Thread: [Solved] FileError_22001 - New virus??
View Single Post
 
Old 12-26-2008, 11:59 AM
farmerb farmerb is offline
Novice
  
Join Date: Dec 2008
Posts: 1
farmerb is on a distinguished road
Default Still looking for solution
This mess occurred to wife's comp on 12/7/08.
She was looking up items on the internet (recipes). Took a break for an hour or so, and when she came back, said she was having problems. Some were the classics others have written about. McAfee had been installed and updated since the system was new, and apparently was catching whatever it was that was trying to get through, but not completely. Her system would start up, then McAfee would would flash a few warnings, similar to but not complete, text such as:

Generic Rootkit.d
(File) Location c:\Windows\new_drv.sys
Program Client Server Runtime Process
Location C:\WINDOWS\9129837.exe

Then suddenly a small screen would appear with text containing the following:

System is Shutting Down
Initiated by NT Authority\ System

C:WINDOWS\System32\services.exe
Terminated unexpectedly.......
Status Code 1073741819

The system would in fact shut down, then automatically restart and go through the same series all over again.

The McAfee log shows on 12/7 Eight cases of generic rootkit.d (Trojan) found and deleted.

On 12/8 Seven cases of the same generic rootkit.d (Trojan) found and deleted.

The only way to stop the constant shutting down and restart was to interrupt the restart and start in safe mode. Once in safe mode, the only way that I was able to get a good startup without the errors was to revert to an earlier good start point.

Ran my own complete scan with McAfee - nothing found
Worked direct with McAfee, who scanned even further - nothing found
Worked with Microsoft who further scanned - nothing found

Still getting the file error_22001 on all word, excel, and jpeg files.

Ran fixes suggested here, with the response: UNABLE TO FIND FIRST KEY - PC IS NOT INFECTED

It sounds like McAfee did about 95% of its job, but in doing so, deleted the virus. By deleting the virus, I apparently have come up with the same problem as others, the lack of, or unable to find the first key.

Has anyone had any further luck on a fix in such a situation?

Any help greatly appreciated...
Pulling out what few hairs I have left.
Reply With Quote