以下是10月30日一天内大灰狼远控的木马样本截图，能够看到该木马变种数量不少、假装形状更是花样繁多。 pic_path = "./12306_pic/%s.jpg" % pic_filehxxp://xxx:xxx@192.168.1.1/XXX/XXX.XXX?user=<user>&pass=<pass>&mac=<mac_current>&mac_clone_btn=MAC%E5%9C%B0%E5%9D%80%E5%85%8B%E9%9A%86&mac_def_btn2=%E6%81%A2%E5%A4%8D%E7%BC%BA%E7%9C%81MAC&mtu=<mtu>&up_bandwidth=<up_bandwidth>&down_bandwidth=<down_bandwidth>&work_mode_radio=ROUTE&work_mode=<work_mode>&isp_radio=AUTO&isp=<isp>&line_detect=<line_detect>&time=1&timer_enable=<timer_enable>&monday=1&tuesday=2&wednesday=3&thursday=4&friday=5&saturday=6&sunday=7&timer_day=<timer_day>&start_hour=<start_hour>&start_minute=<start_minute>&end_hour=<end_hour>&end_minute=<end_minute>&pppoe_conf_radio=MANU&out_time=<out_time>&pppoe_conf=MANU&server_name=<server_name>&ac_name=<ac_name>&dns1=<dns1>&dns2=<dns2>&submitbutton=%E4%BF%9D%E5%AD%98%E7%94%9F%E6%95%88&uiname=<uiname>&connect_type=<connect_type>

伪装成IE/FIREFOX/IPHONE的浏览器这儿，我站在程序员的视点去解说 *** ONP的正常运用。