I don't get it on Drudge myself (no telling what randomised ad servers are going to server up), but jabber.ocx is a new filename used by the TopConverting parasite.

Hopefully it was only a 'normal' ActiveX drive-by download which can usually be refused; however TopConverting is commonly installed using an 'aggressive' downloader (ie. it keeps opening JavaScript errors saying you have to agree to the download when you refuse), and it is also often loaded by IE security hole exploits, which is probably why McAfee is picking it up.
posted by BobInce at 7:49 AM on April 6, 2005

It may or may not be related, but if professorbainbridge's ISP is running a Windows NT4 or 2000 DNS resolver, they may have fallen prey to a current DNS cache poisoning attack, which seems to be linked to spammers and malware distributors.

As the linked report indicates, a limited number of internet users have been affected by these apparent attacks since late February, which involve a sophisticated and changing tooset of exploits used to redirect web users to malware-infected advertising. The attacks are ongoing and as of yet unresolved.

via /.
posted by drumcorpse at 12:19 PM on April 6, 2005

This thread is closed to new comments.