Author Topic: instant message pop up from porn site?  (Read 19300 times)

0 Members and 1 Guest are viewing this topic.

Offline FreewheelinFrank

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 4872
  • I'm a GNU
    • Don't Surf in the Nude!
Re: instant message pop up from porn site?
« Reply #15 on: September 03, 2010, 04:19:46 PM »
If a poster is complaining of "instant message popups from porn sites", the first thing you should do is confirm that the poster is using an IM client such as Windows Live, and the second thing you should do is to check that they have blocked instant messages from anybody except people on their contact list.

If you have done this and ruled out "spim", you can start getting the OP to look for malware.

If you haven't done this, you've missed out an important step. In fact you're possibly misleading the OP to think their computer could be infected when it could just be that their IM client security settings need to be changed.

If you haven't done this, and you're telling the OP to ignore advice from a forum member who is suggesting that the OP do this, then you're in the wrong: not only is there a huge gap in your knowledge, but you've been extremely rude to another forum member who could have filled in that gap had you take notice: in short, you've been a dufus.

Quote
While the torrent of unsolicited spam emails continues to rise, it is being far outpaced by the surge in unwanted messages sent to the users of instant messaging programs, analysts have warned.

The volume of so-called "spim" is set triple in 2004, according to a new report from the Radicati Group, a technology market research firm in Palo Alto, California.

The company projects that 1.2 billion spims will be sent, 70 per cent of which are porn-related.

Quote
Spimmers share some tactics with spammers. For example, they create software bots that scour internet chat rooms and web sites for IM usernames, or systematically guess them using random name generators. As with spam, the bots bombard these addresses with unsolicited messages sent in high volumes from throwaway accounts.

However, users of IM programs commonly use a "buddy list" of invited friends to limit who can send messages to them. The buddy lists can be switched off, but their widespread use makes it more difficult for spimmers to message a stranger's computer. In contrast, most users of email do not use "white lists" to filter incoming email.

http://www.newscientist.com/article/dn4822-spam-being-rapidly-outpaced-by-spim.html
     Bambleweeny 57 sub-meson brain     Don't Surf in the Nude Blog

Offline SafeSurf

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 5203
Re: instant message pop up from porn site?
« Reply #16 on: September 06, 2010, 10:09:54 AM »
How are you doing with following the instructions from Posts # 10 and 11 above?
@ FreewheelinFrank

I don't want to get into a flame with you.  If you notice above, I did correct my oversight into my previous posting with my above post and reflected this by telling the OP to see your Post in #10 besides my post. 

What is most important is helping the OP at this point, who is not getting back to us because of this back-and-forth conversation between us, which can be intimitating to them if you look at it from their perspective.  I will therefore step out of this thread and let you handle helping the OP from this point forward.  Thank you.

@ sandy55,

Good luck to you and I hope everything gets resolved for you.  Thank you.  :)
Mac 10.9.4 /Safari and Firefox (NoScript/AdBlockPlus/BetterPrivacy/Ghostey)/
Vista Home Prem (same add-on's)/Avast Free/Online Armor Premium Firewall/MBAM Premium)/ Mobile MBAM.

Offline Chris Thomas

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1936
  • Christian Geek - aka 'born again' Geek
Re: instant message pop up from porn site?
« Reply #17 on: September 06, 2010, 11:25:47 AM »
If this is still bugging you then use OpenDNS Family Shield

http://www.opendns.com/familyshield/

Yahoo messenger had some problems with this kind of vulnerability some time ago and they have fixed the bug

Some sort of a malware used some loopholes in Ymessenger to pop up stuffs - It is fixed some months ago

I am not sure about other messengers

If you are on Yahoo, update it

« Last Edit: September 06, 2010, 11:36:22 AM by Chris Thomas »

