How to protect your computer against file-encrypting malware in Kaspersky Internet Security 19
To reduce the risk of your computer being infected by file-encrypting malware and avoid false virus detections when you run applications and games, configure the protection components in Kaspersky Internet Security.
Enable System Watcher
Enable and configure System Watcher so that Kaspersky Internet Security can terminate file-encrypting malware when it launches. See this article for instructions.
The System Watcher component collects data about actions performed by applications on your computer and shares this information with other components to improve protection. If System Watcher is enabled, Kaspersky Internet Security will be able to terminate file-encrypting malware when it runs and move the file from which the encryption process was launched to Quarantine.
Configure Firewall settings
File-encrypting malware get encryption keys over the Internet. To prevent file-encrypting malware from getting these keys and encrypting files, block Internet access for applications from the Low Restricted, High Restricted and Untrusted groups in the Firewall settings. See this article for instructions.
Create categories of protected file types
Create categories to protect personal files such as documents, tables, images, and videos.
To create categories of protected file types:
- In the main window of Kaspersky Internet Security, click
.
- To learn how to open the main application window, see this article.
- Go to Protection → Application Control.
- Click Manage resources.
- Select the folder in which you want to create the new category, click Add and then select Category.
- Enter the name Protected file types and click Add.
- Select the Protected file types category and create several subcategories for different file types. To do so, repeat steps 4 and 6. For example, create Documents and Images categories. Create categories for all the file types on your device.
- Select the appropriate category for the file type you want to protect. For example, for files with a .doc extension, select the Documents category. Click Add → File or folder.
- Enter name, specify a file mask based on the file extension and click Add. See below for a list of common extensions. For example, enter the name “doc” and the path “*.doc”.
- Repeat steps 7-8 for other file types.
Categories of protected file types will be created.
Create rules for applications
Configure application access rules for the Protected file types category.
- In the main window of Kaspersky Internet Security, click .
- To learn how to open the main application window, see this article.
- Go to Protection → Application Control.
- Click Manage applications.
- Right-click the Trusted group and select Details and rules from the shortcut menu.
- Go to the Files and system registry tab and make sure that, for the Protected file types category, the Allow rule has been set for the read, write, create and delete actions.
- If this rule has not been set, click on the icon and select Allow. Click Save.
- Right-click the Low Restricted group and select Details and rules from the shortcut menu.
- Go to the Files and system registry tab and make sure that, for the Protected file types category, the Prompt for action rule has been set for the read, write, create and delete actions.
- If this rule has not been set, click on the icon and select Prompt for action. Click Save.
- Repeat steps 7-9 for the High Restricted group.
File types
| File type | Extension |
|---|---|
| Documents | .doc .docx .pdf .ppt .pptx .rtf .odt .odp .ods .djvu .xls .xlsx |
| Images | .jpg .jpeg .bmp .gif .png .psd .cdr .dwg .max .3ds |
| Archives | .rar .zip .7z.tar .gz |
| Multimedia | .avi .mp3 .wav .mkv .flac .mp4 .mov .wmv |
| Databases | .mdb .1cd .sqlite |
| Other | .kwm .iso .torrent .php .c .cpp .pas .cer .key .pst .lnk |
