good points but i didnt mean to allude to the actual virus Stuxnet but to its assumed method of communication to the not-web-connected Iranian nuclear program. its alleged that the virus was put on a usb drive and left in the facility for some unsuspecting employee to insert into a computer out of curiosity.
That’s all good, but since Windows 7 you could no longer have an autorun.ini automatically run from a USB as that functionality was disabled to prevent the spread of malware through a USB. The Iran computers were first infected in 2007 and not discovered until 2010. The Windows operating system being used in 2007 was pre Windows 7. Thus you can’t do it by just inserting it anymore. He had to have clicked on something that started the attack on his computer.