A simple solution to dedecms and php168 Trojan UDP attacks

A simple solution for dedecms and php168 Trojan UDP attacks some network collection methods. I have tried & nbsp; Collection 1. First, check what my website administrator is. The most commonly used ones are DEDECMD, PHP168, and so on. DEDE management system: first, log on to the background and use the Trojan scanning tool that comes with DEDE to scan for a simple solution to dedecms and php168 Trojan UDP attacks
Network collection methods. I have tried collection. 1. First, check what my website administrator is. The most commonly used ones are DEDECMD, PHP168, and so on. Log on to the background and use the Trojan scanning tool that comes with DEDE to scan and delete suspicious files! DEDE User: directly delete the member directory: member Upload function: uploads topic directory: special backdoor Trojans are generally in the plus directory! The Trojan size is about 2 kB! For PHP168. Usually in the PHP168 directory! Then, log on to your server and configure it. How is it! Click Start> Administrative Tools> Local Security Policies> UDP Security Policies> right-click and assign. UDP is disabled on the server. So you don't have to worry about it. The Trojan sends packets externally, and then finds the backdoor and patches the vulnerability. Collection 2 recently, some boring people like to use 0-day to find program vulnerabilities and upload traffic attack scripts, which is a headache. Currently, the dedecms vulnerability is found in 99%. if you are using the dedecms program, see the following steps. 1. update the patch in the dedecms background and try to upgrade it to the latest version. 2. the write permission is removed from the data, templets, uploads, and install directories. 3. if you only use the article system and do not use the membership function, we recommend that you disable the membership function, disable new member registration, directly delete the member directory, or rename it. 4. use the file verification and virus scanning function in the "system" in the dedecms background to scan and kill viruses and Trojans. 5. check for/data/cache/t. php,/data/cache/x. php, and/plus/index. php Trojan files. If yes, delete them immediately. 6. check/plus/config_s.php. this is the traffic attack script in dedecms.