This is a read-only archive of the old Scratch 1.x Forums.
Try searching the current Scratch discussion forums.

#1 2012-12-20 06:44:50

rdococ
Scratcher
Registered: 2009-10-11
Posts: 1000+

The Block Library Malware Warning - Google Chrome...

Whenever I try to access the Advanced Topics first page of The Block Library, I get a malware warning from Google Chrome. I am using Windows 7 Professional 32-bit, Google Chrome Version 23.0.1271.97 m.

The malware seems to be some sort of free image hosting website.

I'm wondering if it's just me or if that thread does link to malware-containing sites, whether as an image URL or a direct link.

Offline

 

#2 2012-12-20 07:37:28

LS97
Scratcher
Registered: 2009-06-14
Posts: 1000+

Re: The Block Library Malware Warning - Google Chrome...

I think Google just identified freeimagehosting.net as a malware site, so all pages with images from there report malware.

Offline

 

#3 2012-12-20 10:55:58

DigiTechs
Scratcher
Registered: 2011-04-30
Posts: 500+

Re: The Block Library Malware Warning - Google Chrome...

Yeah, google chrome seems to be doing that. Use IE for now, it doesn't happen on IE.
EDIT: It looks somthing like this, right?

Google Chrome wrote:

Danger: Malware Ahead!
Google Chrome has blocked access to this page on scratch.mit.edu.
Content from www.freeimagehosting.net, a known malware distributor, has been inserted into this web page. Visiting this page now is very likely to infect your computer with malware.
Malware is malicious software that causes things like identity theft, financial loss, and permanent file deletion

Last edited by DigiTechs (2012-12-20 11:02:04)


I'm back.
Maybe.

Offline

 

#4 2012-12-20 12:34:29

LS97
Scratcher
Registered: 2009-06-14
Posts: 1000+

Re: The Block Library Malware Warning - Google Chrome...

DigiTechs wrote:

Yeah, google chrome seems to be doing that. Use IE for now, it doesn't happen on IE.
EDIT: It looks somthing like this, right?

Google Chrome wrote:

Danger: Malware Ahead!
Google Chrome has blocked access to this page on scratch.mit.edu.
Content from www.freeimagehosting.net, a known malware distributor, has been inserted into this web page. Visiting this page now is very likely to infect your computer with malware.
Malware is malicious software that causes things like identity theft, financial loss, and permanent file deletion

I don't think that just because IE doesn't know that the site is causing malware using it will fix the problem  tongue

Offline

 

#5 2012-12-20 12:58:17

Firedrake969
Scratcher
Registered: 2011-11-24
Posts: 1000+

Re: The Block Library Malware Warning - Google Chrome...

DigiTechs wrote:

Yeah, google chrome seems to be doing that. Use IE for now, it doesn't happen on IE.
EDIT: It looks somthing like this, right?

Google Chrome wrote:

Danger: Malware Ahead!
Google Chrome has blocked access to this page on scratch.mit.edu.
Content from www.freeimagehosting.net, a known malware distributor, has been inserted into this web page. Visiting this page now is very likely to infect your computer with malware.
Malware is malicious software that causes things like identity theft, financial loss, and permanent file deletion

But if I go to the site, it's happy.


Click the sign.
https://s3.amazonaws.com/eterna/eterna2/logo2.png

Offline

 

#6 2012-12-20 14:01:07

joletole
Scratcher
Registered: 2011-02-20
Posts: 1000+

Re: The Block Library Malware Warning - Google Chrome...

I got that too! I wonder what's going on.

Offline

 

#7 2012-12-20 14:31:25

DigiTechs
Scratcher
Registered: 2011-04-30
Posts: 500+

Re: The Block Library Malware Warning - Google Chrome...

Use FireFox or IE or Safari, it should work fine.


I'm back.
Maybe.

Offline

 

#8 2012-12-27 12:51:42

rdococ
Scratcher
Registered: 2009-10-11
Posts: 1000+

Re: The Block Library Malware Warning - Google Chrome...

DigiTechs wrote:

Use FireFox or IE or Safari, it should work fine.

