WO2008005536A3 - Malware automated removal system and method - Google Patents

Malware automated removal system and method Download PDF

Info

Publication number
WO2008005536A3
WO2008005536A3 PCT/US2007/015580 US2007015580W WO2008005536A3 WO 2008005536 A3 WO2008005536 A3 WO 2008005536A3 US 2007015580 W US2007015580 W US 2007015580W WO 2008005536 A3 WO2008005536 A3 WO 2008005536A3
Authority
WO
WIPO (PCT)
Prior art keywords
shell
safe mode
malware
software products
custom
Prior art date
Application number
PCT/US2007/015580
Other languages
French (fr)
Other versions
WO2008005536A2 (en
Inventor
Michael Wenzinger
Michael Sherwood
Original Assignee
Best Buy Entpr Services Inc
Michael Wenzinger
Michael Sherwood
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Best Buy Entpr Services Inc, Michael Wenzinger, Michael Sherwood filed Critical Best Buy Entpr Services Inc
Publication of WO2008005536A2 publication Critical patent/WO2008005536A2/en
Publication of WO2008005536A3 publication Critical patent/WO2008005536A3/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/56Computer malware detection or handling, e.g. anti-virus arrangements
    • G06F21/568Computer malware detection or handling, e.g. anti-virus arrangements eliminating virus, restoring damaged files
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/56Computer malware detection or handling, e.g. anti-virus arrangements
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2105Dual mode as a secondary aspect

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • Virology (AREA)
  • General Health & Medical Sciences (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Stored Programmes (AREA)

Abstract

The present invention automates the operation of multiple malware removal software products [figure 3, 76, 78] using a computerized system that systematically operates the multiple selected software products. These products are operated them in a customized 'Safe Mode' using a shell that is different than the computer's other shell environments. Unlike the ordinary Safe Modes shells, the Custom Safe Mode prevents malware from functioning that ties itself to the normal shell, such as the Windows Explorer shell. In addition, the Custom Safe Mode allows the automation of tasks beyond that which is available under the standard command line shell.
PCT/US2007/015580 2006-07-05 2007-07-05 Malware automated removal system and method WO2008005536A2 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US81880906P 2006-07-05 2006-07-05
US60/818,809 2006-07-05

Publications (2)

Publication Number Publication Date
WO2008005536A2 WO2008005536A2 (en) 2008-01-10
WO2008005536A3 true WO2008005536A3 (en) 2008-07-03

Family

ID=38895238

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2007/015580 WO2008005536A2 (en) 2006-07-05 2007-07-05 Malware automated removal system and method

Country Status (1)

Country Link
WO (1) WO2008005536A2 (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10452850B2 (en) 2014-08-18 2019-10-22 International Business Machines Corporation Protected shell for risk validation
US10181034B2 (en) * 2016-02-12 2019-01-15 Sophos Limited Virtual machine security
US11232206B2 (en) 2019-04-23 2022-01-25 Microsoft Technology Licensing, Llc Automated malware remediation and file restoration management
US11232205B2 (en) 2019-04-23 2022-01-25 Microsoft Technology Licensing, Llc File storage service initiation of antivirus software locally installed on a user device

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050283640A1 (en) * 2004-05-19 2005-12-22 International Business Machines Corporation Polled automatic virus fix

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050283640A1 (en) * 2004-05-19 2005-12-22 International Business Machines Corporation Polled automatic virus fix

Also Published As

Publication number Publication date
WO2008005536A2 (en) 2008-01-10

Similar Documents

Publication Publication Date Title
AU2003227411A1 (en) Processor system, task control method on computer system, computer program
EP1700206A4 (en) Method, system, and computer program product for automatically managing components within a controlled environment
WO2009044864A1 (en) Plant control system and method
WO2009019533A3 (en) Optimized call center operations method and system
WO2009023580A3 (en) Automated application modeling for application virtualization
HUE039582T2 (en) Method, system and computer program product for the transmission of data
EP1636667A4 (en) Systems, methods and computer program products for modeling uncertain future benefits
WO2008019335A3 (en) Machine tool system control
TW200834298A (en) System, method, and computer program product for saving power in a multi-graphics processor environment
EP1967981A4 (en) Program execution control method, device, and execution control program
WO2008019336A3 (en) Generalized kinematics system
EP1450349A4 (en) In-vehicle controller and program for instructing computer to execute operation instruction method
WO2004068279A3 (en) Method and apparatus for controlling a data processing system during debug
WO2005107402A3 (en) Virtualization of control software for communication devices
HK1113418A1 (en) Method and transaction control component for migrating a host environment to a new system platform, and associated decentralized client system
AU2003251544A1 (en) Input/output interface for computer aided diagnosis (cad) system
HK1103151A1 (en) System, method and computer program product for providing content based upon a representation of the same
AU2003259872A8 (en) Operating system for executing computer software applications
WO2006003449A3 (en) Process-related systems and methods
EP1586065A4 (en) Hazardous materials shipping system, method and computer program product
WO2008005536A3 (en) Malware automated removal system and method
AU2002254188A1 (en) System, method, and computer program product for network-based part management system
WO2009080946A3 (en) Method of managing a set of virtual environment control entities, device, and corresponding computer program product
WO2008030727A8 (en) Access control of memory space in microprocessor systems
WO2009025166A1 (en) Access control system

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 07810248

Country of ref document: EP

Kind code of ref document: A2

DPE1 Request for preliminary examination filed after expiration of 19th month from priority date (pct application filed from 20040101)
NENP Non-entry into the national phase

Ref country code: DE

NENP Non-entry into the national phase

Ref country code: RU

122 Ep: pct application non-entry in european phase

Ref document number: 07810248

Country of ref document: EP

Kind code of ref document: A2

DPE1 Request for preliminary examination filed after expiration of 19th month from priority date (pct application filed from 20040101)