AntiAid is a rogue antivirus/security program that is from the Wini family of Rogues. This is a bit of a departure from much of the long recent history of these rogues due to a new user interface. This rogue (and it’s family) is usually advertised (pushed would be a better term) through codec downloads. They will present content and say that in order to view it you must download this codec which turns out to be the rogue. Once installed, AntiAid will scan your computer and claim there are numerous problems with your system with regards to viral infected files. To remove these it will require that you purchase the software which…. you really shouldn’t do. Read on for how to remove AntiAid.
Like most of these rogue applications the program will also popup numerous warnings and complaints about the security of your system. Just like the infected files that it claims to find, all of these warnings are fabricated and should be ignored.
First, in order to remove AntiAid you should download and install mawarebytes antimalware. (You can find a link to it on my virus removal toolkit page.) While you’re there you may optionally go ahead and download process explorer as well. You may need it further along in the removal process.
If you are unable to install and run malwarebytes initially you may try the following tricks to get it to run. 1) rename the installer mbam-setup.exe to something that will likely be allowed to run such as firefox.exe. Then retry the installer 2) reboot into safe mode and then retry the install. (You will need safe mode with networking for it to update.) 3) continue through the next step of killing off the running processes associated with antiaid and then retry the install.
The following processes are associated with AntiAid and should be killed off via the task manager to continue with your AntiAid removal. If you are unable to launch task manager you may try the following tricks to continue. 1) reboot into safe mode and then retry launching the task manager (most rogues will not run during safe mode – so just verify they’re not running and then continue. 2) copy, paste and rename the taskmgr.exe executable. Copy it to the desktop and then rename it to a program that is likely to be allowed to run such as firefox.exe 3) use process explorer instead to kill off the following programs:
There may be some randomization involved in the creation of the filename 8enyqcv1.exe – use the information below plus what you see on your system to determine if that is the correct filename to look for or to determine the appropriate filename on your system.
The following files and folders are related to AntiAid and should be deleted for complete removal of AntiAid:
%docs%All UsersStart MenuProgramsAntiAID
%docs%All UsersStart MenuProgramsAntiAID1 AntiAID.lnk
%docs%All UsersStart MenuProgramsAntiAID2 Homepage.lnk
%docs%All UsersStart MenuProgramsAntiAID3 Uninstall.lnk
After you have removed the above files (or their equivalents) on your system you should now have completed a manual removal of antiaid. Even after a successful removal I would still install and update malwarebytes antimalware and let it run a full scan as well as scanning the system with a trusted antivirus product such as AVG/Avira/etc.
Related PostsRelated Posts
- How to Remove SysDefence | Sysdefence Removal Guide Sysdefence is another rogue antivirus application from the wini family. This family of rogues has been quite prolific lately and typically is pushed on computer users through aggressive trojans that will appear on web pages masquerading as an update for flash player or a video codec for a video that......
- How to Remove RESpyWare | RESpyWare Removal Guide ReSpyWare is a rogue antivirus/ antimalware application in the same family as Reanti,keepcop and secure keeper and unfortunately a very very long line of other predecessors. They are not much different except in their names. Probably the biggest shared trait is the annoying warnings about supposed viruses on your computer......
- How to Remove Armor Defender | Armor Defender Removal Guide Armor Defender is the latest rogue antivirus from the wini family of rogues. It takes a bit of a departure from the recent look of their rogues. However, like all of it's other cousins in the fact that it is promoted by trojan, malware and they masquerade as flash updates......
- World Wide Web Security Essentials Is Not A Real Spyware Remover. It Resembles The Functions And Looks World wide web Security Essentials is not a real spyware remover. It resembles the functions and looks of genuine spyware removal software but has no capacity to eliminate any virus, trojan or malware. Web Security Essentials is the newest addition to the growing list of rogue Antivirus programs. Internet Security......
- Generali Ladies Linz and Shanghai Rolex Masters This week in Tennis featured three different tournaments, two for the women and one for the men. The women competed in the Generali Ladies Linz in Linz, Austria as well as the HP Open in Osaka, Japan. The men competed in the Shanghai Rolex Masters held in Shanghai, China. The......
- Do I Really Need A Completely Free Spyware Removal Program? The need for an effective antispyware program has become an essential component to combat the online threat from adware. The large number of these types of adware software programs is a common pest for everyday people using the internet each day. Just as aeroplanes made the world a smaller place......
- How to Remove SysDefence | Sysdefence Removal Guide
- How to Remove KeepCop | Keep Cop Removal Guide
- How to Remove LinkSafeness | LinkSafeness Removal Guide
- How to Remove APCProtect | APCProtect Removal Guide
- How to Remove GreatDefender | GreatDefender Removal Guide