Disinfection for cases when the phone has been rebooted
CAUTION! This method will remove all data on the device including calendar and phone numbers
Protect your mobile device with F-Secure Mobile Anti-Virus.
Trojan:SymbOS/Blankfont.A copies corrupted font files into the phone's memory and thus prevents the phone from loading the valid font files from ROM.
The corrupted font file installed to the phone does not cause device to crash, but if the device is rebooted it will then lose the system font and is unable to display user interface texts.
Any application that the user attempts to use after the reboot works otherwise normally, but does not show any text. This makes most of the applications unusable until the phone is disinfected.
If a phone is infected with Blankfont.A, it must not be rebooted as the trojan will corrupt the system font and will make disinfection quite difficult. If the phone is rebooted it can still be disinfected but doing so is rather difficult as there is no text on the screen.
When the Blankfont.A SIS file is installed, the installer copies its file to the following location:
Panic.gdr is a corrupted font file that replaces the original phone font and breaks the phone's ability to show text.