HRP20171470T1 - Automatizirano raspakiravanje prijenosnih izvršnih datoteka - Google Patents
Automatizirano raspakiravanje prijenosnih izvršnih datoteka Download PDFInfo
- Publication number
- HRP20171470T1 HRP20171470T1 HRP20171470TT HRP20171470T HRP20171470T1 HR P20171470 T1 HRP20171470 T1 HR P20171470T1 HR P20171470T T HRP20171470T T HR P20171470TT HR P20171470 T HRP20171470 T HR P20171470T HR P20171470 T1 HRP20171470 T1 HR P20171470T1
- Authority
- HR
- Croatia
- Prior art keywords
- packaged
- portable executable
- file
- executable file
- data
- Prior art date
Links
- 238000000034 method Methods 0.000 claims 20
- 238000004590 computer program Methods 0.000 claims 5
- 230000000977 initiatory effect Effects 0.000 claims 3
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F8/00—Arrangements for software engineering
- G06F8/70—Software maintenance or management
- G06F8/74—Reverse engineering; Extracting design information from source code
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/07—Responding to the occurrence of a fault, e.g. fault tolerance
- G06F11/0703—Error or fault processing not based on redundancy, i.e. by taking additional measures to deal with the error or fault not making use of redundancy in operation, in hardware, or in data representation
- G06F11/0706—Error or fault processing not based on redundancy, i.e. by taking additional measures to deal with the error or fault not making use of redundancy in operation, in hardware, or in data representation the processing taking place on a specific hardware platform or in a specific software environment
- G06F11/0715—Error or fault processing not based on redundancy, i.e. by taking additional measures to deal with the error or fault not making use of redundancy in operation, in hardware, or in data representation the processing taking place on a specific hardware platform or in a specific software environment in a system implementing multitasking
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/07—Responding to the occurrence of a fault, e.g. fault tolerance
- G06F11/0703—Error or fault processing not based on redundancy, i.e. by taking additional measures to deal with the error or fault not making use of redundancy in operation, in hardware, or in data representation
- G06F11/0706—Error or fault processing not based on redundancy, i.e. by taking additional measures to deal with the error or fault not making use of redundancy in operation, in hardware, or in data representation the processing taking place on a specific hardware platform or in a specific software environment
- G06F11/0721—Error or fault processing not based on redundancy, i.e. by taking additional measures to deal with the error or fault not making use of redundancy in operation, in hardware, or in data representation the processing taking place on a specific hardware platform or in a specific software environment within a central processing unit [CPU]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/07—Responding to the occurrence of a fault, e.g. fault tolerance
- G06F11/0703—Error or fault processing not based on redundancy, i.e. by taking additional measures to deal with the error or fault not making use of redundancy in operation, in hardware, or in data representation
- G06F11/0751—Error or fault detection not based on redundancy
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/07—Responding to the occurrence of a fault, e.g. fault tolerance
- G06F11/0703—Error or fault processing not based on redundancy, i.e. by taking additional measures to deal with the error or fault not making use of redundancy in operation, in hardware, or in data representation
- G06F11/0793—Remedial or corrective actions
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/36—Preventing errors by testing or debugging software
- G06F11/362—Software debugging
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F8/00—Arrangements for software engineering
- G06F8/60—Software deployment
- G06F8/65—Updates
Claims (15)
1. Postupak kojeg provodi računalo, naznačen time što se sastoji u:
podešavanju, od strane računalnog uređaja, mjesta prekida kod uklanjanja pogrešaka na adresi izvornog mjesta ulaza pakirane prijenosne izvršne (PE) datoteke, kako bi se omogućilo zaustavljanje izvršavanja pakirane PE datoteke prije predavanja kontrole na izvršnu datoteku umetnutu u pakiranu PE datoteku;
izvršavanju, od strane računalnog uređaja, postupka uklanjanja pogrešaka za pakiranu prijenosnu izvršnu datoteku uključujući u najmanju ruku djelomično raspakiravanje pakirane PE datoteke, kako bi se dobilo ispravljenu prijenosnu izvršnu datoteku u memoriji;
prikupljanju, od strane računalnog uređaja, jednog ili više podataka iz tablica adresa unosa i podataka iz tablica premiještanja tijekom izvršavanja postupka uklanjanja pogrešaka za pakiranu prijenosnu izvršnu datoteku;
prebacivanju u ispravljenu prijenosnu izvršnu datoteku, od strane računalnog uređaja, jedne ili više tablica adresa unosa, na osnovi, u najmanju ruku djelomično, prikupljenih podataka iz tablica adresa unosa, i tablica premiještanja, na osnovi, u najmanju ruku djelomično, prikupljenih podataka iz tablica premiještanja;
kopiranju, od strane računalnog uređaja, ispravljene prijenosne izvršne datoteke u memoriji na memorijski medij; i prekidanju, od strane računalnog uređaja, postupka uklanjanja pogrešaka.
