Comments on: Cleaning Up After a SQL Injection Attack, Part 2 http://www.jephens.com/2009/12/27/cleaning-up-after-a-sql-injection-attack-part-2/ Keeping Computers Happy Since 1997 Mon, 30 Jan 2012 05:38:19 +0000 hourly 1 http://wordpress.org/?v= By: Jeff Knapp http://www.jephens.com/2009/12/27/cleaning-up-after-a-sql-injection-attack-part-2/comment-page-1/#comment-2386 Jeff Knapp Sun, 06 Jun 2010 15:04:24 +0000 http://www.jephens.com/?p=268#comment-2386 It couldn't have been "beyond repair" if this fixed it! :-) (Glad it worked out.) It couldn’t have been “beyond repair” if this fixed it! :-)

(Glad it worked out.)

]]> By: Brad Gearon http://www.jephens.com/2009/12/27/cleaning-up-after-a-sql-injection-attack-part-2/comment-page-1/#comment-2334 Brad Gearon Wed, 02 Jun 2010 12:44:24 +0000 http://www.jephens.com/?p=268#comment-2334 Thanks a bunch for this. You saved us a load of time with a database that was infected beyond repair... Thanks a bunch for this. You saved us a load of time with a database that was infected beyond repair…

]]> By: Jeff Knapp http://www.jephens.com/2009/12/27/cleaning-up-after-a-sql-injection-attack-part-2/comment-page-1/#comment-1695 Jeff Knapp Thu, 25 Mar 2010 05:20:43 +0000 http://www.jephens.com/?p=268#comment-1695 You don't need the ASP query to run the code in the article. The code in the article uses a cursor to go thru EVERY non-numeric field in EVERY table of the database and tries to clean it up. After all, that's probably what the attacker did. You don’t need the ASP query to run the code in the article.

The code in the article uses a cursor to go thru EVERY non-numeric field in EVERY table of the database and tries to clean it up. After all, that’s probably what the attacker did.

]]> By: Shabana http://www.jephens.com/2009/12/27/cleaning-up-after-a-sql-injection-attack-part-2/comment-page-1/#comment-1683 Shabana Wed, 24 Mar 2010 01:26:46 +0000 http://www.jephens.com/?p=268#comment-1683 Hi there, A very good article you have there. I have the same infection for almost 4 days now and i still can't locate the source of it until i found your article. At the moment I'm a bit new in ASP and this website was done by the previous programmer. As you mentioned in the article, the virus only attacks the nText field. The query in ASP is a bit mixed up and would it be possible to find other ways instead of declaring a sql cursor? Regards, Shabana Hi there,

A very good article you have there. I have the same infection for almost 4 days now and i still can’t locate the source of it until i found your article. At the moment I’m a bit new in ASP and this website was done by the previous programmer. As you mentioned in the article, the virus only attacks the nText field. The query in ASP is a bit mixed up and would it be possible to find other ways instead of declaring a sql cursor?

Regards,
Shabana

]]>