公开(公告)号：US08281398B2

公开(公告)日：2012-10-02

申请号：US12349506

申请日：2009-01-06

申请人： Jonathan Daniel Mark Ness ,  Bruce Dang ,  Robert John Hensing ,  Morgan Daniel Beenfeldt

发明人： Jonathan Daniel Mark Ness ,  Bruce Dang ,  Robert John Hensing ,  Morgan Daniel Beenfeldt

IPC分类号： G06F12/14 ,  G06F11/30 ,  G06F9/45 ,  G06F21/00 ,  G06F21/22 ,  G06N3/12 ,  G06F11/00

CPC分类号： G06F21/568

摘要： Structured document files, such as those utilized by standard productivity applications or for portable documents can have malicious computer executable instructions embedded within them. Modifications to such files can prevent the execution of such malware. Modifications can operate at a file sector level, such as either fragmenting or defragmenting the file, or they can operate at a file record level, such as removing records, adding records, or rearranging the order of records. Other modifications include writing random data into records deemed likely to have malware, removing unaccounted for space, or removing records that are not known to be good and are inordinately large. A scan of the structured document file can identify relevant information and inform the selection of the modifications to be applied.

摘要翻译： 诸如标准生产力应用程序或便携式文档所使用的结构化文档文件可能会在其中嵌入恶意计算机可执行指令。 对这些文件的修改可以防止这种恶意软件的执行。 修改可以在文件扇区级别进行操作，例如对文件进行碎片化或碎片整理，或者可以在文件记录级别进行操作，例如删除记录，添加记录或重新排列记录顺序。 其他修改包括将随机数据写入被认为可能具有恶意软件的记录，删除未占用空间的记录，或删除不被认为是好的且非常大的记录。 结构化文档文件的扫描可以识别相关信息并通知选择要应用的修改。

公开(公告)号：US20100175133A1

公开(公告)日：2010-07-08

申请号：US12349506

申请日：2009-01-06

申请人： Jonathan Daniel Mark Ness ,  Bruce Dang ,  Robert John Hensing ,  Morgan Daniel Beenfeldt

发明人： Jonathan Daniel Mark Ness ,  Bruce Dang ,  Robert John Hensing ,  Morgan Daniel Beenfeldt

IPC分类号： G06F17/30 ,  G06F21/00

CPC分类号： G06F21/568

摘要： Structured document files, such as those utilized by standard productivity applications or for portable documents can have malicious computer executable instructions embedded within them. Modifications to such files can prevent the execution of such malware. Modifications can operate at a file sector level, such as either fragmenting or defragmenting the file, or they can operate at a file record level, such as removing records, adding records, or rearranging the order of records. Other modifications include writing random data into records deemed likely to have malware, removing unaccounted for space, or removing records that are not known to be good and are inordinately large. A scan of the structured document file can identify relevant information and inform the selection of the modifications to be applied.

摘要翻译： 诸如标准生产力应用程序或便携式文档所使用的结构化文档文件可能会在其中嵌入恶意的计算机可执行指令。 对这些文件的修改可以防止这种恶意软件的执行。 修改可以在文件扇区级别进行操作，例如对文件进行碎片化或碎片整理，或者可以在文件记录级别进行操作，例如删除记录，添加记录或重新排列记录顺序。 其他修改包括将随机数据写入被认为可能具有恶意软件的记录，删除未占用空间的记录，或删除不被认为是好的且非常大的记录。 结构化文档文件的扫描可以识别相关信息并通知选择要应用的修改。