Second Life Forums Archive - someone using my IM

Fluke Gumbo

Registered User

Join date: 27 Mar 2008

Posts: 10

05-09-2008 06:15

The other night something weird happened to me. I was talking to a friend in IM and then someone else assumed my identity and typed in message in our conversation. I could not see what they were typing but my friend asked me why i had just said what she read. She copied the text for me and showed it to me. And I had definitely not typed what she showed me. It was pretty harmless, but still I don't people to be able to talk as me through my IMs.
Has anyone heard of this? And do you know how to protect yourself from this happening?

Thanks

Ciaran Laval

Mostly Harmless

Join date: 11 Mar 2007

Posts: 7,951

05-09-2008 06:16

Change your password for a start.

Fluke Gumbo

Registered User

Join date: 27 Mar 2008

Posts: 10

05-09-2008 06:26

I thought of that already!

Xplorer Cannoli

Cache Cleaner

Join date: 18 Sep 2005

Posts: 1,131

05-09-2008 06:28

I have often been puzzled when I saw that, but if I remember correctly, it was a different color message?

_____________________

Region Names for a Themed Shopping Experience:

New Region: Gifts

Accessories, Art, Avatars, Cars, Clothes, Clothing, Fashion, Fashions, Furnishings, Furniture, Gadgets, Games, Gifts, Hair, Jewellery, Jewelry, Mall, Men, Money, Music, Pets, Shoes, Shopping, Skin, Skins, Something, Women, X

Attractions:
Explore our new park at HOME
New Racetrack at CAR
WEAPONS Region Now Open!

Viktoria Dovgal

…

Join date: 29 Jul 2007

Posts: 3,593

05-09-2008 06:29

It doesn't happen very often, but sometimes SL instant messages do get misdirected. The IM could have been from an entirely different conversation and an unrelated person who has no idea it happened. But that person might be peeved that the intended recipient didn't acknowledge it.

_____________________

Beezle Warburton

=o.O=

Join date: 10 Nov 2006

Posts: 1,169

05-09-2008 06:29

Changing your password is good.

Do a scan for keyloggers, as well.

Spybot S&D:
http://www.safer-networking.org/en/spybotsd/index.html

Adaware Free:
http://www.lavasoftusa.com/products/ad_aware_free.php

Kaspersky Online Scan:
http://www.kaspersky.com/virusscanner

(Note, the Kaspersky online scan won't remove anything, it's a promo to get you to buy their product, but it'll at least tell you whether you're infected.)

And, as noted, it's a rare bug, but does happen where IM sessions "intersect" in odd ways.

_____________________

Though this be madness, yet there is method in't.
-- William Shakespeare

Warburton's Whimsies:
In SL
Apez.biz

Fluke Gumbo

Registered User

Join date: 27 Mar 2008

Posts: 10

05-09-2008 06:48

The message was the same color as the other. The thing that makes me think that it was not random or an error is that there were 3 different entries and someone had a spy chat bug on me last week. I don't know why, I am really not that interesting!

Conan Godwin

In ur base kilin ur d00ds

Join date: 2 Aug 2006

Posts: 3,676

05-09-2008 06:54

From: Beezle Warburton

Changing your password is good.

Do a scan for keyloggers, as well.

Spybot S&D:
http://www.safer-networking.org/en/spybotsd/index.html

Adaware Free:
http://www.lavasoftusa.com/products/ad_aware_free.php

Kaspersky Online Scan:
http://www.kaspersky.com/virusscanner

(Note, the Kaspersky online scan won't remove anything, it's a promo to get you to buy their product, but it'll at least tell you whether you're infected.)

And, as noted, it's a rare bug, but does happen where IM sessions "intersect" in odd ways.

Don't touch the kaspersky! It's a form of adware itself - it returns false positives to get you to buy. Spybot is the best by far; so good infact that many organisations such as universities use it.

_____________________

From: Raindrop Cooperstone

hateful much? dude, that was low. die.

.

Miles Beck

MilesBeck.com

Join date: 20 Mar 2007

Posts: 537

05-09-2008 06:55

IM or Chat? Someone can do this in Chat with a Mystitool, but I don't think it can send an IM with a fake identity.

Fluke Gumbo

Registered User

Join date: 27 Mar 2008

Posts: 10

05-09-2008 06:56

It was in IM.

