当计算机中出现多个ESTABLISHED状态的连接时,如何利用端口查看目标计算机的ip地址? 笔记本断网之后的端口状态有established,请问是木马...
\u5982\u4f55\u4f7f\u7528\u547d\u4ee4\u67e5\u770b\u5f53\u524d\u6d3b\u52a8\u7684TCP\u8fde\u63a5\u3001\u8ba1\u7b97\u673a\u4fa6\u542c\u7684\u7aef\u53e3\u3001\u4ee5\u592a\u7f51\u7edf\u8ba1\u4fe1\u606f\u3001IP\u8def\u7531\u8868\u7b49\u4fe1\u606f\u4f60\u597d\uff01
DOS\u547d\u4ee4\uff1anetstat
netstat \u4e3b\u673a\uff1a\u67e5\u770b\u4e3b\u673a\u5f53\u524d\u7684tcp/ip\u8fde\u63a5\u72b6\u6001\uff0c\u5982\u7aef\u53e3\u7684\u72b6\u6001\u3002
\u4f8b\u5b50\uff1anetstat 192.168.1.1
\u8fd4\u56de\u503c\u6709 \u534f\u8bae\u3001\u672c\u5730\u7aef\u53e3\u5730\u5740\u3001\u7aef\u53e3\u5730\u5740\u3001\u7aef\u53e3\u72b6\u6001
\u8f93\u5165\uff1anetstat \uff1f
NETSTAT [-a] [-b] [-e] [-n] [-o] [-p proto] [-r] [-s] [-v] [interval]
-a \u663e\u793a\u6240\u6709\u8fde\u63a5\u548c\u76d1\u542c\u7aef\u53e3\u3002
-b \u663e\u793a\u5305\u542b\u4e8e\u521b\u5efa\u6bcf\u4e2a\u8fde\u63a5\u6216\u76d1\u542c\u7aef\u53e3\u7684
\u53ef\u6267\u884c\u7ec4\u4ef6\u3002\u5728\u67d0\u4e9b\u60c5\u51b5\u4e0b\u5df2\u77e5\u53ef\u6267\u884c\u7ec4\u4ef6
\u62e5\u6709\u591a\u4e2a\u72ec\u7acb\u7ec4\u4ef6\uff0c\u5e76\u4e14\u5728\u8fd9\u4e9b\u60c5\u51b5\u4e0b
\u5305\u542b\u4e8e\u521b\u5efa\u8fde\u63a5\u6216\u76d1\u542c\u7aef\u53e3\u7684\u7ec4\u4ef6\u5e8f\u5217
\u88ab\u663e\u793a\u3002\u8fd9\u79cd\u60c5\u51b5\u4e0b\uff0c\u53ef\u6267\u884c\u7ec4\u4ef6\u540d
\u5728\u5e95\u90e8\u7684 [] \u4e2d\uff0c\u9876\u90e8\u662f\u5176\u8c03\u7528\u7684\u7ec4\u4ef6\uff0c
\u7b49\u7b49\uff0c\u76f4\u5230 TCP/IP \u90e8\u5206\u3002\u6ce8\u610f\u6b64\u9009\u9879
\u53ef\u80fd\u9700\u8981\u5f88\u957f\u65f6\u95f4\uff0c\u5982\u679c\u6ca1\u6709\u8db3\u591f\u6743\u9650
\u53ef\u80fd\u5931\u8d25\u3002
-e \u663e\u793a\u4ee5\u592a\u7f51\u7edf\u8ba1\u4fe1\u606f\u3002\u6b64\u9009\u9879\u53ef\u4ee5\u4e0e -s
\u9009\u9879\u7ec4\u5408\u4f7f\u7528\u3002
-n \u4ee5\u6570\u5b57\u5f62\u5f0f\u663e\u793a\u5730\u5740\u548c\u7aef\u53e3\u53f7\u3002
-o \u663e\u793a\u4e0e\u6bcf\u4e2a\u8fde\u63a5\u76f8\u5173\u7684\u6240\u5c5e\u8fdb\u7a0b ID\u3002
-p proto \u663e\u793a proto \u6307\u5b9a\u7684\u534f\u8bae\u7684\u8fde\u63a5\uff1bproto \u53ef\u4ee5\u662f
\u4e0b\u5217\u534f\u8bae\u4e4b\u4e00: TCP\u3001UDP\u3001TCPv6 \u6216 UDPv6\u3002
\u5982\u679c\u4e0e -s \u9009\u9879\u4e00\u8d77\u4f7f\u7528\u4ee5\u663e\u793a\u6309\u534f\u8bae\u7edf\u8ba1\u4fe1\u606f\uff0cproto \u53ef\u4ee5\u662f\u4e0b\u5217\u534f\u8bae
\u4e4b\u4e00:
