Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.



  • Please log in to reply
2 replies to this topic

#1 nateone


  • Members
  • 1 posts
  • Local time:12:49 PM

Posted 09 February 2005 - 02:21 PM

its located here C:\Documents and Settings\username\Application Data\rsoe.exe

its always trying to connect... sygate stops it.. i've searched but can not locate this file..

trys connnecting to cu.clickspring.net
ip on port 80

i dont know what this program is.. what its for.. i scanned with adaware se pro 1.5 latest defs and it didnt pick it up norton scanned this folder and also didnt find it..



BC AdBot (Login to Remove)


#2 Pandy



  • Members
  • 9,559 posts
  • Gender:Female
  • Local time:01:49 PM

Posted 09 February 2005 - 02:34 PM

:thumbsup: nate~ google does not come up with anything for rsoe.exe. It may be a good idea to post a HijackThis log in the HijackThis Logs And Analysis Forum

Please read this tutorial HijackThis Tutorial and follow instructions carefully.

Do not anticipate trouble, or worry about what may never happen. Keep in the sunlight.

Hide not your talents. They for use were made. What's a sundial in the shade?

~ Benjamin Franklin

I am a Bleeping Computer fan! Are you?


Follow us on Twitter

#3 groovicus


  • Security Colleague
  • 9,963 posts
  • Gender:Male
  • Location:Centerville, SD
  • Local time:11:49 AM

Posted 09 February 2005 - 02:35 PM

It's probably a VX2 infection (just a guess)...you might want to check into the Hijackthis section of the forum for more help. :D


This will help get you started.

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users