The nasty thing about this particular virus is that unlike many that have gone before it, it does not need to use the Windows Address book (though it can) or Outlook Express to propagate.

First the virus scans any files in the infected users temporary internet cache (HTML pages)looking for valid email addresses. Next it uses it's own SMTP email relay program to send out files without the user being aware, nothing shows up in the Outlook Express sent messages log.

So anybody who has looked at a web page that has your email address encoded in it (And I'm sure there are a lot of popular ones) is a potential sender of the virus to you.

If the person is on a permanently on internet connection they may not realise what is happening until a system admin checks the day's proxy server internet logs. Unlike a dialup connection, on a network you don't get a set of flashing LEDs in the corner of the screen showing data being sent back and forth.

The best that you can do is notify the person A.S.A.P. and warn them what is happening. Your message may be the first they know about it.

Peter