Solved

windows kb files "The volume for a file was externally altered" virus

Posted on 2010-08-26
3
892 Views
Last Modified: 2013-11-22
Does anyone ever heard about this error message.
It shows everytime we try to execute any update file downloaded from microsoft.

i.e.: We are trying to install XP SP3 in a XP SP2 Pro box, but, after de expand files process, the error mesage is shown again.

OneCare Live on-line analisys didn't correct the problem nor Microsoft Forefront.

Tried to scan the HD connected to another (clean) box. Even it detected and erased several files, back to the original box the issue remains.

These are the basic lines, if you need aditional info, just demand it.

0
Comment
Question by:Catalaziz
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 24

Expert Comment

by:Mohammed Hamada
ID: 33537063
What is the file system type "NTFS or Fat 32 " ? Can you try to check your disk if there's some bad sectors that needs to be checked.

Click Start
Run
Type cmd
type chkdsk /f c: and enter
It will ask you to schedule the chkdsk on reboot, Type Y and enter
Do the same thing for the other partitions by changing the Letter C.

GL
0
 
LVL 2

Accepted Solution

by:
ccampbell15 earned 125 total points
ID: 33539674
fownload malwarebytes from http://www.malwarebytes.org/ 
Install and run

Download Gmer from http://www.gmer.net/ 
and run it

Report back with the results
0
 

Author Closing Comment

by:Catalaziz
ID: 33540131
You did it.

MalwareBites identified the thread as a rootkik.
Unfortunately I can't get the log.

It's strange that Microsoft Forefront didn't found it. And even googleing about atapidrv.sys, the engine didn't found too much references.

Many thanks.
Josep.
0

Featured Post

[Live Webinar] The Cloud Skills Gap

As Cloud technologies come of age, business leaders grapple with the impact it has on their team's skills and the gap associated with the use of a cloud platform.

Join experts from 451 Research and Concerto Cloud Services on July 27th where we will examine fact and fiction.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

UPDATE - 6/15/2011 Added support for Release Update 6 Maintenance Patch 2 Point Patch 1 (RU6 MP2 PP1). Fixed a defect in the username field that was hard-coded to look for a specific domain (left over code from testing). This release will be the …
Ransomware continues to be a growing problem for both personal and business users alike and Antivirus companies are still struggling to find a reliable way to protect you from this dangerous threat.
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

622 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question