It's a malware warning, not an error or problem. Not only can you proceed anyway with caution on Google Chrome, but malware harms your computer's stability and I'd suggest not to use a different web browser.

Malware warnings should be noticed; they help to prevent your computer from losing its stability.

Do NOT use a different browser and do NOT proceed until the Scratch Team sorts this out.
I repeat: Do NOT use a different browser and do NOT proceed until the Scratch Team sorts this out.

Offline

 

#9 2012-12-27 13:00:37

zippynk
Scratcher
Registered: 2011-07-23
Posts: 500+

Re: The Block Library Malware Warning - Google Chrome...

Yeah. One solution would be to disable [img] tags temporarily until the block library can update their images, then re-enable them afterward.


https://dl.dropbox.com/u/60598636/trifocal_interlude_soundcloud_button.png

Offline

 

#10 2012-12-27 13:29:05

veggieman001
Scratcher
Registered: 2010-02-20
Posts: 1000+

Re: The Block Library Malware Warning - Google Chrome...

It does look like there's actually malware, but I'm not sure why/how the Scratch Team would work that out.


Posts: 20000 - Show all posts

Offline

 

#11 2012-12-27 13:36:33

jvvg
Scratcher
Registered: 2008-03-26
Posts: 1000+

Re: The Block Library Malware Warning - Google Chrome...

veggieman001 wrote:

It does look like there's actually malware, but I'm not sure why/how the Scratch Team would work that out.

It looks like there's malware on mine...

What happened when Google visited this site?
Of the 275 pages we tested on the site over the past 90 days, 26 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2012-12-27, and the last time suspicious content was found on this site was on 2012-12-25.
Malicious software includes 19 trojan(s), 17 exploit(s). Successful infection resulted in an average of 4 new process(es) on the target machine.

Malicious software is hosted on 9 domain(s), including hypjdxv.almostmy.com/, wcqsljk.mynumber.org/, tlcebdw.almostmy.com/.

8 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including vqqkzqqx.mynumber.org/, wpzcebz.almostmy.com/, icoxxb.almostmy.com/.

This site was hosted on 2 network(s) including AS36351 (SOFTLAYER), AS15169 (Google Internet Backbone).


http://tiny.cc/zwgbewhttp://tiny.cc/e1gbewhttp://tiny.cc/zygbewhttp://tiny.cc/izgbew
Goodbye, Scratch 1.4  sad                                                        Hello Scratch 2.0!  smile

Offline

 

#12 2012-12-27 13:40:59

veggieman001
Scratcher
Registered: 2010-02-20
Posts: 1000+

Re: The Block Library Malware Warning - Google Chrome...

jvvg wrote:

veggieman001 wrote:

It does look like there's actually malware, but I'm not sure why/how the Scratch Team would work that out.

It looks like there's malware on mine...

What happened when Google visited this site?
Of the 275 pages we tested on the site over the past 90 days, 26 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2012-12-27, and the last time suspicious content was found on this site was on 2012-12-25.
Malicious software includes 19 trojan(s), 17 exploit(s). Successful infection resulted in an average of 4 new process(es) on the target machine.

Malicious software is hosted on 9 domain(s), including hypjdxv.almostmy.com/, wcqsljk.mynumber.org/, tlcebdw.almostmy.com/.

8 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including vqqkzqqx.mynumber.org/, wpzcebz.almostmy.com/, icoxxb.almostmy.com/.

This site was hosted on 2 network(s) including AS36351 (SOFTLAYER), AS15169 (Google Internet Backbone).

That's why I said it does look like it.


Posts: 20000 - Show all posts

Offline

 

#13 2012-12-27 13:42:31

jvvg
Scratcher
Registered: 2008-03-26
Posts: 1000+

Re: The Block Library Malware Warning - Google Chrome...

veggieman001 wrote:

jvvg wrote:

veggieman001 wrote:

It does look like there's actually malware, but I'm not sure why/how the Scratch Team would work that out.

It looks like there's malware on mine...

