Re: For Windows users :: HAPPY99 is dangerous

["Pete St. Onge" <pete@seul.org>]

Bill,
     A few folks on our end had the same problem with HAPPY99 as well; I
got a frantic phone call at home on the weekend when a colleague's
mother ended up opening an infected attachment without scanning it
first. Unfortunately, the unwary don't realize the signifigance of the
*.exe extension. On the bright side, it's pretty easy to recover from.
     This is pretty much a Win9x issue, as any mac / linux box should be
relatively immune. That said, could such an approach be used to hit a
linux installation, assuming that the user is a newless cluebie with the
appropriately low permissions?
     Can't really say if this is an issue with NT, as I haven't had the
problem with my NT box here. Then again, the user I share the station
with (housemate) is pretty conscientious (and I keep my install of
Norton up to date!).
     
> I was recently infected with the HAPPY99.EXE aka W32/SKA virus.  It
> has cost me access to one maillist, as well as much frustration.
> As it infects only Windows systems, I doubt if any of y'all have had
> an issue.  If you have good software available, it apparently leaves
> a signature in the outgoing header <X-Spanska: Yes>.  Good Luck.
     Try look for SKA*.* anywhere below %systemroot% but make sure you
don't delete it until you've read those other links!

     Good luck!

     Pete

-- 
Pete St. Onge - McGill U.  Limnology - Fun with Ropes & Buckets
pete@seul.org                  http://wwp.mirabilis.com/4322052
---------------------------------------------------------------
SEUL - Linux for All!                       http://www.seul.org
Programming For Science Page        http://www.trentu.ca/~erpds