| 发明名称 |
Automated malware detection and remediation |
| 摘要 |
Systems and methods for detecting malware in a selected computer that is part of a network of computers. The approach includes inspecting a predetermined set of operational attributes of the selected computer to detect a change in a state of the selected computer. In response to a detected change in state, the selected computer is scanned to create a snapshot of the overall state of the selected computer. The snapshot is transmitted to an analytic system wherein it is compared with an aggregated collection of snapshots previously respectively received from a plurality of computers in the computer network. Based on the comparison, anomalous state of the selected computer can be identified. In turn, a probe of the selected computer is launched to gather additional information related to the anomalous state of the selected computer so that a remediation action for the anomalous state of the selected computer can be generated. |
| 申请公布号 |
US8707427(B2) |
申请公布日期 |
2014.04.22 |
| 申请号 |
US20100754814 |
申请日期 |
2010.04.06 |
| 申请人 |
HOOKS DAVID E.;QUINN MITCHELL N.;TRIUMFANT, INC. |
发明人 |
HOOKS DAVID E.;QUINN MITCHELL N. |
| 分类号 |
G06F21/00;H04L29/06 |
主分类号 |
G06F21/00 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
|
| 地址 |
|
