×

Malware management through kernel detection during a boot sequence

  • US 9,754,102 B2
  • Filed: 10/06/2014
  • Issued: 09/05/2017
  • Est. Priority Date: 08/07/2006
  • Status: Active Grant
First Claim
Patent Images

1. A device-comprising:

  • at least one processor; and

    a memory encoding computer executable instructions that, when executed by the at least one processor, perform a method comprising;

    monitoring events during a boot sequence of the computer;

    managing pestware-related events during a first period in a boot sequence of the computer, the first period in the boot sequence occurring before the computer becomes configured to run native applications, before a subsystem of an operating system is loaded, and after a kernel is loaded;

    managing pestware-related events in accordance with a set of behavior rules during a second period in the boot sequence occurring when the computer is configured to run native applications;

    generating, in response to the monitoring, a record of events, the record of events including the pestware-related events;

    analyzing the record of events so as to identify the pestware-related events;

    modifying the set of behavior rules so as to prevent the pestware related events;

    andscanning a registry of the computer for pestware during the second period in the boot sequence.

View all claims
  • 9 Assignments
Timeline View
Assignment View
    ×
    ×