Offline Antony91

  • Jr. Member
  • **
  • Posts: 22
  • Avast! user for 6+ years :)
Re: instant message pop up from porn site?
« Reply #18 on: September 06, 2010, 11:27:25 AM »
Good luck to you and I hope everything gets resolved for you
« Last Edit: September 06, 2010, 11:29:53 AM by antony91 »

Offline sandy55

  • Full Member
  • ***
  • Posts: 192
Re: instant message pop up from porn site?
« Reply #19 on: November 03, 2010, 03:18:35 AM »
I suggest:

1. Clean your temporary files.
2. Schedule a boot time scanning with avast with archive scanning turned on. If avast does not detect it, you can try DrWeb CureIT! instead.
3. Use MBAM (or SUPERantispyware or even Spyware Terminator) to scan for spywares and trojans. If any infection is detected, it is better and safer to send the infected file(s) to quarantine (Chest), rather than simply deleting them.
4. Test your machine with anti-rootkit applications. I suggest avast! antirootkit or Trend Micro RootkitBuster.
5. Make a HijackThis log to post here or this analysis site. Or even submit the RunScanner log to to on-line analysis.
6. Clean your Hosts file (replacing it) with HostsMan tool.
7. Disable System Restore and then reenable it again.
8. Immunize your system with SpywareBlaster.
9. Check if you have insecure applications with Secunia Software Inspector.
Sorry I did not get back to this I am suppose to be online always here not sure what went wrong. 
I did a avast boot scan which was fine then went from the bottom up with the secunia  this is what they found.
rograms / Result
Version Detected
Status
       Adobe Reader 6.x   6.0.0.878   
This installation of Adobe Reader 6.x is insecure and potentially exposes your system to security threats!

The detected version installed on your system is 6.0.0.878, however, the latest patched version released by the vendor, fixing one or more vulnerabilities, is 9.x.

Update Instructions:
Download


Installed on Your System in:
C:\Program Files\Adobe\Acrobat 6.0\Reader\AcroRd32.exe
       Apple QuickTime 7.x   7.60.92.0   
This installation of Apple QuickTime 7.x is insecure and potentially exposes your system to security threats!

The detected version installed on your system is 7.60.92.0, however, the latest patched version released by the vendor, fixing one or more vulnerabilities, is 7.68.

Update Instructions:
Download


Installed on Your System in:
C:\Program Files\QuickTime\QuickTimePlayer.exe
       Google Chrome 6.x   6.0.472.63   
This installation of Google Chrome 6.x is insecure and potentially exposes your system to security threats!

The detected version installed on your system is 6.0.472.63, however, the latest patched version released by the vendor, fixing one or more vulnerabilities, is 7.x.

Update Instructions:
Download


Installed on Your System in:
C:\DOCUME~1\VALUED~1\LOCALS~1\Temp\..\application data\google\Chrome\Application\6.0.472.63\chrome.dll
       Macromedia Flash Player 6.x   6.0.79.0 (ActiveX)   
This installation of Macromedia Flash Player 6.x is insecure and potentially exposes your system to security threats!

The detected version installed on your system is 6.0.79.0 (ActiveX), however, the latest patched version released by the vendor, fixing one or more vulnerabilities, is 10.x (ActiveX).

Update Instructions:
Download


Installed on Your System in:
C:\WINDOWS\SYSTEM32\Macromed\Flash\flash.ocx
       Sun Java JRE 1.6.x / 6.x   6.0.30.5   
This installation of Sun Java JRE 1.6.x / 6.x is insecure and potentially exposes your system to security threats!

The detected version installed on your system is 6.0.30.5, however, the latest patched version released by the vendor, fixing one or more vulnerabilities, is 6.0.220.4.

Update Instructions:
Download


Installed on Your System in:
C:\Program Files\Java\jre1.6.0_03\bin\java.exe
       Sun Java JRE 1.6.x / 6.x   6.0.150.3   
This installation of Sun Java JRE 1.6.x / 6.x is insecure and potentially exposes your system to security threats!

