Posted on 2015-02-13
Last Modified: 2015-03-18
I have Kaspersky anti-virus. In the past few days I get a message about c:\programdata\q1srv1task\baidu.exe

It says "updater.exe got access to malware detected by Kaspersky Security Network.

It then wants to do a disinfect with reboot which makes no difference. I've renamed the folder and it gets created again. I can't see any startup items that might cause it. Doing a Google doesn't help much. Has anyone come across this please and how should I deal with it.
Question by:dengolding
  • 2
LVL 78

Accepted Solution

David Johnson, CD, MVP earned 500 total points
Comment Utility

1. Remove using ADWare Cleaner

Download and install ADWare Cleaner. Important close all open programs and internet browsers,

2. Remove using Junkware removal tool

Let it run its scan and when the scan completes, it will display a log with the malicious files and registry keys that were removed from your computer.

3. Remove using Malware Bytes

update the definitions and let it run.. it will show you the PUP's (Potentially Unwanted Programs).
Make sure that everything is Checked then click on the Remove Selected button.
Download and Install Malware Bytes

4. Double-check for the Adware:Win32/Baidu.A infection with HitmanPro

Download Hitman Pro
run it.. if it finds anything .. activate the free 30 day trial to remove the items

5. Be Proactive and not Reactive

Malware Bytes Pro would have stopped this item in its tracks before it got a hold on to your computer. Since software can't prevent stupid or inattentive users then you have to step up your awareness when installing software from the internet. Most PUP installations are by the user ACCEPTING the installation as it is bundled with some other really wanted piece of software. They all have an opt-out clause before you install them.. but you have to be careful and read things to make sure you are getting a tag along program

Author Comment

Comment Utility
I'll try that. I don't install odd bits from the internet but I recently had a spate of ads popping up in all browers and redirected windows opened with constant big download buttons to update flash or such like but ignored them all. I managed to get rid of the software involved but then this appeared.  Quite often when genuinly updating Windows software there are several large download buttons on the same page and it's not clear which is correct for the update. I must have been caught out by the deceptive text. As a programmer I'd like to think that I'm fairly switched on to this but time pressures can catch one off guard.

Author Comment

Comment Utility
I rather resented being called a stupid or inattentive user so I am abandoning this question. I have Bit Defender and it is constantly updated and so should have detected the file. I don't blithley accept anything when installing software but sometimes, especially with adobe, it's easy to miss their tiny tick boxes for other software. As it happens, I rarely install oddware.

Featured Post

Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

Join & Write a Comment

Suggested Solutions

PREFACE The purpose of this guide is to explain what the SEPC Status Utility is and how it works. I have written the utility using AutoIt and have included the source code for your review. You are welcome to modify the code to your liking, but I wi…
By the time you finish reading this article, you may have already lost all your money because you don't know the simple steps to securing your BitCoin wallet. BitCoin is an incredible invention. It is a decentralized currency system, which is the…
This tutorial demonstrates a quick way of adding group price to multiple Magento products.
This video demonstrates how to create an example email signature rule for a department in a company using CodeTwo Exchange Rules. The signature will be inserted beneath users' latest emails in conversations and will be displayed in users' Sent Items…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now