Parts Catalog Accessories Catalog How To Articles Tech Forums
Call Pelican Parts at 888-280-7799
Shopping Cart Cart | Project List | Order Status | Help



Go Back   PeachParts Mercedes-Benz Forum > General Discussions > Site Feedback

Reply
 
LinkBack Thread Tools Display Modes
  #31  
Old 07-05-2008, 08:03 AM
Chad300tdt's Avatar
Benzless Scoutmaster
 
Join Date: May 2007
Location: North Wales, PA
Posts: 4,001
I was just hijacked again this morning!!!!


I took Evan's advice (Kartek) and switched my "forum skin" to:
low graphics - dialup style (no gallery)

and the redirects stopped for now. Hopefully this crap won't be happening again.

If this doesn't work, you guys will be seeing MUCH less of me in the future.

__________________
Chad
2006 Nissan Pathfinder LE
1998 Acura 3.0 CL
OBK#44
"Pleasure in the job puts perfection in the work." - Aristotle (384-322 B.C.)

SOLD
1985 300TD - Red Dragon
1986 300SDL - Coda
1991 - 300TE
1995 - E320
1985 300CD - Gladys
Reply With Quote
  #32  
Old 07-05-2008, 10:20 AM
Stressed Member
 
Join Date: May 2004
Location: Florida Big Bend region
Posts: 721
Quote:
Originally Posted by iwrock View Post
OK, there is definitely something going on....



It keeps forwarding me to http://66.135.60.166/e010/h.html
Same thing here! To make it happen, though, I had to do both of the following:

(1) switch to the normal ShopForum style (I normally have it set to "low graphics" just because I prefer the cleaner look)
(2) disable Adblock Plus in Firefox.

I'll be curious to know what others find out about this.
Reply With Quote
  #33  
Old 07-05-2008, 10:46 AM
300SD81's Avatar
1981 Mercedes-Benz 300SD
 
Join Date: Aug 2006
Location: University of Georgia
Posts: 1,082
I'm getting it too now. Using developer toolbar to delete/screw with the advertising cookies seems to stop them.


Quote:
Originally Posted by mgburg View Post
As for my computer...if I could find Mr. 80.93.48.89's computer, I'd blast his HD with my 12 guage, then get him on the ground and mash his nads so bad his Grandfather wouldn't be able to have kids...
Can't blast it with a shot gun...but I do have access to a 10Gbit server that most likely has enough power to blast him off the internet...
__________________
Ich liebe meine Autos!

1991 Mercedes-Benz 560SEL | Megasquirt MS3-Pro | 722.6 transmission w/ AMG paddles | Feind Motorsports Sway Bar | Stinger VIP Radar | AntiLaser Priority | PLX Wideband O2 | 150A Alternator | Cat Delete
1981 Mercedes-Benz 300SD | Blown engine, rebuilding someday...
1981 Mercedes-Benz 300SD | Rear ended, retired in garage.
2009 Yamaha AR230HO | Das Boot

Excessive speeding? It ain't excessive till I redline!
Reply With Quote
  #34  
Old 07-05-2008, 11:58 AM
Bill Wood's Avatar
Retired Webmaster
 
Join Date: Mar 1999
Location: Johns Creek, GA, USA
Posts: 5,013
Exclamation Mac / Safari virus

Several Mac/Safari users have emailed me lately about seeing popup ads on our website. We do not have any popup ads on our site.

Evidently, there is a virus currently running around that affects Macs. The virus looks for a Google ad on a website and redirects to another website...usually Russian.

There is a discussion of this exploit over at the Apple Support forums website. Here's a link:
http://discussions.apple.com/thread.jspa?threadID=1574873&stqc=true

The fix mentioned is to use the DNSChanger Removal Tool offered here:
http://macscan.securemac.com/files/DNSChangerRemovalTool.dmg

Since I don't have a Mac I cannot say if the fix works or not.

Here's another article that seems to be related to this issue:
http://www.theregister.co.uk/2008/03/06/googe_iframe_piggybacking/
__________________
Bill Wood - Retired Webmaster
My Personal Website
1998 Mercedes E430
2010 Toyota Sequoia
My Photo Albums
Reply With Quote
  #35  
Old 07-05-2008, 12:59 PM
Bill Wood's Avatar
Retired Webmaster
 
Join Date: Mar 1999
Location: Johns Creek, GA, USA
Posts: 5,013
Lightbulb More info from the SecureMac website...

