恶意JavaScript代码, [英] Malicious JavaScript code,
问题描述
是附件,当使用键盘记录器执行受感染的计算机时,
木马等等
现在看来,最大的问题是阅读网页或HTML电子邮件
并通过脚本受到影响。我的理解是,脚本从网上下载恶意程序并将其设置为通过启动文件夹或注册表启动时运行的
。
我对此并不了解;有人可以建议一个好的网站
开始更多地了解这些威胁。我用谷歌搜索了,但是我没有确定最好的搜索条件,因为那里有很多
的信息,有经验的人认可的网站就是一个
很多帮助。
特别是,似乎JavaScript下载了一个没有
的特洛伊木马用户点击附件这是个大问题。
谢谢。
没人在这里写道:AIUI,不久以前,当对个人用户构成威胁时,
是执行带有键盘记录器,特洛伊木马等的受感染机器的附件。 />
现在看来,最大的问题是阅读网页或HTML电子邮件并受到脚本的影响。我的理解是,脚本从网上下载恶意程序并将其设置为在启动时通过启动文件夹或注册表运行。
我不喜欢对此知之甚多;有人可以建议一个好的网站来开始学习这些威胁。我用谷歌搜索了,但我不确定最好的搜索条件,因为那里有太多的信息,一个经验丰富的人认可的网站将是一个很大的帮助。
特别是,似乎没有用户点击附件的JavaScript下载特洛伊木马是一个大问题。
使用javascript只是编写代码的众多方法之一,这将导致计算机出现严重问题。其他包括ActiveX,只有
损坏的图像,其中隐藏着错误的代码。有一段时间你可以
避免不良网站而不打开未知电子邮件,而且你通常不会感染
。一段时间以来,有一些错误会感染<只要你登录网络就可以获得
。特别是如果你有一个Windows操作系统,你必须采取所有微软的关键更新,拥有良好的病毒保护,拥有良好的防火墙,并保持更新。否则你
很可能很快就会被感染。一些反病毒程序有
链接,这些链接可以让你找到那些新的错误,并且
描述你找到了一个名字的旧bug。
文章< 11 ********************** @ z14g2000cwz.googlegroups .com>,
sp*******@cwdjr.info 说... < blockquote class =post_quotes>
没有人在这里写道:AIUI,它不是很久以前对个人用户的威胁,
是附件,当执行受感染的机器时用键盘记录器,特洛伊木马等等。
现在看来,最大的问题是阅读网页或HTML电子邮件并受到脚本的影响。我的理解是,脚本从网上下载恶意程序并将其设置为在启动时通过启动文件夹或注册表运行。
我不喜欢对此知之甚多;有人可以建议一个好的网站来开始学习这些威胁。我用谷歌搜索了,但我不确定最好的搜索条件,因为那里有太多的信息,一个经验丰富的人认可的网站将是一个很大的帮助。
特别是,似乎没有用户点击附件的JavaScript下载特洛伊木马是一个大问题。
使用javascript是只是编写代码的许多方法之一,这将导致计算机出现严重问题。其他包括ActiveX,只是隐藏在其中的错误代码的损坏图像。有一段时间你可以避免坏网站而不打开未知的电子邮件,而且你通常不会被感染。一段时间以来,有一些错误会感染你,如果你签了到网上。特别是如果你有一个Windows操作系统,你必须采取所有微软的关键更新,拥有良好的病毒保护,拥有良好的防火墙,并保持更新。否则你
很可能很快就会被感染。一些反病毒程序有链接,可以让你找到那里的新bug,并描述一个你找到名字的旧bug。
请随意详细了解JavaScript将如何导致
严重问题。还要详细说明如何只是在网上签署
。会导致感染。
-
Hywel
http://kibo.org.uk/
cwdjrxyz上述以下的1/27 / 2006年6:05 PM:Noone这里写道:AIUI,它不是很久以前对个人用户的威胁,
是附件时使用键盘记录程序,特洛伊木马等执行受感染的计算机。
现在看来,最大的问题是阅读网页或HTML电子邮件并受到脚本的影响。我的理解是,脚本从网上下载恶意程序并将其设置为在启动时通过启动文件夹或注册表运行。
我不喜欢对此知之甚多;有人可以建议一个好的网站来开始学习这些威胁。我用谷歌搜索了,但我不确定最好的搜索条件,因为那里有太多的信息,一个经验丰富的人认可的网站将是一个很大的帮助。
特别是,似乎没有用户点击附件的JavaScript下载特洛伊木马是一个大问题。
使用javascript是只是编写代码的许多方法之一,这将导致计算机出现严重问题。其他包括ActiveX,只是隐藏在其中的错误代码的损坏图像。有一段时间你可以避免坏网站而不打开未知的电子邮件,而且你通常不会被感染。一段时间以来,有一些错误会感染你,如果你签了在网上。
我喜欢Hywel这个。我想看一些关于JS会导致的说法的例子,或者说b / b
的解释。 (不是可以原因)
严重问题。以及只是登录网络可以感染
我的电脑。
-
兰迪
comp.lang.javascript常见问题 - http://jibbering.com/faq &新闻组每周
Javascript最佳实践 - http://www.JavascriptToolbox .com / bestpractices /
AIUI, it was not all that long ago when the threat to personal users,
was attachments that when executed compromised machines with keyloggers,
trojans, etc.
