When ever I go to a new page on the forum my computer says that it has found a trojan downloader, exploit, and a worm?\
It only happens on the forum is any one else having the same problem?

http://gmc.yoyogames.com/index.php?showtop...t=0&start=0

PS. Get a real browser (I'd have listed Opera and Chrome too so that nobody could call me an "Firefox fanboy", but I can't be bothered to.)

Get chrome or ff.

Success!

They're better anyways.

Chrome can't load GMC atm becuase of it.

YYG didn't install an IPB patch, therefore there was a MySQL injection.

I got chrome and get the same reports.

edit: my avast! picked something up too

Rofl its hilarious how everyone is freaking out, especially on the Malware thread.

I use INternet explorer and It always worked fine on the forum until this morning

What do you think I said.

Seriosuly, I'm not getting anything with FF.

Just use that.

When ever I go to a new page on the forum my computer says that it has found a trojan downloader, exploit, and a worm?

Stfu and calm down, install a secure browser no more problem.

Wooooow. Just stop posting. This is going to get closed anyway. Just read the Closed malware topic.

This just happened to me.
As soon as I go to the gmc I get virus notifications.

HTML:IFrame-BL [Trj] is the name of the virus that was detected.

And yes I'm Using Firefox 3.

I disabled my anti-virus, hoping that this is just another false alarm like last time.

Wow, Chris Neilson You are either an annoying noob spammer, or your computer had a problem when you posted.

I think its just Avast! That is detecting it. Does anyone here have any different virus scanners and are they getting notifications?

My Avast picked up the virus. It also showed two warnings.
First Warning was when I was trying to access http;//gmc.yoyogames.com


I thaught that was a flase alarm, may be a bug with avast update. So then I added http;//gmc.yoyogames.com to exception list.

Then I tried to access http;//gmc.yoyogames. com again. This time again Avast picked up virus presence and showed the following warning. It showed the possible site that the virus coming from (http://rivatos.net/1.php).



YOYO Staffs, do something.

I think its just avast! Because It just started this morning that there was a new virus definition list update this morning

Did anybody even bother to read the post I linked to?

Detailed explanation: http://gamemakerblog.com/2008/09/07/malware-at-the-gmc/


No. Re-enable it immediately and perform a full system scan.

Get AVG Free on www.download.com. I use it and I don't get the message.
EDIT: click here

Bad move.

Yea I thought so, But last time I complained about a virus from the gmc, everyone just said its not a virus and its a false alarm.

Do not be stupid!

This is not a browser issue.


I can't get it why you people are so obstinate and stupid enough to believe there is one secure browser.
There ARE NONE look at Chrome, it's the latest on security threats; what does it do? It blocks the webpage.
Un_t0uch, please shut up and get the facts right. You can have a thousand virii running without knowing, that doesn't mean they are not there. I've been saying this fking thing all over.
DO NOT shutdown your antivirus or do anything to hide the warnings. Warnings are there to be read. Getting an incompetent browser or antivirus just to hide the messages is unwise and stupid.

As I said previously, you won't find a browser which will show the page correctly by default. Browser are not intelligent enough to find certain exploits. I mean, even we as humans would not have found this if it weren't for the antivirus warning.

Any secure [term used loosely, of course there's no 100% secure browser] browser such as Firefox will not execute the malicious script, even if the malware blacklist is disabled, unlike Internet Explorer.

Get your facts right.

I'm getting warning about malware or viruses or whatever, from both IE and Chrome. Every time I go to a new window on the GMC I get these ****ing errors, luckily my AVG opens up and tells me it moved the virus to the vault.
The overall problem is that the GMC has a virus on it.

Google Chrome

Internet Explorer

Thankfully I have the Google toolbar which isn't letting the iframe load.

FOR THE LOVE OF GOD.

Notice how everyone else using firefox said they havent got anything?

just scanned.

Havent gotten anything.

I dont get messages when I go onto the gmc, but when I go on rivatos.net(whatever that is) it shows thet message.
EDIT: i have firefox

He's right. I am using Firefox and nothing! I'm happy

I bet Opera doesn't have issues either.

I use Norton and Firefox3 and no warnings show up. Then again, Norton is a pile of horse manure.

Well, I don't know what that was all about, but I know one thing. The moderator preview button is still working.


Anyways, the iframe code is visible in the source of the forum. The only people with access or the ability to do anything about that code, are the administrators, and of course they need to determine how it got there in order to keep it from re-appearing.

In the mean time, those worried can just stay away. Those not worried, can continue posting, hopefully about something OTHER than the iframe and any possible trojans/virii. But please avoid making statements such as being safer with a certain browser, or a certain antivirus program. It only leads to arguments, and makes it hard to find any posts in here that are actually informative at all.

You worried about your safety??? Go make a game and come back in a day or two

why isn't this locked?
there was a topic just like this this morning that was closed...

I don't really get you admins. This is a serious safety risk. The ifram that is positioned between the GM home and GM blog links, actually loads a website that contains malware and you just say that we shouldn't worry? And here is a reason why Google Chrome is a little bit safe than FF and IE: Google is constantly scanning the internet and it lists all websites with malware in a database. Since Chrome can communicate with that database and FF and IE not, it is safer because it can easily determine wether a website is safe or not.

ha ha

No the last time you complained about viruses and the GMC, was very different circumstances.

You had a virus, and made the assumption that you got it from the GMC. Even though you had no evidence, and absolutely nobody else was affected or complained.

This topic might finally prove to you, that your previous infection had nothing to do with the GMC. Note, how instantly the whole community was impacted. That didn't happen when you claimed to have gotten a virus from the GMC.

We tried to tell you that had you received a virus from the forums, then others too would have, been presented with the same symptoms. Now do you finally believe us?


