mcafee8.0i는 설정 파일을 저장할 수 있나요?
그렇습니다~~
제가 쓴 게 아니라 화이트 크로우가 쓴 글이니 참고해주세요.
새 텍스트 파일을 만드세요
Windows 레지스트리 편집기 버전 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Network Associates\TVD\Shared Components\On Access Scanner\BehaviourBlocking]
"PortBlockReportMinutes"=dword: 00000001
"bLimitSize_Ent"=dword:00000001
"ShareBlockReport"=dword:00000001
"LogFileFormat_Ent"=dword:00000001
"FileBlockEnabled_8"=dword: 00000001
"FileBlockEnabled_1"=dword:00000001
"VSIDBlockOnNonVirus"=dword:00000000
"FileBlockEnabled_28"=dword:00000001
"EnterceptShowMessages"=dword:00000000
"FileBlockEnabled_26"=dword:00000001
"bLogToFile"=dword:00000001
"FileBlockEnabled_4 "=dword:00000001
"FileBlockEnabled_13"=dword:00000001
"FileBlockEnabled_19"=dword:00000001
"FileBlockEnabled_12"=dword:00000001
"FileBlockEnabled_18 "=dword:00000001
"FileBlockEnabled_0"=dword:00000001
"bLogToFile_Ent"=dword:00000001
"FileBlockEnabled_2"= dword:00000001
"FileBlockEnabled_11"=dword:00000001
"FileBlockEnabled_10"=dword:00000001
"VSIDMessage"=""
"FileBlockEnabled_23"=dword:00000001
"FileBlockEnabled_17"=dword:00000001
"FileBlockEnabled_9"=dword:00000001
"VSIDSendMessage"=dword:00000000
"PortBlockReport"=dword:00000001
"szLogFileName"="%VSEDEFLOGDIR%\\AccessProtectionLog.txt"
"FileBlockEnabled_3"=dword:00000001
"FileBlockEnabled_20"=dword:00000001
"Fi
leBlockEnabled_27"=dword:00000001
"FileBlockEnabled_30"=dword:00000000
"FileBlockEnabled_25"=dword:00000001
"dwMaxLogSizeMB"=dword:00000001 p>
"FileBlockEnabled_22"=dword:00000001
"FileBlockEnabled_5"=dword:00000001
"FileBlockEnabled_16"=dword:00000001
" bLimitSize" =dword:00000001
"VSIDBlock"=dword:00000001
"dwMaxLogSizeMB_Ent"=dword:00000001
"ShareBlockMode"=dword:00000002
"LogFileFormat"=dword:00000001
"FileBlockEnabled_15"=dword:00000001
"PortBlockProcessExclusionList"=hex(7):46,00,72,00, 61, 00,6d,00,65,00,77,00,6f,\
00,72,00,6b,00,53,00,65,00,72,00,76, 00, 69,00,63,00,65,00,2e,00,65,00,78,00,\
65,00,00,00,41,00,67,00, 65, 00,6e,00,74,00,6e,00,74,00,2e,00,65,00,78,00,65,\
00,00,00,00, 00
"VSIDBlockTimeout"=dword:0000000a
"FileBlockEnabled_14"=dword:00000001
"EnterceptMode"=dword:00000001
"FileBlockEnabled_29 "=dword:00000001
"FileBlockEnabled_6"=dword:00000001
"szLogFileName_Ent"="%VSEDEFLOGDIR%\\BufferOverflowProtectionLog.txt"
" FileBlockEnabled_24" =dword:00000001
"FileBlockEnabled_7"=dword:00000001
"EnterceptEnabled"=dword:00000001
"FileBlockEnabled_21"=dword:00000001
p>"FileBlockEnabled_31"=dword:00000001
"FileBlockEnabled_32"=dword:00000001
"FileBlockEnabled_33"=dword:00000001
"FileBlockEnabled_34" =dword:00000001
"FileBlockEnabled_35"=dword:00000001
"FileBlockEnabled_36"=dword:00000001
p>
"FileBlockEnabled_37"=dword:00000001
"FileBlockEnabled_38"=dword:00000001
"FileBlockEnabled_39"=dword:00000001
