本文章只有告诉各位朋友关于mysql udf.dll提权入侵的一些文件操作,各位可以根据这里来配置安全,有需要的朋友可以看看,代码如下:
- netstopmysql
- del%SystemRoot%system32udf.dll/A/F/Q
- del%SystemRoot%udf.dll/A/F/Q
- del%SystemRoot%tempudf.dll/A/F/Q
- dir%SystemRoot%system32com>%SystemRoot%system32udf.dll
- dir%SystemRoot%system32com>%SystemRoot%udf.dll
- dir%SystemRoot%system32com>%SystemRoot%tempudf.dll
- attrib+R+S+H%SystemRoot%system32udf.dll
- attrib+R+S+H%SystemRoot%udf.dll
- attrib+R+S+H%SystemRoot%tempudf.dll
- cscript.exexcacls.vbs"%SystemRoot%system32udf.dll"/DEveryone:M/E
- cscript.exexcacls.vbs"%SystemRoot%udf.dll"/DEveryone:M/E
- cscript.exexcacls.vbs"%SystemRoot%tempudf.dll"/DEveryone:M/E
- del%SystemRoot%system32langouster_udf.dll/A/F/Q
- del%SystemRoot%langouster_udf.dll/A/F/Q
- del%SystemRoot%templangouster_udf.dll/A/F/Q
- dir%SystemRoot%system32com>%SystemRoot%system32langouster_udf.dll
- dir%SystemRoot%system32com>%SystemRoot%langouster_udf.dll
- dir%SystemRoot%system32com>%SystemRoot%templangouster_udf.dll
- attrib+R+S+H%SystemRoot%system32langouster_udf.dll
- attrib+R+S+H%SystemRoot%langouster_udf.dll
- attrib+R+S+H%SystemRoot%templangouster_udf.dll
- cscript.exexcacls.vbs"%SystemRoot%system32langouster_udf.dll"/DEveryone:M/E
- cscript.exexcacls.vbs"%SystemRoot%langouster_udf.dll"/DEveryone:M/E--phpfensi.com
- cscript.exexcacls.vbs"%SystemRoot%templangouster_udf.dll"/DEveryone:M/E
- netstartmysql