Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Method and device used for detecting infective viruses

An infectious virus and a technology to be detected, applied in the computer field, can solve the problems of high labor costs, difficulty in timely and accurate detection of infectious viruses, and difficulty in guaranteeing virus detection speed, so as to improve the detection speed and overcome the problems of high labor costs Effect

Inactive Publication Date: 2016-08-24
IYUNTIAN
View PDF4 Cites 2 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The method of manual analysis and matching or manual activation of rules not only has the problem of high labor costs, but also the speed of virus detection is difficult to guarantee, and it is also difficult to detect unknown infectious viruses in a timely and accurate manner.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and device used for detecting infective viruses
  • Method and device used for detecting infective viruses
  • Method and device used for detecting infective viruses

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0056] Infectious viruses add themselves to other programs or dynamic library files (a type of DLL), so as to realize the function of running synchronously with the infected program, and then destroy the infected computer and spread itself. Due to its own characteristics, infectious viruses need to be attached to other host programs to run, and in order to avoid the detection and killing of antivirus software, usually infectious viruses will divide, deform or encrypt themselves, and then attach part or all of themselves to the host program. Once a virus file is executed, it is likely to add virus codes to most of the program files in the system, and then spread to other computers. Therefore, it is difficult to quickly and accurately identify infectious viruses by manual identification methods, and Difficult to find unknown infectious virus. The embodiment of the present application proposes a detection method for infectious viruses, and the method detects infectious viruses b...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a method and a device used for detecting infective viruses. The method comprises the following steps: extracting the feature vector of a file to be detected, wherein the feature vector comprises the distribution frequency of an entropy of the immediate data of an entry point; and utilizing an infective virus identification model obtained by machine learning on the basis of the feature vector to detect whether the file to be detected is an infective virus file or not on the basis of the feature vector. The problems of high manual cost of manual analysis identification and manual rule startup are overcome, and the method for detecting the infective viruses on the basis of the infective virus identification model greatly improves detection speed, and can effectively detect unknown infective viruses.

Description

technical field [0001] The invention relates to the field of computers, in particular to a method and device for detecting infectious viruses. Background technique [0002] Infectious virus is a type of virus with the most variants among viruses. In the prior art, detection of infectious viruses is mostly performed by means of manual analysis and matching or manual activation of rules. Since the infectious virus will constantly change the code form and execution logic of the virus itself during the process of spreading its own virus code, it is necessary to manually add more features or rules to improve the detection rate of the infectious virus For this purpose, it needs to invest a lot of human resources to manually deal with this ever-changing infectious virus. The method of manual analysis and matching or manual activation of rules not only has the problem of high labor cost, but also the speed of virus detection is difficult to guarantee, and it is also difficult to f...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/56
Inventor 陈治宇周吉文周杰李伟
Owner IYUNTIAN
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products