<>作者:zzzevazzz 来自:http://www.ph4nt0m.org</P> 4 ?; W$ T! B5 x" j- e( `<>XP和2003下的netstat有-o选项,所以可以容易地实现fport。1 n- L( h. z( g
( z. [0 X! q% X& q5 M/ Nvbs脚本版: % H; O3 E* [* L- @Codz: 9 r! V* M/ a5 n 6 G& g2 j; y# C; C( Z R0 pwith new regexp % \+ G- i1 D( N( |
.pattern="(..Ps+S+s+S+s+[A-Z]*)s*([0-9]+)" 7 z/ S5 ?! l% j" u& Y .global=true 4 C" J8 u9 s |# r2 i6 A- W
set ms=.execute(createobject("wscript.shell").exec("netstat -ano").stdout.readall) - X. n6 f p7 R& }5 b5 l/ M7 ~# cend with # s# a, G% v. ^ w! q
for each ps in getobject("winmgmts:\.\rootcimv2:win32_process").instances_ & A/ R: ?" ^4 Y4 c
f=0 # T, j5 x. Z+ Z4 R1 \: U. m for each m in ms ' u3 }# H5 o, J6 M$ ] if m.submatches(1)=ps.handle then . u$ m* Q2 U) ]* a$ W
if f=0 then f=1:wscript.echo ">"&ps.handle&vbtab&ps.name&vbtab&ps.executablepath 4 X: V, f7 M- w, C wscript.echo " "&m.submatches(0) ; Q8 N2 D' [: t: A' W* H8 M
end if * X5 X0 @8 N# D% S* l' N( \ next ) u% s4 m# ^* M+ W( Y6 Gnext * W4 a) i- p2 C' d& V1 e3 v/ q' {, r# X8 P/ r" v$ B
# {' h! Q! x; V; l
照例给出echo版,方便在远程shell中使用。* s1 a) D7 J) |6 M) T
@echo with new regexp:.pattern="(..P\s+\S+\s+\S+\s+[A-Z]*)\s*([0-9]+)":.global=true>fp.vbs 3 W( S9 J. \5 u$ x@echo set ms=.execute(createobject("wscript.shell").exec("netstat -ano").stdout.readall)>>fp.vbs: }3 n3 y" s$ Y( O7 _
@echo end with:for each ps in getobject("winmgmts:\\.\root\cimv2:win32_process").instances_>>fp.vbs- D- [" t1 e8 ]* l* k, E# ^7 R
@echo f=0:for each m in ms:if m.submatches(1)=ps.handle then _>>fp.vbs9 Y1 b, b+ c( l% y4 e
@echo if f=0 then f=1:wscript.echo ">"^&ps.handle^&vbtab^&ps.name^&vbtab^&ps.executablepath:end if:_>>fp.vbs/ I4 [" ?0 m% v: \
@echo wscript.echo " "^&m.submatches(0):end if:next:next>>fp.vbs 6 h7 v. @) o: r, L) U@cscript //nologo fp.vbs&del fp.vbs</P>
IP卡
狗仔卡
发表于 2004-11-5 22:57
>作者:zzzevazzz 来自:http://www.ph4nt0m.org</P>
转播
淘帖
分享
收藏
支持
反对
微信
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡
