Archive for the ‘Comment Spam’ Category

Free Cloaking Script

You’re broke as a joke but want to cloak: So what can you do? How about a free cloaking script?

Let’s say you’ve used widgetbaiting or the markov chain to create 30,000 pages of unique content about bacon polenta recipes. Of course, no human surfer wants to read those pages but they are great spider food.

Well if you don’t want to use IP delivery like you’re supposed to, you can use this code to send your surfers to a sell page with text written for human consumption.

Now, this is not some unsneaky java redirect that will get you banned in the Search Engines. * If you use this code, you may get banned in some search engines.* Rather, it’s a error loophole designed for you to exploit:

<img src=nofilehere.gif‘’,’_top’)>

Just make a page with any kind of spider food / keyword spam that you want on it and then add that line to the page.

When surfers visit the page, they will be sent to “” because the requested image file does not exist (therefore there will be an error). The spiders and search engines, on the other hand, will all see the original page.

This free cloaking script is inferior to premium cloaking software for many reasons. If you are scraping content, this method does nothing to help you get past duplicate content filters. This free cloaking code does not protect your code from surfers or your competition. Surfers will briefly see these spider food pages load. They may, in turn, report you to the search engines who could decide that using this code in the manner described is abusive. So, I would not recommended it for sites that you cannot afford to have banned.

Many high profile sites and fortune 500 companies use Cloaking to send different content to different IP addresses. But they don’t use code like this or cheesy redirect scripts – they use sophisticated cloaking software – IP delivery is the safer and preferred way to cloak. Honestly, I’ve never even heard of someone actually getting banned just for IP cloaking. I know that people do get banned for using crappy JavaScript redirects but in my opinion, getting banned for IP Cloaking is one of the great Black Hat SEO myths; it just doesn’t happen.

Social Engineering in Comment Spam

I went over to pascal vanhecke’s weblog to read Social Engineering in Comment Spam:

“I Googled for something completely different, but found your page… and have to say thanks. nice read.”

Wouldn’t you immediately hit the “approve” button?

Looks like pretty good Spamouflage to me.

He even included some social engineering in the footnote of his post:

Seo BlackHat is an interesting (and entertaining!) resource on all kinds of web spam – he hasn’t written on this yet, so maybe it was his? 🙂

It wasn’t mine – but I like the way they were thinking. That’s probably one of the better mass comments I’ve seen. I may have seen better: but if it were really that good, we wouldn’t even recognize it being comment spam. Right?

Comment spam has a couple of penalty pitfalls associated with it: the unvaried anchor text can trigger a spam flag in the engines. But when part of a healthy diet of other spamming and link dumping can help a bit in the SERPs – especially when used in moderation.

Here’s the challenge: Pick a Niche – (technorati tags work well) then create the comment spam most likely to get approved by a blog in that niche. For off topic comment spam, you have to tell me the Niche / technorati tag of blogs to be spammed.

If it doesn’t suck, I’ll approve it.



Spamouflage: The method or result of concealing or disguising search engine spam to make it appear to be legitimate. Derived from spam + camouflage.

An example of Spamouflage:

Marco of pivot blacklist sent me an e-mail today about a blog spamming issue.

As a departure from conventional comment spamming, some SEO Black Hats have begun including links to non spam sites in their comment spam bots.

Someone (or more than one) is currently spamming with links to my site. At first I thought this might be some malicious SEO blackhat who hates me for writing rather effective anti blogspam software but later on I found out this isn’t the case. The fact that my site is affected seems to be a matter of bad luck and unrelated to my activities in the field of blogspam prevention. Several other bloggers who have nothing to do with spam on both the sending and the receiving end have been affected by it.

An article about it has been posted on

My question to you is:

Do you have any idea why this new kind of spam is happening?

Is this an attempt to disturb the already highly ineffective centralized blacklists? (they don’t work at all since spam domains tend to be created faster than anyone can maintain such a list).

While I do think that degrading the effectiveness of a blacklist may be the goal of some search engine spammers, our more important focus is the search engines.

Often, we comment spam on blogs that have been abandoned. When a blog is abandoned, the comment sections frequently has 10-20 links to pharmacies, adult sites, poker . . . etc.

Dropping in a few links to legitimate site is like planting pretty flowers in a “bad neighborhood.” I don’t want my backlinks nestled between 8 links to other spam sites. On a linear model, I would prefer my back-links to be between two trusted authorities – sites with impeccable reputations. It would be even better if these sites added contextual relevance, but that’s not as necessary.

We don’t know exactly how Google or Yahoo’s algorithms read. We can only make informed guesses about what they are and where we think they are going.

If I were Google, and I saw a site’s URL listed with 8 other known spam sites, the temptation would be to count that as a mark against the site.

This tactic, a form of Spamouflage, preempts the effectiveness of such a countermeasure; it’s like thinking several moves ahead in chess and makes it more difficult to categorize a URL as spam.

While there are clearly benefits to adding spamouflage to comment spamming, it’s always possible that someone just thought it would be funny to comment spam links to an anti-spam-site . Any serious search engine spammer could do much more to get your site penalized or sandboxed than link dumping in blog comment fields.

Exploiting Trackback Spam Vulnerability

More link dumping tech:

From threadwatch (nice find Nick), we have Brian at platinax revealing that trackback spammers have circumvented the Typpad no-follow tag.

