CN104318160A - 查杀恶意程序的方法和装置 - Google Patents
查杀恶意程序的方法和装置 Download PDFInfo
- Publication number
- CN104318160A CN104318160A CN201410594203.8A CN201410594203A CN104318160A CN 104318160 A CN104318160 A CN 104318160A CN 201410594203 A CN201410594203 A CN 201410594203A CN 104318160 A CN104318160 A CN 104318160A
- Authority
- CN
- China
- Prior art keywords
- file
- preset
- partition
- terminal
- operating system
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 93
- 238000005192 partition Methods 0.000 claims abstract description 132
- 230000006835 compression Effects 0.000 claims description 66
- 238000007906 compression Methods 0.000 claims description 66
- 241000700605 Viruses Species 0.000 abstract description 46
- 230000002155 anti-virotic effect Effects 0.000 abstract description 10
- 230000006399 behavior Effects 0.000 description 34
- ZXQYGBMAQZUVMI-GCMPRSNUSA-N gamma-cyhalothrin Chemical compound CC1(C)[C@@H](\C=C(/Cl)C(F)(F)F)[C@H]1C(=O)O[C@H](C#N)C1=CC=CC(OC=2C=CC=CC=2)=C1 ZXQYGBMAQZUVMI-GCMPRSNUSA-N 0.000 description 22
- 230000008569 process Effects 0.000 description 17
- 238000012795 verification Methods 0.000 description 16
- 238000001514 detection method Methods 0.000 description 14
- 238000010586 diagram Methods 0.000 description 9
- 230000009471 action Effects 0.000 description 8
- 230000000694 effects Effects 0.000 description 7
- 230000026676 system process Effects 0.000 description 7
- 238000009434 installation Methods 0.000 description 5
- 230000008901 benefit Effects 0.000 description 4
- 230000006870 function Effects 0.000 description 3
- 230000003053 immunization Effects 0.000 description 3
- 238000002649 immunization Methods 0.000 description 3
- 238000002347 injection Methods 0.000 description 3
- 239000007924 injection Substances 0.000 description 3
- 238000012986 modification Methods 0.000 description 3
- 230000004048 modification Effects 0.000 description 3
- 238000012216 screening Methods 0.000 description 3
- 238000004590 computer program Methods 0.000 description 2
- 239000012634 fragment Substances 0.000 description 2
- 238000013519 translation Methods 0.000 description 2
- 241000726306 Irus Species 0.000 description 1
- 230000006978 adaptation Effects 0.000 description 1
- 230000003044 adaptive effect Effects 0.000 description 1
- 238000013459 approach Methods 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 230000006837 decompression Effects 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 230000008451 emotion Effects 0.000 description 1
- 238000011010 flushing procedure Methods 0.000 description 1
- 238000007429 general method Methods 0.000 description 1
- 230000001900 immune effect Effects 0.000 description 1
- 208000015181 infectious disease Diseases 0.000 description 1
- 230000002458 infectious effect Effects 0.000 description 1
- 230000006855 networking Effects 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 239000000243 solution Substances 0.000 description 1
- 230000001954 sterilising effect Effects 0.000 description 1
- 238000004659 sterilization and disinfection Methods 0.000 description 1
- 230000001960 triggered effect Effects 0.000 description 1
- 238000013024 troubleshooting Methods 0.000 description 1
- 210000002845 virion Anatomy 0.000 description 1
- 238000012800 visualization Methods 0.000 description 1
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/55—Detecting local intrusion or implementing counter-measures
- G06F21/56—Computer malware detection or handling, e.g. anti-virus arrangements
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/55—Detecting local intrusion or implementing counter-measures
- G06F21/56—Computer malware detection or handling, e.g. anti-virus arrangements
