Happy as a clam with speed. Two nights ago, logged on and could not link off my home page, some favorites would not work, and if it did work, just like home page, could not link off that page.
I keep java and activeX disabled.
Mail and all other programs worked OK.
Noticed that send light was blinking when I was in the think mode trying to figure this out. By using ZoneAlarm was able to ID what was causing the traffic. MSGSRV322.exe was the cause. did a ctrl/alt/delete to see if it was running and it was not.
(Msgsrv32.exe seems to be a kosher file)
Did a registery search and removed it, did a directory search and only found one instance of the file in the \win\system directory and removed it. Power down and repowered and surfing was still slow/unusable. Repaired IE5, same results. did another search for the offending file and could not find it. ZA did not report this file running after deletion.
Had to reformat and reload an older backup to get things back to normal. (Major pain in the rear)
Question is what is this program and would anybody like to take a stab as to how I got it?
If it is a virus how would I remove it?
Slooow surfing Virus??
-
subzero
URL=http://support.microsoft.com/support/kb ... CH&SPR=W98]Msgrsrv32[/URL]
MSGSRV32 -Microsofts description^^^^^^^^^^^^^^^
If the slowness happens again, open netstat from the dos prompt and type in netstat -a -n enter, this will show you all open ports and what type of connection is established or listening on the port.
While I'm typing, this is what I have running
C:\WINDOWS>netstat -a -n
Active Connections
Proto Local Address Foreign Address State
TCP 0.0.0.0:2746 0.0.0.0:0 LISTENING
TCP xx.xxx.xxx.xxx:2746 64.4.13.51:1863 ESTABLISHED
TCP 127.0.0.1:110 0.0.0.0:0 LISTENING
TCP 127.0.0.1:2725 0.0.0.0:0 LISTENING
TCP 127.0.0.1:2747 0.0.0.0:0 LISTENING
UDP 127.0.0.1:2725 *:*
UDP 127.0.0.1:2747 *:*
The 64.4.13.51 on port 1863 in MSN Messenger Service!
You might find this tool helpful in the future.
I get the feeling that your not using any Anti-Virus Program on your system. If this is the case, go to the following link
Inoculate It Personal Edition and download a copy and install it (It is Free for personal use) then immediately go back to the site and get the updated virus definitions and install, then run a complete system check. If it's a virus on there, it's about 98.9% sure to be caught!
Then just follow the programs recommendations for getting rid of the offender.[
MSGSRV32 -Microsofts description^^^^^^^^^^^^^^^
If the slowness happens again, open netstat from the dos prompt and type in netstat -a -n enter, this will show you all open ports and what type of connection is established or listening on the port.
While I'm typing, this is what I have running
C:\WINDOWS>netstat -a -n
Active Connections
Proto Local Address Foreign Address State
TCP 0.0.0.0:2746 0.0.0.0:0 LISTENING
TCP xx.xxx.xxx.xxx:2746 64.4.13.51:1863 ESTABLISHED
TCP 127.0.0.1:110 0.0.0.0:0 LISTENING
TCP 127.0.0.1:2725 0.0.0.0:0 LISTENING
TCP 127.0.0.1:2747 0.0.0.0:0 LISTENING
UDP 127.0.0.1:2725 *:*
UDP 127.0.0.1:2747 *:*
The 64.4.13.51 on port 1863 in MSN Messenger Service!
You might find this tool helpful in the future.
I get the feeling that your not using any Anti-Virus Program on your system. If this is the case, go to the following link
Inoculate It Personal Edition and download a copy and install it (It is Free for personal use) then immediately go back to the site and get the updated virus definitions and install, then run a complete system check. If it's a virus on there, it's about 98.9% sure to be caught!
Then just follow the programs recommendations for getting rid of the offender.[
-
subzero
-
ColdFusion
- Posts: 3542
- Joined: Mon Oct 30, 2000 12:00 am
- Location: Vancouver, BC
Well,
If you want to find out what the virus is, I suggest you goto http://www.mcafee.com and do a search for MSGSRV322.exe
Hope This Helps
Mat
If you want to find out what the virus is, I suggest you goto http://www.mcafee.com and do a search for MSGSRV322.exe
Hope This Helps
Mat
-
donald_k
- Regular Member
- Posts: 406
- Joined: Tue Oct 17, 2000 12:00 am
- Location: Thunder Bay, Ontario, Canada
MSGSRV32 is a system component of WIN9X/ME. It is not an MSN Messenger component. When the windows GUI first loads up the very first thing after mstask.tsk MSGSVR32 loads, if you are fast enough when the machine first loads up and press cntrl+alt+del and see it then go ahead and kill it. But more than likely the machine will need a reboot as the startup process will be hung. Now if you are at the desktop and see MSGSVR32 in the CTRL+ALT+DEL box then something is wrong or a virus is present as normally it runs as a system level process and will not show up in the box when windows is fully loaded up. To be on the safe side get a virus scanner to scan your hardrive. If you are running NT/2K then take immediate action as MSGSVR32 is NOT present in Windows NT/2000 as the kernel itself in those operating systems handles the process calls directly, also is why NT is so much better than 9x for stability 
.I'm glad you said something! I always thought it was for MSN Messenger because I never caught a glimpse of it until I started using that program.Originally posted by donald_k
I stand corrected. I'll go back into my hole in the wall now and continue to feel small for a while longer.
