Latest alert from 'Trend' - this worm:

WORM_SOBER.AG

seems to be spreading fairly fast at the moment.

I am getting 3-4 emails a day with this title, generated by this worm.

NB Infected machines will NOT show any obvious outbound email activity.

Emails it sends may contain one of the following titles:

hi,_ive_a_new_mail_address
. Mail delivery failed
. Registration Confirmation
. smtp mail failed
. Spam: Registration Confirmation
. Your Password
. Your IP was logged
. Paris_Hilton_&_Nicole_Richie
. You visit illegal websites

****DO NOT OPEN*****. IF you open one of these emails, the worm will execute and infect your machine.

When executed, it displays a fake error message box in order to trick a user into thinking that the file did not properly execute.

This worm searches the process list of the affected system for mrt.exe, the Microsoft Windows Malicious Software Removal Tool process. If found, it terminates the said process thus making the system more vulnerable to malicious attacks.

***NB Do NOT send this message to all your friends!!!***

IF you do not run an antivirus programme, watch out for these emails and get one!

It is also worth reminding folk using OE that using the email 'Preview' function can allow emails to open and run themselves.