Actually, this type of virus is a bit more tricky than using the melissa-style outlook address book to find new recipients. Instead it searches the cached web pages on the hard drive for e-mail addresses embedded in those pages (typically [email protected], but it may be a real address in case of a bulletin board web page)... Anyway, if I receive an attachment from someone I don't know, I wouldn't touch it without taking additional precautions.