IP\u3001IPv6\u3001ICMP\u3001ICMPv6\u3001TCP\u3001TCPv6\u3001UDP \u6216 UDPv6\u3002
-r \u663e\u793a\u8def\u7531\u8868\u3002
-s \u663e\u793a\u6309\u534f\u8bae\u7edf\u8ba1\u4fe1\u606f\u3002\u9ed8\u8ba4\u5730\uff0c\u663e\u793a IP\u3001
IPv6\u3001ICMP\u3001ICMPv6\u3001TCP\u3001TCPv6\u3001UDP \u548c UDPv6 \u7684\u7edf\u8ba1\u4fe1\u606f\uff1b
-p \u9009\u9879\u7528\u4e8e\u6307\u5b9a\u9ed8\u8ba4\u60c5\u51b5\u7684\u5b50\u96c6\u3002
-v \u4e0e -b \u9009\u9879\u4e00\u8d77\u4f7f\u7528\u65f6\u5c06\u663e\u793a\u5305\u542b\u4e8e
\u4e3a\u6240\u6709\u53ef\u6267\u884c\u7ec4\u4ef6\u521b\u5efa\u8fde\u63a5\u6216\u76d1\u542c\u7aef\u53e3\u7684
\u7ec4\u4ef6\u3002
interval \u91cd\u65b0\u663e\u793a\u9009\u5b9a\u7edf\u8ba1\u4fe1\u606f\uff0c\u6bcf\u6b21\u663e\u793a\u4e4b\u95f4
\u6682\u505c\u65f6\u95f4\u95f4\u9694(\u4ee5\u79d2\u8ba1)\u3002\u6309 CTRL+C \u505c\u6b62\u91cd\u65b0
\u663e\u793a\u7edf\u8ba1\u4fe1\u606f\u3002\u5982\u679c\u7701\u7565\uff0cnetstat \u663e\u793a\u5f53\u524d
\u914d\u7f6e\u4fe1\u606f(\u53ea\u663e\u793a\u4e00\u6b21)
\u5e0c\u671b\u6211\u7684\u56de\u7b54\u5bf9\u4f60\u6709\u6240\u5e2e\u52a9~
\u4f60\u597d\uff1a
\u8fd9\u6837\u7684\u60c5\u51b5\u5f88\u6709\u53ef\u80fd\u662f\u60a8\u7684\u7535\u8111\u611f\u67d3\u4e86arp\u75c5\u6bd2\u5bfc\u81f4\u7684\uff0c\u5efa\u8bae\u60a8\u53ef\u4ee5\u91cd\u542f\u7535\u8111\u6309F8\u952e\u9009\u62e9\u8fdb\u5165\u5b89\u5168\u6a21\u5f0f\uff0c\u7136\u540e\u5728\u5b89\u5168\u6a21\u5f0f\u4e2d\u4f7f\u7528\u6700\u65b0\u7248\u7684\u817e\u8baf\u7535\u8111\u7ba1\u5bb6\u7684\u6740\u6bd2\u529f\u80fd\u5bf9\u60a8\u7684\u7535\u8111\u8fdb\u884c\u5168\u9762\u7684\u6740\u6bd2\uff0c\u6740\u5b8c\u6bd2\u4ee5\u540e\u91cd\u542f\u7535\u8111\uff0c\u7136\u540e\u5c31\u53ef\u4ee5\u6062\u590d\u6b63\u5e38\u4e86\uff0c\u60a8\u53ef\u4ee5\u70b9\u51fb\u8fd9\u91cc\u4e0b\u8f7d\u6700\u65b0\u7248\u7684\u817e\u8baf\u7535\u8111\u7ba1\u5bb6\uff1a\u817e\u8baf\u7535\u8111\u7ba1\u5bb6\u4e0b\u8f7d
\u817e\u8baf\u7535\u8111\u7ba1\u5bb6\u4f01\u4e1a\u5e73\u53f0\uff1ahttp://zhidao.baidu.com/c/guanjia/
绛旓細ESTABLISHED鐨勬剰鎬濇槸寤虹珛杩炴帴銆傝〃绀轰袱鍙版満鍣ㄦ鍦ㄩ氫俊銆俆IME_WAIT鐨勬剰鎬濇槸缁撴潫浜嗚繖娆¤繛鎺ャ傝鏄21绔彛鏇剧粡鏈杩囪闂紝浣嗚闂粨鏉熶簡銆係YN_SENT鐘舵佽〃绀鸿姹傝繛鎺ワ紝褰撲綘瑕佽闂叾瀹冪殑璁$畻鏈鐨勬湇鍔℃椂棣栧厛瑕佸彂涓悓姝ヤ俊鍙风粰璇ョ鍙o紝姝ゆ椂鐘舵佷负SYN_SENT锛屽鏋滆繛鎺ユ垚鍔熶簡灏卞彉涓篍STABLISHED锛屾鏃禨YN_SENT鐘舵侀潪甯哥煭鏆傘備絾濡...
绛旓細鎰忔濇槸ip涓218.4.43.144鐨鐢佃剳鍦2925瀵逛綘鐨勭數鑴戝缓绔嬩簡杩炴帴.
绛旓細濡傛灉璁$畻鏈鐨勭鍙f墦寮澶锛岃岀鐞嗚呬笉鐭ラ亾锛岄偅涔堬紝鏈変袱绉嶆儏鍐碉細涓绉嶆槸鎻愪緵浜嗘湇鍔¤岀鐞嗚呮病鏈夋敞鎰忥紝姣斿瀹夎IIS鐨勬椂鍊欙紝杞欢灏变細鑷姩澧炲姞寰堝鏈嶅姟锛岃岀鐞嗗憳鍙兘娌℃湁娉ㄦ剰鍒帮紱涓绉嶆槸鏈嶅姟鍣ㄨ鏀诲嚮鑰呭畨瑁呮湪椹紝閫氳繃鐗规畩鐨勭鍙h繘琛岄氫俊銆傝繖涓ょ鎯呭喌閮芥槸寰堝嵄闄╃殑锛岃鍒板簳锛屽氨鏄鐞嗗憳涓嶄簡瑙f湇鍔″櫒鎻愪緵鐨勬湇鍔★紝...
