> I received an e-mail last night in Outlook Express.  Earlier this week I
> updated my Win2K system with SP2 and I also updated to IE 5.5 SP2.  I
> also am running McAfee and have all my e-mail attachments scanned.  The
> virus was able to run by merely previewing e-mail.  I received it as

> Holiday Savings".  I normally click on this kind of stuff and delete it,
> but when I went back to my inbox, it was empty.  I knew exactly where to
> look and sure enough with a little testing I can easily eliminate all
> mails from my inbox by previewing this e-mail.  Once infected it will
> remove all e-mail from the current folder when you close Outlook
> Express.  I immediately took the computer off line and am using a
> different computer that was turned off at the time of the attack as well
> as I am using Netscape 4.7 for the time being.  I was able to reinstall
> IE 5.5 and Internet components and I believe I have removed the virus
> from my computer.  My mails remain in my inbox when I close and restart
> Outlook Express though I am not up to SP2 yet because the computer it
> still off of any networks until I get this identified.  I am concerned
> that it may still be lying on my disk and waiting until I hook the
> computer up to a network to try and propagate itself since no scanning
> software appears to catch it.  I have provided the virus e-mail to CERT
> and they are looking into it.  Their initial diagnosis was SirCAM, but I
> believe that was a red herring.  The reason it that SirCAM has never
> been reported to delete mail folders as well as McAfee is supposed to
> protect against SirCAM.  Also I had received a couple of e-mails earlier
> in the day that did have SirCAM attached and they went in the Deleted
> File folder.  I was able to look at the virus in a hex editor I can see
> the 2 e-mails that had SirCAM attached and I also see some other e-mails
> that I had previously deleted.  I believe the virus is trying to
> disguise itself by using whatever it finds in the trash, and in my case
> some of my garbage contained SirCAM.  I believe this is a different and
> yet unreported virus.  Has anyone heard of anything like this?  I can't
> find anything about "deleting inbox" on any of the Virus detection
> sites.  I am concerned about propagating it and will keep my computer
> off line until I can identify and eliminate it.
> Thanks for your help!
> Dave

> Hi,

> I am not sure about if this issue comes from a virus, but it is also
> possible...

> But I am use of one thing that, if McAfee runs with Outlook Express, it
> causes the loss of all e-mails in a randomly selected directory and / or the
> directory that you are in !!! ( Sometimes , you can also see / watch that
> e-mails disappear . )

> This is a bug of VSC which is not solved yet.

> Good Luck..

> Orhan

> > I received an e-mail last night in Outlook Express.  Earlier this week I
> > updated my Win2K system with SP2 and I also updated to IE 5.5 SP2.  I
> > also am running McAfee and have all my e-mail attachments scanned.  The
> > virus was able to run by merely previewing e-mail.  I received it as

> > Holiday Savings".  I normally click on this kind of stuff and delete it,
> > but when I went back to my inbox, it was empty.  I knew exactly where to
> > look and sure enough with a little testing I can easily eliminate all
> > mails from my inbox by previewing this e-mail.  Once infected it will
> > remove all e-mail from the current folder when you close Outlook
> > Express.  I immediately took the computer off line and am using a
> > different computer that was turned off at the time of the attack as well
> > as I am using Netscape 4.7 for the time being.  I was able to reinstall
> > IE 5.5 and Internet components and I believe I have removed the virus
> > from my computer.  My mails remain in my inbox when I close and restart
> > Outlook Express though I am not up to SP2 yet because the computer it
> > still off of any networks until I get this identified.  I am concerned
> > that it may still be lying on my disk and waiting until I hook the
> > computer up to a network to try and propagate itself since no scanning
> > software appears to catch it.  I have provided the virus e-mail to CERT
> > and they are looking into it.  Their initial diagnosis was SirCAM, but I
> > believe that was a red herring.  The reason it that SirCAM has never
> > been reported to delete mail folders as well as McAfee is supposed to
> > protect against SirCAM.  Also I had received a couple of e-mails earlier
> > in the day that did have SirCAM attached and they went in the Deleted
> > File folder.  I was able to look at the virus in a hex editor I can see
> > the 2 e-mails that had SirCAM attached and I also see some other e-mails
> > that I had previously deleted.  I believe the virus is trying to
> > disguise itself by using whatever it finds in the trash, and in my case
> > some of my garbage contained SirCAM.  I believe this is a different and
> > yet unreported virus.  Has anyone heard of anything like this?  I can't
> > find anything about "deleting inbox" on any of the Virus detection
> > sites.  I am concerned about propagating it and will keep my computer
> > off line until I can identify and eliminate it.
> > Thanks for your help!
> > Dave

> Hi,

> I am not sure about if this issue comes from a virus, but it is also
> possible...

