netstat an命令详解_用netstat -an命令得到以下数据,是否被监控?
协议 本地地址 外部地址 状态
TCP 0.0.0.0:135 0.0.0.0:0 LISTENING
TCP 0.0.0.0:445 0.0.0.0:0 LISTENING
TCP 0.0.0.0:2869 0.0.0.0:0 LISTENING
TCP 0.0.0.0:5357 0.0.0.0:0 LISTENING
TCP 0.0.0.0:10105 0.0.0.0:0 LISTENING
TCP 0.0.0.0:49152 0.0.0.0:0 LISTENING
TCP 0.0.0.0:49153 0.0.0.0:0 LISTENING
TCP 0.0.0.0:49154 0.0.0.0:0 LISTENING
TCP 0.0.0.0:49155 0.0.0.0:0 LISTENING
TCP 0.0.0.0:49157 0.0.0.0:0 LISTENING
TCP 0.0.0.0:49158 0.0.0.0:0 LISTENING
TCP 127.0.0.1:4300 0.0.0.0:0 LISTENING
TCP 127.0.0.1:4301 0.0.0.0:0 LISTENING
TCP 127.0.0.1:4302 0.0.0.0:0 LISTENING
TCP 127.0.0.1:4303 0.0.0.0:0 LISTENING
TCP 192.168.0.105:139 0.0.0.0:0 LISTENING
TCP 192.168.0.105:49490 27.221.81.28:80 CLOSE_WAIT
TCP 192.168.0.105:50083 113.200.90.150:80 CLOSE_WAIT
TCP 192.168.0.105:50478 112.65.70.30:443 ESTABLISHED
TCP 192.168.0.105:50489 184.26.240.120:443 ESTABLISHED
TCP 192.168.0.105:50494 203.208.48.58:443 ESTABLISHED
TCP 192.168.0.105:50495 101.199.103.239:443 ESTABLISHED
TCP 192.168.0.105:50564 123.138.42.33:443 TIME_WAIT
TCP 192.168.0.105:50644 123.138.42.32:443 TIME_WAIT
TCP 192.168.0.105:50690 123.138.42.48:443 TIME_WAIT
TCP 192.168.0.105:51888 125.39.242.238:80 CLOSE_WAIT
TCP 192.168.0.105:51899 125.39.242.238:80 CLOSE_WAIT
TCP 192.168.0.105:51900 125.39.242.238:80 CLOSE_WAIT
TCP 192.168.0.105:51906 125.39.242.238:80 CLOSE_WAIT
TCP 192.168.0.105:51907 125.39.242.238:80 CLOSE_WAIT
TCP 192.168.0.105:51908 125.39.242.238:80 CLOSE_WAIT
TCP 192.168.0.105:51909 125.39.242.238:80 CLOSE_WAIT
TCP 192.168.0.105:51972 182.118.59.195:80 ESTABLISHED
TCP 192.168.0.105:52124 111.221.29.169:443 ESTABLISHED
TCP 192.168.0.105:52377 111.206.79.230:80 ESTABLISHED
TCP 192.168.0.105:65125 111.161.52.153:443 ESTABLISHED
TCP [::]:135 [::]:0 LISTENING
TCP [::]:445 [::]:0 LISTENING
TCP [::]:2869 [::]:0 LISTENING
TCP [::]:5357 [::]:0 LISTENING
TCP [::]:49152 [::]:0 LISTENING
TCP [::]:49153 [::]:0 LISTENING
TCP [::]:49154 [::]:0 LISTENING
TCP [::]:49155 [::]:0 LISTENING
TCP [::]:49157 [::]:0 LISTENING
TCP [::]:49158 [::]:0 LISTENING
TCP [::1]:49156 [::]:0 LISTENING
UDP 0.0.0.0:500 *:*
UDP 0.0.0.0:3600 *:*
UDP [::]:3702 *:*
UDP [::]:3702 *:*
