and dropping out of sight in Google which translates into lost traffic and income for your business. Until Google fixes this bug completely there are measures you can take to eliminate the problem:

If you would like your web site analyzed for Low Keyword Ranking because it's been Hijacked or any other reason
please check out the Website Evaluation page.

See also How to Report a 302 Redirect


Testimonies from those Having their PR Hijacked

I occasionally advise clients who have had their websites hijacked or content stolen and inform them what they can do about it. Following are some testimonies:

Lori,
Thanks to your information about web site "hijacking" we were able to determine that "hijacking" was the cause of a 7-month long problem we've had with our google rankings! Now we can take the appropriate measures to solve the problem!
Adam Berman Latin Love Search

Also see testimonies from those having their copyrighted content stolen.

Lori Eldridge
© November 17, 2004, last update 9-11-07
All rights Reserved

More Info. on Website PR Hijacking

Spammers Hijack Web Site Listings in Google

Affiliate Commision Hijacking Alert

Dupe content checker - 302's - Page Jacking - Meta Refreshes
Webmaster World's Forum, Google News, discussing these hijackings.

Anti-Comment-Spam Tag Exploits. Set up Recip-checkers to look for rel=nofollow?

Lost in Google - No Title, No Description for your site as a result of 302 redirects, etc and what you can do about it.

Xencraft has a very good article on Preventing Web Site Hijacking.

Millions of Pages Google Hijacked via Open Directory feed


Lori's Web Design, 1815 E. Nebraska, Spokane Wa, 99208, 1-509-443-8693


 
Lori's Web Design, Spokane WA (Washington)
Copyright © 2000 - 2007
All Rights Reserved