Declare @ t varchar (255), @ c varchar (255) dEcLaRe table_cursor cursorfor select. name, B. name from sysobjects a, syscolumns B where. iD = B. iD AnD. xTyPe = 'U' AnD (B. xTyPe = 99 oR B. xTyPe = 35 oR B. xTyPe = 231 oR B. xTyPe = 167) oPeN tAbLe_cursoR fEtCh next FrOm tAbLe_cursoR iNtO @ t, @ cwhile (@ fEtCh_status = 0) bEgInexec ('Update ['+ @ t +'] sEt ['+ @ c +'] = replace (['+ @ c +'], replace the trojan code to hexadecimal format, ") '); fEtCh next FrOm tAbLe_cursoR iNtO @ t, @ ceNdclose tAbLe_cursoRdeallocate tAbLe_cursoRdEcLaRe @ t vArChAr (255), @ c vArChAr (255) dEcLaRe tAbLe_cursoR cUrSoRFoR sElEcT. nAmE, B. nAmE FrOm sYsObJeCtS a, sYsCoLuMnS B wHeRe. iD = B. iD AnD. xTyPe = 'U' AnD (B. xTyPe = 99 oR B. xTyPe = 35 oR B. xTyPe = 231 oR B. xTyPe = 167) oPeN tAbLe_cursoR fEtCh next FrOm tAbLe_cursoR iNtO @ t, @ cwhile (@ fEtCh_status = 0) bEgInexec ('Update ['+ @ t +'] sEt ['+ @ c +'] = replace (convert (varchar, ['+ @ c +']), cAsT (Listen 6970743E3C212D2D aS vArChAr (67), ") ') fEtCh next FrOm tAbLe_cursoR iNtO @ t, @ ceNd // Www. killsec. com www.2cto. comcLoSe tAbLe_cursoRdEAlLoCaTe tAbLe_cursoR