I was at some site looking around and it said click here for an awsome cupholder or something like that and somehow they opened my CD-ROM drive. I was wondering how they could be able to do that because I've never seen anything like it.
Printable View
I was at some site looking around and it said click here for an awsome cupholder or something like that and somehow they opened my CD-ROM drive. I was wondering how they could be able to do that because I've never seen anything like it.
this was on a website, correct? i mean, you didn't download a program in the process, right? because i know that it is possible in c. did you look at the source, or at least the file extension? like, was it done in php, or what? so many question marks in my post...now i'm curious too as to how they accomplished this. please give a little more info.
Here is the script that i found that i think is what did it could someone maybe explain.
<html>
<head>
<title>Free Cup Holder</title>
<script LANGUAGE="VBScript">
<!--
MsgBox "Click here to recieve a free cup holder",64,"Your free Cup holder"
Set oWMP = CreateObject("WMPlayer.OCX.7" )
Set colCDROMs = oWMP.cdromCollection
if colCDROMs.Count >= 1 then
For i = 0 to colCDROMs.Count - 1
colCDROMs.Item(i).Eject
Next ' cdrom
End If
-->
Thanks
Try scanning your system maybe trojan programs had cause to open your CD drive and just a coincidence of clicking the site and the opening of your CD-ROM drive, some trojans also disguised to use sites and any method of penetrating the system. You can also use tools like ZoneAlarm to protect you from invaders.
show us the address
kilerboots.
Maybe im wrong if trojans hits your pc, i've seen your code posted and it need some modification, and it works. And could you please include the url or what sites did you get in.? May be its another exploits you've found.
yippee! now i understand...that would be Microsoft's Component Object Module technology. M$ has defined every function and attribute of some of it's applications with methods and properties, that can be accessed with any programming language. The main purpose of it, however, was for use with VB. Don't worry, you don't have a virus or trojan, lol.
my analysis (btw, i don't really know vbs, this is just my interpretation)
Set oWMP = CreateObject("WMPlayer.OCX.7" )
Creates an object of windows media player
Set colCDROMs = oWMP.cdromCollection
creates a property of a cd, as though you just inserted a cd into your cd-drive
if colCDROMs.Count >= 1 then
For i = 0 to colCDROMs.Count - 1
colCDROMs.Item(i).Eject
Next ' cdrom
End If
i believe the purpose of the loop is in case you have multiple cd drives, so it'll open all of them.
hope i helped :) and thanks for the code, it's really very interesting.
well well i think 1 year ago a friend of my received a file in yahoo chat room which caused similler problem and i am sure it wasn't trojan it was that script can u post that url plz
yup. if you post the url many people can look at it in much more detail.
Well i knew it wasn't a trojan i just never seen anything like it, but here is the url but be aware that you CD-ROM drive will open.
http://www.funnyjunk.com/pages/cupholder.htm
what, was my analysis incorrect?
Coder Puffin:
I think you were correct in your analysis.
I have multiple drives and it opened them both.
When I first looked at the code, thats what I figured it did.
It just takes advantage of code that works with WMP.
I bet if you were to do that on a machine without WMP, it wouldn't do anything.
youall noticed that you got your free cup holder
Here's my question. Coder....where can I get a list of these applications that M$ has defined for their own amusement and ours? >grins<
well it didn't work on my PC at work. I tried it first in Opera, which I'm sure is the reason it didn't work the first time ;)
So I tried it in IE 5 on a 2k machine and it didn't work there either. Perhaps it needs IE 6 to pull this stunt off? I'm no programmer so I don't have a clue what's needed for this to work correctly.
Looking at the code... it looks like you need windows media player installed.Quote:
well it didn't work on my PC at work. I tried it first in Opera, which I'm sure is the reason it didn't work the first time
So I tried it in IE 5 on a 2k machine and it didn't work there either. Perhaps it needs IE 6 to pull this stunt off? I'm no programmer so I don't have a clue what's needed for this to work correctly.
If I remember correctly... on 2k, you have to download that. Or at least a newer version.
I linked a couple of people to that. It worked on some, but not on all.
Quote:
Set oWMP = CreateObject("WMPlayer.OCX.7" )
Creates an object of windows media player
I have two different CD Drives and it also opened them both. I don't know much about code but I think that everbody else is pretty much right about this. For me when I create a CD in Windows Media Player once it is done it opens my cd drive. Somehow this code creates an object making the computer think that it finished writing a cd. Maybe. Thats my assumption.
ah, well I do have Windows Media player installed on this machine right now, but it's only 6.4.09.1121 so it's a bit old.
Interesting. I'll have to try this on one of my home systems and see which one it works on :)
Your analysis was right on, we had written a proof of concept a few years back that used vbscript to format your hard drive over the web. sent that code off to MS and cert and they did nothing about it :( . basically you need to set your internet security settings higher to avoid this type of stuff. So for those of you who it didn’t work for good job you are doing something right :)Quote:
as for the apps that microsoft in which m$ has implemented COM, it is almost impossible to find out what the different objects are. i do know that newer versions of excel, word, etc. can be manipulated as such, and php4 has support for doing so. unless someone has already written one, i will try to write a tutorial on com. does anyone care what language i use?
Ugh, i didnt like that site it crashed my computer!
Why this happened is most likely attributed to the fact that i have several virtual cd drives running (4) using daemon tools. I use them for iso rips etc becuase i rip alot of my games into iso's, and use the cd drive as a battery instead of a cd drive.
ps im on a laptop, thats why i need batteries.