-
1.发明授权Distributed system and method for conducting a comprehensive search for malicious code in software 有权分布式系统和方法,用于全面搜索软件中的恶意代码公开(公告)号:US06963978B1
公开(公告)日:2005-11-08
申请号:US09916981
申请日:2001-07-26
CPC分类号: G06F21/564
摘要: A system, method and computer program product are provided for detecting viruses in software. Initially, data is compared with a plurality of virus definitions in a first database. If the data is successfully compared with at least one of the virus definitions, a security event is executed. The data is then compared with fingerprints of innocent data in a second database. If the data is successfully compared to the fingerprints of innocent data, access to the data is permitted. If, however, the data is unsuccessfully compared to the virus definitions and the fingerprints of innocent data, information is transmitted over a network for analysis purposes.
摘要翻译: 提供了一种用于以软件检测病毒的系统,方法和计算机程序产品。 最初,将数据与第一数据库中的多个病毒定义进行比较。 如果数据与至少一个病毒定义成功比较,则执行安全事件。 然后将数据与第二数据库中的无辜数据的指纹进行比较。 如果数据与无辜数据的指纹成功比较,则允许访问数据。 然而,如果数据与病毒定义和无害数据的指纹不成比例,则通过网络传输信息用于分析目的。
-
2.发明授权System, method, and computer program product for tracking the migration of objects to determine whether to perform a network based check 有权用于跟踪对象迁移的系统,方法和计算机程序产品,以确定是否执行基于网络的检查公开(公告)号:US08566942B2
公开(公告)日:2013-10-22
申请号:US12565541
申请日:2009-09-23
申请人: Igor G. Muttik , Guy Roberts , Chris Barton , Alex Hinchliffe
发明人: Igor G. Muttik , Guy Roberts , Chris Barton , Alex Hinchliffe
IPC分类号: H04L29/06
摘要: A system, method, and computer program product are provided for tracking the migration of objects to determine whether to perform a network based check. In operation, an object is identified. Furthermore, a first security niche associated with the object is determined. Additionally, it is determined if the object is migrating from the first security niche to a second security niche. Still yet, a network based security check is conditionally performed if it is determined the object is migrating from the first security niche to the second security niche.
摘要翻译: 提供了一种系统,方法和计算机程序产品,用于跟踪对象的迁移以确定是否执行基于网络的检查。 在操作中,识别对象。 此外,确定与对象相关联的第一安全利基。 此外,确定对象是否从第一安全小区迁移到第二安全小区。 然而,如果确定对象正在从第一安全小区迁移到第二安全小区,则有条件地执行基于网络的安全检查。
-
3.发明申请SYSTEM, METHOD, AND COMPUTER PROGRAM PRODUCT FOR VERIFYING AN IDENTIFICATION OF PROGRAM INFORMATION AS UNWANTED 有权系统,方法和计算机程序产品,用于验证程序信息的标识为未经授权公开(公告)号:US20130276106A1
公开(公告)日:2013-10-17
申请号:US12398073
申请日:2009-03-04
IPC分类号: G06F21/00
CPC分类号: G06F21/56
摘要: A system, method, and computer program product are provided for verifying an identification of program information as unwanted. In use, program information is identified as unwanted at a client. Furthermore, the identification of the program information as unwanted is verified, utilizing a communication between the client and a server.
摘要翻译: 提供了一种系统,方法和计算机程序产品,用于验证程序信息的识别是不需要的。 在使用中,程序信息在客户端被标识为不需要的。 此外,利用客户机和服务器之间的通信来验证程序信息被识别为不需要的。
-
4.发明授权Emulation system, method and computer program product for malware detection by back-stepping in program code 有权仿真系统,方法和计算机程序产品,用于通过程序代码中的后台程序检测恶意软件公开(公告)号:US07739100B1
公开(公告)日:2010-06-15
申请号:US11253094
申请日:2005-10-18
申请人: Igor G. Muttik , Ivan Teblyashkin
发明人: Igor G. Muttik , Ivan Teblyashkin
CPC分类号: G06F9/455 , G06F21/56 , G06F21/562 , G06F21/563 , G06F21/566
摘要: A system, method, and computer program product are provided for detecting malware. In use, a search is conducted for known elements of computer code. Upon the detection of at least one known element of computer code, various operations are performed. In particular, the present technique steps back in the computer code, and emulates the computer code. Such emulation and stepping are performed for detecting malware.
摘要翻译: 提供系统,方法和计算机程序产品来检测恶意软件。 在使用中,对计算机代码的已知元素进行搜索。 当检测到至少一个已知的计算机代码元素时,执行各种操作。 特别地,本技术在计算机代码中退步,并且模拟计算机代码。 执行这种仿真和步进以检测恶意软件。
-
5.发明授权System and method for detecting malware by transforming objects and analyzing different views of objects 有权通过转换对象和分析对象的不同视图来检测恶意软件的系统和方法公开(公告)号:US08769692B1
公开(公告)日:2014-07-01
申请号:US13182641
申请日:2011-07-14
CPC分类号: G06F21/56 , H04L63/0227 , H04L63/1416 , H04L67/02
摘要: A method in one example implementation includes generating a plurality of transformed views of an object in a network environment and generating a plurality of filtered information sets. The method further includes detecting a suspect correlation based on an analysis of at least some of the plurality of transformed views and of at least some of the plurality of filtered information sets. In a more specific embodiment, the analysis includes an original view of the object. Other more specific embodiments include applying filters to selected views of the object, where each of the filters is associated with a different obfuscation type. Applying the filters includes transforming obfuscation elements in the plurality of transformed views, where the object contains the one or more obfuscation elements.
