Solved

baidu.exe

Posted on 2015-02-13
5
257 Views
Last Modified: 2015-03-18
I have Kaspersky anti-virus. In the past few days I get a message about c:\programdata\q1srv1task\baidu.exe

It says "updater.exe got access to malware detected by Kaspersky Security Network.

It then wants to do a disinfect with reboot which makes no difference. I've renamed the folder and it gets created again. I can't see any startup items that might cause it. Doing a Google doesn't help much. Has anyone come across this please and how should I deal with it.
0
Comment
Question by:dengolding
  • 2
5 Comments
 
LVL 80

Accepted Solution

by:
David Johnson, CD, MVP earned 500 total points
ID: 40608485

1. Remove using ADWare Cleaner


Download and install ADWare Cleaner. Important close all open programs and internet browsers,

2. Remove using Junkware removal tool


Download
Let it run its scan and when the scan completes, it will display a log with the malicious files and registry keys that were removed from your computer.

3. Remove using Malware Bytes


update the definitions and let it run.. it will show you the PUP's (Potentially Unwanted Programs).
Make sure that everything is Checked then click on the Remove Selected button.
Download and Install Malware Bytes

4. Double-check for the Adware:Win32/Baidu.A infection with HitmanPro


Download Hitman Pro
run it.. if it finds anything .. activate the free 30 day trial to remove the items

5. Be Proactive and not Reactive


Malware Bytes Pro would have stopped this item in its tracks before it got a hold on to your computer. Since software can't prevent stupid or inattentive users then you have to step up your awareness when installing software from the internet. Most PUP installations are by the user ACCEPTING the installation as it is bundled with some other really wanted piece of software. They all have an opt-out clause before you install them.. but you have to be careful and read things to make sure you are getting a tag along programhttp://malwaretips.com/blogs/adware-win32-baidu-a-removal/
0
 

Author Comment

by:dengolding
ID: 40611095
I'll try that. I don't install odd bits from the internet but I recently had a spate of ads popping up in all browers and redirected windows opened with constant big download buttons to update flash or such like but ignored them all. I managed to get rid of the software involved but then this appeared.  Quite often when genuinly updating Windows software there are several large download buttons on the same page and it's not clear which is correct for the update. I must have been caught out by the deceptive text. As a programmer I'd like to think that I'm fairly switched on to this but time pressures can catch one off guard.
0
 

Author Comment

by:dengolding
ID: 40664834
I rather resented being called a stupid or inattentive user so I am abandoning this question. I have Bit Defender and it is constantly updated and so should have detected the file. I don't blithley accept anything when installing software but sometimes, especially with adobe, it's easy to miss their tiny tick boxes for other software. As it happens, I rarely install oddware.
0

Featured Post

Secure Your Active Directory - April 20, 2017

Active Directory plays a critical role in your company’s IT infrastructure and keeping it secure in today’s hacker-infested world is a must.
Microsoft published 300+ pages of guidance, but who has the time, money, and resources to implement? Register now to find an easier way.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

For those of you actively in the Malware fightling business, we now have available an amazing new tool in the malware wars (first recommended to me by rpggamergirl (http://www.experts-exchange.com/M_3598771.html), the Zone Advisor for the Virus and …
Ransomware continues to be a growing problem for both personal and business users alike and Antivirus companies are still struggling to find a reliable way to protect you from this dangerous threat.
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

685 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question