"FileBlockEnabled_40" =dword:00000001
"FileBlockEnabled_41"=dword:00000001
"FileBlockEnabled_42"=dword:00000001
"FileBlockEnabled_43"=dword:00000001
"FileBlockEnabled_44"=dword:00000001
"FileBlockEnabled_45"=dword:00000001
"FileBlockEnabled_46"=dword:00000001
"FileBlockEnabled_47"=dword :00000001
"FileBlockEnabled_48"=dword:00000001
"FileBlockEnabled_49"=dword:00000001
"FileBlockEnabled_50"=dword:00000001
"FileBlockEnabled_51"=dword:00000001
"FileBlockEnabled_52"=dword:00000001
"FileBlockEnabled_53"=dword:00000001
"FileBlockEnabled_54"=dword:00000001
"FileBlockEnabled_55"=dword:00000001
"FileBlockEnabled_56"=dword:00000001
"FileBlockEnabled_57"=dword:00000001
" FileBlockEnabled_58"=dword:00000001
"FileBlockEnabled_59"=dword:00000001
"FileBlockEnabled_60"=dword:00000001
"FileBlockEnabled_61"=dword:00000001 p>
"FileBlockEnabled_62"=dword:00000001
"FileBlockEnabled_63"=dword:00000001
"FileBlockEnabled_64"=dword:00000001
" FileBlockEnabled_65" =dword:00000001
"FileBlockEnabled_66"=dword:00000001
"FileBlockEnabled_67"=dword:00000001
"FileBlockEnabled_68"=dword:00000001
"FileBlockEnabled_69"=dword:00000001
"FileBlockEnabled_70"=dword:00000001
"FileBlockEnabled_71"=dword:00000
001
"FileBlockEnabled_72"=dword:00000001
"FileBlockEnabled_73"=dword:00000001
"FileBlockEnabled_74"=dword:00000001
"FileBlockEnabled_75"=dword:00000001
"FileBlockEnabled_76"=dword:00000001
"FileBlockEnabled_77"=dword:00000001
"FileBlockEnabled_78"=dword:00000001
"FileBlockEnabled_79"=dword:00000001
"FileBlockEnabled_80"=dword:00000000
"FileBlockEnabled_81"=dword:00000001
"FileBlockEnabled_82 "=dword:00000001
"FileBlockEnabled_83"=dword:00000001
"FileBlockEnabled_84"=dword:00000001
"FileBlockEnabled_85"=dword:00000001
"FileBlockEnabled_86"=dword:00000001
"FileBlockEnabled_87"=dword:00000001
"FileBlockEnabled_88"=dword:00000000
"FileBlockEnabled_89"= dword:00000001
"FileBlockEnabled_90"=dword:00000001
"FileBlockEnabled_91"=dword:00000001
"FileBlockEnabled_92"=dword:00000001
"FileBlockEnabled_93"=dword:00000001
"FileBlockEnabled_94"=dword:00000001
"FileBlockEnabled_95"=dword:00000001
"FileBlockEnabled_96"=dword: 00000001
"FileBlockEnabled_97"=dword:00000001
"PortBlockEnabled_0"=dword:00000001
"PortBlockName_0"="다음에서 대량의 메일을 보내는 웜을 금지합니다. 메일 보내기 "
"PortBlockDirection_0"=dword:00000001
"PortBlockRange_0"="25"
"PortBlockWhiteList_0"="foxmail.exe"
"PortBlockEnabled_1"=dword:00000001
"PortBlockName_1"="아웃바운드 IRC 통신 비활성화"
"PortBlockDirection_1"=dword:00000001
" PortBlockRange_1 "="6666-6669"
"PortBlo
ckWhiteList_1"=""
"PortBlockEnabled_2"=dword:00000001
"PortBlockName_2"="인바운드 IRC 통신 비활성화"
"PortBlockDirection_2"=dword: 00000000
"PortBlockRange_2"="6666-6669"
"PortBlockWhiteList_2"=""
"PortBlockEnabled_3"=dword:00000000
"PortBlockName_3"="World Wide Web에서 다운로드하는 것은 금지되어 있습니다."
