<div>
I'm not sure how many documents you have but can you right click one select properties and let us know the file extension name.
</div>


<div>
The wordperfect documents have the file extension .wpd and the word documents have .doc
</div>


<div>
You can give this tool a try for Wordperfect,<br />
<a href="http://corel.force.com/index/articles/en_US/Master_Article/207723-Repairing-WordPerfect-documents-using-WPLOOK" rel="ugc">http://corel.force.com/index/articles/en_US/Master_Article/207723-Repairing-WordPerfect-documents-using-WPLOOK</a><br />
<br />
You can try this to repair Word,<br />
<a href="http://support.microsoft.com/kb/893672" rel="ugc">http://support.microsoft.com/kb/893672</a>
</div>


<div>
The wplook program does not even recognize the files as Wordperfect files and word does not recognize the word files.
</div>


<div>
I have asked for more experts to chime in.
</div>


<div>
I discovered that their backup system has not been working since 12/15/2012, so they do not have a good backup. &nbsp;I restored the old backup pf the cases folder into a different directory and was able to compare some files. &nbsp;The same files I cannot open now, I can open in the new directory. &nbsp;I copied two of the same files to a local directory on a PC. &nbsp;The two files are the same name and the exact same size. &nbsp;The older file I can open, the new file I cannot.
</div>


<div>
That almost sounds like someone got the <a href="http://readwrite.com/2013/11/08/cryptolocker-prevent-remove-eradicate#awesm=~oqWE5TwIQBY9gw" rel="ugc">CryptoLocker virus</a> and didn't admit it.<br />
<br />
Have you run a virus scanner on all the workstations or checked their logs?
</div>


<div>
Two of the four computers connected to the server have been given full virus scans. &nbsp;Both computers came up with the Trojan generic35.mdd infection and they were removed. &nbsp;These two particular computers are the ones that working in the CASES folder all the time. &nbsp;I have them running full scans on the last two computers.
</div>


<div>
It is like the file associations are not working on all the documents. &nbsp;I have googled this and there are file association repair tools but none that recognize a Wordperfect .WPD file. &nbsp;WPlook does nothing because it does not recognize the file as a WP document. &nbsp;I have a document that opens and the same document where it wont open. &nbsp;Is there somebody I can send these two documents to analyze and compare?
</div>


<div>
I am using Remote Desktop to remotely administrate the server. &nbsp;My computer is clean.
</div>


<div>
It is NOT file associations:<br />
&quot;The same files I cannot open now, I can open in the new directory&quot;<br />
The files are encrypted.
</div>


<div>
It does not matter where I copy the files too or where I open them from. If I download them to an offsite computer with WordPerfect I still cannot open them.
</div>


<div>
For word document, you can try some word data recovery tools such as<br />
<br />
DataNumen Word Repair<br />
<br />
at<br />
<br />
<a href="http://www.datanumen.com/word-repair/" rel="ugc">http://www.datanumen.com/word-repair/</a><br />
<br />
to see if it can recover your document.
</div>


<div>
You said earlier that when you restored older versions of the same files to a different folder they opened fine. &nbsp;That eliminates file associations, any problems with Office, &nbsp;and renders &quot;recovery&quot; apps useless.<br />
<br />
I'm sorry; but occam's razor says something f'ed them up and the highest probability is a trojan.<br />
<br />
If you right-click on a working DOC file, choose open with, then let me choose, and open it with Notepad, you will find lots of readable text. &nbsp;The contents will have spaces between each letter and towards the end, will be the author, the version of word, and the template name (usually NORMAL.DOT)<br />
<br />
Here is some from one of mine:<br />
<br />
Davis McCarn &nbsp; &nbsp;&nbsp; &nbsp; &nbsp; &nbsp; &nbsp;  &nbsp;  &nbsp; &nbsp; &nbsp;  &nbsp;  &nbsp; Normal.dot &nbsp;&nbsp; &nbsp; &nbsp; Davis McCarn &nbsp; &nbsp;&nbsp; &nbsp; &nbsp; 1 &nbsp;  &nbsp;  &nbsp; Microsoft Word 10.0 @ &nbsp; &nbsp;Øu<br />
<br />
Try it on one which works and then on one which doesn't. &nbsp;I'll bet the ones that don't are pure gobbldygook.<br />
<br />
Again, if you can find the true name of the trojan that encrypted them, many of them can be fixed with a utility expressly for that trojan.
</div>


<div>
Actually when I copy the documents to any other location I still cannot open them. &nbsp;I opened up one of the bad documents using notepad and I am not seeing anything but gobbldygook at the end of the document. &nbsp;We are going to do another complete scan at all four workstations and see if we can identify a specific virus that could have caused this.
</div>


<div>
Did you try opening one of the files which works with Notepad so you could see the embedded text?
</div>


