Invention Grant
- Patent Title: Systems and methods for detecting malicious processes by analyzing process names and process characteristics
- Patent Title (中): 通过分析过程名称和过程特征来检测恶意进程的系统和方法
-
Application No.: US12130812Application Date: 2008-05-30
-
Publication No.: US08176555B1Publication Date: 2012-05-08
- Inventor: Anthony Schreiner , Brian Hernacki , Christopher Peterson , William E. Sobel , Mark Kennedy
- Applicant: Anthony Schreiner , Brian Hernacki , Christopher Peterson , William E. Sobel , Mark Kennedy
- Applicant Address: US CA Mountain View
- Assignee: Symantec Corporation
- Current Assignee: Symantec Corporation
- Current Assignee Address: US CA Mountain View
- Agency: Advantedge Law Group
- Main IPC: G06F21/00
- IPC: G06F21/00
Abstract:
A computer-implemented method for detecting a malicious process using file-name heuristics may comprise: 1) identifying a process, 2) identifying a process name for the process, 3) identifying a list of process names for non-malicious processes, and 4) determining, by comparing the process name for the process with the list of process names for non-malicious processes, whether to allow the process to execute. A method for maintaining a database containing information about non-malicious processes is also disclosed. Corresponding systems and computer-readable media are also disclosed.
Information query
