Persistent ADware Infection

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View
I am trying to determine the source of a persistent piece of adware,
which infects my computer on a daily basis.

Every day, sometimes more than once, I get an advisory from Norton
2005 that it has deleted 'access_now.exe'  from my temporary
directory. This is the '0Cat Yellow Pages' browser redirect.  

What want to know is; how can a 3rd party (I'm assuming a web site)
insert an _executable_ on my computer without my consent?  Is there an
Active-X setting that I can adjust to prevent this?

I'm running a fully patched W2k machine.



Re: Persistent ADware Infection

Quoted text here. Click to load it

You tell IE to not download unsigned Active X Controls.

You tell IE to prompt on signed Active X Control downloads.
Quoted text here. Click to load it

Well, if you have download unsigned Active X Controls enabled, then IE is
going to allow the download.

Quoted text here. Click to load it

You can use Firefox (free) which works similar to IE but is not open to
attack like IE for your surfing and use IE when you're forced to do so.

Duane :)

Re: Persistent ADware Infection

Is "Norton 2005" NIS 2005? If so, you can configure it to handle Active-X
the way you want it to be.

Quoted text here. Click to load it

Site Timeline