wordpress 黑客_12个迹象表明您的WordPress网站被黑客入侵

wordpress 黑客

We are often asked what are some signs that indicate a WordPress site is hacked? There are some common telltale signs that may help you figure out if your WordPress site is hacked or compromised. In this article, we will share 12 common signs that your WordPress site is hacked.

我们经常被问到哪些迹象表明WordPress网站被黑？ 有一些常见的迹象可能会帮助您弄清您的WordPress网站是否被黑客入侵或遭到破坏。 在本文中，我们将分享12个常见迹象，表明您的WordPress网站已被黑客入侵。

1.网站流量突然下降 (1. Sudden Drop in Website Traffic)

If you look at your Google Analytics reports and see a sudden drop in traffic, then this could be a sign that your WordPress site is hacked.

如果您查看自己的Google Analytics(分析)报告，发现流量突然下降，则表明您的WordPress网站已被黑客入侵。

There are many malware and trojans out there that hijack your website’s traffic and redirect it to spammy websites. Some of them don’t redirect logged in users which allows them to go unnoticed for a while.

那里有许多恶意软件和木马会劫持您网站的流量并将其重定向到垃圾网站。 他们中的一些人不重定向登录的用户，这使他们有一段时间没有被注意。

Another reason for the sudden drop in traffic is Google’s safe browsing tool, which might be showing warnings to users regarding your website.
Each week, Google blacklists around 20,000 websites for malware and around 50,000 for phishing. That’s why every blogger and business owner needs to pay serious attention to their WordPress security.

流量突然下降的另一个原因是Google的安全浏览工具，该工具可能会向用户显示有关您网站的警告。
每周，Google会将大约20,000个网站列入恶意软件黑名单，并将大约50,000个网站列入网络钓鱼名单。 这就是每个博客作者和企业主都需要认真注意其WordPress安全性的原因 。

You can check your website using the Google’s safe browsing tool to see your safety report.

您可以使用Google的安全浏览工具检查您的网站，以查看安全报告。

2.错误链接添加到您的网站 (2. Bad Links Added to Your Website)

One of the most common signs among hacked WordPress sites is data injection. Hackers create a backdoor on your WordPress site which gives them access to modify your WordPress files and database.

在被黑的WordPress网站中，最常见的标志之一就是数据注入。 黑客在您的WordPress网站上创建了后门，使他们可以修改WordPress文件和数据库。

Some of these hacks add links to spammy websites. Usually these links are added to the footer of your website, but they really could be any where. Deleting the links will not guarantee that they will not come back.

其中一些骇客会添加指向垃圾网站的链接。 通常，这些链接会添加到您网站的页脚中，但实际上它们可以在任何地方。 删除链接并不能保证它们不会回来。

You will need to find and fix the backdoor used to inject this data into your website. See our guide on how to find and fix a backdoor in a hacked WordPress site.

您将需要查找并修复用于将这些数据注入您的网站的后门。 请参阅我们的指南，了解如何在被黑的WordPress网站中查找和修复后门 。

3.您的网站首页被污损 (3. Your Site’s Homepage is Defaced)

This is probably the most obvious one as it is clearly visible on the homepage of your website. Most hacking attempts do not deface your site’s home page because they want to remain unnoticed for as long as possible.

这可能是最明显的一种，因为它在您网站的主页上清晰可见。 大多数黑客尝试都不会破坏您网站的主页，因为它们希望尽可能长的时间不被发现。

However, some hackers may deface your website to announce that it has been hacked. Such hackers usually replace your homepage with their own message. Some hackers may even try to extort money from site owners.

但是，某些黑客可能会破坏您的网站，以宣布您的网站已被黑客入侵。 这类骇客通常会以自己的讯息取代您的首页。 一些黑客甚至可能试图从网站所有者那里勒索金钱。

4.您无法登录WordPress (4. You are Unable to Login to WordPress)

If you are unable to login to your WordPress site, then there is a chance that hackers may have deleted your admin account from WordPress.

如果您无法登录到WordPress网站，则黑客可能会从WordPress中删除您的管理员帐户。

Since the account doesn’t exist, you would not be able to reset your password from the login page. There are other ways to add an admin account using phpMyAdmin or via FTP. However, your site will remain unsafe until you figure out how a hacker got into your website.