<div>
In notepad viewing a word document that is not accessible I am seeing a bunch of zeroes and a few random control characters. Doesnt look good. The event viewer is showing a SAM error but it seems to me if it was the drive in the server it would effect a lot more folders off of the root than 1 large folder. &nbsp;The shared folder on the server &nbsp;is called data. &nbsp;Under data there are about 20 folder of which one is CASES. &nbsp;The only folder effected out of all the folders is CASES.<br />
I ran Roguekiller and TDSSkiller and found only one workstation infected with IPUpdater which I removed.
</div>


<div>
<i>In notepad viewing a word document that is not accessible I am seeing a bunch of zeroes and a few random control characters. Doesnt look good. </i><br />
<br />
I'm going to have to agree. That sounds like some sort of &quot;purposeful&quot; encryption.<br />
<br />
Without knowing which virus did it, we're throwing darts blindfolded. I would make several copies of the files as they sit now to an external drive and then just go through one by one and sample the decrypters.<br />
<br />
I know, a tedious pain in the butt, but I don't have a better suggestion. And a post disaster recovery suggestion is check the backups, and really the recovery, every quarter at least.
</div>


<div>
Have you tried uninstalling Word&amp;Wordperfect and reinstall?
</div>


<div>
<i>Have you tried uninstalling Word&amp;Wordperfect and reinstall?</i> -- &nbsp;joinaunion<br />
<br />
That won't help. On your local workstation open Notepad; then do &nbsp;a File --&gt; Open and find a Word document. The text may not look pretty, but is generally understandable. Captjcret is the document he is looking like moistly binary with control characters.
</div>


<div>
Is Sharepoint running on the server?
</div>


<div>
Hi captjcret,<br />
<br />
I'm afraid the guys here are spot on. Everything you are describing matches up with one of many cryptolocker viruses.<br />
<br />
You should scan systems to identify and remove the virus ASAP, but the corrupted files are lost and there isn't anything you can do with them.<br />
<br />
Concentrate your time and effort on removing the virus and restoring the files from whatever backup source you have available.
</div>


<div>
We have scanned all workstations and restored what old back ups we have. We are still are missing a years worth of data that is corrupt. &nbsp;I am an outside IT person that has not been asked for help for over a year or I would have caught the back up problem. &nbsp;A correct backup routine with instructions has been put in place but this is only after the horse has escaped the barn. If there is no repair they have quite a bit of hard copy that can be scanned as a partial solution to data recovery. &nbsp;I would still like to send a couple of files to somebody for analysis. &nbsp;Are there any recommendations to accomplish this or is this not a policy of experts exchange? &nbsp;Is &nbsp;there one program over another that may have blocked this &nbsp;attack better than another that we should purchase?
</div>


<div>
Don't think we're able to post our e-mail addresses anywhere on here so you cant really send a file to us.<br />
The discussion above about the file contents (via notepad etc) does confirm that the file is no longer in a Word format though. If you look through a file in notepad and cannot see anything other than random characters it is definitely not a word 2003 format.<br />
If it was word 2007 onwards we may have other possibilities as the new versions are a different format to the older versions.<br />
<br />
With regard to programs to block this stuff, viruses &amp;&nbsp;malware are always evolving so no one program can always protect you. In practice, you are best to use a good AV product, kept upto date with regular scans, and a separate malware product to catch the stuff that doesn't count as a virus.
</div>


<div>
Do new documents become corrupted?<br />
<br />
Are you able to attach one if it becomes corrupted or one that is not confidential?
</div>


<div>
Documents are no longer getting corrupted.<br />
<br />
FLASH: The operator just emailed me:<br />
<br />
<a href="http://malwaretips.com/blogs/antivirus-security-pro-removal/" rel="ugc">http://malwaretips.com/blogs/antivirus-security-pro-removal/</a><br />
<br />
I've been thinking back to what happened the morning things went haywire..before we started working on the fix of the computers.<br />
This is the nane of the virus that was flashing red on Byron's computer and mine. &nbsp;We share a lot of e-mails. Maybe it was attached to one, I don't know. &nbsp;Anyway, I thought you might want to see this, just in case it helps.
</div>


<div>
I have removed hundreds of flavors of Antivirus Security Pro and; unfortunately, none of the encrypts the users files.<br />
With the exception of some of the most recent flavors of the FBI virus, almost all of the encryptors have decryptors available. &nbsp;The key; though, again is in correctly identifying the trojan which caused the encryption.<br />
Last summer, I had a call from a local painting company. &nbsp;They had become infected with an encryptor and before I was called their resident nerd had reinstalled Windows. &nbsp;The reinstall did kill the trojan; but, also clobbered any way to find out what it was named. &nbsp;I got to tell them that I knew of about 60 decryptor programs; but, it would take me about 10 minutes per to test each one......<br />
(and Murphy demands it would have been the 60th that worked!)
</div>