Viktoria Dovgal

…

Join date: 29 Jul 2007

Posts: 3,593

05-09-2008 06:59

One other thing, if you are already logged in and another session successfully starts, the older session is logged out. So a leaked password seems unlikely here.

_____________________

Beezle Warburton

=o.O=

Join date: 10 Nov 2006

Posts: 1,169

05-09-2008 07:36

From: Conan Godwin

Don't touch the kaspersky! It's a form of adware itself - it returns false positives to get you to buy. Spybot is the best by far; so good infact that many organisations such as universities use it.

The only things it detected on my system were genuine viruses attached to old email spam from ebay spoofs.

_____________________

Though this be madness, yet there is method in't.
-- William Shakespeare

Warburton's Whimsies:
In SL
Apez.biz

Feldspar Millgrove

Registered User

Join date: 16 Nov 2006

Posts: 372

05-09-2008 10:46

Anyone can spoof IMs: they can make any text appear in the IM window, saying it's from anyone (even a non-existent avatar) and make it say anything at all. However, the IM tab will have their real name on it, even though in the IM it says the wrong name.

There's nothing you can do about it.

Novis Dyrssen

Girl Geek

Join date: 6 May 2007

Posts: 1,452

05-09-2008 10:53

From: Conan Godwin

Don't touch the kaspersky! It's a form of adware itself - it returns false positives to get you to buy.

Not true. Kaspersky is a lot of times a bit "hyperactive", but that is the same with the standalone virus protection. It is just very, very suspicious of anything that moves *g* and resulting in that, it gets top grades in virus recognition in every test I have seen so far. It is indeed a bit unnerving to be warned so often, though...

Edited to add:

Yes, I do use it myself. No, I have never had any trouble with my system since then. Just a hyperactive little helper.

_____________________

~~ immortal words of Rob Thomas ~~
Hey-yeah, welcome to the Real World
Nobody told you it was gonna be hard

Macphisto Angelus

JAFO

Join date: 21 Oct 2004

Posts: 5,831

05-09-2008 10:57

I agree.. use Spybot. That is what I have on my system and it does a great job of protecting it. It has features that go well beyond other free programs.

_____________________

From: Natalie P from SLU

Second Life: Where being the super important, extra special person you've always been sure you are (at least when you're drunk) can be a reality!

From: Ann Launay

I put on my robe and wizard ha...
Oh. Nevermind then.

Usagi Musashi

UM ™®

Join date: 24 Oct 2004

Posts: 6,083

05-09-2008 11:00

From: Macphisto Angelus

I agree.. use Spybot. That is what I have on my system and it does a great job of protecting it. It has features that go well beyond other free programs.

So are you telling me this gets into the computer Via the sl client? wonders

Usagi Musashi

UM ™®

Join date: 24 Oct 2004

Posts: 6,083

05-09-2008 11:02

From: Feldspar Millgrove

Anyone can spoof IMs: they can make any text appear in the IM window, saying it's from anyone (even a non-existent avatar) and make it say anything at all. However, the IM tab will have their real name on it, even though in the IM it says the wrong name.

There's nothing you can do about it.

If this is true then abuse reports about others could be faked just as well.........if one cuts and paste text from IM..............puzzling here about all this.

Lindal Kidd

Dances With Noobs

Join date: 26 Jun 2007

Posts: 8,371

05-09-2008 11:07

From: Feldspar Millgrove

Anyone can spoof IMs: they can make any text appear in the IM window, saying it's from anyone (even a non-existent avatar) and make it say anything at all. However, the IM tab will have their real name on it, even though in the IM it says the wrong name.

There's nothing you can do about it.

I don't believe you. Show me.

_____________________

It's still My World and My Imagination! So there.
Lindal Kidd

Conan Godwin

In ur base kilin ur d00ds

Join date: 2 Aug 2006

Posts: 3,676

05-09-2008 12:00

From: Novis Dyrssen

Not true. Kaspersky is a lot of times a bit "hyperactive", but that is the same with the standalone virus protection. It is just very, very suspicious of anything that moves *g* and resulting in that, it gets top grades in virus recognition in every test I have seen so far. It is indeed a bit unnerving to be warned so often, though...

Edited to add:

Yes, I do use it myself. No, I have never had any trouble with my system since then. Just a hyperactive little helper.

I maintain that Kaspersky returns false positives when you use the demo version. I have seen it with my own eyes.

