Dynamic cleaning for malware using cloud technology
    3.
    发明授权
    Dynamic cleaning for malware using cloud technology 有权
    使用云技术动态清除恶意软件

    公开(公告)号:US08677493B2

    公开(公告)日:2014-03-18

    申请号:US13227407

    申请日:2011-09-07

    IPC分类号: G08B23/00

    摘要: A method for providing malware cleaning includes detecting potential malware on a first device connected to a network. A request including information to allow a second device connected to the network to determine an appropriate cleaning response is sent from the first device to the second device over the network. Upon receiving the request, the second device attempts to identify an appropriate cleaning response and, if a response is identified, sends the cleaning response over the network to the first device. The cleaning response is usable by the first device to address the detected potential malware.

    摘要翻译: 用于提供恶意软件清理的方法包括检测连接到网络的第一设备上的潜在恶意软件。 包括用于允许连接到网络的第二设备以确定适当的清洁响应的信息的请求通过网络从第一设备发送到第二设备。 在接收到请求时,第二设备尝试识别适当的清洁响应,并且如果识别出响应,则通过网络将清洁响应发送到第一设备。 清洁响应可由第一设备用来解决检测到的潜在恶意软件。

    Dynamic Cleaning for Malware Using Cloud Technology
    4.
    发明申请
    Dynamic Cleaning for Malware Using Cloud Technology 有权
    使用云技术进行恶意软件的动态清理

    公开(公告)号:US20130061325A1

    公开(公告)日:2013-03-07

    申请号:US13227407

    申请日:2011-09-07

    IPC分类号: G06F21/00 G06F15/16 G06F11/30

    摘要: A method for providing malware cleaning includes detecting potential malware on a first device connected to a network. A request including information to allow a second device connected to the network to determine an appropriate cleaning response is sent from the first device to the second device over the network. Upon receiving the request, the second device attempts to identify an appropriate cleaning response and, if a response is identified, sends the cleaning response over the network to the first device. The cleaning response is usable by the first device to address the detected potential malware.

    摘要翻译: 用于提供恶意软件清理的方法包括检测连接到网络的第一设备上的潜在恶意软件。 包括用于允许连接到网络的第二设备以确定适当的清洁响应的信息的请求通过网络从第一设备发送到第二设备。 在接收到请求时,第二设备尝试识别适当的清洁响应,并且如果识别出响应,则通过网络将清洁响应发送到第一设备。 清洁响应可由第一设备用来解决检测到的潜在恶意软件。

    Rollback Feature
    6.
    发明申请
    Rollback Feature 有权
    回滚功能

    公开(公告)号:US20110107424A1

    公开(公告)日:2011-05-05

    申请号:US12611375

    申请日:2009-11-03

    IPC分类号: G06F21/22

    摘要: Methods, systems, and apparatus, including computer programs encoded on a computer storage medium, for rolling back protection processes. In one aspect, a method includes determining that a file is a malicious file, storing a duplicate of the file in a quarantine area, performing one or more protection processes on the file, if the determination that the file is a malicious file is a false positive determination, restoring the file by a pre-boot rollback process to a state prior to the one or more protection processes performed on the file, and booting the computer with the restored file, and if the determination that the file is a malicious file is not a false positive determination, not restoring the file to a state prior to the one or more protection processes performed on the file, and booting the computer.

    摘要翻译: 方法,系统和装置,包括在计算机存储介质上编码的计算机程序,用于回滚保护过程。 在一个方面,一种方法包括确定文件是恶意文件,将文件的副本存储在隔离区域中,对该文件执行一个或多个保护处理,如果该文件是恶意文件的确定是假的 肯定的确定,通过预引导回滚过程将文件恢复到对文件执行的一个或多个保护过程之前的状态,以及使用恢复的文件引导计算机,并且如果文件是恶意文件的确定是 不是错误的肯定决定,不将文件恢复到在文件执行的一个或多个保护过程之前的状态,以及引导计算机。

    Rollback feature
    8.
    发明授权
    Rollback feature 有权
    回滚功能

    公开(公告)号:US08539583B2

    公开(公告)日:2013-09-17

    申请号:US12611375

    申请日:2009-11-03

    IPC分类号: H04L29/06

    摘要: Methods, systems, and apparatus, including computer programs encoded on a computer storage medium, for rolling back protection processes. In one aspect, a method includes determining that a file is a malicious file, storing a duplicate of the file in a quarantine area, performing one or more protection processes on the file, if the determination that the file is a malicious file is a false positive determination, restoring the file by a pre-boot rollback process to a state prior to the one or more protection processes performed on the file, and booting the computer with the restored file, and if the determination that the file is a malicious file is not a false positive determination, not restoring the file to a state prior to the one or more protection processes performed on the file, and booting the computer.

    摘要翻译: 方法,系统和装置,包括在计算机存储介质上编码的计算机程序,用于回滚保护过程。 在一个方面,一种方法包括确定文件是恶意文件,将文件的副本存储在隔离区域中,对该文件执行一个或多个保护处理,如果该文件是恶意文件的确定是假的 肯定的确定,通过预引导回滚过程将文件恢复到对文件执行的一个或多个保护过程之前的状态,以及使用恢复的文件引导计算机,并且如果文件是恶意文件的确定是 不是错误的肯定决定,不将文件恢复到在文件执行的一个或多个保护过程之前的状态,以及引导计算机。

    SYSTEM, METHOD, AND COMPUTER PROGRAM PRODUCT FOR IDENTIFYING UNWANTED ACTIVITY UTILIZING A HONEYPOT DEVICE ACCESSIBLE VIA VLAN TRUNKING
    10.
    发明申请
    SYSTEM, METHOD, AND COMPUTER PROGRAM PRODUCT FOR IDENTIFYING UNWANTED ACTIVITY UTILIZING A HONEYPOT DEVICE ACCESSIBLE VIA VLAN TRUNKING 有权
    系统,方法和计算机程序产品,用于识别使用通过VLAN传输访问的蜂窝设备的无用活动

    公开(公告)号:US20120180131A1

    公开(公告)日:2012-07-12

    申请号:US13415418

    申请日:2012-03-08

    IPC分类号: G06F21/00 G06F15/16

    CPC分类号: H04L63/1491

    摘要: A system, method, and computer program product are provided for identifying unwanted activity utilizing a honeypot accessible via virtual local area network (VLAN) trunking. In use, a honeypot device is allowed to be accessed via VLAN trunking. Furthermore, unwanted data is identified, utilizing the honeypot device.

    摘要翻译: 提供了一种系统,方法和计算机程序产品,用于通过经由虚拟局域网(VLAN)集群可访问的蜜罐识别不需要的活动。 在使用中,允许通过VLAN中继访问蜜罐设备。 此外,利用蜜罐设备来识别不想要的数据。