Re: Virus and Malware city!!
On 23/07/14 07:00, Taveira, Marcus wrote: I'd like to understand why I am in copy on these messages? Because you voluntarily subscribed to the support mailing list. Like most open source software, support is provided by other users (some of whom may be developers), so everyone has to see all the questions. It is also usual to reply publicly, so that others can correct or improve the replies, and so that people can find the answers in future. I have sent a support request once my pidgin does not accept the diacritics for Portuguese language, and I receive a reply that there is nothing to do with my enquire... You didn't ask this. You said you were having unspecified issues with them. You still haven't supplied important information about your environment. Could you please focus on my question? Unfortunately, if someone makes what appears to be an accusation of foul play, it is likely to get more attention in the community than one relating to a language for which few, if any, people are subscribed to the mailing list. To anticipate a further question, you should have received instructions on how to unsubscribe when you subscribed, but, for reference, they are also included in the mail headers, as follows: List-Unsubscribe: https://pidgin.im/cgi-bin/mailman/options/support, mailto:support-requ...@pidgin.im?subject=unsubscribe ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: https://pidgin.im/cgi-bin/mailman/listinfo/support
RE: Virus and Malware city!!
As others noted, the SF download page is an ad-fest, with misleading graphics (»download« button and similar). Issues like this surface every few weeks (with different projects download pages). Strange that in past they could have an ad free download page... Here is what the users can do: the ads are served by google, they all have a blue eye-like icon in the top right corner (these days it shows the word »AdChoices« if you point on it with the mouse), which can be clicked and a google menu will appear, where is a »Report misleading ad« button. Use that and the amount of bad ads will hopefully decrease. Note: not all ads seem to have this icon. Also, google keeps changing their software, so the exact menu or page they show is well whatever they decide to put up. Once a while ago it took me days to find the complaint link. Currently they show a page that looks like a general info page about their ad program (titled AdSense Help / About Google Ads), but at the bottom there is a feedback form: Leave feedback on the website or ad you just saw The issue(s) were with: - The website - the ads Click »the ads« there and fill out the form... Regards, David Balažic Software Engineer www.comtrade.com From: Support [mailto:support-boun...@pidgin.im] On Behalf Of Daniel Atallah Sent: 22. July 2014 21:06 To: Barrett, William (Bill) Cc: support@pidgin.im Subject: Re: Virus and Malware city!! On Tue, Jul 22, 2014 at 3:03 PM, Barrett, William (Bill) wbarr...@qti.qualcomm.commailto:wbarr...@qti.qualcomm.com wrote: Thanks for someone noticing. I found that I had probably bounced an Enter – or just glazed over trying to grab pidgin – and was snagged by the FLV Mplayer virus - -I also caught the beginnings of the Conduit virus. You might want to post this reference for other victims: http://malwaretips.com/blogs/flv-mplayer-removal/ I followed that procedure carefully, even when it seemed kind of redundant, and my machine is now virus free according to 3 different tools. Now to somehow keep our IT Department from reformatting my machine – geezsh! I don't see how any of this is related to Pidgin. ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: https://pidgin.im/cgi-bin/mailman/listinfo/support
Virus and Malware city!!
Greetings, Your corner of SourceForge is ridden with malware installers installers. If this is not the intention of the majority of pidgin contributors then I'd suggest you move on and/or complain. I'm an hour in and still trying to undo the damage received from downloading pidgin. Note - this was not the case 4 years ago - when I last grabbed it. Kindly, - Bill )O( )O( Bill Barrett )O( Qualcomm - Engineer, Sr Staff )O( wbarr...@qti.qualcomm.com )O( 949-444-1465 )O( ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: https://pidgin.im/cgi-bin/mailman/listinfo/support
Re: Virus and Malware city!!
On Tue, Jul 22, 2014 at 2:07 PM, Barrett, William (Bill) wbarr...@qti.qualcomm.com wrote: Greetings, Your corner of SourceForge is ridden with malware installers installers. If this is not the intention of the majority of pidgin contributors then I’d suggest you move on and/or complain. I’m an hour in and still trying to undo the damage received from downloading pidgin. Note – this was not the case 4 years ago – when I last grabbed it. There's nothing in the Pidgin installer except what we have packaged (Pidgin and its dependencies). What makes you think otherwise? What damage have you seen from downloading Pidgin? -D ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: https://pidgin.im/cgi-bin/mailman/listinfo/support
RE: Virus and Malware city!!
