又过一年了,又到了写年终总结的时候。回忆起2009年年头服务器被注入时的事情,为了删除被插入的字符串,在当时记下了这样一段SQL代码。
/***********定义要去除的字符,请注意,肯定不止一条,我的服务器就查到许多不同的代码************/
declare @delStr nvarchar(500)
set @delStr='<script src=http://3b3.org/c.js></script>'
--set @delStr='<script src=http://3b3.org/c.js></script>'
/****************************************/
declare @delStr nvarchar(500)
set @delStr='<script src=http://3b3.org/c.js></script>'
--set @delStr='<script src=http://3b3.org/c.js></script>'
/****************************************/
/**********以下为操作实体************/
set nocount on
set nocount on
declare @tableName nvarchar(100),@columnName nvarchar(100),@tbID int,@iRow int,@iResult int
declare @sql nvarchar(2000)
declare @sql nvarchar(2000)
set @iResult=0
declare cur cursor for
select name,id from sysobjects where xtype='U'
declare cur cursor for
select name,id from sysobjects where xtype='U'
open cur
fetch next from cur into @tableName,@tbID
fetch next from cur into @tableName,@tbID
while @@fetch_status=0
begin
declare cur1 cursor for
--xtype in (231,167,239,175, 35, 99) 为char,varchar,nchar,nvarchar, text, ntext类型
select name from syscolumns where xtype in (231,167,239,175, 35, 99) and id=@tbID
open cur1
fetch next from cur1 into @columnName
while @@fetch_status=0
begin
--set @sql='update [' + @tableName + '] set ['+ @columnName +']= replace(rtrim(ltrim(cast(['+@columnName+'] as varchar(8000)))),'''+@delStr+''','''') where datalength([' + @columnName + ']) < 8000 and ['+@columnName+'] like ''%'+@delStr+'%'''
set @sql='update [' + @tableName + '] set ['+ @columnName +']= SUBSTRING([' + @columnName + '],' + '1, PATINDEX( ''%' + @delStr + '%'', [' + @columnName + '])-1) + ' + 'SUBSTRING([' + @columnName + '], PATINDEX( ''%' + @delStr + '%'', [' + @columnName + ']) + ' + 'len(''' + @delStr + ''') , datalength([' + @columnName + '])) where ['+@columnName+'] like ''%'+@delStr+'%'''
begin
declare cur1 cursor for
--xtype in (231,167,239,175, 35, 99) 为char,varchar,nchar,nvarchar, text, ntext类型
select name from syscolumns where xtype in (231,167,239,175, 35, 99) and id=@tbID
open cur1
fetch next from cur1 into @columnName
while @@fetch_status=0
begin
--set @sql='update [' + @tableName + '] set ['+ @columnName +']= replace(rtrim(ltrim(cast(['+@columnName+'] as varchar(8000)))),'''+@delStr+''','''') where datalength([' + @columnName + ']) < 8000 and ['+@columnName+'] like ''%'+@delStr+'%'''
set @sql='update [' + @tableName + '] set ['+ @columnName +']= SUBSTRING([' + @columnName + '],' + '1, PATINDEX( ''%' + @delStr + '%'', [' + @columnName + '])-1) + ' + 'SUBSTRING([' + @columnName + '], PATINDEX( ''%' + @delStr + '%'', [' + @columnName + ']) + ' + 'len(''' + @delStr + ''') , datalength([' + @columnName + '])) where ['+@columnName+'] like ''%'+@delStr+'%'''
exec sp_executesql @sql
set @iRow=@@rowcount
set @iResult=@iResult+@iRow
if @iRow>0
begin
print '表: '+@tableName+',列:'+@columnName+'被更新'+convert(varchar(10),@iRow)+'条记录;'
end
fetch next from cur1 into @columnName
set @iRow=@@rowcount
set @iResult=@iResult+@iRow
if @iRow>0
begin
print '表: '+@tableName+',列:'+@columnName+'被更新'+convert(varchar(10),@iRow)+'条记录;'
end
fetch next from cur1 into @columnName
end
close cur1
deallocate cur1
fetch next from cur into @tableName,@tbID
end
print '数据库共有'+convert(varchar(10),@iResult)+'条记录被更新!!!'
close cur
deallocate cur
set nocount off
/*****以上为操作实体******/
deallocate cur
set nocount off
/*****以上为操作实体******/
转载于:https://blog.51cto.com/guailele/355160
752
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
