Suspicious files in DLE

Hi i am using DLE 8.3 i am getting a list of suspicious files when i scan the antivirus in DLE..
whet i want to do now..
help me..
Thanks..

 

As Admin, you should have regular backups of files/database..
If your script Nulled, then no wonders of any files appearing
at website like out of nothing. Let's say you have a license.

Q: Have you installed any additional hacks/mods or templates?

a/b) check code of h/m for suspicious stuff (if u're able to).

c) check favicon.ico and login.tpl files.
First one (when using ripped or altered template) is oftenly a case of
shell-in-a-pic, 2nd is one-and-only file of template, which uses PHP.

X. Restore website from backups. Change admin pass, also pass
for FTP access to site. Then, make snapshot of website files, too.

I would like to see at least screenshot of those mysterious files.
Is there any possibility to zip these and upload for further review?

P.S.: for v8.5, backdoor usually sits at /engine/ajax/keywords.php

 

Thanks for your reply...
here the snapshot

mediafire.com/?htntntn2eoz
(use http and www in front of the link)

i updated the DLEV8.3 to V8.5
its shows updated but it didn't updated propely...
please help me how to update the DLE.

 

Hmm.. updating procedure wasn't done consistently, as written in manual.
From file listing, Friends Site Module and РingationMod present at site.
Part of files (page No.2) is marked as suspicious due to unfinished update.
Update folder must be deleted immediately after renewal, it wasn't done.

PM, will see what I can do.
My Skype the same as nick.

 

hi deleted and installed newly and i copied the data file of old one..
after installing i make a snapshot and i scanned
now i am getting these 3 files only

./engine/data/conect.php 1.19 Kb 15.05.2010 09:14:31 - this file is not part of the script
./engine/data/22pingdata.php 322 b 15.05.2010 09:18:20 - this file is not part of the script
./prostats_install.php 2.72 Kb 15.05.2010 09:05:06 - this file is not part of the script

pingdata.php is needed compulsory
hi where can i get good DLE english template freely...

 

Well, standard example of so called russian "сборка"
(pre-set package with some hacks/modules on board).

install.php is used only for Pro-Statistics module, but w/o
seeing database structure I can't say was it already used
or needs to be run, yet. conect.php on many DLE sites
causes a mess due to wrong (+BOM) encoding of files.

Use Google. Simple query (like "DLE + English + template")
showed me at least some viable results within a minute ;-)

You're using vietnamesse repack of already Nulled script,
plus third-parties modules, which can be altered on a way.
Don't expect any security there, it's already flawed. There's
no possibility of stable work any further than localhost for u.

 

i am using windows-1251
now what i want to do for this thing.
so where can i get the DLE with Security....
what are the ways to make the DLE more secure...
please in detail...
Thanks a lot...

 

License type string should carry only
"License activated" value on legit script.

As for websites, there's only two official ones:
http://www.dle-news.ru/ (author's website)
and
http://www.ooooonline.com/ (for ukrainians).

There's no more official websites for DLE CMS. Legit users
from v8.5 also has access to UTF-8 version of DLE. All of
your questions can be done via support forum. Good luck.

 

i want english version....

 

So called "english" website in most cases is standard package
(better choose with UTF-8 encoding). Add 3 English langfiles,
get/translate template of your choice and you're ready to go.

 

there is any way to get free of DLE

 

Nope, since DLE is commercial script.
You can use Demo for free, though.

Demo version has these limitations:
* Number of news = 100; number of comments = 200;
* Closed source; no upgrades 4 older versions of CMS.

And Demo is available only in Windows-1251 encoding.
Also no technical support and bugfixes for free lunch..

 

WHICH IS BEST WINDOWS-1251 or UTF-8