Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Terminal virus detection method and device based on data packet, and storage equipment

A virus detection and data packet technology, which is applied in electrical digital data processing, computer security devices, instruments, etc., can solve problems such as terminal attack and repeated infection, terminal increase, network persecution, etc., and achieve the effect of reducing the probability of attack

Pending Publication Date: 2020-04-17
BEIJING ANTIY NETWORK SAFETY TECH CO LTD
View PDF0 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] It can be imagined that there is a virus that can spread horizontally, so that the number of terminals attacked on the internal network will inevitably increase, which will inevitably cause greater persecution to the network, and at the same time increase the time required to repair all terminals
Even if the software patch can be fixed quickly, the malware can no longer destroy the repaired software, but these endpoints are still vulnerable to other malicious programs and repeated infections

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Terminal virus detection method and device based on data packet, and storage equipment
  • Terminal virus detection method and device based on data packet, and storage equipment
  • Terminal virus detection method and device based on data packet, and storage equipment

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0033] In order to make the object, technical solution and advantages of the present invention more clear, the specific implementation of the data packet-based terminal virus detection method provided by the embodiment of the present invention will be described in detail below with reference to the accompanying drawings. It should be understood that the preferred embodiments described below are only used to illustrate and explain the present invention, not to limit the present invention. And in the case of no conflict, the embodiments in the present application and the features in the embodiments can be combined with each other.

[0034] Generally, manufacturers will deploy traditional IPS devices to fight against known network attacks, but traditional IPS devices cannot effectively protect against unknown attacks, and at the same time, they cannot repair the attacked terminals accordingly. Among them, IPS is an intrusion prevention system. If it is judged as an attack, it wil...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

Embodiments of the invention disclose a terminal virus detection method and device based on a data packet, and a storage device, and aim to solve the problem that a virus-infected terminal attacks other terminals with more vulnerabilities in a local area network. The method comprises the following steps: performing memory detection on all terminals; if the suspicious process is found, suspending the suspicious process; sending the suspicious process to a virtual machine; monitoring a data packet sent by a suspicious process in the virtual machine and a received callback information data packet, analyzing the data packet, and performing matching with a predetermined attack mode or callback rule; if the matching similarity is not lower than a threshold value, determining that the suspiciousprocess is a process infected by viruses, and handling the process; and if the matching similarity is lower than the threshold value, traversing the whole virtual machine memory and changing the CnC server address in the virtual machine memory into the address of the preset system.

Description

technical field [0001] The embodiments of the present invention relate to the field of virus detection, and in particular, to a terminal virus detection method, device and storage device based on data packets. Background technique [0002] Over the past few years, malicious attacks have become a daily problem for Internet users and associated devices. Software vulnerabilities in networked machines are increasingly being discovered, many of which are system vulnerabilities. Criminals use these loopholes to infiltrate into various terminals. While these software vulnerabilities continue to be patched, network devices remain vulnerable to attacks. [0003] Generally, manufacturers analyze network traffic to combat malicious attacks. For example, traditional IPS devices are often deployed by enterprises to combat known network attacks. However, traditional IPS devices cannot effectively protect against unknown attacks, and at the same time cannot repair the attacked terminal...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): G06F21/56H04L29/06
CPCG06F21/566H04L63/145
Inventor 付威徐翰隆肖新光
Owner BEIJING ANTIY NETWORK SAFETY TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com