Sorry if this has been asked and answered before: is the email text itself -- NOT the attachments -- a potential source of infection? Once I've downloaded from a POP server, the code is in my machine. I have heard that there is a way to imbed virus/trojan/worm in the text itself, or that the text may contain a "bug" that can record key-strokes. I have heard in particular that colored HTML text may be implanted with some kind of recording "bug" that can be virtually invisible in the text yet can literally act as a server to collect information from my computer and then send it out from my machine out to another computer. Has anyone heard of this? Is it true? Where can I get more information? I'm using NOD32 as my AV. Some of my incoming messages show that NOD has scanned them, but some do not show any sign of being checked by NOD.