Author Topic: What is this IR-type-y board doing inside of my set-top-box?  (Read 3166 times)

0 Members and 1 Guest are viewing this topic.

Offline CherryDTTopic starter

  • Contributor
  • Posts: 10
  • Country: at
What is this IR-type-y board doing inside of my set-top-box?
« on: February 02, 2021, 01:21:11 pm »
Does anyone have a clue what this PCB is doing in my set-top-box (behind half-transparent plastic)? It features an FPGA, a shielded IR receiver and 4 LEDs (probably IR as well). - Note that there is another IR receiver elsewhere, next to the display, so I don't think this board is responsible for receiving remote control signals (and also why would it need LEDs then). 🤔



Thank you :)

--

EDIT: The device is white-labelled and marketed as "A1 Mediabox Recorder" but it seems in reality it's a TLA-5720SWFX by Advanced Digital Broadcast (sorry I should have mentioned that from the start). I wasn't able to find much information about it online.

Also, some people got a weird alert about my website which hosts this image (the original link was this), so in case you trust Dropbox more, use this link: https://www.dropbox.com/s/tdznqb2uwg20cm9/2020-10-04%2019.06.46.jpg?dl=0
« Last Edit: February 09, 2021, 10:13:52 am by CherryDT »
 

Offline hexreader

  • Frequent Contributor
  • **
  • Posts: 272
  • Country: england
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #1 on: February 02, 2021, 02:18:50 pm »
Wild guess only....

Is it for detecting gestures - like X-Box does?

Control your box just by moving your hands.


X box uses IR emitters like that, but the receiver is an IR sensitive camera, not IR receiver.
« Last Edit: February 02, 2021, 02:20:58 pm by hexreader »
 

Offline Benta

  • Super Contributor
  • ***
  • Posts: 6420
  • Country: de
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #2 on: February 02, 2021, 05:06:38 pm »
Could be for viewer presence detection. Not commonly used in Europe, but very common in the US for the Nielsen ratings.
 

Offline ConKbot

  • Super Contributor
  • ***
  • Posts: 1400
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #3 on: February 03, 2021, 09:30:27 pm »
Repeater so you can control your TV with the set top box remote without having to program the remote?  If you dump enough IR out forwards, the reflection/scattering on the far wall should be enough to signal the TV?
 

Offline Benta

  • Super Contributor
  • ***
  • Posts: 6420
  • Country: de
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #4 on: February 03, 2021, 10:42:52 pm »
Repeater so you can control your TV with the set top box remote without having to program the remote?  If you dump enough IR out forwards, the reflection/scattering on the far wall should be enough to signal the TV?

Why would that function need a receiver?

 

Offline thinkfat

  • Supporter
  • ****
  • Posts: 2161
  • Country: de
  • This is just a hobby I spend too much time on.
    • Matthias' Hackerstübchen
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #5 on: February 03, 2021, 10:50:44 pm »
Existence of a Spartan FPGA suggests there's some signal processing going on. Maybe each of the LEDs is modulated differently and you can infer an object position from the reflected signal returning to the single receiver?
Everybody likes gadgets. Until they try to make them.
 

Offline NiHaoMike

  • Super Contributor
  • ***
  • Posts: 9320
  • Country: us
  • "Don't turn it on - Take it apart!"
    • Facebook Page
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #6 on: February 03, 2021, 11:09:15 pm »
Could it be a transceiver for IR headsets?
Cryptocurrency has taught me to love math and at the same time be baffled by it.

Cryptocurrency lesson 0: Altcoins and Bitcoin are not the same thing.
 

Offline pardo-bsso

  • Regular Contributor
  • *
  • Posts: 235
  • Country: ar
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #7 on: February 04, 2021, 01:43:54 am »
Do you have more data on the device (maker, model...)

Perhaps the same or a similar one is on the fcc database and that should have details about it's internal operation.
 

Offline tom66

  • Super Contributor
  • ***
  • Posts: 7334
  • Country: gb
  • Electronics Hobbyist & FPGA/Embedded Systems EE
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #8 on: February 04, 2021, 09:07:43 am »
Perhaps it's used to estimate the size of the room - the light pulses are transmitted and the return time is measured. This is then used to ... do market research,  or perhaps less nefariously alter the surround sound settings?

It is a rather peculiar board and the FPGA on there suggests it was relatively low volume which does align more with the idea of market research / Nielsen ratings. 
 

