首页>
外国专利>
ACTIVITY MONITORING SYSTEM OF MALICIOUS CODE TO CREATE A CHILD PROCESS AND ACTIVITY MONITORING METHOD THEREOF
ACTIVITY MONITORING SYSTEM OF MALICIOUS CODE TO CREATE A CHILD PROCESS AND ACTIVITY MONITORING METHOD THEREOF
展开▼
机译:创建儿童过程的恶意代码活动监视系统及其活动监视方法
展开▼
页面导航
摘要
著录项
相似文献
摘要
PURPOSE: A malicious code action monitoring system and a method thereof are provided to generate a child process capable of extracting a malicious code by using action information including a child process which the malicious code additionally executes. CONSTITUTION: An action information storing module(200) stores action information which is monitored in a kernel filter driver on a first table. A malicious code action extracting module(300) extracts the action which is matched with a process of the malicious code. A child process information extracting module(400) extracts process information of the child process.
展开▼