Kaspersky
Solved

Does Kaspersky detect RATs and other malware that remote control your computer?

  • 19 September 2021
  • 8 replies
  • 137 views

Userlevel 2
Badge

I recently learned about RATs and I’ve been super paranoid about having one. I heard they’re mainly detected by signatures, but what if the signature is unrecognized or changes it? Does Heuristic Analysis pick it up?

I’ve seen my PC behaving weird, but I’ve pushed the mouse stuff to being just a hardware failure. I’ve, recently, noticed some problems with my keyboard. Mainly, cameras switching while playing the game Rainbow Six: Siege or, today, some spaces, 0s and dots while typing in google docs (granted, it could’ve been me accidentally putting my hand on the keyboard).

By the way, I use KSC Free.

icon

Best answer by Igor Kurzin 22 September 2021, 09:03

View original

8 replies

Userlevel 7
Badge +5

Hi @BigHotStud , 

Relying solely on signatures is not the Kaspersky approach. That’s exactly the reason why there is System Watcher, Application Control, Firewall and Network Attack Blocker: to form a complex multilayer security solution, to prevent RATs and other types of malware.

Please note, that security must include a wider range of measures: using strong passwords, disabling Remote Access to the PC, correctly configuring local wi-fi and router (how to secure your router and wi-fi network: 
https://support.kaspersky.com/common/windows/12779), do not open suspicious links, etc.

Userlevel 2
Badge

Hi @BigHotStud , 

Relying solely on signatures is not the Kaspersky approach. That’s exactly the reason why there is System Watcher, Application Control, Firewall and Network Attack Blocker: to form a complex multilayer security solution, to prevent RATs and other types of malware.

Please note, that security must include a wider range of measures: using strong passwords, disabling Remote Access to the PC, correctly configuring local wi-fi and router (how to secure your router and wi-fi network: 
https://support.kaspersky.com/common/windows/12779), do not open suspicious links, etc.

I’ve never installed a Remote Access PC app myself, so if any are installed they’re most likely PuPs or Malware, which, I assume, Kaspersky would detect. My passwords are pretty good and I have 2FA enabled on everything that supports it. Thanks for the info, by the way.

Userlevel 7
Badge +5

Some versions of Windows (Windows Pro, for example) have built in remote access capabilities. You can google for ‘how to disable remote access on windows 10’, to find out how to disable (if it is applicable to your version of operating system). 

Having 2FA enabled is a wise strategy, totally support your decision.

Userlevel 2
Badge

Some versions of Windows (Windows Pro, for example) have built in remote access capabilities. You can google for ‘how to disable remote access on windows 10’, to find out how to disable (if it is applicable to your version of operating system). 

Having 2FA enabled is a wise strategy, totally support your decision.

I am using Windows 10 Pro, so it does have that feature, but it is disabled and, as far as I know, I’ve never enabled it.

Userlevel 7
Badge +11

@BigHotStud

Thanks for posting back!

As well as the advice from @Igor Kurzin, also make sure the following are unchecked:

[1] Allow managing Kaspersky Security Cloud settings via remote control applications 

If this check box is selected, trusted remote administration applications (such as TeamViewer, LogMeIn Pro and Remotely Anywhere) can change Kaspersky Security Cloud settings.

Untrusted remote control applications will not be allowed to change Kaspersky Security Cloud settings, even when the check box is selected.

[2] Enable external service control.

 

 

Our image is from KTS, KSC has the same options. 

Thank you:pray_tone3:

Flood:whale: +:whale2:

Userlevel 2
Badge

Hi @BigHotStud , 

Relying solely on signatures is not the Kaspersky approach. That’s exactly the reason why there is System Watcher, Application Control, Firewall and Network Attack Blocker: to form a complex multilayer security solution, to prevent RATs and other types of malware.

Please note, that security must include a wider range of measures: using strong passwords, disabling Remote Access to the PC, correctly configuring local wi-fi and router (how to secure your router and wi-fi network: 
https://support.kaspersky.com/common/windows/12779), do not open suspicious links, etc.

Hey, sorry for going back to an old threat, but what if I don’t have premium? Do I only have System Watcher and Network Attack Blocker then?

Userlevel 7
Badge +11

what if I don’t have premium? Do I only have System Watcher and Network Attack Blocker then?

Hello @BigHotStud

Thank you for posting back!

Thank you:pray_tone3:

Flood:whale: +:whale2:

Userlevel 2
Badge

what if I don’t have premium? Do I only have System Watcher and Network Attack Blocker then?

Hello @BigHotStud

Thank you for posting back!

Thank you:pray_tone3:

Flood:whale: +:whale2:

 

Do I still have protection against RATs then?

Reply