UDP [::]:4500 *:*
UDP [::]:5355 *:*
UDP [::]:51118 *:*
UDP [::]:52667 *:*
UDP [::]:60179 *:*
UDP [::1]:1900 *:*
UDP [::1]:59907 *:*
UDP [fe80::dca9:479e:b150:a0f5%3]:1900 *:*
UDP [fe80::dca9:479e:b150:a0f5%3]:59906 *:*
最佳答案
你的网络的确有多个端口不是系统缺省打开的
你这么看是无法判定的
你要用
netstat -na -o
主要看状态是 LISTENING的
然后看后面的PID,在任务管理器查看是什么进程开启的该监听端口
追问:
请帮我看下,这个是按你说的netstat -na -o命令,具体是什么情况? 协议 本地地址 外部地址 状态 PID TCP 0.0.0.0:135 0.0.0.0:0 LISTENING 736 TCP 0.0.0.0:445 0.0.0.0:0 LISTENING 4 TCP 0.0.0.0:5357 0.0.0.0:0 LISTENING 4 TCP 0.0.0.0:10105 0.0.0.0:0 LISTENING 10156 TCP 0.0.0.0:49152 0.0.0.0:0 LISTENING 568 TCP 0.0.0.0:49153 0.0.0.0:0 LISTENING 880 TCP 0.0.0.0:49154 0.0.0.0:0 LISTENING 948 TCP 0.0.0.0:49155 0.0.0.0:0 LISTENING 1344 TCP 0.0.0.0:49157 0.0.0.0:0 LISTENING 616 TCP 0.0.0.0:49158 0.0.0.0:0 LISTENING 624 TCP 127.0.0.1:4300 0.0.0.0:0 LISTENING 4852 TCP 127.0.0.1:4301 0.0.0.0:0 LISTENING 4852 TCP 192.168.0.105:139 0.0.0.0:0 LISTENING 4 TCP 192.168.0.105:51873 182.118.59.173:80 ESTABLISHED 8804 TCP 192.168.0.105:58184 112.90.77.148:80 CLOSE_WAIT 4852 TCP 192.168.0.105:64653 111.161.52.196:80 CLOSE_WAIT 4852 TCP 192.168.0.105:64703 111.206.81.75:80 ESTABLISHED 8804 TCP 192.168.0.105:64839 125.39.213.111:443 TIME_WAIT 0 TCP 192.168.0.105:64961 27.115.124.159:80 TIME_WAIT 0 TCP 192.168.0.105:64970 119.188.65.123:80 TIME_WAIT 0 TCP 192.168.0.105:64971 182.118.31.43:80 TIME_WAIT 0 TCP 192.168.0.105:65004 220.194.205.55:80 TIME_WAIT 0 TCP 192.168.0.105:65006 204.79.197.200:443 ESTABLISHED 11932 TCP 192.168.0.105:65008 202.89.233.104:443 ESTABLISHED 11932 TCP 192.168.0.105:65014 112.65.70.30:443 ESTABLISHED 1408 TCP 192.168.0.105:65017 122.188.141.195:8090 CLOSE_WAIT 10156 TCP 192.168.0.105:65018 42.236.37.77:80 TIME_WAIT 0 TCP [::]:135 [::]:0 LISTENING 736 TCP [::]:445 [::]:0 LISTENING 4 TCP [::]:5357 [::]:0 LISTENING 4 TCP [::]:49152 [::]:0 LISTENING 568 TCP [::]:49153 [::]:0 LISTENING 880 TCP [::]:49154 [::]:0 LISTENING 948 TCP [::]:49155 [::]:0 LISTENING 1344 TCP [::]:49157 [::]:0 LISTENING 616 TCP [::]:49158 [::]:0 LISTENING 624 TCP [::1]:49156 [::]:0 LISTENING 1760
你要看下你的任务管理器中,PID为10156及568等进程的名称这个肯定都不是系统自带的
其他回答
其它网友回答:
这是查看本机端口监听情况,一般用来查看有那些端口是开着的,被谁占用了
