pop up time! *** Antivirus Plus **** HELP

Theres no simple answer, any instances ive came across have been from the following:

TROLL'S! people on forums posting hay guiz what r teh bestest antivirus plox? with some troll posting a link to the virus.

POPUPS. a difficult one to minimises, people will click anything to get rid of a popup even download things to get to the ~~~~ worst of all you can inject javascript into normaly benign sites to have them popup virus downloads so in the wild they occur with disturbing frequency.
"YOUR COMPUTER IS AT RISK! DOWNLOAD THIS FREE PROGRAM TO PROTECT YOU! WHY PAY NORTON FOR SOMETHING WE'LL PROVIDE FOR FREE?"

EMAIL, people clicking onto downloads via email, just an extension of popups.

ActiveX extensions, some sites can and do automaticaly download malicious code the the end user which can either increase the frequency of popups and advertise the virus as a popup blocker or remotely execute the download itself.
Only really a worry for Internet Explorer users this one.

Remote Procedural Call infections, this one isnt as widespread as it once was, but back in the day i could do a LOT of interesting things to a computer over port 139 without any knowledge from the end user. sasser infected via rpc dcom so newer versions of windows after XP default this port to being blocked unless specificaly required.

There are litteraly millions of ways to get a virus into a system, the most reliable and simple method is as always stupid operator syndrome, whereby you con someone into downloading and executing malicious code.

educate me on port 139, he told me it said somthing along the lines of someone is trying to access your system

RFC 1050

Anything you ever wanted to know (with a lot of what you didnt) is easily found via Request For Comments.

Internet RFC/FYI/STD/BCP Archives