MSSQL SERVER2000 Security Configuration Remove all dangerous extensions

The MSSQL SERVER2000 Security Configuration removes the SQL procedure with security issues. More comprehensive. Everything for safety! Delete the call shell, registry, COM component's corrupted permissions

MSSQL SERVER2000 Security Configuration

Remove the SQL procedure with security issues. More comprehensive. Everything for safety!

Delete the call shell, registry, COM component's corrupted permissions

MS SQL SERVER2000

Log in to Query Analyzer with System account

Run the following script:

Use master

exec sp_dropextendedproc ' xp_cmdshell '

exec sp_dropextendedproc ' xp_enumgroups '

exec sp_dropextendedproc ' xp_loginconfig '

exec sp_dropextendedproc ' xp_enumerrorlogs '

exec sp_dropextendedproc ' xp_getfiledetails '

exec sp_dropextendedproc ' sp_OACreate '

exec sp_dropextendedproc ' sp_OADestroy '

exec sp_dropextendedproc ' sp_OAGetErrorInfo '

exec sp_dropextendedproc ' sp_OAGetProperty '

exec sp_dropextendedproc ' sp_OAMethod '

exec sp_dropextendedproc ' sp_OASetProperty '

exec sp_dropextendedproc ' sp_oastop '

exec sp_dropextendedproc ' xp_regaddmultistring '

exec sp_dropextendedproc ' Xp_regdeletekey '

exec sp_dropextendedproc ' Xp_regdeletevalue '

exec sp_dropextendedproc ' xp_regenumvalues '

exec sp_dropextendedproc ' xp_regremovemultistring '

exec sp_dropextendedproc ' xp_regwrite '

drop procedure Sp_makewebtask

Go

Remove all dangerous extensions:

exec sp_dropextendedproc ' xp_cmdshell ' [will not be able to connect to the database remotely after this extension is removed]

The following 3 stored procedures are used when SQL Server restores a backup, not necessary do not delete

#exec sp_dropextendedproc ' xp_dirtree ' [delete this extension, you will not be able to create a new or additional database]

#exec sp_dropextendedproc ' xp_regread ' [restore database assist after removing this extension]

#exec sp_dropextendedproc ' xp_fixeddrives ' [the database cannot be restored after this extension is deleted]

Recovery scripts

Use master

EXEC sp_addextendedproc xp_cmdshell, @dllname = ' Xplog70.dll '

EXEC sp_addextendedproc xp_enumgroups, @dllname = ' Xplog70.dll '

EXEC sp_addextendedproc xp_loginconfig, @dllname = ' Xplog70.dll '

EXEC sp_addextendedproc xp_enumerrorlogs, @dllname = ' Xpstar.dll '

EXEC sp_addextendedproc xp_getfiledetails, @dllname = ' Xpstar.dll '

EXEC sp_addextendedproc sp_oacreate, @dllname = ' Odsole70.dll '

EXEC sp_addextendedproc sp_OADestroy, @dllname = ' Odsole70.dll '

EXEC sp_addextendedproc sp_OAGetErrorInfo, @dllname = ' Odsole70.dll '

EXEC sp_addextendedproc sp_oagetproperty, @dllname = ' Odsole70.dll '

EXEC sp_addextendedproc sp_OAMethod, @dllname = ' Odsole70.dll '

EXEC sp_addextendedproc sp_OASetProperty, @dllname = ' Odsole70.dll '

EXEC sp_addextendedproc sp_oastop, @dllname = ' Odsole70.dll '

EXEC sp_addextendedproc xp_regaddmultistring, @dllname = ' Xpstar.dll '

EXEC sp_addextendedproc xp_regdeletekey, @dllname = ' Xpstar.dll '

EXEC sp_addextendedproc xp_regdeletevalue, @dllname = ' Xpstar.dll '

EXEC sp_addextendedproc xp_regenumvalues, @dllname = ' Xpstar.dll '

EXEC sp_addextendedproc xp_regremovemultistring, @dllname = ' Xpstar.dll '

EXEC sp_addextendedproc xp_regwrite, @dllname = ' Xpstar.dll '

EXEC sp_addextendedproc xp_dirtree, @dllname = ' Xpstar.dll '

EXEC sp_addextendedproc xp_regread, @dllname = ' Xpstar.dll '

EXEC sp_addextendedproc xp_fixeddrives, @dllname = ' Xpstar.dll '

Go

Copy all to SQL Query Analyzer

Clicking on the menu-"Query"-"execute" will remove the SQL process with security issues.