| 摘要 |
The present invention is intended as a method, system and computer program product for identification of malware components based on automatically collected statistical data and providing effective cure to infected computer systems. The malware components on a user's computer system are identified and appropriate cure is administered in a form of cure scripts. The cure scripts are automatically generated based on collected comprehensive malware-related statistical data. The statistical data is collected through generating protocol logs of malware affected computer system. The protocol logs are stored in the database. The statistical data is also collected through emulation of known malware components. Cure solutions against malware in a form of scripts are also stored in the database for future references. The system constantly collects malware-related statistics (i.e., self-teaches) and effectiveness of the cure provided to infected computer systems is improved with time.
|
