Hijacks HKCU\Software\Microsoft\Windows\CurrentVersion\Run
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""Does not extract any additional files (runs from itself only)
+ "(Default)" "" "" "File not found: C:\Documents and Settings\thisisu\Desktop\badfile.exe"
Locks you out of Windows including Safe Modes - Use boot CD or slave hard drive to fix
Delete the one bad exe you downloaded and executed and you should be back in Windows :)
VT - Thanks to rkhunter for uploading sample and thanks to Kafeine for proper classification
No comments:
Post a Comment