Page 1 of 2 12 LastLast
Results 1 to 16 of 17

Thread: Liveupdate.exe

  1. #1
    lazy student nvening's Avatar
    Join Date
    Jan 2005
    Location
    London
    Posts
    4,656
    Thanks
    196
    Thanked
    31 times in 30 posts

    Liveupdate.exe

    I came back to my pc with this program, simply called live update, zone alarm had come up asking me if i wanted to allow it, it is the first time it has tryed.
    After googleing, this seems to be spyware but spysweeper and spyware doctor find nothing.
    I have a screen shot if anyone needs it
    Thanks
    (\__/)
    (='.'=)
    (")_(")

  2. #2
    HEXUS webmaster Steve's Avatar
    Join Date
    Nov 2003
    Location
    Bristol
    Posts
    14,268
    Thanks
    286
    Thanked
    828 times in 468 posts
    • Steve's system
      • CPU:
      • Intel i3-350M 2.27GHz
      • Memory:
      • 8GiB Crucial DDR3
      • Storage:
      • 320GB HDD
      • Graphics card(s):
      • Intel HD3000
      • Operating System:
      • Ubuntu 11.10
    Got anything norton/symantec on your PC?
    PHP Code:
    $s = new signature();
    $s->sarcasm()->intellect()->font('Courier New')->display(); 

  3. #3
    Senior Member
    Join Date
    Aug 2004
    Location
    W Yorkshire
    Posts
    5,668
    Thanks
    85
    Thanked
    13 times in 11 posts
    sounds like a symantec/norton product, even when you un-install it, it usually leaves it behind..

  4. #4
    lazy student nvening's Avatar
    Join Date
    Jan 2005
    Location
    London
    Posts
    4,656
    Thanks
    196
    Thanked
    31 times in 30 posts
    never had nortan. This is the screen shot:
    (\__/)
    (='.'=)
    (")_(")

  5. #5
    Senior Member
    Join Date
    May 2004
    Location
    Stafford, West Midlands
    Posts
    642
    Thanks
    3
    Thanked
    0 times in 0 posts
    Run a virus scan and spyware scan

  6. #6
    Civilian Nick F's Avatar
    Join Date
    May 2004
    Location
    London
    Posts
    4,668
    Thanks
    9
    Thanked
    18 times in 10 posts
    • Nick F's system
      • CPU:
      • 2.4Ghz C2D
      • Memory:
      • 4GB
      • Storage:
      • 320Gb internal / 750Gb external
      • Case:
      • Apple iMac
      • Operating System:
      • Mac OSx
      • Monitor(s):
      • 24inch
      • Internet:
      • 8mb BE connection
    Quote Originally Posted by nvening
    never had nortan. This is the screen shot:
    I ran norton for 2 years and never saw anything like that, it just does not look like a norton program.

    Be aware.

  7. #7
    Taz
    Taz is offline
    Senior Member Taz's Avatar
    Join Date
    Jan 2005
    Location
    London
    Posts
    2,111
    Thanks
    49
    Thanked
    26 times in 25 posts
    • Taz's system
      • Motherboard:
      • Gigabyte Z270 HD3P
      • CPU:
      • Intel Core i5 7600K
      • Memory:
      • Corsair CMK16GX4M2B3200C16R Vengeance LPX 16 GB
      • Storage:
      • Samsung 960 EVO M.2-2280 500GB (PCIe) + 1TB Sandisk Ultra II SSD (SATA)
      • Graphics card(s):
      • Asus NVIDIA GeForce GTX 1070 OC
      • PSU:
      • Corsair CS550M 550W Hybrid
      • Case:
      • NZXT Source 340
      • Operating System:
      • Windows 10 Pro
      • Monitor(s):
      • 34" Asus Designo Curve MX34VQ UWQHD Monitor
      • Internet:
      • Virgin Media Vivid 200
    There's a fake e-mail going around that pretends it's a critical patch from Microsoft. It's a worm that opens a back door on your PC. I wonder if it could be that.

