CertCities.com | Column: Getting Rid of Hidden ActiveX Controls

CertCities.com -- The Ultimate Site for Certified IT Professionals

Microsoft®

Cisco®

Security

Oracle®

A+/Network+"

Linux/Unix

More Certs

Newsletters

Salary Surveys

Forums

News

Exam Reviews

Tips

Columns

Features

PopQuiz

RSS Feeds

Press Releases

Contributors

About Us

Advanced Search

Free Newsletter

Sign-up for the #1 Weekly IT
Certification News
and Advice.

See What's New on
Redmondmag.com!

• Cover Story: IE8: Behind the 8 Ball

• Tech-Ed: Let's (Third) Party!

• A Secure Leap into the Cloud

• Windows Mobile's New Moves

• SQL Speed Secrets

Let us know what you
think! E-mail us at:

Home

Editorial

Columns

Column Story

Friday: April 4, 2014

Zubair Alexander

PRINTABLE FORMAT

E-MAIL STORY

POST YOUR COMMENTS

MORE COLUMNS

Getting Rid of Hidden ActiveX Controls

Rooting out those oudated ActiveX controls can be hard, but it's not impossible. Zubair shows you how to find and eliminate them -- and leave your computer more secure.

by Zubair Alexander

2/26/2009 -- ActiveX controls are small programs (sometimes referred to as "add-ons") that are used to enhance your Internet browsing experience. Although they're good for certain things, ActiveX controls can also be a problem in that they're considered a potential security risk -- the reason being that average users don't always know when to install them.

Consider this scenario: A user surfing the Internet is prompted to install an ActiveX control. If a Web site can't work properly without ActiveX controls -- and a lot of sites won't -- the user might be tempted to install the controls without really knowing the consequences. You can see why the ActiveX technology as a whole is often criticized; it poses an inherent risk to computers.

You can use Mozilla's Firefox browser to avoid these risks, but of course the problem is that some sites (such as Microsoft.com) won't work properly if you don't use Internet Explorer. For those of you who are using IE and are dealing with ActiveX controls, you need to make sure to get rid of outdated ActiveX controls -- and this article will show you how to do just that.

Getting Started
A lot of people, including myself, use Secunia's online software inspector to inspect their operating systems and software for insecure versions and missing security updates. Although you may not see older versions of Adobe Flash Player ActiveX controls in Add/Remove Programs, Secunia's inspector can and will alert you to any risk. You can get rid of the older versions by following this procedure:

Find out where the Flash Player ActiveX control is installed. If you use Secunia's inspector, it will tell you exactly where the file is, as shown in Figure 1.

[Click on image for larger view.]

The file is called flash.ocx if you're using Flash Player version 6 or later. For version 5 or earlier, it's called swflash.ocx. Here are the default locations for the file:

C:\Windows\System\Macromed\Flash for Windows 95, 98 and WinME
C:\WinNT\System32\Macromed\Flash for Windows NT and 2000
C:\Windows\System32\Macromed\Flash for Windows XP and Vista

Sometimes you'll see the file name as something like flash9b.ocx, so you might want to look for all files that end with that .ocx extension. For example, you may find a file located at C:\Windows\SYSTEM32\Macromed\Flash\Flash9b.ocx.

Keep in mind that there are other locations that these players are installed. For example, Dreamweaver installs it in the same place where Dreamweaver itself is installed (such as Dreamweaver\Configuration\Plugins\NPSWF32.dll).

Also remember that a lot of vendors want to install software on your computer without your knowledge, or they'll bundle useful products with other "junk" software that then gets installed on the sly. Both Apple and Adobe are notorious for such "junk" software installations. For example, you may also find a version installed with Adobe AIR in C:\Program Files\Common Files\Adobe AIR\Versions\1.0\NPSWF32.dll. Why? Because Adobe bundles Adobe AIR with Acrobat Reader. Luckily, Secunia's report will give you all the details and information you need.

Now, here's the step-by-step procedure for getting rid of the old versions of Flash Player ActiveX controls.

Step 1
Locate the Flash Player version that you want to remove. Once you've located the file, use regsvr32 to unregister the ActiveX control. For example, to remove Flash9b.ocx, go to Start, Run and type regsvr32 "C:\Windows\SYSTEM32\Macromed\Flash\Flash9b.ocx" /u. You should see the message shown in Figure 2.

[Click on image for larger view.]

If there are other versions you want to remove, do the same for those. Remember to use quotes if there's a space in the file path. For example, to unregister the DLL installed by Adobe AIR, type regsvr32 "C:\Program Files\Common Files\Adobe AIR\Versions\1.0\NPSWF32.dll" /u.