"PortBlockDirection_3"=dword:00000001
"PortBlockRange_3"="80"
" PortBlockWhiteList_3" ="thunder5.exe,TTraveler.exe,qq.exe,qqpet.exe,IEXPLORE.EXE,paipaiclient.exe,dexplore.exe,HDRoom.exe,msnmsgr.exe,tbstudio.exe,aupdrun.exe,outpost. exe, QQDownload.exe,MSNmsgr.exe,WINWORD.EXE"
"PortBlockEnabled_4"=dword:00000000
"PortBlockName_4"="FTP 인바운드 통신을 비활성화합니다(바이러스 확산 방지) 예: Nimda )"
"PortBlockDirection_4"=dword:00000000
"PortBlockRange_4"="20-21"
"PortBlockWhiteList_4"="flashfxp.exe ,cuteftppro.exe,thunder5.exe"
"PortBlockEnabled_5"=dword:00000001
"PortBlockName_5"="FTP 아웃바운드 통신 비활성화(바이러스가 파일을 다운로드하는 것을 방지)"
"PortBlockDirection_5"=dword:00000001
"PortBlockRange_5"="20-21"
"PortBlockWhiteList_5"="flashfxp.exe,cuteftppro.exe,thunder5.exe ,HEOnline.exe"
"PortBlockEnabled_6"=dword:00000001
"PortBlockName_6"="Telnet 23 포트가 로컬 호스트에 연결되지 않도록 차단"
" PortBlockDirection_6"=dword:00000000
"PortBlockRange_6"="23"
"PortBlockWhiteList_6"=""
"PortBlockEnabled_7"=dword:00000001
"PortBlockName_7 "="로컬 호스트에 대한 SQL 기본 SA 연결 차단"
"PortBlockDirection_7"=dword:00000000
"PortBlockRange_7"="1433"
"PortBlockWhiteList_7 "=""
"PortBlockEnabled_8"=dwo
rd:00000001
"PortBlockName_8"="3389 원격 터미널이 로컬 호스트에 연결되는 것을 차단합니다"
"PortBlockDirection_8"=dword:00000000
"PortBlockRange_8" ="3389 "
"PortBlockWhiteList_8"=""
"PortBlockEnabled_9"=dword:00000001
"PortBlockName_9"="로컬에 대한 4778 원격 제어 연결을 차단합니다. 호스트"
p>
"PortBlockDirection_9"=dword:00000000
"PortBlockRange_9"="4778"
"PortBlockWhiteList_9"=""
"PortBlockEnabled_10"= dword:00000001
"PortBlockName_10"="로컬 호스트에 대한 4889-4899 원격 제어 연결을 차단합니다."
"PortBlockDirection_10"=dword:00000000
"PortBlockRange_10"= "4889-4899"
"PortBlockWhiteList_10"=""
"PortBlockEnabled_11"=dword:00000001
" PortBlockName_11"="포트 456이 열려 악용되는 것을 방지합니다. "
"PortBlockDirection_11"=dword:00000000
"PortBlockRange_11"="456"
"PortBlockWhiteList_11 "=""
" PortBlockEnabled_12"=dword:00000001
"PortBlockName_12"="포트 555가 열려 악용되는 것을 방지"
"PortBlockDirection_12"= dword:00000000
"PortBlockRange_12"= "555"
"PortBlockWhiteList_12"=""
"PortBlockEnabled_13"=dword:00000001
"PortBlockName_13"="포트 556이 열려 악용되는 것을 방지합니다."
"PortBlockDirection_13"=dword:00000000
"PortBlockRange_13"="556"
"PortBlockWhiteList_13"=""
"PortBlockEnabled_14" =dword:00000001
"PortBlockName_14"="포트 666이 열려 악용되는 것을 방지"
"PortBlockDirection_14 "=dword:00000000
"PortBlockRange_14"="666 "
"PortBlockWhiteList_14"=""
"PortBlockEnabled_15"=dword:00000001
"PortBlockName_15"="포트 1010이 열려 악용되는 것을 방지합니다."
"PortBlockDirection_15"=dword:00000000
"PortBlockRan
ge_15"="1010"
"PortBlockWhiteList_15"=""
"PortBlockEnabled_16"=dword:00000001
"PortBlockName_16"="1080 프록시 활성화 차단 포트 "
"PortBlockDirection_16"=dword:00000000
"PortBlockRange_16"="1080"
"PortBlockWhiteList_16"=""
" PortBlockEnabled_17"=dword:00000001
"PortBlockName_17"="8080 프록시 포트 활성화 차단"
"PortBlockDirection_17"=dword:00000000
"PortBlockRange_17" =" 8080"
"PortBlockWhiteList_17"=""
"PortBlockEnabled_18"=dword:00000001
"PortBlockName_18"="2000-2001 포트가 연결되지 않도록 방지 열려서 악용됨"
"PortBlockDirection_18"=dword:00000000
"PortBlockRange_18"="2000-2001"
"PortBlockWhiteList_18"="qq.exe, qqpet.exe"
"PortBlockEnabled_19"=dword:00000001
"PortBlockName_19"="포트 7306-7308이 열리고 악용되는 것을 방지"
"PortBlockDirection_19 "=dword:00000000
"PortBlockRange_19"="7306-7308"
"PortBlockWhiteList_19"=""
"PortBlockEnabled_20"=dword:00000001
" PortBlockName_20"="포트 7626이 열려 악용되는 것을 방지합니다."
"PortBlockDirection_20"=dword:00000000
"PortBlockRange_20"="7626"
"PortBlockWhiteList_20"= ""
"PortBlockEnabled_21"=dword:00000001
"PortBlockName_21"="포트 8000이 열려 악용되지 않도록 방지"
"PortBlockDirection_21"=dword:00000000
"PortBlockRange_21"="8000"
"PortBlockWhiteList_21"=""
"PortBlockEnabled_22"=dword:00000001
"PortBlockName_22" ="포트 11000이 열려 악용되는 것을 방지"
"PortBlockDirection_22"=dword:00000000
"PortBlockRange_22"="11000"
"PortBlockWhiteList_22"=""
"PortBlockEnabled_23"=dword:00000001<
/p>
"PortBlockName_23"="포트 11223이 열려 악용되는 것을 방지합니다."
"PortBlockDirection_23"=dword:00000000
"PortBlockRange_23"="11223"
"PortBlockWhiteList_23"=""
"PortBlockEnabled_24"=dword:00000001
"PortBlockName_24"="포트 12223이 열려 악용되는 것을 방지"
" PortBlockDirection_24"=dword:00000000
"PortBlockRange_24"="12223"
"PortBlockWhiteList_24"=""
"PortBlockEnabled_25"=dword: 00000001
"PortBlockName_25"="포트 12345-12346이 열리고 악용되는 것을 방지합니다."
"PortBlockDirection_25"=dword:00000000
"PortBlockRange_25"=" 12345-12346"
"PortBlockWhiteList_25"=""
"PortBlockEnabled_26"=dword:00000001
"PortBlockName_26"="포트 12631이 열리지 않도록 방지하고 악용됨"
"PortBlockDirection_26"=dword:00000000
"PortBlockRange_26"="12631"
"PortBlockWhiteList_26"=""
"PortBlockEnabled_27"=dword:00000001
"PortBlockName_27"="포트 20034가 열려 악용되는 것을 방지합니다"
"PortBlockDirection_27"=dword:00000000
" PortBlockRange_27"="20034"
"PortBlockWhiteList_27"=""
"PortBlockEnabled_28"=dword:00000001
"PortBlockName_28"="포트 21554가 연결되지 않도록 방지 열려서 악용됨"
" PortBlockDirection_28"=dword:00000000
"PortBlockRange_28"="21554"
"PortBlockWhiteList_28"=""
"PortBlockEnabled_29"=dword:00000001
"PortBlockName_29"="포트 31339가 열리고 악용되는 것을 방지"
"PortBlockDirection_29"=dword:00000000
"PortBlockRange_29"="31339"
"PortBlockWhiteList_29"=""
"PortBlockEnabled_30"=dword:00000001
"PortBlockName_30"="포트 27374 방지 열려서 악용되는 것을 방지합니다."
"PortBlockDirection_30" =dword:00000000
"PortBlo
ckRange_30"="27374"
"PortBlockWhiteList_30"=""
"PortBlockEnabled_31"=dword:00000001
"PortBlockName_31"="포트 30029가 연결되지 않도록 방지 열었습니다. "
"PortBlockDirection_31"=dword:00000000
"PortBlockRange_31"="30029"
"PortBlockWhiteList_31"=""
"PortBlockEnabled_32"=dword:00000001
"PortBlockName_32"="포트 31787이 열려 악용되는 것을 방지"
"PortBlockDirection_32"=dword:00000000
"PortBlockRange_32" ="31787"
"PortBlockWhiteList_32"=""
"PortBlockEnabled_33"=dword:00000001
"PortBlockName_33"="포트 33911을 방지합니다. 열려서 악용되고 있습니다."
"PortBlockDirection_33"=dword:00000000
"PortBlockRange_33"="33911"
"PortBlockWhiteList_33"=""
"PortBlockEnabled_34 "=dword:00000001
"PortBlockName_34"="포트 34324가 열리고 악용되는 것을 방지"
"PortBlockDirection_34"=dword:00000000
"PortBlockRange_34"=" 34324"
"PortBlockWhiteList_34"=""
"PortBlockEnabled_35"=dword:00000001
"PortBlockName_35"="포트 방지 40412가 열리고 악용되는 것을 방지합니다."
"PortBlockDirection_35"=dword:00000000
"PortBlockRange_35"="40412"
"PortBlockWhiteList_35"=""
"PortBlockEnabled_36"= dword:00000001
"PortBlockName_36"="포트 40421-40423이 열리고 악용되는 것을 방지"
"PortBlockDirection_36"=dword:00000000
"PortBlockRange_36"=" 40421-40423"
"PortBlockWhiteList_36"=""
"PortBlockEnabled_37"=dword:00000001
" PortBlockName_37"="포트 47878이 열리고 악용되는 것을 방지합니다."
"PortBlockDirection_37"=dword:00000000
"PortBlockRange_37"="47878"
"PortBlockWhiteList_37 "=""
"PortBlockEnabled_38 "=dword:00000001
"PortBlockName_38"="포트 53001이 열려 악용되는 것을 방지합니다."
"PortBlockDirection_38"=dword:00000000
"PortBlockRange_38"="53001"
" PortBlockWhiteList_38" =""
"PortBlockEnabled_39"=dword:00000001
"PortBlockName_39"="포트 61466이 열리고 악용되는 것을 방지"
"PortBlockDirection_39" =dword:00000000
"PortBlockRange_39"="61466"
"PortBlockWhiteList_39"=""
"PortBlockEnabled_40"=dword:00000001
"PortBlockName_40 "="포트 65000이 열리고 악용되는 것을 방지합니다."
"PortBlockDirection_40"=dword:00000000
"PortBlockRange_40"="65000"
"PortBlockWhiteList_40"=" "
"PortBlockEnabled_41"=dword:00000001
"PortBlockName_41"="포트 5022가 열려 악용되는 것을 방지"
" PortBlockDirection_41"=dword:00000000
p>
"PortBlockRange_41"="5022"
"PortBlockWhiteList_41"=""
"PortBlockEnabled_42"=dword :00000001
"PortBlockName_42"= "1025-1030"
"PortBlockDirection_42"=dword:00000000
"PortBlockRange_42"="1025-1030"
"PortBlockWhiteList_42"=""
"PortBlockEnabled_43"=dword:00000001
"PortBlockName_43"="1025-1030"
"PortBlockDirection_43 "=dword:00000001
" PortBlockRange_43"="1025-1030"
"PortBlockWhiteList_43"=""
"FileBlockRuleName_0"="다음에서 Internet Explorer를 비활성화합니다. Temp 폴더에서 항목 실행"
"FileBlockProcess_0"="iexplore.exe"
"FileBlockWildcard_0"="**\\temp*\\**"
"FileBlockWhat_0"=dword:00080000
"FileBlockReport_0"=dword:00000001
"FileBlockRuleName_1"="Internet Explorer가 다운로드한 파일에서 파일(.exe)을 실행하지 못하도록 방지 프로그램 폴더"
"FileBlockProcess_1"=" iexplore.exe"
>
"FileBlockWildcard_1"="**\\다운로드된 프로그램 파일\\**\\*.exe"
"FileBlockWhat_1"=dword:00180000
"FileBlockReport_1" =dword:00000001
"FileBlockRuleName_2"="Outlook이 임시 폴더에서 모든 항목을 시작하지 못하도록 금지"
"FileBlockProcess_2"="outlook.exe"
" FileBlockWildcard_2"="**\\temp*\\**"
"FileBlockWhat_2"=dword:00180000
"FileBlockReport_2"=dword:00000001
"FileBlockRuleName_3"="Outlook Express가 Temp 폴더의 모든 항목을 시작하지 못하도록 방지"
"FileBlockProcess_3"="msimn.exe"
"FileBlockWildcard_3"="**\\ temp* \\**"
"FileBlockWhat_3"=dword:00180000
"FileBlockReport_3"=dword:00000001
"FileBlockRuleName_4"="다음에서 패키저 비활성화 프로젝트를 시작하기 위한 임시 파일 폴더"
"FileBlockProcess_4"="packager.exe"
"FileBlockWildcard_4"="**\\temp*\\**"
"FileBlockWhat_4"=dword:00180000
"FileBlockReport_4"=dword:00000001
"FileBlockRuleName_5"="MSN이 Temp 폴더에서 프로젝트를 시작하는 것을 금지합니다"
"FileBlockProcess_5"="msn6.exe"
"FileBlockWildcard_5"="**\\temp*\\**"
"FileBlockWhat_5"=dword: 00080000
"FileBlockReport_5"=dword:00000001
"FileBlockRuleName_6"="WinZip32가 Temp 폴더에서 프로젝트를 시작하는 것을 금지합니다."
"FileBlockProcess_6"=" winzip32.exe"
"FileBlockWildcard_6"="**\\temp*\\**"
"FileBlockWhat_6"=dword:00080000
"FileBlockReport_6 "=dword:00000001
"FileBlockRuleName_7"="WinRAR이 Temp 폴더에서 프로젝트를 시작하는 것을 금지합니다."
"FileBlockProcess_7"="winrar.exe"
"FileBlockWildcard_7"=" **\\temp*\\**"
"FileBlockWhat_7"=dword:00080000
"FileBlockReport_7"=dword:00000001
"파일Bl
ockRuleName_8"="임시 폴더에서 스크립트 실행 비활성화"
"FileBlockProcess_8"="?script.exe"
"FileBlockWildcard_8"="**\\temp*\\* * "
"FileBlockWhat_8"=dword:000a0000
"FileBlockReport_8"=dword:00000001
"FileBlockRuleName_9"="tftp.exe를 사용하는 것은 금지되어 있습니다. 특정 일부 웜이 사용합니다.
"
"FileBlockProcess_9"="*"
"FileBlockWildcard_9"="**\\tftp.exe"
"FileBlockWhat_9"=dword:001f0000
"FileBlockReport_9"=dword:00000001
"FileBlockRuleName_10"="의심스러운 시작 항목(.exe)에 대한 접근 금지"
"FileBlockProcess_10"="*"
"FileBlockWildcard_10"="**\\startup\\**\\*.exe"
"FileBlockWhat_10"=dword:000f0000
"FileBlockReport_10 "=dword:00000001
"FileBlockRuleName_11"="의심스러운 시작 항목(.scr)에 대한 액세스는 금지되어 있습니다."
"FileBlockProcess_11"="*"
" FileBlockWildcard_11"="**\\startup\\**\\*.scr"
"FileBlockWhat_11"=dword:000f0000
"FileBlockReport_11"=dword:00000001
"FileBlockRuleName_12"="의심스러운 시작 항목(.hta)에 대한 액세스 비활성화"
"FileBlockProcess_12"="*"
"FileBlockWildcard_12"="**\ \ start\\**\\*.hta"
"FileBlockWhat_12"=dword:000f0000
"FileBlockReport_12"=dword:00000001
"FileBlockRuleName_13" = "의심스러운 시작 항목(.pif)에 액세스할 수 없습니다."
"FileBlockProcess_13"="*"
"FileBlockWildcard_13"="**\\startup\\**\\ * .pif"
"FileBlockWhat_13"=dword:000f0000
"FileBlockReport_13"=dword:00000001
"FileBlockRuleName_14"="의심스러운 시작 항목에 대한 액세스 비활성화 ( .com)"
"FileBlockProcess_14"="*"
"FileBlockWildcard_14"="**\\startup\\**\\*.com"
"FileBlockWhat_14"=dword:000f0000
"FileBlockReport_14"=dword:00000001
"FileBlockRuleName_15"="파일(.exe)의 원격 수정은 금지됩니다."
"FileBlockProcess_15"="System:Remote"
"FileBlockWildcard_15"="**\\*.exe"
"FileBlockWhat_15"=dword:00040000
"FileBlockReport_15"=dword:00000001
"FileBlockRuleName_16"="파일 원격 수정은 금지되어 있습니다(
.scr)"
"FileBlockProcess_16"="System:Remote"
"FileBlockWildcard_16"="**\\*.scr"
"FileBlockWhat_16" =dword:00040000
"FileBlockReport_16"=dword:00000001
"FileBlockRuleName_17"="파일(.ocx)의 원격 수정은 금지되어 있습니다."
"FileBlockProcess_17 "= "System:Remote"
"FileBlockWildcard_17"="**\\*.ocx"
"FileBlockWhat_17"=dword:00040000
"FileBlockReport_17 "= dword:00000001
"FileBlockRuleName_18"="파일(.dll)의 원격 수정은 금지됩니다."