由于该帐户不存在，因此您将无法从登录页面重置密码。 还有其他方法可以使用phpMyAdmin或通过FTP 添加管理员帐户 。 但是，除非弄清楚黑客是如何进入您的网站的，否则您的网站仍将不安全。

5. WordPress中的可疑用户帐户 (5. Suspicious User Accounts in WordPress)

If your site is open to user registration, and you are not using any spam registration protection, then spam user accounts are just common spam that you can simply delete.

如果您的网站允许用户注册，并且您没有使用任何垃圾邮件注册保护，则垃圾邮件用户帐户只是常见的垃圾邮件，您可以将其删除。

However, if you don’t remember allowing user registration and notice new user accounts in WordPress, then your site is probably hacked.

但是，如果您不记得允许用户注册并注意到WordPress中的新用户帐户，则您的网站可能被黑了。

Usually the suspicious account will have administrator user role, and in some cases you may not be able to delete it from your WordPress admin area.

通常，可疑帐户将具有管理员用户角色，在某些情况下，您可能无法从WordPress管理区域中将其删除。

6.服务器上的未知文件和脚本 (6. Unknown Files and Scripts on Your Server)

If you’re using a site scanner plugin like Sucuri, then it will alert you when it finds an unknown file or script on your server.

如果您使用的是Sucuri之类的站点扫描仪插件，那么当它在服务器上找到未知文件或脚本时，它将提醒您。

You need to connect to your WordPress site using a FTP client. The most common place where you will find malicious files and scripts is the /wp-content/ folder.

您需要使用FTP客户端连接到WordPress网站。 / wp-content /文件夹是查找恶意文件和脚本的最常见位置。

Usually, these files are named like WordPress files to hide in plain sight. Deleting these files immediately will not guarantee that these files will not return. You will need to audit the security of your website specially file and directory structure.

通常，这些文件的名称类似于WordPress文件，以使其清晰可见。 立即删除这些文件并不能保证这些文件不会返回。 您将需要特别是文件和目录结构审核网站的安全性。

7.您的网站经常慢或无响应 (7. Your Website is Often Slow or Unresponsive)

All websites on internet can become victims of random denial of service attacks. These attacks use several hacked computers and servers from all over the world using fake ips. Sometimes they are just sending too many requests to your server, other times they are actively trying to break into your website.

互联网上的所有网站都可能成为随机拒绝服务攻击的受害者。 这些攻击使用伪造的ip，使用了来自世界各地的几台被入侵的计算机和服务器。 有时他们只是向您的服务器发送太多请求，而其他时候却在积极尝试闯入您的网站。

Any such activity will make your website slow, unresponsive, and unavailable. You will need to check your server logs to see which ips are making too many requests and block them.

任何此类活动都会使您的网站运行缓慢，无法响应并且无法访问。 您将需要检查服务器日志，以查看哪些ip发出了过多的请求并将其阻止。

It is also possible that your WordPress site is just slow and not hacked. In that case, you need to follow our guide to boost WordPress speed and performance.

您的WordPress网站也可能运行缓慢且未被黑客入侵。 在这种情况下，您需要按照我们的指南来提高WordPress的速度和性能 。

8.服务器日志中的异常活动 (8. Unusual Activity in Server Logs)

Server logs are plain text files stored on your web server. These files keep record of all errors occurring on your server as well as all your internet traffic.

服务器日志是存储在Web服务器上的纯文本文件。 这些文件记录了服务器上发生的所有错误以及所有Internet流量。

You can access them from your WordPress hosting account’s cPanel dashboard under statistics.

您可以从WordPress托管帐户的cPanel信息中心下的统计信息中访问它们。

These server logs can help you understand what’s going on when your WordPress site is under attack. They also contain all the ip addresses used to access your website which allows you to block suspicious ip addresses.

这些服务器日志可以帮助您了解WordPress网站受到攻击时的情况。 它们还包含用于访问您的网站的所有IP地址，可让您阻止可疑IP地址。

9.无法发送或接收WordPress电子邮件 (9. Failure to Send or Receive WordPress Emails)

Hacked servers are commonly used for spam. Most WordPress hosting companies offer free email accounts with your hosting. Many WordPress site owners use their host’s mail servers to send WordPress emails.