摘要翻译: 一个示例实现中的方法包括在网络环境中生成对象的多个变换视图并生成多个经滤波的信息集。 该方法还包括基于对多个经变换的视图中的至少一些和多个经过滤的信息集中的至少一些的分析来检测可疑的相关性。 在更具体的实施例中,分析包括对象的原始视图。 其他更具体的实施例包括将滤波器应用于对象的所选视图,其中每个滤波器与不同的混淆类型相关联。 应用过滤器包括在多个变换视图中转换混淆元素,其中对象包含一个或多个混淆元素。
-
6.发明授权System, method, and computer program product for dynamically configuring a virtual environment for identifying unwanted data 有权用于动态配置虚拟环境以识别不需要的数据的系统,方法和计算机程序产品公开(公告)号:US09306796B1
公开(公告)日:2016-04-05
申请号:US12050432
申请日:2008-03-18
CPC分类号: H04L63/1416 , G06F9/44505 , G06F9/45533 , G06F21/53 , H04L29/08072 , H04L63/1441 , H04L63/1491 , H04L67/34
摘要: A system, method, and computer program product are provided for dynamically configuring a virtual environment for identifying unwanted data. In use, a virtual environment located on a first device is dynamically configured based on at least one property of a second device. Further, unwanted data is identified, utilizing the virtual environment.
摘要翻译: 提供了一种系统,方法和计算机程序产品,用于动态配置用于识别不需要的数据的虚拟环境。 在使用中,基于第二设备的至少一个属性来动态地配置位于第一设备上的虚拟环境。 此外,利用虚拟环境识别不需要的数据。
-
7.发明申请SYSTEM, METHOD, AND COMPUTER PROGRAM PRODUCT FOR TRACKING THE MIGRATION OF OBJECTS TO DETERMINE WHETHER TO PERFORM A NETWORK BASED CHECK 有权用于跟踪物体移动的系统,方法和计算机程序产品,用于确定是否执行基于网络的检查公开(公告)号:US20130246466A1
公开(公告)日:2013-09-19
申请号:US12565541
申请日:2009-09-23
申请人: Igor G. Muttik , Guy Roberts , Chris Barton , Alex Hinchliffe
发明人: Igor G. Muttik , Guy Roberts , Chris Barton , Alex Hinchliffe
摘要: A system, method, and computer program product are provided for tracking the migration of objects to determine whether to perform a network based check. In operation, an object is identified. Furthermore, a first security niche associated with the object is determined. Additionally, it is determined if the object is migrating from the first security niche to a second security niche. Still yet, a network based security check is conditionally performed if it is determined the object is migrating from the first security niche to the second security niche.
摘要翻译: 提供了一种系统,方法和计算机程序产品,用于跟踪对象的迁移,以确定是否执行基于网络的检查。 在操作中,识别对象。 此外,确定与对象相关联的第一安全利基。 此外,确定对象是否从第一安全小区迁移到第二安全小区。 然而,如果确定对象正在从第一安全小区迁移到第二安全小区,则有条件地执行基于网络的安全检查。
-
8.发明授权System and method for facilitating IPv6 protocol usage by an application program 失效用于促进应用程序使用IPv6协议的系统和方法公开(公告)号:US07440471B1
公开(公告)日:2008-10-21
申请号:US10124955
申请日:2002-04-17
IPC分类号: H04J3/16
CPC分类号: H04L61/251 , H04L29/12358 , H04L69/08 , H04L69/16 , H04L69/167
摘要: A system, method and computer program product are provided for translating between Internet Protocols (IP's). Initially, data is received over the Internet utilizing a first IP. Such data is adapted for being processed by an application program. Next, it is determined whether the application program can process data received over the Internet utilizing the first IP. If it is determined that the application program can not process data received over the Internet utilizing the first IP, the data is converted from the first IP to a second IP that the application program is capable of processing.
摘要翻译: 提供了一种用于在互联网协议(IP)之间进行翻译的系统,方法和计算机程序产品。 最初,通过互联网使用第一IP接收数据。 这样的数据适于由应用程序处理。 接下来,确定应用程序是否可以处理利用第一IP在因特网上接收的数据。 如果确定应用程序不能使用第一IP来处理通过因特网接收的数据,则将数据从第一IP转换为应用程序能够处理的第二IP。
-
公开(公告)号:US08590039B1
公开(公告)日:2013-11-19
申请号:US11946777
申请日:2007-11-28
申请人: Igor G. Muttik , Joel R. Spurlock
发明人: Igor G. Muttik , Joel R. Spurlock
IPC分类号: G06F11/00
CPC分类号: H04L63/145 , G06F21/56 , G06F21/561 , G06F21/563 , G06F21/564 , G06F21/566 , H04L63/14 , H04L63/1416 , H04L63/1441
摘要: A system, method and computer program product are provided for sending information extracted from a potentially unwanted data sample to generate a signature. In use, information is extracted from a portion of a sample of potentially unwanted data. Further, the information is sent to generate a signature.
-
10.发明授权System, method, and computer program product for verifying an identification of program information as unwanted 有权用于将节目信息识别为不需要的系统,方法和计算机程序产品公开(公告)号:US08627461B2
公开(公告)日:2014-01-07
申请号:US12398073
申请日:2009-03-04
IPC分类号: H04L29/06
CPC分类号: G06F21/56
摘要: A system, method, and computer program product are provided for verifying an identification of program information as unwanted. In use, program information is identified as unwanted at a client. Furthermore, the identification of the program information as unwanted is verified, utilizing a communication between the client and a server.
摘要翻译: 提供了一种系统,方法和计算机程序产品,用于验证程序信息的识别是不需要的。 在使用中,程序信息在客户端被标识为不需要的。 此外,利用客户机和服务器之间的通信来验证程序信息被识别为不需要的。
-
-
-
-
-
-
-
-
-
搜索结果
12 条记录 (耗时 0.018 秒)
