home-Skype-Chinese viruses icons. How to remove a Chinese program from your computer? Cleaning the system with AdwCleaner

Chinese viruses icons. How to remove a Chinese program from your computer? Cleaning the system with AdwCleaner

Many users are familiar with the new Chinese antivirus under the name Baidu, but few know that the Chinese viruses BaidaEx, Baidu Sd and Baidu An can also masquerade as it. The most interesting thing is that none of the users installed them themselves. Who installed it then? The Chinese miracle is attached to popular programs, which are installed from the Internet. During the installation process of such a program, the user quickly clicks the “Next” and “Agree” buttons, without reading that in addition an antivirus, beautiful panels from popular browsers, or anything else that is completely unnecessary on the user’s computer is installed. If simple elements can be easily removed from a computer, then with antivirus and viruses it is not so simple. You need to figure out how to remove the Chinese Baidu antivirus and the virus disguised as it so that there are no reminders of them left in the system.

Symptoms of computer infection by Chinese miracle

Browsers such as Google Chrome,Opera, Mozilla Firefox. When you open them from the shortcut, a search engine with a lot of advertising is launched. Installation own page by default the situation will not change, you don’t have to waste time on it. Also the work of all operating system slows down significantly, even on a high-performance platform with a powerful processor and large capacity random access memory. Shortcuts with hieroglyphs appear on the desktop, which are duplicated by applications in the system menu, on the right, below near the clock. These icons look like shields in blue, green or red. It remains to figure out how to use Chinese characters from a computer.

A set of necessary tools to eliminate Baidu

Before you begin the treatment procedure, you need to stock up on several programs that will help you remove Adware Baidu once and for all. All programs are free, and they must be downloaded only from the developer’s website, so as not to accidentally install something similar to a Chinese miracle.

  1. CCleaner is a program for complete uninstallation and startup management in Windows.
  2. Dr.Web CureIt! - a free utility from the famous antivirus software manufacturer DrWEB.
  3. Avast- free antivirus, which can respond to unauthorized installation of Chinese programs. Avast is installed only if there is no antivirus on the system.

Entering Safe Mode

Having downloaded the necessary set of programs and saved them on disk, you can begin active actions. Before Baidu, you need to switch Windows to First, you need to disconnect your computer from the Internet and reboot the system. During the reboot process, seeing start window BIOS, you need to press the F8 key on the keyboard, you can several times until a menu appears prompting you to select actions before loading Windows. It’s quite difficult to catch this menu without skill; if it doesn’t work, you can completely turn off the computer’s power, and then when you turn it on, immediately press the F8 button every second - this way you have more chances. In the menu that appears, use the arrows on the keyboard to select “Safe Mode” (or Safe Mode, if the menu is in English). Press the Enter key on your keyboard.

First steps with CCleaner

Having installed the previously downloaded CCleaner program on your computer, you can address the question of how to remove a program with Chinese characters. Go to the “Tools” menu and select the “Uninstall” tab. A list of all installed programs in system. One by one, you need to remove from the list all programs that have Baidu and Chinese characters in their names. To do this, you need to click once on the name of the program, highlighting your choice, and click the “Uninstall” button in the upper right corner.

During the uninstallation process, Chinese program windows may appear asking you to press buttons labeled with hieroglyphs. The main thing is to remember that left button is always a confirmation, and accordingly, it must be pressed. In addition to Baidu, you must remove all manually installed browsers in the same way: Google Chrome, Opera, Mozilla Firefox. If this is not done, Baidu plugins installed in browsers will restore remote antivirus at first start. Subsequently, browsers can be downloaded from the Internet (from the official developer sites!) and reinstalled.

Editing startup and junk removal with CCleaner

Without closing CCleaner, you need to make changes to Windows startup. To do this, you need to select the “Startup” tab in the same “Tools” menu. In the list of the first Windows bookmark that appears, you need to remove the antivirus from startup. Chinese Baidu can be spelled as with Latin letters, and hieroglyphs. Next, you need to highlight the desired field with the cursor and click the “Delete” button in the upper right corner. Perform exactly the same deletion of launch keys for all remaining bookmarks following the Windows bookmark on the top panel open window. CCleaner can be minimized, it will be useful at the last stage of cleaning Windows registry from "garbage".

Manual removal of antivirus elements

This cannot be done without user intervention. Before you completely remove the Chinese Baidu antivirus and all the directories in Windows where it could be located, you need to open the search window in Windows. You can do this in two ways:

  • Simultaneously press the buttons on the “Start” keyboard (button with Windows icon) and F.
  • Open Explorer and go to drive C (if system disk has a different letter - select it). In the upper right corner of the window there will be a “Search” field in which you need to write the word Baidu.

