Protection System

Applications and processes which interact with the internet - we call them 'threat gateways' - pose a serious risk to your system safety. Hackers use these threat gateways and applications to penetrate your computer, to infect and alter it or to damage your system integrity.

DefenseWall marks these threat gateways and processes as 'Untrusted' and they operate in an 'isolated' environment. Any files and applications downloaded or launched through those untrusted gateways are also marked Untrusted - they cannot harm your system.

'Trusted' files are core system applications and processes that are not dangerous internet content or software.

In addition, all potentially dangerous files which are created by Untrusted Processes will be marked as 'Untrusted'. Any process launched by an untrusted process will be Untrusted as well. This Untrusted 'attribute inheritance' is required for attachments and downloaded software from within your browser or other media from the internet. Furthermore, processes will also be marked as Untrusted according to our internally maintained 'Untrusted Files' inheritance ruleset. For more information please see Untrusted Applications.

Untrusted processes run within a virtual space - not separated from each other, but separated from the trusted space on your system, with reduced rights. This is built upon policy-based restrictions and limited virtualization. Such a scheme allows a maximum level of protection.

Data Theft Protection! Potentially dangerous actions will be blocked without a multitude of annoying pop-ups seen with other intrusion prevention programs.

There are a few, vital exceptions - DefenseWall will give you an alarm notification for Advanced Key Loggers, Disabled Protection and Resource Protection issues. Unwanted or potentially dangerous actions are stopped 'dead in it's tracks'. Your personal information is immediately locked down.

DefenseWall HIPS prevents untrusted processes from modifying the executables, inter-process communications, multimedia, documents, phone databases (target for 'dialer' malware), Hosts files, adding or modifying autostart areas(both registry and

the desktop and browser settings, plugins and extensions (IE, Firefox, Mozilla, Opera, Flock, etc.), setting global hooks (usually used by 'key loggers'), injecting their code into Trusted Processes, stealing screenshots and many other dangers. DefenseWall HIPS will not allow it!

DefenseWall HIPS prevents Untrusted processes from gaining access to Secured files and folders. This will prevent your sensitive data from being stolen by malware. DefenseWall HIPS does not allow untrusted processes to break your system integrity or to break out of the Virtual Untrusted Processes Area.

DefenseWall HIPS has another basic defense mechanism: 'Plugin Injection Protection'. If a process loads a Dynamic-Link Library(DLL) - a file within a program which is called to execute an action - and this module is created by an Untrusted process, this process is also marked as Untrusted. This prevents any possibility of escape from the Untrusted Process Area.

If malicious software has penetrated your computer via any threat gateway application, it will not be able to install itself properly onto your system to steal important files or break through the untrusted process virtual border. If you are aware that a malware is attempting to run, you may terminate it with the handy Big Red Button (Stop Attack). You also have the possibility to manually clean up any deactivated malware traces using Expert Mode or with the help of automatic tools (average user) such as an anti-virus/anti-malware program.