(I accidently placed this in the dvd ripping forum instead of here, I didn't click off scroll and wasn't aware it had changed the forum I selected. Not sure how to get it closed. I am really sorry about doing so.)
Suddenly Nwereboot.exe popped up in my startup. It has never been there before. From what I have found it could be a virus or it could just be part of Nero. However I have had Nero for years and this has never been in my startup before.
I have spywareblaster, Ad-Aware and have run AVG virus scan, housecall, bitdefender & Panda virus scan. All have come up clean. I also ran AVG & Ad-Aware in safe mode just to be sure. I downloaded something called True Sword and when I was running it came up that I had all these trojans and malicious spyware etc. However to fix them I would need to purchase the product (which makes me sceptical about it's accuracy). This is the only scan that has shown up anything and I have done many different spyware scans!!
I thought the best thing to do was to attach a hijack this log and see if anything sinister is lurking on my computer or if this NWEReboot.exe is nothing to be worried about. I think I have followed the instructions - I am a complete novice at this so please bear with me.
I don't know if you need this info but it is Windows 2000, all the microsoft updates are up to date. I have Zone Alarm & Grisoft AVG with the latest updates. Thanks.
Logfile of HijackThis v1.99.1
Scan saved at 1:37:01 PM, on 15/09/2006
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Nwereboot.exe is in fact related to Nero. It acts as a temporary file while CD writing is in process.
If all the programs you listed came up clean then more than likely you are clean as I see nothing bad in your HijackThis log either.
The entires True Sword finds are probably false positives 'cause all those scanners would pick up atleast one bad file. So, could you please list some names True Sword is listing?
Oh, and to get your thread closed just ask a mod to close it. If not, they will move it here and then they will close it after seeing this thread. No worries.
True Sword is saying that I have RBOT.AWS wor, AGOBOT.LG Worm, HAXDOOR D Trojan, Lowzone Trojan, NEVEG.A Trojan, CHODE-J Worm, MYTOB.B Worm...the list goes on. There are about 20 others that I supposedly have. I have looked a few of them up on the net and my computer does not seem to be exhibiting any signs from what I have read, but I am no expert in this area.
True sword is a rogue anti-spyware scanner. It gives false positives so that you buy it, so uninstall it immediately because those infections aren't really on your PC. Be careful whe downloading anti-spyware products because they aren't always what they seem to be.
True. In fact, all but a few of the paid anti-spyware products are either don't work, or are spyware themselves. You were right in being suspicious. You have a good assortment of anti-virus and anti-spyware tools though Spybot Search and Destroy is missing from your list.
One thing I noticed though is that you're running Internet Explorer. Use some other browser like Firefox or Opera and stop using IE immediately - IE is the door through which most malware enters anyway. Spyware, viruses and trojans wouldn't be nearly as prevalent as they are today, if it weren't for Internet Explorer. And it's best to run any browser with Java disabled.
-Do you believe you own your computer and shouldn't be told what you can run and do? Then say *NO* to Microsoft Vista!
-Since half the questions here involve media problems, here ya go: Only use Verbatim or Taiyo-Yuden discs (get your TYs from Rima.com, not Supermediastore or meritline). Forget the rest, no matter what "brand" they sell under. Always burn at 4x speed regardless of the speed rating of this discs or your drive. If you have burn problems with these then you have to update your drive's firmware. For double-layer discs, only use Verbatim DVD+R DL and burn them at 2.4x speed.
I would like to thank you all for your help and exepertise. I have already unistalled True Sword and I do have Spy Bot as well. Am going to get Firefox today. Once again thanks for the help, it is much appreciated.