2. Postupak kojeg provodi računalo u skladu s patentnim zahtjevom 1, naznačen time što dodatno uključuje određivanje, koje provodi računalni uređaj, adrese izvornog mjesta ulaza pakirane prijenosne izvršne datoteke na osnovi, u najmanju ruku djelomično, podataka iz ImageBase polja za pakiranu prijenosnu izvršnu datoteku i podataka iz AddressOfEntryPoint za pakiranu prijenosnu izvršnu datoteku.
3. Postupak kojeg provodi računalo u skladu s patentnim zahtjevom 1, naznačen time što dodatno uključuje pokretanje, od strane računalnog uređaja, postupka uklanjanja pogrešaka, uključujući pokretanje postupka uklanjanja pogrešaka na osnovi, u najmanju ruku djelomično, pakirane prijenosne izvršne datoteke.
4. Postupak kojeg provodi računalo u skladu s patentnim zahtjevom 1, naznačen time što prikupljanje jednog ili više podataka iz tablica adresa unosa i podataka iz tablica premiještanja uključuje podešavanje jednog ili više mjesta prekida kod uklanjanja pogrešaka povezanog s pozivom LoadLibrary, pozivom GetModulHandle, te pozivom GetProcAddress.
5. Postupak kojeg provodi računalo u skladu s patentnim zahtjevom 1, naznačen time što dodatno uključuje usklađivanje, od strane računalnog uređaja, ispravljene prijenosne izvršne datoteke.
6. Računalni programski produkt, naznačen time što sadrži računalno čitljiv medij, koji u sebi sadrži više spremljenih uputa, koje, kada ih izvrši procesor, uzrokuju da procesor provede operacije koje se sastoje u:
podešavanju mjesta prekida kod uklanjanja pogrešaka na adresi izvornog mjesta ulaza pakirane prijenosne izvršne (PE) datoteke, kako bi se omogućilo zaustavljanje izvršavanja pakirane PE datoteke prije predavanja kontrole na izvršnu datoteku umetnutu u pakiranu PE datoteku;
izvršavanju postupka uklanjanja pogrešaka za pakiranu prijenosnu izvršnu datoteku, uključujući u najmanju ruku djelomično raspakiravanje pakirane PE datoteke, kako bi se dobilo ispravljenu prijenosnu izvršnu datoteku u memoriji;
prikupljanju jednog ili više podataka iz tablica adresa unosa i podataka iz tablica premiještanja tijekom izvršavanja postupka uklanjanja pogrešaka za pakiranu prijenosnu izvršnu datoteku;
prebacivanju u ispravljenu prijenosnu izvršnu datoteku jedne ili više tablica adresa unosa, na osnovi, u najmanju ruku djelomično, prikupljenih podataka iz tablica adresa unosa, i tablica premiještanja, na osnovi, u najmanju ruku djelomično, prikupljenih podataka iz tablica premiještanja;
kopiranju ispravljene prijenosne izvršne datoteke u memoriji na memorijski medij; i prekidanju postupka uklanjanja pogrešaka.