After a short search, the system will provide information on files and directories that are related to the object being deleted. All directories and files with the name must be deleted and the recycle bin emptied. After deletion, the search procedure must be repeated until the search produces zero results.

Searching for infected files in the system

The system may contain files with which the Chinese miracle came from the Internet to the computer and was installed on the system. To eliminate complaints from users after the operation that the Chinese program is not removed, the destruction of viruses built into software, must be done using the Dr.Web CureIt! Having installed the program and launched it, you need to press just one button - “Start scanning”. The program will independently cure or eliminate infected files, which will be reported in the report file after the scan is completed.

After all actions - global registry cleanup

Having finished removing infected files from your computer, all that remains is to decide how to remove Chinese Baidu antivirus from the registry Windows systems. To do this, in the CCleaner program, go to the “Registry” menu and click the button at the bottom of the screen - “Scan for Issues”. After completing the scan, the system will offer to correct errors. In the lower right corner you need to click the “Fix selected” button and in the window that appears, select “Fix issue all”. After confirming the registry cleanup, CCleaner can be closed.

You can safely restart your computer and boot into normal mode. If before starting Windows will ask how the user wants to start, you need to select “ Regular download Windows/Start Windows Normally".

Chinese antivirus may be Russified

It is possible that the user independently decided to install a real Chinese Baidu antivirus, which, in addition, is free and has a number of excellent functions that are only available in paid versions of other antivirus developers. You need to figure out how to properly Russify Baidu Antivirus. To do this, you need to go to the official website of the Baidu antivirus developer in the Language packs section, find and download the folder with the Russian.zip cracker.

If the Baidu antivirus menu is in English, then installation is done through the Language Translator antivirus menu. In other words, you need to unpack the contents of the downloaded file into the DIYResource directory, which is located along with the antivirus executable files on the system disk.

Do some windows with hieroglyphs, rockets and shields constantly appear on your desktop? This is an antivirus developed by our Chinese brothers, which, in its essence, is exactly antivirus program. At the same time, since this software is installed without the user’s consent and independently performs actions on the computer, it can be considered malicious. In this article we will figure out how to remove the annoying Chinese virus.

The programs discussed below are presented in two varieties - Baidu And "Tencent". Both of them have similar properties and can run in parallel on the same computer. Pests are located in the appropriate folders.

C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.148966.2
C:\Program Files (x86)\Tencent\QQPCMgr\12.7.18987.205

Programs register their components in startup, context menu Explorer, launch processes. Let's look at deletion using Baidu as an example. Both methods given below are only the first stage; after completing it, you need to perform some more actions, but first things first.

Method 1: Uninstall using programs

To remove Chinese viruses from your computer, the easiest way is to use a program such as Revo Uninstaller. It can not only remove software, but also clean the system of remaining files and registry keys. In addition, Revo can detect those programs that are not displayed in the list, including in "Control Panels" Windows.

In nature there is also a utility AdwCleaner, with which you can try to remove pests.

Method 2: Standard system tools

Under standard means implies removal using an applet "Control Panels" "Programs and Features".


If the program is not in "Control Panels", then you need to follow one of the paths indicated above and find a file called "Uninstall". After launching it, you should do the same steps to remove it.

Additional operations

By following the above recommendations, the Chinese virus can be removed, but some files and folders may remain on the disk because they are blocked by running background processes. There will also definitely be “tails” in the form of keys in the registry. There is only one way out - boot the system into « Safe Mode» . With such a download, most programs do not start, and we can remove everything unnecessary manually.

Read more: How to enter “Safe Mode” in Windows XP, Windows 8, Windows 10, via BIOS

  1. First of all, we turn on the display of hidden resources. This is done by pressing a button "Arrange" and selecting an item "Folder and Search Options" in any folder, in our case it is "Computer".

    In the settings window that opens, go to the tab "View", put the switch in position "Show hidden files, folders and disks" and click "Apply".

  2. To search for files and folders, you can use a standard Windows function or special programs.

    We enter the name of the virus into the search - “Baidu” or “Tencent” and delete all documents and directories that we can find.

  3. Next, go to the registry editor - press the key combination Win+R and write the command

    Go to the menu "Edit" and select the item "Find".

    Enter the name of the virus in the appropriate field and click "Find Next".

    After the system finds the first key, it needs to be deleted (RMB - "Delete"), and then press the key F3 to continue the search process.

