yiyou cms quickly and thoroughly eradicate trojan code and unnecessary suspicious files in the website source code

suyou network (10 years of experience), serves tens of thousands of companies, and has fixed transparent quotations. domain name registration, hosting /one-stop service for server and website source code. a physical company, a professional team, worth choosing! website building business: corporate website construction, company official website production, foreign trade website construction, website imitation, website copying, imitation site, foreign trade website construction, single-page customer service wechat【 suyoufuwu】

important 1: please be cautious when developing secondary websites!!!

important 2: back up the website database and source code in advance!!!

this tutorial is complicated, please follow the steps step by step patiently. the general process is as follows:

download the official core package - > scan the exclusive directory - > clear the website root directory - > upload and decompress new source code

1、scan online in the background of the website to check for suspicious malicious files, DDOS attack scripts, etc.

2、check the version number of your website /data/conf/version.txt， as shown in the figure below: v1.5.8 version

download the corresponding version of the source code core package (it does not contain files unique to each website, such as foreground templates, picture directories, etc.), and unzip it to a new local folder eyou inside.

  EyouCMS-V1.5.8-UTF8-Core.zip
  EyouCMS-V1.5.7-UTF8-Core.zip
  EyouCMS-V1.5.6-UTF8-Core.zip
  EyouCMS-V1.5.5-UTF8-Core.zip
  EyouCMS-V1.5.4-UTF8-Core.zip
  EyouCMS-V1.5.3-UTF8-Core.zip
  EyouCMS-V1.5.2-UTF8-Core.zip
  EyouCMS-V1.5.1-UTF8-Core.zip
……more early versions, please provide feedback if necessary

3、copy the new files added in the template, pictures, pages, etc. of your website, and paste them into the new source code you just unzipped according to the corresponding directory. www in the directory and file are as follows:
/public/upload -- early upload directory (no can be ignored)
/template -- front desk template directory
/uploads -- upload directory
/weapp -- plugin directory
/extend/function.php -- user-defined function files
/core/library/think/paginator/driver/Eyou.php -- PC terminal list pagination html code file
/core/library/think/paginator/driver/Mobile.php -- mobile phone list pagination html code file

4、check the directory files in step 3 above and kill trojans

（1）pass windows how to find files, search for whether the following directory exists php file and will be deleted.
/public/upload
/template
/uploads

（2）use D shield tools to detect these directories and files ( D shield download address: click to download)
/public/upload
/template
/uploads
/weapp -- plugin directory (if the plugin scans for suspicious files, it is recommended to contact the developer to confirm whether it is a trojan file or an extra suspicious malicious file)
/extend/function.php
/core/library/think/paginator/driver/Eyou.php
/core/library/think/paginator/driver/Mobile.php

（3）if it is a trojan horse, right-click to select delete; if it is a template file, please use the (except notepad) editor to view and manually process suspicious code snippets.

（4）manual inspection is recommended /template template file code, whether there are suspicious code snippets, or new template files are added and deleted.

5、in the directory of the poisoning website, open application/database.php database configuration file, fill in the corresponding information into the new source code package www of application/database.php in the file, as shown in the picture:

6、reset space

（1）clear the space directory where the current site is located with one click

1、if it is a pagoda environment, it is in the root directory. user.ini do not delete

2、if the virtual space is used, clear the directory directly from the outermost level because . svn directory, some trojans may be injected into it.

（2）restart the space or server (avoid memory trojans)

（3）modify space or server, pagoda panel, website FTP， all login passwords related to the website, etc.

（4）appropriately enable some security protection functions, such as: firewall, tamper-proof (may cause some files to be overwritten in the next upgrade of the website)

7、new source code compression package www ， upload to space /the server can be decompressed.

the above is "yiyou" shared by suyou network with everyone cms quickly and thoroughly eradicate the trojan code and unnecessary suspicious files in the website source code. thank you very much for your patience to read this article. we will provide you with more information on reference, use or learning and communication. we can also provide you with:enterprise website construction, website imitation, website copying, imitation site, foreign trade website construction, foreign trade website construction, company official website productionfor services, our company serves customers with the service concept of "integrity, professionalism, pragmatism and innovation". if you need cooperation, please scan the code to consult, and we will serve you sincerely.

TAG label:yiyou cms website source code

previous article:eyoucms【 baidu map API】 what you use

next article:yiyou eyouCMS background directory introduction