Electrical computers and digital processing systems: multicomput – Computer conferencing – Demand based messaging
Reexamination Certificate
2011-03-01
2011-03-01
Najjar, Saleh (Department: 2455)
Electrical computers and digital processing systems: multicomput
Computer conferencing
Demand based messaging
C709S224000
Reexamination Certificate
active
07899870
ABSTRACT:
Sources of spam, such as botnets, are detected by analyzing message traffic for behavioral patterns and indications of suspicious content. The content of a known malicious source is analyzed. Message traffic associated with the known malicious source is analyzed. Associated message traffic includes messages sent directly from the known malicious source to recipients, and messages sent from the recipients to subsequent direct and indirect recipients. Portions of the content of the known malicious source are selected and content of associated message traffic is analyzed for an indication of the selected content. If the selected content is found in the content of a message, the source of the message is determined to be a source of spam. Associated message traffic is additionally analyzed for behavioral patterns, such as anomalies and/or flurries of activity, to determine a potential malicious source.
REFERENCES:
patent: 6052709 (2000-04-01), Paul
patent: 6941348 (2005-09-01), Petry et al.
patent: 7007302 (2006-02-01), Jagger et al.
patent: 7016939 (2006-03-01), Rothwell et al.
patent: 7117358 (2006-10-01), Bandini et al.
patent: 7272853 (2007-09-01), Goodman et al.
patent: 7346700 (2008-03-01), Gould et al.
patent: 7490131 (2009-02-01), Maller
patent: 7539871 (2009-05-01), Osborn
patent: 7668920 (2010-02-01), Lin et al.
patent: 2003/0154394 (2003-08-01), Levin
patent: 2004/0083270 (2004-04-01), Heckerman et al.
patent: 2005/0021649 (2005-01-01), Goodman et al.
patent: 2005/0193073 (2005-09-01), Mehr et al.
patent: 2005/0204012 (2005-09-01), Campbell
patent: 2005/0204159 (2005-09-01), Davis et al.
patent: 2005/0262209 (2005-11-01), Yu
patent: 2005/0278620 (2005-12-01), Baldwin et al.
patent: 2006/0015561 (2006-01-01), Murphy et al.
patent: 2006/0015563 (2006-01-01), Judge et al.
patent: 2006/0026242 (2006-02-01), Kuhlmann et al.
patent: 2006/0031483 (2006-02-01), Lund et al.
patent: 2006/0036693 (2006-02-01), Hulten et al.
patent: 2006/0195542 (2006-08-01), Nandhra
patent: 2006/0242245 (2006-10-01), Christensen
patent: 2006/0277264 (2006-12-01), Rainisto
patent: 2007/0006308 (2007-01-01), Desouza et al.
patent: 2007/0041372 (2007-02-01), Rao et al.
patent: 2007/0061404 (2007-03-01), Maller
patent: 2007/0083929 (2007-04-01), Sprosts et al.
patent: 2007/0124384 (2007-05-01), Howell et al.
patent: 2007/0220607 (2007-09-01), Sprosts et al.
patent: 2007/0250919 (2007-10-01), Shull et al.
patent: 2007/0282952 (2007-12-01), Lund et al.
patent: 2007/0299915 (2007-12-01), Shraim et al.
patent: 2008/0082658 (2008-04-01), Hsu et al.
patent: 2008/0086532 (2008-04-01), Cunningham
patent: WO 01/53965 (2001-07-01), None
Clayton, R., “Anonymity and Traceability in Cyberspace” Aug. 2005, University of Cambridge, Darwin College, http://www.cl.cam.ac.uk/˜rncl/thesis.pdf, 189 pages.
Florencio, D. et al., “Analysis and Improvement of Anti-Phishing Schemes”, http://research.microsoft.com/users/cormac/papers/mainsec2006.pdf, 11 pages.
Hirt, A. et al., “Anonymous and Malicious”,Virus Bulletin Conference, Oct. 2005, http://pages.cpsc.ucalagary.ca, 2-8.
Costea Mihai
Pearson Malcolm Erik
Ashraf Waseem
Microsoft Corporation
Najjar Saleh
Woodcock & Washburn LLP
LandOfFree
Determination of participation in a malicious software campaign does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Determination of participation in a malicious software campaign, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Determination of participation in a malicious software campaign will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2625254