    We do this until the editor displays a message that the search is complete.

    If you are afraid (or simply too lazy) to delve into the registry manually, then you can use the CCleaner program to clean up unnecessary keys.

    4. At this point, the removal of the Chinese antivirus virus can be considered complete.

Conclusion

In conclusion, we can say that you need to be more careful when installing various programs, especially free ones, on your computer. Do not consent to installation additional software, uncheck all the boxes in the installers. These rules will help you avoid problems with the subsequent removal of any nasty stuff from the system.

A significant number of computer owners have already acquired negative experience with Chinese programs, which are often installed on a PC without the user’s knowledge, together with the installation of other applications. In this article, victims can find step by step guide, using which even a beginner can easily remove a Chinese program.

The material also provides specific recommendations for removing it from your computer. malware. The algorithm of actions is described in detail using the example of the Chinese anti-virus utility called “Baidu”, which most often infects equipment, under the name of which viruses from China are often hidden, for example, “Baidu An”, “Baidu Sd” and “BaidaEx”.

It is necessary to take into account the fact that very often several Chinese applications in Chinese appear on the PC at once, so it is recommended to repeat the step-by-step instructions for Baida the required number of times in order to remove all malicious software from the PC.

So, let's take immediate action to remove the Chinese program without leaving any traces of it on the computer.


Consequences of PC damage

User-visible symptoms of system damage by a Chinese application appear in browsers. When opening, for example, Opera, Chrome or Mozilla, the computer owner encounters a third-party search engine in Chinese, accompanied by a huge amount of advertising.

The main inconvenience for the user is a significant reduction in the speed of the computer, despite the modern PC hardware in the form powerful processor and a considerable amount of RAM.

Also, the screen is abundantly saturated with icons in Chinese, which are installed everywhere: in the system tray, in the program menu, on the desktop.

Step-by-step guide to remove Chinese program

First you need to write down the location of the utility that is installed on your computer.

For this purpose you need to do:

Removal procedure

Now, having the exact coordinates of the “enemy’s” location, you should begin the procedure for complete removal.

To perform deletion, you must do the following steps sequentially:

Following the above step by step instructions, you need to eliminate all Chinese utilities from your PC.

When the control panel runs out of Chinese applications, you must immediately proceed to the further stage of removing malicious Asian programs.

Eliminating the malware in its lair

To implement this stage, you will need to use the instructions created in the first section text file. Because the PC remains infected, even though the user has removed the malicious software.

To completely get rid of these “foreign” utilities, you will need to boot your PC in “safe mode”.

The following sequential steps must be taken:

  1. First you need to disconnect from the Internet and restart your PC. To boot into "Safe Mode". To do this, press the “F8” button during loading. A proposal will be displayed with a choice of boot options, select “Safe Mode” and click “Enter”;
  2. Now, in this mode, malicious Chinese applications do not function, i.e. the user has the option of completely deleting them. To do this, you need to open the “cheat sheet” with the coordinates of the utilities and copy one of the addresses (path) from the file;
  3. By clicking on “Start”, go to the “Run” line or in “Search programs and files”, paste what you copied and click on “Enter”;
  4. A window with a malicious file will appear;
  5. Next, it is recommended to delete the directory that contains the file, unless the virus is located in the system directory, in which case you should limit yourself to deleting only the file itself;
  6. Using similar actions, you need to delete all files whose addresses are written in the text file.

Getting rid of malicious applications using special utilities

Below are free utilities that you can use to eliminate malicious Chinese programs that have infected your PC:



Necessary manipulations in the CCleaner program

After starting the PC in “Safe Mode” and opening the “CCleaner” utility, you must sequentially perform the following steps:

  1. Enter the “Service” section and open the “Uninstall programs” tab;
  2. A list of PC applications will appear, from which one at a time select and remove utilities with the name “Baidu” and with hieroglyphs;
  3. When deleting on pop-up windows, you need to click on the left key;
  4. Next, it is recommended to uninstall it yourself installed browsers(having completed the work to eliminate the infection, the user will need to install them again, using only official resources);
  5. Then, in the “Service” section, go to the “Startup” tab and from the list, select and eliminate Chinese programs containing Baidu and hieroglyphs in the name.

How to find virus-infected files in the OS?

There is a high probability of finding files in the OS that appeared on the PC along with the installation of the Chinese program, so it is imperative to scan using “Dr.Web CureIt!”