"FileBlockProcess_18"="System:Remote"
"FileBlockWildcard_18" ="**\\*.dll"
"FileBlockWhat_18"=dword:00040000
"FileBlockReport_18"=dword:00000001
" FileBlockRuleName_19"=" Windows 폴더 및 하위 폴더에 있는 항목의 원격 생성/수정/삭제 비활성화"
"FileBlockProcess_19"="System:Remote"
"FileBlockWildcard_19"="%windir% \ \**\\*"
"FileBlockWhat_19"=dword:00150000
"FileBlockReport_19"=dword:00000001
"FileBlockRuleName_20"="원격 생성 Windows 폴더 및 하위 폴더에 있는 파일(.ini)/수정/삭제 금지"
"FileBlockProcess_20"="System:Remote"
"FileBlockWildcard_20"="%windir%\ \* *\\*.ini"
"FileBlockWhat_20"=dword:00150000
"FileBlockReport_20"=dword:00000001
"FileBlockRuleName_21"="금지 원격 생성 /시스템 루트 디렉터리의 모든 항목 수정/삭제"
"FileBlockProcess_21"="System:Remote"
"FileBlockWildcard_21"="%systemdrive%\\*"
"FileBlockWhat_21"=dword:00150000
"FileBlockReport_21"=dword:00000001
"FileBlockRuleName_22"="파일(.exe)의 원격 생성/수정/삭제를 금지합니다. )"
"FileBlockProcess_22"="System:Remote"
"FileBlockWildcard_22"="**\\*.exe"
FileBlockWhat_22"=dword: 00150000
"FileBlockReport_22"=dword:00000001
"FileBlockRuleName_23"="파일(.scr)의 원격 생성/수정/삭제를 금지합니다."
"FileBlockProcess_23"="시스템 :원격 "
"FileBlockWildcard_23"="**\\*.scr"
"FileBlockWhat_23"=dword:00150000
"FileBlockReport_23"=dword: 00000001
"FileBlockRuleName_24"="파일(.ocx)의 원격 생성/수정/삭제 금지"
"FileBlockProcess_24"="System:Remote"
"FileBlockWildcard_24" ="**\\*.ocx"
"FileBlockWhat_24"=dword:00150000
"FileBlockReport_24"=dword:00000001
"FileBlockRuleName_25 "=" 파일(.pif)의 원격 생성/수정/삭제 금지"
"FileBlockProcess_25"="System:Remote"
"FileBlockWildcard_25"="**\\* .pif"
"FileBlockWhat_25"=dword:00150000
"FileBlockReport_25"=dword:00000001
"FileBlockRuleName_26"="autorun.inf 파일 원격 생성 금지됩니다."
"FileBlockProcess_26"="System:Remote"
"FileBlockWildcard_26"="**\\autorun.inf"
"FileBlockWhat_26"= dword:00010000
"FileBlockReport_26"=dword:00000001
"FileBlockRuleName_27"="Windows 폴더에 새 파일(.bat) 생성 금지"
" FileBlockProcess_27"="* "
"FileBlockWildcard_27"="%windir%\\*.bat"
"FileBlockWhat_27"=dword:00050000
"FileBlockReport_27 "=dword:00000001
"FileBlockRuleName_28"="Windows 폴더에서 새 파일(.exe) 생성 금지"
"FileBlockProcess_28"="*"
"FileBlockWildcard_28" ="%windir%\\*.exe"
"FileBlockWhat_28"=dword:00050000
"FileBlockReport_28"=dword:00000001
"FileBlockRuleName_29"= "Windows 폴더에서 새 파일(.com) 생성 금지"
"FileBlockProcess_29"="*"
"FileBlockWildcard_29"="%windir%\\* .
com"
"FileBlockWhat_29"=dword:00050000
"FileBlockReport_29"=dword:00000001
"FileBlockRuleName_30"="Tencent QQ는 광고 파일 생성을 금지합니다. "
"FileBlockProcess_30"="*"
"FileBlockWildcard_30"="**\\AD\\*.*"
"FileBlockWhat_30"=dword :00090000
"FileBlockReport_30"=dword:00000001
"FileBlockRuleName_31"="임시 폴더(.exe)에서 시작하는 것을 금지합니다."
"FileBlockProcess_31"=" * "
"FileBlockWildcard_31"="**\\temp*\\*.exe"
"FileBlockWhat_31"=dword:00080000
"FileBlockReport_31" = dword:000