Offline Ranayna

  • Frequent Contributor
  • **
  • Posts: 983
  • Country: de
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #9 on: February 04, 2021, 11:29:17 am »
Weren't there some shenanigans going on, regarding the number of people watching something?
So that the "Rights Holders" can stop a stream when too many people are present in a room? Or ask you to pay more money?

Maybe that is some early implementation of something like that.  Please post the model of the set top box.
 

Offline ConKbot

  • Super Contributor
  • ***
  • Posts: 1400
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #10 on: February 04, 2021, 12:16:21 pm »
Repeater so you can control your TV with the set top box remote without having to program the remote?  If you dump enough IR out forwards, the reflection/scattering on the far wall should be enough to signal the TV?

Why would that function need a receiver?
Regular IR remote for the set top box, setup to have spacing between each "burst" of the code for the button you're pushing, that includes power, volume up/down and tv power buttons.  You configure what TV you have in the set top box menu, so volume and tv power on button trigger the set top box to transmit the correct codes for volume up/down/power for the TV between the bursts  of the incoming code.
I know HDMI has CEC to handle this kind of functionality, but I haven't seen that working very well between different brands of devices. But then again, I haven't bought a tV in 8-9 years, so maybe CEC over HDMI has improved.
 

Offline PlainName

  • Super Contributor
  • ***
  • Posts: 7508
  • Country: va
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #11 on: February 04, 2021, 12:20:40 pm »
Have to warn y'all that Bitdefender is popping up on this page with:

Quote
Infected web resource detected
now

Feature:
Online Threat Prevention

We blocked this dangerous page for your protection:
https://cherryshare.at/
Accessed by: waterfox.exe
Dangerous pages attempt to install software that can harm the device, gather personal information or operate without your consent.

OP pops up here out of the blue, dodgy web link, uh-huh...
 
The following users thanked this post: hexreader, MK14, Syntax Error

Offline Syntax Error

  • Frequent Contributor
  • **
  • Posts: 584
  • Country: gb
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #12 on: February 04, 2021, 12:59:57 pm »
Same suspicious activity noted here :--
Possible compro domain?
SSL certificate does not verify.
Lock & remove post <  :bullshit:
 

Offline tom66

  • Super Contributor
  • ***
  • Posts: 7334
  • Country: gb
  • Electronics Hobbyist & FPGA/Embedded Systems EE
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #13 on: February 04, 2021, 05:09:07 pm »
It's a file sharing site, if it didn't have some kind of virus uploaded at some point I'd be surprised!
 

Offline Ranayna

  • Frequent Contributor
  • **
  • Posts: 983
  • Country: de
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #14 on: February 05, 2021, 11:06:49 am »
Well, if it *is* spam, it is exceptionally well tailored spam.
I also klicked on the embedded image, expecting it to be embedded from imgur. Only when i saw the loading animation i closed the new tab before it finished loading. Then i noticed the URL...
That, combined with the username, the fact that the OP is a new account and has not posted again makes it quite likely to really be spam...
 

Offline thinkfat

  • Supporter
  • ****
  • Posts: 2161
  • Country: de
  • This is just a hobby I spend too much time on.
    • Matthias' Hackerstübchen
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #15 on: February 05, 2021, 11:18:03 am »
Goes to show that social engineering also works with the technically savvy. You just need a different bait.
Everybody likes gadgets. Until they try to make them.
 

Offline Syntax Error

  • Frequent Contributor
  • **
  • Posts: 584
  • Country: gb
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #16 on: February 05, 2021, 03:18:39 pm »
Possibly, I suspect the server, or some DNS shadow, runs a suspicious http-request script that's looking for certain combinations of user-agent, referer and cookies.

A hypothetical attack may go like this: First browser http request, and the server responds with an image, but sets the cache expiry to one minute. After a minute, the user clicks on the image and, as the browser no longer has a valid cached copy, raises a second http request with the server. Server knows the IP has already been seen, so it checks if the user agent matches a known vulnerability and if so, sends a malware payload. Otherwise, the server returns the same image but, with no cache expiry; hence so no-one else notices. This is only a theoretical attack, which I have not created in a lab condition.

