Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsMicrosoft WindowsWindows Ultimate Booster Virus/Malware
mtvessel

66 posts

Master Geek


#141177 3-Mar-2014 21:36
Send private message

My partner has got a malware programme called Windows Ultimate Booster lodged on her machine.
It purports to be an anti virus programme.
It carries out fake scans and informs you there are many viruses on the machine.
An alert keeps popping up advising the firewall has blocked a programme. 
This prevents you from doing anything else.

Windows Ultimate Booster is a new malware. From what I see when I Google for solutions to get rid of it, it appears it arrived around late January.

When Googling for solutions there are many that appear but often it is advertising for programmes to delete the malware - at a cost of course - or the manual solutions to eradicate the malware while consistent in some steps are inconsistent in others.

What I would like to know is - has anyone had experience in successfully deleting this virus?
What did you do to delete it?
Is it possible to get rid of it manually or will she need to purchase some software to delete it?

Thanks in anticipation.

Create new topic

Stu

Stu
Hammered
8337 posts

Uber Geek

Moderator
ID Verified
Trusted
Lifetime subscriber

  #998461 3-Mar-2014 21:48
Send private message

Try MalwareBytes. Just started working on a machine with that infection today and it doesn't seem to be a major (at least in this case, so far). This is the first of this batch I've come across. Still a few more tools I'll be running on it before I'd declare it clean though. Work on it in Safe Mode. If anything crops up I'll post it here.



Sideface
9357 posts

Uber Geek

Trusted
DR
Lifetime subscriber

  #998465 3-Mar-2014 21:51
Send private message

Windows Ultimate Booster is "scareware", which masquerades as genuine security software, while actually reporting non-existent malware threats in order to scare the user into paying for this rogue security software.

Go to: http://malwaretips.com/blogs/windows-ultimate-booster-removal/

Read about the Malwarebytes and System Restore options and follow instructions.




Sideface

blakamin
4431 posts

Uber Geek
Inactive user


  #998467 3-Mar-2014 21:53
Send private message

This one was a link from microsoft forums.

Basically, malwarebytes from safemode.



Always be aware of what you click on.



Stu

Stu
Hammered
8337 posts

Uber Geek

Moderator
ID Verified
Trusted
Lifetime subscriber

  #998473 3-Mar-2014 21:57
Send private message

Like your links blakamin? ;-)

Booster does appear to be nothing more than a rogue, but make sure nothing joined it for the party. This notebook here has a couple of other minor players as well. Sorted with MalwareBytes as well.

mtvessel

66 posts

Master Geek


  #998957 4-Mar-2014 17:43
Send private message

BigHammer: Try MalwareBytes. Just started working on a machine with that infection today and it doesn't seem to be a major (at least in this case, so far). This is the first of this batch I've come across. Still a few more tools I'll be running on it before I'd declare it clean though. Work on it in Safe Mode. If anything crops up I'll post it here.


Thankyou for your reply BigHammer and everyone else.
using the site http://www.bleepingcomputer.com/virus-removal/remove-windows-ultimate-booster I downloaded the remvimes.reg application and was able to run that in safe mode.
However when I logged in using the normal login, an alert kept popping up which prevented me form running ieexplorer to download the malwarebytes software.
Can I download this software in safe mode and run it from there or do I need to be in the normal login mode?

Sideface
9357 posts

Uber Geek

Trusted
DR
Lifetime subscriber

  #999080 4-Mar-2014 21:08
Send private message

The malware is blocking you.
You need to download MalwareBytes on another computer.
Go to https://www.malwarebytes.org/




Sideface

Stu

Stu
Hammered
8337 posts

Uber Geek

Moderator
ID Verified
Trusted
Lifetime subscriber

  #999176 4-Mar-2014 22:53
Send private message

And then install it in safe mode and run it in safe mode.

 
 
 
 

Trade NZ and US shares and funds with Sharesies (affiliate link).
mtvessel

66 posts

Master Geek


  #999198 4-Mar-2014 23:47
Send private message

Sideface: The malware is blocking you.
You need to download MalwareBytes on another computer.
Go to https://www.malwarebytes.org/


Thanks BigHammer and Sideface - that seems to have done the trick

Stu

Stu
Hammered
8337 posts

Uber Geek

Moderator
ID Verified
Trusted
Lifetime subscriber

  #999227 5-Mar-2014 08:39
Send private message

Just check in you Control Panel that the Action Center starts up fine. The notebook I had here had the relevant service set to Disabled. May have been caused by one of the other infections that it had though.

mtvessel

66 posts

Master Geek


  #999342 5-Mar-2014 11:28
Send private message

BigHammer: Just check in you Control Panel that the Action Center starts up fine. The notebook I had here had the relevant service set to Disabled. May have been caused by one of the other infections that it had though.

Thanks BigHammer - yes my Windows Security Center was turned off.
It wouldn't let me turn it back on so I went to this site support.microsoft.com/kb/2519899 and used the fixit function so all is well now.

Once again many thanks for bringing it to my attention.

Stu

Stu
Hammered
8337 posts

Uber Geek

Moderator
ID Verified
Trusted
Lifetime subscriber

  #999344 5-Mar-2014 11:34
Send private message

Most welcome. Hopefully you're all good to go now!

Create new topic





News and reviews »

Air New Zealand Starts AI adoption with OpenAI
Posted 24-Jul-2025 16:00

eero Pro 7 Review
Posted 23-Jul-2025 12:07

BeeStation Plus Review
Posted 21-Jul-2025 14:21

eero Unveils New Wi-Fi 7 Products in New Zealand
Posted 21-Jul-2025 00:01

WiZ Introduces HDMI Sync Box and other Light Devices
Posted 20-Jul-2025 17:32

RedShield Enhances DDoS and Bot Attack Protection
Posted 20-Jul-2025 17:26

Seagate Ships 30TB Drives
Posted 17-Jul-2025 11:24

Oclean AirPump A10 Water Flosser Review
Posted 13-Jul-2025 11:05

Samsung Galaxy Z Fold7: Raising the Bar for Smartphones
Posted 10-Jul-2025 02:01

Samsung Galaxy Z Flip7 Brings New Edge-To-Edge FlexWindow
Posted 10-Jul-2025 02:01

Epson Launches New AM-C550Z WorkForce Enterprise printer
Posted 9-Jul-2025 18:22

Samsung Releases Smart Monitor M9
Posted 9-Jul-2025 17:46

Nearly Half of Older Kiwis Still Write their Passwords on Paper
Posted 9-Jul-2025 08:42

D-Link 4G+ Cat6 Wi-Fi 6 DWR-933M Mobile Hotspot Review
Posted 1-Jul-2025 11:34

Oppo A5 Series Launches With New Levels of Durability
Posted 30-Jun-2025 10:15








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.







RSS feeds
Main feed
Forums feed
Copyright
©2002-2025 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Affiliate links
Samsung
AliExpress
Wise
Sharesies
GoodSync
Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright