1. Advertising
    y u no do it?

    Advertising (learn more)

    Advertise virtually anything here, with CPM banner ads, CPM email ads and CPC contextual links. You can target relevant areas of the site and show ads based on geographical location of the user if you wish.

    Starts at just $1 per CPM or $0.10 per CPC.

Suspicious files in DLE

Discussion in 'Content Management' started by jaganguys, May 14, 2010.

  1. #1
    Hi i am using DLE 8.3 i am getting a list of suspicious files when i scan the antivirus in DLE..
    whet i want to do now..
    help me..
    Thanks..

     
    jaganguys, May 14, 2010 IP
  2. AlcVitRes

    AlcVitRes Well-Known Member

    Messages:
    124
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    130
    #2
    As Admin, you should have regular backups of files/database..
    If your script Nulled, then no wonders of any files appearing
    at website like out of nothing. Let's say you have a license.

    Q: Have you installed any additional hacks/mods or templates?

    a/b) check code of h/m for suspicious stuff (if u're able to).

    c) check favicon.ico and login.tpl files.
    First one (when using ripped or altered template) is oftenly a case of
    shell-in-a-pic, 2nd is one-and-only file of template, which uses PHP.

    X. Restore website from backups. Change admin pass, also pass
    for FTP access to site. Then, make snapshot of website files, too.

    I would like to see at least screenshot of those mysterious files.
    Is there any possibility to zip these and upload for further review?

    P.S.: for v8.5, backdoor usually sits at /engine/ajax/keywords.php
     
    AlcVitRes, May 14, 2010 IP
  3. jaganguys

    jaganguys Peon

    Messages:
    36
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #3
    Thanks for your reply...
    here the snapshot

    mediafire.com/?htntntn2eoz
    (use http and www in front of the link)

    i updated the DLEV8.3 to V8.5
    its shows updated but it didn't updated propely...
    please help me how to update the DLE.
     
    jaganguys, May 14, 2010 IP
  4. AlcVitRes

    AlcVitRes Well-Known Member

    Messages:
    124
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    130
    #4
    Hmm.. updating procedure wasn't done consistently, as written in manual.
    From file listing, Friends Site Module and РingationMod present at site.
    Part of files (page No.2) is marked as suspicious due to unfinished update.
    Update folder must be deleted immediately after renewal, it wasn't done.

    PM, will see what I can do.
    My Skype the same as nick.
     
    AlcVitRes, May 14, 2010 IP
  5. jaganguys

    jaganguys Peon

    Messages:
    36
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #5
    hi deleted and installed newly and i copied the data file of old one..
    after installing i make a snapshot and i scanned
    now i am getting these 3 files only

    ./engine/data/conect.php 1.19 Kb 15.05.2010 09:14:31 - this file is not part of the script
    ./engine/data/22pingdata.php 322 b 15.05.2010 09:18:20 - this file is not part of the script
    ./prostats_install.php 2.72 Kb 15.05.2010 09:05:06 - this file is not part of the script

    pingdata.php is needed compulsory
    hi where can i get good DLE english template freely...
     
    jaganguys, May 14, 2010 IP
  6. AlcVitRes

    AlcVitRes Well-Known Member

    Messages:
    124
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    130
    #6
    Well, standard example of so called russian "сборка"
    (pre-set package with some hacks/modules on board).

    install.php is used only for Pro-Statistics module, but w/o
    seeing database structure I can't say was it already used
    or needs to be run, yet. conect.php on many DLE sites
    causes a mess due to wrong (+BOM) encoding of files.

    Use Google. Simple query (like "DLE + English + template")
    showed me at least some viable results within a minute ;-)

    You're using vietnamesse repack of already Nulled script,
    plus third-parties modules, which can be altered on a way.
    Don't expect any security there, it's already flawed. There's
    no possibility of stable work any further than localhost for u.
     
    AlcVitRes, May 15, 2010 IP
  7. jaganguys

    jaganguys Peon

    Messages:
    36
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #7
    i am using windows-1251
    now what i want to do for this thing.
    so where can i get the DLE with Security....
    what are the ways to make the DLE more secure...
    please in detail...
    Thanks a lot...
     
    jaganguys, May 15, 2010 IP
  8. jaganguys

    jaganguys Peon

    Messages:
    36
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #8
    [​IMG]
     
    jaganguys, May 15, 2010 IP
  9. AlcVitRes

    AlcVitRes Well-Known Member

    Messages:
    124
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    130
    #9
    License type string should carry only
    "License activated" value on legit script.

    As for websites, there's only two official ones:
    http://www.dle-news.ru/ (author's website)
    and
    http://www.ooooonline.com/ (for ukrainians).

    There's no more official websites for DLE CMS. Legit users
    from v8.5 also has access to UTF-8 version of DLE. All of
    your questions can be done via support forum. Good luck.
     
    AlcVitRes, May 15, 2010 IP
  10. jaganguys

    jaganguys Peon

    Messages:
    36
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #10
    i want english version....
     
    jaganguys, May 15, 2010 IP
  11. AlcVitRes

    AlcVitRes Well-Known Member

    Messages:
    124
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    130
    #11
    So called "english" website in most cases is standard package
    (better choose with UTF-8 encoding). Add 3 English langfiles,
    get/translate template of your choice and you're ready to go.
     
    AlcVitRes, May 15, 2010 IP
  12. jaganguys

    jaganguys Peon

    Messages:
    36
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #12
    there is any way to get free of DLE
     
    jaganguys, May 15, 2010 IP
  13. AlcVitRes

    AlcVitRes Well-Known Member

    Messages:
    124
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    130
    #13
    Nope, since DLE is commercial script.
    You can use Demo for free, though.

    Demo version has these limitations:
    * Number of news = 100; number of comments = 200;
    * Closed source; no upgrades 4 older versions of CMS.

    And Demo is available only in Windows-1251 encoding.
    Also no technical support and bugfixes for free lunch..
     
    AlcVitRes, May 16, 2010 IP
  14. jaganguys

    jaganguys Peon

    Messages:
    36
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #14
    WHICH IS BEST WINDOWS-1251 or UTF-8
     
    jaganguys, May 16, 2010 IP