Now it seems that the big problem is reading a webpage or an HTML e-mail
and getting affected through the scripting. My understanding is that
the script downloads the malicious program from the web and sets it to
run on start up through the start-up folder or in the registry.
I don''t know much about this; can someone suggest a good web site to
start learning a bit more about these threats. I have googled, but I am
not quire sure of the best search terms, and since there is so much
information out there, a site that experienced people endorse would be a
lot of help.
In particular, it seems as if JavaScript dowloading a trojran without
the user clicking an attachment is a big problem.
Thanks.
Noone Here wrote:AIUI, it was not all that long ago when the threat to personal users,
was attachments that when executed compromised machines with keyloggers,
trojans, etc.
Now it seems that the big problem is reading a webpage or an HTML e-mail
and getting affected through the scripting. My understanding is that
the script downloads the malicious program from the web and sets it to
run on start up through the start-up folder or in the registry.
I don''t know much about this; can someone suggest a good web site to
start learning a bit more about these threats. I have googled, but I am
not quire sure of the best search terms, and since there is so much
information out there, a site that experienced people endorse would be a
lot of help.
In particular, it seems as if JavaScript dowloading a trojran without
the user clicking an attachment is a big problem.
Using javascript is just one of many ways of writing codes that will
cause computers serious problems. Others include ActiveX, and just
corrupted images with bad code hidden in them. At one time you could
avoid bad sites and not open unknown email, and you usually would not
get infected.For some time now there have been bugs that will infect
you just if you sign onto the web. Especially if you have a Windows OS,
you must take all Microsoft critical updates, have good virus
protection, have a good firewall, and keep them all updated. Else you
most likely will be infected soon. Some of the anti virus programs have
links that will allow you to find what new bugs are out there and will
describe an old bug for which you have found a name.
In article <11**********************@z14g2000cwz.googlegroups .com>,
sp*******@cwdjr.info says...
Noone Here wrote:AIUI, it was not all that long ago when the threat to personal users,
was attachments that when executed compromised machines with keyloggers,
trojans, etc.
Now it seems that the big problem is reading a webpage or an HTML e-mail
and getting affected through the scripting. My understanding is that
the script downloads the malicious program from the web and sets it to
run on start up through the start-up folder or in the registry.
I don''t know much about this; can someone suggest a good web site to
start learning a bit more about these threats. I have googled, but I am
not quire sure of the best search terms, and since there is so much
information out there, a site that experienced people endorse would be a
lot of help.
In particular, it seems as if JavaScript dowloading a trojran without
the user clicking an attachment is a big problem.
Using javascript is just one of many ways of writing codes that will
cause computers serious problems. Others include ActiveX, and just
corrupted images with bad code hidden in them. At one time you could
avoid bad sites and not open unknown email, and you usually would not
get infected.For some time now there have been bugs that will infect
you just if you sign onto the web. Especially if you have a Windows OS,
you must take all Microsoft critical updates, have good virus
protection, have a good firewall, and keep them all updated. Else you
most likely will be infected soon. Some of the anti virus programs have
links that will allow you to find what new bugs are out there and will
describe an old bug for which you have found a name.
Feel free to go in to some detail about how JavaScript "will cause
serious problems". Also give some detail on how "just sign[ing] onto
the web" will cause infection.
--
Hywel
http://kibo.org.uk/
cwdjrxyz said the following on 1/27/2006 6:05 PM:Noone Here wrote:AIUI, it was not all that long ago when the threat to personal users,
was attachments that when executed compromised machines with keyloggers,
trojans, etc.
Now it seems that the big problem is reading a webpage or an HTML e-mail
and getting affected through the scripting. My understanding is that
the script downloads the malicious program from the web and sets it to
run on start up through the start-up folder or in the registry.
I don''t know much about this; can someone suggest a good web site to
start learning a bit more about these threats. I have googled, but I am
not quire sure of the best search terms, and since there is so much
information out there, a site that experienced people endorse would be a
lot of help.
In particular, it seems as if JavaScript dowloading a trojran without
the user clicking an attachment is a big problem.
Using javascript is just one of many ways of writing codes that will
cause computers serious problems. Others include ActiveX, and just
corrupted images with bad code hidden in them. At one time you could
avoid bad sites and not open unknown email, and you usually would not
get infected.For some time now there have been bugs that will infect
you just if you sign onto the web.
I am like Hywel on this one. I would like to see some examples, or an
explanation, of your claims that JS "will cause" (not "can" cause)
serious problems. And as well as "just signing onto the web" can infect
my PC.
--
Randy
comp.lang.javascript FAQ - http://jibbering.com/faq & newsgroup weekly
Javascript Best Practices - http://www.JavascriptToolbox.com/bestpractices/
这篇关于恶意JavaScript代码,的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
