【会员分享】8圈去广告策略

本帖最后由工作狂人于 2018-2-19 21:33 编辑

//8圈随即驱动
FileCheck[Self(Path=".*\\client\\.*.sys")][Process(Path=".*\\yebarclient.exe")][AccessMode(Create)]=Deny
FileCheck[Self(Path=".*\\client\\.*.sys")][Process(Path=".*\\yebarclient.exe")][AccessMode(Write)]=Deny

Module[Host(null)][Self(hash="8cd1a69978e172fed0214fc0273486d9")]=Deny
Module[Host(null)][Self(hash="b2bb99f6179eb93bb8b20234921d5337")]=Deny
Module[Host(null)][Self(hash="714a56440d7ca5d01e0355b12a171d28")]=Deny
Module[Host(null)][Self(hash="e1fa3994465fd95960e34cda4f382691")]=Deny
Module[Host(null)][Self(hash="8a419e023bc09339d4e3fda7a5df8e34")]=Deny
Module[Host(null)][Self(hash="fa165ba9f7a5d113629bbc1f7a786560")]=Deny
Module[Host(null)][Self(hash="a843cf2e08804804bd09f8a35bd74369")]=Deny
Module[Host(null)][Self(hash="685aecfec6eb7941f6eaebe4a4a5e9a0")]=Deny
Module[Host(null)][Self(hash="55bf5b64486618a89657e105998f941a")]=Deny

游客，如果您要查看本帖隐藏内容请回复

//重庆智多的实名
FileCheck[Self(Path=".*\\SysWOW64\\.*.sys")][Process(Path=".*\\cfgcli.exe")][AccessMode(Create)]=Deny
//ProcStart[Parent(null)][Self(Path=".*\\StartProcInUserSes.exe")]=Deny