well, i don't have an activex plugin(i don't like activex) and i'm having difficulty finding the page again, i'll look for it tho. all the evidence seems to be pointing to flash right now. i'm using flashplayer 8, but i've been reading about a vulnerability like this in flash 7. i'm looking into a utility called flashblock which disables flash in gecko-based browsers until you click on a flash object, but in my case i'd probably just have clicked on it to get at the pron and infected myself