Step 2
After the ActiveX has been successfully unregistered, locate the .ocx file and delete it.

Step 3
Locate the .inf file associated with the Macromedia Flash Player ActiveX control (swflash.inf) and delete it. In the Adobe AIR example I gave in Step 1, I would delete the entire folder 1.0 under Versions.

Step 4
Restart the computer.

Once you've successfully removed the old versions, you should run Secunia's inspector again to verify the removal, as shown in Figure 3.

[Click on image for larger view.]

Rooting out those hidden ActiveX controls can be difficult, but it's important to find and update (or delete) them to minimize the security risks to your computer.

Zubair Alexander, MCSE, MCT, MCSA and Microsoft MVP is the founder of SeattlePro Enterprises, an IT training and consulting business. His experience covers a wide range of spectrum: trainer, consultant, systems administrator, security architect, network engineer, author, technical editor, college instructor and public speaker. Zubair holds more than 25 technical certifications and Bachelor of Science degrees in Aeronautics & Astronautics Engineering, Mathematics and Computer Information Systems. His Web site, www.techgalaxy.net, is dedicated to technical resources for IT professionals. Zubair may be reached at .

More articles by Zubair Alexander:

FrontPage Server Extensions on 64-bit Windows Server 2008

Synching Outlook 2007 Contacts with SharePoint

Saving SharePoint Files to the Server

Moving, Deleting a File That's Always in Use

-- advertisement --

There are 43 user Comments for “Getting Rid of Hidden ActiveX Controls”
Page 1 of 5
3/5/09: DT says:	As soon as I hit the site for Secunia's online software inspector it crammed a bunch of Java stuff on my PC without even asking me for permission. And this is supposed to increase my security level???
5/7/10: Jmg from Pa says:	It sounds like it's a procedure, but doable. I'll give it a whirl. I have been cleaning my system myself, problem by problem. I'm down to the last few. Perhaps you can tell me how to get rid of old programs which appear on the menu as being installed, but are no longer valid and have no file size. There is no option to delete their names in the add or remove program. I have tried numerous ways to get rid of these, but I understand it is not easy and there is no actual program that does this. Any Ideas? Thanks Jmg
7/1/13: louis vuitton outlet from [email protected] says:	good share. louis vuitton outlet http://www.louisvuittonttoutlet.com
7/1/13: michael kors outlet online from [email protected] says:	ths michael kors outlet online http://www.michaelkorsioutlet.org/
7/5/13: gucci outlet store from [email protected] says:	ths gucci outlet store http://www.guccioutletstore-online.com
7/5/13: louboutin outlet from [email protected] says:	good share. louboutin outlet http://www.christianlouboutinoutleta.com
7/12/13: chanel bags cheap from [email protected] says:	CertCities.com \| Column: Getting Rid of Hidden ActiveX Controls chanel bags cheap http://thegreenteahouse.net/Tophandbags/
7/26/13: cheap Herve Leger outlet from [email protected] says:	nice articles cheap Herve Leger outlet http://www.herveleger-outlet.co.uk/
7/31/13: Fakeoakleysunglasses from [email protected] says:	The genuine historical past around sunglass that the gurus would not like consumers to discover. Fake oakley sunglasses http://www.sunglassesgood.com
8/5/13: Cheap Toms from [email protected] says:	The Lazy Guy's Tactic To The shoes Achievement Cheap Toms http://www.tomsoutlets-usa.com
First Page Next Page Last Page

Your comment about: “Getting Rid of Hidden ActiveX Controls”
Name:	(optional)
Location:	(optional)
E-mail Address:	(optional)
Comment:

-- advertisement (story continued below) --

top

Search | Site Map | Redmond Media Group | TechMentor Conferences | Tech Library Webcasts
This Web site is not sponsored by, endorsed by or affiliated with Cisco Systems, Inc., Microsoft Corp., Oracle Corp., The Computing Technology Industry Association, Linus Torvolds, or any other certification or technology vendor. CiscoÆ and Cisco SystemsÆ are registered trademarks of Cisco Systems, Inc. Microsoft, Windows and Windows NT are either registered trademarks or trademarks of Microsoft Corp. OracleÆ is a registered trademark of Oracle Corp. A+Æ, i-Net+T, Network+T, and Server+T are trademarks and registered trademarks of The Computing Technology Industry Association. (CompTIA). LinuxT is a registered trademark of Linus Torvalds. All other trademarks belong to their respective owners.

Reprints allowed with written permission from the publisher. For more information, e-mail