Just found this on another BB ..

A huge whole on XP system, if you enter this phrase: "hcp://system/DFS/uplddrvinfo.htm?file://c:\*" on your explorer (or run) bar it will erase your HD

DO NOT TRY THIS

To fix this just go to:
C:\windows\pchealth\helpctr\system\dfs\uplddrvinfo.htm
Delete the file uplddrvinfo.htm or just rename it and you will be
protected from the vulnerability. This will not bother Windows at all.
If you have installed Service Pack 1 for WindowsXP you are also
protected. While it is unnecessary to do both, it couldn't hurt.

"hcp://" is the short for H lelp C ontrol C enter
Its the windowx XP help center.