Protecting User Mode Processes From Improper Tampering or Termination

In one embodiment, a malware protection system may protect a computing system from a malware event. A data storage device 150 may store a watchdog filter driver 240 integrated with an operating system kernel 210. A processor 120 may intercept a process access to an application process 220 with the w...

Full description

Saved in:
Bibliographic Details
Main Authors THOMAS ANIL FRANCIS, MAROK KANWALJIT, AXELROD ARNON, ZEITLIN ELI
Format Patent
LanguageEnglish
Published 25.08.2011
Subjects
CALCULATING
COMPUTING
COUNTING
ELECTRIC DIGITAL DATA PROCESSING
PHYSICS
Online AccessGet full text

Cover

More Information
Summary:In one embodiment, a malware protection system may protect a computing system from a malware event. A data storage device 150 may store a watchdog filter driver 240 integrated with an operating system kernel 210. A processor 120 may intercept a process access to an application process 220 with the watchdog filter driver 240 to detect a malware event. The processor 120 may use the watchdog filter driver 240 to determine an originating process for the malware event.
Bibliography:Application Number: US20100713151