SecureMac posted this:

1.09.2008 News
SecureMac has released a free utility called DNSChanger Removal Tool to remove the DNSChanger Trojan Horse, also known as OSX.RSPlug.A and OSX/Puper, which has been found on numerous pornographic websites disguising itself as a video codec. Once downloaded and installed, DNSChanger changes the DNS settings on the computer, redirecting websites entered by the user to malicious sites. If personal information is entered on these malicious websites, it can lead to identity theft.

If the DNSChanger trojan horse is detected, DNSChanger Removal Tool will give you the option to remove it. If the DNSChanger trojan horse is detected and removed, you will need to restart your computer to clear out the bad DNS entries added by the DNSChanger Trojan Horse. Download DNSTrojan Removal Tool. This detection and removal is also available in MacScan.
__________________
Bill Wood - Retired Webmaster
My Personal Website
1998 Mercedes E430
2010 Toyota Sequoia
My Photo Albums
Reply With Quote
  #36  
Old 07-05-2008, 01:40 PM
dkveuro's Avatar
Sword of Damocles
 
Join Date: Jun 2003
Location: Here an' there.
Posts: 2,548
Quote:
Originally Posted by mgburg View Post
..................................
As for my computer...if I could find Mr. 80.93.48.89's computer, I'd blast his HD with my 12 guage, then get him on the ground and mash his nads so bad his Grandfather wouldn't be able to have kids...................................

come looking for you, PHYSICALLY, and take some of those actions I suggested above...



I expect you'll get time off for good behavior though .



.
__________________
[http://languageandgrammar.com/2008/01/14/youve-got-problems-not-issues/ ]

"A liberal is someone who feels they owe a great debt to their fellow man, which debt he proposes to pay off with your money."
Reply With Quote
  #37  
Old 07-05-2008, 02:15 PM
iwrock's Avatar
roflmonster
 
Join Date: Nov 2003
Location: Hella NorCal
Posts: 3,313
Quote:
Originally Posted by Webmaster View Post
SecureMac posted this:

1.09.2008 News
SecureMac has released a free utility called DNSChanger Removal Tool to remove the DNSChanger Trojan Horse, also known as OSX.RSPlug.A and OSX/Puper, which has been found on numerous pornographic websites disguising itself as a video codec. Once downloaded and installed, DNSChanger changes the DNS settings on the computer, redirecting websites entered by the user to malicious sites. If personal information is entered on these malicious websites, it can lead to identity theft.

If the DNSChanger trojan horse is detected, DNSChanger Removal Tool will give you the option to remove it. If the DNSChanger trojan horse is detected and removed, you will need to restart your computer to clear out the bad DNS entries added by the DNSChanger Trojan Horse. Download DNSTrojan Removal Tool. This detection and removal is also available in MacScan.
Bill, I did a complete reformat of my Mac last night after installing a new hard drive, and it still did the redirect. It also did the redirect one of my servers web browsers, and that is probably the first time that thing has ever been on the internet.
__________________
-Justin

91 560 SEC AMG - other dogs dd
01 Honda S2000 - dogs dd
07 MB ML320 CDI - dd
16 Lexus IS250 - wifes dd

it's automatic.
Reply With Quote
  #38  
Old 07-05-2008, 03:04 PM
DeliveryValve's Avatar
Chairman of my Benz
 
Join Date: Jun 2006
Location: Central California
Posts: 4,159
OK I was redirected several time today. But I am glad I found this post.

See pic as to where I was redirected.

I have Windows XP running Mozilla.

This issue needs to be fix ASAP!
Attached Thumbnails
My browser is being hijacked by mercedesshop?-mshop_redirect.jpg  
__________________
1983 123.133 California
- GreaseCar Veg System


Reply With Quote
  #39  
Old 07-05-2008, 03:08 PM
Gurkha's Avatar
Satyameva Jayate Ad vitam
 
Join Date: Jun 2003
Location: Boondocks
Posts: 1,026
I visit this forum often and never once have I been redirected. I am on XP64 with Avira and LUA and Opera as my browser, also Ubuntu with Opera.
__________________
99 Gurkha with OM616 IDI turbo

2015 Gurkha with OM616 DI turbo

2014 Rexton W with OM612 VGT
Reply With Quote
  #40  
Old 07-05-2008, 03:08 PM
iwrock's Avatar
roflmonster
 
Join Date: Nov 2003
Location: Hella NorCal
Posts: 3,313
I ran the DNS fixer on my mac, and it came back with nothing wrong.
__________________
-Justin

91 560 SEC AMG - other dogs dd
01 Honda S2000 - dogs dd
07 MB ML320 CDI - dd
16 Lexus IS250 - wifes dd

it's automatic.
Reply With Quote
  #41  
Old 07-05-2008, 03:18 PM
Bill Wood's Avatar
Retired Webmaster
 
Join Date: Mar 1999
Location: Johns Creek, GA, USA
Posts: 5,013
Unhappy Cannot duplicate the problem

So far, I have been unable to duplicate the problem on any of my computers. I don't have a Mac but I do have computers running Windows Vista, XP Pro, Server 2003, Ubuntu and CentOS. Browsers include IE, Firefox and SeaMonkey.