_____________________

From: Raindrop Cooperstone

hateful much? dude, that was low. die.

.

Lear Cale

wordy bugger

Join date: 22 Aug 2007

Posts: 3,569

05-09-2008 12:03

It's easy to fake an IM with an object script that changes the object name (to whatever it wants) and sends an IM to the recipient. However, these object IMs appear in a different color and though they have "IM" in front, they never appear in an IM window.

Using slproxy you can do some things that shouldn't be permitted, such as sending blue system messages saying anything to anyone. Perhaps it's also possible to forge IMs, though I suspect it would indeed appear in an IM window with the actual login name in the tab, as mentioned above.

Day Oh

Registered User

Join date: 3 Feb 2007

Posts: 1,257

05-09-2008 13:36

Feldspar speaks the truth, but was that a group or conference IM?

_____________________

foehn Breed

More random than random

Join date: 16 Jan 2006

Posts: 1,142

05-09-2008 15:09

Quikies also are Bazooka http://www.kephyr.com/spywarescanner/
& Stinger http://vil.nai.com/vil/stinger/
Besides, the ones mentioned.

_____________________

You have no friends online at this time. "Excellent!"

Einstein "I never think of the future. It comes soon enough."

Fluke Gumbo

Registered User

Join date: 27 Mar 2008

Posts: 10

05-09-2008 16:09

From: Day Oh

Feldspar speaks the truth, but was that a group or conference IM?

This was a direct IM conversation between a friend and I only. And the message appeared directly into our conversation, in the same color as our conversation and no new IM tab appeared.

SuezanneC Baskerville

Forums Rock!

Join date: 22 Dec 2003

Posts: 14,229

05-09-2008 16:29

Screenshot?

_____________________

-

So long to these forums, the vBulletin forums that used to be at forums.secondlife.com. I will miss them.

I can be found on the web by searching for "SuezanneC Baskerville", or go to

http://www.google.com/profiles/suezanne

-

http://lindenlab.tribe.net/ created on 11/19/03.

Members: Ben, Catherine, Colin, Cory, Dan, Doug, Jim, Philip, Phoenix, Richard,
Robin, and Ryan

-

Fluke Gumbo

Registered User

Join date: 27 Mar 2008

Posts: 10

05-09-2008 16:47

Unfortunately, I don't have a screenshot!

