gigamosh57
Gawd
- Joined
- May 31, 2001
- Messages
- 787
Using an internet cafe here in the Philippines I found, when trying to open a .doc file and print it, that all my .doc files had been relabelled as .scr files and all .jpg had become .exe.
Doing a bit of research and finding other things on the computer that should not be there, I came up with this virus as the root cause: W32/Zaflen.a
I have been able to edit the extensions of many of the files and return them to their proper formats, but the problem I am having now is that many of the files will no longer open... Word (and Openoffice too, for all you M$ haters) gives me an error that it cannot interpret the file and shows me the binary equivalent of a big pile of diarrhea.
I can fix symptoms 1 and 3, but not 2 and AVG just wants to delete the file as a method of "Healing" it.
How do I: (a) find what malicious code is embedded in the file and (b) remove it?
I know a large number of people with the same virus, so a fix would be saintly. If you know anything about this, including what to look for that is out of the ordinary in hex code for word, jpeg, rtf, gif or png files, PLEASE HELP!
Doing a bit of research and finding other things on the computer that should not be there, I came up with this virus as the root cause: W32/Zaflen.a
I have been able to edit the extensions of many of the files and return them to their proper formats, but the problem I am having now is that many of the files will no longer open... Word (and Openoffice too, for all you M$ haters) gives me an error that it cannot interpret the file and shows me the binary equivalent of a big pile of diarrhea.
Symptoms -
Changing of the file icon for the file types - png, jpg, gif to M.S.Word icon.
Increase in file size by 172067 bytes for the infected files.
Presence of the files and registry entries mentioned.
I can fix symptoms 1 and 3, but not 2 and AVG just wants to delete the file as a method of "Healing" it.
How do I: (a) find what malicious code is embedded in the file and (b) remove it?
I know a large number of people with the same virus, so a fix would be saintly. If you know anything about this, including what to look for that is out of the ordinary in hex code for word, jpeg, rtf, gif or png files, PLEASE HELP!