how to Fix Malware Infected Website, Japanese Keyword/SEO Hack Free

Is your website displaying its content in search engine results in Japanese (as shown in the image below)? When you check your website content on Google search as shown in the picture above; the results shown appear in Japanese texts. This is as a result of your WordPress website having been hacked and injected with a Japanese keyword hack also known as Japanese SEO hack. Are you looking for a way to remove these Japanese keyword hacks for free from your WordPress website? Well, you are on the right blog. This is a step-by-step guide on how to fix a malware infected website Japanese Keyword/SEO Hack Free. Ensure to read to the end so that you won’t miss any steps.

Watch the full video here

Introduction

This malware hack known as  Japanese keyword hack is a spam-related hack. The hacker use it to create new pages with autogenerated Japanese text on your WordPress website. This pages are embedded as backlinks to other webpages with different contents they are trying to promote. When you search your website content on Google, the results displayed have these backlinks that are pointing to other websites rather than your own.

In today’s post, how to fix/remove Japanese keyword hack/Japanese SEO spam on a website for free, we will go through step-by-step how to remove Japanese keyword hack or Japanese SEO hack for free (using our WordPress website as an example). If you own a WordPress website or you built your website using a WordPress theme, and after some time, you noticed that your website shows gibberish written in the Japanese (or even Chinese) language. Then you are a victim of this type of hack attack. Don’t worry, we will resolve this soon. Ensure you read to the end of this post to get all the necessary information needed.

Japanese Spam hack result showing unusual pages

As shown in the image above with the braces and arrow. The search results produced a Japanese SEO page that isn’t a content we created and yet the domain name (shown  in blue brace) still remain our own. But the infected page has been changed. For our own website (used as illustration) here, this has been backlinked to a Casino webpage in Madrid (the brace shown in red).  These pages like the one shown in the image above points to the hacker’s page.

Checking if Your Website is Affected

The best way to be sure is to use a search engine. If we go to the Google search engine (which is the most popular) using our browser and type site:nameofwebsite.com. An example is shown in the picture below.

search content of website

The results displayed indicated that the site (our website) was under Japanese SEO spam siege. The pages were written in Japanese, and even those written in English were detailed in another language, as shown below.

Japanese SEO Spam results on Google search

These links are not directed to our website but to other foreign webpages that serve the interests of the hacker. And if our website visitors click on it, they get redirected to another website (as indicated by the red arrows above). As an example, clicking on the labelled page link redirects the visitor to this Japanese clothing store shown below.

SEO spam redirected webpages

This is because the hackers have already added themselves as a property owners in the Google Search Console. Some of the reasons they do this is to increase profits by manipulating our own site’s settings. If you are a victim of this. Don’t worry! Keep following the undermentioned steps and we will remove this menace in this how to Fix Malware Infected Website, Japanese Keyword/SEO Hack Free wiki.

Log Every User Out and Everywhere

Your WordPress admin page is the first place hackers use to inject malware codes that would bring the SEO Spam hack to your WordPress website. If your WordPress login password has been compromised, it needs to be changed. And that is a big “IF”. Especially when you are running a WordPress website that enables different admin users. The best thing to do is to use the admin user access and log everyone out.  To do this, go to users, navigate to profile, scroll down to Account Management.  At sessions,  click on log out everywhere else, as shown below.

Log out your login history from all users on all devices

Change All Existing User Login Passwords

Change Password for WordPress dashboard

This means creating new passwords for the Admin, The editor, the contributor of the WordPress website etc.  Go to Account Management and locate New Password and Set New Password.

Set new password for WordPress site

Change Password for Cpanel Password

First, we have to go to our admin for our website cPanel. Log in and check the right-hand side of our dashboard.

Click on our username, then account preferences as shown below. Scroll down to password and security.

Change password in cPanel
Change password on cPanel

We changed our password by navigating to the change password page and input our new password inside the input password box.

Use Google Search Console

The google search console helps you to get your website noticed and discovered on Google search results. IF your contents are already showing up on Google search. The chances are that you are already using the Google search console. To login into your Google Console account, use this link. You may have to log in and verify that you own the domain. If you don’t know how to do this, use Google search or any other search engine to find answers, and if it still confuses you, leave a query regarding this in the comment section. Once you are in your Google search console, the appearance will look something like this picture below.

Google search console

Checking for Infected Japanese SEO backlinks

On the left hand side pane (of the image above), hover to reveal the scrolling handle, use this to scroll down until you reach links  at the bottom. This is where you click to find all the website links coming in and going out of your website.

Links button on Google search console

The links would display all your backlinks. You can copy each of the website links and put them on a separate browser to test the links. For the example website used in this tutorial, most of the backlinks were porn sites, casinos, clothing websites etc.

