possible list virus

[Fisher, Scott]

Rave Racer asks:

> Let me know if it's me will you?

IDing infected listers for this one, at least, seems to be relatively
simple: look for the underscore in front of the address on infected email.
This prevents infectees from easily replying to the "carrier."

Note that, as Dan has said, the list itself is not sending out the virus
because the list software strips all attachments.  Individually infected
list members, however, can infect addresses the virus finds on their
computers.  You can read all about how it does that (and more, such as how
to clean your system) here:

http://securityresponse.symantec.com/avcenter/venc/data/w32.badtrans.b@mm.ht
ml

It's pretty nasty -- on startup, it scans open windows for likely passwords
and sends them to an address (all documented on that page), so Pantelis,
change all your passwords if you haven't already done so.

Oh, and if you never took Phil Payne seriously about the threat of MIME
encoding, read the whole page.

Best,

--Scott Fisher
  Tualatin, Oregon
  driveway badly infected with the Audi virus