客户端使用mysql odbc数据源对mysql数据库进行操作,每天中午就会自动断开连接,重新启动软件也不能连接,只有重新启动电脑,才能连接数据库,之后也不会出现断开连接的情况。
解决方法:
1.任务管理器中结束messages.exe进程。
2.在messages.exe所在目录中删除该文件,并新建一个文件夹,命名为messages.exe。
3.在dos控制台下执行msconfig命令,在弹出窗口的启动项中将messages.exe项取消并应用。
4.在dos控制台下执行regedit命令,进入注册表。在注册表中搜索messages.exe,并删除搜素出的结果。
5.运行Killmessages.bat文件。
6.messages.exe病毒删除完成。
遗留问题:
隐藏文件还是不能显示
病毒特征:
1.有时会占用很高的CPU资源;
2.文件夹选项中不能勾选显示所有文件;
3.造成mysql数据库的ODBC驱动不能正常工作,造成数据库连接异常;
Killmessages.bat 批处理内容如下:@ECHOoff
cls
color09
ECHO==========================================================
ECHO==========================================================
pause
ECHOPleaseWaiting...
@echooff
taskkill/f/immessages.exe
taskkill/f/imiexplore.exe
taskkill/f/imwmiprvse.exe
taskkill/f/imwmiprvse.exe
@echooff
delC:\WINDOWS\system32\drivers\messages.exe/f/s/q/a
delC:\WINDOWS\system32\messages.exe/f/s/q/a
cdc:\windows\system32\
mdmessages.exe\
@echooff
cdC:\WINDOWS\system32\drivers\
mdmessages.exe\
@echooff
attribC:\WINDOWS\system32\drivers\messages.exe+s+h+r
attribC:\WINDOWS\system32\messages.exe+s+h+r
@echooff
echoy|cacls"C:\WINDOWS\system32\drivers\messages.exe"/deveryone
echoy|cacls"C:\WINDOWS\system32\messages.exe"/deveryone
@echooff
echo正在检查C盘:
delc:\desktop_*.ini/f/s/q/a
delc:\n0220.jpg/f/s/q/a
delc:\cool_gamesetup.exe/f/s/q/a
delc:\n0220[1].jpg/f/s/q/a
delc:\090219.jpg/f/s/q/a
delc:\commaderds.exe/f/s/q/a
echo正在检查D盘:
deld:\desktop_*.ini/f/s/q/a
echo正在检查E盘:
dele:\desktop_*.ini/f/s/q/a
echo正在检查F盘:
delf:\desktop_*.ini/f/s/q/a
echo正在检查G盘:
delg:\desktop_*.ini/f/s/q/a
echo正在检查H盘:
delh:\desktop_*.ini/f/s/q/a
echo正在检查I盘:
deli:\desktop_*.ini/f/s/q/a
echo正在检查J盘:
delj:\desktop_*.ini/f/s/q/a
echo处理完毕!
@echooff
cdc:\windows\system32\
mdmessages.exe\
@echooff
cdC:\WINDOWS\system32\drivers\
mdmessages.exe\
echo操作完毕,下面开始修复浏览器!
rundll32.exeadvpack.dll/DelNodeRunDLL32%systemroot%\System32\dacui.dll
rundll32.exeadvpack.dll/DelNodeRunDLL32%systemroot%\Catroot\icatalog.mdb/s
regsvr32setupwbv.dll/s
regsvr32wininet.dll/s
regsvr32comcat.dll/s
regsvr32shdoc401.dll/s
regsvr32shdoc401.dll/i/s
regsvr32asctrls.ocx/s
regsvr32oleaut32.dll/s
regsvr32shdocvw.dll/I/s
regsvr32shdocvw.dll/s
regsvr32browseui.dll/s
regsvr32browseui.dll/I/s
regsvr32msrating.dll/s
regsvr32mlang.dll/s
regsvr32hlink.dll/s
regsvr32mshtml.dll/s
regsvr32mshtmled.dll/s
regsvr32urlmon.dll/s
regsvr32plugin.ocx/s
regsvr32sendmail.dll/s
regsvr32comctl32.dll/i/s
regsvr32inetcpl.cpl/i/s
regsvr32mshtml.dll/i/s
regsvr32scrobj.dll/s
regsvr32mmefxe.ocx/s
regsvr32corpol.dll/s
regsvr32jscript.dll/s
regsvr32msxml.dll/s
regsvr32imgutil.dll/s
regsvr32thumbvw.dll/s
regsvr32cryptext.dll/s
regsvr32rsabase.dll/s
regsvr32triedit.dll/s
regsvr32dhtmled.ocx/s
regsvr32inseng.dll/s
regsvr32iesetup.dll/i/s
regsvr32hmmapi.dll/s
regsvr32cryptdlg.dll/s
regsvr32actxprxy.dll/s
regsvr32dispex.dll/s
regsvr32occache.dll/s
regsvr32occache.dll/i/s
regsvr32iepeers.dll/s
regsvr32wininet.dll/i/s
regsvr32urlmon.dll/i/s
regsvr32digest.dll/i/s
regsvr32cdfview.dll/s
regsvr32webcheck.dll/s
regsvr32mobsync.dll/s
regsvr32pngfilt.dll/s
regsvr32licmgr10.dll/s
regsvr32icmfilter.dll/s
regsvr32hhctrl.ocx/s
regsvr32inetcfg.dll/s
regsvr32trialoc.dll/s
regsvr32tdc.ocx/s
regsvr32MSR2C.DLL/s
regsvr32msident.dll/s
regsvr32msieftp.dll/s
regsvr32xmsconf.ocx/s
regsvr32ils.dll/s
regsvr32msoeacct.dll/s
regsvr32wab32.dll/s
regsvr32wabimp.dll/s
regsvr32wabfind.dll/s
regsvr32oemiglib.dll/s
regsvr32directdb.dll/s
regsvr32inetcomm.dll/s
regsvr32msoe.dll/s
regsvr32oeimport.dll/s
regsvr32msdxm.ocx/s
regsvr32dxmasf.dll/s
regsvr32laprxy.dll/s
regsvr32l3codecx.ax/s
regsvr32acelpdec.ax/s
regsvr32mpg4ds32.ax/s
regsvr32voxmsdec.ax/s
regsvr32danim.dll/s
regsvr32Daxctle.ocx/s
regsvr32lmrt.dll/s
regsvr32datime.dll/s
regsvr32dxtrans.dll/s
regsvr32dxtmsft.dll/s
regsvr32vgx.dll/s
regsvr32WEBPOST.DLL/s
regsvr32WPWIZDLL.DLL/s
regsvr32POSTWPP.DLL/s
regsvr32CRSWPP.DLL/s
regsvr32FTPWPP.DLL/s
regsvr32FPWPP.DLL/s
regsvr32FLUPL.OCX/s
regsvr32wshom.ocx/s
regsvr32wshext.dll/s
regsvr32vbscript.dll/s
regsvr32scrrun.dllmstinit.exe/setup
regsvr32msnsspc.dll/SspcCreateSspiReg
regsvr32msapsspc.dll/SspcCreateSspiReg
ECHO==========================================================
echo修复完毕!
ECHO==========================================================
echo.&pause
注意:本文归作者所有,未经作者允许,