Ed, my question is, how do you know what it is if you don't open the message? Surely it doesn't say "Kak Something" in the subject line...or did it? Also, if you have the "preview pane", I think it's called, open so that you can actually see the message, is that the same as opening it? I feel like I ought to be on an "Outlook Express for Dummies" mail list. Thanks. Elizabeth ----- Original Message ----- From: "Ed Heral" <[email protected]> > I did not look to see. <G> My understanding from the Symantec site is that > this worm comes in the message as a signature file or whatever and opening > the message activates the worm. Here is what Symantec says about the Kak worm > > VBS.KakWorm spreads using Microsoft Outlook Express. It > attaches itself to all outgoing messages via the > Signature feature > of Outlook Express and Internet Explorer newsgroup > reader. > > The worm utilizes a known Microsoft Outlook Express > security > hole so that a viral file is created on the system > without having to > run any attachment. Simply reading the received email > message > will cause the virus to be placed on the system. > > So it isn't in the message as being part of the message, but as a signature > type attachment it will be activated when the message is opened. Therefore > I deleted it instead of seeing just how it came. It was a reply message > from someone I had sent a message to. They found it and deleted it on > their computer. > Ed

I believe it did say what the virus/worm was that it caught. The messages are not show AT ALL until after Norton is finished. When the messages come in, Norton filters them and then if nothing is found, it allows them to go through. I got the message, I deleted it and then Norton placed the rest of the messages in my email program. Which WAS NOT Outlook Express. Ed At 01:20 AM 6/24/00, Hughes wrote: >Ed, my question is, how do you know what it is if you don't open the >message? Surely it doesn't say "Kak Something" in the subject line...or did >it? Also, if you have the "preview pane", I think it's called, open so that >you can actually see the message, is that the same as opening it? > >I feel like I ought to be on an "Outlook Express for Dummies" mail list. >Thanks. > >Elizabeth > >----- Original Message ----- >From: "Ed Heral" <[email protected]> > > > I did not look to see. <G> My understanding from the Symantec site is >that > > this worm comes in the message as a signature file or whatever and opening > > the message activates the worm. Here is what Symantec says about the Kak >worm > > > > VBS.KakWorm spreads using Microsoft Outlook Express. It > > attaches itself to all outgoing messages via the > > Signature feature > > of Outlook Express and Internet Explorer newsgroup > > reader. > > > > The worm utilizes a known Microsoft Outlook Express > > security > > hole so that a viral file is created on the system > > without having to > > run any attachment. Simply reading the received >email > > message > > will cause the virus to be placed on the system. > > > > So it isn't in the message as being part of the message, but as a >signature > > type attachment it will be activated when the message is opened. >Therefore > > I deleted it instead of seeing just how it came. It was a reply message > > from someone I had sent a message to. They found it and deleted it on > > their computer. > > Ed > > > >============================== >Get a MASTERCARD with NO Credit Check or Up Front >Cash Security Deposit and GUARANTEED* Approval! >NO Interest Rate! http://www.dollarsonthenet.com/cgi-bin/track/1631/19