mssoi32.exe

[ujjwal]

Recently i am finding this program in the task manager ... googleing it gives no information. Recently I installed the unofficial windows 98 SE service pack 1.6. Any idea what it is?

 

[ShekharPalash]

was there any SP for 98Se???? I don't think so... *s.microsoft.com/asia/security/ordercd_sec.asp this is link to MS Security update FREE CD... it contains all updates to WIN 98 system ever relased... and wht is and where is this MSSOI32.EXE to deal with what u asked.... ???

 

[it_waaznt_me]

Hey Ujjwal .. Please post your HijackThis Logfile for better assesment of your problem.

 

[alib_i]

wow it_waaznt_me ...
have you saved this message ..
i see 50% of your posts as this exact message.
sorry for being off topic but i found it amusing.

 

[aadipa]

there wasn't any SP for win98se

this is unofficial SP and contails all updates plus some extra improvements for win98se

btw i don't know about the file

 

[mariner]

i screwed up my pc after installing the unofficial service pack 1.5 so ppl pls be very careful.

 

[ujjwal]

HijackThis is one of the most useful troubleshooting sw around ... I would thank batty for informing me about it a long ago ...

Anyway ... I cant see much info about mssoi32 except an entry in the registry to run at startup

Platform: Windows 98 SE (Win9x 4.10.2222A)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\PROGRAM FILES\GRISOFT\AVG6\AVGSERV9.EXE
C:\WINDOWS\EXPLORER.EXE
C:\WINDOWS\TASKMON.EXE
C:\WINDOWS\SYSTEM\SYSTRAY.EXE
C:\WINDOWS\MSSOI32.EXE
C:\PROGRAM FILES\LOGITECH\MOUSEWARE\SYSTEM\EM_EXEC.EXE
C:\WINDOWS\SYSTEM\WMIEXE.EXE
C:\WINDOWS\SYSTEM\PSTORES.EXE
C:\WINDOWS\SYSTEM\DDHELP.EXE
C:\PROGRAM FILES\GRISOFT\AVG6\AVGCC32.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\OUTLOOK EXPRESS\MSIMN.EXE
C:\PROGRAM FILES\FLASHGET\FLASHGET.EXE
C:\PROGRAM FILES\ADOBE\ACROBAT 6.0\READER\ACRORD32.EXE
C:\PROGRAM FILES\MIRC\MIRC.EXE
D:\TMP\HIJACKTHIS\HIJACKTHIS.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = *202.144.58.38:81/login.php
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = *www.sify.com
O2 - BHO: (no name) - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:\PROGRAM FILES\FLASHGET\JCCATCH.DLL
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\PROGRAM FILES\ADOBE\ACROBAT 6.0\READER\ACTIVEX\ACROIEHELPER.DLL
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRAM FILES\FLASHGET\FGIEBAR.DLL
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX
O4 - HKLM\..\Run: [ScanRegistry] C:\WINDOWS\scanregw.exe /autorun
O4 - HKLM\..\Run: [TaskMonitor] C:\WINDOWS\taskmon.exe
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\Run: [Logitech Utility] LOGI_MWX.EXE
O4 - HKLM\..\Run: [Tweak UI] RUNDLL32.EXE TWEAKUI.CPL,TweakMeUp
O4 - HKLM\..\Run: [WINDOWSMSSOI32] C:\WINDOWS\MSSOI32.EXE
O4 - HKLM\..\Run: [AVG_CC] C:\PROGRA~1\GRISOFT\AVG6\avgcc32.exe /STARTUP
O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\RunServices: [TVWatch] C:\WINDOWS\SYSTEM\TVWatch.exe
O4 - HKLM\..\RunServices: [Avgserv9.exe] C:\PROGRA~1\GRISOFT\AVG6\Avgserv9.exe
O4 - Startup: Rain.lnk = C:\Rain\Rain.exe
O8 - Extra context menu item: Download using FlashGet - C:\PROGRAM FILES\FLASHGET\jc_link.htm
O8 - Extra context menu item: Download All by FlashGet - C:\PROGRAM FILES\FLASHGET\jc_all.htm
O9 - Extra button: Related (HKLM)
O9 - Extra 'Tools' menuitem: Show &Related Links (HKLM)
O9 - Extra button: FlashGet (HKLM)
O9 - Extra 'Tools' menuitem: &FlashGet (HKLM)
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} (Update Class) - *v4.windowsupdate.microsoft.com/CAB/x86/ansi/iuctl.CAB?38240.8867476852
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - *download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\VxD\MSTCP: Domain = 5/8
O17 - HKLM\System\CCS\Services\VxD\MSTCP: NameServer = 202.144.155.4,202.144.66.6

 

[ujjwal]

BTW, mariner, I think se sp 1.5 was screwed ... someone else I know had a problem too ... but sp 1.6 is out, runs fine. Best to install em after a clean install of windows.

 

[mariner]

well ujjwal the hell with 1.5 or 1.6. i m going to format my hdd and do a clean install of the os/ i dont need 98se (only keep it for my father cos hes comfy with 98)
just waiting for my dvd rom. will install linux. right now xp pro is good enough for me.

 

[it_waaznt_me]

Hmmm... Ujjwal .. Congrates .. You got no known parasite or spyware... Btw .. This file looks suspicous to me too .. Disable it from startup through MsConfig or HijackThis ...

To proceed with your HijackThis log, Run HijackThis again and put a CheckMark next to these entries and Click on Fix Checked.
Please make sure that all Internet Explorer and Windows Explorer windows are closed.

O4 - HKLM\..\Run: [WINDOWSMSSOI32] C:\WINDOWS\MSSOI32.EXE

and btw

wow it_waaznt_me ...
have you saved this message ..
i see 50% of your posts as this exact message.
sorry for being off topic but i found it amusing.

Yes Alib_i .. If you know me then probably you'll know that I have to deal with this stuff daily and I have to post this message many times a day ... So I copied it to Simple collector ..Not only this , the Response to a log (see above) and many more ...

 

[ujjwal]

Thanks for your rely, waaznt, i'll remove it and see what happens. BTW, it could also be something to do with the stupid broadband client sify makes us install ...

 

[it_waaznt_me]

Hey Ujjwal ... The file you sent me was detected as Trojan.Win32.Zapchast by Kaspersky and deleted .. So .. Better scan your system ...

Scan your system with updated virus definitions:
Panda ActiveScan
Stinger
Symantec System Check
Kaspersky

Btw ... I didnt found out more about this virus on the net ..Its just a Trojan .. You can simply delete it and live happily ever after ...

 

[ujjwal]

Whoops ... I missed this thread ... thanks for informing me what it was.