Spyware, Viruses, & Security forum


Virus "Update Notification"

by tim1771 / April 14, 2013 7:42 AM PDT

I have a recurring virus that shows up on my screen. Kaspersky and House Call do not find it. My task Manager does not see it. I thought I had gotten rid of it before with house call, but... it's back. I don't know what it is.
I have a screen capture and when I do a google image search I find a few forums in Japan talking about it... in Japanese. They do not say anything other than it is a virus.
How do I get rid of this?

Answer This Ask For Clarification
Discussion is locked
You are posting a reply to: Virus "Update Notification"
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: Virus "Update Notification"
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.

All Answers

Collapse -
More Information Would Sure Help
by Grif Thomas Forum moderator / April 15, 2013 3:37 AM PDT

EXACTLY what does the virus say when you see it? When do you see it? If it's a popup, what are you doing when you see the popup?

What is the make and model of your computer and which operating system is installed on your machine?

In the meantime, if you haven't already, please follow the steps below to run some better malware scans:

If you can download the tools listed below on the problem computer, great, but you may need to use a separate, clean computer, download the tools, copy them to a DIFFERENT flash drive or CD, then transfer them to the infected computer.

Once that's done, then restart the computer into "Safe Mode with Networking" and use the instructions below. If you can't start in Safe Mode, then run all the tools while in "normal" Windows first, then run them in Safe Mode afterward.:

After downloading or transferring it to the problem machine, run the
following tool to help allow the removal programs below to run.
(courtesy of Grinler at BleepingComputer.com)There are 3 different
versions. If one of them won't run then try to run the other one. Be
patient.... as a black window should open, then close after finding all
the background programs.Vista and Win7 users need to right click and choose "Run as Admin". You only need to get one of them to run, not all of them.




IMMEDIATELY after running the "Rkill" tool above, run/install the Malwarebytes and
SuperAntispyware installer and update files from the links below which
you've also copied to a CD or flash drive, and transfered to the problem
machine. Do NOT restart the computer after running Rkill. After that, run a full system scan
and delete anything it finds.

Malwarebytes Installer Download Link (Clicking on the links below will immediately start the download dialogue window.)

Next, install and run a full system scan with the SuperAntispyware program
and the manual updater from the links below. As before, you may need to
rename the installer file to get the program to install.:


Manual Update

And after that, if everything's fine by you can't connect to the internet,
then follow the procedures below to check your network "proxy" settings
again.Open Internet Explorer and go to Tools-Internet
Options-Connection Tab. Click on the LAN settings button. IF there is a
check mark next to "Use a proxy server for your LAN", uncheck it. Click
OK. Then OK, again.

Hope this helps.


Collapse -
Sorry, newbie
by tim1771 / April 15, 2013 12:17 PM PDT

I am running windows 7 - 64 bit on an i5 with an asus board.
The image appears in the lower right corner of my screen.
It is an update box but doesn't say for what. It is has a red background and a grey border. The border looks two dimensional.
It says:
"Update Notification
A new version is available. Upgrade now?
The upgrade will apply important security update. Usage is subject to the licence agreement - by clicking update you agree to the terms and conditions"
The poor grammar was my first clue.
Then it has two check boxes for the update and for a browser and two buttons; Quit and Update.
It goes away when I reboot but it crops up again a few days later.
Has anyone else seen this?

Collapse -
Have You Run Those Scans YET?
by Grif Thomas Forum moderator / April 15, 2013 1:01 PM PDT
In reply to: Sorry, newbie

If so, then please tell us what they found.

And since you didn't tell us, and the popup is coming from the general direction of the "system tray", which antivirus/security software are you using? And do you have the latest version of such? If not, have you tried updating it?

Hope this helps and let us know more.


Collapse -
You could try two things
by Payload617 / April 20, 2013 2:43 AM PDT

Hello Tim, for me I would try two different things;

First, enless it hijacks internet browsing or causes unauthorized changes to downloaded files, you won't really need to boot into Safemode, just download Malwarebytes' Anti-Malware and make sure it is on it's latest definitions database, then go to the scanner and run a quick or full scan based on which one you feel most comfortable with, this could take 3-15 minutes for a quick scan and 10-90 minutes for a full scan.

As a second way, as stated below, download Rkill and let the application run, then download another removal program such as Superantispyware, Malwarebytes', or, if in a bad scenario where neither will work, Combofix. You can also try the Microsoft Support Forums if you wish.

Collapse -
As to the use of ComboFix..
by Carol~ Forum moderator / April 20, 2013 5:47 AM PDT


I feel it's important to note Tim indicated he was a 'newbie'. A few days ago, Grif suggested running Rkill, Malwarebyes' Anti-Malware and SUPERAntiSpyware. He excluded the ComboFix tool from his list. This may be one of the reasons why.

ComboFix comes with a warning. The warning states in part:

'Due to the power of this tool it is strongly advised that you do not attempt to act upon any of the information displayed by ComboFix without supervision from someone who has been properly trained. If you do so, it may lead to problems with the normal functionality of your computer.

An additional warning can be found here. It's an excellent tool in the right hands. I'd hate to see Tim (or any other inexperienced user) try it and find himself with more problems then he started with. Sad

As it stands, we haven't heard from Tim in 5 days. So we don't know what worked or what didn't work. Devil


Popular Forums
Computer Help 51,224 discussions
Computer Newbies 10,453 discussions
Laptops 20,090 discussions
Security 30,722 discussions
TVs & Home Theaters 20,937 discussions
Windows 10 1,295 discussions
Phones 16,252 discussions
Windows 7 7,684 discussions
Networking & Wireless 15,215 discussions


Roku Streaming Stick 2016

Roku has the most apps, the simplest interface and the best search, making it CNET's favorite way to stream Netflix, Amazon, Hulu, HBO and all the rest.