设为首页收藏本站

 找回密码
 注册
搜索
E星期五论坛»论坛 咖啡屋 灌水乐园 [转帖]微软一个罕为人知的无敌命令
返回列表 发新帖
查看: 331|回复: 1

[转帖]微软一个罕为人知的无敌命令

[复制链接]
60度
发表于 2006-6-8 15:30:50 | 显示全部楼层 |阅读模式
<span style="FONT-SIZE: 9pt;"><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">问</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">:</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">怎么才能关掉一个用任务管理器关不了的进程?我前段时间发现我的机子里多了一个进程,只要开机就在,我用任务管理器却怎么关也关不了</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">
                        </span></span><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;"><br/><br/></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">答</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">1:</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">杀进程很容易,随便找个工具都行。比如</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">IceSword</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">。关键是找到这个进程的启动方式,不然下次重启它又出来了。顺便教大家一招狠的。其实用</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">Windows</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">自带的工具就能杀大部分进程:</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">
                        </span></span><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;"><br/><br/><font face="Verdana"><font size="2"><span class="tpccontent1">c:\&gt;ntsd -c q -p PID </span><br/><br/></font></font></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">只有</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">System</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">、</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">SMSS.EXE</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">和</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">CSRSS.EXE</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">不能杀。前两个是纯内核态的,最后那个是</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">Win32</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">子系统,</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">ntsd</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">本身需要它。</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">ntsd</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">从</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">2000</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">开始就是系统自带的用户态调试工具。被调试器附着</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">(attach)</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">的进程会随调试器一起退出,所以可以用来在命令行下终止进程。使用</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">ntsd</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">自动就获得了</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">debug</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">权限,从而能杀掉大部分的进程。</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">ntsd</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">会新开一个调试窗口,本来在纯命令行下无法控制,但如果只是简单的命令,比如退出</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">(q)</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">,用</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">-c</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">参数从命令行传递就行了。</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">NtsdNtsd </span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">按照惯例也向软件开发人员提供。只有系统开发人员使用此命令。有关详细信息,请参阅</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;"> NTSD </span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">中所附的帮助文件。用法</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">:</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">开个</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">cmd.exe</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">窗口,输入:</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">
                        </span></span><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;"><br/><br/><font size="2"><font face="Verdana"><span class="tpccontent1">ntsd -c q -p PID </span><br/><br/></font></font></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">把最后那个</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">ID</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">,改成你要终止的进程的</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">ID</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">。如果你不知道进程的</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">ID</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">,任务管理器-进程选项卡-</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">&gt;</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">查看-</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">&gt;</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">选择列-</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">&gt;</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">勾上</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">"ID</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">(进程标识符)</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">"</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">,然后就能看见了。</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">
                        </span></span><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;"><br/><br/></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">答</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">2</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">:</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">xp</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">下还有两个好东东</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">tasklist</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">和</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">tskill</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">。</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">tasklist</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">能列出所有的进程,和相应的信息。</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">tskill</span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">能查杀进程,语法很简单:</span></span><span class="tpccontent1"><span lang="EN-US" style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Verdana;">tskill </span></span><span class="tpccontent1"><span style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 宋体; mso-ascii-font-family: Verdana; mso-hansi-font-family: Verdana;">程序名!!</span></span>
                <p></p><center></center><p><font color="#ff0033">-------------------<br/></font>的确超强!</p></span>
回复

使用道具 举报

lee1203
发表于 2006-6-30 01:55:55 | 显示全部楼层
好强
回复

使用道具 举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 注册

本版积分规则

手机版|小黑屋|E星期五

GMT+8, 2025-7-27 18:42 , Processed in 0.068556 second(s), 16 queries .

Powered by Discuz! X3.5

© 2001-2025 Discuz! Team.

快速回复 返回顶部 返回列表