Google console links result

If these websites are allowed for long they could use up your bandwidth rapidly.

When your website is infected with Japanese keyword hack virus, the search results on Google displays pages that have your domain name but the title of those pages can be very misleading.

Keyword Spam pages

The picture above shows the search results of our website infected with the Japanese SEO Spam virus. But looking closely, the pages displayed are numbered 1, 2, and 3.  The number 1 page is the homepage of the website. However, the page it is pointing to was written in a language that can not be understood by English-speaking users, this is also Number 2. The number 3 result was from the shop page, but rather than the electronics components and kits on display at the online shop, it is displaying a Hussein dress shirt. These pages are still linked to our website’s contents. Although it doesn’t display its page content on Google search results correctly, once clicked on, it will take online visitors to our pages.

Heavily infected SEO spam

On the other hand, majority of the pages are pointing to another SEO page content. As illustrated with the picture of our website above, the pages here drive traffic away from our  website. They are something like “aco136”, “dft353” “zqcum” etc. If a visitor clicks on any of these links, it would take them to the hackers backlinked website pages instead.

Japanese SEO spam page

Usually, the Japanese SEO hacker pages are non-mobile-friendly and very slow to load, and it could really drive visitors away from your website. Most people don’t have the time to wait until a slow loading page finishes loading. It could also make Google blacklist your website. To tackle this issue, go ahead and log into your WordPress admin page again.

Backup your WordPress Content

The backing up of your contents on your WordPress site is also important. However, most of the backups required you to pay for such server services. There are other ways you can get around this. For example, you can use the UpdraftPlus plugin to backup contents on your Google Drive account, provided you have enough storage space there.  Whether you choose this option or not, you can still proceed to the next step.

Download and Install Wordfence Security Plugin

Installing WordFence Security Plugin

Go to the left-hand side panel of your WordPress admin dashboard, hover over the Plugins tab, then navigate to Install Plugin. Next, click on “Add New.”

Using the search bar for WordFence plugin

Click on the search plugin input box as shown above. And type “Wordfence.” Alternatively, you can follow the link given here to download . We used the free version of the plugin here. We recommend you do too (that is kind of why the how-to was written). Or if you have the money, you can go for the premium version.

Selecting Wordfence Security plugin

Click on Wordfence Security- Firewall & Malware Scan. Install it and activate it.

Once this is done. Return to your plugins page or click on Wordfence on the left hand side of the dashboard.

Wordfence scan option

You can opt to go to the Wordfence dashboard before anything else. This would offer you the chance to see your website’s security stats before proceeding to scan your website for malware. This is a very crucial part in this How to Fix Malware Infected Website, Japanese Keyword/SEO Hack Free wiki.

Wordfence Security Dashboard

Click on Scan next from the left hand side of the dashboard, hover over Wordfence and select Scan option.

Scanning website for malware using Wordfence
Wordfence Scan option

Click on Start New Scan and wait until it has finished scanning. As shown with our example website here, There are two issues; one is File Changes and the other is Vulnerability Scan Issues. This means that our files may have been altered by a hacker.

Scanning website using Wordfence

The scan would keep loading until it has finished.

Malware scan results

From the scan results, we could either delete  or repair the files that are corrupt. I would recommend repairing the repairable files. Then delete the files that are not repairable.  Click on repair all repairable files” and wait for the system to repair the files it can repair. These are the small steps that would lead to a giant leap on our search for how to fix malware infected website, Japanese keyword/SEO hack free.

View details of each malicious file

Next, for the files that are not repairable, you can either delete them or click on the details of each file to view the severity of each infected file. You can check out the difference in each file to see the changes in each file.

Wordfence File Difference viewer

From the file difference, we can see a lot of things on this .php file. This was the exact file that was corrupted that made it possible for the Japanese keyword hack/Japanese SEO spam. From the left hand side of this comparison, we can see the original .php file versus the file that was modified by the hacker on the right hand side. The solution to this can’t be resolved automatically by Wordfence because the .php file is a file on the cPanel side. The Wordfence plugin doesn’t have access to the file.

Get the location of the corrupt file by looking at its directory path above on the Wordfence file viewer as shown below.

cPanel file directory path

Using this, we locate the file in the cPanel public_html directory.

locating the corrupt file on cPanel
Open with UTF-8 encoding format

Open this for editing and choose utf-8 as your decoding format.

utf-8 encoding character selection

With the file opened as shown below; we can delete the hackers’ Japanese SEO spam/Japanese Keyword hack codes. If this step is not judiciously done, there won’t be success in the how to Fix Malware Infected Website, Japanese Keyword/SEO Hack Free guide.

malware code isolation

We begin by deleting the codes that were not already in the original file displayed by Wordfence file viewer. After removing the codes, save the file and go back to Wordfence and rescan your website files. Using our demo website example, the file changes result showed that the issue has been resolved.

