发明授权
- 专利标题: Detection of undesired computer files in archives
- 专利标题(中): 检测档案中不需要的电脑档案
-
申请号: US11828754申请日: 2007-07-26
-
公开(公告)号: US07797746B2公开(公告)日: 2010-09-14
- 发明人: Steven Michael Fossen , Alexander Douglas MacDonald
- 申请人: Steven Michael Fossen , Alexander Douglas MacDonald
- 申请人地址: US CA Sunnyvale
- 专利权人: Fortinet, Inc.
- 当前专利权人: Fortinet, Inc.
- 当前专利权人地址: US CA Sunnyvale
- 代理机构: Hamilton, DeSanctis & Cha, LLP
- 主分类号: G06F11/00
- IPC分类号: G06F11/00
摘要:
Systems and methods for an anti-virus detection module that can detect known undesired computer files in encrypted, compressed, password-protected and/or damaged archives are provided. According to one embodiment, an archive file is scanned without decrypting and without decompressing contents of the archive file. A type and associated structure of the archive file are identified. Then, based on the identified type and the associated structure, descriptive information from the archive file is obtained describing one or more contained files. The descriptive information for each of the contained files is evaluated to determine if any of the contained files are malicious or undesired computer files by comparing the descriptive information to signatures of known malicious or undesired computer files. Finally, an attempt is made to prevent any of the contained files determined to be a malicious or undesired computer file from being opened.
公开/授权文献
- US20080141373A1 DETECTION OF UNDESIRED COMPUTER FILES IN ARCHIVES 公开/授权日:2008-06-12