Japanese Keyword Hack

Many website owners have contacted us worried about Japanese SEO Spam or Japanese Keyword Hack in Google search results for their websites. This happens when different web pages are shown to search engines and normal visitors. This particular Blackhat SEO technique hijacks Google search results by displaying Japanese words in the title and description of the infected pages.

This attack is also known as the “Japanese Keyword Hack”, “Japanese Search Spam” or the “Japanese Symbol Spam”.

Hacked Website Japanese/Chinese seo spam

When using a Content Management System (CMS) like OpenCart, Magento, Drupal or WordPress you’ll find auto-generated Japanese SEO Spam pages. These pages contain affiliate links to stores selling fake brand merchandise. These Japanese products are ‘Spamvetised’ to increase revenue and benefit from the outbound links from your store.

Infected with Japanese SEO spam? Drop us a message on the chat widget and we’d be happy to assist you.

Discovering the Japanese Keyword Hack

1. Japanese SEO Spam: Identify infected pages using Google Search

You can uncover such pages by opening Google Search and searching for:

site:[your site root URL] japan

Navigate through some pages of the search results to see if you discover any suspicious looking URLs. These are the pages indexed by Google containing the word ‘japan’. If you notice pages with the Japanese characters in the title or description, it is likely that your website is infected.

Japanese SEO Spam in Google Search Results

2. Japanese Keyword Hack: Verify with Security Issues Tool in Google Search Console

In your Google Search Console (earlier called Google Webmaster Tools), navigate to the Security Issues Tool in the left sidebar.

Google Search Console Security Issues Tool

3. Japanese SEO Spam: Fetch as Google to check for ‘Cloaking’

When you visit any of these hacked pages, you might see a 404 not found page suggesting that the web page doesn’t exist. Be careful, the hacker may be using a technique called cloaking. Check for clocking by using the “Fetch as Google” tool in your Google Search Console.

Fixing the Japanese Keyword Hack

Remove any newly created user accounts in the Search Console

If you don’t recognize any users in the “Users and Property Owners” tab, immediately their revoke access. Websites hacked with the Japanese SEO Spam add spammy Gmail accounts as admins so that they can change your site’s settings like sitemaps and geotargeting.

 Run a Malware Scan

Scan your web server for malware and malicious files using the ‘Virus Scanner’ tool in the cPanel provided by your web host. You can also get expert malware cleanup with the Astra Pro Plan.

Check your .htaccess file

Hackers often use the .htaccess file to redirect users and search engines to different malicious pages. Verify the contents of the .htaccess file from a last known clean version of the file from your backups. If you find any suspicious code, comment it out by putting the ‘#’ character in front of the rule.

Check Recently Modified Files

Login to your web server via SSH and execute the following command to find the most recently modified files:

find /path-of-www -type f -printf '%TY-%Tm-%Td %TT %p\n' | sort -r

If you are an Astra customer, you would have received an email telling you about malicious file changes.

Check your Sitemap

A hacker may have modified or added a new sitemap to get the Japanese SEO Spam pages indexed quickly. If you notice any suspicious links in the sitemap, ensure that you quickly update your CMS core files from a last known clean backup.

 Prevent future attacks with a Website Firewall

Another option to prevent the Japanese SEO Spam infections is to use a Website Firewall, like Astra. Our Security Suite helps to automatically secure your site and virtually patch software by preventing malicious requests from ever reaching your website.

Another similar SEO spam attack in WordPress is pharma attack that shows spam pharmaceutical products like viagra, cialis etc.


At Astra, we have a team of dedicated security experts who daily resolve dozen similar security issues. We deploy Astra Firewall for 24×7 security of your website from XSS, SQL Injection, bad bots and 80+ other threats.

Take an Astra DEMO now.

Astra Reviews for Japanese SEO spam

Waiting to Get Hacked?

Get security tips & latest vulnerability fixes right in your inbox:

About The Author

Ananda Krishna

Ananda is a security researcher at Astra.


  1. [BLOCKED BY STBV] Business Logic Errors: All You Need To Know - Astra Web Security Blog - Reply

    […] commonly find vulnerabilities in custom code written on top of your OpenCart (vQmod/OCMOD), Magento (local extensions) or WordPress (Plugins & Child Themes) […]

  2. Detailed Guide on Website Malware Attacks: Causes, Consequences & Steps to Fix - Astra Web Security Blog - Reply

    […] are some known malwares which create links of pharmacy products on your website, or the famous Japanese spam trying to capitalize on your SEO efforts. Entering the following code in google often helps […]

  3. How to fix WordPress admin dashboard (wp-admin) hack - Astra Web Security Blog - Reply

    […] measures are not taken – a hacker may be able to launch pharma attacks, phishing pages, Japanese SEO spam pages or even plan a wp-admin […]

  4. Laravel or Codeigniter Website Hacked: These Laravel or Codeigniter Vulnerabilities Can Be The Cause - Reply

    […] content appears on Laravel or Codeigniter site due to Japanese Keyword Hack or Pharma Hack […]

  5. Thanks for a great list!

  6. Drupal Hack & Malware Removal Guide - Includes Drupal Security Tips - Reply

    […] viagra and cialis. This SEO spam is known as Black Hat SEO. Another famous example of SEO spam is Japanese SEO Spam. In this spam, the spammers hijacked google search results and displayed Japanese words in the […]

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.