AntiAid is a rogue antivirus/security program that is from the Wini family of Rogues. This is a bit of a departure from much of the long recent history of these rogues due to a new user interface. This rogue (and it’s family) is usually advertised (pushed would be a better term) through codec downloads. They will present content and say that in order to view it you must download this codec which turns out to be the rogue. Once installed, AntiAid will scan your computer and claim there are numerous problems with your system with regards to viral infected files. To remove these it will require that you purchase the software which…. you really shouldn’t do. Read on for how to remove AntiAid.
Like most of these rogue applications the program will also popup numerous warnings and complaints about the security of your system. Just like the infected files that it claims to find, all of these warnings are fabricated and should be ignored.
First, in order to remove AntiAid you should download and install mawarebytes antimalware. (You can find a link to it on my virus removal toolkit page.) While you’re there you may optionally go ahead and download process explorer as well. You may need it further along in the removal process.
If you are unable to install and run malwarebytes initially you may try the following tricks to get it to run. 1) rename the installer mbam-setup.exe to something that will likely be allowed to run such as firefox.exe. Then retry the installer 2) reboot into safe mode and then retry the install. (You will need safe mode with networking for it to update.) 3) continue through the next step of killing off the running processes associated with antiaid and then retry the install.
The following processes are associated with AntiAid and should be killed off via the task manager to continue with your AntiAid removal. If you are unable to launch task manager you may try the following tricks to continue. 1) reboot into safe mode and then retry launching the task manager (most rogues will not run during safe mode – so just verify they’re not running and then continue. 2) copy, paste and rename the taskmgr.exe executable. Copy it to the desktop and then rename it to a program that is likely to be allowed to run such as firefox.exe 3) use process explorer instead to kill off the following programs:
There may be some randomization involved in the creation of the filename 8enyqcv1.exe – use the information below plus what you see on your system to determine if that is the correct filename to look for or to determine the appropriate filename on your system.
The following files and folders are related to AntiAid and should be deleted for complete removal of AntiAid:
%docs%All UsersStart MenuProgramsAntiAID
%docs%All UsersStart MenuProgramsAntiAID1 AntiAID.lnk
%docs%All UsersStart MenuProgramsAntiAID2 Homepage.lnk
%docs%All UsersStart MenuProgramsAntiAID3 Uninstall.lnk
After you have removed the above files (or their equivalents) on your system you should now have completed a manual removal of antiaid. Even after a successful removal I would still install and update malwarebytes antimalware and let it run a full scan as well as scanning the system with a trusted antivirus product such as AVG/Avira/etc.
Related PostsRelated Posts
- How to Remove SysDefence | Sysdefence Removal Guide Sysdefence is another rogue antivirus application from the wini family. This family of rogues has been quite prolific lately and typically is pushed on computer users through aggressive trojans that will appear on web pages masquerading as an update for flash player or a video codec for a video that......
- How to Remove Armor Defender | Armor Defender Removal Guide Armor Defender is the latest rogue antivirus from the wini family of rogues. It takes a bit of a departure from the recent look of their rogues. However, like all of it's other cousins in the fact that it is promoted by trojan, malware and they masquerade as flash updates......
- How to Remove SecureKeeper | Secure Keeper Removal SecureKeeper is a rogue antivirus application in the Wini family (with their recent new look user interface.) The Wini family is a very long running line of rogue security applications that have been producing two to three different rogues each week. Of course, the primary changes are the names, but......
- World Wide Web Security Essentials Is Not A Real Spyware Remover. It Resembles The Functions And Looks World wide web Security Essentials is not a real spyware remover. It resembles the functions and looks of genuine spyware removal software but has no capacity to eliminate any virus, trojan or malware. Web Security Essentials is the newest addition to the growing list of rogue Antivirus programs. Internet Security......
- How To Save $100-$1,000 By Troubleshooting Your Faulty Computer “Oh, wow. Looks like it’s completely dead! At this point, it’s not even worth saving. You might as well just buy a new computer.” “Really, we can’t just fix it? It’s only 2 years old!” Have you ever had that conversation before? It’s pretty common at retail establishments like Best......
- Computer Malware and Preventive Recommendations: Botnets It’s often what we don’t know can hurt us the most… That is the case when it comes to the effects of malware such as computer viruses, worms and Trojans. Botnets are one of the fastest growing and the most dangerous threat on the Internet today. “Bot” stands for robot,......
- How to Remove SysDefence | Sysdefence Removal Guide
- How to Remove KeepCop | Keep Cop Removal Guide
- How to Remove LinkSafeness | LinkSafeness Removal Guide
- How to Remove APCProtect | APCProtect Removal Guide
- How to Remove GreatDefender | GreatDefender Removal Guide