FIELD: information technology.
SUBSTANCE: use of the invention in practice enables to collect data from a data medium, which are associated with a boot program, analyse the collected data, detect and determine unknown types of malicious and safe programs, treat active malicious programs and prevent infection of computer systems.
EFFECT: detection of unknown programs which alter the loading process, which is achieved by emulating the loading process of a computer system and analysing data processed in the emulated load process.
19 cl, 10 dwg
| Title | Year | Author | Number |
|---|---|---|---|
| SYSTEM AND METHOD OF CREATING ANTIVIRUS RECORD | 2018 |
|
RU2697954C2 |
| SYSTEM AND METHOD OF STORAGE OF EMULATOR STATE AND ITS FURTHER RECOVERY | 2013 |
|
RU2553056C2 |
| METHOD OF EMULATING SYSTEM FUNCTION CALLS FOR EVADING EMULATION COUNTERMEASURES | 2012 |
|
RU2514141C1 |
| EMULATOR AND METHOD FOR EMULATION | 2020 |
|
RU2757409C1 |
| SYSTEM AND METHOD OF CREATING SOFTWARE DETECTION RECORDS | 2012 |
|
RU2491615C1 |
| METHOD FOR ENHANCEMENT OF OPERATIONAL EFFICIENCY OF HARDWARE ACCELERATION OF APPLICATION EMULATION | 2012 |
|
RU2514142C1 |
| METHOD OF ACCESSING PROCEDURES OF LOADING DRIVER | 2014 |
|
RU2586576C1 |
| SYSTEM AND METHOD FOR OPTIMISING EXECUTION OF ANTIVIRUS TASKS IN LOCAL AREA NETWORK | 2010 |
|
RU2453917C1 |
| METHOD OF MAINTAINING DATABASE AND CORRESPONDING SERVER | 2015 |
|
RU2698776C2 |
| SYSTEM AND METHOD FOR IDENTIFYING MALICIOUS FILES | 2017 |
|
RU2673407C1 |
