"... is a MAPI worm that emails itself out as one of several different file names. This worm also drops a backdoor trojan that logs keystrokes. " It is EXPLODING out there! < i keep receiving copies from GR-searchers > I now also have confirmation from another source that the McAfee AV software failed to detect this latest virus variant!!! PLEASE BE CAREFUL!!! To those who have become infected there is perhaps small consolation in " It is not necessary for a user to double-click on the attachment to become infected as this worm can exploit a security vulnerability in Microsoft Outlook and Outlook Express. To prevent re-infection, users of Microsoft Outlook and Outlook Express should install the following patch available from Microsoft:" * Read more about it at securityresponse.symantec.com/avcenter/venc/data/[email protected] which has just been updated! Unfortunately there is no "one-off" removal tool at http://www.symantec.com/avcenter/tools.list.html yet.. But that's a good site to bookmark! A lesser known but better** site yet is: http://www.sophos.com/ with: Quick links: Advice from Microsoft on how to secure your PCs and servers against W32/Badtrans-B < in case U didn't keep up with the security bulletins! > Sophos analysis of W32/Badtrans-B Download the IDE for W32/Badtrans-B How to use virus identity (IDE) files Hopefully this helps... My apologies to listmembers who have to put up with anti-virus messages; however, this is likely the worst outbreak we have seen in a while!!! With a major detection failure to boot! As always, ;j. Jay W. Meeuwig, List Keeper * See: http://www.sophos.com/support/faqs/w32badtransb.html ** They allow a 30day TRIAL!!! Which will at least get U goin'! See: http://www.sophos.com/downloads/products/