全球最畅销的杀毒软件之一，McAfee防毒软件, 除了操作介面更新外,也将该公司的WebScanX功能合在一起,增加了许多新功能! 除了帮你侦测和清除病毒，它还有VShield自动监视系统，会常驻在System Tray，当你从磁盘、网络上、E-mail夹文件中开启文件时便会自动侦测文件的安全性，若文件内含病毒，便会立即警告，并作适当的处理，而且支持鼠标右键的快速选单功能，并可使用密码将个人的设定锁住让别人无法乱改你的设定。 下载地址： http://www.crsky.com/soft/3964.html 官方中文 Mcafee VirusScan Enterprise v8.5ienterprise修正版+8.5i 间谍模块： http://www.20lz.com/Show.asp?id=1839&BoardID=13&TB=1 相关操作方法可参考：http://www.20lz.com/Show.asp?id=1412&BoardID=13&TB=1

「该帖子被 网络vs浪子 在 2007-1-20 17:55:52 编辑过」

支持，我现在就的就是这个版本

是企业版的吗？那和我用的就不一样

下来试试，不知此软件和kis6比较有何长短？

浪子！链接失效了！

[ 本帖最后由 depressedboy 于 2008-8-5 14:12 编辑 ]

再多个下载地址，可以下载的，请用迅雷下载，因http://down.20lz.com空间正在维护只能用链接了！

谢谢~~~

http://soft.3800hk.com/down1/200609/060901VirusScan.rar      



这个照,我在下

觉得mcafee和卡巴就在伯仲之间，真是不相上下；都说卡巴占资源，以现在机器的配置，根本不应该有这个顾虑；mcafee倒是有人说占资源很少，当然我们是感觉不出来，反正都挺好用，得一而安天下啊

送一个保护规则，把下面的内容复制后存为.reg文件即可:

复制内容到剪贴板

代码:

