基于用戶診斷方式的反惡意軟件系統(tǒng)的研究與實現(xiàn)
發(fā)布時間:2018-07-23 08:29
【摘要】: 隨著互聯(lián)網(wǎng)給人們提供的服務越來越豐富,惡意軟件在網(wǎng)上橫行的趨勢也愈演愈烈。目前大多數(shù)惡意軟件并不像計算機病毒那樣具有明顯的病毒特征,其主要目的也不在于對計算機系統(tǒng)進行攻擊、破壞,而是出于商業(yè)利益的考慮,如:廣告、搜集用戶信息等。也因此會給用戶在使用計算機時帶來麻煩和信息泄露的風險。只有深入了解惡意軟件的入侵、駐留機制,才能將惡意軟件從計算機系統(tǒng)中清除出去,給用戶一個干凈、安全的使用環(huán)境。 對于目前常見的惡意軟件分類方法存在的不足,以及法律上對惡意軟件沒有約束管理的缺陷。本文還對現(xiàn)有分類方法進行補充,按軟件的垃圾程度進行分類的方法。通過用戶在使用軟件時的切身體會來確定其垃圾程度。 本文對目前主流惡意軟件進行搜集采樣,深入分析惡意技術(shù),找出其感染原理和方式。通過在虛擬機中分析實驗,總結(jié)出各類惡意軟件的具體駐留手段,并提出了相應的清理方案。 惡意軟件的入侵途徑令人防不勝防,讓一些計算機知識欠缺的用戶難以防范惡意軟件對系統(tǒng)的侵襲。由于惡意軟件帶來的巨大商業(yè)意義,其制造者與日俱增,大到公司,小到個人,這使得惡意軟件的傳播日益廣泛,用戶計算機被安裝上惡意軟件的可能性越來越大,系統(tǒng)中出現(xiàn)的各類異常現(xiàn)象也越來越多。通過對惡意軟件入侵途徑的總結(jié)分析,本文提出了對于目前計算機系統(tǒng)怎樣提高安全性,預防惡意軟件的方案。 大部分惡意軟件入駐計算機系統(tǒng)后,會強行修改系統(tǒng)的相關(guān)設置為其功能的實現(xiàn)提供服務。本文對常見的系統(tǒng)設置被修改的情況進行搜集總結(jié),提出了相應的系統(tǒng)設置修復、還原的方案。 針對目前流行的反惡意軟件在使用過程中,對部分初級用戶的支持存在的不足,本文設計了基于用戶診斷方式,從用戶角度出發(fā)的清理方式,即讓初級用戶可以通過向?qū)J竭M行操作;讓高級用戶可以通過自定義模式進行操作。對在WINDOWS環(huán)境下不能被清理的惡意軟件,筆者還設計了在DOS下進行清理的方案。這三種模式并存,讓用戶可以根據(jù)實際情況選擇用哪種模式進行。 最后,筆者對本方案中的各個功能進行了實驗測試,驗證其準確性和有效性,總結(jié)了其不足之處,并對下一步工作進行了展望。
[Abstract]:As the Internet provides more and more services to people, the trend of malware on the Internet is becoming more and more intense. At present, most malware does not have the obvious virus characteristic like computer virus, and its main purpose is not to attack and destroy the computer system, but because of the consideration of commercial interest, such as advertisement, collecting user information and so on. As a result, users are at risk of trouble and information disclosure when using their computers. Only when we deeply understand the intrusion and resident mechanism of malware can we remove malware from computer system and give users a clean and safe environment. The shortcomings of the common malware classification methods and the limitation of no restriction management of malware in law. This paper also supplements the existing classification methods, according to the software garbage classification method. Through the user's personal experience in the use of software to determine the level of garbage. In this paper, we collect and sample the mainstream malware, deeply analyze the malware technology, and find out its infection principle and mode. By analyzing the experiments in the virtual machine, the concrete resident methods of all kinds of malware are summarized, and the corresponding cleaning scheme is put forward. The intrusion path of malware is difficult to prevent, which makes it difficult for some users who lack computer knowledge to prevent malware from invading the system. Because of the enormous commercial significance of malware, its makers are growing, from companies to individuals, making malware more widespread and more likely to be installed on user computers. There are more and more abnormal phenomena in the system. Through summing up and analyzing the ways of malware intrusion, this paper puts forward a scheme of how to improve the security of computer system and prevent malware. After most malware enters the computer system, it will change the relevant settings of the system by force to provide the service for the realization of its function. In this paper, the common system settings were revised to collect and summarize the situation, and put forward the corresponding system settings repair, restore scheme. In view of the deficiency of some primary users in the process of using the popular anti-malware, this paper designs a cleaning method based on the user diagnosis and from the user's point of view. That is, primary users can operate in wizard mode; advanced users can operate in custom mode. For the malware which can not be cleaned under windows environment, the author also designs a scheme of cleaning under DOS. These three modes coexist, allowing users to choose which mode to use according to the actual situation. Finally, the author has carried on the experiment test to each function of this project, verified its accuracy and validity, summarized its deficiency, and carried on the prospect to the next work.
