GeSWall Blocks Trojan.KillDisk

05/25/06 Posted by geswall

Link: http://wilderssecurity.com/showpost.php?p=755854&postcount=23

Trojun.KillDisk is a dangerous trojan that damages badly the disk content. GeSWall’s access control policy stops it by denying low-level write an access to the disk.

GeSWall access control log entries:
Test.exe REDIRECT access to \Device\Harddisk0\DR0 (File)

Note: Trojan.KillDisk poses no threat when run on behalf of non-administrative user account

Posted in GeSWall's Security Tests

The official GentleSecurity's weblog on the company news, products information and computer security insights.
February 2012
Sun Mon Tue Wed Thu Fri Sat

<< < > >>

1 2 3 4

5 6 7 8 9 10 11

12 13 14 15 16 17 18

19 20 21 22 23 24 25

26 27 28 29
Categories
Archives
- December 2011 (1)
- June 2011 (1)
- April 2011 (1)
- March 2011 (1)
- February 2011 (1)
- December 2010 (2)
- October 2010 (1)
- July 2009 (1)
- January 2009 (1)
- February 2008 (1)
- January 2008 (1)
- December 2007 (1)
- More...
XML Feeds
- RSS 2.0: Posts
- Atom: Posts
What is RSS?

February 2012
Sun	Mon	Tue	Wed	Thu	Fri	Sat
<< <				> >>
			1	2	3	4
5	6	7	8	9	10	11
12	13	14	15	16	17	18
19	20	21	22	23	24	25
26	27	28	29

GentleSecurity's Blog

GeSWall Blocks Trojan.KillDisk

Categories

Archives

XML Feeds