> But I am use of one thing that, if McAfee runs with Outlook Express, it
> causes the loss of all e-mails in a randomly selected directory and / or the
> directory that you are in !!! ( Sometimes , you can also see / watch that
> e-mails disappear . )

> This is a bug of VSC which is not solved yet.

> Good Luck..

> Orhan

> > I received an e-mail last night in Outlook Express.  Earlier this week I
> > updated my Win2K system with SP2 and I also updated to IE 5.5 SP2.  I
> > also am running McAfee and have all my e-mail attachments scanned.  The
> > virus was able to run by merely previewing e-mail.  I received it as

> > Holiday Savings".  I normally click on this kind of stuff and delete it,
> > but when I went back to my inbox, it was empty.  I knew exactly where to
> > look and sure enough with a little testing I can easily eliminate all
> > mails from my inbox by previewing this e-mail.  Once infected it will
> > remove all e-mail from the current folder when you close Outlook
> > Express.  I immediately took the computer off line and am using a
> > different computer that was turned off at the time of the attack as well
> > as I am using Netscape 4.7 for the time being.  I was able to reinstall
> > IE 5.5 and Internet components and I believe I have removed the virus
> > from my computer.  My mails remain in my inbox when I close and restart
> > Outlook Express though I am not up to SP2 yet because the computer it
> > still off of any networks until I get this identified.  I am concerned
> > that it may still be lying on my disk and waiting until I hook the
> > computer up to a network to try and propagate itself since no scanning
> > software appears to catch it.  I have provided the virus e-mail to CERT
> > and they are looking into it.  Their initial diagnosis was SirCAM, but I
> > believe that was a red herring.  The reason it that SirCAM has never
> > been reported to delete mail folders as well as McAfee is supposed to
> > protect against SirCAM.  Also I had received a couple of e-mails earlier
> > in the day that did have SirCAM attached and they went in the Deleted
> > File folder.  I was able to look at the virus in a hex editor I can see
> > the 2 e-mails that had SirCAM attached and I also see some other e-mails
> > that I had previously deleted.  I believe the virus is trying to
> > disguise itself by using whatever it finds in the trash, and in my case
> > some of my garbage contained SirCAM.  I believe this is a different and
> > yet unreported virus.  Has anyone heard of anything like this?  I can't
> > find anything about "deleting inbox" on any of the Virus detection
> > sites.  I am concerned about propagating it and will keep my computer
> > off line until I can identify and eliminate it.
> > Thanks for your help!
> > Dave

> Norton has as many problems with OE and Microsoft as McAfee does.  It is amazing that
> the AV programs that work and work well are the free or low cost ones  --- I would
> advise looking at AVG  www.grisoft.com or EZ-Trust (paid version of IPE)

> : Hello Orhan,
> : I have confirmed this with Microsoft, but McAfee had nothing to say.  Actually
> : Microsoft's official stand was they are unsure what is causing the problem, but
> : they have had similar reports before and the only commonality was they were all
> : running McAfee VirusScan.  I am going to provide my Outlook Express .dbx files
> : to Microsoft for their disposal, but I am now of the belief that this is not a
> : virus, but rather a viscous bug that destroyed my data.  What's a person to do?
> : Run virus software and run the risk of it destroying your data or don't run
> : virus software and run the risk of viscous infection?  Maybe Symantic's product
> : is better suited for use with Microsoft products.  Any word of problems with
> : Norton Anti-Virus and Outlook Express?
> : Thanks for your help,
> : Dave
> :
> :

> :
> : > Hi,
> : >
> : > I am not sure about if this issue comes from a virus, but it is also
> : > possible...
> : >
> : > But I am use of one thing that, if McAfee runs with Outlook Express, it
> : > causes the loss of all e-mails in a randomly selected directory and / or the
> : > directory that you are in !!! ( Sometimes , you can also see / watch that
> : > e-mails disappear . )
> : >
> : > This is a bug of VSC which is not solved yet.
> : >
> : > Good Luck..
> : >
> : > Orhan
> : >


> : > > I received an e-mail last night in Outlook Express.  Earlier this week I
> : > > updated my Win2K system with SP2 and I also updated to IE 5.5 SP2.  I
> : > > also am running McAfee and have all my e-mail attachments scanned.  The
> : > > virus was able to run by merely previewing e-mail.  I received it as