被黑的服务器通常用于垃圾邮件。 大多数WordPress托管公司都会为您的托管提供免费的电子邮件帐户。 许多WordPress网站所有者使用其主机的邮件服务器发送WordPress电子邮件。

If you are unable to send or recieve WordPress emails, then there is a chance that your mail server is hacked to send spam emails.

如果您无法发送或接收WordPress电子邮件 ，则您的邮件服务器可能会被黑客发送垃圾邮件。

10.可疑的计划任务 (10. Suspicious Scheduled Tasks)

Web servers allow users to set up cron jobs. These are scheduled tasks that you can add to your server. WordPress itself uses cron to setup scheduled tasks like publishing scheduled posts, deleting old comments from trash, and so on.

Web服务器允许用户设置cron作业。 这些是可以添加到服务器的计划任务。 WordPress本身使用cron来设置排定的任务，例如发布排定的帖子 ，从垃圾箱中删除旧评论等。

A hacker can exploit cron to run scheduled tasks on your server without you knowing it.

黑客可以利用cron在您不知情的情况下在您的服务器上运行计划的任务。

11.被劫持的搜索结果 (11. Hijacked Search Results)

If the search results from your website show incorrect title or meta description, then this is a sign that your WordPress site is hacked.

如果您网站的搜索结果显示不正确的标题或元描述，则表明您的WordPress网站已被黑客入侵。

Looking at your WordPress site, you will still see the correct title and description. The hacker has again exploited a backdoor to inject malicious code which modifies your site data in a way that it is visible only to search engines.

查看您的WordPress网站，您仍然会看到正确的标题和描述。 黑客再次利用后门注入了恶意代码，该恶意代码以仅对搜索引擎可见的方式修改了您的站点数据。

12.您网站上的弹出式广告或弹出式广告 (12. Popups or Pop Under Ads on Your Website)

These types of hacks are trying to make money by hijacking your website’s traffic and showing them their own spam ads for illegal websites. These popups do not appear for logged in visitors or visitors accessing a website directly.

这些类型的黑客正试图通过劫持您网站的流量并向他们展示自己的非法网站垃圾邮件广告来赚钱。 对于已登录的访问者或直接访问网站的访问者，不会显示这些弹出窗口。

They only appear to the users visiting from search engines. Pop under ads open in new window and remain unnoticeable by users.

它们仅对从搜索引擎访问的用户显示。 在广告下弹出广告会在新窗口中打开，用户不会注意到。

保护和修复被黑的WordPress网站 (Securing and Fixing Your Hacked WordPress Site)

Cleaning up a hacked WordPress site can be incredibly painful and difficult. This is why we recommend you to let experts clean up your website.

清理被黑的WordPress网站可能非常痛苦且困难。 这就是为什么我们建议您让专家清理您的网站的原因。

We use Sucuri to protect all our websites. See how Sucuri helped us block 450,000 WordPress attacks in 3 months.

我们使用Sucuri保护我们所有的网站。 了解Sucuri如何帮助我们在3个月内阻止450,000次WordPress攻击 。

It comes with 24/7 website monitoring and a powerful website application firewall, which blocks attacks before they even reach your website. Most importantly, they clean up your website if it ever gets hacked.

它具有24/7全天候网站监视和强大的网站应用程序防火墙，可在攻击到达您的网站之前将其阻止。 最重要的是，如果网站遭到黑客入侵，他们会清理您的网站。

If you want to clean up your site on your own, then take a look at our beginner’s guide on fixing a hacked WordPress site.

如果您想自己清理网站，请查看我们的初学者指南，以修复被黑的WordPress网站 。

You should also check out our ultimate WordPress security guide to follow the best practices and protect your site.

您还应该查看我们的终极WordPress安全指南，以遵循最佳做法并保护您的网站。

We hope this article helped you look for signs that your WordPress site is hacked. You may also want to see our list of 24 must have WordPress plugins for business websites.

我们希望本文能帮助您寻找WordPress网站被黑的迹象。 您可能还希望查看我们的24个列表， 这些列表必须具有用于商业网站的WordPress插件 。

If you liked this article, then please subscribe to our YouTube Channel for WordPress video tutorials. You can also find us on Twitter and Facebook.

如果您喜欢这篇文章，请订阅我们的YouTube频道 WordPress视频教程。 您也可以在Twitter和Facebook上找到我们。

翻译自: https://www.wpbeginner.com/beginners-guide/signs-that-your-wordpress-site-is-hacked/

wordpress 黑客