CN100373287C - 检测程序操作行为的方法及病毒程序检测、清除方法 - Google Patents
检测程序操作行为的方法及病毒程序检测、清除方法 Download PDFInfo
- Publication number
- CN100373287C CN100373287C CNB2006100076133A CN200610007613A CN100373287C CN 100373287 C CN100373287 C CN 100373287C CN B2006100076133 A CNB2006100076133 A CN B2006100076133A CN 200610007613 A CN200610007613 A CN 200610007613A CN 100373287 C CN100373287 C CN 100373287C
- Authority
- CN
- China
- Prior art keywords
- program
- control
- behavior
- detected
- virus
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/55—Detecting local intrusion or implementing counter-measures
- G06F21/56—Computer malware detection or handling, e.g. anti-virus arrangements
Abstract
Description
Claims (15)
Priority Applications (4)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CNB2006100076133A CN100373287C (zh) | 2005-11-16 | 2006-02-15 | 检测程序操作行为的方法及病毒程序检测、清除方法 |
EP06805123A EP1962168A4 (en) | 2005-11-16 | 2006-10-31 | METHOD FOR DETECTING THE BEHAVIOR OF THE OPERATION OF A PROGRAM AND METHOD FOR DETECTING AND DELETING THE PROGRAM COMPRISING THE VIRUS |
PCT/CN2006/002922 WO2007056934A1 (fr) | 2005-11-16 | 2006-10-31 | Procede pour detecter le comportement du fonctionnement d'un programme et procede pour detecter et effacer le programme contenant le virus |
US12/093,784 US20090133124A1 (en) | 2006-02-15 | 2006-10-31 | A method for detecting the operation behavior of the program and a method for detecting and clearing the virus program |
Applications Claiming Priority (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN200510114946.1 | 2005-11-16 | ||
CN200510114946 | 2005-11-16 | ||
CNB2006100076133A CN100373287C (zh) | 2005-11-16 | 2006-02-15 | 检测程序操作行为的方法及病毒程序检测、清除方法 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN1936764A CN1936764A (zh) | 2007-03-28 |
CN100373287C true CN100373287C (zh) | 2008-03-05 |
Family
ID=37954308
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CNB2006100076133A Expired - Fee Related CN100373287C (zh) | 2005-11-16 | 2006-02-15 | 检测程序操作行为的方法及病毒程序检测、清除方法 |
Country Status (3)
Country | Link |
---|---|
EP (1) | EP1962168A4 (zh) |
CN (1) | CN100373287C (zh) |
WO (1) | WO2007056934A1 (zh) |
Families Citing this family (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP2166669A1 (en) | 2008-09-17 | 2010-03-24 | Electrolux Home Products Corporation N.V. | Cooktop assembly comprising flush-mounted cooktop panel |
CN107729751A (zh) * | 2016-08-12 | 2018-02-23 | 阿里巴巴集团控股有限公司 | 数据检测方法及装置 |
CN110197071B (zh) * | 2018-04-25 | 2023-05-16 | 腾讯科技(深圳)有限公司 | 引导区数据处理方法及装置、计算机存储介质、电子设备 |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6240530B1 (en) * | 1997-09-05 | 2001-05-29 | Fujitsu Limited | Virus extermination method, information processing apparatus and computer-readable recording medium with virus extermination program recorded thereon |
CN1304092A (zh) * | 2000-01-11 | 2001-07-18 | 神达电脑股份有限公司 | Ide硬盘装置设定在pio传输模式下的病毒检测方法 |
CN1304089A (zh) * | 2000-01-11 | 2001-07-18 | 神达电脑股份有限公司 | 感染计算机病毒文件的追踪检测方法 |
CN1314638A (zh) * | 2001-04-29 | 2001-09-26 | 北京瑞星科技股份有限公司 | 检测和清除已知及未知计算机病毒的方法、系统和介质 |
CN1409222A (zh) * | 2001-09-14 | 2003-04-09 | 北京瑞星科技股份有限公司 | 计算机内存病毒监控和带毒运行方法 |
Family Cites Families (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5964889A (en) * | 1997-04-16 | 1999-10-12 | Symantec Corporation | Method to analyze a program for presence of computer viruses by examining the opcode for faults before emulating instruction in emulator |
TW452733B (en) * | 1999-11-26 | 2001-09-01 | Inventec Corp | Method for preventing BIOS from viruses infection |
US6775780B1 (en) * | 2000-03-16 | 2004-08-10 | Networks Associates Technology, Inc. | Detecting malicious software by analyzing patterns of system calls generated during emulation |
CN1235108C (zh) * | 2004-03-29 | 2006-01-04 | 四川大学 | 一种计算机病毒检测和识别方法 |
-
2006
