Virus from this site or very rare coincidence?

Status
Not open for further replies.
I tried it at home, and Norton and AdAware both found no problem with the site.
 
I've been reading the posts, but still dont feel comfortable visiting the site on my pc yet, especually since someone else got a virus warning. I updated my abode reader and haven't had any virus notifications or other strange occurences since then. Its pssobile that for a short period of time on those two days there was something on the ads here that was ablw to exploit very old copies of adobe reader, hence why nearly all other users had no problem.
 
Unless your using an Adobe Reader version earlier than 8.1 then that's not your problem as that's the version I'm using and like I posted earlier no problems. But, something you've never posted is just what you were doing on this site, were you just reading or downloading things and again what section of this site were you on.
 
I've been reading the posts, but still dont feel comfortable visiting the site on my pc yet, especually since someone else got a virus warning.
Good luck.... Must make a LOT of things difficult if you make decisions based on what happens with a tiny minority vs what happens to the vast majority !!
 
I have had 4 really super nasty viruses on my computer in the last year and a half or so. The girl that fixes my computers had never seen them before and she really knows her stuff. She asked me after the first major one, "What are you doing on this website at 2AM??? Watching porn???" My daughter did start on Facebook about 2 years ago and that is the site that I pointed my finger at. I have been online since 2001 and never had a virus before. BUT when my computer geekette showed me that SatelliteGuys was where every virus originated that I ever had, my face turned red and I could not blame my daughter. :o
 
I, too got a "facebook virus" a few years ago. It hit my personal account via a legitimate friend, whose account had been hacked! Talk about coincidence, he's a program director in a major market, (radio station) and the message said, "new music video!" So, coming from his account, and knowing he'd be "up" on these things, (and was not known to send much on Facebook if it wasn't important to him)...I opened it! BAM! My account was also hacked by this file, and I immediately closed that account, and the associated business "fan" page, never to go back! PC was checked, and all was good. I keep only a "garbage" facebook account with no personal info, pictures, real name, etc...and never read it by going to the page. I only keep it to use 3rd party messaging services available for those who exclusively use facebook messenger.

Users BEWARE!
 
I get a warning from McAfee every time I visit this site about blocked content. That's why I haven't posted in quite a while.
 
Two things...

1) Keep your Adobe Flash up to date! These rouge viruses that are going around and getting in through unsecure version of the Adobe Flash plugin.

2) DishMan Dan, I would LOVE to figure out how she concluded that it was SatelliteGuys where you got the virus since NONE of the ads shown on the site come from SatelliteGuys. (And I am not saying you did not get it while visiting here, as I have a report from one ad agency that a 3rd party served McDonnalds ad was serving a payload for about 30 minutes sometime last week, which they quickly caught and disabled.)

Trust me its a big concern for us. We want every visit here to be a safe visit here and we try to partner with the most security concious ad agencies to prevent sending any of our members crap like this. But unfortunately there are times when these ads make it past the ad agencies screening process. And believe me when I tell you that I wish we could be ad free, but its not realistic as we need to pay the bills. Just yesterday alone we did almost 3 Million Pages!

We will continue to keep a close eye on things and if necessary we will remove any ad agency who continues to let crap slip by. We have done it before and will do it again if need be to keep our members safe.

Also remember (and not trying to sound like an ad pitch) that you can donate $19.99 and have all ads removed for a year. That money helps offset the lost ad revenue and gives you a lot more perks and features as a Pub Member plus it gives you the good feeling knowing that you helped keep the lights on for everyone. And as you have seen we continue to invest in our site and when we have extra we invest back into our members. :)
 
2) DishMan Dan, I would LOVE to figure out how she concluded that it was SatelliteGuys where you got the virus since NONE of the ads shown on the site come from SatelliteGuys.
Just speculating, but if the PC tags the date/time of the infection and then she cross-references the browser history, she could get a match. Personally, it sounds like she digs a little too deep to me though... ;)
 
Just went through the site and had it scanned with a number of tools and everything has come up clean.

We have a green light froom McAfee. satelliteguys.us | McAfee SiteAdvisor Software
Green Light from AVG. satelliteguys.us | Safety Ratings | Free web site report from AVG Threat Labs
Clean from WebOfTrust. satelliteguys.us | WOT Reputation Scorecard | WOT (Web of Trust)
Clean Report from Google. Google Safe Browsing diagnostic page for satelliteguys.us
Clean Report from Sucuri. http://sitecheck.sucuri.net/scanner/?scan=http://www.satelliteguys.us

Virus Scanners included...

[TABLE="width: 700"]
[TR]
[TD]AhnLab-V3
[/TD]
[TD]2011.12.26.00
[/TD]
[TD]2011.12.26
[/TD]
[TD]-
[/TD]
[/TR]
[TR="class: odd"]
[TD]AntiVir
[/TD]
[TD]7.11.20.46
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR]
[TD]Antiy-AVL
[/TD]
[TD]2.0.3.7
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR="class: odd"]
[TD]Avast
[/TD]
[TD]6.0.1289.0
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR]
[TD]AVG
[/TD]
[TD]10.0.0.1190
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR="class: odd"]
[TD]BitDefender
[/TD]
[TD]7.2
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR]
[TD]ByteHero
[/TD]
[TD]1.0.0.1
[/TD]
[TD]2011.12.07
[/TD]
[TD]-
[/TD]
[/TR]
[TR="class: odd"]
[TD]CAT-QuickHeal
[/TD]
[TD]12.00
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR]
[TD]ClamAV
[/TD]
[TD]0.97.3.0
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR="class: odd"]
[TD]Commtouch
[/TD]
[TD]5.3.2.6
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR]
[TD]DrWeb
[/TD]
[TD]5.0.2.03300
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR="class: odd"]
[TD]Emsisoft
[/TD]
[TD]5.1.0.11
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR]
[TD]eSafe
[/TD]
[TD]7.0.17.0
[/TD]
[TD]2011.12.25
[/TD]
[TD]-
[/TD]
[/TR]
[TR="class: odd"]
[TD]eTrust-Vet
[/TD]
[TD]37.0.9648
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR]
[TD]F-Prot
[/TD]
[TD]4.6.5.141
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR="class: odd"]
[TD]F-Secure
[/TD]
[TD]9.0.16440.0
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR]
[TD]Fortinet
[/TD]
[TD]4.3.388.0
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR="class: odd"]
[TD]GData
[/TD]
[TD]22
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR]
[TD]Ikarus
[/TD]
[TD]T3.1.1.109.0
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR="class: odd"]
[TD]Jiangmin
[/TD]
[TD]13.0.900
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR]
[TD]K7AntiVirus
[/TD]
[TD]9.120.5786
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR="class: odd"]
[TD]Kaspersky
[/TD]
[TD]9.0.0.837
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR]
[TD]McAfee
[/TD]
[TD]5.400.0.1158
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR="class: odd"]
[TD]McAfee-GW-Edition
[/TD]
[TD]2010.1E
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR]
[TD]Microsoft
[/TD]
[TD]1.7903
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR="class: odd"]
[TD]NOD32
[/TD]
[TD]6747
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR]
[TD]Norman
[/TD]
[TD]6.07.13
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR="class: odd"]
[TD]nProtect
[/TD]
[TD]2011-12-27.01
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR]
[TD]Panda
[/TD]
[TD]10.0.3.5
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR="class: odd"]
[TD]PCTools
[/TD]
[TD]8.0.0.5
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR]
[TD]Prevx
[/TD]
[TD]3.0
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR="class: odd"]
[TD]Rising
[/TD]
[TD]23.90.01.02
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR]
[TD]Sophos
[/TD]
[TD]4.72.0
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR="class: odd"]
[TD]SUPERAntiSpyware
[/TD]
[TD]4.40.0.1006
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR]
[TD]Symantec
[/TD]
[TD]20111.2.0.82
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR="class: odd"]
[TD]TheHacker
[/TD]
[TD]6.7.0.1.365
[/TD]
[TD]2011.12.25
[/TD]
[TD]-
[/TD]
[/TR]
[TR]
[TD]TrendMicro
[/TD]
[TD]9.500.0.1008
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR="class: odd"]
[TD]TrendMicro-HouseCall
[/TD]
[TD]9.500.0.1008
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR]
[TD]VBA32
[/TD]
[TD]3.12.16.4
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR="class: odd"]
[TD]VIPRE
[/TD]
[TD]11312
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR]
[TD]ViRobot
[/TD]
[TD]2011.12.27.4849
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[TR="class: odd"]
[TD]VirusBuster
[/TD]
[TD]14.1.135.0
[/TD]
[TD]2011.12.27
[/TD]
[TD]-
[/TD]
[/TR]
[/TABLE]


Website Scanning Tools included...


