Cases of such a problem as the Baidu virus getting onto users’ computers have become more frequent. As a result, the question arose - how to remove the Chinese Baidu virus. Baidu developers claim that the program is harmless and helps fight viruses, but it itself turned out to be a pest.
Where do Baidu's legs come from?
Many of you very often look on the Internet for books or some programs that are not provided for free. Most often, you receive archives, after unpacking them, you receive the treasured file. And now there’s a little “gift” to boot. Without knowing it, you install the Chinese Baidu antivirus on your computer and the following picture appears on your desktop:
Consequences of the program
At first glance it would seem that it doesn’t matter; she doesn’t bother me. But when you go online, you will receive a bunch of 100,500 notifications in Chinese. Not only will they appear frequently, but the computer will become very dull and prevent it from working normally. And then you realize that your PC needs a forced cleanup mode from the harmful Baidu virus.
How to remove Baidu?
The question is not rhetorical, but difficult to solve. We worked hard and selected best recipe healing your computer from a Chinese tumor. Begin:
- Go to the “Processes” tab in the “Task Manager” and you should see something similar to the one in the screenshot. These are the same canoe processes that need to be removed, but more on that a little later:
- In turn, on each canoe process, right-click and select “Open file storage location”, save all the paths where you go to text file, and save this file anywhere, but comfortable spot on PC. You should end up with something like this, but use this as a guide, your path will vary:
- Open any uninstaller, you can also use the standard one. Find the installations of this evil antivirus, you can start removing the Chinese baidu virus. After the removal begins, you will be taken to a window with Chinese requests for mercy. Click on the left button, as in the picture. It looks like this:
- Next, a bunch of similar windows will pop up. In each one, select the left gray button, and at the end there will be this surprise with one button:
- If your uninstaller detects several of these Chinese programs, repeat steps 3-4 until there is nothing Chinese in the list of your programs. This is only half the way to solving the problem of how to remove the Chinese Baidu virus.
- You will think: “well, that’s it, you can sleep peacefully.” But this is not so, if only because the processes of this software continue to work. You try to stop them, but you get this in response:
- To get rid of these processes we need to boot into safe mode. If you have Windows Seven, you are a little lucky; when you reboot, before the Windows logo appears, press the F8 key several times and select the boot method; if you have Windows 8, 8.1 you will need to sweat a little. To go to safe Windows mode 8|8.1 do two simple steps:
- After loading into desired mode, you need your text file with the paths. Take each path, go along it and delete all the contents of the folders one by one. For example:
- After you have gone to all the addresses and removed all the enemies of one hut, reboot in normal mode and enjoy life.
That's the whole recipe for restoring your worker's health. Do not use unwanted sites with dubious sensational content - your computer will thank you!
Do some windows with hieroglyphs, rockets and shields constantly appear on your desktop? This is an antivirus developed by our Chinese brothers, which, in its essence, is exactly antivirus program. At the same time, since this software is installed without the user’s consent and independently performs actions on the computer, it can be considered malicious. In this article we will figure out how to remove the annoying Chinese virus.
The programs discussed below are presented in two varieties - Baidu And "Tencent". Both of them have similar properties and can run in parallel on the same computer. Pests are located in the appropriate folders.
C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.148966.2
C:\Program Files (x86)\Tencent\QQPCMgr\12.7.18987.205
Programs register their components in startup, the Explorer context menu, and launch processes. Let's look at deletion using Baidu as an example. Both methods given below are only the first stage; after completing it, you need to perform some more actions, but first things first.
Method 1: Uninstall using programs
To remove Chinese viruses from your computer, the easiest way is to use a program such as Revo Uninstaller. It can not only remove software, but also clean the system of remaining files and registry keys. In addition, Revo can detect those programs that are not displayed in the list, including in "Control Panels" Windows.
In nature there is also a utility AdwCleaner, with which you can try to remove pests.
Method 2: Standard system tools
Under standard means implies removal using an applet "Control Panels" "Programs and Features".
If the program is not in "Control Panels", then you need to follow one of the paths indicated above and find a file called "Uninstall". After launching it, you should do the same steps to remove it.
Additional operations
By following the above recommendations, the Chinese virus can be removed, but some files and folders may remain on the disk because they are blocked by running background processes. There will also definitely be “tails” in the form of keys in the registry. There is only one way out - boot the system into "Safe Mode". With such a download, most programs do not start, and we can remove everything unnecessary manually.
Read more: How to enter “Safe Mode” in Windows XP, Windows 8, Windows 10, via BIOS
- First of all, we turn on the display of hidden resources. This is done by pressing a button "Arrange" and selecting an item "Folder and Search Options" in any folder, in our case it is "Computer".
In the settings window that opens, go to the tab "View", put the switch in position "Show hidden files, folders and disks" and click "Apply".
- To search for files and folders, you can use the standard Windows function or special programs.
We enter the name of the virus into the search - “Baidu” or “Tencent” and delete all documents and directories that we can find.