Thanks for someone noticing. I found that I had probably bounced an Enter – or just glazed over trying to grab pidgin – and was snagged by the FLV Mplayer virus - -I also caught the beginnings of the Conduit virus. You might want to post this reference for other victims: http://malwaretips.com/blogs/flv-mplayer-removal/ I followed that procedure carefully, even when it seemed kind of redundant, and my machine is now virus free according to 3 different tools. Now to somehow keep our IT Department from reformatting my machine – geezsh! Kind Regards, - Bill )O( )O( Bill Barrett )O( Qualcomm – Engineer, Sr Staff )O( wbarr...@qti.qualcomm.com )O( 949-444-1465 )O( From: daniel.atal...@gmail.com [mailto:daniel.atal...@gmail.com] On Behalf Of Daniel Atallah Sent: Tuesday, July 22, 2014 11:59 AM To: Barrett, William (Bill) Cc: support@pidgin.im Subject: Re: Virus and Malware city!! On Tue, Jul 22, 2014 at 2:07 PM, Barrett, William (Bill) wbarr...@qti.qualcomm.commailto:wbarr...@qti.qualcomm.com wrote: Greetings, Your corner of SourceForge is ridden with malware installers installers. If this is not the intention of the majority of pidgin contributors then I’d suggest you move on and/or complain. I’m an hour in and still trying to undo the damage received from downloading pidgin. Note – this was not the case 4 years ago – when I last grabbed it. There's nothing in the Pidgin installer except what we have packaged (Pidgin and its dependencies). What makes you think otherwise? What damage have you seen from downloading Pidgin? -D ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: https://pidgin.im/cgi-bin/mailman/listinfo/support
Re: Virus and Malware city!!
On Tue, Jul 22, 2014 at 3:03 PM, Barrett, William (Bill) wbarr...@qti.qualcomm.com wrote: Thanks for someone noticing. I found that I had probably bounced an Enter – or just glazed over trying to grab pidgin – and was snagged by the FLV Mplayer virus - -I also caught the beginnings of the Conduit virus. You might want to post this reference for other victims: http://malwaretips.com/blogs/flv-mplayer-removal/ I followed that procedure carefully, even when it seemed kind of redundant, and my machine is now virus free according to 3 different tools. Now to somehow keep our IT Department from reformatting my machine – geezsh! I don't see how any of this is related to Pidgin. ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: https://pidgin.im/cgi-bin/mailman/listinfo/support
Re: Virus and Malware city!!
On Tue, 22 Jul 2014, Daniel Atallah wrote: I don't see how any of this is related to Pidgin. It's more related to the adverts he came across on the Sourceforge site, unfortunately. -Dennis Carr ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: https://pidgin.im/cgi-bin/mailman/listinfo/support
Re: Virus and Malware city!!
On Tue, Jul 22, 2014 at 3:13 PM, Dennis Carr dennistheti...@chez-vrolet.net wrote: On Tue, 22 Jul 2014, Daniel Atallah wrote: I don't see how any of this is related to Pidgin. It's more related to the adverts he came across on the Sourceforge site, unfortunately. -Dennis Carr Yes they are growing out of control. http://i.imgur.com/zoKYsUg.png ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: https://pidgin.im/cgi-bin/mailman/listinfo/support
Re: Virus and Malware city!!
Bill, We have this same issue over at the LMMS project site (hosted on sourceforge as well). We anticipate switching hosting this year and this is one of several reasons. There are not many services that offer everything that SourceForge does for free so it's a classic scenario of biting the hand that feeds. :/ - tres.finocchi...@gmail.com On Tue, Jul 22, 2014 at 3:24 PM, Barrett, William (Bill) wbarr...@qti.qualcomm.com wrote: The impact on Pidgin's kind volunteer team is that they now have a repo which has become sneaky and undesirable. I'm kind of old school, so I find this behavior reprehensible. I've come to accept that ads are needed - and sometimes even helpful - however when the delivery mechanism is intrusive and/or destructive - everybody loses. I found the attack and understand it's not Pigin's doing, but ... a) I was exposed because I was attempting a normal acquisition of Pidgin b) The next guy might not notice how it arrived, and blame pidgin c) Source Forge needs to be aware they are endangering clients which is likely at odds with their charter of attracting clients So - I'd think that learning that your hard work is being eroded by SoureForge is significantly related to Pidgin [as wondered below]. Sorry if I over ranted this, Kindly, - Bill )O( )O( Bill Barrett )O( Qualcomm - Engineer, Sr Staff )O( wbarr...@qti.qualcomm.com )O( 949-444-1465 )O( -Original Message- From: Dennis Carr [mailto:dennistheti...@chez-vrolet.net] Sent: Tuesday, July 22, 2014 12:14 PM To: Daniel Atallah Cc: Barrett, William (Bill); support@pidgin.im Subject: Re: Virus and Malware city!! On Tue, 22 Jul 2014, Daniel Atallah wrote: I don't see how any of this is related to Pidgin. It's more related to the adverts he came across on the Sourceforge site, unfortunately. -Dennis Carr ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: https://pidgin.im/cgi-bin/mailman/listinfo/support ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: https://pidgin.im/cgi-bin/mailman/listinfo/support
Re: Virus and Malware city!!
