CN1409222A - 计算机内存病毒监控和带毒运行方法 - Google Patents
计算机内存病毒监控和带毒运行方法 Download PDFInfo
- Publication number
- CN1409222A CN1409222A CN 01142156 CN01142156A CN1409222A CN 1409222 A CN1409222 A CN 1409222A CN 01142156 CN01142156 CN 01142156 CN 01142156 A CN01142156 A CN 01142156A CN 1409222 A CN1409222 A CN 1409222A
- Authority
- CN
- China
- Prior art keywords
- virus
- function
- calculator memory
- call
- killing poison
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 241000700605 Viruses Species 0.000 title claims abstract description 120
- 238000000034 method Methods 0.000 title claims abstract description 58
- 238000012544 monitoring process Methods 0.000 title description 8
- 230000006870 function Effects 0.000 claims abstract description 73
- 239000002574 poison Substances 0.000 claims description 26
- 231100000614 poison Toxicity 0.000 claims description 26
- 230000003612 virological effect Effects 0.000 claims description 11
- 238000012545 processing Methods 0.000 claims description 7
- 238000011109 contamination Methods 0.000 claims description 5
- 238000012546 transfer Methods 0.000 claims description 4
- 230000006378 damage Effects 0.000 claims description 3
- 230000002155 anti-virotic effect Effects 0.000 description 7
- 239000008186 active pharmaceutical agent Substances 0.000 description 4
- 238000010586 diagram Methods 0.000 description 3
- 230000000694 effects Effects 0.000 description 2
- 208000015181 infectious disease Diseases 0.000 description 2
- 230000003068 static effect Effects 0.000 description 2
- 230000000052 comparative effect Effects 0.000 description 1
- 230000006835 compression Effects 0.000 description 1
- 238000007906 compression Methods 0.000 description 1
- 230000001066 destructive effect Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
Images
Landscapes
- Debugging And Monitoring (AREA)
- Measuring Or Testing Involving Enzymes Or Micro-Organisms (AREA)
Abstract
Description
Claims (9)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN 01142156 CN1282083C (zh) | 2001-09-14 | 2001-09-14 | 计算机内存病毒监控和带毒运行方法 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN 01142156 CN1282083C (zh) | 2001-09-14 | 2001-09-14 | 计算机内存病毒监控和带毒运行方法 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN1409222A true CN1409222A (zh) | 2003-04-09 |
CN1282083C CN1282083C (zh) | 2006-10-25 |
Family
ID=4676663
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN 01142156 Expired - Lifetime CN1282083C (zh) | 2001-09-14 | 2001-09-14 | 计算机内存病毒监控和带毒运行方法 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN1282083C (zh) |
Cited By (14)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2007056932A1 (fr) * | 2005-11-16 | 2007-05-24 | Jie Bai | Procede pour supprimer un programme contenant un virus et procede pour recuperer les donnees detruites par le virus |
CN100373287C (zh) * | 2005-11-16 | 2008-03-05 | 白杰 | 检测程序操作行为的方法及病毒程序检测、清除方法 |
CN100374972C (zh) * | 2005-08-03 | 2008-03-12 | 珠海金山软件股份有限公司 | 一种检测和防御计算机恶意程序的系统和方法 |
WO2008064551A1 (fr) * | 2006-11-27 | 2008-06-05 | Coobol Technologis Co. Ltd. | Système et procédé pour empêcher l'intrusion de programme malveillant |
CN100401224C (zh) * | 2005-06-23 | 2008-07-09 | 福建东方微点信息安全有限责任公司 | 计算机反病毒防护系统和方法 |
CN100422900C (zh) * | 2005-11-17 | 2008-10-01 | 珠海金山软件股份有限公司 | 一种基于数据流的计算机病毒查杀方法 |
CN100461197C (zh) * | 2006-05-16 | 2009-02-11 | 北京启明星辰信息技术有限公司 | 一种恶意代码自动分析系统及方法 |
WO2009049556A1 (fr) * | 2007-10-15 | 2009-04-23 | Beijing Risinginternationalsoftware Co., Ltd. | Procédé et dispositif permettant d'empêcher l'utilisation de la faille de sécurité d'un navigateur |
