I don't know if this is the right group, and this isn't a request for support, it's a courtesy. I don't get on the forums much (at all). Please feel free to move this post to the appropriate group and I apologize in advance if it's misplaced.
Here is the message I got from Avast when I logged into minecraft a few minutes ago. I didn't get it when I logged in earlier in the day.
You just dodged a bullet
You may be wondering how you ended up with a virus, especially if you were visiting a ‘normal’ site. The latest research from the avast! Virus Lab shows that more than 80% of malware (viruses,spyware, and the like) spreads through legitimate websites, with only 1% coming from suspicious or ‘dodgy’ sites.
Good thing avast! had your back.
This appears to be a legitimate "catch" of a virus coming off your server rather than a false alarm. By "server" I mean minecraft's company servers, not a multiplayer server. As I said, this happened when I logged into minecraft itself.
Just a heads up.Oh and duh for anyone reading: the URL from avast shows up as clickable in my post. Don't click it. That's the virus site.Note to new users: The URL shows up in my topic post as clickable. Don't click it. That's the virus site.
When life gives you lemons, don't make lemonade. Make life take the lemons back! GET MAD! I DON'T WANT YOUR DANG LEMONS! WHAT AM I SUPPOSED TO DO WITH THESE?! DEMAND TO SEE LIFE'S MANAGER! Make life RUE the day it thought it could give CAVE JOHNSON LEMONS! DO YOU KNOW WHO I AM?! I'M THE MAN WHO'S GONNA BURN YOUR HOUSE DOWN! WITH THE LEMONS! I'm gonna get my engineers to invent a combustible lemon that BURNS YOUR HOUSE DOWN!
The Meaning of Life, the Universe, and Everything.
Join Date:
2/7/2013
Posts:
55
Minecraft:
OniyaMCD
Member Details
I just created this account today to report the same problem. If I look carefully at the log-in screen, there's a single white pixel (the blocked 'image'?) in the announcement posting for the Jinx calendar contest. If anyone can contact - or tell me how to contact - the people that put those announcements up, it might be possible for them to check their coding for the triggering GIF file.
Got the same thing, as well as a white pixel at the end of the text.. probably where the picture should be...Looks like Tumblr got hacked... Keep your anti-Malware things turned on and you should be able to save yourself from malware!
No worries, you can play minecraft securly. I analyzed the file yesterday evening, and it has nothing malicious in it. No shellcode, no exploits. Nothing. It is just a gif file with the size of 1x1 pixel, defining a color table with two colors (black and white) and the pixel itself uses color index 0, what is white in the table. It is a false-positive.
I think what i will say may help: The same thing happened to my Minecraft, so i started thinking there and i discovered that is from the website https://www.quantcast.com/ That "Reaches your audience as never before".
That website hacked something (i don't know what, so it's just useless) to a client. I realy don't know why Minecraft dirin't block the website yet. But don't worry, that website is useless and can't do anything to your computer.
I have been trying to get this issue reported to Mojang for several days. I know people who have direct contact with their employees, and I am appalled at how complacent they were, when the issue was first reported to them early in the morning, on Thursday, the 7th...
"Must me one of the mods you have installed..."
"Images have been unable to contain viruses for 10 years..."
"Pictured can only be a virus on windows if it is suffixed with image.jpg.exe"
Are these guys really that retarted?!?!?! I know someone posted here that they have scanned the actual image and have determined that there is no virus. But it's very easy for a web server's images to all be altered with bytes, that can infect a computer when that image is loaded by an application that does not verify bytes properly, or at a minimum exploit holes in other software on your computer that happens to access the image, once it has been stored in cache on your hard drive.
Just because the image can't be "executed", is no excuse for ignoring the potential for infection. HOW UTTERLY IRRESPONSIBLE!!!
Seems to me, that Mojang should at least be a little concerned that their application IS INDEED using an image at the bottom of their loader, that, at the very least, is being served from a domain that has been identified as being infected. The least they could do is be responsible and update their loader, so they aren't referencing that image anymore, and push out a forced update.
All it appears to be, is an image used by the loader, to generated statistics for Mojang, on how many people are using their software.... I mean seriously? They aren't even being responsible in their response. Blaming the user for modding? Dismissing any valid threat because it's only an image? Who are these hacks? Obviously not legitimate software developers with any sense of responsibility for the community that supports their game.