Hi Bill. It's still not clear to me what happened. If indeed something (e.g. a malicious advertisement) redirected you from the SourceForge website to a malicious website then please inform SourceForge. With steps on how someone might reproduce the problem, if possible. Maybe a screenshot of the malicious ad, operating system and browser name and version, etc. If this isn't what happened then please provide us with more information. ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: https://pidgin.im/cgi-bin/mailman/listinfo/support
RE: Virus and Malware city!!
Mark, Sorry - right, the details of a Viral download could be helpful - it took me a while to piece it together - still not certain exactly what happened. The issue is related to ads, which change, so I can't really get the same pages on a repetition. CNet and Java demonstrate this draconian approach - I also feel bad about missing it - I let my guard down at Source Forge. The paradigm of my illness begins with workflow psychology: 1: I click Download good.software, and then I switch attention, expecting the download to take a while 2: Next, the network stalls [somewhere] for some reason 3: I glance back at the screen some time later, and see zero progress, it's not yet on the browser status bar I see the expected: If Download Fails to start then click ... so I click the nearest Download button, [did I this time? I don't know], maybe click twice as it seems to not accept the first click, - (I once caught some script playing that game) 4:Finally, a flurry of downloading starts, so I bounce to other work 5: Now a few other windows pop up, looking like install windows, and offer other software - see Sun/Oracle downloads - I attempt to steer through this - oddly still not alarmed, [my bad again] 6: However, If a bounced Enter or click gets in (see 3 above), the virus gets invited 7. I honestly don't recall adding any downloads, but the pigin install was intermixed with these other windows - 7. BUT, the point is that this has become a dangerous site one which deploys a framework which is exploited to launch a virus. I'm not incensed and I somewhat understand how this can happen - although there is definitely at least one bad guy there - I just want to avoid her/him/them for now. The neighborhood was much nicer and safer before they put up the billboards - you know? But, need the revenue, sigh... Kindly, - Bill )O( )O( Bill Barrett )O( Qualcomm – Engineer, Sr Staff )O( wbarr...@qti.qualcomm.com )O( 949-444-1465 )O( -Original Message- From: Mark Doliner [mailto:m...@kingant.net] Sent: Tuesday, July 22, 2014 4:33 PM To: Barrett, William (Bill) Cc: Dennis Carr; Daniel Atallah; support@pidgin.im Subject: Re: Virus and Malware city!! Hi Bill. It's still not clear to me what happened. If indeed something (e.g. a malicious advertisement) redirected you from the SourceForge website to a malicious website then please inform SourceForge. With steps on how someone might reproduce the problem, if possible. Maybe a screenshot of the malicious ad, operating system and browser name and version, etc. If this isn't what happened then please provide us with more information. ---BeginMessage--- The impact on Pidgin's kind volunteer team is that they now have a repo which has become sneaky and undesirable. I'm kind of old school, so I find this behavior reprehensible. I've come to accept that ads are needed - and sometimes even helpful - however when the delivery mechanism is intrusive and/or destructive - everybody loses. I found the attack and understand it's not Pigin's doing, but ... a) I was exposed because I was attempting a normal acquisition of Pidgin b) The next guy might not notice how it arrived, and blame pidgin c) Source Forge needs to be aware they are endangering clients which is likely at odds with their charter of attracting clients So - I'd think that learning that your hard work is being eroded by SoureForge is significantly related to Pidgin [as wondered below]. Sorry if I over ranted this, Kindly, - Bill )O( )O( Bill Barrett )O( Qualcomm - Engineer, Sr Staff )O( wbarr...@qti.qualcomm.com )O( 949-444-1465 )O( -Original Message- From: Dennis Carr [mailto:dennistheti...@chez-vrolet.net] Sent: Tuesday, July 22, 2014 12:14 PM To: Daniel Atallah Cc: Barrett, William (Bill); support@pidgin.im Subject: Re: Virus and Malware city!! On Tue, 22 Jul 2014, Daniel Atallah wrote: I don't see how any of this is related to Pidgin. It's more related to the adverts he came across on the Sourceforge site, unfortunately. -Dennis Carr ---End Message--- ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: https://pidgin.im/cgi-bin/mailman/listinfo/support