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Network Associates\TVD\Shared Components\On Access Scanner\BehaviourBlocking]
"szLogFileName_Ent"="%VSEDEFLOGDIR%\\BufferOverflowProtectionLog.txt"
"FileBlockEnabled_8"=dword:00000001
"FileBlockEnabled_14"=dword:00000001
"FileBlockEnabled_7"=dword:00000001
"FileBlockEnabled_4"=dword:00000001
"FileBlockEnabled_29"=dword:00000001
"FileBlockEnabled_21"=dword:00000001
"LogFileFormat"=dword:00000001
"EnterceptMode"=dword:00000001
"FileBlockEnabled_30"=dword:00000001
"VSIDSendMessage"=dword:00000000
"VSIDBlockTimeout"=dword:0000000a
"VSIDBlock"=dword:00000001
"dwMaxLogSizeMB_Ent"=dword:00000001
"FileBlockEnabled_16"=dword:00000001
"FileBlockEnabled_18"=dword:00000001
"FileBlockEnabled_15"=dword:00000001
"FileBlockEnabled_20"=dword:00000001
"FileBlockEnabled_6"=dword:00000001
"bLogToFile"=dword:00000001
"FileBlockEnabled_25"=dword:00000001
"bLimitSize"=dword:00000001
"FileBlockEnabled_11"=dword:00000001
"FileBlockEnabled_17"=dword:00000001
"FileBlockEnabled_22"=dword:00000001
"FileBlockEnabled_26"=dword:00000001
"FileBlockEnabled_0"=dword:00000001
"FileBlockEnabled_27"=dword:00000001
"FileBlockEnabled_13"=dword:00000001
"FileBlockEnabled_5"=dword:00000001
"PortBlockProcessExclusionList"=hex(7):46,00,72,00,61,00,6d,00,65,00,77,00,6f,\
  00,72,00,6b,00,53,00,65,00,72,00,76,00,69,00,63,00,65,00,2e,00,65,00,78,00,\
  65,00,00,00,41,00,67,00,65,00,6e,00,74,00,6e,00,74,00,2e,00,65,00,78,00,65,\
  00,00,00,00,00
"FileBlockEnabled_3"=dword:00000001
"FileBlockEnabled_28"=dword:00000001
"szLogFileName"="%VSEDEFLOGDIR%\\AccessProtectionLog.txt"
"FileBlockEnabled_12"=dword:00000001
"PortBlockReport"=dword:00000001
"bLimitSize_Ent"=dword:00000001
"dwMaxLogSizeMB"=dword:00000001
"LogFileFormat_Ent"=dword:00000001
"FileBlockEnabled_19"=dword:00000001
"FileBlockEnabled_23"=dword:00000001
"FileBlockEnabled_24"=dword:00000001
"EnterceptShowMessages"=dword:00000001
"FileBlockEnabled_1"=dword:00000001
"FileBlockEnabled_9"=dword:00000001
"bLogToFile_Ent"=dword:00000001
"FileBlockEnabled_2"=dword:00000001
"VSIDMessage"=""
"ShareBlockMode"=dword:00000000
"FileBlockEnabled_10"=dword:00000001
"ShareBlockReport"=dword:00000001
"EnterceptEnabled"=dword:00000001
"PortBlockReportMinutes"=dword:00000001
"VSIDBlockOnNonVirus"=dword:00000001
"FileBlockEnabled_31"=dword:00000001
"FileBlockEnabled_32"=dword:00000001
"FileBlockEnabled_33"=dword:00000001
"FileBlockEnabled_34"=dword:00000001
"FileBlockEnabled_35"=dword:00000001
"FileBlockEnabled_36"=dword:00000001
"FileBlockEnabled_37"=dword:00000001
"FileBlockEnabled_38"=dword:00000001
"FileBlockEnabled_39"=dword:00000001
"Fifanluntan x b s"=hex:00
"FileBlockEnabled_40"=dword:00000001
"FileBlockEnabled_41"=dword:00000001
"FileBlockEnabled_42"=dword:00000001
"FileBlockEnabled_43"=dword:00000001
"FileBlockEnabled_44"=dword:00000001
"FileBlockEnabled_45"=dword:00000001
"FileBlockEnabled_46"=dword:00000001
"FileBlockEnabled_47"=dword:00000001
"FileBlockEnabled_48"=dword:00000001
"FileBlockEnabled_49"=dword:00000001
"FileBlockEnabled_50"=dword:00000001
"FileBlockEnabled_51"=dword:00000000
"FileBlockEnabled_52"=dword:00000001
"FileBlockEnabled_53"=dword:00000001
"FileBlockEnabled_54"=dword:00000001
"FileBlockEnabled_55"=dword:00000001
"FileBlockEnabled_56"=dword:00000001
"FileBlockEnabled_57"=dword:00000001
"FileBlockEnabled_58"=dword:00000001
"EnterceptExclusionProcess_0"="explorer.exe"
"EnterceptExclusionModule_0"=""
"EnterceptExclusionAPI_0"="VirtualProtect"
"EnterceptExclusionProcess_1"="WINWORD.EXE"
"EnterceptExclusionModule_1"=""
"EnterceptExclusionAPI_1"="GetProcAddress"
"EnterceptExclusionProcess_2"="WINWORD.EXE"
"EnterceptExclusionModule_2"=""
"EnterceptExclusionAPI_2"="VirtualProtect"
"EnterceptExclusionProcess_3"="IEXPLORE.EXE"
"EnterceptExclusionModule_3"=""
"EnterceptExclusionAPI_3"="GetProcAddress"
"EnterceptExclusionProcess_4"="IEXPLORE.EXE"
"EnterceptExclusionModule_4"=""
"EnterceptExclusionAPI_4"="VirtualProtect"
"EnterceptExclusionProcess_5"="EXCEL.EXE"
"EnterceptExclusionModule_5"=""
"EnterceptExclusionAPI_5"="GetProcAddress"
"EnterceptExclusionProcess_6"="EXCEL.EXE"
"EnterceptExclusionModule_6"=""
"EnterceptExclusionAPI_6"="VirtualProtect"
"EnterceptExclusionProcess_7"="POWERPNT.exe"
"EnterceptExclusionModule_7"=""
"EnterceptExclusionAPI_7"="GetProcAddress"
"EnterceptExclusionProcess_8"="POWERPNT.EXE"
"EnterceptExclusionModule_8"=""
"EnterceptExclusionAPI_8"="VirtualProtect"
"EnterceptExclusionProcess_9"="explorer.exe"
"EnterceptExclusionModule_9"=""
"EnterceptExclusionAPI_9"="GetProcAddress"
"EnterceptExclusionProcess_10"="msimn.exe"
"EnterceptExclusionModule_10"=""
"EnterceptExclusionAPI_10"="GetProcAddress"
"EnterceptExclusionProcess_11"="msimn.exe"
"EnterceptExclusionModule_11"=""
"EnterceptExclusionAPI_11"="VirtualProtect"
"EnterceptExclusionProcess_12"="wmplayer.exe"
"EnterceptExclusionModule_12"=""
"EnterceptExclusionAPI_12"="GetProcAddress"
"EnterceptExclusionProcess_13"="wmplayer.exe"
"EnterceptExclusionModule_13"=""
"EnterceptExclusionAPI_13"="VirtualProtect"
"FileBlockEnabled_59"=dword:00000001
"PortBlockEnabled_0"=dword:00000001
