| 流氓软件的检测与拦截技术的研究 |
| |
| 引用本文: | 信学峰,;汪栋,;韩永飞.流氓软件的检测与拦截技术的研究[J].电脑与信息技术,2014(4):39-42. |
| |
| 作者姓名: | 信学峰 ;汪栋 ;韩永飞 |
| |
| 作者单位: | [1]北京工业大学计算机学院,北京100124; [2]北京密安网络技术股份有限公司,北京100085 |
| |
| 摘 要: | 文章分析了流氓软件的检测和拦截技术,分析了流氓软件的入侵,对运行软件的行为进行跟踪,发现其对注册表的内容进行恶意修改的软件进行有效拦截和彻底清除。分析了流氓软件的相关拦截原理以及详细的拦截过程,以及涉及了对应用程序的SHA1值和注册表的监测的相关内容,详细介绍了内核和程序之间的交互过程。
|
| 关 键 词: | 流氓软件 注册表 监测 交互 |
Research Rogue Software Detection and Interception Technology |
| |
| Affiliation: | XIN Xue-feng, WANG Dong, HAN Yong-fei (1. College of Computer Sciences,Beijing University of Technology, Beijing 100124, China; 2. Onets Wireless &Intemet Security Tech.Co,Ltd,Beijing 100085, China) |
| |
| Abstract: | The paper analysis the detection and interception technology and the invasion of rogue software, following the behavior of the running software, found that the software to modify the registry to intercept or delete. To analyze the principle of the interception of rogue software and the detailed process of the interception and involves the application of SHA1 value and registry monitoring, the interaction between the kernel and application was introduced in detail. |
| |
| Keywords: | rogue software registry monitoring interaction |
| 本文献已被 CNKI 维普 等数据库收录! |
|
