I don't think Msolga is saying, as such, that one of A2k's advertisers gave her spyware.
She said that her problems and that of others is "directly as a result of visiting A2K" and the problem she is experiencing is spyware on her machine.
Elsewhere she has expressed frustration that her problems were "avoidable" and pretty much faulted A2K for having allowed it.
Whatever the specifics may be, that she is faulting me for her problems in various places is clear enough. And I don't think her report is accurate.
When it happens with the Winfixer ad, it does not simply pop up, it "forces" the browser to open a new page, and takes you there. The level of annoyance Msolga is expressing is, I think, due to the fact that it does this not once, but multiple times. Her browser was blocking numerous popups, then throwing her out of A2k. I have had to close my browser to stop it, before I blocked all popups.
I understand the frustration, as it becomes a frustration for me to solve in situations like this. Thing is, she has malicous code on her machine, and that
is the problem.
I can do very little to help with this. I can't fix her computer for her remotely and can only advise on it if she can collect the necessary information.
Even when all goes well it can take hours of work over days to get it off. I infected a test box with Winfixer a while ago and it was a beast to remove even with direct access to the box.
If you have time to comment about it, where DO we get the damn spyware, that I assume is causing this problem?
The most common vector is the user. I would bet that over 90% of spyware on any user's machine is let in my a user. The user will often be allowing installation of a program that had adware or spyware bundled in by a distributor.
If the user does not allow the spyware either through explicit consent or through consent given after a social engineering exploit (e.g. fooling the user into allowing it ala the Trojan Horse) then the computer in question is usually remote exploitable.
That means that it is running insecure spyware somewhere (people usually think OS but the greatest surface of attack comes from other apps installed on the OS) or there are incorrect settings (e.g. allowing all Active X or equivalent browser plugins to run) or security (no recent virus definitions means it can come in a virus payload).