I'm not sure if it's xunlei (thunder5) or not.

but AVG has detected this psw.onlinegame trojan everytime the xunlei pop up ads comes up.

You know when you left xunlei to run on its own over night and it pops up some ads? Thats when AVG detected the trojan.

the trojan also drops various .exe and .dll file with random names into my system folder, Temporary internet file folder and temp folder.

whenever I clean them all with AVG in safe mode, it'll disable my internet connection, something about the trojan corrupted my winsocks even after it's deleted.

so I had to use winsocks fix to fix it. (not a big problem)

but after I've clean my system for a few days, AVG detected the trojan again, everytime when I'm running xunlei overnight, and it pops up some ads sponsored by xunlei.

so am I getting "re-infected" by xunlei after I removed the trojan or is the trojan hidden somehow and takes a few days to re-infect my system?

I really dont want to remove xunlei, it's the only bittorrent client that can bypass streamyx throttling.

so I have to uninstall IE 6?

and the pop up ads will die?

I never click on the ads. It just pops up overnight after I left xunlei running.

I saw the AVG virus warning in the morning, together with the pop up ads.

so after you did what you said, it did not re-infect your system or pop up any xunlei ads anymore?

this coming from a person who frequently use the "format your computer", "it's a virus" and "must be a virus" for every single post in technical section.

thanks but no thanks, excuse me for not trusting you.

be advised that the MOD are watching you, stop the idiocy.

so is xunlei "really" infecting my system with trojan/virus from their ads partner?

how come I havent heard about it from other xunlei users? Surely I'm not the first one right?

I have a feeling it's not xunlei's fault.

but I am running out of idea as to where I got this trojan from.

How to completely remove it?

where is it hiding?

google turns up with little to no info of this.

btw, there's an IEXPLORE.EXE running as a "system" process in my task manager, right after I start up my computer, I have not opened any IE windows.

This happened right after I got the AVG warning, not before.

is this one of the trojan or something else?