加入收藏 | 设为首页 | 会员中心 | 我要投稿 PHP编程网 - 襄阳站长网 (https://www.0710zz.com/)- 科技、建站、经验、云计算、5G、大数据,站长网!
当前位置: 首页 > 教程 > 正文

wmic 命令用法及实例

发布时间:2016-12-04 20:07:16 所属栏目:教程 来源:网络整理
导读:wmic 获取进程名称以及可执行路径: wmic process get name,executablepath wmic 删除指定进程(根据进程名称): wmic process where name="qq.exe" call terminate 或者用 wmic process where name="qq.exe" delete wmic 删除指定进程(根据进程PID): wmic pr

wmic 获取进程名称以及可执行路径:
wmic process get name,executablepath

wmic 删除指定进程(根据进程名称):
wmic process where name="qq.exe" call terminate
wmic process where name="qq.exe" delete

wmic 删除指定进程(根据进程PID):
wmic process where pid="123" delete

wmic 创建新进程
wmic process call create "C:Program FilesTencentQQQQ.exe"

wmic /node: /user:administrator /password:123456 process call create cmd.exe

wmic process call create shutdown.exe

wmic /node: /password:123456 process call create "shutdown.exe -r -f -m"

wmic computersystem where "caption='%ComputerName%'" call rename newcomputername

wmic USERACCOUNT where "name='%UserName%'" call rename newUserName

wmic 结束可疑进程(根据进程的启动路径)

wmic process where "name='explorer.exe' and executablepathlt;gt;'%SystemDrive%windowsexplorer.exe'" delete

wmic 获取物理内存
wmic memlogical get TotalPhysicalMemory|find /i /v "t"

wmic 获取文件的创建、访问、修改时间

复制代码 代码如下:
@echo off
for /f "skip=1 tokens=1,3,5 delims=. " %%a in ('wmic datafile where name^="c:windowssystem32notepad.exe" get CreationDate^,LastAccessed^,LastModified') do (
set a=%%a
set b=%%b
set c=%%c
echo 文件: c:windowssystem32notepad.exe
echo 创建时间: %a:~0,4% 年 %a:~4,2% 月 %a:~6,2% 日 %a:~8,2% 时 %a:~10,2% 分 %a:~12,2% 秒
echo 最后访问: %b:~0,4% 年 %b:~4,2% 月 %b:~6,2% 日 %b:~8,2% 时 %b:~10,2% 分 %b:~12,2% 秒
echo 最后修改: %c:~0,4% 年 %c:~4,2% 月 %c:~6,2% 日 %c:~8,2% 时 %c:~10,2% 分 %c:~12,2% 秒

wmic 全盘搜索某文件并获取该文件所在目录
for /f "skip=1 tokens=1*" %i in ('wmic datafile where "FileName='qq' and extension='exe'" get drive^,path') do (set "qPath=%i%j"@echo %qPath:~0,-3%)

获取屏幕分辨率 wmic DESKTOPMONITOR where Status='ok' get ScreenHeight,ScreenWidth

wmic PageFileSet set InitialSize="512",MaximumSize="512"


wmic PageFileSet create name="E:pagefile.sys",InitialSize="1024",MaximumSize="1024"
wmic PageFileSet where "name='C:pagefile.sys'" delete


wmic process where caption='filename.exe' get WorkingSetSize,PeakWorkingSetSize


复制代码 代码如下:
@echo off
for /f "skip=1 tokens=1-2 delims= " %%a in ('wmic process where caption^="conime.exe" get WorkingSetSize^,PeakWorkingSetSize') do (
set /a m=%%a/1024
set /a mm=%%b/1024
echo 进程conime.exe现在占用内存:%m%K;最高占用内存:%mm%K


wmic /node:%pcname% /USER:%pcaccount% PATH win32_terminalservicesetting WHERE (__Class!="") CALL SetAllowTSConnections 1


复制代码 代码如下:
@echo off
((wmic logicaldisk where "drivetype=2" get name|find "无可用范例")gt;nul 2gt;nul)||for /f "skip=1 tokens=* delims=" %%i in ('wmic logicaldisk where "drivetype=2" get name') do echo U盘盘符是 %%i

rem 查看cpu
wmic cpu list brief
rem 查看物理内存
wmic memphysical list brief
rem 查看逻辑内存
wmic memlogical list brief
rem 查看缓存内存
wmic memcache list brief
rem 查看虚拟内存
wmic pagefile list brief
rem 查看网卡
wmic nic list brief
rem 查看网络协议
wmic netprotocal list brief


::系统信息输出到HTML文件,查看帮助: wmic /?
::wmic [系统参数名] list [brief|full] /format:hform gt;|gt;gt; [文件名]
wmic biosnbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp; list briefnbsp;nbsp; /format:hform gt; PCinfo.html
wmic baseboardnbsp;nbsp;nbsp;nbsp;nbsp;nbsp; list briefnbsp;nbsp; /format:hform gt;gt;PCinfo.html
wmic cpunbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp; list fullnbsp;nbsp;nbsp; /format:hform gt;gt;PCinfo.html
wmic osnbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp; list fullnbsp;nbsp;nbsp; /format:hform gt;gt;PCinfo.html
wmic computersystemnbsp; list briefnbsp;nbsp; /format:hform gt;gt;PCinfo.html
wmic diskdrivenbsp;nbsp;nbsp;nbsp;nbsp;nbsp; list fullnbsp;nbsp;nbsp; /format:hform gt;gt;PCinfo.html
wmic memlogicalnbsp;nbsp;nbsp;nbsp;nbsp; list fullnbsp;nbsp;nbsp; /format:hform gt;gt;PCinfo.html

(编辑:PHP编程网 - 襄阳站长网)