【學位授予單位】:四川師范大學
【學位級別】:碩士
【學位授予年份】:2008
【分類號】:TP311.52
[Abstract]:As the Internet provides more and more services to people, the trend of malware on the Internet is becoming more and more intense. At present, most malware does not have the obvious virus characteristic like computer virus, and its main purpose is not to attack and destroy the computer system, but because of the consideration of commercial interest, such as advertisement, collecting user information and so on. As a result, users are at risk of trouble and information disclosure when using their computers. Only when we deeply understand the intrusion and resident mechanism of malware can we remove malware from computer system and give users a clean and safe environment. The shortcomings of the common malware classification methods and the limitation of no restriction management of malware in law. This paper also supplements the existing classification methods, according to the software garbage classification method. Through the user's personal experience in the use of software to determine the level of garbage. In this paper, we collect and sample the mainstream malware, deeply analyze the malware technology, and find out its infection principle and mode. By analyzing the experiments in the virtual machine, the concrete resident methods of all kinds of malware are summarized, and the corresponding cleaning scheme is put forward. The intrusion path of malware is difficult to prevent, which makes it difficult for some users who lack computer knowledge to prevent malware from invading the system. Because of the enormous commercial significance of malware, its makers are growing, from companies to individuals, making malware more widespread and more likely to be installed on user computers. There are more and more abnormal phenomena in the system. Through summing up and analyzing the ways of malware intrusion, this paper puts forward a scheme of how to improve the security of computer system and prevent malware. After most malware enters the computer system, it will change the relevant settings of the system by force to provide the service for the realization of its function. In this paper, the common system settings were revised to collect and summarize the situation, and put forward the corresponding system settings repair, restore scheme. In view of the deficiency of some primary users in the process of using the popular anti-malware, this paper designs a cleaning method based on the user diagnosis and from the user's point of view. That is, primary users can operate in wizard mode; advanced users can operate in custom mode. For the malware which can not be cleaned under windows environment, the author also designs a scheme of cleaning under DOS. These three modes coexist, allowing users to choose which mode to use according to the actual situation. Finally, the author has carried on the experiment test to each function of this project, verified its accuracy and validity, summarized its deficiency, and carried on the prospect to the next work.
【學位授予單位】:四川師范大學
【學位級別】:碩士
【學位授予年份】:2008
【分類號】:TP311.52
【引證文獻】
中國期刊全文數(shù)據(jù)庫 前1條
1 郭驊麟;;淺析病毒入侵微機的途徑與防治[J];硅谷;2010年04期
中國碩士學位論文全文數(shù)據(jù)庫 前2條
1 李鵬飛;基于干凈數(shù)據(jù)的惡意軟件檢測技術(shù)研究[D];西南交通大學;2011年
2 付,
本文編號:2138805
本文鏈接:http://sikaile.net/wenyilunwen/guanggaoshejilunwen/2138805.html
最近更新
教材專著
