Actually, the "virus" is W32/QAZ and is more correctly defined as a worm than a virus. Also, it cannot, I repeat, cannot be installed via "cookies." It is installed and then listens on TCP port 7597 for activation from someone scanning for unprotected systems with this installed -- much like those trolling for BackOrifice. A sure sign of whether you have it is look at your notepad.exe file. It should be 52k in size. If it says it is 120,320 in size then you've been infected. You will also notice a new program called note.com. Also, if you use Black Ice, ZoneAlarm, Conseal or any of the other personal firewalls out there and have them configured correctly you will block just this type of invasion. If you don't use a personal firewall then you are just asking for something like this happen. A day does not go by where I do not see at least a 3 or 4 attempts to "talk" to my system. The bottom line, though, is if you have it you did not get it from here or Renderotica. Take care and Godspeed.