Invention Grant
US08931096B2 Detecting malicious use of computer resources by tasks running on a computer system
有权
通过在计算机系统上运行的任务检测恶意使用计算机资源
- Patent Title: Detecting malicious use of computer resources by tasks running on a computer system
- Patent Title (中): 通过在计算机系统上运行的任务检测恶意使用计算机资源
-
Application No.: US13315895Application Date: 2011-12-09
-
Publication No.: US08931096B2Publication Date: 2015-01-06
- Inventor: Robert G. Freeman , Gunter Ollmann
- Applicant: Robert G. Freeman , Gunter Ollmann
- Applicant Address: US NY Armonk
- Assignee: International Business Machines Corporation
- Current Assignee: International Business Machines Corporation
- Current Assignee Address: US NY Armonk
- Agency: Yee & Associates, P.C.
- Agent Lisa J. Ulrich
- Main IPC: G06F11/00
- IPC: G06F11/00 ; G06F12/14 ; G06F12/16 ; H04L29/06 ; G06F21/56 ; G06F11/34
Abstract:
A method, apparatus, and computer program product for identifying malware is disclosed. The method identifies processes in a running process list on a host computer system. The method identifies ports assigned to the processes in the running process list on the host computer system. The method determines whether any one of ports that is currently in use in the host computer system is not assigned to any of the processes in the running process list. The method then makes a record that a hidden, running process is present as a characteristic of an attack in response to a determination that one of the ports is currently in use but is not assigned to any of the processes in the running process list in the host computer system.
Public/Granted literature
- US20120084862A1 Detecting Malicious Use of Computer Resources by Tasks Running on a Computer System Public/Granted day:2012-04-05
Information query
