Jump to content


Recommended Posts

  • Administrators

Unfortunately, files encrypted by Filecoder.Locky cannot be decrypted. Make sure that:

- ESET Endpoint v6 is installed on all workstations in the network, ESET File Security v6 is installed on the server and they all are configured for maximum protection, ie:

- ESET LiveGrid is enabled

- Advanced heuristics on file execution is enabled in the real-time protection setup

- Web protection is enabled (at least on computers with access to the Internet)

- computers do not have shares with important files shared with full permissions for everyone

- always back up important files on a regular basis and do not connect backup drives to potentially infected computers.


Besides that, practice safe computing, ie. do not open suspicious websites or files in email attachments or click links in suspicious emails. If you are not sure if it's safe to open a particular attachment, rather wait for a couple of hours before opening it. If it's malware it's likely that it will be recognized by antivirus at that time.


For information how to better protect against ransomware, please refer to hxxp://support.eset.com/kb3433/.

Link to comment
Share on other sites

  • 3 weeks later...

Recently being targeted by the latest modification of Locky/Zepto MAlware that is not detected by our mail server antivirus neither client's local EEA 5.0 (Livegrid and HIPS on). Payload in .zip attachment containing javascript.

Enclosed is a link to the script (the extension was changed to prevent execution, content otherwise unchanged)



Link to comment
Share on other sites


  • Have a backup of all your files – this can literally nullify the impact that ransomware may have on your computer.
  • Pay attention to your PC’s behavior. If ransomware is currently encrypting your files, you can intercept it. If you notice higher CPU or RAM usage than normal, less free disk space than you think you should have and a general slow-down of your machine, it might be due to the encryption process that’s currently taking place. If that’s the case, shut down your PC ASAP and bring it to an IT professional!
  • Avoid shady sites and have a good anti-virus program. .zepto File Virus may get into your PC with the help of another virus, such as a Trojan Horse.
  • Be careful when opening new e-mails from unknown senders. If the letter seems suspicious, do not open it! Spam e-mails are one of the most common methods for ransomware distribution.
Link to comment
Share on other sites

This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Create New...