- Next, go to the registry editor - press the key combination Win+R and write the command
Go to the menu "Edit" and select the item "Find".
Enter the name of the virus in the appropriate field and click "Find Next".
After the system finds the first key, it needs to be deleted (RMB - "Delete"), and then press the key F3 to continue the search process.
We do this until the editor displays a message that the search is complete.
If you are afraid (or simply too lazy) to delve into the registry manually, then you can use the CCleaner program to clean up unnecessary keys.
At this point, the removal of the Chinese antivirus virus can be considered complete.
Conclusion
In conclusion, we can say that you need to be more careful when installing various programs, especially free ones, to your computer. Do not consent to the installation of additional software, uncheck all the checkboxes in the installers. These rules will help you avoid problems with the subsequent removal of any nasty stuff from the system.
Baidu is a Chinese program that is considered an antivirus. However, it receives complaints from users, due to the fact that Baidu installs itself on the computer, and then begins to harm it in every possible way and show itself as real computer virus. Moreover, attempts to remove this program end in even greater problems, since the interface is completely in Chinese, and it can only be removed at random. And if you make a mistake with the button, other add-ons from this program may be installed on your computer, and as a result, you may not have time to save it from this malware. However, that's not all. Even if the program can be removed by uninstalling it, upon subsequent reboot it will be installed again on its own on the PC.
If you look into it, it actually installs virally. When downloading any programs from the Internet, Baidu is downloaded in hidden mode and gets onto the computer in a way that is invisible to the user. After the download is complete, the program installs itself on the computer and begins, as they say, to manage it. PC users are constantly bothered by pop-up windows, strange program sounds, the computer starts to work slower, the Internet crashes, and so on, to the point where Windows completely crashes on the PC.
Most importantly, various popular antiviruses do not recognize Baidu as a virus, and do not generate any threat signals. This at one time relaxes PC users and assures them that the program is not capable of harming their computer.
However, how can you completely remove the Chinese “baida” from Windows so that it disappears without a trace and is no longer installed? Below is a detailed step-by-step instruction removal from a personal computer.
First, you should try to remove it naturally. To do this, press the key combination Win+X, in the opened context menu select “Control Panel”. Then go to the “Uninstall a program” tab.
Among the programs installed on the PC, we are looking for these Chinese programs. Let's start with the one whose label is depicted in the form of a green shield. Left-click on it, then select “Delete”.
An uninstallation window will open. Of the two proposed answer options, highlighted in green, choose the left option. Then, in the next dialog box, again select the left option of the two. After which the program removal begins. After completing this process, click on the only button provided, thus completing the removal of the first program.
Next, let's move on to uninstalling the program, the image of which is a blue shield. Let's click again right click mouse, select “Delete”. Next, we follow this principle: choose from the two proposed hieroglyphs the one that is not highlighted in blue. We do this twice, after which the removal process begins. In the last dialog box, we again select the only available button and this is how we complete the Baidu removal process.
However, that's not all. To ensure that the Chinese "canoe" is no longer installed, you need to remove all its connected processes.
Step Two: Removing Processes
Press the key combination Ctrl+Alt+Delete, thus calling up the “Task Manager”. Among the top tabs, select the “Processes” tab. All the processes taking place in the world are revealed to us. this moment from PC. Among them there may be one or more processes of the Baidu program; you should find them in the list, which is not difficult; the description of such processes is written entirely in Chinese.
After absolutely all processes have been found, you should create a Text Document and open it. Next, we proceed according to the following principle: select the first “canoe” process that comes across in the list and right-click on it. In the context menu, select “Open file storage location”.
A folder will open in front of us, which will show the location of the process. In the top header we will see the path to the process. It should be copied and then pasted into a text document. This must be done with each process opened in the task manager.
Why are we taking this step? The fact is that when we try to delete these folders manually, we will see the message “Deleting the folder is impossible because... it is being used by another program.” For this reason, we need to remove these processes by logging into Windows through “Safe Mode”. This is the only way we can delete every folder and process without a trace.
How to log into your computer through “Safe Mode”?
Method 1
This method works on many Windows, with the exception of Eight. You need to restart the computer, and when you start to reboot, start pressing the F8 key until the computer boots through “Safe Mode”.
Method 2
If Baidu removal occurs on Windows 8, you must resort to the following method:
Press the power button on the Windows login screen, then simultaneously press the combination of the Restart screen buttons and the Shift keyboard. Windows will give you a choice of actions from which you should select the Diagnostic option. Then, in the “Diagnostics” menu, you must press the “Advanced options” button. Next, select “Boot Options” and at the end select the option “Enable Safe Mode” and “Restart”. After rebooting, Windows will offer you to choose 3 options to boot into “Safe Mode”. You should press the F4 key to start Windows simply in “Safe Mode”. In safe mode, the Chinese program cannot launch processes, so we have a chance to get rid of it completely.
