Malware

Win32/Baidu.J potentially unwanted malicious file

Malware Removal

The Win32/Baidu.J potentially unwanted is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/Baidu.J potentially unwanted virus can do?

  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Win32/Baidu.J potentially unwanted?



File Info:

crc32: B059A2A4
md5: 6b34eef527e8b39657af98408f9f0f93
name: 6B34EEF527E8B39657AF98408F9F0F93.mlw
sha1: d97c4ad6c833563ef3a406235a1133d796fc51c0
sha256: 1e1abdcc04653cfbe71afc8fb1529c9f38b182f4488f38ed4f050f4be3e67253
sha512: 373c658ac53316728344d7db187e8d411822af4976644851d2e29651806ef69e7c949b90c37754d7d4074c31d53a0f88ea4d9bb15c85cbf1887d1c56deb2ae9e
ssdeep: 98304:X2X/RbQLLg0BmnRoNMyLyEZ120wmdIzbeqCrg7Z1PHBhUbsdlqXSxNt:X6cwoNpyEJwmdI9CEF1PHeSxNt
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright (C) 2013 Baidu Inc.
FileVersion: 1.0.439.677
CompanyName: x767ex5ea6x5728x7ebfx7f51x7edcx6280x672fxff08x5317x4eacxff09x6709x9650x516cx53f8
LegalTrademarks: 
ProductName: x767ex5ea6x536bx58eb
ProductVersion: 1.0.439.677
FileDescription: x767ex5ea6x536bx58ebx5b89x88c5x7a0bx5e8f
Translation: 0x0804 0x03a8

Win32/Baidu.J potentially unwanted also known as:

K7AntiVirusAdware ( 004f98381 )
DrWebTrojan.DownLoader26.27205
ZillyaTrojan.Jorik.Win32.402174
CrowdStrikewin/malicious_confidence_70% (D)
K7GWAdware ( 004f98381 )
ESET-NOD32Win32/Baidu.J potentially unwanted
KasperskyHEUR:Trojan-Spy.Win32.Zbot.gen
SophosGeneric ML PUA (PUA)
McAfee-GW-EditionBehavesLike.Win32.AdwareFiseria.rc
MicrosoftPUA:Win32/Presenoker
McAfeeArtemis!6B34EEF527E8
VBA32Trojan.Downloader
FortinetRiskware/Baidu

How to remove Win32/Baidu.J potentially unwanted?

Win32/Baidu.J potentially unwanted removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment