Jump to content


Welcome to DBSTalk


Sign In 

Create Account
Welcome to DBSTalk. Our community covers all aspects of video delivery solutions including: Direct Broadcast Satellite (DBS), Cable Television, and Internet Protocol Television (IPTV). We also have forums to discuss popular television programs, home theater equipment, and internet streaming service providers. Members of our community include experts who can help you solve technical problems, industry professionals, company representatives, and novices who are here to learn.

Like most online communities you must register to view or post in our community. Sign-up is a free and simple process that requires minimal information. Be a part of our community by signing in or creating an account. The Digital Bit Stream starts here!
  • Reply to existing topics or start a discussion of your own
  • Subscribe to topics and forums and get email updates
  • Send private personal messages (PM) to other forum members
  • Customize your profile page and make new friends
 
Guest Message by DevFuse

Photo

Reported Attack Site!


  • Please log in to reply
279 replies to this topic

#51 OFFLINE   armophob

armophob

    Difficulty Concen........

  • DBSTalk Club
  • 7,173 posts
  • LocationFort Pierce, FL
Joined: Nov 13, 2006

Posted 24 December 2012 - 02:35 PM

Clean now.


on what browser? not on Firefox.

...Ads Help To Support This Site...

#52 OFFLINE   David Bott

David Bott

    Hall Of Fame

  • Administrators
  • 2,239 posts
  • LocationTraveling the USA
Joined: Jul 12, 2005

Posted 24 December 2012 - 02:42 PM

You may be getting the data from different parts of the country based on how you are connected and where. Google, and the services that use them, are all over the place. So, where your browser checks for the database, it might not have yet got the update on that server. I am clear in FF and Chrome now and I was not 15 mins ago.

Take care all..thanks for the help in the reporting. Sorry it happened. Just wish I would have found out sooner. :)

Take care, keep safe, I am off to see family.

#53 OFFLINE   armophob

armophob

    Difficulty Concen........

  • DBSTalk Club
  • 7,173 posts
  • LocationFort Pierce, FL
Joined: Nov 13, 2006

Posted 24 December 2012 - 03:01 PM

AT&T firefox Florida, still a problem

#54 ONLINE   MysteryMan

MysteryMan

    Hall Of Fame

  • DBSTalk Club
  • 7,112 posts
  • LocationUSA
Joined: May 17, 2010

Posted 24 December 2012 - 03:47 PM

Google Chrome is back.

DIRECTV customer since 1995.


#55 OFFLINE   RasputinAXP

RasputinAXP

    Kwisatz Haderach of Cordcuttery

  • Registered
  • 3,141 posts
Joined: Jan 23, 2008

Posted 24 December 2012 - 03:51 PM

sorry. Chrome, Jersey.

"Belligerent and numerous."

SlingTV, Tablo and Plex to Roku 3s and Chromecasts on a Vizio 42" in the living room and a Toshiba 32" in my bedroom. Xbox 360 client on a Westinghouse 42" in the game room. Tablets EVERYWHERE!

 

I used to update the Dish Network FAQ but not anymore.


#56 OFFLINE   B_H

B_H

    Cool Member

  • Registered
  • 35 posts
Joined: Sep 23, 2003

Posted 24 December 2012 - 04:48 PM

Avast security just said I was trying to download a virus, using Internet Explorer 9.

#57 OFFLINE   ThomasM

ThomasM

    RF Engineer

  • Registered
  • 4,317 posts
  • LocationMilwaukee, WI
Joined: Jul 20, 2007

Posted 24 December 2012 - 06:21 PM

Interesting thread.

For a change I've had no problem with my Google Chrome Browser accessing DBSTALK.COM today despite previous issues (see other thread-this forum).

Perhaps the issue is fixed??

3LNB Phase III Dish * 2-R15-300 * R22-200 * D12-100 * DirecTV Subscriber since Y2K


#58 OFFLINE   armophob

armophob

    Difficulty Concen........

  • DBSTalk Club
  • 7,173 posts
  • LocationFort Pierce, FL
Joined: Nov 13, 2006

Posted 24 December 2012 - 06:28 PM

Perhaps the issue is fixed??


nope' just tried it

#59 OFFLINE   Mark Holtz

Mark Holtz

    Day Sleeper

  • DBSTalk Club
  • 9,990 posts
  • LocationSacramento, CA
Joined: Mar 23, 2002

Posted 24 December 2012 - 06:48 PM

No longer occurring on both Firefox and Chrome at my end.

"In an effort to increase your cable and satellite bills beyond the point of affordability and to further pad the pockets of our executives..."
Check out my list of links.


#60 OFFLINE   sbl

sbl

    Icon

  • DBSTalk Club
  • 857 posts
Joined: Jul 21, 2007

Posted 24 December 2012 - 07:48 PM

Firefox just blocked it for me.

Safe Browsing
Diagnostic page for www.dbstalk.com

What is the current listing status for www.dbstalk.com?

This site is not currently listed as suspicious.

Part of this site was listed for suspicious activity 1 time(s) over the past 90 days.

What happened when Google visited this site?

Of the 337 pages we tested on the site over the past 90 days, 38 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2012-12-24, and the last time suspicious content was found on this site was on 2012-12-24.

Malicious software is hosted on 1 domain(s), including vuweather.org/.

1 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including journaldugeek.com/.

This site was hosted on 1 network(s) including AS30496 (COLO4).

More information at http://www.stopbadwa...sprune=-1&f=194

Steve

My Setup


#61 OFFLINE   Draconis

Draconis

    Hall Of Fame

  • Registered
  • 4,416 posts
  • LocationLas Vegas, NV
Joined: Mar 16, 2007

Posted 24 December 2012 - 08:26 PM

I just happened to me using Firefox 17.0.1

#62 OFFLINE   Steve

Steve

    Hall Of Fame

  • DBSTalk Club
  • 22,748 posts
Joined: Aug 22, 2006

Posted 24 December 2012 - 09:18 PM

No more warnings here in NY, ATM. Chrome 24.x here.

I spoke too soon. It's back here as well.

Edited by Steve, 24 December 2012 - 09:26 PM.

/steve

#63 OFFLINE   lwilli201

lwilli201

    Hall Of Fame

  • DBSTalk Club
  • 3,062 posts
  • LocationMissouri
Joined: Dec 22, 2006

Posted 24 December 2012 - 09:36 PM

Mozilla Firefox. Got warning at 9.33 PM CT.
1-HR21-100, 2-HR21-700, 1 w/eSATA, all networked, unsupported MRV. AT9 Dish(110 & 119 disabled) and SWM8.

#64 OFFLINE   shaun-ohio

shaun-ohio

    Icon

  • Registered
  • 609 posts
  • Locationzanesville ohio
Joined: Aug 24, 2002

Posted 24 December 2012 - 09:37 PM

just got it again, on google chrome

#65 OFFLINE   Mark Holtz

Mark Holtz

    Day Sleeper

  • DBSTalk Club
  • 9,990 posts
  • LocationSacramento, CA
Joined: Mar 23, 2002

Posted 24 December 2012 - 09:49 PM

Same here.

"In an effort to increase your cable and satellite bills beyond the point of affordability and to further pad the pockets of our executives..."
Check out my list of links.


#66 OFFLINE   FlyingDiver

FlyingDiver

    All Star/Supporter

  • Registered
  • 193 posts
  • LocationOn the road in North America...
Joined: Dec 03, 2002

Posted 24 December 2012 - 09:55 PM

Same here. Safari on OS X 10.8.

#67 OFFLINE   Nighthawk68

Nighthawk68

    Godfather

  • DBSTalk Club
  • 363 posts
  • LocationNorthern Michigan
Joined: Oct 14, 2004

Posted 24 December 2012 - 10:08 PM

Just got it on IE 9 here just a few minutes ago.

#68 OFFLINE   spartanstew

spartanstew

    Dry as a bone

  • Registered
  • 12,515 posts
  • LocationWylie, Texas
Joined: Nov 16, 2005

Posted 24 December 2012 - 10:47 PM

Had it this morning, didn't have it this afternoon, and now had it again just now (all on Chrome).

I'm sure Directv can't wait to get their hands on your unit.

 
Directv customer since 2000

#69 OFFLINE   chevyguy559

chevyguy559

    Fresno State Bulldog!

  • Registered
  • 719 posts
  • LocationFresno, CA
Joined: Sep 19, 2008

Posted 24 December 2012 - 10:52 PM

Had it this morning, didn't have it this afternoon, and now had it again just now (all on Chrome).


Same for me, using Chrome as well :(

DirecTV Subscriber Since 11/2008
Choice Ultimate - HD Extra - RZC
(2) HR22-100
(1) HR22-100 (Owned)
(1) HR21-100 (Owned)


#70 OFFLINE   fluffybear

fluffybear

    Hall Of Fame

  • DBSTalk Club
  • 7,261 posts
  • LocationPeachtree City, GA.
Joined: Jun 19, 2004

Posted 24 December 2012 - 11:16 PM

I have been seeing the warning for the better part of the day.

Chrome Version 24.0.1312.45 beta
MAC OS/X 10.8.2

Proud DirecTV customer since July, 1994

My Q4 2014 Set-Up


#71 OFFLINE   phrelin

phrelin

    Hall Of Fame

  • Registered
  • 13,626 posts
  • LocationNorthern California Redwoods
Joined: Jan 18, 2007

Posted 24 December 2012 - 11:19 PM

I'm continuing to get the warning if I shut down Firefox, restart and come back to the site. No big deal, it just hasn't been cleared through the systems yet.

"In a hundred years there'll be a whole new set of people."
"Always poke the bears. They sleep too much for their own good."

"If you're good enough, they'll talk about you." - Tom Harmon
A GEEZER who remembers watching TV in 1951 and was an Echostar customer from 1988 to 2008, now a Dish Network customer.
My AV Setup
My Slingbox Pro HD Experience
My Blog: The Redwood Guardian


#72 OFFLINE   armophob

armophob

    Difficulty Concen........

  • DBSTalk Club
  • 7,173 posts
  • LocationFort Pierce, FL
Joined: Nov 13, 2006

Posted 24 December 2012 - 11:34 PM

I'm continuing to get the warning if I shut down Firefox, restart and come back to the site. No big deal, it just hasn't been cleared through the systems yet.


Don't do all that.
check and then uncheck
"block reported attack site"
tools>options>security and then refresh

#73 OFFLINE   SomeRandomIdiot

SomeRandomIdiot

    Godfather

  • Registered
  • 1,260 posts
Joined: Jan 06, 2009

Posted 25 December 2012 - 12:10 AM

The trojan is real and Google as well as the other Browsers are correct. The site is still sending out the trojan which is why the site has been reblocked by Chrome.

If you bypassed it, you might have a real problem on your system.

This virus is a variant of the Java/Exploit.Agent.NEB trojan. If your virus program did not detect it, time to get a better virus program such as eset and get rid of Norton and McAfee that miss stuff like this.

The trojan is coming from penetraterarest.com in Kazakhsta.

The java file is called FojZQA.jar

The exact address that dbstalk is telling your browser to download from is:

"http://penetraterarest.pro/rFR2v50SAgq0PhnF17Xcs0WuLw0utMZ0VCGd0sjOW0P6130GGLL0mEtv10X6e0TtHo17Kj901GbG05BY5/FojZQA.jar"

The Site Owners should DISABLE all Ads until this gets straightened out.

If they disable the Ads and the trojan remains, it has root on the DBStalk Server.

But again, what do I know.....I'm only SomeRandomIdiot.

Happy Holidays!

#74 OFFLINE   SomeRandomIdiot

SomeRandomIdiot

    Godfather

  • Registered
  • 1,260 posts
Joined: Jan 06, 2009

Posted 25 December 2012 - 01:03 AM

Forgot to mention the size of the trojan that is being sent dbstalk users is 16,117 bytes.

#75 OFFLINE   SomeRandomIdiot

SomeRandomIdiot

    Godfather

  • Registered
  • 1,260 posts
Joined: Jan 06, 2009

Posted 25 December 2012 - 01:10 AM

appears the trojan is now being distributed by 2 different sites as shown below:

Advisory provided by
Safe Browsing
Diagnostic page for dbstalk.com

What is the current listing status for dbstalk.com?
Site is listed as suspicious - visiting this web site may harm your computer.

Part of this site was listed for suspicious activity 1 time(s) over the past 90 days.

What happened when Google visited this site?
Of the 532 pages we tested on the site over the past 90 days, 62 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2012-12-24, and the last time suspicious content was found on this site was on 2012-12-24.
Malicious software is hosted on 2 domain(s), including vuweather.org/, penetraterarest.pro/.

2 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including journaldugeek.com/, openx.net/.

This site was hosted on 1 network(s) including AS30496 (COLO4).

Has this site acted as an intermediary resulting in further distribution of malware?
Over the past 90 days, dbstalk.com did not appear to function as an intermediary for the infection of any sites.

Has this site hosted malware?
No, this site has not hosted malicious software over the past 90 days.

How did this happen?
In some cases, third parties can add malicious code to legitimate sites, which would cause us to show the warning message.

Next steps:
Return to the previous page.
If you are the owner of this web site, you can request a review of your site using Google Webmaster Tools. More information about the review process is available in Google's Webmaster Help Center.




Protected By... spam firewall...And...