"PortBlockName_0"="禁止大量发送邮件的蠕虫病毒发送邮件"
"PortBlockDirection_0"=dword:00000001
"PortBlockRange_0"="25"
"PortBlockWhiteList_0"="amgrsrvc.exe,tomcat.exe,outlook.exe,msimn.exe,agent.exe,eudora.exe,nlnotes.exe,mozilla.exe,netscp.exe,opera.exe,winpm-32.exe,pine.exe,poco.exe,thebat.exe,thunderbird.exe,ntaskldr.exe,inetinfo.exe,nsmtp.exe,nrouter.exe,tomcat5.exe,tomcat5w.exe,ebs.exe,FireSvc.exe,modulewrapper.exe,MSKSrvr.exe,MSKDetct.exe,mapisp32.exe,Foxmail.exe,DreamMail.exe"
"PortBlockEnabled_1"=dword:00000001
"PortBlockName_1"="禁止 IRC 通讯"
"PortBlockDirection_1"=dword:00000001
"PortBlockRange_1"="6666-6669"
"PortBlockWhiteList_1"=""
"PortBlockEnabled_2"=dword:00000001
"PortBlockName_2"="禁止 IRC 通讯"
"PortBlockDirection_2"=dword:00000000
"PortBlockRange_2"="6666-6669"
"PortBlockWhiteList_2"=""
"PortBlockEnabled_3"=dword:00000000
"PortBlockName_3"="禁止从万维网上下载"
"PortBlockDirection_3"=dword:00000001
"PortBlockRange_3"="80"
"PortBlockWhiteList_3"="outlook.exe,msimn.exe,iexplore.exe,mozilla.exe,netscp.exe,opera.exe,thunderbird.exe,msn6.exe,neo20.exe,mobsync.exe,waol.exe,nlnotes.exe"
"PortBlockEnabled_4"=dword:00000000
"PortBlockName_4"="禁止 FTP 入站通讯（阻止诸如 Nimda 等病毒传播）"
"PortBlockDirection_4"=dword:00000000
"PortBlockRange_4"="20-21"
"PortBlockWhiteList_4"=""
"PortBlockEnabled_5"=dword:00000000
"PortBlockName_5"="禁止 FTP 出站通讯（阻止病毒下载文件）"
"PortBlockDirection_5"=dword:00000001
"PortBlockRange_5"="20-21"
"PortBlockWhiteList_5"="ftp.exe,iexplore.exe"
"PortBlockEnabled_6"=dword:00000001
"PortBlockName_6"="135-139"
"PortBlockDirection_6"=dword:00000000
"PortBlockRange_6"="135-139"
"PortBlockWhiteList_6"=""
"PortBlockEnabled_7"=dword:00000001
"PortBlockName_7"="445"
"PortBlockDirection_7"=dword:00000000
"PortBlockRange_7"="445-445"
"PortBlockWhiteList_7"=""
"PortBlockEnabled_8"=dword:00000001
"PortBlockName_8"="5000"
"PortBlockDirection_8"=dword:00000000
"PortBlockRange_8"="5000-5000"
"PortBlockWhiteList_8"=""
"FileBlockRuleName_0"="免疫3721上网助手/中文邮"
"FileBlockProcess_0"="*"
"FileBlockWildcard_0"="**\\3721"
"FileBlockWhat_0"=dword:00050000
"FileBlockReport_0"=dword:00000001
"FileBlockRuleName_1"="禁止DUDU"
"FileBlockProcess_1"="*"
"FileBlockWildcard_1"="**\\dudu"
"FileBlockWhat_1"=dword:00050000
"FileBlockReport_1"=dword:00000001
"FileBlockRuleName_2"="禁止网络猪"
"FileBlockProcess_2"="*"
"FileBlockWildcard_2"="**\\网络猪"
"FileBlockWhat_2"=dword:00050000
"FileBlockReport_2"=dword:00000001
"FileBlockRuleName_3"="禁止3721网络实名"
"FileBlockProcess_3"="*"
"FileBlockWildcard_3"="%windir%\\Downloaded Program Files\\cns*.*"
"FileBlockWhat_3"=dword:00050000
"FileBlockReport_3"=dword:00000001
"FileBlockRuleName_4"="禁止划词搜索"
"FileBlockProcess_4"="*"
"FileBlockWildcard_4"="**\\Program Files\\wsearch"
"FileBlockWhat_4"=dword:00050000
"FileBlockReport_4"=dword:00000001
"FileBlockRuleName_5"="禁止baidu"
"FileBlockProcess_5"="*"
"FileBlockWildcard_5"="**\\baidu"
"FileBlockWhat_5"=dword:00050000
"FileBlockReport_5"=dword:00000001
"FileBlockRuleName_6"="禁止360度搜"
"FileBlockProcess_6"="*"
"FileBlockWildcard_6"="**\\360so"
"FileBlockWhat_6"=dword:00050000
"FileBlockReport_6"=dword:00000001
"FileBlockRuleName_7"="禁止Infofo Bar"
"FileBlockProcess_7"="*"
"FileBlockWildcard_7"="**\\Infofo Bar"
"FileBlockWhat_7"=dword:00050000
"FileBlockReport_7"=dword:00000001
"FileBlockRuleName_8"="禁止IInfo"
"FileBlockProcess_8"="*"
"FileBlockWildcard_8"="**\\IInfo"
"FileBlockWhat_8"=dword:00050000
"FileBlockReport_8"=dword:00000001
"FileBlockRuleName_9"="禁止很棒小秘书"
"FileBlockProcess_9"="*"
"FileBlockWildcard_9"="**\\HDP"
"FileBlockWhat_9"=dword:00050000
"FileBlockReport_9"=dword:00000001
"FileBlockRuleName_10"="禁止很棒小秘书"
"FileBlockProcess_10"="*"
"FileBlockWildcard_10"="**\\henbangtemp"
"FileBlockWhat_10"=dword:00050000
"FileBlockReport_10"=dword:00000001
"FileBlockRuleName_11"="禁止青蛙娱乐"
"FileBlockProcess_11"="*"
"FileBlockWildcard_11"="**\\Qyule"
"FileBlockWhat_11"=dword:00050000
"FileBlockReport_11"=dword:00000001
"FileBlockRuleName_12"="禁止一搜"
"FileBlockProcess_12"="*"
"FileBlockWildcard_12"="**\\YiSou"
"FileBlockWhat_12"=dword:00050000
"FileBlockReport_12"=dword:00000001
"FileBlockRuleName_13"="禁止CNNIC"
"FileBlockProcess_13"="*"
"FileBlockWildcard_13"="**\\CNNIC"
"FileBlockWhat_13"=dword:00050000
"FileBlockReport_13"=dword:00000001
"FileBlockRuleName_14"="禁止CNNIC"
"FileBlockProcess_14"="*"
"FileBlockWildcard_14"="**\\cdn*.*"
"FileBlockWhat_14"=dword:00050000
"FileBlockReport_14"=dword:00000001
"FileBlockRuleName_15"="禁止阿里巴巴商机直通车"
"FileBlockProcess_15"="*"
"FileBlockWildcard_15"="**\\alitb*\\**"
"FileBlockWhat_15"=dword:00050000
"FileBlockReport_15"=dword:00000001
"FileBlockRuleName_16"="禁止雅虎助手"
"FileBlockProcess_16"="*"
"FileBlockWildcard_16"="**\\Assistant"
"FileBlockWhat_16"=dword:00050000
"FileBlockReport_16"=dword:00000001
"FileBlockRuleName_17"="禁止 修改创建删除 系统任何文件(重要)"
"FileBlockProcess_17"="*"
"FileBlockWildcard_17"="%windir%\\**\\*"
"FileBlockWhat_17"=dword:00150000
"FileBlockReport_17"=dword:00000001
"FileBlockRuleName_18"="禁止 修改创建删除 系统根目录任何文件(重要)"
"FileBlockProcess_18"="*"
"FileBlockWildcard_18"="%systemdrive%\\*"
"FileBlockWhat_18"=dword:00150000
"FileBlockReport_18"=dword:00000001