On a forensic note, in linux use 'wget' to simulate different browser types. E.g. a Chrome browser with different OS versions, or Internet Explorer with a variable referer strings. Thus a remote server thinks it's dealing with IE when it's not. Record returned responses with 'pcap' and use Wireshark to identify any dubious traffic. Alternatively, use 'netcat' or 'nc' to the same effect.
 

Offline CherryDTTopic starter

  • Contributor
  • Posts: 10
  • Country: at
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #17 on: February 09, 2021, 08:52:43 am »
This is my own filesharing site, targeted at a certain community mostly (RPG Maker) and used by just a handful of people who prefer a trustworthy site by a guy they know personally over companies like Dropbox or Google nowadays. Before I gave it its own domain a few months ago and rebuilt it with a bit more modern technologies, the domain was share.cherrytree.at and if you google that you'll see it's been around for ages and used in many forum posts in that community.

I don't see what risk you are getting reported there, it's supposed to be a "like in the old times" site which doesn't use any trackers or analytics or anything like that, there is no third party code loaded even. :| And it's running Caddy in a version which I compiled myself (which gets the SSL certificate from LetsEncrypt (R3)) and a pretty basic node.js application on top, with the frontend written with Svelte. Do you have any more details about what is supposedly wrong about my page? O_o And you mentioned SSL doesn't verify - but it sure does, I never encountered any issues with it - do you have a screenshot of what's shown as a problem with the certificate? It should deliver a certificate by R3. Domain, DNS and the cloud server itself (which is a container) are hosted by the German webhosting company Dogado which I use and trust for many years. I'm at a loss now...

DNS is supposed to resolve to 89.22.111.7 and 2a02:2b80:1:0:5652::693 by the way. And I ran a check in a DNS propagation checker now and I didn't see any country in which it's resolved to anything else.

Also @Syntax Error the link and the image aren't the same URL, my site has a feature exactly for forum posts like this, where it generates a nice (url)(img)(/url) combination for you which delivers a thumbnail as image and links to the page with the full-size image. (Why not linking to the image directly? Well in this case here it doesn't matter much but in general it's designed to load the page because it contains metadata such as the author and the upload date, and the author can also optinally set a title and a description which would be shown on the page as well.)

Anyway I submitted a false positive report with Bitdefender now, and I swapped the link in the post for a Dropbox link (which I personally trust less than my own site, but I understand it'll be different for you)...

---

Anyway thanks for your feedback, these are all pretty interesting possibilities. The device did have a way to control the TV's on/off and volume functions but I thought this was done through the remote control itself. If there was any gesture thing, it wasn't used with this software version, that's why I was very surprised when I found this weird board. The device is white-labelled and marketed as "A1 Mediabox Recorder" but it seems in reality it's a TLA-5720SWFX by Advanced Digital Broadcast (sorry I should have mentioned that from the start). I wasn't able to find much information about it online.

I was originally taking it apart because I wanted to see if I can access my recordings on the harddisk of the device, since it appears that after I cancelled my contract, I lost access to my recordings too (I hate this sort of thing). But I failed with that as well because the harddisk, once connected to the computer via SATA, didn't even register at all, and I couldn't figure out why.

---

Quote
OP pops up here out of the blue
Actually I had an account since June 2016 and I still have the welcome email but for some reason the account seems to have been deleted because I had to create a new one (and I was able to do so with the same username). And I'm a Patreon supporter, but I don't know how to get the "supporter" title (if that's even related) - but I also asked about the uRuler (which was written on Patreon I'd get) many times on different channels over the years and never got an answer, let alone the uRuler itself; and now this thread makes me look like a spammer, and by the way I'm writing this edit for the 2nd time because previously I was dropped to an empty "reply" page instead of getting my edit saved - so it seems the EEVBlog universe is conspiring against me maybe ;) - Anyway, sorry, I could have introduced myself better. I'm a 28yo software developer from Austria who is also into tinkering with electronics and I've been enjoying the EEVBlog videos for many years.
« Last Edit: February 09, 2021, 09:56:30 am by CherryDT »
 

Offline Syntax Error

  • Frequent Contributor
  • **
  • Posts: 584
  • Country: gb
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #18 on: February 09, 2021, 10:08:42 am »
 

Offline CherryDTTopic starter

  • Contributor
  • Posts: 10
  • Country: at
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #19 on: February 09, 2021, 10:12:57 am »
Yes but I don't understand who would be the bad actor then? Dogado? (Which is unlikely unless they got hacked themselves, I guess.) Unfortunately I didn't get any actual evidence (bad IP plus info which server resolved it) so far so I don't even know where to look or whom to report it to.

