Go Premium for a chance to win a PS4. Enter to Win



Posted on 2015-02-13
Medium Priority
Last Modified: 2015-03-18
I have Kaspersky anti-virus. In the past few days I get a message about c:\programdata\q1srv1task\baidu.exe

It says "updater.exe got access to malware detected by Kaspersky Security Network.

It then wants to do a disinfect with reboot which makes no difference. I've renamed the folder and it gets created again. I can't see any startup items that might cause it. Doing a Google doesn't help much. Has anyone come across this please and how should I deal with it.
Question by:dengolding
  • 2
LVL 84

Accepted Solution

David Johnson, CD, MVP earned 2000 total points
ID: 40608485

1. Remove using ADWare Cleaner

Download and install ADWare Cleaner. Important close all open programs and internet browsers,

2. Remove using Junkware removal tool

Let it run its scan and when the scan completes, it will display a log with the malicious files and registry keys that were removed from your computer.

3. Remove using Malware Bytes

update the definitions and let it run.. it will show you the PUP's (Potentially Unwanted Programs).
Make sure that everything is Checked then click on the Remove Selected button.
Download and Install Malware Bytes

4. Double-check for the Adware:Win32/Baidu.A infection with HitmanPro

Download Hitman Pro
run it.. if it finds anything .. activate the free 30 day trial to remove the items

5. Be Proactive and not Reactive

Malware Bytes Pro would have stopped this item in its tracks before it got a hold on to your computer. Since software can't prevent stupid or inattentive users then you have to step up your awareness when installing software from the internet. Most PUP installations are by the user ACCEPTING the installation as it is bundled with some other really wanted piece of software. They all have an opt-out clause before you install them.. but you have to be careful and read things to make sure you are getting a tag along programhttp://malwaretips.com/blogs/adware-win32-baidu-a-removal/

Author Comment

ID: 40611095
I'll try that. I don't install odd bits from the internet but I recently had a spate of ads popping up in all browers and redirected windows opened with constant big download buttons to update flash or such like but ignored them all. I managed to get rid of the software involved but then this appeared.  Quite often when genuinly updating Windows software there are several large download buttons on the same page and it's not clear which is correct for the update. I must have been caught out by the deceptive text. As a programmer I'd like to think that I'm fairly switched on to this but time pressures can catch one off guard.

Author Comment

ID: 40664834
I rather resented being called a stupid or inattentive user so I am abandoning this question. I have Bit Defender and it is constantly updated and so should have detected the file. I don't blithley accept anything when installing software but sometimes, especially with adobe, it's easy to miss their tiny tick boxes for other software. As it happens, I rarely install oddware.

Featured Post

Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Change your password...do it now!. Probably the easiest point of access to your account is through guessing your password. If your password is guessable, do change it now. If not for your sake but for everyone else in your friends list. Remember …
Curious about the latest ransomware attack? Check out our timeline of events surrounding the spread of this new virus along with tips on how to mitigate the damage.
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
Suggested Courses

916 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question