Design And Implementation Of Malicious Objects Finding System Based On Search Engine

Kaspersky company malicious objects finding system for the existing system is the collection and analysis of a sample of an investigational treatment systems attempt to meet its future direction of development of the basic trends in the antivirus industry. Which involves multiple disciplines and industry line technology, is a typical use of multidisciplinary knowledge implemented system. Such as search engine technology, parallel processing architecture of distributed systems, machine learning and virtual machine systems.Full-text search engine by means of the spread of malware propagation methods and analysis of the characteristics. Targeted to devise accurate and effective monitoring and automatic killing system, on the whole system using a typical C/S structure. Because it involves a large number of existing functionality platform, the system uses the cross-platform compatibility and software technology to drive complex heterogeneous systems, so we use a variety of platform-independent the development of the main business logic by Scripting Language, such as Perl, PHP and so on. Virus samples collected in stages, based on virtual machine implements a distributed system testing environment. Create and introduce the concept of flow malicious objects, on the basis of the design of the system to potentially malicious objects intelligent judgment and automated processes. Which focuses on how based on search engine finds malicious objects and malicious object classification, based on malicious objects feature library, using support vector machine model to design a malicious program detection algorithm, and experimental empirical methods for data comparison, analysis of the feasibility and practicability of the theory of algorithms. Finally, software testing for various functions for evaluation.The system is currently in stable operation in the laboratory, from statistical data received good results. It has already begun to contribute the company business systems a lot of valuable samples of malicious programs.