I need specifics to troubleshoot this further:
- Type of computer
- Operating system
- Browser
- URL of page on the forum you were visiting when the redirect occurred
- What exactly were you doing when redirect occured? (ex- searching, posting, editing a post, clicking on an ad, looking at New Posts, etc)
- Which Shop Forum "Style" are you using? (look in the lower left corner of this page) examples- Normal style, Low Graphics-Dialup style.
__________________
Bill Wood - Retired Webmaster
My Personal Website
1998 Mercedes E430
2010 Toyota Sequoia
My Photo Albums
Reply With Quote
  #42  
Old 07-05-2008, 03:28 PM
DeliveryValve's Avatar
Chairman of my Benz
 
Join Date: Jun 2006
Location: Central California
Posts: 4,159
Dell Latitude Laptop

Windows XP

Firefox 2.0.0.1.5

Diesel Forum and the earlier attached pic was redirected from this thread.

Normal Style.

Currently it is not doing it with IE.
__________________
1983 123.133 California
- GreaseCar Veg System


Reply With Quote
  #43  
Old 07-05-2008, 03:37 PM
Bill Wood's Avatar
Retired Webmaster
 
Join Date: Mar 1999
Location: Johns Creek, GA, USA
Posts: 5,013
iFrame redirects

I'm still searching to find out what may be causing these redirect popups. Right now I am researching something called an "iFrame redirect".

More info here:
http://www.securityfocus.com/brief/695

Basically, the attacker uses cached search results to create a redirect.

So far, I can't confirm that this is the cause of the redirect problem some people as having on our website or not.
__________________
Bill Wood - Retired Webmaster
My Personal Website
1998 Mercedes E430
2010 Toyota Sequoia
My Photo Albums
Reply With Quote
  #44  
Old 07-05-2008, 03:42 PM
iwrock's Avatar
roflmonster
 
Join Date: Nov 2003
Location: Hella NorCal
Posts: 3,313
1) Macbook

osX 10.5.4

Safari/IE/Firefox

Normal Style


2) IBM Thinkpad X61

Windows Vista Ultimate

IE7/Firefox

Normal Style


3)Custom Server

Windows Server 2008 Datacenter Edition

IE7 built into server

Normal Style


4) Some HP computer at my friends house

Windows XP Home

IE6

Normal Style


5) Custom Desktop

Windows Vista Ultimate

IE7

Normal Style.
__________________
-Justin

91 560 SEC AMG - other dogs dd
01 Honda S2000 - dogs dd
07 MB ML320 CDI - dd
16 Lexus IS250 - wifes dd

it's automatic.
Reply With Quote
  #45  
Old 07-05-2008, 03:48 PM
Bill Wood's Avatar
Retired Webmaster
 
Join Date: Mar 1999
Location: Johns Creek, GA, USA
Posts: 5,013
Quote:
Originally Posted by iwrock View Post
1) Macbook

osX 10.5.4

Safari/IE/Firefox

Normal Style


2) IBM Thinkpad X61

Windows Vista Ultimate

IE7/Firefox

Normal Style


3)Custom Server

Windows Server 2008 Datacenter Edition

IE7 built into server

Normal Style


4) Some HP computer at my friends house

Windows XP Home

IE6

Normal Style


5) Custom Desktop

Windows Vista Ultimate

IE7

Normal Style.
Are you always logged in as "iwrock" when it happens? Try logging off the Shop Forum and access as a "Guest" and see what happens.

__________________
Bill Wood - Retired Webmaster
My Personal Website
1998 Mercedes E430
2010 Toyota Sequoia
My Photo Albums
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On




All times are GMT -4. The time now is 05:59 AM.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2024, vBulletin Solutions, Inc.
Search Engine Optimization by vBSEO 3.6.0
Copyright 2024 Pelican Parts, LLC - Posts may be archived for display on the Peach Parts or Pelican Parts Website -    DMCA Registered Agent Contact Page