So far an admin hasn't commented. What is it about what they haven't said that you don't get.

You do realise that KC LC and t3mp3st, do not have the ability to deal with it. Sandyd was on, but he probably may not have the technical knowledge to deal with it. Do you think that issues like this are solve by clicking the secret Fix Problem button.

People are aware of the security risk, by continuing using the GMC, they assume the risk.

Just because you don't get it with FF3, doesn't mean us IE7 users have to switch over just to come here. That would be like having to be a certain gender or race to visit a restaraunt.

I am getting a few problems. It says that it wants to run the following active X: 'Microsoft works imaging Server', form Microsoft Corporation (unverified publisher). It also asks to run outlook.exe. It came up with a few pop up messages telling me that my browser is running slow because of a script, and some other wierd messages that were in computer syntax.

Weird.. I use norton but it says it has stopped an attack.

Ok...
I'll say this last thing...
What the heck do you think the hacker well do when he gains access to your computer (I'm not saying he will because this is just a minor attack)?
Do you think you'll get a popup "Haha! I got you!"?
There's people who admitted firefox doesn't complain, and they admit they have a crappy antivirus. Does THAT make sense? I mean, who the heck is scanning your computer for virii? Firefox?
Oh come on, Firefox is a notable browser from other browsers, true, but it ain't perfect. Firefox is just a browser not a security suit.

This isn't a matter of being worried; I'm here on my sofa happily arguing with you guys on this issue with 5 browsers at hand. Did I suggest you use one of them? No! That is simply because no browser can do an anitvirus's work.
By the way, if you're happy to stay with it, then do what the heck you want. But I'll tell you one thing: Chrome, IE and Opera all complain. Firefox 3 on my computer is silently getting caching the virus in memory and cleaning it when the page refreshes. Is that good? Yes. Is that secure? No, the virus can still run.

As a web developer and with a keen interest on this subject (having devised some clever systems for attacking) I know what I'm saying about.
Looking at the code here, the virus ain't malicious. The code simply tries loading other pages in different iframes so that it can get information on how your browser sees certain things (for example what your browser sees when on gmail).

This topic should be closed, or merged with the first one.
Guys, I can't see why another one was opened. The first one had clear instructions on how to block this.

Just block the url I found (in the other topic) and block it as KC_LC said.

Edit: DO NOT RUN ANY OF THOSE ACTIVEX
The one Aertcz mentioned is to find devices connected to your network. It is a well known exploit (well to the security people at least ).

I'm not saying you shouldn't worry. I'm saying if you ARE worried, then DON'T be HERE. That would help alleviate that worry.



As far as why I hadn't closed this topic, the existence of the previous topic IS THE REASON.

There is little point to closing this topic, when the second I turn my back, a new one by a new author will spring up. I'd rather 1 topic which I could close later, than a dozen scattered topics to delete later.

This topic can act as a bucket to catch all the posts about it. Much easier to pick through and hand out warnings when all the nonsense is in one place

I dont think its a matter of the browser your using but the anti-virus program you are using...

Edit:
And possibly some toolbars.

Im also getting a virus. I have firefox.
It says
http://gmc.yoyogames.com/index.php?\unp19557678
I tried visiting other urls but it always adds \unp19557678 and says its a virus.

I am using avast

Well I use it and I do get the message, so don't necessarily go round telling everyone to go get it without evidence it actually helps.

Also can everyone stop using this to attack Internet Explorer and advertise flaming FireFox, it's evidently not a broswer issue and I certainly don't think you should be telling people to go and download it and then everything will be alright. Stop exploiting a problem to get everyone round to your way of doing things, it's frankly a bit pathetic..

I am just saying what i have, and i dont get the message

Agreed. Firefox 3, and I installed Avast because of this epidemic, and I haven't found ANYTHING.
Funny too, since I haven't had an antivirus in about 6 months...

If you don't get a message bikekid, that's bad. It means that you have no antivirus or anti-malware software that is able to detect it. It means your computer is unprotected and you've likely already got the virus running on your computer. You should make sure your AVG anti-virus definitions are up to date. This particular malware seems to be relatively new and it appears that only those who have up to date anti-virus software are receiving warnings.

t3mp3st - Very funny one and you are of course right! Genius! That's why you were appointed mod I guess .

Shinig_Saber - You do know that you have to restart your computer for Avast to work correctly? Just make sure you did that ok?

pythonpoole - Hope it's spelled right Can't agree less.

masterofhisownd... - Some people tend to assume that seeing "Yeah this is more secure" means a thing.Just hope this gets fixed asap and people get to the normal flow.

See you guys!
Fed up of cleaning my cache. I'll be back soon in some time.
And I suggest you do the same.
The admins has been alerted about this (by our various tallented mods) and some external help from the discoverers .

Regards,
Christian V. Sciberras

Avast pops up and says the same thing for me.

Oh yeah- I'm using Opera now because something seriously weird happened to I.E when I was on the GMC. 

Firefox sucks, use Opera, it's the best and fastest internet browser out there.

Edit: never saw your post saying you already use Opera, sorry haha.

It's funny how everyone is panicking

Luckily, it seems the almighty Mark Overmars is on the case Well - he's reading this topic anyways..

I have Nortan, and AT&T Yahoo Web Browser, and I am getting the same thing. Please try and resolve this issue!

My McAfee just found a few scripts and Trojan downloaders. I feel great now considering that I have banking information on my computer and college things on my computer that could get messed up by this.

My anti-virus is Threat Fire and when it detects something it asks me if i want to remove it or let it pass. but i haven't seen any warning or messages telling me that there is something harmful.

I don't know what topic you're reading, but very few people are Panicking.