Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




61 posts

Master Geek


# 141177 3-Mar-2014 21:36
Send private message

My partner has got a malware programme called Windows Ultimate Booster lodged on her machine.
It purports to be an anti virus programme.
It carries out fake scans and informs you there are many viruses on the machine.
An alert keeps popping up advising the firewall has blocked a programme. 
This prevents you from doing anything else.

Windows Ultimate Booster is a new malware. From what I see when I Google for solutions to get rid of it, it appears it arrived around late January.

When Googling for solutions there are many that appear but often it is advertising for programmes to delete the malware - at a cost of course - or the manual solutions to eradicate the malware while consistent in some steps are inconsistent in others.

What I would like to know is - has anyone had experience in successfully deleting this virus?
What did you do to delete it?
Is it possible to get rid of it manually or will she need to purchase some software to delete it?

Thanks in anticipation.

Create new topic

Stu

Hammered
5286 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

  # 998461 3-Mar-2014 21:48
Send private message

Try MalwareBytes. Just started working on a machine with that infection today and it doesn't seem to be a major (at least in this case, so far). This is the first of this batch I've come across. Still a few more tools I'll be running on it before I'd declare it clean though. Work on it in Safe Mode. If anything crops up I'll post it here.

5392 posts

Uber Geek

Trusted
Lifetime subscriber

  # 998465 3-Mar-2014 21:51
Send private message

Windows Ultimate Booster is "scareware", which masquerades as genuine security software, while actually reporting non-existent malware threats in order to scare the user into paying for this rogue security software.

Go to: http://malwaretips.com/blogs/windows-ultimate-booster-removal/

Read about the Malwarebytes and System Restore options and follow instructions.




Sideface


 
 
 
 


4431 posts

Uber Geek
Inactive user


  # 998467 3-Mar-2014 21:53
Send private message

This one was a link from microsoft forums.

Basically, malwarebytes from safemode.



Always be aware of what you click on.

Stu

Hammered
5286 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

  # 998473 3-Mar-2014 21:57
Send private message

Like your links blakamin? ;-)

Booster does appear to be nothing more than a rogue, but make sure nothing joined it for the party. This notebook here has a couple of other minor players as well. Sorted with MalwareBytes as well.



61 posts

Master Geek


  # 998957 4-Mar-2014 17:43
Send private message

BigHammer: Try MalwareBytes. Just started working on a machine with that infection today and it doesn't seem to be a major (at least in this case, so far). This is the first of this batch I've come across. Still a few more tools I'll be running on it before I'd declare it clean though. Work on it in Safe Mode. If anything crops up I'll post it here.


Thankyou for your reply BigHammer and everyone else.
using the site http://www.bleepingcomputer.com/virus-removal/remove-windows-ultimate-booster I downloaded the remvimes.reg application and was able to run that in safe mode.
However when I logged in using the normal login, an alert kept popping up which prevented me form running ieexplorer to download the malwarebytes software.
Can I download this software in safe mode and run it from there or do I need to be in the normal login mode?

5392 posts

Uber Geek

Trusted
Lifetime subscriber

  # 999080 4-Mar-2014 21:08
Send private message

The malware is blocking you.
You need to download MalwareBytes on another computer.
Go to https://www.malwarebytes.org/




Sideface


Stu

Hammered
5286 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

  # 999176 4-Mar-2014 22:53
Send private message

And then install it in safe mode and run it in safe mode.

 
 
 
 




61 posts

Master Geek


  # 999198 4-Mar-2014 23:47
Send private message

Sideface: The malware is blocking you.
You need to download MalwareBytes on another computer.
Go to https://www.malwarebytes.org/


Thanks BigHammer and Sideface - that seems to have done the trick

Stu

Hammered
5286 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

  # 999227 5-Mar-2014 08:39
Send private message

Just check in you Control Panel that the Action Center starts up fine. The notebook I had here had the relevant service set to Disabled. May have been caused by one of the other infections that it had though.



61 posts

Master Geek


  # 999342 5-Mar-2014 11:28
Send private message

BigHammer: Just check in you Control Panel that the Action Center starts up fine. The notebook I had here had the relevant service set to Disabled. May have been caused by one of the other infections that it had though.

Thanks BigHammer - yes my Windows Security Center was turned off.
It wouldn't let me turn it back on so I went to this site support.microsoft.com/kb/2519899 and used the fixit function so all is well now.

Once again many thanks for bringing it to my attention.

Stu

Hammered
5286 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

  # 999344 5-Mar-2014 11:34
Send private message

Most welcome. Hopefully you're all good to go now!

Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

D Link ANZ launches EXO Smart Mesh Wi Fi Routers with McAfee protection
Posted 15-Oct-2019 11:31


Major Japanese retailer partners with smart New Zealand technology IMAGR
Posted 14-Oct-2019 10:29


Ola pioneers one-time passcode feature to fight rideshare fraud
Posted 14-Oct-2019 10:24


Spark Sport new home of NZC matches from 2020
Posted 10-Oct-2019 09:59


Meet Nola, Noel Leeming's new digital employee
Posted 4-Oct-2019 08:07


Registrations for Sprout Accelerator open for 2020 season
Posted 4-Oct-2019 08:02


Teletrac Navman welcomes AI tech leader Jens Meggers as new President
Posted 4-Oct-2019 07:41


Vodafone makes voice of 4G (VoLTE) official
Posted 4-Oct-2019 07:36


2degrees Reaches Milestone of 100,000 Broadband Customers
Posted 1-Oct-2019 09:17


Nokia 1 Plus available in New Zealand from 2nd October
Posted 30-Sep-2019 17:46


Ola integrates Apple Pay as payment method in New Zealand
Posted 25-Sep-2019 09:51


Facebook Portal to land in New Zealand
Posted 19-Sep-2019 18:35


Amazon Studios announces New Zealand as location for its upcoming series based on The Lord of the Rings
Posted 18-Sep-2019 17:24


The Warehouse chooses Elasticsearch service
Posted 18-Sep-2019 13:55


Voyager upgrades core network to 100Gbit
Posted 18-Sep-2019 13:52



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.