Before you diagnose a manual action, confirm you actually have one. Most sites — even those with significant ranking drops — do not have manual actions. Open Google Search Console → Security & Manual Actions → Manual Actions. If you see “No issues detected,” your rankings dropped for algorithmic or competitive reasons, not a manual penalty. Close this guide and read the ranking drop diagnostic instead.
If you do see a manual action, this guide walks you through the specific fix process.
What a Manual Action Actually Is
Manual actions are applied by human reviewers at Google, not algorithms. When a site is flagged — either by an automated detection system or a user report — a Google Search Quality reviewer examines the site and decides whether it violates Google’s spam policies. If it does, they apply a manual action.
They are rare relative to the volume of sites on the web, but they’re significant when applied: a site-wide manual action can remove a domain from search results almost entirely for affected query types.
Manual actions are separate from algorithmic signals. The March 2024 core update, the September 2023 helpful content update, the various link spam updates — those are all algorithmic. They don’t appear in GSC’s Manual Actions panel and don’t require a reconsideration request. Manual actions do.
The Types of Manual Actions (And What Causes Each)
GSC identifies the manual action type when you expand the notification. Here are the main categories, what they mean, and the core fix for each.
Unnatural links to your site Someone built low-quality, paid, or manipulative links pointing to your domain — often an old link-building campaign, a vendor who sold links, or a competitor’s negative SEO attack. The fix is a combination of removing links you can contact webmasters about and disavowing the rest via GSC’s Disavow Tool (Search Console → Links → Disavow links). Focus your disavow file on domains, not individual URLs, for thorough coverage.
Unnatural links from your site
Your site is linking out to third parties in a manipulative way — paid links sold to advertisers, nofollowed links that should be followed, or a pattern of outbound links designed to pass PageRank for compensation. Remove or nofollow the outbound links. If your site ran an advertorial program, audit every sponsored post and add rel="sponsored" to any paid link.
Thin content with little or no added value This includes auto-generated content, scraped content, or pages so thin they provide no unique value. Google’s 2022 helpful content update and subsequent algorithmic updates auto-identify thin content, but in more extreme cases (especially affiliate or doorway pages), a manual reviewer may flag the site. The fix is to rewrite or consolidate the weak pages — merge thin topic variations into one strong page, or delete and 301-redirect pages with no redemption path.
Cloaking and sneaky redirects Your site shows different content to Googlebot than to users, or redirects users to a different URL than what was linked. Common causes: redirect hacks (usually from a compromise), affiliate scripts that redirect users but not crawlers, or A/B testing implementations that accidentally showed Googlebot a different version. Fix the redirect logic and verify using the URL Inspection tool’s “Test Live URL” to see exactly what Googlebot sees.
Pure spam Auto-generated, completely irrelevant, or nonsensical content that provides zero legitimate value. Often the result of a site compromise or a content spamming tool. Full audit and removal of the spam content; security hardening to prevent re-infection.
User-generated spam
Comment spam, forum spam, or profile spam on your site — UGC areas that have been overrun with spam links or content. Enable comment moderation, add CAPTCHA to submission forms, remove existing spam, and use rel="ugc" or rel="nofollow" on UGC links going forward.
Hacked content — malware or content injection Your site was compromised and is serving malicious code or injected content (hidden links, pharma spam, Japanese keyword spam). Run a malware scan (Google Search Console itself shows Security Issues under the same menu), clean infected files, and close the vulnerability that allowed the hack. Submit the Security Issues review separately from the Manual Actions review if both are present.
Hidden text or keyword stuffing Text that is visible to Googlebot but not users (white text on white background, zero-font-size text, off-screen positioning), or pages stuffed with keyword repetitions that make no sense in context. Remove the hidden text or keyword stuffing entirely — there’s no partial fix.
Sneaky mobile redirects Desktop users see the real page, but mobile users are redirected to a different URL (often a spam or phishing destination). Usually the result of a site compromise rather than an intentional owner action. Audit redirect rules in .htaccess or server config for mobile-specific rules, scan for injected JavaScript, and clean any compromise.
Site reputation abuse (2024)
Third-party content — sponsored posts, advertorials, partner content — published on a high-authority host specifically to exploit that host’s ranking signals. Announced in Google’s March 2024 spam policy update, with manual-action enforcement beginning May 5, 2024 (a November 2024 update later clarified the policy applies regardless of whether the host site has first-party oversight). Manual enforcement accompanies the algorithmic site reputation signal. Fix: clearly label third-party content as sponsored (rel="sponsored"), or remove third-party content sections entirely if they exist solely for SEO placement.