someone using my IM
Fluke Gumbo Registered User Join date: 27 Mar 2008 Posts: 10	05-09-2008 06:15 The other night something weird happened to me. I was talking to a friend in IM and then someone else assumed my identity and typed in message in our conversation. I could not see what they were typing but my friend asked me why i had just said what she read. She copied the text for me and showed it to me. And I had definitely not typed what she showed me. It was pretty harmless, but still I don't people to be able to talk as me through my IMs. Has anyone heard of this? And do you know how to protect yourself from this happening? Thanks
Ciaran Laval Mostly Harmless Join date: 11 Mar 2007 Posts: 7,951	05-09-2008 06:16 Change your password for a start.
Fluke Gumbo Registered User Join date: 27 Mar 2008 Posts: 10	05-09-2008 06:26 I thought of that already!
Xplorer Cannoli Cache Cleaner Join date: 18 Sep 2005 Posts: 1,131	05-09-2008 06:28 I have often been puzzled when I saw that, but if I remember correctly, it was a different color message? _____________________ Region Names for a Themed Shopping Experience: New Region: Gifts Accessories, Art, Avatars, Cars, Clothes, Clothing, Fashion, Fashions, Furnishings, Furniture, Gadgets, Games, Gifts, Hair, Jewellery, Jewelry, Mall, Men, Money, Music, Pets, Shoes, Shopping, Skin, Skins, Something, Women, X Attractions: Explore our new park at HOME New Racetrack at CAR WEAPONS Region Now Open!
Viktoria Dovgal … Join date: 29 Jul 2007 Posts: 3,593	05-09-2008 06:29 It doesn't happen very often, but sometimes SL instant messages do get misdirected. The IM could have been from an entirely different conversation and an unrelated person who has no idea it happened. But that person might be peeved that the intended recipient didn't acknowledge it. _____________________
Beezle Warburton =o.O= Join date: 10 Nov 2006 Posts: 1,169	05-09-2008 06:29 Changing your password is good. Do a scan for keyloggers, as well. Spybot S&D: http://www.safer-networking.org/en/spybotsd/index.html Adaware Free: http://www.lavasoftusa.com/products/ad_aware_free.php Kaspersky Online Scan: http://www.kaspersky.com/virusscanner (Note, the Kaspersky online scan won't remove anything, it's a promo to get you to buy their product, but it'll at least tell you whether you're infected.) And, as noted, it's a rare bug, but does happen where IM sessions "intersect" in odd ways. _____________________ Though this be madness, yet there is method in't. -- William Shakespeare Warburton's Whimsies: In SL Apez.biz
Fluke Gumbo Registered User Join date: 27 Mar 2008 Posts: 10	05-09-2008 06:48 The message was the same color as the other. The thing that makes me think that it was not random or an error is that there were 3 different entries and someone had a spy chat bug on me last week. I don't know why, I am really not that interesting!
Conan Godwin In ur base kilin ur d00ds Join date: 2 Aug 2006 Posts: 3,676	05-09-2008 06:54 From: Beezle Warburton Changing your password is good. Do a scan for keyloggers, as well. Spybot S&D: http://www.safer-networking.org/en/spybotsd/index.html Adaware Free: http://www.lavasoftusa.com/products/ad_aware_free.php Kaspersky Online Scan: http://www.kaspersky.com/virusscanner (Note, the Kaspersky online scan won't remove anything, it's a promo to get you to buy their product, but it'll at least tell you whether you're infected.) And, as noted, it's a rare bug, but does happen where IM sessions "intersect" in odd ways. Don't touch the kaspersky! It's a form of adware itself - it returns false positives to get you to buy. Spybot is the best by far; so good infact that many organisations such as universities use it. _____________________ From: Raindrop Cooperstone hateful much? dude, that was low. die. .
Miles Beck MilesBeck.com Join date: 20 Mar 2007 Posts: 537	05-09-2008 06:55 IM or Chat? Someone can do this in Chat with a Mystitool, but I don't think it can send an IM with a fake identity.
Fluke Gumbo Registered User Join date: 27 Mar 2008 Posts: 10	05-09-2008 06:56 It was in IM.
Viktoria Dovgal … Join date: 29 Jul 2007 Posts: 3,593	05-09-2008 06:59 One other thing, if you are already logged in and another session successfully starts, the older session is logged out. So a leaked password seems unlikely here. _____________________
Beezle Warburton =o.O= Join date: 10 Nov 2006 Posts: 1,169	05-09-2008 07:36 From: Conan Godwin Don't touch the kaspersky! It's a form of adware itself - it returns false positives to get you to buy. Spybot is the best by far; so good infact that many organisations such as universities use it. The only things it detected on my system were genuine viruses attached to old email spam from ebay spoofs. _____________________ Though this be madness, yet there is method in't. -- William Shakespeare Warburton's Whimsies: In SL Apez.biz
Feldspar Millgrove Registered User Join date: 16 Nov 2006 Posts: 372	05-09-2008 10:46 Anyone can spoof IMs: they can make any text appear in the IM window, saying it's from anyone (even a non-existent avatar) and make it say anything at all. However, the IM tab will have their real name on it, even though in the IM it says the wrong name. There's nothing you can do about it.
