People receive Navidad via e-mail in the form of an attachment named Navidad.exe. Correspondents receive the attachment as a reply message to an e-mail sent to an infected user. Once the virus has infected a PC, it prevents you from launching any programs of the .exe type, which includes basic applications such as Microsoft Word. Navidad is the Spanish word for Christmas (See "Feel Secure? Don't Be Sure--Even Microsoft Got Hacked.")
McAfee's AVERT (Anti-Virus Emergency Response Team) says more than 40 instances of the virus have been reported in the last three days. This particular virus is proving troublesome because it doesn't contain a specific subject header that can help people identify it. Instead, it comes as a reply message that bears the recipient's own subject header. The virus is of the Internet worm type (see "Worry About the Worm") and uses MAPI Outlook to spread.
An Eye is Your Clue (and Cure)
If the infected attachment is run, a dialog box appears with an error message reading "UI." An icon of a blue eye then appears next to the clock icon in the system tray at the lower right corner of the PC screen. The Trojan horse virus is saved to the file "winsvrc.