Think of a number between 1 and 52. Say it out loud, and keep repeating while you read on.

Think of the name of someone you know (of the opposite sex).

Now count which place in the alphabet, the second letter of that name has.

Add that number to the number you were thinking of.

Say the number out loud 3 times.

Now count which place in the alphabet the first letter of your first name has, and substract that number from the one you just had.

Say it out loud 3 times.

Now sit back, watch the attached slide show and be surprised.

O vírus também procura, na máquina infectada, por indicações de contaminação por variantes da família do vírus Yaha e, caso encontre, mostra a seguinte mensagem ao usuário: "Hi there... it seems you were infected with Yaha.k. That worm however,written by an idiot who sPeLlS lIkE tHiS, abused my website and got me to receive the complaints. Therefore, I have just disinfected you. Don't worry tho.. as I didn't wanna steal from you, I gave you this virus (Win32.HLLP.YahaSux) in return. Greetz, Gigabyte [Metaphase VX Team]".

O Sahay se copia para a raiz da máquina como C: \ MathMagic.SCR e copia o arquivo de sistema MPREXE.EXE para as localidades C: \ WINDOWS \ SYSTEM \ YAHASUX.EXE e C: \ PROGRA~1 \ MIRC \ DOWNLOAD \ YAHASUX.EXE (neste último, diz a McAfee, o arquivo MPRE.EXE é copiado até ocupar todo o espaço em disco). Depois disso tudo, ele ainda reinicia a máquina da vítima.

Por enquanto, o vírus Sahay está classificado como de baixo risco.