SQL Injection attempt, what does this query attempt to do? [duplicate]

This question already has answers here: Closed 11 years ago.

Possible Duplicate:

Site has been hacked via SQL Injection

Looks li开发者_Go百科ke one of my websites had a hacker attempt on it, my reports showed the following querystring data attempted:

QUERY_STRING = ID=-999.9%20UNION%20ALL%20SELECT%200x31303235343830303536,0x31303235343830303536,0x31303235343830303536,0x31303235343830303536,0x31303235343830303536,0x31303235343830303536,0x31303235343830303536,0x31303235343830303536,0x31303235343830303536,0x31303235343830303536,0x31303235343830303536,0x31303235343830303536,0x31303235343830303536,0x31303235343830303536,0x31303235343830303536,0x31303235343830303536,0x31303235343830303536,0x31303235343830303536,0x31303235343830303536,0x31303235343830303536-

It failed because any integer parameter I always cast to an integer so you get mismatch errors if anything like this is tried (classic ASP). But I'm confused what the query above is attempting? It doesn't look like anything I've seen before.

---

take a look at: Site has been hacked via SQL Injection

at a first look a guess it was some automatic tool doing some blind sql injection.