Methods and apparatus for identifying and removing malicious applications
US9659175B2 · kind B2 · utility
Assignee
Inventor
Key dates
| Filing date | May 9, 2013 |
| Grant date | May 23, 2017 |
| Priority date | — |
| Expiry date | May 9, 2033 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F2221/2105
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
A system, method, and apparatus for identifying and removing malicious applications are disclosed. An example apparatus includes an analysis server configured to receive from an executable application operating on a client device a data structure including information identifying processes operating on the client device during a time period and analyze the data structure to identify a malicious application by determining which of the processes on the client device were triggered after an application server was accessed by the executable application and identifying processes associated with the malicious application by comparing the determined processes to records of processes of a device similarly configured as the client device. The apparatus also includes a remover configured to determine files on the client device that are associated with the identified malicious application and transmit instructions to the executable application causing the executable application to remove the malicious application from operation on the client device.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.