Protecting User Mode Processes From Improper Tampering or Termination
In one embodiment, a malware protection system may protect a computing system from a malware event. A data storage device 150 may store a watchdog filter driver 240 integrated with an operating system kernel 210. A processor 120 may intercept a process access to an application process 220 with the w...
Saved in:
Main Authors | , , , |
---|---|
Format | Patent |
Language | English |
Published |
25.08.2011
|
Subjects | |
Online Access | Get full text |
Cover
Loading…
Summary: | In one embodiment, a malware protection system may protect a computing system from a malware event. A data storage device 150 may store a watchdog filter driver 240 integrated with an operating system kernel 210. A processor 120 may intercept a process access to an application process 220 with the watchdog filter driver 240 to detect a malware event. The processor 120 may use the watchdog filter driver 240 to determine an originating process for the malware event. |
---|---|
Bibliography: | Application Number: US20100713151 |