Unknown virus detecting method

A detection method and unknown virus technology, applied in electrical components, transmission systems, etc., can solve the problems that cannot be effectively dealt with, computer users are infected with viruses, and the update speed of anti-virus software cannot keep up with the update speed of viruses, so as to prevent potential Threat effect

Active Publication Date: 2013-12-04
BEIJING ANTIY NETWORK SAFETY TECH CO LTD
View PDF5 Cites 8 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] Through the above means, a large number of computer users are infected with viruses. At the same time, the update speed of t

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Unknown virus detecting method
  • Unknown virus detecting method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0029] In order to enable those skilled in the art to better understand the technical solutions in the embodiments of the present invention, and to make the above-mentioned purposes, features and advantages of the present invention more obvious and easy to understand, the technical solutions in the present invention will be further detailed below in conjunction with the accompanying drawings illustrate.

[0030] First, if figure 1 Shown, for the present invention establishes the method flowchart of file extension list, comprises:

[0031] S101: Sample files of known file types to be analyzed;

[0032] Collect file samples of various file types in advance, and view the content of the beginning of the file in the sample file;

[0033] S102: Extract file header features of various file types;

[0034] Extract the common part at the beginning of the file of the same file type. If the same binary string is found in multiple files of the same file type, and the length of the comm...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses an unknown virus detecting method. Based on the characteristics of file formatted storage and the characteristics of network file transmission, through capturing bi-directional network flows in the same connection, a system extracts file extension names in requests which are transmitted to a server by a client respectively and analyzes file header contents in data which are responded by the server to the client; and whether file types of the file extension names and the file header contents are matched with each other are contrasted, if the file types of the file extension names and the file header contents are matched with each other, it is considered as normality, otherwise, it is considered as abnormality, and alarms can be emitted. With the unknown virus detecting method adopted, approaches of virus transmission by using camouflage can be blocked under the situation that conventional anti-virus software is incapable of effectively dealing with unknown viruses.

Description

technical field [0001] The invention relates to a detection technology for unknown viruses in network data, which is suitable for non-unidirectional traffic networks and discovers specific types of unknown viruses in time under the condition of rapid virus changes. Background technique [0002] Most of the current computer application environment is inseparable from the network, and the majority of netizens spend a lot of time surfing the Internet. Because ordinary computer users do not have professional network security knowledge, they lack protection for themselves and cannot identify threats from the network. [0003] Virus writers and disseminators take advantage of this situation to deceive the computer's resource manager and browser by simply changing the file extension, making it mistakenly think that the virus after changing the file extension is another harmless file, thereby tricking users Download and execute; at the same time, through the rapid release of viruse...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06
Inventor 肖新光邱勇良方华
Owner BEIJING ANTIY NETWORK SAFETY TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap