Hi macguru_42,
This shall tell FRST to remove all Baidu related drivers and related folders and files in %program files.
FRST’s RE_FixList
Open notepad.
[*]Click Start
[*] Type notepad.exe in the search programs and files box and click Enter.
[] A blank Notepad page should open.
[] Copy/Paste the contents of the code box below into Notepad.
Start
C:\Windows\System32\drivers\Bhbase.sys
C:\Windows\System32\drivers\BprotectEx.sys
C:\Program Files\Baidu Security
S0 Bhbase; C:\Windows\System32\drivers\Bhbase.sys [47456 2013-12-18] (Baidu, Inc.)
S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [X]
S3 PCFApiUtil; \??\C:\Program Files\Baidu Security\PC Faster\4.0.0.0\PCFApiUtil.sys [X]
End
[*] Save it to your USB flashdrive as fixlist.txt
Boot into Recovery Environment
Start FRST in a similar manner to when you ran a scan earlier (via flash drive and from Recovery Environment) , but this time when it opens …
[*] Press the Fix button once and wait.
[*] FRST will process fixlist.txt
[*] When finished, it will produce a log fixlog.txt on your USB flashdrive.
Exit out of Recovery Environment and post me the log please.
Re-scan with ComboFix
Now I would like you to run ComboFix from Normal Mode one more time adn post me fresh ComboFix.txt logreprot.
Instructions for running CF you have in my post above.
And tell me is there any improvements?