The new worm is not widespread yet, with MessageLabs, who call the worm W32/SfxDeth.A-MM, reporting four copies intercepted. Two of those copies originated in Australia from OptusNet addresses.
The worm, dubbed W32/Lagel.A by antivirus company Panda Software, arrives in an e-mail titled "Fwd: Crazy Illegal Sex" with an attachment called IlleGal.exe. If the file is executed, the worm creates four new files on the computer and runs a series of graphics implying the e-mail was simply a joke.
The files created are MPLAYER.EXE, which is run every time windows is started up, ILLEGAL.EXE, which contains the worm's code, MMAILS.DLL, which stores the e-mail addresses the worm obtains from the system, and SMTP.OCX, an application used to mail messages.
The body of the e-mail also contains the warning "If u have a weak heart I warn u DON'T see dis Clip". If you have a weak virus protection system, ZDNet Australia advises you don't run executable files received in e-mails.
The warning about the virus has any body told the antivirus companies ie symnantec. The reason I ask is when I had a look at there virus libary I got nothing about it. So I can assume from that that my virus scanner will not pick up the virus ?.