7. Računalni programski produkt u skladu s patentnim zahtjevom 6, naznačen time što dodatno sadrži upute za određivanje adrese izvornog mjesta ulaza pakirane prijenosne izvršne datoteke na osnovi, u najmanju ruku djelomično, podataka iz ImageBase polja za pakiranu prijenosnu izvršnu datoteku i podataka iz AddressOfEntryPoint za pakiranu prijenosnu izvršnu datoteku.
8. Računalni programski produkt u skladu s patentnim zahtjevom 6, naznačen time što dodatno sadrži upute za pokretanje postupka uklanjanja pogrešaka, uključujući pokretanje postupka uklanjanja pogrešaka na osnovi, u najmanju ruku djelomično, pakirane prijenosne izvršne datoteke.
9. Računalni programski produkt u skladu s patentnim zahtjevom 6, naznačen time što prikupljanje jednog ili više podataka iz tablica adresa unosa i podataka iz tablica premiještanja uključuje podešavanje jednog ili više mjesta prekida kod uklanjanja pogrešaka povezano s pozivom LoadLibrary, pozivom GetModulHandle, te pozivom GetProcAddress.
10. Računalni programski produkt u skladu s patentnim zahtjevom 6, naznačen time što dodatno sadrži upute za usklađivanje ispravljene prijenosne izvršne datoteke.
11. Sustav, naznačen time što sadrži:
procesor; memoriju spregnutu s procesorom; prvi programski modul, kojeg može izvršiti procesor s memorijom, gdje je prvi programski modul konfiguriran za podešavanje mjesta prekida kod uklanjanja pogrešaka na adresi izvornog mjesta ulaza pakirane prijenosne izvršne (PE) datoteke, kako bi se omogućilo zaustavljanje izvršavanja pakirane PE datoteke prije predavanja kontrole na izvršnu datoteku umetnutu u pakiranu PE datoteku; drugi programski modul, kojeg može izvršiti procesor s memorijom, gdje je drugi programski modul konfiguriran za izvršavanje postupka uklanjanja pogrešaka za pakiranu prijenosnu izvršnu datoteku uključujući u najmanju ruku djelomično raspakiravanje pakirane PE datoteke, kako bi se dobilo ispravljenu prijenosnu izvršnu datoteku u memoriji;
treći programski modul, kojeg može izvršiti procesor s memorijom, gdje je treći programski modul konfiguriran za prikupljanje jednog ili više podataka iz tablica adresa unosa i podataka iz tablica premiještanja tijekom izvršavanja postupka uklanjanja pogrešaka za pakiranu prijenosnu izvršnu datoteku;
osmi programski modul, kojeg može izvršiti procesor s memorijom, gdje je osmi programski modul konfiguriran za prebacivanje u ispravljenu prijenosnu izvršnu datoteku, od strane računalnog uređaja, jedne ili više tablica adresa unosa, na osnovi, u najmanju ruku djelomično, prikupljenih podataka iz tablica adresa unosa, i, tablica premiještanja, na osnovi, u najmanju ruku djelomično, prikupljenih podataka iz tablica premiještanja;
četvrti programski modul, kojeg može izvršiti procesor s memorijom, gdje je četvrti programski modul konfiguriran za kopiranje ispravljene prijenosne izvršne datoteke u memoriji na memorijski medij; i
peti programski modul, kojeg može izvršiti procesor s memorijom, gdje je peti programski modul konfiguriran za prekidanje postupka uklanjanja pogrešaka.
12. Sustav u skladu s patentnim zahtjevom 11, naznačen time što dodatno sadrži šesti programski modul, kojeg može izvršiti procesor s memorijom, gdje je šesti programski modul konfiguriran za određivanje adrese izvornog mjesta ulaza pakirane prijenosne izvršne datoteke na osnovi, u najmanju ruku djelomično, podataka iz ImageBase polja za pakiranu prijenosnu izvršnu datoteku i podataka iz AddressOfEntryPoint za pakiranu prijenosnu izvršnu datoteku.
13. Sustav u skladu s patentnim zahtjevom 11, naznačen time što dodatno sadrži sedmi programski modul, kojeg može izvršiti procesor s memorijom, gdje je sedmi programski modul konfiguriran za pokretanje postupka uklanjanja pogrešaka, uključujući pokretanje postupka uklanjanja pogrešaka na osnovi, u najmanju ruku djelomično, pakirane prijenosne izvršne datoteke.
