New
#1
Problem with an HTML Application
Basically what happened is that I launched an HTML Application a few days ago without obviously knowing what it could do.
From the wiki page: "An HTA runs as a fully trusted application and therefore has more privileges than a normal HTML file; for example, an HTA can create, edit and remove files and registry entries."
The particular script I'm talking about came from a well-known imageboard.
Here is the commented source code of the HTA:
This script generates a random image with instructions to copy and paste the image to paint and save it as .hta. When you change it to .hta and run it, you execute the script which then causes you to become infected. It then reposts the same image, but embeds a random file from your computer into the file.
Now what I did to get rid of it was using DBAN to wipe my 2 HDDs and just to be safe I also changed all of my passwords.
Should I consider myself safe now?
Last edited by Brink; 02 Jan 2011 at 22:24. Reason: removed links