Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17



Posted on 2015-02-13
Medium Priority
Last Modified: 2015-03-18
I have Kaspersky anti-virus. In the past few days I get a message about c:\programdata\q1srv1task\baidu.exe

It says "updater.exe got access to malware detected by Kaspersky Security Network.

It then wants to do a disinfect with reboot which makes no difference. I've renamed the folder and it gets created again. I can't see any startup items that might cause it. Doing a Google doesn't help much. Has anyone come across this please and how should I deal with it.
Question by:dengolding
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
LVL 83

Accepted Solution

David Johnson, CD, MVP earned 2000 total points
ID: 40608485

1. Remove using ADWare Cleaner

Download and install ADWare Cleaner. Important close all open programs and internet browsers,

2. Remove using Junkware removal tool

Let it run its scan and when the scan completes, it will display a log with the malicious files and registry keys that were removed from your computer.

3. Remove using Malware Bytes

update the definitions and let it run.. it will show you the PUP's (Potentially Unwanted Programs).
Make sure that everything is Checked then click on the Remove Selected button.
Download and Install Malware Bytes

4. Double-check for the Adware:Win32/Baidu.A infection with HitmanPro

Download Hitman Pro
run it.. if it finds anything .. activate the free 30 day trial to remove the items

5. Be Proactive and not Reactive

Malware Bytes Pro would have stopped this item in its tracks before it got a hold on to your computer. Since software can't prevent stupid or inattentive users then you have to step up your awareness when installing software from the internet. Most PUP installations are by the user ACCEPTING the installation as it is bundled with some other really wanted piece of software. They all have an opt-out clause before you install them.. but you have to be careful and read things to make sure you are getting a tag along program

Author Comment

ID: 40611095
I'll try that. I don't install odd bits from the internet but I recently had a spate of ads popping up in all browers and redirected windows opened with constant big download buttons to update flash or such like but ignored them all. I managed to get rid of the software involved but then this appeared.  Quite often when genuinly updating Windows software there are several large download buttons on the same page and it's not clear which is correct for the update. I must have been caught out by the deceptive text. As a programmer I'd like to think that I'm fairly switched on to this but time pressures can catch one off guard.

Author Comment

ID: 40664834
I rather resented being called a stupid or inattentive user so I am abandoning this question. I have Bit Defender and it is constantly updated and so should have detected the file. I don't blithley accept anything when installing software but sometimes, especially with adobe, it's easy to miss their tiny tick boxes for other software. As it happens, I rarely install oddware.

Featured Post

Are You Ready for GDPR?

With the GDPR deadline set for May 25, 2018, many organizations are ill-prepared due to uncertainty about the criteria for compliance. According to a recent WatchGuard survey, a staggering 37% of respondents don't even know if their organization needs to comply with GDPR. Do you?

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

An introduction to the wonderful sport of Scam Baiting.  Learn how to help fight scammers by beating them at their own game. This great pass time helps the world, while providing an endless source of entertainment. Enjoy!
This article investigates the question of whether a computer can really be cleaned once it has been infected, and what the best ways of cleaning a computer might be (in this author's opinion).
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

670 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question