JS APPACTXCOMP.A

[joker_927]

Apparently, it's a virus, and I have it. It's located in my temp internet files in a file called popup2003-2[1].htm

I guess it can't be cleaned, so what the ehck am I supposed to do. I ask because I can't find anything on it.

http://us.mcafee.com/virusInfo/defau...&virus_k=99217

It is a script based attack which is trying to exploit a bug in Internet Explorer (Microsoft Security Bulletin (MS00-075) Microsoft VM ActiveX Component' vulnerability). This vulnerability allows the attacker to take any action on the user's PC. The PC should be patched immediately and will need to be examined for any trojans etc which may have been installed.

http://www.microsoft.com/technet/tre...n/MS00-075.asp

If you have passed scans for additional Trojans and/or viri, then you should be good to go after deleting the infected file and applying the proper patch.

Hope this helps,
Robert Richmond

[joker_927]

Does this have anything to do with Java?

Yes. The script allows trusted level access to ActiveX controls via a java-related security hole, thus the exploit allows for a wide range of exploits. It appears many crackers have used the exploit to install Trojan applications on unpatched systems.

Only signed and verified applets should be allowed this level of access....

Quote:

If a malicious web site operator could persuade a user to visit his web site, he could utilize this vulnerability in the Microsoft VM to execute any ActiveX control present on the visiting user's machine. This would effectively let him take any action the user could take. If the user were running in a highly-restricted security context, he might be able to do very little. But if the user were running as a local administrator, the malicious user would gain complete control over the machine.

[joker_927]

I asked because I know M$ does not include Java in their OS now. I ran into this problem and had to download some Sun systems Java program. Then a windows Exploit still gets me? Pfft.

I just deleted the file...