However, as Seth’s blog indicates, if trackback spamming can not simply overcome basic automatic safeguards from SixApart, and also ensure they remain published on active blogs, then we may yet see the already serious problem of trackback spamming enter new levels of aggression.

Sounds like a call to action. Not to fix the weakness – but to exploit it! Even if they fix the problem, the dead blogs and people who don’t update will still be be handing out free links.

There may be more to it, but apparently only the first URL in a particular trackback has the nofollow tag.

Let’s assume we build an automated trackback spammer, and spam tons of sites. It should work to create backlinks that help SERPs for at least the next 6 months – probably longer. But even if Google decides to penalize sites for having links in spam-littered trackback sections, it just means we’ll have another Googlebowling weapon.

If your looking at tackling this project (or just curious), this Interview with a link spammer article is a nice read.

Search Engine Spammer’s Site Review

I came across this indexing splog:

because the users has a bot that comment spammed one of my Robot / Zombie Blogs. (funny in a way – Spambots Comment Spamming other Robot Blogs).

The Comment said:

Skype Offers IM Tool for Integration
Skype Offers IM Tool for Integration Date: 8/25/2005 — Internet telephone provider Skype announced on Wednesday it is allowing its IM client, Skype Instant Messaging to be incorporated into Web sites and other …

Great blog, I’ll definatly recommend it to some of my friends that are into horse racing

I also have a site on tropical fish ( )

Please feel free to take a look

Naturally, I wanted to see what some other SEO Black Hats are doing.

First of all, the load times on this site are 10 secs + with Explorer. It works great in Firefox, but (at least for me) it is horrible in IE.

Now, it appears he spammed about 200 or so links from this B&P indexing blog, which is about right. However, posting every 10 minutes or so will often get your splog banned AND raise red flags about your site to the search engines. He made each indexing blog about a topic (like rabbits) and drop all the links for that topic in.

You are better off with many more splogs and a lower posting frequency per splog.

None of his backlinks are showing in Google. But that’s no surprise as Google is proud to feature the industry’s most useless backlink checker. He may not be completely banned, but I don’t think he has more than 6 pages indexed.

He has 3240 backlinks in Yahoo, but most are from the site.

And he has a few on MSN which reaveals what looks like 6 more spam sites (that are probably his).

The things i give him credit for are:

1. Quick site creation – I can’t Imagine that site took him much time to make.
2. SEFURLs (Search Engine Friendly URLs) – (Although I would Mod-rewrite away that .html extension)
3. Keyword Selection – The Phrases seem not too competitive and do appear in the Titile.
4. page mass for the sites seem ok

But overall, his sites are unimpressive.

1. He raised about every red flag you can
2. Spammy Looking Site – aesthetically unpleasing
3. B&P ramped up too quickly
4. Indexing Splog only pointing to 1 site – huge red flag (need Outbound to authority sites)
5. Linking from his other spam projects (Look Google this is my bad neighborhood!)
6. 404 from 2nd link on Home page – the Contact Us link.
7. His on page Search Engine Optimization is very weak: Could write a whole post just on this point.
8. Mediocre Adsense placement.

They are the sites that people HATE to land on because they are so freaking ugly. Everyone knows it’s Spam, they don’t think “oh, this might be a good pet resource” – Not even the really stupid people.

While he is probably making some decent money with these sites, with a few tweaks he could probably double his earnings. As I said before, to make serious money in Black Hat SEO, you need to make your Spam sites look legit. These example sites demonstrates the need for the SEO Blackhat’s step by step guide to Search Engine Spamming.

My work is far from over; there is just so much more we need to cover . . .

Spammers Guide to Link Dumping: Where to dump

So you wanna be a Seach Engine Spammer. Well, the art of link dumping can dramatically improve your Black Hat Search Engine Optimization projects. SEO Black Hats love to find great places to get free links – actually, doesn’t everyone?

Would you believe that some people still have guestbooks on their websites?

There are also people running blogging software that does not add rel=”_nofollow” to URLs in the comment section and people running link exchanges that don’t care if they get reciprocal links. These must be the same people that “opt in” to e-mail spam lists.

I guess if you really want me to spam you, I will.

While I’m not about to give you the real gems in my link dump list, I will teach you how to find them.

The first step in link dumping is to find Google search strings that returns a list of people that “want” to be spammed.

This String

or Replace cooking in these strings with your keyword or niche:

example 2

example 3

Other link dumping phrase that pay include

“sign my guestbook” + keyword
“Page 1 of 1” + “Powered by phpBB” + memberlist
“powered by php guestbook” + Keyword
“Add your Website”

Third party hosted guestbooks are not useful and neither are the ones that add the nofollow tag.

As you go through these results, bookmark or otherwise note (spreadsheet) which ones are best.

As you see commonalities of the more spammable comment sections, guestbooks and link exchanges, you can modify your search string to return more qualified results.

Compiling a lists of where to dump your links is not fun, but it will help you get your Black Hat SEO projects better SERPs and make you more money.

The old school method is to just drop in links to your Black Hat SEO sites in these guestbooks, but that’s not very clever and went out of style over a year ago.

In my future posts, I’ll go into automating and semi automating the link dumping process as well as clever ways of making these links undetectable to the site owners.

If anyone wishes to share some of there link dump gems, feel free to leave them in the comment section.