Show metadata Hide metadata

(19)

(11)

2 665 909

(13)

(51)

IPC

G06F21/56(2013-01-01)

(21) (22)

Application

2017128541, 2017-08-10

(24)

Start date

2017-08-10

(22)

Actual filing date

2017-08-10

(45)

Published

2018-09-04

(72)

Inventor

Pavlyushchik Mikhail AleksandrovichSlobodyanyuk Yurij GennadevichMonastyrskij Aleksej VladimirovichMartynenko Vladislav Valerevich

(73)

Holder

Aktsionernoe Obshchestvo Kasperskogo"

METHOD OF SELECTIVE USE OF PATTERNS OF DANGEROUS PROGRAM BEHAVIOR Russian patent published in 2018 - IPC G06F21/56

Abstract RU 2665909 C1

FIELD: information technology.

SUBSTANCE: invention relates to use of patterns of dangerous program behavior with a high level of false detections. Method of selective use of the pattern of dangerous programs behavior on computer systems, through which a pattern of dangerous behavior of programs is launched in a first mode on various computer systems, at which an antivirus application detects threats corresponding to the pattern, but does not perform actions for their elimination, statistics of threat detection are accumulated within a specified period of time, for each computer system, for which the number of false threats detected does not exceed a specified threshold value, introduction into the pattern of dangerous program behavior of all falsely detected threats is implemented, corresponding to a particular computer system as exceptions and the pattern of dangerous program behavior is switched into a second mode, which detects threats corresponding to the pattern, and performs actions to eliminate them.

EFFECT: reducing the number of false threat detections when using a pattern of dangerous program behavior.

6 cl, 3 dwg

Similar patents RU2665909C1

Title	Year	Author	Number
SYSTEM AND METHOD OF ADAPTING PATTERNS OF DANGEROUS PROGRAM BEHAVIOR TO USERS' COMPUTER SYSTEMS	2017	Pavlyushchik Mikhail Aleksandrovich Slobodyanyuk Yurij Gennadevich Monastyrskij Aleksej Vladimirovich Martynenko Vladislav Valerevich	RU2652448C1
METHOD FOR EXCLUDING PROCESSES OF ANTIVIRUS SCANNING ON THE BASIS OF DATA ON FILE	2015	Levchenko Vyacheslav Ivanovich Yudin Maksim Vitalevich	RU2595510C1
SYSTEM AND METHOD OF REDUCING LOAD ON OPERATING SYSTEM WHEN EXECUTING ANTIVIRUS APPLICATION	2013	Sobko Andrej Vladimirovich Judin Maksim Vital'Evich Mezhuev Pavel Nikolaevich Godunov Il'Ja Borisovich Shirokij Maksim Aleksandrovich	RU2571723C2
SYSTEM AND METHOD FOR IMPROVING QUALITY OF DETECTING MALICIOUS OBJECTS USING RULES AND PRIORITIES	2012	Zajtsev Oleg Vladimirovich	RU2514140C1
METHOD OF DETECTING MALICIOUS FILES THAT COUNTERACT ANALYSIS IN ISOLATED ENVIRONMENT	2018	Karasovskij Dmitrij Valerievich Shulmin Aleksej Sergeevich Kobychev Denis Yurevich	RU2708355C1
SYSTEM AND METHOD OF PROTECTING COMPUTING DEVICE FROM MALICIOUS OBJECTS USING COMPLEX INFECTION SCHEMES	2011	Poljakov Aleksej Aleksandrovich Martynenko Vladislav Valer'Evich Slobodjanjuk Jurij Gennad'Evich Nazarov Denis Aleksandrovich Pavljushchik Mikhail Aleksandrovich	RU2454705C1
SYSTEM AND METHOD FOR ANALYSING FILE LAUNCH EVENTS FOR DETERMINING SAFETY RANKING THEREOF	2012	Pavljushchik Mikhail Aleksandrovich Monastyrskij Aleksej Vladimirovich	RU2531565C2
SYSTEM AND METHOD OF PROTECTING CLOUD INFRASTRUCTURE FROM ILLEGAL USE	2012	Kononov Ehl'Dar Mikhajlovich Lapushkin Anton Sergeevich Efremov Andrej Anatol'Evich	RU2536663C2
METHOD FOR AUTOMATIC ADJUSTMENT OF SECURITY MEANS	2012	Zajtsev Oleg Vladimirovich	RU2514137C1
METHOD OF CREATING SCRIPT OF POPULAR ACTIVATION EVENTS	2015	Eliseev Evgenij Yurevich Yablokov Viktor Vladimirovich	RU2679783C2

RU 2 665 909 C1

Authors

Pavlyushchik Mikhail Aleksandrovich

Slobodyanyuk Yurij Gennadevich

Monastyrskij Aleksej Vladimirovich

Martynenko Vladislav Valerevich

Dates

2018-09-04—Published

2017-08-10—Filed