Novis Dyrssen Girl Geek Join date: 6 May 2007 Posts: 1,452	05-09-2008 10:53 From: Conan Godwin Don't touch the kaspersky! It's a form of adware itself - it returns false positives to get you to buy. Not true. Kaspersky is a lot of times a bit "hyperactive", but that is the same with the standalone virus protection. It is just very, very suspicious of anything that moves g and resulting in that, it gets top grades in virus recognition in every test I have seen so far. It is indeed a bit unnerving to be warned so often, though... Edited to add: Yes, I do use it myself. No, I have never had any trouble with my system since then. Just a hyperactive little helper. _____________________ ~~ immortal words of Rob Thomas ~~ Hey-yeah, welcome to the Real World Nobody told you it was gonna be hard
Macphisto Angelus JAFO Join date: 21 Oct 2004 Posts: 5,831	05-09-2008 10:57 I agree.. use Spybot. That is what I have on my system and it does a great job of protecting it. It has features that go well beyond other free programs. _____________________ From: Natalie P from SLU Second Life: Where being the super important, extra special person you've always been sure you are (at least when you're drunk) can be a reality! From: Ann Launay I put on my robe and wizard ha... Oh. Nevermind then.
Usagi Musashi UM ™® Join date: 24 Oct 2004 Posts: 6,083	05-09-2008 11:00 From: Macphisto Angelus I agree.. use Spybot. That is what I have on my system and it does a great job of protecting it. It has features that go well beyond other free programs. So are you telling me this gets into the computer Via the sl client? wonders
Usagi Musashi UM ™® Join date: 24 Oct 2004 Posts: 6,083	05-09-2008 11:02 From: Feldspar Millgrove Anyone can spoof IMs: they can make any text appear in the IM window, saying it's from anyone (even a non-existent avatar) and make it say anything at all. However, the IM tab will have their real name on it, even though in the IM it says the wrong name. There's nothing you can do about it. If this is true then abuse reports about others could be faked just as well.........if one cuts and paste text from IM..............puzzling here about all this.
Lindal Kidd Dances With Noobs Join date: 26 Jun 2007 Posts: 8,371	05-09-2008 11:07 From: Feldspar Millgrove Anyone can spoof IMs: they can make any text appear in the IM window, saying it's from anyone (even a non-existent avatar) and make it say anything at all. However, the IM tab will have their real name on it, even though in the IM it says the wrong name. There's nothing you can do about it. I don't believe you. Show me. _____________________ It's still My World and My Imagination! So there. Lindal Kidd
Conan Godwin In ur base kilin ur d00ds Join date: 2 Aug 2006 Posts: 3,676	05-09-2008 12:00 From: Novis Dyrssen Not true. Kaspersky is a lot of times a bit "hyperactive", but that is the same with the standalone virus protection. It is just very, very suspicious of anything that moves g and resulting in that, it gets top grades in virus recognition in every test I have seen so far. It is indeed a bit unnerving to be warned so often, though... Edited to add: Yes, I do use it myself. No, I have never had any trouble with my system since then. Just a hyperactive little helper. I maintain that Kaspersky returns false positives when you use the demo version. I have seen it with my own eyes. _____________________ From: Raindrop Cooperstone hateful much? dude, that was low. die. .
Lear Cale wordy bugger Join date: 22 Aug 2007 Posts: 3,569	05-09-2008 12:03 It's easy to fake an IM with an object script that changes the object name (to whatever it wants) and sends an IM to the recipient. However, these object IMs appear in a different color and though they have "IM" in front, they never appear in an IM window. Using slproxy you can do some things that shouldn't be permitted, such as sending blue system messages saying anything to anyone. Perhaps it's also possible to forge IMs, though I suspect it would indeed appear in an IM window with the actual login name in the tab, as mentioned above.
Day Oh Registered User Join date: 3 Feb 2007 Posts: 1,257	05-09-2008 13:36 Feldspar speaks the truth, but was that a group or conference IM? _____________________
foehn Breed More random than random Join date: 16 Jan 2006 Posts: 1,142	05-09-2008 15:09 Quikies also are Bazooka http://www.kephyr.com/spywarescanner/ & Stinger http://vil.nai.com/vil/stinger/ Besides, the ones mentioned. _____________________ You have no friends online at this time. "Excellent!" Einstein "I never think of the future. It comes soon enough."
Fluke Gumbo Registered User Join date: 27 Mar 2008 Posts: 10	05-09-2008 16:09 From: Day Oh Feldspar speaks the truth, but was that a group or conference IM? This was a direct IM conversation between a friend and I only. And the message appeared directly into our conversation, in the same color as our conversation and no new IM tab appeared.
SuezanneC Baskerville Forums Rock! Join date: 22 Dec 2003 Posts: 14,229	05-09-2008 16:29 Screenshot? _____________________ - So long to these forums, the vBulletin forums that used to be at forums.secondlife.com. I will miss them. I can be found on the web by searching for "SuezanneC Baskerville", or go to http://www.google.com/profiles/suezanne - http://lindenlab.tribe.net/ created on 11/19/03. Members: Ben, Catherine, Colin, Cory, Dan, Doug, Jim, Philip, Phoenix, Richard, Robin, and Ryan -
Fluke Gumbo Registered User Join date: 27 Mar 2008 Posts: 10	05-09-2008 16:47 Unfortunately, I don't have a screenshot!

Welcome to the Second Life Forums Archive

someone using my IM