Rapid Recovery System

• Results performance
  protection
  
• Resources our paper
  related papers
  related tools
  related links
• About what is it?
  architecture
  developers

System Protection

Category	Number of Attacks	Examples	Defenses
Backdoor attacks that initiate/listen for connections to send and receive data	12	W32.Sober W32.MyDoom W32.Bagle Sasser Phatbot Backdoor.Dextenea Trojan.Mochi Backdoor.Fuwudoor PWSteal.Ldpinch.E W32.Mugly Backdoor.Nibu.J Serbian.Trojan	Block unused ports or catch unexpected behavior and revert to trusted image.
Attacks that copy infected exe's to shared folders or destroy data.	3	W32.Zafi.D W32.Netsky W32.Netad	Write restrictions to personal data and restart of compromised VM to trusted image.
Attacks that harvests email addresses and other data.	5	W32.Zafi.D W32.Sober PWSteal.Ldpinch.E Backdoor.Nibu.J W32.MyDoom	Read restrictions, detection of unexpected behavior and restart of compromised VM.
Exploit weaknesses in specific server software.	6	Santy MySQL UDF W32.Korgo Blaster Slammer Witty Worm	Block unused ports if not running this software. If running the software, catch unexpected behavior and revert to trusted image.