logo

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 9767282 B1

PDFFull Text
Date of Patent:
Sep. 19, 2017

Filed:

Dec. 14, 2010

Offline scan, clean and telemetry using installed antimalware protection components

Applicants:

Sterling M. Reasor, Bellevue, WA (US);

Kumi N. Hilwa, Redmond, WA (US);

Eddy S. Hsia, Sammamish, WA (US);

Santanu Chakraborty, Redmond, WA (US);

Joseph Leo Faulhaber, Bozeman, MT (US);

Vishal Kapoor, Seattle, WA (US);

Michael Sean Jarrett, Kirkland, WA (US);

Charles Turner, Redmond, WA (US);

Jeremy D. Croy, Redmond, WA (US);

Inventors:

Sterling M. Reasor, Bellevue, WA (US);

Kumi N. Hilwa, Redmond, WA (US);

Eddy S. Hsia, Sammamish, WA (US);

Santanu Chakraborty, Redmond, WA (US);

Joseph Leo Faulhaber, Bozeman, MT (US);

Vishal Kapoor, Seattle, WA (US);

Michael Sean Jarrett, Kirkland, WA (US);

Charles Turner, Redmond, WA (US);

Jeremy D. Croy, Redmond, WA (US);

Assignee:

Microsoft Technology Licensing, LLC, Redmond, WA (US);

Attorney:
Primary Examiner:

Tae Kim

Assistant Examiner:

Shiuh-Huei Ku

Int. Cl.
CPC ...
G06F 21/56 (2013.01);
U.S. Cl.
CPC ...
G06F 21/564 (2013.01); G06F 21/565 (2013.01); G06F 21/568 (2013.01);
Abstract

The subject disclosure relates to antimalware scanning, and more particularly to offline antimalware scanning of a host environment via an alternate, known safe operating system. An offline scanning product obtains data previously written by the host environment online antimalware scanning tool, e.g., configuration data and antimalware signatures in shared data stores accessible to the offline and online products, and uses that data to perform the offline antimalware scan. The offline scanning product writes results information and any quarantined files to other shared data stores, whereby the online environment, when rebooted, has access to the information, such as for review and to upload telemetry information to an online service for analysis. Also described is offline replacement of operating system files that cannot be cleaned or removed when online.

Find Patent Forward Citations

Loading…