Jump to content

「PROTECTING」yourself against RATS/Malware


Harry

Recommended Posts

35a2555.png

 

I. What is a RAT?

II. How to avoid install/downloading RATS/Malware?

III. Best program's to use for RAT/Malware searching?

IIII. Others tips/information

 

 

 

RATS/Malware

A rat is a program that is usually hidden in other programs like: Runescape Private Server clients and MANY other things online, usually to do with scam/hacking programs that have them installed so you're tricked into downloading their rat/malware.

 

What possible reason would someone RAT you? Someone who wants to steal your accounts, emails and maybe debit/credit card information and gaming accounts, E.G such as Runescape accounts, Paypal accounts.

 

A RAT means Remote Access Trojan or Remote Administration Tool, this mean's they can see your screen, access your mic/webcam, see your keyboard keystrokes, so they can see everything you type. They can record your screen and also control your PC/laptop.

 

 

How to avoid RATS/Malware

Do not just download random hacks, random RSPS clients and even more, there are a lot of program's online that can help you avoid RATS in general. You should also never accept any programs from friends you don't know in real life, as much as you think you can trust them, if there is any money or value online to you, there is a chance that a 'friend' will still try to steal it from you and what's the easiest way to send them a RAT and take their items just because of some 'trust'.

 

If you download a program that you really want to use but you're still not sure if it's safe? Then here's the solution for you!

SANDBOXIE - Is a program that run's programs inside of it's 'box' and doesn't allow anything to escape. So for example, you open a program, the rat tries to install itself into your PC somewhere to hide, it won't go anywhere and won't be able to do anything because it's being caged by Sandboxie. There are more program's like this but Sandboxie is one of the biggest one's out there. I would HIGHLY recommend using it.

 

Another online website also known as VIRUSTOTAL is amazing for doing quick search's for viruses on program's. The best feature about this is that is scans the file with OVER 52+ different viruses scanners! It's absolutely amazing and can save you a lot of time, a lot of amateurs aren't good at hiding their malware inside of program's so there is a big chance it will be caught out on this website.

 

 

Best programs to use to detect RATS/Malware

There are some amazing programs out there to detect RATS/Malware, RKILL being one of them. It is specially designed to target RATS, why is it so good you ask? Because the program is designed by an amazing company and they know what they are looking for. It targets any issues with .EXE, .COM and .BAT programs, as well as this, it does a whole PC check on any program's it feels that are miscellaneous. It then goes through the Windows Service Integrity where most RATs are located to be hidden as much as possible, also checks for missing digital signatures WHICH most rats are going to have because they're not 'signed' for, as well as this it also checks for any weird HOST files which RATs will run off to get a connection your computer. It's a fast and amazing program. I seriously highly recommend it!

 

Another program by the same company, ASWMBR - This is an Avast virus scanner that has been tweaked by the company do the best possible search's for Malware. is a anti-rootkit scanner that searchs your computer for Rootkits that infect the Master Boot Record, or MBR, of your computer. This includes the TDL4/3, MBRoot (Sinowal), and Whistler rootkits. For this program to properly work it must first download the Avast virus definitions, so you will need an active Internet connection before using it. A rootkit is a malware program that is designed to hide itself or other computer infections on your computer. These types of programs are typically harder to remove than generic malware, which is the reason that stand-alone utilities such as TDSSKiller have been developed. When you run aswMBR, if it is shutdown automatically, then it is most likely the infection detecting that aswMBR is running and terminating it. In this situation you should rename executable to iexplore.exe before you attempt to run it.

 

Another great program (suggested by @Realist) is MALWAREBYTES - it's great because it does a lot of things normal or basic anti viruses do not do, it is constantly updated and search's for different types of Malware. It detects and removes malware on an infected computer with industry-leading anti-malware, anti-spyware, and anti-rootkit tech. Scans for the newest and most dangerous threats. Safely removes malware and many more, more details are on the website!

 

KEYSCRAMBLER - (also suggested by @Realist) is an amazing program that encrypts your live keystrokes to avoid your key's being keystroked/recorded if you ever did someone get RAT'd. This is an amazing tool and it's definitely a recommended program to download. More information is on the website.

 

 

Others tips/information

  • Just use common sense and don't download stupid things
  • Download all of the program's listed if you're worried about RATS/Malware
  • Don't always trust internet friends, as much as you want to
  • Worried about what you've downloaded? Run it in Sandboxie, listed above.
  • Contact me for anymore information. smile.png
Edited by Adventurer
  • Like 11
Link to comment
Share on other sites

malwarebytes might be a nice addition to this? 

 

also maybe keyscrambler if people are scared of keyloggers 

 

nice guide though this will be helpful to a lot of users smile.png

 

Thanks! I'll add those ASAP. smile.png

Edit: added both of them. Thanks, great programs!

Edited by Adventurer
  • Like 1
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...