To do this, do the following:

  1. Launch the application;
  2. In the menu that appears, click on “Start scanning”;
  3. Next, the application will delete the affected files and, after completing the process, present the results to the user.

And at the end of all manipulations - general cleaning

Open CCleaner again and do the following steps:

  1. Log in to the “Register” section;
  2. Click on “Search for problems”;
  3. Wait for the process to complete and click “Fix”;
  4. In the pop-up menu, click “Fix all”;
  5. Then, after completing the procedure, exit the utility and restart the PC in normal mode.

Chinese antiviruses are a difficult problem for users; let's look at how to remove a Chinese program from a computer if it cannot be removed.

IN this issue you will need to analyze each action and the features of the programs themselves. Let's figure out how to remove a Chinese program from a computer if it cannot be removed?

Difficulty of removal

Most often, Chinese antiviruses get onto the user’s computer. Some of them are installed together with other programs, without announcing their installation. Such programs are called “legal Trojans.”

The most a shining example in the CIS is “Yandex.Browser”, which often appears due to the fact that the user did not notice the checkbox. There are quite a lot of jokes about this phenomenon.

Developer Tricks

But unlike Yandex, Chinese (and Korean) developers have gone much further. They have made the procedure for uninstalling their products so complicated and confusing that even with knowledge of the language, uninstalling a program is an almost unthinkable achievement.

The main trick lies in two nuances:

Of course, these issues will be discussed below. After all, the purpose of the article is to analyze the removal of the program. But let's stop briefly. The first case constantly changes the question "do you want to remove the product?" according to its form.

When it reappears, the “should I keep the product?” window will pop up. and after confirming the action, the user will cancel the uninstallation. Or the “Yes” and “No” buttons are swapped for the same question. Without knowing the language, even these buttons themselves create a problem.

The second nuance can be considered the reinstall button. At the last confirmation, the user must notice and uncheck the “reinstall the product” checkbox. If this is not done, the uninstallation will end and a new installation will begin.

Why is it not noticeable that the program is being installed?

The key is to use what is called a "Silent Installation". This process starts the installation of the product in “invisible” mode. The only way to determine that something is wrong is to look at the task manager.

Additionally, you can notice such a setting at the moment when it causes “braking” of the system. At this point, you can still open the “Task Manager” and terminate the installation by removing the “setup.exe” process.

We remove products from Chinese developers

Having figured out what the program installation package is trying to catch (removal is carried out through it), you can avoid problems that arise in the future. As an example, consider the once sensational Baidu. The bulk of the problems with it were related to the Chinese interface, which is why it was removed.

The removal was built entirely in Chinese. This was the main problem. In mid-2018, the antivirus acquired Russian and English languages interface.

Step-by-step instructions for cleaning Baidu

The Baidu example can be called the simplest and most adequate. Thanks to the addition of new interface languages, it is easier to remove it by comparing menu items with the translation. Let's start with the analysis:


And in the next window we are told that the computer will be left without protection. To continue deleting, you will need to click on the red menu item.

The last step is cleaning the program files. Reboot the computer to disable the antivirus system tasks. In Explorer, open the system drive, find the “Program Files” folder and the “Baidu Antivirus” directory in it. It must be deleted using the keyboard shortcut “shift+del”.

Baidu has become familiar to many service engineers in terms of removal. The algorithm and understanding of the procedure were initially calculated using the “random click” method. A full understanding of the questions was subsequently added. Now the procedure has been dismantled completely and repeatedly.

Cleaning using special programs

Any removal can be performed with special programs. An example of such a program is CCleaner. Distinctive feature removing Chinese and Korean antiviruses through it is considered to be launching the removal program for the antivirus itself.

After clicking the delete button in CCleaner itself, the same window will open, which is discussed in the paragraph above. In terms of the main part of the removal, there are no changes. But the actions after removal should be noted separately:

  1. Go to the “Registry” section and run “Search for Problems”.
  2. Upon completion of the search, click “Correct selected...” and refuse to create backup. Cleaning the registry helps avoid a mandatory reboot after uninstalling Chinese programs. Which reduces the number of actions and reduces the number of problems. But the procedure does not end there.
  3. Open the “Service” tab and go to the “Startup” item. If there is an entry with the name of the antivirus, it must not only be disabled, but also deleted.

It would seem that, difficult removal Chinese programs are greatly simplified if you know the basic nuances and aspects of the procedure. This way you can remove the following antiviruses: Panda, Baidu, Total 360, Rising and Tencent. The main thing is to monitor the windows that appear and do not be afraid to repeat the removal in case of failure.

Related publications: