Sandboxie-Plus: 把流氓软件关在笼子里

提示:请务必注意路径。

Sandboxie-Plus 是 Sandboxie 作为自由软件发布之后,改用 Qt 重写界面的版本。

微信相对简单一些,QQ / TIM 可是不听话。

最后用 Microsoft Store 安装了没有 QQProtect.exe 的 QQ 桌面版,然后用管理员权限启动 CMD.exe,并将 QQ 文件夹复制出来:

xcopy ..\..\WindowsApps\903DB504.46618D74B1ECA_9.1.6.0_x86__a99ra4d2cbcxa F:\installations\tencent\QQ /s /e /g

之后可以在资源管理器中设置取消 NTFS 加密。

Sandboxie.ini 配置文件:

[GlobalSettings]

FileRootPath=\??\F:\Sandbox\%USER%\%SANDBOX%
SeparateUserFolders=y
KeyRootPath=\REGISTRY\USER\Sandbox_%USER%_%SANDBOX%
IpcRootPath=\Sandbox\%USER%\%SANDBOX%\Session_%SESSION%
EditAdminOnly=n
ForceDisableAdminOnly=n
ForgetPassword=n
StartRunAlertDenied=y
NotifyStartRunAccessDenied=y
AlertFolder=F:\installations\tencent\QQ
AlertFolder=C:\Program Files (x86)\WXWork
AlertFolder=C:\Program Files (x86)\WXDrive
AlertFolder=C:\Program Files (x86)\Common Files\Tencent
AlertFolder=C:\Program Files (x86)\Tencent
Template=WindowsRasMan
Template=WindowsLive
Template=Windows10CoreUI
Template=OfficeLicensing
Template=OfficeClickToRun
Template=FireFix_for_Win7
Template=7zipShellEx

[DefaultBox]

Enabled=y
ConfigLevel=7
AutoRecover=n
BlockNetworkFiles=y
Template=qWave
Template=WindowsFontCache
Template=BlockPorts
Template=LingerPrograms
Template=Chrome_Phishing_DirectAccess
Template=Firefox_Phishing_DirectAccess
Template=AutoRecoverIgnore
RecoverFolder=%{374DE290-123F-4565-9164-39C4925E467B}%
RecoverFolder=%Personal%
RecoverFolder=%Desktop%
BorderColor=#00FFFF,ttl

[QQ]

Enabled=y
ConfigLevel=7
AutoRecover=n
BlockNetworkFiles=y
Template=qWave
Template=WindowsFontCache
Template=BlockPorts
Template=LingerPrograms
Template=Chrome_Phishing_DirectAccess
Template=Firefox_Phishing_DirectAccess
Template=AutoRecoverIgnore
RecoverFolder=%{374DE290-123F-4565-9164-39C4925E467B}%
RecoverFolder=%Personal%
RecoverFolder=%Desktop%
BorderColor=#ffaa00,ttl,6
OpenFilePath=F:\installations\tencent\tim
OpenFilePath=E:\qq
BoxNameTitle=n
BlockNetParam=y
DropAdminRights=y
ClosePrintSpooler=y
OpenPrintSpooler=n
AllowSpoolerPrintToFile=n
CopyLimitKb=-1
CopyLimitSilent=n
NeverDelete=n
AutoDelete=n
ProcessGroup=<ChromePrograms>,vivaldi.exe,opera.exe,neon.exe,msedge.exe,Maxthon.exe,iron.exe,dragon.exe,chrome.exe,brave.exe
ProcessGroup=<FirefoxPrograms>,waterfox.exe,palemoon.exe,firefox.exe
ClosedFilePath=Z:\
ClosedFilePath=Y:\
ClosedFilePath=!<FirefoxPrograms>,C:\Users\user\AppData\Local\Mozilla
ClosedFilePath=!<FirefoxPrograms>,C:\Users\user\AppData\Roaming\Mozilla
HideOtherBoxes=y
RunCommand=QQ|F:\installations\tencent\QQ\QQ\Bin\QQScLauncher.exe

[WeChat]

Enabled=y
ConfigLevel=7
AutoRecover=n
BlockNetworkFiles=y
Template=qWave
Template=WindowsFontCache
Template=BlockPorts
Template=LingerPrograms
Template=Chrome_Phishing_DirectAccess
Template=Firefox_Phishing_DirectAccess
Template=AutoRecoverIgnore
RecoverFolder=%{374DE290-123F-4565-9164-39C4925E467B}%
RecoverFolder=%Personal%
RecoverFolder=%Desktop%
BorderColor=#00aa55,ttl,6
OpenFilePath=C:\Program Files (x86)\Common Files\Tencent
OpenFilePath=C:\Users\user\AppData\Roaming\Tencent
OpenFilePath=C:\Users\user\AppData\Local\Tencent
OpenFilePath=E:\wechat-files
OpenFilePath=C:\Program Files (x86)\Tencent
BoxNameTitle=n
BlockNetParam=y
DropAdminRights=y
ClosePrintSpooler=y
OpenPrintSpooler=n
AllowSpoolerPrintToFile=n
CopyLimitKb=-1
CopyLimitSilent=n
NeverDelete=n
AutoDelete=n
ReadFilePath=C:\Program Files (x86)
ReadFilePath=C:\Program Files
ReadFilePath=C:\Windows
RunCommand=WeMeet|"C:\Program Files (x86)\Tencent\WeMeet\wemeetapp.exe"
RunCommand=WXWork|"C:\Program Files (x86)\WXWork\WXWork.exe"
RunCommand=WeChat|C:\Program Files (x86)\Tencent\WeChat\WeChat.exe
ClosedFilePath=!<FirefoxPrograms>,C:\Users\user\AppData\Local\Mozilla
HideOtherBoxes=y

[UserSettings_08DA01C0]

BoxDisplayOrder=Tencent(QQ,WeChat)
10 Likes

好欸,我关注这个软件很久了,虽然平时很少用到(
顺便补个github链接

6 Likes

上一次用到sandboxie大概是12年前了2333熟悉的名字

5 Likes