<div>
Does that program show up in add/remove programs?<br />
<br />
Do you see anything that says microsoft antivirus?<br />
<br />
Since the documents no longer become corrupted it's pretty safe to say there is no virus anymore.<br />
<br />
You said renameing the corrupted file did nothing?
</div>


<div>
Antivirus Security Pro does not show up. &nbsp;I believe it may have been removed. &nbsp;The only other installed items I see I am not familiar with is Browser Configuration Utility, IB Updater Server and Internet Sweetpacks.<br />
Nothing more seems to becoming corrupt and renaming the files makes no difference.
</div>


<div>
Please run Malwarebyte's Chameleon. Download here,<br />
<a href="https://www.malwarebytes.org/chameleon/" rel="ugc">https://www.malwarebytes.org/chameleon/</a><br />
Direction's to run malwarebytes <a href="http://malwaretips.com/blogs/antivirus-security-pro-removal/" rel="ugc">http://malwaretips.com/blogs/antivirus-security-pro-removal/</a><br />
Create folder to extract to.<br />
Reboot after scan and try documents again.<br />
<br />
If that fails please boot into safe mode tap F8 while booting choose safe mode. Do your documents open normally in safe mode?
</div>


<div>
<blockquote>
Documents are no longer getting corrupted.
</blockquote>
That's good news and suggests you have located and removed/disabled the virus/malware that caused it.<br />
<br />
<br />
May be worth @DavisMcCarn posting a link to the various decrypters he is aware of as they are worth a try, but without something to undo what has been done, you will not be able to recover these files.
</div>


<div>
We are going to try some different scans today.
</div>


<div>
It looks like there is no fix for the damaged documents
</div>


<div>
I've requested that this question be deleted for the following reason:<br />
<br />
It looks like the files are unrepairable
</div>


<div>
The advice from myself and other experts was valid and correct. Please do not delete the question as others may find these responses helpful in the same situation.<br />
Please choose the responses that were most helpful or accurate.
</div>


<div>
Thanks for all your help. &nbsp;A lot of good info unfortunately the damage to the files seems to be permanent. &nbsp;Many of the documents can be scanned from hard copy.
</div>


<div>
<i>Many of the documents can be scanned from hard copy.</i><br />
<br />
If you need to OCR any of the documents back to text I used the <a href="http://finereader.abbyy.com/" rel="ugc">ABBYY FineReader</a> before on pretty bad documents and it worked well. Just a suggestion.
</div>


<div>
<div class="content wysiwyg-content">
I have a server with a folder on it called cases. &nbsp;One day for no apparent reason all the documents in this folder and sub folders are no longer accessible by all workstations. &nbsp;These are Word 2003 and WordPerfect 9 documents. &nbsp;The WordPerfect message is &quot;unsupported format&quot; and the Word message is unable to convert. &nbsp;This only happens to all files in the main folder cases. &nbsp;There are a few other folders on the server that have miscellaneous documents. &nbsp;All of those documents are completely accessible with no error messages. &nbsp;Help!!!!
</div>
</div>


I have a server with a folder on it called cases.  One day for no apparent reason all the documents in this folder and sub folders are no longer accessible by all workstations.  These are Word 2003 and WordPerfect 9 documents.  The WordPerfect message is "unsupported format" and the Word message is unable to convert.  This only happens to all files in the main folder cases.  There are a few other folders on the server that have miscellaneous documents.  All of those documents are completely accessible with no error messages.  Help!!!!

Unsupported format

Microsoft Word is a commercial document editing program that is part of the Microsoft Office suite. It features numerous text-editing tools for creating richly formatted documents, along with tools for the use of macros in Word documents. Word's native file formats are denoted either by a .doc or .docx file extension. Plugins permitting the Windows versions of Word to read and write formats it does not natively support, such as the OpenDocument format (ODF) are available. Word can import and display images in common bitmap formats such as JPG and GIF. It can also be used to create and display simple line-art.

Microsoft Word

Microsoft Office is an integrated suite of applications that includes Outlook, Word, Excel, Access, PowerPoint, Visio and InfoPath, along with a number of tools to assist in making the individual components work together. Coding within and between the projects is done in Visual Basic for Applications, known as VBA.

Microsoft Office

Servers are computing devices that are similar to desktop computers in that they have the same basic components, but are significantly different in size, configuration and purpose. Servers are usually accessed over a network, and many run unattended, without a computer monitor, input device, audio hardware or USB interfaces. Many servers do not have a graphical user interface (GUI), and are configured and managed remotely. Servers typically include hardware redundancy such as dual power supplies, RAID disk systems, and ECC memory, along with extensive pre-boot memory testing and verification. Critical components might be hot swappable, and to guard against overheating, servers might have more powerful fans or use water cooling.