检测未知或威胁性进程 [英] Detecting unknown or threatful processes

问题描述

我想写一个流程管理器，但是我需要检测未知的(威胁)流程停止，如果有任何方法可以做到，或者没有可能，任何人都可以指导我.

Hi,
I want to write a process manager but I need to detect the unknown(threat) process to stop , can any one guide me if there is any way to do that or it''s not possible.
thanks.

推荐答案

如果没有编写一些非常聪明的软件并拥有所有病毒，特洛伊木马等程序的数据库，以便您可以识别它们，则几乎不可能做到这一点.由他们签名.诸如McAfee，Norton，AVG等公司已经花费了数千美元，并且可能花费了相似的工时来创建他们的软件.

It is virtually impossible to do this without writing some very clever software and having a database of all virus, trojan horse etc programs so that you can identify them by their signature. Companies such as McAfee, Norton, AVG etc have spent thousands of dollars and probably a similar number of man hours to create their software.

这篇关于检测未知或威胁性进程的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！