    See here: http://news.bbc.co.uk/1/hi/technology/4425165.stm

  8. #8
    lazy student nvening's Avatar
    Join Date
    Jan 2005
    Location
    London
    Posts
    4,656
    Thanks
    196
    Thanked
    31 times in 30 posts
    I havnt downloaded any email files and wouldn't a backdoor be hidden, does that not get rid of the point, good news is its blocked by zonealarm. AVG found nothing, so did spy doctor and spysweeper, running m$ anti spyware now and then i got pest patrol and adware lol

    EDIT: read the story, is def not that.
    (\__/)
    (='.'=)
    (")_(")

  9. #9
    Member
    Join Date
    Feb 2005
    Posts
    198
    Thanks
    0
    Thanked
    0 times in 0 posts
    http://startup.iamnotageek.com/srch-LiveUpdate.exe.html

    Have a look, its amazing what google gives to you

  10. #10
    lazy student nvening's Avatar
    Join Date
    Jan 2005
    Location
    London
    Posts
    4,656
    Thanks
    196
    Thanked
    31 times in 30 posts
    i read that before and there is nothing like that in my start up and no spyware tools find anything, and virtual bouncer is well known, i had it once, in my days of computer retardness.

    EDIT: ms antispyware found nothing.
    (\__/)
    (='.'=)
    (")_(")

  11. #11
    Agent of the System ikonia's Avatar
    Join Date
    May 2004
    Location
    South West UK (Bath)
    Posts
    3,734
    Thanks
    39
    Thanked
    75 times in 56 posts
    couple of days ago ?


    why don't you see what the exe's called in the task manager, then try to find it on your PC - the location may contain clues to what it is and who put it there.
    It is Inevitable.....


  12. #12
    lazy student nvening's Avatar
    Join Date
    Jan 2005
    Location
    London
    Posts
    4,656
    Thanks
    196
    Thanked
    31 times in 30 posts
    well, its not running anymore but zone alarm said the file not the program so ill search for it.

    couple of days ago ?
    Sounds like some sort of feeble insult.
    (\__/)
    (='.'=)
    (")_(")

  13. #13
    Agent of the System ikonia's Avatar
    Join Date
    May 2004
    Location
    South West UK (Bath)
    Posts
    3,734
    Thanks
    39
    Thanked
    75 times in 56 posts
    if you can't see the real name perhaps a search for *update*.exe of a few varitions - just to remove the obvious, but yes it will be tough if you don't know the name of the running application.

    I'm not big with windows so I don't know if there is any way to check things that have run in the past or perhaps any .exe's that have been accessed on the day it last run ?

    Just thinking out loud really.
    It is Inevitable.....


  14. #14
    Bryce
    Join Date
    Oct 2003
    Location
    Stonehaugh
    Posts
    452
    Thanks
    6
    Thanked
    4 times in 4 posts
    could it be a soundcard problem ie creative soundblaster " Live update exe " ?

  15. #15
    Member
    Join Date
    Mar 2005
    Location
    Sydney, Australia. Where else would you want to live?
    Posts
    78
    Thanks
    0
    Thanked
    0 times in 0 posts
    If you have allowed it access in Zone Alarm as you say, then go into Program Control, highlight the item, and look at the Entry Details on the bottom.

    It will tell you Filename, date created, version, location etc.

  16. #16
    Going Retro!!! Ferral's Avatar
    Join Date
    Jul 2003
    Location
    North East
    Posts
    7,532
    Thanks
    426
    Thanked
    1,139 times in 724 posts
    • Ferral's system
      • Motherboard:
      • ASUS Z97-P
      • CPU:
      • Intel i7 4790K Haswell
      • Memory:
      • 8Gb Corsair XMS3 DDR3 1600 Mhz
      • Storage:
      • 120Gb Kingston SSD & 1.5 Tb Western Digital
      • Graphics card(s):
      • Sapphire Radeon R9 380 Nitro 4Gb
      • PSU:
      • Antec Truepower 750 Watt Modular
      • Case:
      • Zalman HD501 HTPC case
      • Operating System:
      • Windows 10 64 bit
      • Monitor(s):
      • 21" ASUS 1080P Widescreen LCD
      • Internet:
      • 20MB Sky Fibre
    See if its running from a specific directory on the hard disk, most spyware and viruses tend to be in the temp files in you're local setting in documents. Also check to see if its opening and running on Windows boot (use msconfig command from the run menu to check this)

    Have you done a full system scan with an AV program and Spyware program in Safemode yet ? Always a good place to start

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •