When you stick a thumb drive infected with a worm like Conficker/Downadup into a clean system, the normally handy AutoPlay feature launches the worm and spreads the infection.
You can prevent this by flipping the master switch.
Here's how:
- Click on the "Start" button and pick "Run."
- Enter the text GPEDIT.MSC and press Enter. After a moment, the Group Policy editor window will open.
- In the left panel, double-click on "Computer Configuration."
- Double-click on "Administrative Templates."
- Double-click on "System."
- In the right panel near the bottom of the list, double-click on "Turn off autoplay."/
- The default setting is the "Not configured." Put a bullet in "Enabled."
- Make sure "Turn off Autoplay on:" is set to "All drives."
- Click on "Apply," and then "OK".
- Close the Group Policy editor window.
Source: http://www.sans.org/tip_of_the_day.php#1257
