Hello-
My laptop recently got hit twice with trojan/malware (first VirusHeat then the XP 2008 or what ever it was called) thanks to my daughter. It thought I had manually gotten rid of them, but apparently I hadn't. First the computer got slower. Then I got a notification from TimeWarner Cable that apparently "emails with the characteristics of spam" were being sent from my cable address. Yesterday I started getting BSOD's indicating SESSION5_INITIALIZATION_FAILED blah blah. This was on startup. The only way I could get the computer started was either in safe mode or by selecting "start in the most recent configuration that worked." Google searches seemed to indicate that this SESSION5_... issue was one of the things fixed with XP Sp3 (the lap top is currently Sp2). But something was preventing me from getting the Windows Update for XP3.
All during this time, I noticed that the LED on the router corresponding to the port it was plugged into was always constantly blinking at a regular about 1X second rate. The LEDs for the other 2 computers and the printer do not blink regularly like this. This probably was an indication that the lap top was constantly pumping something out when it was on.
In the information from TimeWarner regarding their warning, it gave a bunch of things to try. The first thing I tried was McAfee Stinger. The malware was preventing me from downloading it so I downloaded it to another computer, copied it to a thumb drive, and copied it to the lap top that way. I ran it. It indicated that the "dropper" programs where in phony MP3 files that my daughter said she had gotten from Limewire. It deleted them. After running about 10 minutes, Stinger bombed out and just disappeared with no trace. I tried to run it several times, always after about 10 minutes, it bombed out and disappeared. The first time I ran it in normal mode. The subsequent runs were in safe mode, same deal.
Then I tried Trend Micro Housecall. This didn't find anything and also quit back to the desktop after about 5 minutes.
Then I tried the Microsoft Malicious Software Removal Tool The latest version of this also could not be downloaded by the lap top so I again downloaded it elsewhere and copied it over with a thumb drive. I ran this and after about 15 minutes, it too bombed. This time it gave the "Microsoft Windows Malicious Software Removal Tool has encounterd a problem and needs to close Version 2.1.2407.0 etc... etc... send error report to Microsoft?..." pop up. I tried several times and always the same thing. It never found anything during the time it was running either.
Then I got Malwarebytes Anti-Malware, for some reason I could get this one to download directly with the lap top. I got the latest updates, and ran the quick scan. It found 30 infected files and folders. It could delete all but two of them which it said would be deleted on restart. I did that and these last two were in fact deleted. I ran it several more times and it reported all clean each time. It said that the malware I had was a keylogger and something that messes with the internet connection. This was probably why I couldn't download the programs.
After running these quick scans, TimeWarner suggested installing an anti-virus program. CA Internet Security Suite is free for TW customers so I downloaded it and installed it. It indicated that it needed to run a scan so I let it. It found 9 more infected files and deleted them. Then after about an hour of running, I got a BSOD with the computer locked up. This time the screen indicated STOP: 0x000008E and a problem with KmxFile.sys. and an address. I restarted the computer and now after logging in, it goes straight to the BSOD. It will start in safe mode. Running the earlier configuration that worked does now not work. In normal mode it always goes to the blue screen error after booting up. A Google search of kmxfile.sys indicates that it is a CA component. So now the computer is unusable thanks to this CA program.
Does anyone know how to uninstall CA Internet Security Suite? I see no uninstall options anywhere.
Thanks!