What happened when Google visited this site?
Of the 275 pages we tested on the site over the past 90 days, 26 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2012-12-27, and the last time suspicious content was found on this site was on 2012-12-25.
Malicious software includes 19 trojan(s), 17 exploit(s). Successful infection resulted in an average of 4 new process(es) on the target machine.

Malicious software is hosted on 9 domain(s), including hypjdxv.almostmy.com/, wcqsljk.mynumber.org/, tlcebdw.almostmy.com/.

8 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including vqqkzqqx.mynumber.org/, wpzcebz.almostmy.com/, icoxxb.almostmy.com/.

This site was hosted on 2 network(s) including AS36351 (SOFTLAYER), AS15169 (Google Internet Backbone).

That's why I said it does look like it.

Oops. I misread.  tongue


http://tiny.cc/zwgbewhttp://tiny.cc/e1gbewhttp://tiny.cc/zygbewhttp://tiny.cc/izgbew
Goodbye, Scratch 1.4  sad                                                        Hello Scratch 2.0!  smile

Offline

 

#14 2012-12-27 16:47:00

joefarebrother
Scratcher
Registered: 2011-04-08
Posts: 1000+

Re: The Block Library Malware Warning - Google Chrome...

veggieman001 wrote:

It does look like there's actually malware, but I'm not sure why/how the Scratch Team would work that out.

Tell them?


My latest project is called http://tinyurl.com/d2m8hne! It has http://tinyurl.com/d395ygk views, http://tinyurl.com/cnasmt7 love-its, and http://tinyurl.com/bwjy8xs comments.
http://tinyurl.com/756anbk   http://tinyurl.com/iplaychess

Offline

 

#15 2012-12-31 07:16:48

DigiTechs
Scratcher
Registered: 2011-04-30
Posts: 500+

Re: The Block Library Malware Warning - Google Chrome...

It's not the ST's fault if anyone complains (quoting someone now):

rdococ wrote:

Do NOT use a different browser and do NOT proceed until the Scratch Team sorts this out.
I repeat: Do NOT use a different browser and do NOT proceed until the Scratch Team sorts this out.

It's just Google Chrome being extra-safe. There's no malware on the block libary thread being hosted AT ALL, so you don't need to worry.


I'm back.
Maybe.

Offline

 

#16 2012-12-31 11:15:39

LS97
Scratcher
Registered: 2009-06-14
Posts: 1000+

Re: The Block Library Malware Warning - Google Chrome...

Actually, you can't be sure of that.
Any request you send to a site allows the server to execute whatever kind of code it wants, and (I'm not an expert in malware here, but) possibly even execute something on your computer.

Offline

 

#17 2012-12-31 11:23:03

GP1
Scratcher
Registered: 2009-07-06
Posts: 1000+

Re: The Block Library Malware Warning - Google Chrome...

I don't get that warning. I only got it once, it was because of one guys signature in a thread. I clicked proceed anyway and now it doesn't show anymore.


I am currently http://blocks.scratchr.org/API.php?user=GP1&action=onlineStatus&type=imagehttp://blocks.scratchr.org/API.php?user=GP1&action=onlineStatus&type=text and I finally got over 1000 posts.

Offline

 

#18 2012-12-31 11:31:22

LS97
Scratcher
Registered: 2009-06-14
Posts: 1000+

Re: The Block Library Malware Warning - Google Chrome...

GP1 wrote:

I don't get that warning. I only got it once, it was because of one guys signature in a thread. I clicked proceed anyway and now it doesn't show anymore.

...probably because you clicked proceed anyway  tongue

Offline

 

#19 2012-12-31 11:57:36

GP1
Scratcher
Registered: 2009-07-06
Posts: 1000+

Re: The Block Library Malware Warning - Google Chrome...

LS97 wrote:

GP1 wrote:

I don't get that warning. I only got it once, it was because of one guys signature in a thread. I clicked proceed anyway and now it doesn't show anymore.

...probably because you clicked proceed anyway  tongue

Yeah, but my point us that it hadn't come back. It just keeps ignoring the site. Its a way to fix it, so chrome will not display it anymore.


I am currently http://blocks.scratchr.org/API.php?user=GP1&action=onlineStatus&type=imagehttp://blocks.scratchr.org/API.php?user=GP1&action=onlineStatus&type=text and I finally got over 1000 posts.

