Information security – Monitoring or scanning of software or data including attack... – Intrusion detection
Reexamination Certificate
2011-08-09
2011-08-09
Dinh, Minh (Department: 2432)
Information security
Monitoring or scanning of software or data including attack...
Intrusion detection
C726S022000
Reexamination Certificate
active
07996898
ABSTRACT:
A system and method for reducing false positive indications of pestware on a protected computer is disclosed. In one variation, the method includes tracking activities of a user at the protected computer, monitoring events at the protected computer, identifying events that are potentially indicative of pestware, comparing at least one of the events with at least one of the activities of the user and initiating, in response to the comparing indicating the activities of the user are unconnected with the events, a user prompt that informs the user about the events to enable the user to make a decision relative to managing the events.
REFERENCES:
patent: 5485575 (1996-01-01), Chess
patent: 5621889 (1997-04-01), Lermuzeaux et al.
patent: 5623600 (1997-04-01), Ji et al.
patent: 5696822 (1997-12-01), Nachenberg
patent: 5826013 (1998-10-01), Nachenberg
patent: 5974549 (1999-10-01), Golan
patent: 6069628 (2000-05-01), Farry et al.
patent: 6073241 (2000-06-01), Rosenberg et al.
patent: 6092194 (2000-07-01), Touboul
patent: 6154844 (2000-11-01), Touboul
patent: 6167520 (2000-12-01), Touboul
patent: 6192512 (2001-02-01), Chess
patent: 6253258 (2001-06-01), Cohen
patent: 6310630 (2001-10-01), Kulkarni et al.
patent: 6357008 (2002-03-01), Nachenberg
patent: 6397264 (2002-05-01), Stasnick et al.
patent: 6460060 (2002-10-01), Maddalozzo, Jr. et al.
patent: 6480962 (2002-11-01), Touboul
patent: 6535931 (2003-03-01), Celi, Jr.
patent: 6611878 (2003-08-01), De Armas et al.
patent: 6633835 (2003-10-01), Moran et al.
patent: 6667751 (2003-12-01), Wynn et al.
patent: 6701441 (2004-03-01), Balasubramaniam et al.
patent: 6735703 (2004-05-01), Kilpatrick
patent: 6775780 (2004-08-01), Muttik
patent: 6785732 (2004-08-01), Bates et al.
patent: 6804780 (2004-10-01), Touboul
patent: 6813711 (2004-11-01), Dimenstein
patent: 6829654 (2004-12-01), Jungek
patent: 6851057 (2005-02-01), Nachenberg
patent: 6965968 (2005-11-01), Touboul
patent: 6973577 (2005-12-01), Kouznetsov
patent: 7058822 (2006-06-01), Edery et al.
patent: 7210168 (2007-04-01), Hursey
patent: 2003/0084323 (2003-05-01), Gales
patent: 2003/0159070 (2003-08-01), Mayer
patent: 2003/0212906 (2003-11-01), Arnold
patent: 2003/0217287 (2003-11-01), Kruglenko
patent: 2004/0015726 (2004-01-01), Szor
patent: 2004/0024864 (2004-02-01), Porras
patent: 2004/0030914 (2004-02-01), Kelley et al.
patent: 2004/0034794 (2004-02-01), Mayer et al.
patent: 2004/0064736 (2004-04-01), Obrecht et al.
patent: 2004/0080529 (2004-04-01), Wojcik
patent: 2004/0143763 (2004-07-01), Radatti
patent: 2004/0187023 (2004-09-01), Alagna et al.
patent: 2004/0225877 (2004-11-01), Huang
patent: 2004/0230530 (2004-11-01), Searl et al.
patent: 2005/0138433 (2005-06-01), Linetsky
patent: 2005/0172115 (2005-08-01), Bordorin
patent: 2005/0188272 (2005-08-01), Bordorin
patent: 2005/0188423 (2005-08-01), Motsinger et al.
patent: 2007/0006311 (2007-01-01), Barton et al.
patent: PCT/US2007/067078 (2007-11-01), None
Yi-Min Wang et al.; “Detecting Stealth Software with Strider Ghostbuster,” Dependable Systems and Networks, 2005, DSN 2005, Proceedings, International Conference on Yokohama, Japan 28-0 Jun. 2005, Piscatay, NJ, USA, IEE, Jun. 28, 2005; pp. 368-377; XP010817813; ISBN: 0-7695-2282-3.
U.S. Appl. No. 10/956,573, filed Oct. 1, 2004, Steve Thomas.
U.S. Appl. No. 10/956,574, filed Oct. 1, 2004, Steve Thomas.
Codeguru, Three Ways to Inject Your Code Into Another Process, by Robert Kuster, Aug. 4, 2003, 22 pgs.
Codeguru, Managing Low-Level Keyboard Hooks With the Windows API for VB .Net, by Paul Kimmel, Apr. 18, 2004, 10 pgs.
Codeguru, Hooking the Keyboard, by Anoop Thomas, Dec. 13, 2001, 6 pgs.
Illusive Security, Wolves in Sheep's Clothing: malicious DLLs Injected Into trusted Host Applications, Author Unknown, http://home.arcor.de/scheinsicherheit/dll.htm 13 pgs.
DevX.com, Intercepting Systems API Calls, by Seung-Woo Kim, May 13, 2004, 6 pgs.
Microsoft.com, How to Subclass a Window in Windows 95, Article ID 125680, Jul. 11, 2005, 2 pgs.
MSDN, Win32 Hooks by Kyle Marsh, Jul. 29, 1993, 15 pgs.
PCT Search Report, PCT/US05/34874, Jul. 5, 2006, 7 Pages.
Greene Michael P.
Mood Sarah L.
Stowers Bradley D.
Cooley LLP
Dinh Minh
Perungavoor Venkat
Webroot Software, Inc.
LandOfFree
System and method for monitoring events on a computer to... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with System and method for monitoring events on a computer to..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and System and method for monitoring events on a computer to... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2735011