{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,22]],"date-time":"2026-01-22T20:58:20Z","timestamp":1769115500264,"version":"3.49.0"},"reference-count":29,"publisher":"Springer Science and Business Media LLC","issue":"3","license":[{"start":{"date-parts":[[2006,11,8]],"date-time":"2006-11-08T00:00:00Z","timestamp":1162944000000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["J Comput Virol"],"published-print":{"date-parts":[[2006,11,17]]},"DOI":"10.1007\/s11416-006-0027-8","type":"journal-article","created":{"date-parts":[[2006,11,7]],"date-time":"2006-11-07T09:48:21Z","timestamp":1162892901000},"page":"231-239","source":"Crossref","is-referenced-by-count":100,"title":["N-gram analysis for computer virus detection"],"prefix":"10.1007","volume":"2","author":[{"given":"D Krishna Sandeep","family":"Reddy","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Arun K","family":"Pujari","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2006,11,8]]},"reference":[{"key":"27_CR1","doi-asserted-by":"crossref","unstructured":"Abou-Assaleh, T., Cercone, N., Keselj, V., Sweidan, R.: Detection of new malicious code using n-grams signatures. In: PST, pp. 193\u2013196 (2004)","DOI":"10.1109\/CMPSAC.2004.1342667"},{"key":"27_CR2","unstructured":"Arnold, W., Tesauro, G.: Automatically generated win32 heuristic virus detection. In: Proceedings of the 2000 International Virus Bulletin Conference (2000)"},{"key":"27_CR3","unstructured":"Cavnar, W.B., Trenkle, J.M.: N-gram-based text categorization. In: Proceedings of SDAIR-94, 3rd Annual Symposium on Document Analysis and Information Retrieval, pp. 161\u2013175. Las Vegas, US (1994)"},{"issue":"1","key":"27_CR4","doi-asserted-by":"crossref","first-page":"22","DOI":"10.1016\/0167-4048(87)90122-2","volume":"6","author":"F. Cohen","year":"1987","unstructured":"Cohen F. (1987) Computer viruses: theory and experiments. Comput. Secur. 6(1):22\u201335","journal-title":"Comput. Secur."},{"key":"27_CR5","unstructured":"Christodorescu, M., Jha, S.: Static analysis of executables to detect malicious patterns. In: Proceedings of the 12th USENIX Security Symposium (Security\u201903), pp. 169\u2013186. USENIX Association, USENIX Association (2003)"},{"key":"27_CR6","doi-asserted-by":"crossref","unstructured":"Duin, R.P.W., Tax, D.M.J.: Experiments with classifier combining rules. In: MCS \u201900: Proceedings of the First International Workshop on Multiple Classifier Systems, London, pp. 16\u201329. Springer, Berlin Heidelberg New York (2000)","DOI":"10.1007\/3-540-45014-9_2"},{"issue":"1\u20132","key":"27_CR7","doi-asserted-by":"crossref","first-page":"13","DOI":"10.1007\/s11416-005-0002-9","volume":"1","author":"Md.E. Karim","year":"2005","unstructured":"Karim Md.E., Walenstein A., Lakhotia A., Parida L. (2005) Malware phylogeny generation using permutations of code. J. Comput. Virol. 1(1\u20132):13\u201323","journal-title":"J. Comput. Virol."},{"key":"27_CR8","unstructured":"Gartner Inc: http:\/\/www.gartner.com\/press_releases\/asset_129199_11.html (2005)"},{"key":"27_CR9","unstructured":"Johannes, F.: A study using n-gram features for text categorization. Technical Report OEFAI-TR-9830, Austrian Institute for Artificial Intelligence (1998)"},{"key":"27_CR10","unstructured":"Kephart, J.O., Sorkin, G.B., Arnold, W.C., Chess, D.M., , G.J., White, S.R.: Biologically inspired defenses against computer viruses. In: Proceedings of the 14th IJCAI, pp. 985\u2013996, Montreal (1995)"},{"key":"27_CR11","doi-asserted-by":"crossref","unstructured":"Kolter, J.Z., Maloof, M.A.: Learning to detect malicious executables in the wild. In: KDD \u201904: Proceedings of the 10th ACM SIGKDD International Conference on Knowledge Discovery and Data Mining, pp. 470\u2013478. ACM Press, New York (2004)","DOI":"10.1145\/1014052.1014105"},{"issue":"2","key":"27_CR12","doi-asserted-by":"crossref","first-page":"149","DOI":"10.1016\/S1566-2535(02)00053-2","volume":"3","author":"E. Lefevre","year":"2002","unstructured":"Lefevre E., Colot O., Vannoorenberghe P. (2002) Belief function combination and conflict management. Inf. Fusion 3(2):149\u2013162","journal-title":"Inf. Fusion"},{"issue":"5","key":"27_CR13","doi-asserted-by":"crossref","first-page":"33","DOI":"10.1109\/52.877857","volume":"17","author":"G. McGraw","year":"2000","unstructured":"McGraw G., Morrisett G. (2000) Attacking malicious code: a report to the infosec research council. IEEE Soft. 17(5):33\u201341","journal-title":"IEEE Soft."