1.    03 Jan 2016 #1
    Join Date : Jan 2016
    Posts : 3
    Windows 10

    FBI Bitcoin Trojan virus, BSOD, and NTLDR missing Win 10 new install


    Hi- frustration is running pretty high.

    Purchased a Dell XPS in November and installed Windows 10. While browsing Facebook last week, I tried to watch a video but got a message saying my flash drive needed updating. I went to Adobe and downloaded and installed the latest version, only to restart my computer and find that Firefox would no longer run due to a firewall issue (can't remember the exact wording). So we turned off the firewall and got Firefox working again. All seemed well. This morning I awoke to the blue FBI screen demanding payment in Bitcoin to unlock the computer. I wasn't terribly concerned, as we have had this happen before, and the hubs found the fix online and all was made right.

    This time however, we cannot even access a boot screen. We have the BSOD and the error message that says

    NTLDR is missing
    press ctrl+alt+delete to restart

    ....which is an endless cycle leading to the same error message each time.

    Any online instructions for fixing this all assume we have performed an online upgrade from an older OS, which isn't the case here. This is a brand new install of Windows 10.

    Any ideas?
      My ComputerSystem Spec
  2.    04 Jan 2016 #2
    Join Date : Oct 2015
    Chandigarh,India
    Posts : 307
    Windows 10

    You would need to trigger a startup repair:
    Option 5 would do this for you.
    When you click repair your computer, click Startup repair.
    https://www.tenforums.com/tutorials/2...dows-10-a.html
      My ComputerSystem Spec
  3.    04 Jan 2016 #3
    Join Date : Jan 2016
    Posts : 3
    Windows 10
    Thread Starter

    Quote Originally Posted by Sumitdhiman View Post
    You would need to trigger a startup repair:
    Option 5 would do this for you.
    When you click repair your computer, click Startup repair.
    https://www.tenforums.com/tutorials/2...dows-10-a.html
    Thanks so much for your reply.

    So you think this will work even though our hard drive is locked?
      My ComputerSystem Spec
  4.    04 Jan 2016 #4
    Join Date : Jan 2016
    Posts : 3
    Windows 10
    Thread Starter

    My husband said that he tried the repair protocol that you suggested, but said that when he got to step 3. he got a message saying that the hard drive is locked.
      My ComputerSystem Spec
  5.    04 Jan 2016 #5
    Join Date : Oct 2014
    Posts : 391
    Win 10 Home Build 1709 16299.19 64bit

    Windows 10 Forums - Search Results


    The above previous threads may be of help.
      My ComputerSystem Spec
  6.    04 Jan 2016 #6
    Join Date : Apr 2015
    Posts : 12,990
    W10Prox64

    Quote Originally Posted by Morgana View Post
    Hi- frustration is running pretty high.

    Purchased a Dell XPS in November and installed Windows 10. While browsing Facebook last week, I tried to watch a video but got a message saying my flash drive needed updating. I went to Adobe and downloaded and installed the latest version, only to restart my computer and find that Firefox would no longer run due to a firewall issue (can't remember the exact wording). So we turned off the firewall and got Firefox working again. All seemed well. This morning I awoke to the blue FBI screen demanding payment in Bitcoin to unlock the computer. I wasn't terribly concerned, as we have had this happen before, and the hubs found the fix online and all was made right.

    This time however, we cannot even access a boot screen. We have the BSOD and the error message that says

    NTLDR is missing
    press ctrl+alt+delete to restart

    ....which is an endless cycle leading to the same error message each time.

    Any online instructions for fixing this all assume we have performed an online upgrade from an older OS, which isn't the case here. This is a brand new install of Windows 10.

    Any ideas?
    Hi.
    I would try running the Kaspersky Rescue Disk to try and clear out the infection first. This would need to be downloaded to a clean computer, and burned to disk. Then you would boot the infected system from the disk and run the scan.

    After successful cleaning, you can try the Startup Repair mentioned earlier.

    If all else fails, you can invoke the recovery partition of the system, and restore the computer to factory condition. Keep in mind that any files/programs added since you got the computer would be lost.

    p.s. Never turn off the firewall. Never believe notices from FB that your system needs updating. Never click on update links-instead, go directly to the manufacturer of the software and download from there.

    EDIT:
    This is a very similar infection; the instructions may work for you as well.
    Remove the FBI MoneyPak Ransomware or the Reveton Trojan
    Last edited by simrick; 04 Jan 2016 at 20:54.
      My ComputerSystem Spec
  7.    04 Jan 2016 #7
    Join Date : Jul 2015
    Posts : 899
    Windows 10 Home

    "I tried to watch a video but got a message saying my flash drive needed updating. I went to Adobe and downloaded and installed the latest version"

    This 'update your flash player' pop up is common ruse. I take it you used the 'Adobe' download link in the window vs typing adobe.com and getting your download there ? Once you're sorted out, bookmark this link from Adobe which incl a test as to whether your version is up to date and a link to download latest version -
    Flash Player Help
      My ComputerSystem Spec

 


Similar Threads
Thread Forum
.ecc Extension: Trojan ? Can't Seem To Delete Them ? Help please
Hello, I received an eMail from a friend who said that any file with an .ecc extension is one of those Crypto ransom ware trojans. True ? My old PC7 PC was wiped out, literally, a few months ago, so I am literally paranoid about this.
AntiVirus, Firewalls and System Security
Solved Trojan Detected in OneDrive
The odd thing is I don't even use OneDrive except to automatically upload photos from my Android phone to my desktop; nothing has been detected on the phone. I've run another full scan with Bitdefender and Malwarebytes Anti-Malware (free) without...
AntiVirus, Firewalls and System Security
Trojan in My Registry
I have an older 15 inch HP with W10 that I recently updated. I have always had McAfee on the computer, it has never lapsed. I have also run Spybot, Malwarebytes, Google Ghostery and ABP Adblock Popup. When I recently bought a new printer...
AntiVirus, Firewalls and System Security
I have a backdoor Trojan (malware)
I have a backdoor Trojan (malware) on my computer and I couldn't be bothered to reformat my PC until the opportunity was given to me in windows 10. I still want to keep my PC but I want the malware to be completely gone, so in my situation would...
AntiVirus, Firewalls and System Security
Solved Trojan removed by Defender
With the last couple of builds it seems that Defender is always finding stuff to remove every time I start Windows 10. This morning I removed Trojan Win32/GHEUGENT.Alplock after Defender quarantined it and marked it severe. Right now I am running...
AntiVirus, Firewalls and System Security
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 04:27.
Find Us
Twitter Facebook Google+ Ten Forums iOS App Ten Forums Android App



Windows 10 Forums