14. Sustav u skladu s patentnim zahtjevom 11, naznačen time što je treći programski modul, konfiguriran za prikupljanje jednog ili više podataka iz tablica adresa unosa i podataka iz tablica premiještanja, konfiguriran za podešavanje jednog ili više mjesta prekida kod uklanjanja pogrešaka povezanog s pozivom LoadLibrary, pozivom GetModulHandle, te pozivom GetProcAddress.
15. Sustav u skladu s patentnim zahtjevom 11, naznačen time što dodatno sadrži deveti programski modul, kojeg može izvršiti procesor s memorijom, gdje je deveti programski modul konfiguriran za usklađivanje ispravljene prijenosne izvršne datoteke.
Applications Claiming Priority (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US22949709P | 2009-07-29 | 2009-07-29 | |
PCT/US2010/043666 WO2011014625A1 (en) | 2009-07-29 | 2010-07-29 | Automated unpacking of portable executable files |
EP10752652.7A EP2460113B1 (en) | 2009-07-29 | 2010-07-29 | Automated unpacking of portable executable files |
Publications (1)
Publication Number | Publication Date |
---|---|
HRP20171470T1 true HRP20171470T1 (hr) | 2017-12-29 |
Family
ID=43033144
Family Applications (3)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
HRP20171470TT HRP20171470T1 (hr) | 2009-07-29 | 2017-10-02 | Automatizirano raspakiravanje prijenosnih izvršnih datoteka |
HRP20180306TT HRP20180306T1 (hr) | 2009-07-29 | 2018-02-21 | Popravak prijenosnih izvršnih datoteka |
HRP20180689TT HRP20180689T1 (hr) | 2009-07-29 | 2018-05-03 | Analiza prijenosnih izvršnih datoteka |
Family Applications After (2)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
HRP20180306TT HRP20180306T1 (hr) | 2009-07-29 | 2018-02-21 | Popravak prijenosnih izvršnih datoteka |
HRP20180689TT HRP20180689T1 (hr) | 2009-07-29 | 2018-05-03 | Analiza prijenosnih izvršnih datoteka |
Country Status (10)
Country | Link |
---|---|
US (5) | US9389947B2 (hr) |
EP (3) | EP2460075B1 (hr) |
CA (3) | CA2806370C (hr) |
ES (3) | ES2667024T3 (hr) |
HR (3) | HRP20171470T1 (hr) |
HU (2) | HUE038328T2 (hr) |
NO (2) | NO2460076T3 (hr) |
PT (3) | PT2460075T (hr) |
TW (3) | TW201128383A (hr) |
WO (3) | WO2011014623A1 (hr) |
Families Citing this family (23)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
TW201128383A (en) * | 2009-07-29 | 2011-08-16 | Reversinglabs Corp | Portable executable file analysis |
US8607094B2 (en) * | 2009-09-29 | 2013-12-10 | Hyundai Motor Company | Operational system test method |
AU2010319344B2 (en) * | 2009-11-13 | 2014-10-09 | Ab Initio Technology Llc | Managing record format information |
US8756695B1 (en) * | 2010-10-26 | 2014-06-17 | Emc Corporation | Analysis of binary code |
US9158605B2 (en) * | 2010-12-01 | 2015-10-13 | Microsoft Technology Licensing, Llc | Method, system and device for validating repair files and repairing corrupt software |
US9019850B2 (en) * | 2011-04-11 | 2015-04-28 | Qualcomm Incorporated | CSI reporting for multiple carriers with different system configurations |
US9009678B2 (en) * | 2011-06-28 | 2015-04-14 | International Business Machines Corporation | Software debugging with execution match determinations |
CN102507682B (zh) * | 2011-10-27 | 2013-09-18 | 浙江大学 | 一种基于银/纳米银的溶解硫化氢探测电极的制备方法 |
US9047293B2 (en) | 2012-07-25 | 2015-06-02 | Aviv Grafi | Computer file format conversion for neutralization of attacks |
CN103632088A (zh) * | 2012-08-28 | 2014-03-12 | 阿里巴巴集团控股有限公司 | 一种木马检测方法及装置 |
