WordPress Japanese Keyword Hack: Removal and Recovery

The Japanese keyword hack adds thousands of spam pages in Japanese to your WordPress site, then redirects them to fake retail sites for affiliate fraud. Here’s how to identify and remove it.

How to know if your site has the Japanese keyword hack

  • Google Search Console shows hundreds or thousands of new pages in Japanese — URLs you didn’t create
  • Search Console may show a Manual Action for “Hacked: Content injection” or “User-generated spam”
  • You see Japanese-language results when searching site:yourdomain.com in Google
  • Some URLs on your site redirect to fake Amazon, Walmart, or other retail clones when accessed
  • Your site’s verified ownership in Search Console gets unexpectedly transferred — this is a common late stage of the attack

What’s actually happening

The attacker uploads a backdoor PHP file that creates thousands of dynamically-generated pages, indexes them in Google, and redirects the resulting traffic to fake online stores for affiliate commissions. The infection typically includes:

  • Backdoor PHP file(s) creating the spam pages dynamically
  • Modified .htaccess for redirect routing
  • Sitemap.xml manipulation to feed the spam pages to Google
  • Spam content injected directly into your WordPress database
  • Often: addition of a fake Search Console verified owner so attackers retain control even after cleanup

How we remove it

  1. External scan + cloaking check — we crawl as Googlebot to see what Google sees
  2. Full file and database scan — locate every spam injection and backdoor
  3. Backup
  4. Remove all backdoors, generated pages, and database entries
  5. Reset sitemap.xml and check .htaccess for malicious rules
  6. Check Search Console verified owners — remove any unauthorized owner accounts
  7. Access lockdown — unknown admin accounts, credentials, scheduled tasks
  8. Submit reindex request to Google so the spam URLs fall out of the index
  9. Submit Manual Action review if Search Console flagged one

The Search Console verified-owner check is the part most cleanups miss — and the reason Japanese hack victims often see the infection return weeks after a “successful” cleanup.

See what a thorough cleanup looks like →

Free Japanese hack scan

Send us your domain. We’ll check for Japanese keyword injection, cloaked redirects, and unauthorized Search Console owners.

Request Free Scan →

30-Day Money-Back Guarantee **

We Know Trying A New Service Can Be Scary and Overwhelming. That’s Why We Offer A 30-Day Money-Back Guarantee. If You’re Not Happy With Our Service We’ll Gladly Refund You Every Penny!

Get Started

Best WordPress Partner We’ve Worked With

We couldn’t keep up with the daily upkeep of our website and SecurItPress was recommended by a fellow small business owner. They took over the maintenance and hosting of our site! Couldn’t be happier and a bonus was the site loaded faster than it ever had.
Sophia Bailey
Mad Mini’s

** Money-Back Guarantee is only available for our Annual Site Care Plans, not Monthly plans or Site Cleanup service.