Open Tools > Internet Options > Security Tab. Select the Internet Zone icon of the globe and click on the Custom Level button. Change the following settings:

• Run components not signed with Authenticode: Disable
• ActiveX controls and plug-ins
• Binary and script behaviors: Disable
• Run ActiveX controls and plug-ins: Disable
• Script ActiveX controls marked safe for scripting: Disable

• Font Download: Disable

• Allow META REFRESH: Disable
• Allow Web pages to use restricted protocols for active content: Disable
• Display mixed content: Disable
• Drag and drop or copy and paste files: Disable
• Installation of desktop items: Disable
• Launching programs and files in an IFRAME: Disable
• Navigate sub-frames across different domains: Disable
• Software channel permissions: Maximum Safety
• Userdata persistence: Disable
• Web sites in less privileged web content zone can navigate into this zone: Disable

• Active scripting: Disable
• Allow paste operations via script: Disable
• Scripting of Java applets: Disable

These changes will have some impact on Web sites you visit. If you want to be able to run ActiveX or Scripting on certain Web sites you will need to add the sites to the Trusted sites zone.

You can add Web sites by selecting the Trusted sites icon on the Security tab and clicking the Sites button. Uncheck the Require server verification (https:) for all sites in this zone then add the sites you trust. Unsafe sites can be added to the Restricted Zone in much the same way or you can use IE-Spyad Information about IE-Spyad is at the link and the instructions for installation are included. You need to scroll down the page. This is passive protection and will not impact on your computer or internet connection resources.