How to Remove AntiAid | AntiAid Removal Guide

AntiAid is a rogue antivirus/security program that is from the Wini family of Rogues. This is a bit of a departure from much of the long recent history of these rogues due to a new user interface. This rogue (and it’s family) is usually advertised (pushed would be a better term) through codec downloads. They will present content and say that in order to view it you must download this codec which turns out to be the rogue. Once installed, AntiAid will scan your computer and claim there are numerous problems with your system with regards to viral infected files. To remove these it will require that you purchase the software which…. you really shouldn’t do. Read on for how to remove AntiAid.

Like most of these rogue applications the program will also popup numerous warnings and complaints about the security of your system. Just like the infected files that it claims to find, all of these warnings are fabricated and should be ignored.

First, in order to remove AntiAid you should download and install mawarebytes antimalware. (You can find a link to it on my virus removal toolkit page.) While you’re there you may optionally go ahead and download process explorer as well. You may need it further along in the removal process.

If you are unable to install and run malwarebytes initially you may try the following tricks to get it to run. 1) rename the installer mbam-setup.exe to something that will likely be allowed to run such as firefox.exe. Then retry the installer 2) reboot into safe mode and then retry the install. (You will need safe mode with networking for it to update.) 3) continue through the next step of killing off the running processes associated with antiaid and then retry the install.

The following processes are associated with AntiAid and should be killed off via the task manager to continue with your AntiAid removal. If you are unable to launch task manager you may try the following tricks to continue. 1) reboot into safe mode and then retry launching the task manager (most rogues will not run during safe mode – so just verify they’re not running and then continue. 2) copy, paste and rename the taskmgr.exe executable. Copy it to the desktop and then rename it to a program that is likely to be allowed to run such as firefox.exe 3) use process explorer instead to kill off the following programs:


There may be some randomization involved in the creation of the filename 8enyqcv1.exe – use the information below plus what you see on your system to determine if that is the correct filename to look for or to determine the appropriate filename on your system.

The following files and folders are related to AntiAid and should be deleted for complete removal of AntiAid:

%docs%All UsersDesktopAntiAID.lnk
%docs%All UsersStart MenuProgramsAntiAID
%docs%All UsersStart MenuProgramsAntiAID1 AntiAID.lnk
%docs%All UsersStart MenuProgramsAntiAID2 Homepage.lnk
%docs%All UsersStart MenuProgramsAntiAID3 Uninstall.lnk
%progfiles%AntiAID Software
%progfiles%AntiAID SoftwareAntiAID
%progfiles%AntiAID SoftwareAntiAIDAntiAID.exe
%progfiles%AntiAID SoftwareAntiAIDuninstall.exe

After you have removed the above files (or their equivalents) on your system you should now have completed a manual removal of antiaid. Even after a successful removal I would still install and update malwarebytes antimalware and let it run a full scan as well as scanning the system with a trusted antivirus product such as AVG/Avira/etc.

Related Posts

Blog Traffic Exchange Related Posts
  • How to Remove SysDefence | Sysdefence Removal Guide Sysdefence is another rogue antivirus application from the wini family. This family of rogues has been quite prolific lately and typically is pushed on computer users through aggressive trojans that will appear on web pages masquerading as an update for flash player or a video codec for a video that......
  • How to Remove SystemVeteran | Removal Guide SystemVeteran is (yet another) variation from the wini family of rogue antivirus applications. Their last one prior to this was BlockProtector (BlockProtector Removal Guide) but it is a VERY long lived family and they are churning out one variation every two to three days. Most of these have the same......
  • How to Remove SecureKeeper | Secure Keeper Removal SecureKeeper is a rogue antivirus application in the Wini family (with their recent new look user interface.) The Wini family is a very long running line of rogue security applications that have been producing two to three different rogues each week. Of course, the primary changes are the names, but......
Blog Traffic Exchange Related Websites
  • A Strong Week in Tennis for Champion Players This week, there were a few different kinds of games going on throughout the world. These different matches pitted some of the top ranked players in the world against one another to be able to earn the title. While these smaller tournaments might be dwarfed in the shadow of the......
  • How To Save $100-$1,000 By Troubleshooting Your Faulty Computer “Oh, wow. Looks like it’s completely dead! At this point, it’s not even worth saving. You might as well just buy a new computer.” “Really, we can’t just fix it? It’s only 2 years old!” Have you ever had that conversation before? It’s pretty common at retail establishments like Best......
  • Generali Ladies Linz and Shanghai Rolex Masters This week in Tennis featured three different tournaments, two for the women and one for the men. The women competed in the Generali Ladies Linz in Linz, Austria as well as the HP Open in Osaka, Japan. The men competed in the Shanghai Rolex Masters held in Shanghai, China. The......    Send article as PDF   

Similar Posts

See what happened this day in history from either BBC Wikipedia
Amazon Logo

Comments are closed.

Switch to our mobile site