Normally I understand DNS cache poisioning to happen in a local network with the possibility to inject some malicious UDP packages, but unless both you and dunkemhigh are on the same network (are you?), that's not a logical explanation for both of you seeing an issue. Do you remember what error you got for the SSL certificate, was it a wrong common name, and do you happen to remember which?

EDIT: Hm actually I'm starting to get another thought. You said you saw the same suspicious activity, were you referring to a BitDefender alert as well? In that case, the SSL error could have an even simpler explanation - Bitdefender would intercept the request and return its own warning page probably, which however won't have a valid certificate because it can't impersonate cherryshare.at. I get the same with Malwarebytes - if the web protection intercepts a request, I see a Malwarebytes page if it was HTTP, but I get an SSL error if it was HTTPS. In that case the only issue would be a false positive of BitDefender (for whatever reason), and the SSL issue would be just a symptom of that... Is that possible?
« Last Edit: February 09, 2021, 10:27:58 am by CherryDT »
 

Offline tom66

  • Super Contributor
  • ***
  • Posts: 7334
  • Country: gb
  • Electronics Hobbyist & FPGA/Embedded Systems EE
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #20 on: February 09, 2021, 01:59:20 pm »
Any info on the rest of the PCB, perhaps a label as to what it might connect to?
Pictures of the whole set-top box internals including the main board ... I used to work for a company that 'made' these, actually most of them were OEMs/3rd parties and we did our software for them, so I might recognise it.
 

Offline CherryDTTopic starter

  • Contributor
  • Posts: 10
  • Country: at
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #21 on: February 09, 2021, 02:23:20 pm »
Full assembly: https://www.dropbox.com/s/4h5v4tkugyq41wu/2021-02-09%2015.17.19.jpg?dl=0
Back side of the mystery board: https://www.dropbox.com/s/4h5v4tkugyq41wu/2021-02-09%2015.17.19.jpg?dl=0
Main board: https://www.dropbox.com/s/xnvaykt8y193fi8/2021-02-09%2015.20.51.jpg?dl=0
Connector (it just says CN15): https://www.dropbox.com/s/xnvaykt8y193fi8/2021-02-09%2015.20.51.jpg?dl=0
Area of the board around the connector (from the other side of the shield): https://www.dropbox.com/s/63pjiluvgy25eio/2021-02-09%2015.21.36.jpg?dl=0

Also, when you disconnect most of the stuff from the main board incl. the harddisk and attempt to start it, you get a screen that says DIGITAL RECEIVER LOADER - ADB 1.2.60F-A03-0X71DD L.1 B.7102.9206 - PLEASE WAIT - SOFTWARE UPGRADE which after a while just reboots again. Maybe this identifier tells you something... Thank you!
« Last Edit: February 09, 2021, 03:11:33 pm by CherryDT »
 

Offline AndyC_772

  • Super Contributor
  • ***
  • Posts: 4315
  • Country: gb
  • Professional design engineer
    • Cawte Engineering | Reliable Electronics
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #22 on: February 09, 2021, 03:06:55 pm »
I'd start with a super low tech approach to seeing what it's doing.

Cover it with duct tape and see what, if anything, stops working.

Offline CherryDTTopic starter

  • Contributor
  • Posts: 10
  • Country: at
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #23 on: February 09, 2021, 03:08:24 pm »
That's a cool idea! Unfortunately I can't really do that because the device is no longer operational after I cancelled my TV contract. (I can't even access my recordings on the harddisk, which was the reason I took it apart in the first place, but unfortunately I didn't succeed with that either.)
 

Offline tom66

  • Super Contributor
  • ***
  • Posts: 7334
  • Country: gb
  • Electronics Hobbyist & FPGA/Embedded Systems EE
Re: What is this IR-type-y board doing inside of my set-top-box?
« Reply #24 on: February 09, 2021, 03:58:59 pm »
Definitely not one I recognise.

The SmarDTV chip is made by a prior employer, but IIRC it's just a customised Philips crypto MCU + card reader device with some Kudelski cryptography secrets on it.
 


Share me

Digg  Facebook  SlashDot  Delicious  Technorati  Twitter  Google  Yahoo
Smf