Return To Home Page Search Fire Products, Services and others Overview of the Site Design and Build a Career Contact us for customer service and other feedback info Prognet Privacy Statement

Click here to view product details, fire framework, screen shots, Y2K statement, etc.Download fire evaluation copy, updates, upgrades, user manual, free utils and lot more.Customers can enjoy technical support, security tips, FAQ, free virus alert mail, etc. Online ordering, renewal form and upgrade details.Resellers, dealers and distributors can enter here.Click here to view latest virus alerts, virus information center, virus calendar, etc.Latest news and other press releases.About Prognet Technologies Pvt. Ltd, technical team, clients, events and lot more.

 

VBS/MAWANELLA WORM REPORTED IN THE WILD

                     VBS/Mawanella aka VBS/VBSWG.Z is a encrypted VB script worm uses Microsoft outlook to spread. The email message subject will be " Mawanella" and the attachment will be "Mawanella.vbs" and the message body will be "Mawanella is one of the Sri Lanka's Muslim Village".

                     The VBS extension will not appear if Windows Scripting Host is installed. When you open the attachment, it copies to windows system folder. Then it opens the Microsoft Outlook Address book and sends email to all the addresses stored in that.

                      VBS/Mawanella worm displays the message box "Please Forward this to everyone" and a burning house picture with the text "Mawanella is one of the Sri Lanka's Muslim Village. This brutal incident happened here 2 Muslim Mosques & 100 Shops are burnt. I hat this incident, What about you? I can destroy your computer I didn't do that because I am a peace-loving citizen..."

                     It only replicates using outlook and won't damage data in the local machine. Because of the mass mailing routine there is threat to down the e-mail servers.

How can I protect my system?

                     Fire has incorporated VBS/Mawanella in virus signature file, with the aim of helping users affected by this script attack to detect and eliminate it from their systems. Fire anti-virus users can update this signature file by using online update facility.

                     To protect your system against infection, disable Windows Scripting Host by following these steps: Click the Start button, Settings, Control Panel, then select Add/Remove Programs, then select the Windows Setup tab, then double-click Accessories, scroll down to Windows Scripting Host, and uncheck the box. Save changes and close the window.

How can I find my system is infected?

                   You can check the system manually. VBS/Mawanella worm creates the file "Mawanella.vbs" in the Windows system folder. The presence of this file ensures you are infected with this worm.

                   A free download of FireLite [ 1100KB ] version is available to detect all viruses. If you find any virus, use registered windows version of Fire to remove. To get the registered version of Fire call us at 044-28170440 or mail to service@fireav.com or purchase Fire online using

[Analysis: Mr.Ramesh, Mr.A.Xavier, Prognet Technologies Pvt. Ltd, May. 2001]

Go to top of the page
.