- G06F21/568—Computer malware detection or handling, e.g. anti-virus arrangements eliminating virus, restoring damaged files
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Software Systems (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Virology (AREA)
- Health & Medical Sciences (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- General Health & Medical Sciences (AREA)
- Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
Description
Claims (10)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410594203.8A CN104318160B (zh) | 2014-10-29 | 2014-10-29 | 查杀恶意程序的方法和装置 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410594203.8A CN104318160B (zh) | 2014-10-29 | 2014-10-29 | 查杀恶意程序的方法和装置 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN104318160A true CN104318160A (zh) | 2015-01-28 |
CN104318160B CN104318160B (zh) | 2017-12-26 |
Family
ID=52373391
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201410594203.8A Active CN104318160B (zh) | 2014-10-29 | 2014-10-29 | 查杀恶意程序的方法和装置 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN104318160B (zh) |
Cited By (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105488416A (zh) * | 2015-12-02 | 2016-04-13 | 广东欧珀移动通信有限公司 | 安卓系统的电子设备的病毒检测方法、安卓系统的电子设备 |
CN105701404A (zh) * | 2016-01-04 | 2016-06-22 | 广东欧珀移动通信有限公司 | 移动终端的杀毒方法、装置和移动终端 |
CN106096402A (zh) * | 2016-06-22 | 2016-11-09 | 北京金山安全软件有限公司 | 一种信息拦截方法及装置 |
CN106850507A (zh) * | 2015-12-04 | 2017-06-13 | 北京航空航天大学 | 基于http压缩数据流的有害代码检测方法和装置 |
CN106845223A (zh) * | 2016-12-13 | 2017-06-13 | 北京三快在线科技有限公司 | 用于检测恶意代码的方法和装置 |
CN106934286A (zh) * | 2015-12-31 | 2017-07-07 | 北京金山安全软件有限公司 | 一种安全诊断方法、装置及电子设备 |
CN107122663A (zh) * | 2017-04-28 | 2017-09-01 | 成都梆梆信息科技有限公司 | 一种注入攻击检测方法及装置 |
CN107360165A (zh) * | 2017-07-13 | 2017-11-17 | 北京元心科技有限公司 | 终端设备、云服务器以及管控操作系统的方法及装置 |
CN111723372A (zh) * | 2020-06-22 | 2020-09-29 | 深信服科技股份有限公司 | 一种病毒查杀方法、装置及计算机可读存储介质 |
CN113505076A (zh) * | 2021-07-26 | 2021-10-15 | 中国工商银行股份有限公司 | 文件覆盖检测方法及装置 |
CN113836533A (zh) * | 2021-09-27 | 2021-12-24 | 深信服科技股份有限公司 | 一种文件监测方法、装置、电子设备及可读存储介质 |
Families Citing this family (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109766699B (zh) * | 2018-05-04 | 2022-02-15 | 奇安信安全技术(珠海)有限公司 | 操作行为的拦截方法及装置、存储介质、电子装置 |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20090080469A (ko) * | 2008-01-21 | 2009-07-24 | 주식회사 마크애니 | 프로그램의 설치 방지 방법 및 장치 |
CN103246846A (zh) * | 2013-04-24 | 2013-08-14 | 北京网秦天下科技有限公司 | 检测定制rom的安全性的方法和装置 |
CN104008340A (zh) * | 2014-06-09 | 2014-08-27 | 北京奇虎科技有限公司 | 病毒查杀方法及装置 |
-
2014
- 2014-10-29 CN CN201410594203.8A patent/CN104318160B/zh active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20090080469A (ko) * | 2008-01-21 | 2009-07-24 | 주식회사 마크애니 | 프로그램의 설치 방지 방법 및 장치 |
CN103246846A (zh) * | 2013-04-24 | 2013-08-14 | 北京网秦天下科技有限公司 | 检测定制rom的安全性的方法和装置 |
CN104008340A (zh) * | 2014-06-09 | 2014-08-27 | 北京奇虎科技有限公司 | 病毒查杀方法及装置 |
Cited By (19)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105488416A (zh) * | 2015-12-02 | 2016-04-13 | 广东欧珀移动通信有限公司 | 安卓系统的电子设备的病毒检测方法、安卓系统的电子设备 |
CN106850507A (zh) * | 2015-12-04 | 2017-06-13 | 北京航空航天大学 | 基于http压缩数据流的有害代码检测方法和装置 |
CN106850507B (zh) * | 2015-12-04 | 2020-01-14 | 北京航空航天大学 | 基于http压缩数据流的有害代码检测方法和装置 |
CN106934286A (zh) * | 2015-12-31 | 2017-07-07 | 北京金山安全软件有限公司 | 一种安全诊断方法、装置及电子设备 |
CN106934286B (zh) * | 2015-12-31 | 2020-02-04 | 北京金山安全软件有限公司 | 一种安全诊断方法、装置及电子设备 |
CN105701404B (zh) * | 2016-01-04 | 2018-06-05 | 广东欧珀移动通信有限公司 | 移动终端的杀毒方法、装置和移动终端 |
CN105701404A (zh) * | 2016-01-04 | 2016-06-22 | 广东欧珀移动通信有限公司 | 移动终端的杀毒方法、装置和移动终端 |
CN106096402A (zh) * | 2016-06-22 | 2016-11-09 | 北京金山安全软件有限公司 | 一种信息拦截方法及装置 |
CN106845223A (zh) * | 2016-12-13 | 2017-06-13 | 北京三快在线科技有限公司 | 用于检测恶意代码的方法和装置 |