Resolving file changes security issues

The vulnerability scan can be further pursued but this would mean carefully tracking out the files that poses security threats to your website.

After this is done;  we proceed to check if the back-linked Japanese SEO sites are still functional. We go back to Google search engine and type the same search query: site:nameofwebsite.com. In our own demo example, we used our website name as shown in the picture below.

site: nameofwebsite.com

The results shown would still remain the same on Google search results but we are really after the functionality. This means we want to know if the backlinks still redirects visitors to the hackers page.

Japanese Keyword Hack results on Google

A click on the page results that has the Japanese links should display error 404, page not found for us to know that the changes we made were working.

Error 404 on webpage

Great. Once you are here. You efforts have finally paid off. The next steps are very easy to finish.

Re-index Your Web Pages across Google Console and other Search Engines

Re-indexing on Google.

Go back to the Google search console and click on URL inspection.

Indexing page on Google search console

Click on request indexing next.

Page Indexing on search console

Ensure that you re-index all your pages on your website using the Google search console, this would ensure you have completed your how to fix/remove Japanese keyword Hack/Japanese SEO hack free. The YouTube video shows more details on how to generate and use Google sitemaps  to re-index your page.

Re-indexing on Bing Search Console.

This is achieved by going to the link. The Bing search console is owned by Microsoft and it is popular for search engine results done using the Internet Explorer browser.

Bing console dashboard

Follow the same steps done with Google search console and Click on Submit sitemap. Add the domain URL and click submit.

submitting sitemaps on Bing console

Using Popular Sitemaps

Another fast way to ensure many popular search engines get your website’s content is to use XML sitemaps. You can use this by going to the link. This would direct you to the page shown below.

XML sitemaps

We input our website link and let it do the rest. They required us to sign up before using the free version, but after that, it was able to index the pages across many popular search engines.

Check the Results on Search Engines

After the above steps have been successfully completed, we have to wait for the search engines to crawl the website again. This may take some time. It may take days or even weeks before Google and the other search engines can recrawl our website pages and display the intended results successfully. But after a period of one week, we came back to check again. The results on Google search when we type the same search query, this time the results have changed. 

Google search results

Also, using the Internet Explorer browser, the results on Bing search too has been updated accordingly.

Bing search results

However, they may still be some few exceptions. The pages on the websites may not be properly crawled by the search engines so all of its results won’t be updated accurately at the same time.

Japanese keyword hack pages

This shouldn’t make you panic if you see this in your own results. The validity of solution can be verified by clicking  on the page result displayed and once it shows an error 404 ; page was not found. We know that we are still good in business.

These steps explicitly explained above are the summary of how to fix/remove Japanese Keyword Hack/Japanese SEO hack free from your website.

Things to note and do always to keep your website safe.

  1. Always update your WordPress outdated/expired plugins
  2. Always update outdated/expired themes
  3. Always update outdated/expired WordPress version.

Failure to update and secure the above mentioned 3 things would give hackers what they need to to gain access to most WordPress websites. An outdated theme gives the hacker easier access to your login details or ways to attack your WordPress site. So does an outdated plugin or theme.

4. Use a good Antivirus and security plugin like Wordfence. This would continuously run scan and update you on outdate plugins and themes. And it would equally stop web attacks on your website.

5. Consider going away from using Content Management System (CMS) like WordPress to something better like Bootstrap.

Conclusion

And that is it for this post. If you have any questions, just leave a comment in the comment section below. You can also see our other posts or check out our online store if you are a tech enthusiast. Let us know how we can assist you. Any time!

Thank you.

smartechlabs

Recent Posts

AI-Powered Soil Analysis for Precision Nutrient Management: Revolutionizing Agriculture

In the ever-evolving landscape of modern agriculture, artificial intelligence (AI) is emerging as a game-changing…

2 days ago

IoT Applications in Enhancing Manufacturing Flexibility

The Internet of Things (IoT) is reshaping the way we live, work, and produce goods.…

2 days ago

AI-Driven Process Optimization in Continuous Manufacturing

Introduction Have you ever wondered how some manufacturing industries consistently deliver high-quality products while minimizing…

2 days ago

Implementing IoT for Real-Time Monitoring of Livestock Feed Intake

In the ever-evolving landscape of modern agriculture, the integration of Internet of Things (IoT) technology…

2 days ago

Implementing IoT Solutions for Remote Equipment Diagnostics

Introduction Have you ever imagined diagnosing equipment issues without even being on-site? Welcome to the…

2 days ago

Leveraging AI for Inventory Management in Smart Manufacturing

In the ever-evolving world of manufacturing, staying competitive means adopting innovative solutions to optimize every…

2 days ago

This website uses cookies.