Invention Grant
US07930751B2 Method and apparatus for detecting malicious code in an information handling system
有权
用于在信息处理系统中检测恶意代码的方法和装置
- Patent Title: Method and apparatus for detecting malicious code in an information handling system
- Patent Title (中): 用于在信息处理系统中检测恶意代码的方法和装置
-
Application No.: US12395530Application Date: 2009-02-27
-
Publication No.: US07930751B2Publication Date: 2011-04-19
- Inventor: Mark Obrecht , Michael Tony Alagna , Andy Payne
- Applicant: Mark Obrecht , Michael Tony Alagna , Andy Payne
- Applicant Address: US CA Mountain View
- Assignee: Symantec Corporation
- Current Assignee: Symantec Corporation
- Current Assignee Address: US CA Mountain View
- Agency: Meyertons, Hood, Kivlin, Kowert & Goetzel, P.C.
- Agent Dean M. Munyon
- Main IPC: G06F12/14
- IPC: G06F12/14 ; G06F12/16 ; G08B23/00
Abstract:
A method for detecting malicious code on an information handling system includes executing malicious code detection code (MCDC) on the information handling system. The malicious code detection code includes detection routines. The detection routines are applied to executable code under investigation running on the information handling system during the execution of the MCDC. The detection routines associate weights to respective executable code under investigation in response to detections of a valid program or malicious code as a function of respective detection routines. Lastly, executable code under investigation is determined a valid program or malicious code as a function of the weights associated by the detection routines. Computer-readable media and an information handling system are also disclosed.
Public/Granted literature
- US20100095379A1 METHOD AND APPARATUS FOR DETECTING MALICIOUS CODE IN AN INFORMATION HANDLING SYSTEM Public/Granted day:2010-04-15
Information query