On the desktop, open our saved text document with the paths to the Baidu files. Next you should call the “Run” line. To do this, press the Win+R key combination. Copy the first path in the list and paste it into the “Run” line. This way, the first location of the file is revealed to us, and we can delete it without a trace. To do this, right-click on the folder or file and select the “Delete” function in the context menu. We do exactly the same with all paths, deleting all folders of the Baidu virus. Once you have deleted all the files associated with this program, you can restart your computer in its normal mode.
After rebooting the PC, the Chinese antivirus will disappear without a trace without the ability to install itself, which means that your computer is no longer in danger.
Today we will learn how to clean a computer from the Chinese Baidu virus, which installs unnoticed by the user and significantly slows down the entire system. In addition to removal methods, you will learn how to protect yourself from such unpleasant surprises in the future and who benefits from spreading a virus that does not steal anything from you.
What is Baidu?
This virus has a very unusual history: its only purpose is an attempt to “tarnish” the reputation of Baidu, which, in fact, has nothing to do with this infection. Baidu is one of the major Chinese search engines (Like Yandex with us), and not so long ago they released a real, quite good and free antivirus(It uses not only its own developments, but also the engine of the popular product Avira Antivirus, which confirms its reliability). You can download the genuine product on the official website.But soon after this, unknown persons began actively distributing this malware, which in appearance is very similar to the original antivirus, but is just “garbage” with the Baidu logo. The provocation was a success: almost no one here has heard of such a search engine and its useful products, but when it is mentioned, the first thing people remember is the virus.
Step 1: Initial removal.
Download 4 programs to your computer:- UltraAdwareKiller 0.1.0 (32-bit version | 64-bit version)
Restart your computer in Safe Mode with support network drivers. To do this, during the reboot, until the Windows logo appears, press the F8 key on the keyboard several times. As a result, the following window will appear:
Go to Add or Remove Programs:
Windows XP:
Windows 7:
Windows 8:
Baidu An (Antivirus):
Select the program (blue icon), click “Delete”.
When a window with Chinese characters appears, select the button with a white background in the lower right corner, DO NOT touch the blue one:
The second window is similar:
Baidu SD:
Here the first window turns out to be more confusing: first click on the disgruntled horned Chinese, and only then press the white button.
Next is the white button again. Removal is complete.
Step 2: Final cleaning.
1. First, launch AdwCleaner.In the main program window, click “Scan”.
The program will check everything from shortcuts to files, folders and registry entries. Upon completion, in each of the tabs you can see what exactly she found and, if necessary, prevent her from deleting an element by unchecking it.
When the scan is complete, click Clean. The program will ask you to restart your computer. Do this, but don't forget to enter Safe Mode again like last time.
If AdwCleaner refuses to work in safe mode, skip this step and move on to the next utility:
2. Now it’s UltraAdwareKiller 2.0.1.0’s turn:
Important: before using the program, disable your computer's Internet access! It is this version that copes well with the Baidu pseudo-antivirus, but after the update it stops finding it. Therefore we prohibit it.
In the main program window, click “Start scan”.
Once the scan is complete, UAK will display a list of files it has found that it is ready to delete. Make sure they are checked and then click “Cleanup”.
Important: Make sure that only Baidu viruses are checked, because By default, the program can also mark, say, extensions for your browsers that you use. Be careful!
3. Latest version UAK
Since this virus changes from time to time, for complete peace of mind you can now run the latest version of UAK. We perform the same actions and delete everything that is found. You can now boot your computer as usual.
If AdwCleaner did not want to work in safe mode, now is the time to launch it by running the check as described above.
Finally, run this program and check the registry:
Click “Clear”, and after removing all the errors found, check again. Very often, the second and subsequent scans find many more errors. Repeat this procedure (usually 5 times is enough) until nothing is found.
How to protect yourself from such viruses?
There are 2 rules:- Verified sources of downloaded files. When downloading anything from an unfamiliar site, it is very easy to stumble upon a file wrapped in a so-called “downloader” - an advertising module that, along with the content you need, also installs a lot of useless or harmful software. He can also change start pages in browsers, add various unsafe plugins, etc.
- Pay attention to what is written during installation (especially if the installer is in a language you don’t know). Many users, when installing software, simply press the “Next” or “Accept” button until a window with an installation scale appears. But it is during the pre-installation stages that you are often asked to voluntarily install this or that application, to which you agree by clicking “Next”. It is impossible to give an unambiguous recommendation, because... appearance and the button layout often differs, but in the case of Baidu it looks something like this:
Various Mail.Ru and Yandex products are often installed using the same principle. This type of spread does not necessarily mean that you will get the virus, but the likelihood is high, as we have already seen in this material.
Conclusion
Baidu's roots are quite deep, but thanks to programs that specialize in adware, its removal does not take much time. Fortunately, this virus It is not dangerous, but it can seriously damage your nerves, slowing down the system as a whole.
Loading...