US8561192B2 (en) | 2007-10-15 | 2013-10-15 | Beijing Rising Information Technology Co., Ltd. | Method and apparatus for automatically protecting a computer against a harmful program |
CN103455757A (zh) * | 2012-05-31 | 2013-12-18 | 北京金山安全软件有限公司 | 一种识别病毒的方法及装置 |
CN103927479A (zh) * | 2013-01-10 | 2014-07-16 | 腾讯科技(深圳)有限公司 | 一种查杀病毒的方法及装置 |
US8898775B2 (en) | 2007-10-15 | 2014-11-25 | Bejing Rising Information Technology Co., Ltd. | Method and apparatus for detecting the malicious behavior of computer program |
CN103927479B (zh) * | 2013-01-10 | 2016-11-30 | 腾讯科技(深圳)有限公司 | 一种查杀病毒的方法及装置 |
CN104008338B (zh) * | 2014-05-08 | 2017-06-27 | 北京金山安全软件有限公司 | 一种Android恶意程序处理方法、装置及设备 |
-
2001
- 2001-09-14 CN CN 01142156 patent/CN1282083C/zh not_active Expired - Lifetime
Cited By (16)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN100401224C (zh) * | 2005-06-23 | 2008-07-09 | 福建东方微点信息安全有限责任公司 | 计算机反病毒防护系统和方法 |
CN100374972C (zh) * | 2005-08-03 | 2008-03-12 | 珠海金山软件股份有限公司 | 一种检测和防御计算机恶意程序的系统和方法 |
WO2007056932A1 (fr) * | 2005-11-16 | 2007-05-24 | Jie Bai | Procede pour supprimer un programme contenant un virus et procede pour recuperer les donnees detruites par le virus |
CN100373287C (zh) * | 2005-11-16 | 2008-03-05 | 白杰 | 检测程序操作行为的方法及病毒程序检测、清除方法 |
CN100422900C (zh) * | 2005-11-17 | 2008-10-01 | 珠海金山软件股份有限公司 | 一种基于数据流的计算机病毒查杀方法 |
CN100461197C (zh) * | 2006-05-16 | 2009-02-11 | 北京启明星辰信息技术有限公司 | 一种恶意代码自动分析系统及方法 |
WO2008064551A1 (fr) * | 2006-11-27 | 2008-06-05 | Coobol Technologis Co. Ltd. | Système et procédé pour empêcher l'intrusion de programme malveillant |
US8561192B2 (en) | 2007-10-15 | 2013-10-15 | Beijing Rising Information Technology Co., Ltd. | Method and apparatus for automatically protecting a computer against a harmful program |
WO2009049556A1 (fr) * | 2007-10-15 | 2009-04-23 | Beijing Risinginternationalsoftware Co., Ltd. | Procédé et dispositif permettant d'empêcher l'utilisation de la faille de sécurité d'un navigateur |
US8898775B2 (en) | 2007-10-15 | 2014-11-25 | Bejing Rising Information Technology Co., Ltd. | Method and apparatus for detecting the malicious behavior of computer program |
CN103455757A (zh) * | 2012-05-31 | 2013-12-18 | 北京金山安全软件有限公司 | 一种识别病毒的方法及装置 |
CN103455757B (zh) * | 2012-05-31 | 2016-08-17 | 北京金山安全软件有限公司 | 一种识别病毒的方法及装置 |
CN103927479A (zh) * | 2013-01-10 | 2014-07-16 | 腾讯科技(深圳)有限公司 | 一种查杀病毒的方法及装置 |
WO2014107991A1 (en) * | 2013-01-10 | 2014-07-17 | Tencent Technology (Shenzhen) Company Limited | Method and device for anti-virus scanning |
CN103927479B (zh) * | 2013-01-10 | 2016-11-30 | 腾讯科技(深圳)有限公司 | 一种查杀病毒的方法及装置 |
CN104008338B (zh) * | 2014-05-08 | 2017-06-27 | 北京金山安全软件有限公司 | 一种Android恶意程序处理方法、装置及设备 |
Also Published As
Publication number | Publication date |
---|---|
CN1282083C (zh) | 2006-10-25 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN1282083C (zh) | 计算机内存病毒监控和带毒运行方法 | |
EP1959367B1 (en) | Automatic extraction of signatures for Malware | |
EP2452287B1 (en) | Anti-virus scanning | |
US6029256A (en) | Method and system for allowing computer programs easy access to features of a virus scanning engine | |
Bayer et al. | Scalable, behavior-based malware clustering. | |
Wang et al. | Detecting stealth software with strider ghostbuster | |
CN101685486B (zh) | 多杀毒引擎的杀毒方法和系统 | |
US20030097591A1 (en) | System and method for protecting computer users from web sites hosting computer viruses | |
US7647308B2 (en) | Method and system for the detection of file system filter driver based rootkits | |
US8613093B2 (en) | System, method, and computer program product for comparing an object with object enumeration results to identify an anomaly that at least potentially indicates unwanted activity | |
