Hi i am using DLE 8.3 i am getting a list of suspicious files when i scan the antivirus in DLE.. whet i want to do now.. help me.. Thanks..
As Admin, you should have regular backups of files/database.. If your script Nulled, then no wonders of any files appearing at website like out of nothing. Let's say you have a license. Q: Have you installed any additional hacks/mods or templates? a/b) check code of h/m for suspicious stuff (if u're able to). c) check favicon.ico and login.tpl files. First one (when using ripped or altered template) is oftenly a case of shell-in-a-pic, 2nd is one-and-only file of template, which uses PHP. X. Restore website from backups. Change admin pass, also pass for FTP access to site. Then, make snapshot of website files, too. I would like to see at least screenshot of those mysterious files. Is there any possibility to zip these and upload for further review? P.S.: for v8.5, backdoor usually sits at /engine/ajax/keywords.php
Thanks for your reply... here the snapshot mediafire.com/?htntntn2eoz (use http and www in front of the link) i updated the DLEV8.3 to V8.5 its shows updated but it didn't updated propely... please help me how to update the DLE.
Hmm.. updating procedure wasn't done consistently, as written in manual. From file listing, Friends Site Module and Ð ingationMod present at site. Part of files (page No.2) is marked as suspicious due to unfinished update. Update folder must be deleted immediately after renewal, it wasn't done. PM, will see what I can do. My Skype the same as nick.
hi deleted and installed newly and i copied the data file of old one.. after installing i make a snapshot and i scanned now i am getting these 3 files only ./engine/data/conect.php 1.19 Kb 15.05.2010 09:14:31 - this file is not part of the script ./engine/data/22pingdata.php 322 b 15.05.2010 09:18:20 - this file is not part of the script ./prostats_install.php 2.72 Kb 15.05.2010 09:05:06 - this file is not part of the script pingdata.php is needed compulsory hi where can i get good DLE english template freely...
Well, standard example of so called russian "Ñборка" (pre-set package with some hacks/modules on board). install.php is used only for Pro-Statistics module, but w/o seeing database structure I can't say was it already used or needs to be run, yet. conect.php on many DLE sites causes a mess due to wrong (+BOM) encoding of files. Use Google. Simple query (like "DLE + English + template") showed me at least some viable results within a minute ;-) You're using vietnamesse repack of already Nulled script, plus third-parties modules, which can be altered on a way. Don't expect any security there, it's already flawed. There's no possibility of stable work any further than localhost for u.
i am using windows-1251 now what i want to do for this thing. so where can i get the DLE with Security.... what are the ways to make the DLE more secure... please in detail... Thanks a lot...
License type string should carry only "License activated" value on legit script. As for websites, there's only two official ones: http://www.dle-news.ru/ (author's website) and http://www.ooooonline.com/ (for ukrainians). There's no more official websites for DLE CMS. Legit users from v8.5 also has access to UTF-8 version of DLE. All of your questions can be done via support forum. Good luck.
So called "english" website in most cases is standard package (better choose with UTF-8 encoding). Add 3 English langfiles, get/translate template of your choice and you're ready to go.
Nope, since DLE is commercial script. You can use Demo for free, though. Demo version has these limitations: * Number of news = 100; number of comments = 200; * Closed source; no upgrades 4 older versions of CMS. And Demo is available only in Windows-1251 encoding. Also no technical support and bugfixes for free lunch..