CN103019739B (zh) * | 2012-12-28 | 2015-07-29 | 北京神州绿盟信息安全科技股份有限公司 | 重定位表的修复方法、程序脱壳方法及相关装置 |
CN103077029B (zh) * | 2012-12-28 | 2016-07-13 | 北京神州绿盟信息安全科技股份有限公司 | 一种导入表的修复方法及装置 |
US9841959B2 (en) * | 2015-02-02 | 2017-12-12 | Google Llc | Fine-grained demand driven IPO infrastructure |
US9742796B1 (en) | 2015-09-18 | 2017-08-22 | Palo Alto Networks, Inc. | Automatic repair of corrupt files for a detonation engine |
US10032914B2 (en) * | 2015-10-20 | 2018-07-24 | Taiwan Semiconductor Manufacturing Co., Ltd. | Semiconductor device and manufacturing method thereof |
RU2606559C1 (ru) * | 2015-10-22 | 2017-01-10 | Акционерное общество "Лаборатория Касперского" | Система и способ оптимизации антивирусной проверки файлов |
US9858424B1 (en) | 2017-01-05 | 2018-01-02 | Votiro Cybersec Ltd. | System and method for protecting systems from active content |
CN108614680A (zh) * | 2016-12-14 | 2018-10-02 | 中国航空工业集团公司西安航空计算技术研究所 | 一种信息查询命令程序的自动生成方法和系统 |
US10331889B2 (en) | 2017-01-05 | 2019-06-25 | Votiro Cybersec Ltd. | Providing a fastlane for disarming malicious content in received input content |
US10015194B1 (en) | 2017-01-05 | 2018-07-03 | Votiro Cybersec Ltd. | System and method for protecting systems from malicious attacks |
US10331890B2 (en) | 2017-03-20 | 2019-06-25 | Votiro Cybersec Ltd. | Disarming malware in protected content |
CN111796850B (zh) * | 2020-07-20 | 2021-05-11 | 上海航天电子通讯设备研究所 | 一种卫星载荷软件在轨维护设备及方法 |
CN115145571A (zh) * | 2021-03-31 | 2022-10-04 | 武汉斗鱼鱼乐网络科技有限公司 | 在程序核心代码中隐藏系统函数调用的方法、装置和介质 |
Family Cites Families (59)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US4533997A (en) | 1972-08-25 | 1985-08-06 | Westinghouse Electric Corp. | Computer monitored or controlled system which may be modified and de-bugged on-line by one not skilled in computer programming |
US3987420A (en) | 1973-12-28 | 1976-10-19 | Ing. C. Olivetti & C., S.P.A. | Electronic computer with equipment for debugging operative programs |
US5892900A (en) | 1996-08-30 | 1999-04-06 | Intertrust Technologies Corp. | Systems and methods for secure transaction management and electronic rights protection |
US5812848A (en) * | 1995-08-23 | 1998-09-22 | Symantec Corporation | Subclassing system for computer that operates with portable-executable (PE) modules |
US5892904A (en) | 1996-12-06 | 1999-04-06 | Microsoft Corporation | Code certification for network transmission |
US6367012B1 (en) * | 1996-12-06 | 2002-04-02 | Microsoft Corporation | Embedding certifications in executable files for network transmission |
US6141698A (en) * | 1997-01-29 | 2000-10-31 | Network Commerce Inc. | Method and system for injecting new code into existing application code |
US5983366A (en) | 1997-03-19 | 1999-11-09 | Optimay Corporation | Data processing system having monitoring of software activity |
US6026235A (en) * | 1997-05-20 | 2000-02-15 | Inprise Corporation | System and methods for monitoring functions in natively compiled software programs |
US6202199B1 (en) * | 1997-07-31 | 2001-03-13 | Mutek Solutions, Ltd. | System and method for remotely analyzing the execution of computer programs |
US5983348A (en) * | 1997-09-10 | 1999-11-09 | Trend Micro Incorporated | Computer network malicious code scanner |
US5953534A (en) * | 1997-12-23 | 1999-09-14 | University Of Washington | Environment manipulation for executing modified executable and dynamically-loaded library files |
