Written By Dr-Hack on January 10th, 2009 | 16 Comments
Such malicious AUTORUN.INF files are easy to spot. Here’s what they typically look like:
But Downadup does not create files such as this. What it drops on USB drives are AUTORUN.INF files that look like this:
So, that’s binary garbage. Won’t work. Right?
The noteworthy text is found somewhere around the middle of this 90kB file. At the bottom of the screenshot. See it?
â€¦which would execute a DLL called jwgvsq.vmx from a hidden folder on the USB drive.
The rest of the binary junk are comments and will be ignored by Windows. And of course, the file size and amount of binary junk is different every time.
Nice trick.Â Â eh ?
Now lets Disable AutoRun :Â
Disabling Auto-Run is something we think everyone should do, not only for security from viruses and spyware, but so you’ll never need to deal being unable able to listen to your music on your devices. Here’s how to do it in Windows XP.
In Windows Click Start, then Click Run
Double click “
Autorun” the value is set to
1 by default, change it to
If you can’t go with all this then you can try doing this :
From the start menu, click run and enter
Select ‘Administrative templates / System’
double click on ‘Disable autoplay’ in the right pane
Hope this keeps things a little under control
The following two tabs change content below.
Founder and Creator of Hackology Portal and Servers .
Have a long career in network pen testing and hacking servers to enable a harder security currently in research mode where i help others on my Forum