> : > > Holiday Savings".  I normally click on this kind of stuff and delete it,
> : > > but when I went back to my inbox, it was empty.  I knew exactly where to
> : > > look and sure enough with a little testing I can easily eliminate all
> : > > mails from my inbox by previewing this e-mail.  Once infected it will
> : > > remove all e-mail from the current folder when you close Outlook
> : > > Express.  I immediately took the computer off line and am using a
> : > > different computer that was turned off at the time of the attack as well
> : > > as I am using Netscape 4.7 for the time being.  I was able to reinstall
> : > > IE 5.5 and Internet components and I believe I have removed the virus
> : > > from my computer.  My mails remain in my inbox when I close and restart
> : > > Outlook Express though I am not up to SP2 yet because the computer it
> : > > still off of any networks until I get this identified.  I am concerned
> : > > that it may still be lying on my disk and waiting until I hook the
> : > > computer up to a network to try and propagate itself since no scanning
> : > > software appears to catch it.  I have provided the virus e-mail to CERT
> : > > and they are looking into it.  Their initial diagnosis was SirCAM, but I
> : > > believe that was a red herring.  The reason it that SirCAM has never
> : > > been reported to delete mail folders as well as McAfee is supposed to
> : > > protect against SirCAM.  Also I had received a couple of e-mails earlier
> : > > in the day that did have SirCAM attached and they went in the Deleted
> : > > File folder.  I was able to look at the virus in a hex editor I can see
> : > > the 2 e-mails that had SirCAM attached and I also see some other e-mails
> : > > that I had previously deleted.  I believe the virus is trying to
> : > > disguise itself by using whatever it finds in the trash, and in my case
> : > > some of my garbage contained SirCAM.  I believe this is a different and
> : > > yet unreported virus.  Has anyone heard of anything like this?  I can't
> : > > find anything about "deleting inbox" on any of the Virus detection
> : > > sites.  I am concerned about propagating it and will keep my computer
> : > > off line until I can identify and eliminate it.
> : > > Thanks for your help!
> : > > Dave
> : > >
> : > >
> : > >
> : > >
> :

> Are you suggesting that VirusScan is actually deleting my e-mails!  

> Are you suggesting that VirusScan is actually deleting my e-mails!  This
is
> highly irregular.  I have been waiting until Monday to call McAfee so I
will
> contact them now and see what they say.  It doesn't seem right though, as
I
> reinstalled IE 5.5 and Internet Components and the deleting of my mails
has
> ceased.  I still have the computer offline as I don't know how this virus
(if
> that is what it is) is propagated.  Thanks for the info.  Anything is
> appreciated at this point.
> Regards,
> Dave

> > Hi,

> > I am not sure about if this issue comes from a virus, but it is also
> > possible...

> > But I am use of one thing that, if McAfee runs with Outlook Express, it
> > causes the loss of all e-mails in a randomly selected directory and / or
the
> > directory that you are in !!! ( Sometimes , you can also see / watch
that
> > e-mails disappear . )

> > This is a bug of VSC which is not solved yet.

> > Good Luck..

> > Orhan

> > > I received an e-mail last night in Outlook Express.  Earlier this week
I
> > > updated my Win2K system with SP2 and I also updated to IE 5.5 SP2.  I
> > > also am running McAfee and have all my e-mail attachments scanned.
The
> > > virus was able to run by merely previewing e-mail.  I received it as

> > > Holiday Savings".  I normally click on this kind of stuff and delete
it,
> > > but when I went back to my inbox, it was empty.  I knew exactly where
to
> > > look and sure enough with a little testing I can easily eliminate all
> > > mails from my inbox by previewing this e-mail.  Once infected it will
> > > remove all e-mail from the current folder when you close Outlook
> > > Express.  I immediately took the computer off line and am using a
> > > different computer that was turned off at the time of the attack as
well
> > > as I am using Netscape 4.7 for the time being.  I was able to
reinstall
> > > IE 5.5 and Internet components and I believe I have removed the virus
> > > from my computer.  My mails remain in my inbox when I close and
restart
> > > Outlook Express though I am not up to SP2 yet because the computer it
> > > still off of any networks until I get this identified.  I am concerned
> > > that it may still be lying on my disk and waiting until I hook the
> > > computer up to a network to try and propagate itself since no scanning
> > > software appears to catch it.  I have provided the virus e-mail to
CERT
> > > and they are looking into it.  Their initial diagnosis was SirCAM, but
I
> > > believe that was a red herring.  The reason it that SirCAM has never
> > > been reported to delete mail folders as well as McAfee is supposed to
> > > protect against SirCAM.  Also I had received a couple of e-mails
earlier
> > > in the day that did have SirCAM attached and they went in the Deleted
> > > File folder.  I was able to look at the virus in a hex editor I can
see
> > > the 2 e-mails that had SirCAM attached and I also see some other
e-mails
> > > that I had previously deleted.  I believe the virus is trying to
> > > disguise itself by using whatever it finds in the trash, and in my
case
> > > some of my garbage contained SirCAM.  I believe this is a different
and
> > > yet unreported virus.  Has anyone heard of anything like this?  I
can't
> > > find anything about "deleting inbox" on any of the Virus detection
> > > sites.  I am concerned about propagating it and will keep my computer
> > > off line until I can identify and eliminate it.
> > > Thanks for your help!
> > > Dave

