Patents by Inventor Nikolay V. Denishchenko

Nikolay V. Denishchenko has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Patent number: 8572740
    Abstract: A system, method and computer program product for detection of the previously unknown malware, the method comprising: (a) receiving event information and file metadata from a remote computer; (b) identifying whether the event information or the file metadata are indicative of the already known malware presence, indicative of the unknown malware presence, or indicative of malware absence; (c) if the event information or the file metadata are indicative of the known malware or indicative of malware absence, filtering out the event information and the file metadata; (d) performing a risk analysis and risk assessment for the remaining event information and the remaining file metadata to determine if the event and the file metadata are indicative of the previously unknown malware presence; and (e) where performing a risk analysis and risk assessment includes a “parent-child” hierarchy of the files, and the risk assessed to the parent is based on the risk associated with the child.
    Type: Grant
    Filed: December 23, 2009
    Date of Patent: October 29, 2013
    Assignee: Kaspersky Lab, ZAO
    Inventors: Yury V. Mashevsky, Yury V. Namestnikov, Nikolay V. Denishchenko, Pavel A. Zelensky
  • Publication number: 20110083180
    Abstract: A system, method and computer program product for detection of the previously unknown malware, the method comprising: (a) receiving event information and file metadata from a remote computer; (b) identifying whether the event information or the file metadata are indicative of the already known malware presence, indicative of the unknown malware presence, or indicative of malware absence; (c) if the event information or the file metadata are indicative of the known malware or indicative of malware absence, filtering out the event information and the file metadata; (d) performing a risk analysis and risk assessment for the remaining event information and the remaining file metadata to determine if the event and the file metadata are indicative of the previously unknown malware presence; and (e) where performing a risk analysis and risk assessment includes a “parent-child” hierarchy of the files, and the risk assessed to the parent is based on the risk associated with the child.
    Type: Application
    Filed: December 23, 2009
    Publication date: April 7, 2011
    Applicant: KASPERSKY LAB, ZAO
    Inventors: YURY V. MASHEVSKY, YURY V. NAMESTNIKOV, NIKOLAY V. DENISHCHENKO, PAVEL A. ZELENSKY
  • Patent number: 7743419
    Abstract: A system, method and computer program product for detection of epidemics caused by malware programs or computer viruses. Detection of local and global epidemics is performed automatically. A source of an epidemic is calculated and analyzed based on collected statistics. A spread of the epidemic is predicted and an accurate prognosis referring to the time frame and to geographical areas of the epidemic spread is made. The prognosis is made based on a calculated value of “connection strength” coefficient. The connection strength coefficient reflects a volume of information exchange (i.e., a number and a quality of connection channels) between the countries. An epidemic is detected in its infancy and its spread is monitored in time and propagation across different countries. Then, effective security and protection measures can be invoked in a timely manner.
    Type: Grant
    Filed: December 6, 2009
    Date of Patent: June 22, 2010
    Assignee: Kaspersky Lab, ZAO
    Inventors: Yury V. Mashevsky, Yury V. Namestnikov, Nikolay V. Denishchenko, Pavel A. Zelensky
  • Patent number: 7640589
    Abstract: A system, method and computer program product for detection of false positives occurring during execution of anti-malware applications. The detection and correction of the false positives is implemented in two phases, before creation of new anti-virus databases (i.e., malware black lists) or before creation of new white lists, and after the anti-virus databases or new white lists are created and new false positives are detected. The system calculates a probability of detection of a certain potential malware object. Based on this probability, the system decides to either correct a white list (i.e., a collection of known clean objects) or update a black list (i.e., a collection of known malware objects). A process is separated into a several steps: creation and update (or correction) of white lists; creation and update of black lists; detection of collisions between these lists and correction of black lists or white lists based on the detected collisions.
    Type: Grant
    Filed: June 19, 2009
    Date of Patent: December 29, 2009
    Assignee: Kaspersky Lab, ZAO
    Inventors: Yuri V. Mashevsky, Yuri V. Namestnikov, Nikolay V. Denishchenko, Pavel A. Zelensky, Igor G. Chekunov, Andrey A. Efremov