Welcome to the Virus Encyclopedia of Panda Security.
|Alias:||W32/ExploreZip.Worm.Pack, Wrom.ExploreZip.pack, WordExploreZip, i-Worm.Zipped.Files, Troj_ExpZipWMPack, ZippedFiles|
It deletes the content of files created with certain programs, such as Word, Excel and Power Point. It also deletes the content of files with C, CPP, H and ASM extensions.
|First detected on:|
|Detection updated on:||Dec. 1, 2004|
|Yes, using TruPrevent Technologies
|Country of origin:||ISRAEL|
ExploreZip is a worm that reaches computers in an e-mail message with the attached file ZIPPED_FILES.EXE.
ExploreZip, modifies files created with certain programs, such as Word, Excel and Power Point, among others.
In addition, ExploreZip deletes the content of files with DOC, XLS, PPT, C, CPP, H and SM extensions. Once these files are infected, the worm renders their size to 0 bytes.
ExploreZip spreads rapidly via e-mail and also through computer networks.
ExploreZip is very easy to recognize once it has affected the computer, as it displays the following message on screen:
The message text is the following:
Cannot open file: it does not appear to be a valid archive. If this file is part of a ZIP format backup set, insert the last disk of the backup set and try again. Please press F1 for help.