- 2006-02-15 CN CNB2006100076133A patent/CN100373287C/zh not_active Expired - Fee Related
- 2006-10-31 WO PCT/CN2006/002922 patent/WO2007056934A1/zh active Application Filing
- 2006-10-31 EP EP06805123A patent/EP1962168A4/en not_active Withdrawn
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6240530B1 (en) * | 1997-09-05 | 2001-05-29 | Fujitsu Limited | Virus extermination method, information processing apparatus and computer-readable recording medium with virus extermination program recorded thereon |
CN1304092A (zh) * | 2000-01-11 | 2001-07-18 | 神达电脑股份有限公司 | Ide硬盘装置设定在pio传输模式下的病毒检测方法 |
CN1304089A (zh) * | 2000-01-11 | 2001-07-18 | 神达电脑股份有限公司 | 感染计算机病毒文件的追踪检测方法 |
CN1314638A (zh) * | 2001-04-29 | 2001-09-26 | 北京瑞星科技股份有限公司 | 检测和清除已知及未知计算机病毒的方法、系统和介质 |
CN1409222A (zh) * | 2001-09-14 | 2003-04-09 | 北京瑞星科技股份有限公司 | 计算机内存病毒监控和带毒运行方法 |
Also Published As
Publication number | Publication date |
---|---|
CN1936764A (zh) | 2007-03-28 |
WO2007056934A1 (fr) | 2007-05-24 |
EP1962168A1 (en) | 2008-08-27 |
EP1962168A4 (en) | 2009-04-29 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN100437614C (zh) | 未知病毒程序的识别及清除方法 | |
CN107590388B (zh) | 恶意代码检测方法和装置 | |
RU2472215C1 (ru) | Способ выявления неизвестных программ с использованием эмуляции процесса загрузки | |
Bishop et al. | A critical analysis of vulnerability taxonomies | |
CN100465978C (zh) | 被病毒程序破坏的数据恢复方法、装置及病毒清除方法 | |
JP3079087B2 (ja) | マクロ・ウイルスを発生する方法及びシステム | |
CN101183414A (zh) | 一种程序检测的方法、装置及程序分析的方法 | |
US20070261120A1 (en) | Method & system for monitoring integrity of running computer system | |
Ho et al. | PREC: practical root exploit containment for android devices | |
US20020162015A1 (en) | Method and system for scanning and cleaning known and unknown computer viruses, recording medium and transmission medium therefor | |
CN106055385B (zh) | 监控虚拟机进程的系统和方法、过滤page fault异常的方法 | |
US20080178290A1 (en) | Method of secure data processing on a computer system | |
CN107851155A (zh) | 用于跨越多个软件实体跟踪恶意行为的系统及方法 | |
CN1954297A (zh) | 在具有病毒、间谍软件以及黑客防护特征的虚拟处理空间中的隔离复用多维处理 | |
CN107450964B (zh) | 一种用于发现虚拟机自省系统中是否存在漏洞的方法 | |
Le Charlier et al. | Dynamic detection and classification of computer viruses using general behaviour patterns | |
CN105683985B (zh) | 用于虚拟机内省的系统、方法及非暂时性计算机可读介质 | |
CN109800569A (zh) | 程序鉴别方法及装置 | |
CN100373287C (zh) | 检测程序操作行为的方法及病毒程序检测、清除方法 | |
CN109857520B (zh) | 一种虚拟机自省中的语义重构改进方法及系统 | |
Peisert et al. | Principles-driven forensic analysis | |
Al-Sharif et al. | The Effects of Platforms and Languages on the Memory Footprint of the Executable Program: A Memory Forensic Approach. | |
US20230315850A1 (en) | Rootkit detection based on system dump sequence analysis | |
CN103677746A (zh) | 指令重组方法及装置 | |
US20090133124A1 (en) | A method for detecting the operation behavior of the program and a method for detecting and clearing the virus program |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
ASS | Succession or assignment of patent right |
Owner name: JIANG ZHIYUAN Free format text: FORMER OWNER: BAI JIE Effective date: 20120731 Free format text: FORMER OWNER: LI WEI LU ZHENGYU Effective date: 20120731 |
|
C41 | Transfer of patent application or patent right or utility model | ||
COR | Change of bibliographic data |
Free format text: CORRECT: ADDRESS; FROM: 100089 HAIDIAN, BEIJING TO: 264012 YANTAI, SHANDONG PROVINCE |
|
TR01 | Transfer of patent right |
Effective date of registration: 20120731 Address after: 264012, No. 9, No. 6, agriculture support, Zhifu District, Yantai, Shandong Patentee after: Jiang Zhiyuan Address before: 100089 No. 203, building 16, little Nanzhuang, Beijing, Haidian District Co-patentee before: Li Wei Patentee before: Bai Jie Co-patentee before: Lu Zhengyu |
|
CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20080305 Termination date: 20150215 |
|
EXPY | Termination of patent right or utility model |