• Website is hacked , It refers to the program that hackers use the website 、 Security vulnerabilities in settings, etc. or administrator Security Oversight （ Such as low password complexity ）, Not authorized by the Administrator , The website has been tampered with （ For example, add spam content or add other web pages ） Or inject malicious code into the website .

• Analyze system logs 、 Server log , Check the number of pages on your site 、 Whether there is abnormal fluctuation of flow etc , Whether there is abnormal access or operation log
• Check if there is any abnormal modification in the website file , Especially the home page and other key pages .
• Whether the website page references the resources of the unknown website （ picture 、JS etc. ）, Whether the exception link of the outstation is placed .
• Check whether the website has abnormally added files or directories .
• Check whether there is non administrator packaged website source code in the website directory 、 Unknown txt Documents, etc. .

3、 ... and 、 How to deal with it “ Be black ”？

Step one: avoid the problem expanding

• Shut down your website immediately to avoid infecting other websites （ If you have access to your own server, it is best to configure it to return 503 The status code ）.
• Contact your own network hosting provider to see if you have taken steps to solve the problem .
• Change passwords for all users and all accounts （ for example ,FTP Access password 、 Administrator account password 、 Content management system authorization account password ）.
• Delete all pages changed by string or added maliciously , And through the platform of Sogou webmaster, through the dead chain submission, we are informed to delete the black data in Sogou search results .
• 
  
• Step two Assess the loss
• Use the latest scanner to scan your computer , Find out any malicious code that may be added by hackers . Please be sure to scan everything , Instead of just scanning text-based files , Because malicious content tends to be embedded in images .
• Delete the webpage or website that is blacked out . This prevents the system from providing users with a blacked out web page .
• Report to us the web page of online deception （ sogou ：http://fankui.help.sogou.com/index.php/web/web/index?type=5 Baidu ：https://ziyuan.baidu.com/safe/index）
• see antiphishing.org For the website being hacked （http://www.dingjianseo.com/zb_users/upload/2020/beihei.pdf ） Treatment method .
• If you have other websites , Please check if they are also black .
• 
  
• 
  
• Step three If you have access to your own server , Please continue with the following steps
• Check if there are any open redirect URLs in your website that have been attacked .
• According to the website platform used , Check .htaccess file (Apache) Or other access control mechanisms , To find out malicious changes .
• Check the server logs , To see when the file was blacked （ remember , Hackers can change logs ）. Look for suspicious activity , For example, failed login attempts 、 command （ In particular, commands issued as root users ） History or unknown user account .
• 
  
• Step four Clean up your website
• Clean up your content , Delete all pages added by hackers according to virus scanner identification results 、 Garbage content and suspicious code . If you back up the content , Then consider deleting your content completely , Then replace with the latest known good backup （ It has been verified that there is no loophole and no black content in a backup ）.
• Step five If you have access to your own server , Please continue with the following steps
• Update all packages to the latest version . We recommend that you use a reliable source to completely reinstall the operating system , To ensure that all content tampered with by hackers is removed . in addition , If the blog platform is installed 、 Content management systems or any other type of third-party software , Be sure to reinstall it or update it accordingly .
• Make sure your website doesn't contain any loopholes and change your password again .
• Set the system to be publicly accessible . Change server configuration , Make it no longer return to 503 The status code , And take all other necessary measures to open its website to the public .
• Step six Apply for unblocking
• When you follow the above tips to remove the exception carefully , Apply to unblock your website , Submitting an application without completely excluding all exceptions will not pass our inspection , And then there's no way to unblock .
• The complaint processing cycle of the website is generally 20~30 A working day , The staff will check the content of your site , When all abnormal conditions are completely eliminated , Your site will be unblocked .

• Check the server log regularly to find problems , Check for suspicious access to non foreground pages .
• Often check whether the website files have abnormal changes or additions .
• Focus on the operating system , And the official website of the program used . Download the patch in time , Fix security holes ; If necessary, it is recommended to update to the latest version .
• Modify the default file name of the key file of the open source program , Cheaters usually determine whether a program is used by automatically scanning the existence of certain files .
• Modify the default administrator user name , Improve the password strength of the management background , Using letters 、 A combination of numbers and special symbols .
• Shut down unnecessary services and ports
• Turn off or restrict unnecessary Uploads .
• Set up firewall and other security measures .
• If problems recur , It is recommended to reinstall the server operating system , And re upload the backup website file .
• Lack of professional maintenance personnel for the website , It is recommended to consult a professional safety company .

Content reference source ： Sogou webmaster platform Organize resources ： changzhou SEO Mu Mu blog

Others are searched by black questions ： What if the website is mirrored ?( Advanced mirror suggests prevention ）

Originality is not easy. , Original address source ：http://www.dingjianseo.com/seo/151.html