Hi inthewildteam,

as far as I gathered from the JS/ZEROLIN-descriptions, it would not be complete nonsense with weird fancy characters, but script language; might not be easy for inexperienced users to tell this apart from rather harmless HTML-mails or so

Never having used Outlook, I’m not sure if you can open the OE-INBOX in a texteditor; is it not compressed… ?

but this would be a worthwhile approach, too (inbox-file should be COPIED first, not worked on the original)

@fast: not exactly, first move the messages from the last two month or so together in a new mailfolder and recheck (because this malware doesn’t really exist for so long)

:wink: