| 发明名称 |
SYSTEM AND METHOD OF PROTECTING COMPUTING DEVICE FROM MALICIOUS OBJECTS USING COMPLEX INFECTION SCHEMES |
| 摘要 |
FIELD: information technology. ^ SUBSTANCE: method is realised by isolating processes launched from those inspection objects which are trusted using a means of analysing objects. Then, using a means of creating contexts, contexts are created and stored in a means of storing contexts. These contexts are then analysed by a means of analysing contexts using rule bases from the means of storing rule bases in order to detect malicious objects. Based on results of analysing the created contexts, this invention enables to determine malicious objects from malicious processes launched from said objects and protect a computing device from actions of the malicious objects by ending these malicious processes. ^ EFFECT: high level of protecting computing devices from malicious objects owing to analysis of processes on the computing device and ending processes launched from the malicious objects. ^ 34 cl, 5 dwg |
| 申请公布号 |
RU2454705(C1) |
申请公布日期 |
2012.06.27 |
| 申请号 |
RU20110115362 |
申请日期 |
2011.04.19 |
| 申请人 |
ZAKRYTOE AKTSIONERNOE OBSHCHESTVO "LABORATORIJA KASPERSKOGO" |
发明人 |
POLJAKOV ALEKSEJ ALEKSANDROVICH;MARTYNENKO VLADISLAV VALER'EVICH;SLOBODJANJUK JURIJ GENNAD'EVICH;NAZAROV DENIS ALEKSANDROVICH;PAVLJUSHCHIK MIKHAIL ALEKSANDROVICH |
| 分类号 |
G06F11/00;G06F21/55;G06F21/56 |
主分类号 |
G06F11/00 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
|
| 地址 |
|