},{"key":"27_CR14","volume-title":"Machine Learning","author":"T.M. Mitchell","year":"1997","unstructured":"Mitchell T.M. (1997) Machine Learning. McGraw-Hill, New York"},{"issue":"1","key":"27_CR15","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1016\/S0167-9236(99)00084-6","volume":"29","author":"C.K. Murphy","year":"2000","unstructured":"Murphy C.K. (2000) Combining belief functions when evidence conflicts. Decis. Support Syst. 29(1):1\u20139","journal-title":"Decis. Support Syst."},{"key":"27_CR16","unstructured":"Nachenberg, C.: Understanding and managing polymorphic viruses. Technical Report, The Symantec Exterprise Papers: Vol. XXX"},{"key":"27_CR17","doi-asserted-by":"crossref","DOI":"10.1515\/9780691214696","volume-title":"A Mathematical Theory of Evidence","author":"G. Shafer","year":"1976","unstructured":"Shafer G. (1976) A Mathematical Theory of Evidence. Princeton University Press, Princeton"},{"key":"27_CR18","unstructured":"Schultz, M.G., Eskin, E., Zadok, E., Bhattacharyya, M., Stolfo, S.J.: Mef: Malicious email filter \u2013 a unix mail filter that detects malicious windows executables. In: Proceedings of the FREENIX Track: 2001 USENIX Annual Technical Conference, pp. 245\u2013252. USENIX Association, Berkeley (2001)"},{"key":"27_CR19","doi-asserted-by":"crossref","unstructured":"Schultz, M.G., Eskin, E., Zadok, E., Stolfo, S.J.: Data mining methods for detection of new malicious executables. In: SP \u201901: Proceedings of the 2001 IEEE Symposium on Security and Privacy, p. 38. IEEE Computer Society, Washington (2001)","DOI":"10.1109\/SECPRI.2001.924286"},{"key":"27_CR20","unstructured":"Sentz, K.: Combination of evidence in Dempster\u2013Shafer theory. Ph.D. Thesis, SNL, LANL, and Systems Science and Industrial Engineering Department, Binghamton University"},{"issue":"1","key":"27_CR21","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1016\/0888-613X(93)90005-X","volume":"9","author":"P. Smets","year":"1993","unstructured":"Smets P. (1993) Belief functions: The disjunctive rule of combination and the generalized bayesian theorem. Int. J. Approx. Reason. 9(1):1\u201335","journal-title":"Int. J. Approx. Reason."},{"key":"27_CR22","volume-title":"The Art of Computer Virus Research and Defense","author":"P. Szor","year":"2005","unstructured":"Szor P. (2005) The Art of Computer Virus Research and Defense. Addison Wesley, Reading"},{"key":"27_CR23","doi-asserted-by":"crossref","first-page":"271","DOI":"10.1613\/jair.594","volume":"10","author":"K.M. Ting","year":"1999","unstructured":"Ting K.M., Witten I.H. (1999) Issues in stacked generalization. J. Artif. Intell. Res. 10, 271\u2013289","journal-title":"J. Artif. Intell. Res."},{"key":"27_CR24","unstructured":"Vx heavens: http:\/\/www.vx.netlux.org"},{"key":"27_CR25","volume-title":"Data mining: Practical machine learning tools and techniques with Java implementations","author":"I. Witten","year":"2000","unstructured":"Witten I., Frank E. (2000) Data mining: Practical machine learning tools and techniques with Java implementations. Morgan Kaufmann, San Francisco"},{"key":"27_CR26","unstructured":"Wolpert, D.H.: Stacked generalization. Technical Report LA-UR-90-3460, Los Alamos (1990)"},{"key":"27_CR27","unstructured":"Yang, Y., Pedersen, J.O.: A comparative study on feature selection in text categorization. In: Fisher, D.H. (ed.) Proceedings of ICML-97, 14th International Conference on Machine Learning, Nashville, pp. 412\u2013420. Morgan Kaufmann, San Francisco (1997)"},{"key":"27_CR28","doi-asserted-by":"crossref","unstructured":"Yoo, I., Ultes-Nitsche, U.: Non-signature based virus detection: Towards establishing unknown virus detection technique using som. J. Comput. Virol. 2(3) (2006)","DOI":"10.1007\/s11416-006-0013-1"},{"key":"27_CR29","unstructured":"Zhang, B., Srihari, S.N.: Class-wise multi-classifier combination based on dempster-shafer theory. In: Proceedings of the 7th International Conference on Control, Automation, Robotics and Vision (2002)"}],"container-title":["Journal in Computer Virology"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s11416-006-0027-8.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/article\/10.1007\/s11416-006-0027-8\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s11416-006-0027-8","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2021,8,4]],"date-time":"2021-08-04T12:34:29Z","timestamp":1628080469000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/s11416-006-0027-8"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2006,11,8]]},"references-count":29,"journal-issue":{"issue":"3","published-print":{"date-parts":[[2006,11,17]]}},"alternative-id":["27"],"URL":"https:\/\/doi.org\/10.1007\/s11416-006-0027-8","relation":{},"ISSN":["1772-9890","1772-9904"],"issn-type":[{"value":"1772-9890","type":"print"},{"value":"1772-9904","type":"electronic"}],"subject":[],"published":{"date-parts":[[2006,11,8]]}}}