US7565695B2 (en) | System and method for directly accessing data from a data storage medium | |
US20070152854A1 (en) | Forgery detection using entropy modeling | |
CN1943210A (zh) | 基于源/目的地操作系统类型的ids虚拟化 | |
CN1737722A (zh) | 一种检测和防御计算机恶意程序的系统和方法 | |
KR20040089386A (ko) | 메모리를 감염시키는 바이러스의 치료방법, 프로그램을기록한 컴퓨터로 읽을 수 있는 기록매체 및 바이러스의치료장치 | |
CN1731310A (zh) | Windows环境下的主机入侵检测方法 | |
US7346611B2 (en) | System and method for accessing data from a data storage medium | |
KR20050053401A (ko) | 컴퓨터 바이러스 방역방법과 그 프로그램을 기록한 기록매체 | |
CN1375775A (zh) | 网关级计算机网络病毒防范的方法及其装置 | |
CN101046836A (zh) | 一种清除rootkit的系统及方法 | |
US20150156209A1 (en) | Process Using Universal Sanitization to Prevent Injection Attacks | |
CN1625125A (zh) | 用于客户端设备的系统环境规则违反的检测方法 | |
CN1581088A (zh) | 一种防止计算机病毒的方法及装置 | |
Butler et al. | Physical memory forensics for files and cache | |
CN1735029A (zh) | 注册表保护系统和方法 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
ASS | Succession or assignment of patent right |
Owner name: BEIJING RISING INTERNATIONAL SOFTWARE CO., LTD. Free format text: FORMER OWNER: BEIJING RUIXING SCIENCE CO., LTD. Effective date: 20080104 |
|
C41 | Transfer of patent application or patent right or utility model | ||
TR01 | Transfer of patent right |
Effective date of registration: 20080104 Address after: Room A408, Zhongke building, 22 Zhongguancun street, Haidian District, Beijing Patentee after: Beijing Rising International Software Co., Ltd. Address before: Room 1305, Zhongke building, 22 Zhongguancun street, Haidian District, Beijing Patentee before: Ruixing Science and Technology Co., Ltd., Beijing |
|
ASS | Succession or assignment of patent right |
Owner name: BEIJING RISING INFORMATION TECHNOLOGY CO., LTD. Free format text: FORMER OWNER: BEIJING RISING INTERNATIONAL SOFTWARE CO., LTD. Effective date: 20101214 |
|
C41 | Transfer of patent application or patent right or utility model | ||
COR | Change of bibliographic data |
Free format text: CORRECT: ADDRESS; FROM: 100080 ROOM A408, ZHONGKE BUILDING, NO.22, ZHONGGUANCUN STREET, HAIDIAN DISTRICT, BEIJING TO: 100190 ROOM 1301, ZHONGKE BUILDING, NO.22, ZHONGGUANCUN STREET, HAIDIAN DISTRICT, BEIJING |
|
TR01 | Transfer of patent right |
Effective date of registration: 20101214 Address after: 100190 Beijing City, Haidian District Zhongguancun Street Branch No. 22 building, room 1301 Patentee after: Beijing Rising Information Technology Co., Ltd. Address before: 100080, A408 building, Zhongke building, 22 Zhongguancun street, Haidian District, Beijing Patentee before: Beijing Rising International Software Co., Ltd. |
|
C56 | Change in the name or address of the patentee | ||
CP01 | Change in the name or title of a patent holder |
Address after: 100190 Beijing City, Haidian District Zhongguancun Street Branch No. 22 building, room 1301 Patentee after: Beijing Rising Information Technology Co., Ltd Address before: 100190 Beijing City, Haidian District Zhongguancun Street Branch No. 22 building, room 1301 Patentee before: Beijing Rising Information Technology Co., Ltd. |
|
CP03 | Change of name, title or address |
Address after: 100190 Zhongguancun street, Haidian District, Beijing, No. 22, A1305, 13 Patentee after: Beijing net an Technology Limited by Share Ltd Address before: 100190 Beijing City, Haidian District Zhongguancun Street Branch No. 22 building, room 1301 Patentee before: Beijing Rising Information Technology Co., Ltd |
|
CP03 | Change of name, title or address | ||
CX01 | Expiry of patent term |
Granted publication date: 20061025 |
|
CX01 | Expiry of patent term |