> I guess I just am not techie enough to figure it out, but how can you tell > that the message was sent by a "compromised Microsoft Outlook"?
Klez exploits a Microsoft Outlook/Express "feature", i.e. it's HTML rendering activescripting capabilities just like 90 something percent of the current e-mail virii in the wild today.
