Ultra Defragger Virus/Malware Removal Guide

By Jamie Pert - Nov 14, 2010

If a program called Ultra Defragger has recently appeared on your computer (see the image embedded at the end of this post) you may be wondering what it is, and whether you should buy the full version, we have some important information for you, it is in fact a form of virus/malware and shows fake alerts to try and trick you into buying it. In this post we will talk about the program’s fake alerts and explain to you how to remove it.

Let’s start with some of the program’s many fake alerts, these look very similar to real Windows warnings, however they are all part of the scam, therefore if you see a message reading “Critical Error! – Damaged hard drive clusters detected. Private data is at risk.”, “Critical Error – Hard Drive not found. Missing hard drive.” or something similar ignore them for now, as we will get rid of all of them.

As with all of my guides I recommend downloading a few programs and putting them on a CD/Flash drive, it is important to have the latest and greatest versions downloaded, so click on the following links to download them, CCleaner, rkill and Malwarebytes’ Anti-Malware.

The first thing I would do is to shut down the infected computer and restart it in Safe Mode with Networking mode (instructions here), once the PC is in Safe Mode with Networking mode I would then install CCleaner to clean up unnecessary file build up, this will speed up infection scans and perhaps improve overall computer performance, you can see how to clear unnecessary file build up here.

We will now attempt to remove the infections, firstly you should run rkill to kill any processes associated with infections, on Windows 7 and Vista you may have to right click this utility and click “Run as Administrator” rkill does not require any user input and takes just a few seconds to complete, you should now install Malwarebytes’ Anti-Malware.

Once you have Malwarebytes’ Anti-Malware installed you should open it, you must then click on the update tab and click “check for updates”, this requires an active internet connection and will update the program’s definition files, once updated click the scanner tab, highlight the “perform full scan” option and then select the “C:” and click scan.

This scan will take some time, once complete click “show results”, select all of the infections found and then click “remove selected”, you may have to restart your PC, however once your computer starts back up Ultra Defragger should be gone.

We would love to hear whether this guide helped you get rid of Ultra Defragger, therefore let us know in the comments section below.

Source: BleepingComputer

Follow us on Facebook, Twitter or Google Plus.

  • DAB

    Ran rkill (10 times for luck), ran updated Malwarebytes’ Anti-Malware and finally Ultra Defragger is gone! Got this damn malware from a so-called reliable main-stream forum website. Thanks for this fanstastic tip, WORKED PERFECTLY (and for free)- what a lifesaver!
    p.s. running XP Pro 64

  • Jared

    This malware can also block use of usb/flash drives as was the case with my family member’s computer. However, I was able to perform all of the required tasks for removal simply by running ‘msconfig’ and choosing a selective startup with no ‘Startup Items’ being loaded.

    Please note: this worked for me on a computer running XP home, this may not work for everyone and WILL NOT cure your computer. This is just, in my opinion, an easier way to facilitate the installation/running of removal software. The method recommended by this guide is more thorough and should work for people that have more problems than UltraDefragger.

  • duped

    OK, I hate to admit it, but I was one of the fools that fell for this. I paid the fee and now my computer seems to be fine. Do I still need to run these scans to remove it?

  • Jonnyxero

    As for your guys internet issues…go into internet explorer/tools/connection/lan settings uncheck proxy server…and voila!

  • dave

    Unfortunately this didn't help me. I guess a "Windows security alert" program/virus/malware was creating a new ultra defragger under a different code every time I tried to delete it. ultra defragger blocked me from running any programs such as malwarebytes or CCleaner, and prevented me from entering safe mode or accessing any secure website. while I was able to delete all parts of ultra defragger and enter safe mode, run the programs *found 5 backdoor bots* deleted them, but could not find anything related to the windows security alert that caused constant pop-ups. exiting any of the popups even with F4 automatically re-input ultra defragger and shut off the computer. I did some searching and found the security alert was rooted in the system32, Is there no other way to get this thing out? *note: all cleaner programs were run both in reg and in safe mode*

  • Dappin

    i have the same problem as greg–can't get on the net even in safe mode. How do i remove this without internet access?!

  • andy

    i downloaded Microsoft Security Essentials and ran that and that also worked fine.

  • Mike

    'Did exactly what it said on the tin'. Thank you for your help, all back up and working within 3 hours with no expensive computer engineers required.

  • Chris

    cheers guys worked first time!!

  • Greg

    Iv gone into safe mode with networking but it still won’t let me go on the net :/ any ideas??

  • Jon

    i operated under safemode networking so UD(ultra defragger) wasn't bugging BUT when i used rkill nothing BUT rkill.exe was removed
    so i was wondering if anyone was having the same problems? or was it just me? and what should be done under such circumstances?
    as we speak i'm using malwarebytes' anti malware to perform a scan on my C drive.
    let's hope that works.. 🙁

  • Jon

    i operated under safemode networking so UD(ultra defragger) wasn't bugging BUT when i used rkill nothing BUT rkill.exe was removed
    so i was wondering if there are any other solutions or is that how it should be? or maybe i should use the other file types of rkill?
    as i'm typing this i'm also running malwarebytes' anti malware.. going through my C drive with it.. hopefully it works 🙁 fingers crossed

  • Careyious

    I hate the feggots who put virus/malware up on the internetz. But to you people at product reviews: YOU ARE AWESOME! KEEP ROCKING ON!!

  • /keon

    had malware bytes but it kept finding nothing…thanks for reminding me i had to update it prior to scanning 🙂

  • April

    I am trying the Malware program as we speak. Am praying to God it works!

  • egsdf

    if you could not open anything while infected the virus,do please use Rkill or antiexehijack first to kill malware process

  • tony

    I ran Malwarebytes after I updated it and it worked great. However, now I get appcrash or bex errors when I try to open iexplorer.

    ANy ideas?

  • Nate

    The key for me was to keep running the rkill links as fast as you can as to overwhelm the ultradefragger blocking tool? i think i had 7 or 8 up, so i could just click run, run, run, run as fast as i could. Before that, it just sait "processes removed: ….rkill.exe." then the last few actually had a couple of other files which were stopped, and i was able to download malwarebytes after that. GL guys.

  • homie

    malware works for my girlfriends ultra defragger virus,the time we download malware bytes after two hours of scanning,the virus was remove.

    homie

  • computer hopless

    worked like a charm

  • Mikaela

    Thank you for info about this!
    I search on Swedish but couldnt find a thing about Ultra Defragger or how to stop it.
    Now I recommend all my friends to find your page if they get the same trouble!