The detected version installed on your system is 6.0.150.3, however, the latest patched version released by the vendor, fixing one or more vulnerabilities, is 6.0.220.4.

Update Instructions:
Download


Installed on Your System in:
C:\Program Files\Java\jre6\bin\java.exe
So I guess I will go back and fix these things right? 
I have fixed the msn messaging so that is no longer an issue.  Thanks!

win 8.1 (64) avast version 18.5.2342(build) 18.5.3931.0 apparently this is Premier version according to an internet search on that version number above.. tho it does not state this in about or any other place on my computer...

Offline sandy55

  • Full Member
  • ***
  • Posts: 192
Re: instant message pop up from porn site?
« Reply #20 on: November 03, 2010, 04:21:32 AM »
Sorry I did not see replies I thought I was signed in forever but it appears not??
The porn sites have not been an issue I have been doing boot scans and super spyware scans today did the secunia scan and got all this for some reason it does not seem right to me I have updated the adobe but the google chrome seems fine I am not feeling good about changing it not sure why any thougths?

 grams / Result
Version Detected
Status
       Adobe Reader 6.x   6.0.0.878   
This installation of Adobe Reader 6.x is insecure and potentially exposes your system to security threats!

The detected version installed on your system is 6.0.0.878, however, the latest patched version released by the vendor, fixing one or more vulnerabilities, is 9.x.

Update Instructions:
Download


Installed on Your System in:
C:\Program Files\Adobe\Acrobat 6.0\Reader\AcroRd32.exe
       Apple QuickTime 7.x   7.60.92.0   
This installation of Apple QuickTime 7.x is insecure and potentially exposes your system to security threats!

The detected version installed on your system is 7.60.92.0, however, the latest patched version released by the vendor, fixing one or more vulnerabilities, is 7.68.

Update Instructions:
Download


Installed on Your System in:
C:\Program Files\QuickTime\QuickTimePlayer.exe
       Google Chrome 6.x   6.0.472.63   
This installation of Google Chrome 6.x is insecure and potentially exposes your system to security threats!

The detected version installed on your system is 6.0.472.63, however, the latest patched version released by the vendor, fixing one or more vulnerabilities, is 7.x.

Update Instructions:
Download


Installed on Your System in:
C:\DOCUME~1\VALUED~1\LOCALS~1\Temp\..\application data\google\Chrome\Application\6.0.472.63\chrome.dll
       Macromedia Flash Player 6.x   6.0.79.0 (ActiveX)   
This installation of Macromedia Flash Player 6.x is insecure and potentially exposes your system to security threats!

The detected version installed on your system is 6.0.79.0 (ActiveX), however, the latest patched version released by the vendor, fixing one or more vulnerabilities, is 10.x (ActiveX).

Update Instructions:
Download


Installed on Your System in:
C:\WINDOWS\SYSTEM32\Macromed\Flash\flash.ocx
       Sun Java JRE 1.6.x / 6.x   6.0.30.5   
This installation of Sun Java JRE 1.6.x / 6.x is insecure and potentially exposes your system to security threats!

The detected version installed on your system is 6.0.30.5, however, the latest patched version released by the vendor, fixing one or more vulnerabilities, is 6.0.220.4.

Update Instructions:
Download


Installed on Your System in:
C:\Program Files\Java\jre1.6.0_03\bin\java.exe
       Sun Java JRE 1.6.x / 6.x   6.0.150.3   
This installation of Sun Java JRE 1.6.x / 6.x is insecure and potentially exposes your system to security threats!

The detected version installed on your system is 6.0.150.3, however, the latest patched version released by the vendor, fixing one or more vulnerabilities, is 6.0.220.4.

Update Instructions:
Download


Installed on Your System in:
C:\Program Files\Java\jre6\bin\java.exe
win 8.1 (64) avast version 18.5.2342(build) 18.5.3931.0 apparently this is Premier version according to an internet search on that version number above.. tho it does not state this in about or any other place on my computer...