A few days ago, the Antivirus 2008 pop-up appeared on my friend's new computer. It stated that he had 41 infections. HIs access to the internet was blocked, as well.
In order to remove them, he had to pay for the service.
After a bit of research, I discovered that it was a scam and attempted to remove it from his computer, via standard means (control panel, programs and features, uninstall). It appeared that some files were removed, but some were left behind. Those that remained still indicated that he had 41 infections and blocked his access to the internet, by indicating that the websites posed a threat.
I found this community and the instructions for removing Antivirus 2008, through http://www.bleepingcomputer.com/malware-re.../antivirus-2008
. I carefully followed the instructions and ran the scan...to no avail. The program didn't find the Antivirus 2008 or any infections, for that matter. Unfortunately, the problem remains.
I thought that it might work to restore the computer to a time prior to the arrival of the Antivirus 2008 pop-up and then follow the removal instructions. When I restored it to a restore point from May, I could not get on the internet (the error message indicated that we were not connected to the internet. After an hour with the Roadrunner support people, we determined that their signal to the computer was strong and that the modem was working; but apparently the TCI/IP(?) was damaged by the restore and needed to be re-installed). Out of desperation, I restored the computer back to a restore point from yesterday. Now, he can connect to the internet again, but the Antivirus still states that the websites (any of them) pose a threat and prevents him from going any further.
Does anyone have any ideas on how I can thoroughly remove this malicious program and restore his computer's functionality?
Thanks, in advance.