Scaled content abuse (2024) Bulk-produced content — including AI-generated — that exists primarily to manipulate rankings rather than help users. Named in Google’s March 2024 spam policy update and took effect immediately. Triggered by large volumes of templated, auto-generated, or thin AI content with no meaningful editorial review. Fix: delete or substantially rewrite the scaled content; demonstrate in the reconsideration request that remaining content reflects genuine expertise.
Expired domain abuse (2024) Acquiring an expired domain with existing authority and repurposing it to serve content unrelated to the domain’s original topic, to pass legacy link equity to new content. Also named in the March 2024 spam policy update and effective immediately. Fix is essentially impossible without starting fresh on a new domain — you can’t undo the domain’s history.
TL;DR — Manual Action Types at a Glance
| Manual action | Core fix | GSC tool |
|---|---|---|
| Unnatural links to site | Disavow toxic links | Links → Disavow |
| Unnatural links from site | Remove / add rel=“sponsored” to paid outbound links | Links → External links |
| Thin or auto-generated content | Rewrite, consolidate, or delete and 301 | Indexing → Pages |
| Cloaking or sneaky redirects | Align what Googlebot and users see | URL Inspection → Test Live URL |
| Pure spam | Remove all spam content + harden site | Indexing → Pages |
| User-generated spam | Moderate UGC + rel=“ugc” on links | Links → External links |
| Hacked content | Clean malware + patch vulnerability | Security Issues |
| Hidden text / keyword stuffing | Remove concealed text or keyword bloat | URL Inspection → Test Live URL |
| Site reputation abuse | Remove or properly label third-party content | Indexing → Pages |
| Scaled content abuse | Delete or fully rewrite bulk-generated content | Indexing → Pages |
Writing a Reconsideration Request That Gets Approved
A reconsideration request is not a customer service ticket. The reviewer evaluating it will look for three things: specific evidence that you understood the violation, specific evidence that you fixed it, and specific evidence of preventative measures.
What works:
- “We identified 312 domains in our disavow file as part of a link audit using Ahrefs. We contacted 47 webmasters and got 12 links removed. The remaining 265 domains are in the disavow file submitted on June 10, 2026.”
- “We deleted 83 auto-generated affiliate pages targeting product variants. The remaining 12 pages were rewritten with original reviews and comparison data.”
What doesn’t work:
- “We have cleaned up our site and removed all bad content.”
- “We were not aware of the violation and have now fixed everything.”
Be specific and numerical where possible. Keep it factual — you’re documenting remediation, not apologizing. Google’s reviewers see hundreds of these requests and can tell the difference between a genuine fix and a surface cleanup.
What to Expect After Submitting
Google has no published SLA, but practical timelines vary by type: non-link violations (thin content, hacked content, cloaking) typically take 1–2 weeks; link-related cases often take several weeks and can exceed 30 days. You’ll get a GSC notification and an email to the address associated with your GSC account.
- Manual action lifted: Rankings begin recovering as Google re-crawls and re-indexes your key pages. Depending on the severity of the original penalty, full recovery can take weeks to months — Google doesn’t restore prior rankings instantly; they re-evaluate pages through normal crawl and quality signals.
- Request denied: Google will briefly note what wasn’t addressed. Do the additional cleanup, document it, and resubmit. There’s no penalty for resubmitting, but each request should represent genuine remediation.
Recovery pace also depends on how long the manual action was in place. A site with a fresh manual action (days or weeks old) typically recovers faster than one that carried the action for 6–12 months, because the algorithmic quality signals associated with a long-penalized site take longer to reset.
A Note on Scale and Realistic Expectations
Most sites that investigate a manual action find nothing — the GSC panel shows “No issues detected.” If that’s your result, the cause of your ranking drop is algorithmic or competitive. Manual actions are applied at meaningful scale only to sites with clear, documented policy violations: aggressive link building, content spamming, or compromised sites serving malware.
For legitimate businesses that lost rankings during a core update, the path back doesn’t involve a reconsideration request. It involves the content improvement work covered in the indexed-but-not-ranking guide and the ranking drop diagnostic.
If you want to check your site’s overall technical and schema health before submitting a reconsideration request, the SEOPulse free audit tool identifies structural issues that can compound a quality penalty.