CN106845223B (zh) * | 2016-12-13 | 2020-08-04 | 北京三快在线科技有限公司 | 用于检测恶意代码的方法和装置 |
CN107122663A (zh) * | 2017-04-28 | 2017-09-01 | 成都梆梆信息科技有限公司 | 一种注入攻击检测方法及装置 |
CN107360165A (zh) * | 2017-07-13 | 2017-11-17 | 北京元心科技有限公司 | 终端设备、云服务器以及管控操作系统的方法及装置 |
CN107360165B (zh) * | 2017-07-13 | 2021-02-12 | 北京元心科技有限公司 | 终端设备、云服务器以及管控操作系统的方法及装置 |
CN111723372A (zh) * | 2020-06-22 | 2020-09-29 | 深信服科技股份有限公司 | 一种病毒查杀方法、装置及计算机可读存储介质 |
CN111723372B (zh) * | 2020-06-22 | 2024-02-23 | 深信服科技股份有限公司 | 一种病毒查杀方法、装置及计算机可读存储介质 |
CN113505076A (zh) * | 2021-07-26 | 2021-10-15 | 中国工商银行股份有限公司 | 文件覆盖检测方法及装置 |
CN113505076B (zh) * | 2021-07-26 | 2024-08-02 | 中国工商银行股份有限公司 | 文件覆盖检测方法及装置 |
CN113836533A (zh) * | 2021-09-27 | 2021-12-24 | 深信服科技股份有限公司 | 一种文件监测方法、装置、电子设备及可读存储介质 |
CN113836533B (zh) * | 2021-09-27 | 2024-05-24 | 深信服科技股份有限公司 | 一种文件监测方法、装置、电子设备及可读存储介质 |
Also Published As
Publication number | Publication date |
---|---|
CN104318160B (zh) | 2017-12-26 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN104318160B (zh) | 查杀恶意程序的方法和装置 | |
CN106778103B (zh) | 一种安卓应用程序防逆向破解的加固方法、系统及解密方法 | |
CN104008340B (zh) | 病毒查杀方法及装置 | |
CN102831338B (zh) | 一种Android应用程序的安全检测方法及系统 | |
TWI791418B (zh) | 用以檢測運作時期所產生碼中之惡意碼的系統及方法、與相關電腦程式產品 | |
KR101402057B1 (ko) | 위험도 계산을 통한 리패키지 애플리케이션의 분석시스템 및 분석방법 | |
CN104462968B (zh) | 恶意应用程序的扫描方法、装置和系统 | |
CN102779257B (zh) | 一种Android应用程序的安全检测方法及系统 | |
CN104317599B (zh) | 检测安装包是否被二次打包的方法和装置 | |
CN105786538B (zh) | 基于安卓系统的软件升级方法和装置 | |
CN109255235B (zh) | 基于用户态沙箱的移动应用第三方库隔离方法 | |
CN104506639A (zh) | 一种获取Root权限的方法及装置 | |
CN103632096A (zh) | 一种对设备进行安全检测方法和装置 | |
CN104517054A (zh) | 一种检测恶意apk的方法、装置、客户端和服务器 | |
WO2015192637A1 (zh) | 软件安装包的加固保护方法和装置 | |
KR101695639B1 (ko) | 클라우드 기반의 애플리케이션 보안 서비스 제공 방법 및 시스템 | |
JP6170900B2 (ja) | ファイル処理方法及び装置 | |
CN104462971A (zh) | 根据应用程序声明特征识别恶意应用程序的方法和装置 | |
KR20150083627A (ko) | 액티비티 문자열 분석에 의한 안드로이드 악성코드 검출 방법 | |
CN105205398A (zh) | 一种基于apk加壳软件动态行为的查壳方法 | |
CN104915594A (zh) | 应用程序运行方法及装置 | |
CN114282212A (zh) | 流氓软件识别方法、装置、电子设备及存储介质 | |
CN110502900B (zh) | 一种检测方法、终端、服务器及计算机存储介质 | |
CN104462969A (zh) | 查杀恶意应用程序的方法、装置和系统 | |
CN105095754A (zh) | 一种处理病毒应用的方法、和装置和移动终端 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
CP01 | Change in the name or title of a patent holder |
Address after: 100088 room 112, block D, 28 new street, new street, Xicheng District, Beijing (Desheng Park) Patentee after: BEIJING QIHOO TECHNOLOGY Co.,Ltd. Patentee after: Beijing Qizhi Business Consulting Co.,Ltd. Address before: 100088 room 112, block D, 28 new street, new street, Xicheng District, Beijing (Desheng Park) Patentee before: BEIJING QIHOO TECHNOLOGY Co.,Ltd. Patentee before: Qizhi software (Beijing) Co.,Ltd. |
|
CP01 | Change in the name or title of a patent holder | ||
TR01 | Transfer of patent right |
Effective date of registration: 20210616 Address after: 100016 1773, 15 / F, 17 / F, building 3, No.10, Jiuxianqiao Road, Chaoyang District, Beijing Patentee after: Beijing Hongteng Intelligent Technology Co.,Ltd. Address before: 100088 room 112, block D, 28 new street, new street, Xicheng District, Beijing (Desheng Park) Patentee before: BEIJING QIHOO TECHNOLOGY Co.,Ltd. Patentee before: Beijing Qizhi Business Consulting Co.,Ltd. |
|
TR01 | Transfer of patent right | ||
CP01 | Change in the name or title of a patent holder |
Address after: 100016 1773, 15 / F, 17 / F, building 3, No.10, Jiuxianqiao Road, Chaoyang District, Beijing Patentee after: Sanliu0 Digital Security Technology Group Co.,Ltd. Address before: 100016 1773, 15 / F, 17 / F, building 3, No.10, Jiuxianqiao Road, Chaoyang District, Beijing Patentee before: Beijing Hongteng Intelligent Technology Co.,Ltd. |
|
CP01 | Change in the name or title of a patent holder |