What if it had been a legitimate virus? Their application would have been responsible for spreading it to millions of users... And for what... Because they didn't care enough to take the time to actually investigate?
"not our problem..."??!?!?!?! WTF! SHAME ON YOU MOJANG!!!!
I have been trying to get this issue reported to Mojang for several days. I know people who have direct contact with their employees, and I am appalled at how complacent they were, when the issue was first reported to them early in the morning, on Thursday, the 7th...
"Must me one of the mods you have installed..."
"Images have been unable to contain viruses for 10 years..."
"Pictured can only be a virus on windows if it is suffixed with image.jpg.exe"
Are these guys really that retarted?!?!?! I know someone posted here that they have scanned the actual image and have determined that there is no virus. But it's very easy for a web server's images to all be altered with bytes, that can infect a computer when that image is loaded by an application that does not verify bytes properly, or at a minimum exploit holes in other software on your computer that happens to access the image, once it has been stored in cache on your hard drive.
Just because the image can't be "executed", is no excuse for ignoring the potential for infection. HOW UTTERLY IRRESPONSIBLE!!!
Seems to me, that Mojang should at least be a little concerned that their application IS INDEED using an image at the bottom of their loader, that, at the very least, is being served from a domain that has been identified as being infected. The least they could do is be responsible and update their loader, so they aren't referencing that image anymore, and push out a forced update.
All it appears to be, is an image used by the loader, to generated statistics for Mojang, on how many people are using their software.... I mean seriously? They aren't even being responsible in their response. Blaming the user for modding? Dismissing any valid threat because it's only an image? Who are these hacks? Obviously not legitimate software developers with any sense of responsibility for the community that supports their game.
What if it had been a legitimate virus? Their application would have been responsible for spreading it to millions of users... And for what... Because they didn't care enough to take the time to actually investigate?
"not our problem..."??!?!?!?! WTF! SHAME ON YOU MOJANG!!!!
I have been trying to get this issue reported to Mojang for several days. I know people who have direct contact with their employees, and I am appalled at how complacent they were, when the issue was first reported to them early in the morning, on Thursday, the 7th...
"Must me one of the mods you have installed..."
"Images have been unable to contain viruses for 10 years..."
"Pictured can only be a virus on windows if it is suffixed with image.jpg.exe"
Are these guys really that retarted?!?!?! I know someone posted here that they have scanned the actual image and have determined that there is no virus. But it's very easy for a web server's images to all be altered with bytes, that can infect a computer when that image is loaded by an application that does not verify bytes properly, or at a minimum exploit holes in other software on your computer that happens to access the image, once it has been stored in cache on your hard drive.
Just because the image can't be "executed", is no excuse for ignoring the potential for infection. HOW UTTERLY IRRESPONSIBLE!!!
Seems to me, that Mojang should at least be a little concerned that their application IS INDEED using an image at the bottom of their loader, that, at the very least, is being served from a domain that has been identified as being infected. The least they could do is be responsible and update their loader, so they aren't referencing that image anymore, and push out a forced update.
All it appears to be, is an image used by the loader, to generated statistics for Mojang, on how many people are using their software.... I mean seriously? They aren't even being responsible in their response. Blaming the user for modding? Dismissing any valid threat because it's only an image? Who are these hacks? Obviously not legitimate software developers with any sense of responsibility for the community that supports their game.
What if it had been a legitimate virus? Their application would have been responsible for spreading it to millions of users... And for what... Because they didn't care enough to take the time to actually investigate?
"not our problem..."??!?!?!?! WTF! SHAME ON YOU MOJANG!!!!
I think we should all togheter do something. And i don't believe i'm the only one that thinks that the website https://www.quantcast.com/ Is doing that! That's realy obvious! Come on, Mojang!
I think we should all togheter do something. And i don't believe i'm the only one that thinks that the website https://www.quantcast.com/ Is doing that! That's realy obvious! Come on, Mojang!
I have decided, I'm just going to put pixel.quantserve.com into my local hosts file, and point it at 127.0.0.1 (localhost).
c:\Windows\System32\drivers\etc\hosts
Add the following line...
