发明名称 |
Method and apparatus for detecting malicious content in protected archives |
摘要 |
In one embodiment, a protected archive is checked for malicious content by checking a file size of the archive and/or examining the archive for notable characteristics indicative of malicious content. The notable characteristics may include values in a header of the archive. For example, the file name extension of a file contained in the archive and the compression method used to create the archive may be taken into account in determining whether the archive has malicious content, such as a worm or a virus. Embodiments of the present invention allow for detection of malicious content in the protected archive without necessarily having to extract files from the archive.
|
申请公布号 |
US7448085(B1) |
申请公布日期 |
2008.11.04 |
申请号 |
US20040885997 |
申请日期 |
2004.07.07 |
申请人 |
TREND MICRO INCORPORATED |
发明人 |
REYES CRESCENCIO F.;MALIBIRAN ED ISRAEL S.;BAUTISTA RONALD C. |
分类号 |
G06F11/00;B65C9/14;B65C9/36;G06F1/00;G06F7/04;G06K17/00;H04L29/06 |
主分类号 |
G06F11/00 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|