Posted 02 February 2012 - 02:05 PM
Sorry if this has been covered elsewhere. I went to a Wordpress site and I do not know how the System-Check virus entered through my firewall. I ran Rkill successfully. TDSSkiller found: Rootkit.boot.sst.a4 and said cure, but after I clicked "continue," it stated: Can't cure MBR, write standard boot code? (I clicked yes.)
After running it said: 1 threat neutralized, 2 objects quarantined. The bleeping computer website was down when I tried to register, so my in-home computer guy reinstalled Windows and ran Malwarebytes, I believe. But nothing can be seen without Nero, choosing the command to copy data to a DVD, and even though the names of the files are then visible, there is no access to the data.
I did have a backup from 2 weeks ago, so not a lot of data was lost; but it would be nice to access data on the drive if possible. I am fully operable, on the 2-week-old backup. It's not critical, but if the drive can be accessed by some method, it would be helpful.
I am now afraid to go to the Wordpress site because I do not know how this virus could access my computer through the firewall, and I do not know if I need to report this to the site that I was accessing for a plugin when it came through.
Thanks for any help.