Patent · US Active

Systems and methods for detecting malware-induced crashes

US9665715B1 · kind B1 · utility

1Cited by

6References

20Claims

0Family size

Assignee

Symantec Corporation · US

Inventors

Kevin Roundy · El Segundo, US
Sandeep Bhatkar · Sunnyvale, US
Fanglu Guo · Los Angeles, US
Daniel Marino · Los Angeles, US

Key dates

Filing date	Dec 23, 2013
Grant date	May 30, 2017
Priority date	—
Expiry date	Mar 13, 2034

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/561
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A computer-implemented method for detecting malware-induced crashes may include (1) identifying, by analyzing a health log associated with a previously stable computing device, the occurrence of an unexpected stability problem on the previously stable computing device, (2) identifying, by analyzing an event log associated with the previously stable computing device, an event that is potentially responsible for the occurrence of the unexpected stability problem on the previously stable computing device, (3) determining, due at least in part to the event being potentially responsible for the occurrence of the unexpected stability problem on the previously stable computing device, that the event is potentially malicious, and (4) performing a security action in response to determining that the event is potentially malicious. Various other methods, systems, and computer-readable media are also disclosed.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.