Windows 10: FBI Bitcoin Trojan virus, BSOD, and NTLDR missing Win 10 new install

  1.    03 Jan 2016 #1

    FBI Bitcoin Trojan virus, BSOD, and NTLDR missing Win 10 new install


    Hi- frustration is running pretty high.

    Purchased a Dell XPS in November and installed Windows 10. While browsing Facebook last week, I tried to watch a video but got a message saying my flash drive needed updating. I went to Adobe and downloaded and installed the latest version, only to restart my computer and find that Firefox would no longer run due to a firewall issue (can't remember the exact wording). So we turned off the firewall and got Firefox working again. All seemed well. This morning I awoke to the blue FBI screen demanding payment in Bitcoin to unlock the computer. I wasn't terribly concerned, as we have had this happen before, and the hubs found the fix online and all was made right.

    This time however, we cannot even access a boot screen. We have the BSOD and the error message that says

    NTLDR is missing
    press ctrl+alt+delete to restart

    ....which is an endless cycle leading to the same error message each time.

    Any online instructions for fixing this all assume we have performed an online upgrade from an older OS, which isn't the case here. This is a brand new install of Windows 10.

    Any ideas?
      My ComputerSystem Spec

  2.    04 Jan 2016 #2

    You would need to trigger a startup repair:
    Option 5 would do this for you.
    When you click repair your computer, click Startup repair.
    https://www.tenforums.com/tutorials/2...dows-10-a.html
      My ComputerSystem Spec

  3.    04 Jan 2016 #3

    Sumitdhiman said: View Post
    You would need to trigger a startup repair:
    Option 5 would do this for you.
    When you click repair your computer, click Startup repair.
    https://www.tenforums.com/tutorials/2...dows-10-a.html
    Thanks so much for your reply.

    So you think this will work even though our hard drive is locked?
      My ComputerSystem Spec

  4.    04 Jan 2016 #4

    My husband said that he tried the repair protocol that you suggested, but said that when he got to step 3. he got a message saying that the hard drive is locked.
      My ComputerSystem Spec


  5. Posts : 316
    Win 10 Home Build 1703 64bit
       04 Jan 2016 #5

    Windows 10 Forums - Search Results


    The above previous threads may be of help.
      My ComputerSystem Spec


  6. Posts : 12,413
    W10Prox64
       04 Jan 2016 #6

    Morgana said: View Post
    Hi- frustration is running pretty high.

    Purchased a Dell XPS in November and installed Windows 10. While browsing Facebook last week, I tried to watch a video but got a message saying my flash drive needed updating. I went to Adobe and downloaded and installed the latest version, only to restart my computer and find that Firefox would no longer run due to a firewall issue (can't remember the exact wording). So we turned off the firewall and got Firefox working again. All seemed well. This morning I awoke to the blue FBI screen demanding payment in Bitcoin to unlock the computer. I wasn't terribly concerned, as we have had this happen before, and the hubs found the fix online and all was made right.

    This time however, we cannot even access a boot screen. We have the BSOD and the error message that says

    NTLDR is missing
    press ctrl+alt+delete to restart

    ....which is an endless cycle leading to the same error message each time.

    Any online instructions for fixing this all assume we have performed an online upgrade from an older OS, which isn't the case here. This is a brand new install of Windows 10.

    Any ideas?
    Hi.
    I would try running the Kaspersky Rescue Disk to try and clear out the infection first. This would need to be downloaded to a clean computer, and burned to disk. Then you would boot the infected system from the disk and run the scan.

    After successful cleaning, you can try the Startup Repair mentioned earlier.

    If all else fails, you can invoke the recovery partition of the system, and restore the computer to factory condition. Keep in mind that any files/programs added since you got the computer would be lost.

    p.s. Never turn off the firewall. Never believe notices from FB that your system needs updating. Never click on update links-instead, go directly to the manufacturer of the software and download from there.

    EDIT:
    This is a very similar infection; the instructions may work for you as well.
    Remove the FBI MoneyPak Ransomware or the Reveton Trojan
    Last edited by simrick; 04 Jan 2016 at 20:54.
      My ComputerSystem Spec

  7.    04 Jan 2016 #7

    "I tried to watch a video but got a message saying my flash drive needed updating. I went to Adobe and downloaded and installed the latest version"

    This 'update your flash player' pop up is common ruse. I take it you used the 'Adobe' download link in the window vs typing adobe.com and getting your download there ? Once you're sorted out, bookmark this link from Adobe which incl a test as to whether your version is up to date and a link to download latest version -
    Flash Player Help
      My ComputerSystem Spec


 

Related Threads
.ecc Extension: Trojan ? Can't Seem To Delete Them ? Help please in AntiVirus, Firewalls and System Security
Hello, I received an eMail from a friend who said that any file with an .ecc extension is one of those Crypto ransom ware trojans. True ? My old PC7 PC was wiped out, literally, a few months ago, so I am literally paranoid about this.
Solved Trojan Detected in OneDrive in AntiVirus, Firewalls and System Security
The odd thing is I don't even use OneDrive except to automatically upload photos from my Android phone to my desktop; nothing has been detected on the phone. I've run another full scan with Bitdefender and Malwarebytes Anti-Malware (free) without...
Trojan in My Registry in AntiVirus, Firewalls and System Security
I have an older 15 inch HP with W10 that I recently updated. I have always had McAfee on the computer, it has never lapsed. I have also run Spybot, Malwarebytes, Google Ghostery and ABP Adblock Popup. When I recently bought a new printer...
I have a backdoor Trojan (malware) in AntiVirus, Firewalls and System Security
I have a backdoor Trojan (malware) on my computer and I couldn't be bothered to reformat my PC until the opportunity was given to me in windows 10. I still want to keep my PC but I want the malware to be completely gone, so in my situation would...
Solved Trojan removed by Defender in AntiVirus, Firewalls and System Security
With the last couple of builds it seems that Defender is always finding stuff to remove every time I start Windows 10. This morning I removed Trojan Win32/GHEUGENT.Alplock after Defender quarantined it and marked it severe. Right now I am running...

Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 13:29.
Find Us