WiniSoft Family of rogues is not going to stop producing fake antivirus applications again and again. Among Soft Cop and Soft Veteran another badware from this family appeared and its name is AntiAID. This is the newest creation and is a little bit misleading because of the modernized interface. Though it is brand new and has another look, AntiAID does not have any differences in working. In tricking, I should have said, because everything AntiAID does is only tricking you. It makes ordinary users believe in its helpfulness, so AntiAID could have all sorts of influence on them. While being installing, AntiAID will create numerous files under different names at the same time. After each system scan AntiAID is going to present those files as malicious threats. That is how AntiAID makes you believe that it does really work. Also it is really helpful to make you feel scare and start to search for any help. AntiAID will offer you that help, but for not a mall payment. Only for around 50$, you are going to get absolutely worthless product, that will never protect your PC and all documents there. Moreover, AntiAID will not stop only on fake scans. Everytime you log in the system, this badware will send you bogus notifications with the reminding of purchasing the license or that your computer is under attack, or somebody was trying to penetrate your system. Everything is made to make you feel sure that AntiAID is working. Unfortunately, it is just a part of a game, where you are never going to be the winner. The only way is to escape from this game by removing AntiAID from your beloved PC immediately.
Type: Rogue Anti-Spyware
Malware Author: Unknown
Threat Level: Critical
Screenshot:
How to remove AntiAID manually:
It's possible to remove AntiAID manually, but you have to be very experienced in dealing with registry entries, program files and .dll files.
The files to be deleted:
c:\Documents and Settings\All Users\Desktop\AntiAID.lnk
c:\Documents and Settings\All Users\Start Menu\Programs\AntiAID
c:\Documents and Settings\All Users\Start Menu\Programs\AntiAID\1 AntiAID.lnk
c:\Documents and Settings\All Users\Start Menu\Programs\AntiAID\2 Homepage.lnk
c:\Documents and Settings\All Users\Start Menu\Programs\AntiAID\3 Uninstall.lnk
c:\Program Files\AntiAID Software
c:\Program Files\AntiAID Software\AntiAID
c:\Program Files\AntiAID Software\AntiAID\AntiAID.exe
c:\Program Files\AntiAID Software\AntiAID\uninstall.exe
c:\WINDOWS\100849pambotz85.bin
c:\WINDOWS\1019wo5m65bz.dll
c:\WINDOWS\10568hack9o5l5z5.dll
c:\WINDOWS\system32\2901sp55za.bin
c:\WINDOWS\system32\29290wozm6795.cpl
c:\WINDOWS\system32\29418tro5ez.ocx
%Temp%\8enyqcv1.exe
Remove registry entries:
HKEY_CURRENT_USER\Software\AntiAID
HKEY_LOCAL_MACHINE\SOFTWARE\AntiAID
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AntiAID
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "8enyqcv1.exe"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "AntiAID"
HKEY_LOCAL_MACHINE\SOFTWARE\AntiAID
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AntiAID
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "8enyqcv1.exe"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "AntiAID"
Please be careful because manual removal of AntiAID may seriously damage operational system and sensitive data. Also there is a big possibility of incomplete removal, because some files could be hidden and program could re-install itself after you delete files and registry entries. So we strongly recommend you to use automatical removal tool.
No comments:
Post a Comment