使用方法：

删除原有的咖啡默认访问保护规则，双击McAFee.reg运行，导入注册表后 访问保护规则如下
以下规则默认都是阻止的

禁止 修改创建删除 系统任何文件  %windir%\**\*
禁止 修改创建删除 系统根目录任何文件 %systemdrive%\*
上面2个规则在安装软件和升级病毒库的时候停用这2个规则.否则不能升级咖啡病毒库.

--------------------------------------------

禁止雅虎助手            **\Assistant
禁止阿里巴巴商机直通车  **\alitb*\**
禁止CNNIC               **\cdn*.*
禁止CNNIC               **\CNNIC
禁止一搜                **\YiSou
禁止青蛙娱乐            **\Qyule
禁止很棒小秘书          **\henbangtemp
禁止很棒小秘书          **\HDP
禁止IInfo               **\IInfo
禁止Infofo Bar          **\Infofo Bar
禁止360度搜             **\360so
禁止baidu               **\baidu
禁止划词搜索            **\Program Files\wsearch
禁止3721网络实名        %windir%\Downloaded Program Files\cns*.*
禁止网络猪              **\网络猪
禁止DUDU                **\dudu
免疫3721上网助手/中文邮 **\3721

--------------------------------------------------
端口阻挡规则
135 139 445
默认阻挡

[ 本帖最后由 depressedboy 于 2008-7-26 13:48 编辑 ]

无效的地址

斑竹呀更新一个地址巴

已经更新

偶用的也是这个!

看了看我的mcafee，10.0；原来也以为是8.0，后来给人家装时发现和自己的mcafee图标不一样