系统: windows 7旗舰版 安装了虚拟机 Oracle VM VirtualBox(版本号:::3.2.8.64453),在虚拟机中安装了 windows xp --xp3
浏览器:世界之窗极速版 ; ie8, 虚拟机中是 ie6!!!
操作:在虚拟机中运行压缩包中的 文件测试,
结果: 文件和注册表测试结果未知---不知是否成功;符号链接也不知结果;环境设定造成瑞星hips 被破坏掉了
瑞星全功能:23.00.19.53
请改进瑞星自保
瑞星hips 被废掉了!!!
一、破坏瑞星的文件和注册表
请修改ssts.conf ,此文件附件中有
紅色部份,寫下你的 安軟文件夾 和 安軟驅動位置,也就是你想破壞的地方。
#
# The list of files and directories, usually those that belong to the tested product.
# The first line determines the number of the files and directories in the list.
# Then the list of files and directories follows.
# This list must be modified before testing.
#
files=3
C:\Program Files\Real-time Defender
C:\windows\system32\drivers\diskpt.sys
C:\Program Files\Real-time Defender\RTDefender.sys
#
# The list of registry entries, usually those that belong to the tested product.
# The first line determines the number of the registry entries in the list.
# Then the list of registry entries follows.
# Registry values, unlike registry keys, are written in format "KEY_NAME\\VALUE_NAME".
# These registry roots are valid: HKCR, HKCU, HKLM.
# This list must be modified before testing.
#
registry=4
HKLM\SOFTWARE\RTDefender
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\RTD_Alarm
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\RTD_RuleEditor
HKLM\SYSTEM\CurrentControlSet\Services\RTDSessionService
#
# The list of important services and drivers, usually those that belong to the tested product.
# The first line determines the number of the services and drivers in the list.
# Then the names of the services and drivers follows.
# This list must be modified before testing.
#
services=2
RTDefender
RTDSessionService
二、符号链接