127.0.0.1 pixel.quantserve.com
Problem solved. This has the added benefit of blocking QuantCast from tracking ANY of my application usage data. I like that better. Thank you Mojang, for bringing this organization to our attention, and giving us the information we need to protect our privacy and prevent you and other companies from tracking our personal computer usage!
The Meaning of Life, the Universe, and Everything.
Join Date:
2/7/2013
Posts:
55
Minecraft:
OniyaMCD
Member Details
Spoke too soon. I'mma try Wh1rledPeas' suggestion. If it works, I'll be setting up my daughter's machine with it as well. I've been keeping her off MC until I found a full resolution for it.
Here is the message I got from Avast when I logged into minecraft a few minutes ago. I didn't get it when I logged in earlier in the day.
Infection Details
URL: http://pixel.quantserve.com/pixel/p-19Ut... Process: C:\Users\Owner\Desktop\Minecraft (2).exe Infection: URL:Mal
You just dodged a bullet
You may be wondering how you ended up with a virus, especially if you were visiting a ‘normal’ site. The latest research from the avast! Virus Lab shows that more than 80% of malware (viruses,spyware, and the like) spreads through legitimate websites, with only 1% coming from suspicious or ‘dodgy’ sites.
Good thing avast! had your back.
This appears to be a legitimate "catch" of a virus coming off your server rather than a false alarm. By "server" I mean minecraft's company servers, not a multiplayer server. As I said, this happened when I logged into minecraft itself.
Just a heads up.Oh and duh for anyone reading: the URL from avast shows up as clickable in my post. Don't click it. That's the virus site.Note to new users: The URL shows up in my topic post as clickable. Don't click it. That's the virus site.
So it wasn't just me? i wonder what's going on.
Also, i think i win in the censoring department.
I just built my computer this week and I was surprised to see a warning already...
Like what you see? Give me some reputation
-
View User Profile
-
View Posts
-
Send Message
Curse PremiumThat website hacked something (i don't know what, so it's just useless) to a client. I realy don't know why Minecraft dirin't block the website yet. But don't worry, that website is useless and can't do anything to your computer.
"Must me one of the mods you have installed..."
"Images have been unable to contain viruses for 10 years..."
"Pictured can only be a virus on windows if it is suffixed with image.jpg.exe"
Are these guys really that retarted?!?!?! I know someone posted here that they have scanned the actual image and have determined that there is no virus. But it's very easy for a web server's images to all be altered with bytes, that can infect a computer when that image is loaded by an application that does not verify bytes properly, or at a minimum exploit holes in other software on your computer that happens to access the image, once it has been stored in cache on your hard drive.
Just because the image can't be "executed", is no excuse for ignoring the potential for infection. HOW UTTERLY IRRESPONSIBLE!!!
Seems to me, that Mojang should at least be a little concerned that their application IS INDEED using an image at the bottom of their loader, that, at the very least, is being served from a domain that has been identified as being infected. The least they could do is be responsible and update their loader, so they aren't referencing that image anymore, and push out a forced update.
All it appears to be, is an image used by the loader, to generated statistics for Mojang, on how many people are using their software.... I mean seriously? They aren't even being responsible in their response. Blaming the user for modding? Dismissing any valid threat because it's only an image? Who are these hacks? Obviously not legitimate software developers with any sense of responsibility for the community that supports their game.
What if it had been a legitimate virus? Their application would have been responsible for spreading it to millions of users... And for what... Because they didn't care enough to take the time to actually investigate?
"not our problem..."??!?!?!?! WTF! SHAME ON YOU MOJANG!!!!
I think we should all togheter do something. And i don't believe i'm the only one that thinks that the website https://www.quantcast.com/ Is doing that! That's realy obvious! Come on, Mojang!
I have decided, I'm just going to put pixel.quantserve.com into my local hosts file, and point it at 127.0.0.1 (localhost).
Add the following line...
Problem solved. This has the added benefit of blocking QuantCast from tracking ANY of my application usage data. I like that better. Thank you Mojang, for bringing this organization to our attention, and giving us the information we need to protect our privacy and prevent you and other companies from tracking our personal computer usage!