US6802006B1 (en) | 1999-01-15 | 2004-10-05 | Macrovision Corporation | System and method of verifying the authenticity of dynamically connectable executable images |
TW446872B (en) * | 1999-08-26 | 2001-07-21 | Mitac Int Corp | Detection method of boot-up virus |
TW451125B (en) * | 1999-11-06 | 2001-08-21 | Mitac Int Corp | Tracking and inspecting method for files infected with computer virus |
US7058928B2 (en) * | 1999-12-23 | 2006-06-06 | Identify Software Ltd. | System and method for conditional tracing of computer programs |
US6640317B1 (en) | 2000-04-20 | 2003-10-28 | International Business Machines Corporation | Mechanism for automated generic application damage detection and repair in strongly encapsulated application |
US7146531B2 (en) * | 2000-12-28 | 2006-12-05 | Landesk Software Limited | Repairing applications |
US7861303B2 (en) | 2001-08-01 | 2010-12-28 | Mcafee, Inc. | Malware scanning wireless service agent system and method |
US6792543B2 (en) * | 2001-08-01 | 2004-09-14 | Networks Associates Technology, Inc. | Virus scanning on thin client devices using programmable assembly language |
US7043596B2 (en) | 2001-08-17 | 2006-05-09 | Sun Microsystems, Inc. | Method and apparatus for simulation processor |
US20030070087A1 (en) * | 2001-10-05 | 2003-04-10 | Dmitry Gryaznov | System and method for automatic updating of multiple anti-virus programs |
TWI310919B (en) | 2002-01-11 | 2009-06-11 | Sap Ag | Context-aware and real-time item tracking system architecture and scenariors |
US7181603B2 (en) * | 2002-03-12 | 2007-02-20 | Intel Corporation | Method of secure function loading |
US7818657B1 (en) * | 2002-04-01 | 2010-10-19 | Fannie Mae | Electronic document for mortgage transactions |
US7174320B2 (en) * | 2002-04-04 | 2007-02-06 | Intel Corporation | Method of providing adaptive security |
US7367056B1 (en) * | 2002-06-04 | 2008-04-29 | Symantec Corporation | Countering malicious code infections to computer files that have been infected more than once |
GB2389432B (en) | 2002-06-07 | 2005-09-07 | Advanced Risc Mach Ltd | Instruction tracing in data processing systems |
US7478431B1 (en) * | 2002-08-02 | 2009-01-13 | Symantec Corporation | Heuristic detection of computer viruses |
US7076774B2 (en) * | 2002-09-10 | 2006-07-11 | Microsoft Corporation | Infrastructure for generating a downloadable, secure runtime binary image for a secondary processor |
US8219801B2 (en) * | 2003-03-10 | 2012-07-10 | International Business Machines Corporation | Method of authenticating digitally encoded products without private key sharing |
US7123141B2 (en) | 2003-08-20 | 2006-10-17 | Contestabile Robert A | Electronic monitoring systems and methods |
JP4518564B2 (ja) * | 2003-09-04 | 2010-08-04 | サイエンスパーク株式会社 | 不正コード実行の防止方法、不正コード実行の防止用プログラム、及び不正コード実行の防止用プログラムの記録媒体 |
US7549148B2 (en) * | 2003-12-16 | 2009-06-16 | Microsoft Corporation | Self-describing software image update components |
US7620990B2 (en) | 2004-01-30 | 2009-11-17 | Microsoft Corporation | System and method for unpacking packed executables for malware evaluation |
US7523343B2 (en) | 2004-04-30 | 2009-04-21 | Microsoft Corporation | Real-time file system repairs |
US7349931B2 (en) * | 2005-04-14 | 2008-03-25 | Webroot Software, Inc. | System and method for scanning obfuscated files for pestware |
US8606950B2 (en) | 2005-06-08 | 2013-12-10 | Logitech Europe S.A. | System and method for transparently processing multimedia data |
