Leak Test Results

I tested fairly well I think, but I want even better scores. I am running CIS 4.1.
I have it set up for ProActive Mode, Firewall is set up for Safe Mode, and D+ is also in Safe mode.

  1. RootkitInstallation: MissingDriverLoad Protected
  2. RootkitInstallation: LoadAndCallImage Protected
  3. RootkitInstallation: DriverSupersede Protected
  4. RootkitInstallation: ChangeDrvPath Protected
  5. Invasion: Runner Protected
  6. Invasion: RawDisk Protected
  7. Invasion: PhysicalMemory Protected
  8. Invasion: FileDrop Vulnerable
  9. Invasion: DebugControl Protected
  10. Injection: SetWinEventHook Protected
  11. Injection: SetWindowsHookEx Protected
  12. Injection: SetThreadContext Protected
  13. Injection: Services Protected
  14. Injection: ProcessInject Protected
  15. Injection: KnownDlls Protected
  16. Injection: DupHandles Protected
  17. Injection: CreateRemoteThread Protected
  18. Injection: APC dll injection Protected
  19. Injection: AdvancedProcessTermination Protected
  20. InfoSend: ICMP Test Protected
  21. InfoSend: DNS Test Protected
  22. Impersonation: OLE automation Protected
  23. Impersonation: ExplorerAsParent Protected
  24. Impersonation: DDE Protected
  25. Impersonation: Coat Vulnerable
  26. Impersonation: BITS Protected
  27. Hijacking: WinlogonNotify Protected
  28. Hijacking: Userinit Protected
  29. Hijacking: UIHost Protected
  30. Hijacking: SupersedeServiceDll Protected
  31. Hijacking: StartupPrograms Protected
  32. Hijacking: ChangeDebuggerPath Protected
  33. Hijacking: AppinitDlls Protected
  34. Hijacking: ActiveDesktop Error
    Score 310/340

What can I do to improve on these 3 areas?
What is a FileDrop?
What is Impersonation Coat?

Was the sandbox turned on?

Which OS are you using? Also is it x32 or x64?

Yes the sandbox is turned on. I am running XP 32 bit. I know that getting a 310/340 is really good, I just want it better. Thanks for any help.

I have CIS configured as show here:

When I run the leaktest in the sandbox I get 330/340.
I’ve attached a screenshot of the results below.

Try to change your configuration and see if you get a better score.

[attachment deleted by admin]