Japanese SEO spam, also known as the Japanese keyword hack, is a common type of website compromise where attackers inject Japanese text, often related to fake merchandise or scams, into your website. These pages are indexed by Google, potentially damaging your SEO rankings and credibility.
How to Fix Japanese SEO Spam
1. Identify the Hack
- Google Search Console: Check for security issues under Security & Manual Actions > Security Issues.
- Site Search: Use search operators to find injected pages:
Look for Japanese text or suspicious URLs. - Check Recently Modified Files:
Use FTP or cPanel to identify recent file changes:
2. Backup Your Website
Before making changes, create a full backup of your website (files + database) in case something goes wrong.
3. Remove Malicious Code
- Core Files: Compare current files with a clean version of your CMS (e.g., WordPress core files).
- Suspicious Files: Look for:
- Randomly named PHP files (e.g.,
ab12cd.php). - Base64-encoded code or eval() functions in PHP files.
- Randomly named PHP files (e.g.,
- Database Check: Search your database for suspicious code:
4. Fix Vulnerabilities
- Update CMS, Plugins, and Themes: Always run the latest versions.
- Change All Passwords: Admin, FTP, database, and hosting panel.
- Check User Accounts: Remove unauthorized admin accounts.
5. Secure Your Website
- Implement Security Plugins:
- WordPress: Wordfence, Sucuri Security.
- Other CMS: Use similar security tools or firewalls.
- File Permissions: Ensure proper permissions:
6. Request a Review from Google
After cleaning the site:
- Go to Google Search Console > Security Issues.
- Click "Request Review" with a detailed description of the cleanup process.
7. Ongoing Monitoring
- Enable 2FA: For all admin accounts.
- Regular Scans: Schedule malware scans.
- Monitor Logs: Check server logs for suspicious activity.
If the hack is severe or you can't fully clean it, consider hiring a professional security expert. Would you like more detailed guidance on any specific step?
0 Comments