US8281289B2 (en) | 2005-07-27 | 2012-10-02 | Panasonic Corporation | Device, method, and program for generating and executing execution binary image, and computer-readable recording medium containing the execution binary image execution program |
US8161548B1 (en) | 2005-08-15 | 2012-04-17 | Trend Micro, Inc. | Malware detection using pattern classification |
US7725737B2 (en) * | 2005-10-14 | 2010-05-25 | Check Point Software Technologies, Inc. | System and methodology providing secure workspace environment |
US7546412B2 (en) | 2005-12-02 | 2009-06-09 | International Business Machines Corporation | Apparatus, system, and method for global metadata copy repair |
US8479174B2 (en) * | 2006-04-05 | 2013-07-02 | Prevx Limited | Method, computer program and computer for analyzing an executable computer file |
US7594136B2 (en) * | 2006-04-19 | 2009-09-22 | Microsoft Corporation | Paging-triggered corrupted file recovery |
US7814544B1 (en) * | 2006-06-22 | 2010-10-12 | Symantec Corporation | API-profile guided unpacking |
US20080101381A1 (en) | 2006-10-25 | 2008-05-01 | Mediatek Inc. | Address resolution protocol (arp) cache management methods and devices |
US7797743B2 (en) * | 2007-02-26 | 2010-09-14 | Microsoft Corporation | File conversion in restricted process |
US8346051B2 (en) | 2007-06-01 | 2013-01-01 | Panasonic Corporation | Recording apparatus and recording method |
US20090013405A1 (en) * | 2007-07-06 | 2009-01-08 | Messagelabs Limited | Heuristic detection of malicious code |
US8769268B2 (en) * | 2007-07-20 | 2014-07-01 | Check Point Software Technologies, Inc. | System and methods providing secure workspace sessions |
US8037536B2 (en) * | 2007-11-14 | 2011-10-11 | Bank Of America Corporation | Risk scoring system for the prevention of malware |
KR100942795B1 (ko) * | 2007-11-21 | 2010-02-18 | 한국전자통신연구원 | 악성프로그램 탐지장치 및 그 방법 |
US8627302B2 (en) * | 2007-11-27 | 2014-01-07 | Oracle America, Inc. | Sampling based runtime optimizer for efficient debugging of applications |
US7996904B1 (en) * | 2007-12-19 | 2011-08-09 | Symantec Corporation | Automated unpacking of executables packed by multiple layers of arbitrary packers |
US8782615B2 (en) | 2008-04-14 | 2014-07-15 | Mcafee, Inc. | System, method, and computer program product for simulating at least one of a virtual environment and a debugging environment to prevent unwanted code from executing |
US8073840B2 (en) * | 2008-06-17 | 2011-12-06 | Attivio, Inc. | Querying joined data within a search engine index |
TW201128383A (en) | 2009-07-29 | 2011-08-16 | Reversinglabs Corp | Portable executable file analysis |
US8510615B2 (en) * | 2009-10-22 | 2013-08-13 | Xerox Corporation | Virtual repair of digital media |
US9349103B2 (en) | 2012-01-09 | 2016-05-24 | DecisionQ Corporation | Application of machine learned Bayesian networks to detection of anomalies in complex systems |
-
2010
- 2010-07-29 TW TW099125053A patent/TW201128383A/zh unknown
- 2010-07-29 EP EP10742940.9A patent/EP2460075B1/en active Active
- 2010-07-29 ES ES10765530.0T patent/ES2667024T3/es active Active
- 2010-07-29 NO NO10765530A patent/NO2460076T3/no unknown
- 2010-07-29 PT PT107429409T patent/PT2460075T/pt unknown
- 2010-07-29 TW TW099125055A patent/TWI494751B/zh active
- 2010-07-29 ES ES10742940.9T patent/ES2660538T3/es active Active
- 2010-07-29 US US12/846,048 patent/US9389947B2/en active Active