URL analysis tool - Result
Avira - Clean site
BitDefender - Clean site
Dr.Web - Clean site
G-Data - Clean site
Malc0de Database - Clean site
MalwareDomainList - Clean site
Opera - Clean site
ParetoLogic - Clean site
Phishtank - Clean site
TrendMicro - Clean site
Websense ThreatSeeker - Clean site
Wepawet - Unrated site

Other Websites Used
VirusTotal - Free Online Virus, Malware and URL Scanner
Site Inspector

So everything is looking good. But as said before even with all checks and security no site is 100% safe unfortunately. We try our best to keep things safe for all of our members! :)
 
Last edited:
I was on here again last night gathering info for someone who wants to force the HD GUI on their DTV DVR. I had the Firmware Watcher site up again also, my antivirus advised me of an attempted intrusion, and then it happened. Something got thru, I was able to get it out with malwarebytes.

*** just this moment as I'm typing this post my antiviris alerts me of an attempt***

Attached is a jpg of the intrusion attempt alert. The only site open this time is this site, thankfully sandboxed this time after last nights fiasco.
 

Attachments

  • DSC_0707[1].JPG
    DSC_0707[1].JPG
    503.8 KB · Views: 184
2) DishMan Dan, I would LOVE to figure out how she concluded that it was SatelliteGuys where you got the virus since NONE of the ads shown on the site come from SatelliteGuys. (And I am not saying you did not get it while visiting here, as I have a report from one ad agency that a 3rd party served McDonnalds ad was serving a payload for about 30 minutes sometime last week, which they quickly caught and disabled.)

All I know is that she goes to these screens where it tells the date and exact time and what website where the virus was pickuped on. Like I said before, I was yelling at my daughter for being on Facebook but I sure had to shut up when the geekette showed me the source was SatelliteGuys and all viruses my computer ever had were picked up here. I do not venture too far online and keep my visits pretty much to: SatelliteGuys, Lyngsat, tvropro's 4DTV site, Ebay (I am a Ebay junkie!!!), email home, You Tube (For music videos and satellite stuff), Chicago Board of Trade and ATIS (Antique Tractor Internet Service). My daughter uses my computer once in a while when I am not on it for Facebook because it works better than hers. My knowledge on those advanced menus is none! I can ask my computer whiz which menus she goes to and email you more info!!
 
Just speculating, but if the PC tags the date/time of the infection and then she cross-references the browser history, she could get a match. Personally, it sounds like she digs a little too deep to me though... ;)

Bingo! That is the basic idea!
Her hands just fly across the keyboard and she brings up all kinds of secret menus and data that I do not understand! :o
 
I was on here again last night gathering info for someone who wants to force the HD GUI on their DTV DVR. I had the Firmware Watcher site up again also, my antivirus advised me of an attempted intrusion, and then it happened. Something got thru, I was able to get it out with malwarebytes.

*** just this moment as I'm typing this post my antiviris alerts me of an attempt***

Attached is a jpg of the intrusion attempt alert. The only site open this time is this site, thankfully sandboxed this time after last nights fiasco.
For those who are NOT having issues, what browser are you using ? I will presume Firefox and Chrome...

Polarys425, my advice is get rid of Internet Explorer. I don't care how much MS claims they've made it more secure.
 
Last edited:
Attached is a jpg of the intrusion attempt alert. The only site open this time is this site, thankfully sandboxed this time after last nights fiasco.
And Scott will re-iterate this yet again, but the issue is from the advertiser, which SatelliteGuys has little control over. All he can do is report/block that particular advertiser, but sadly, only after the fact of being told of an issue like this.

That intrusion is NOT (directly) from SatelliteGuys.
 
For those that seem to be having issue I'd say go out and buy a good Firewall box and it'll most likely stop your problems that your having. Because I'm thinking your just depending on software and it's not working very well. The firewall box will hide your internet connected PC from view and also block anyone testing your port address.
 
Status
Not open for further replies.

Users Who Are Viewing This Thread (Total: 0, Members: 0, Guests: 0)

Who Read This Thread (Total Members: 1)

Top