> Hello Orhan,
> I have confirmed this with Microsoft, but McAfee had nothing to say.
Actually
> Microsoft's official stand was they are unsure what is causing the
problem, but
> they have had similar reports before and the only commonality was they
were all
> running McAfee VirusScan.  I am going to provide my Outlook Express .dbx
files
> to Microsoft for their disposal, but I am now of the belief that this is
not a
> virus, but rather a viscous bug that destroyed my data.  What's a person
to do?
> Run virus software and run the risk of it destroying your data or don't
run
> virus software and run the risk of viscous infection?  Maybe Symantic's
product
> is better suited for use with Microsoft products.  Any word of problems
with
> Norton Anti-Virus and Outlook Express?
> Thanks for your help,
> Dave

> Hello Orhan,
> I have confirmed this with Microsoft, but McAfee had nothing to say.
Actually
> Microsoft's official stand was they are unsure what is causing the
problem, but
> they have had similar reports before and the only commonality was they
were all
> running McAfee VirusScan.  I am going to provide my Outlook Express .dbx
files
> to Microsoft for their disposal, but I am now of the belief that this is
not a
> virus, but rather a viscous bug that destroyed my data.  What's a person
to do?
> Run virus software and run the risk of it destroying your data or don't
run
> virus software and run the risk of viscous infection?  Maybe Symantic's
product
> is better suited for use with Microsoft products.  Any word of problems
with
> Norton Anti-Virus and Outlook Express?
> Thanks for your help,
> Dave

> > Hi,

> > I am not sure about if this issue comes from a virus, but it is also
> > possible...

> > But I am use of one thing that, if McAfee runs with Outlook Express, it
> > causes the loss of all e-mails in a randomly selected directory and / or
the
> > directory that you are in !!! ( Sometimes , you can also see / watch
that
> > e-mails disappear . )

> > This is a bug of VSC which is not solved yet.

> > Good Luck..

> > Orhan

> > > I received an e-mail last night in Outlook Express.  Earlier this week
I
> > > updated my Win2K system with SP2 and I also updated to IE 5.5 SP2.  I
> > > also am running McAfee and have all my e-mail attachments scanned.
The
> > > virus was able to run by merely previewing e-mail.  I received it as

> > > Holiday Savings".  I normally click on this kind of stuff and delete
it,
> > > but when I went back to my inbox, it was empty.  I knew exactly where
to
> > > look and sure enough with a little testing I can easily eliminate all
> > > mails from my inbox by previewing this e-mail.  Once infected it will
> > > remove all e-mail from the current folder when you close Outlook
> > > Express.  I immediately took the computer off line and am using a
> > > different computer that was turned off at the time of the attack as
well
> > > as I am using Netscape 4.7 for the time being.  I was able to
reinstall
> > > IE 5.5 and Internet components and I believe I have removed the virus
> > > from my computer.  My mails remain in my inbox when I close and
restart
> > > Outlook Express though I am not up to SP2 yet because the computer it
> > > still off of any networks until I get this identified.  I am concerned
> > > that it may still be lying on my disk and waiting until I hook the
> > > computer up to a network to try and propagate itself since no scanning
> > > software appears to catch it.  I have provided the virus e-mail to
CERT
> > > and they are looking into it.  Their initial diagnosis was SirCAM, but
I
> > > believe that was a red herring.  The reason it that SirCAM has never
> > > been reported to delete mail folders as well as McAfee is supposed to
> > > protect against SirCAM.  Also I had received a couple of e-mails
earlier
> > > in the day that did have SirCAM attached and they went in the Deleted
> > > File folder.  I was able to look at the virus in a hex editor I can
see
> > > the 2 e-mails that had SirCAM attached and I also see some other
e-mails
> > > that I had previously deleted.  I believe the virus is trying to
> > > disguise itself by using whatever it finds in the trash, and in my
case
> > > some of my garbage contained SirCAM.  I believe this is a different
and
> > > yet unreported virus.  Has anyone heard of anything like this?  I
can't
> > > find anything about "deleting inbox" on any of the Virus detection
> > > sites.  I am concerned about propagating it and will keep my computer
> > > off line until I can identify and eliminate it.
> > > Thanks for your help!
> > > Dave