- 2010-07-29 HU HUE10742940A patent/HUE038328T2/hu unknown
- 2010-07-29 PT PT107526527T patent/PT2460113T/pt unknown
- 2010-07-29 CA CA2806370A patent/CA2806370C/en active Active
- 2010-07-29 WO PCT/US2010/043660 patent/WO2011014623A1/en active Application Filing
- 2010-07-29 WO PCT/US2010/043657 patent/WO2011014620A1/en active Application Filing
- 2010-07-29 TW TW099125054A patent/TWI482013B/zh active
- 2010-07-29 HU HUE10765530A patent/HUE038791T2/hu unknown
- 2010-07-29 CA CA2806368A patent/CA2806368C/en active Active
- 2010-07-29 US US12/846,030 patent/US8826071B2/en active Active
- 2010-07-29 NO NO10742940A patent/NO2460075T3/no unknown
- 2010-07-29 WO PCT/US2010/043666 patent/WO2011014625A1/en active Application Filing
- 2010-07-29 US US12/846,044 patent/US9361173B2/en active Active
- 2010-07-29 EP EP10752652.7A patent/EP2460113B1/en active Active
- 2010-07-29 EP EP10765530.0A patent/EP2460076B1/en active Active
- 2010-07-29 CA CA2806367A patent/CA2806367C/en active Active
- 2010-07-29 PT PT107655300T patent/PT2460076T/pt unknown
- 2010-07-29 ES ES10752652.7T patent/ES2644856T3/es active Active
-
2016
- 2016-05-09 US US15/150,046 patent/US10261783B2/en active Active
- 2016-06-09 US US15/177,978 patent/US9858072B2/en active Active
-
2017
- 2017-10-02 HR HRP20171470TT patent/HRP20171470T1/hr unknown
-
2018
- 2018-02-21 HR HRP20180306TT patent/HRP20180306T1/hr unknown
- 2018-05-03 HR HRP20180689TT patent/HRP20180689T1/hr unknown
Also Published As
Similar Documents
Publication | Publication Date | Title |
---|---|---|
HRP20171470T1 (hr) | Automatizirano raspakiravanje prijenosnih izvršnih datoteka | |
CA2953788C (en) | Automated code lockdown to reduce attack surface for software | |
RU2012148582A (ru) | Команда для загрузки данных до заданной границы памяти, указанной командой | |
MY174573A (en) | Controlling an order for processing data elements during vector processing | |
MY186956A (en) | Headless task completion within digital personal assistants | |
WO2016004657A1 (zh) | 一种针对嵌入式软件的测试用例自动化生成装置及其方法 | |
US8806447B2 (en) | Step-type operation processing during debugging by machine instruction stepping concurrent with setting breakpoints | |
MY154086A (en) | Data processing apparatus and method | |
RU2017114019A (ru) | Восстановление базы данных до состояния на момент времени из моментальных снимков хранилищ | |
RU2014136808A (ru) | Способ и устройство для усовершенствованных технологий пропуска блокировки | |
JP2014501004A5 (hr) | ||
JP2014534532A5 (hr) | ||
JP2016503216A5 (hr) | ||
EP2879054A3 (en) | Communication control device, information processing apparatus, parallel computer system, and control method for parallel computer system | |
CN105528284B (zh) | 一种内核故障注入方法及电子设备 | |
RU2012148401A (ru) | Средство процессорной поддержки | |
JP2009501369A5 (hr) | ||
BR112012019484A2 (pt) | entrada de usuário | |
BR112014010848A8 (pt) | sistema e método para permitir a anotação interativa de uma imagem, estação de trabalho, aparelho gerador de imagens, e, produto de programa de computador | |
JP2013137835A5 (hr) | ||
CN108139903B (zh) | 依dmb操作用加载/存储操作实施加载撷取/存储释放指令 | |
FR2970099B1 (fr) | Procede de chargement d'un code d'au moins un module logiciel | |
GB2576288A (en) | Generating and verifying hardware instruction traces including memory data contents | |
JP2017532634A5 (hr) | ||
JP2019155124A5 (ja) | 情報処理装置及びプログラム |