Offline

 

#20 2012-12-31 12:48:57

whizzer
Scratcher
Registered: 2008-05-27
Posts: 500+

Re: The Block Library Malware Warning - Google Chrome...

GP1 wrote:

LS97 wrote:

GP1 wrote:

I don't get that warning. I only got it once, it was because of one guys signature in a thread. I clicked proceed anyway and now it doesn't show anymore.

...probably because you clicked proceed anyway  tongue

Yeah, but my point us that it hadn't come back. It just keeps ignoring the site. Its a way to fix it, so chrome will not display it anymore.

IT'S NOT A BUG. YOU CAN'T "FIX" IT. IT'S A WARNING.


http://i46.tinypic.com/33df6me.png I'm whizzer0 for all things Minecraft.

Offline

 

#21 2012-12-31 16:37:53

rdococ
Scratcher
Registered: 2009-10-11
Posts: 1000+

Re: The Block Library Malware Warning - Google Chrome...

whizzer wrote:

GP1 wrote:

LS97 wrote:


...probably because you clicked proceed anyway  tongue

Yeah, but my point us that it hadn't come back. It just keeps ignoring the site. Its a way to fix it, so chrome will not display it anymore.

IT'S NOT A BUG. YOU CAN'T "FIX" IT. IT'S A WARNING.

Right. This does not need to be fixed. In fact, to help prevent your computer from being compromised, I'd prefer you don't proceed.

Offline

 

#22 2013-01-01 00:41:10

Hardmath123
Scratcher
Registered: 2010-02-19
Posts: 1000+

Re: The Block Library Malware Warning - Google Chrome...

LS97 wrote:

Actually, you can't be sure of that.
Any request you send to a site allows the server to execute whatever kind of code it wants, and (I'm not an expert in malware here, but) possibly even execute something on your computer.

No, it can only execute code on the servers. On the client side, the only thing you can execute is (harmless!) JavaScript.

Unless it downloads something automatically (which is possible), in which case you will need to delete the downloaded file. But just viewing an image cannot do that, since when you view an image, all that happens is that you send a request to the website, and the website generates/retrieves the image and sends it back.  smile


Hardmaths-MacBook-Pro:~ Hardmath$ sudo make $(whoami) a sandwich

Offline

 

#23 2013-01-01 00:43:12

Laternenpfahl
Scratcher
Registered: 2011-06-24
Posts: 1000+

Re: The Block Library Malware Warning - Google Chrome...

Hardmath123 wrote:

LS97 wrote:

Actually, you can't be sure of that.
Any request you send to a site allows the server to execute whatever kind of code it wants, and (I'm not an expert in malware here, but) possibly even execute something on your computer.

No, it can only execute code on the servers. On the client side, the only thing you can execute is (harmless!) JavaScript.

Unless it downloads something automatically (which is possible), in which case you will need to delete the downloaded file. But just viewing an image cannot do that, since when you view an image, all that happens is that you send a request to the website, and the website generates/retrieves the image and sends it back.  smile

File Fuzzing?


http://i46.tinypic.com/6yd4c0.png

Offline

 

#24 2013-01-01 15:05:50

LS97
Scratcher
Registered: 2009-06-14
Posts: 1000+

Re: The Block Library Malware Warning - Google Chrome...

Hardmath123 wrote:

LS97 wrote:

Actually, you can't be sure of that.
Any request you send to a site allows the server to execute whatever kind of code it wants, and (I'm not an expert in malware here, but) possibly even execute something on your computer.

No, it can only execute code on the servers. On the client side, the only thing you can execute is (harmless!) JavaScript.

Unless it downloads something automatically (which is possible), in which case you will need to delete the downloaded file. But just viewing an image cannot do that, since when you view an image, all that happens is that you send a request to the website, and the website generates/retrieves the image and sends it back.  smile

That's what I thought too, and I was in fact surprised by the fact that you could run something without the user's consent. So you're confirming that it's impossible to do so from a webpage without a mistake from the user (i.e. running an exe)?

Offline

 

Board footer