Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.

Windows 7: Will System Sweeper also solve this problem?

01 Jul 2011   #1

MS Windows 7 Ultimate SP1 64-bit
Will System Sweeper also solve this problem?

Here the suggestion is to boot to a system repair disc or the equivalent thereof via system restore and run:
bootrec.exe /fixmbr


That solution is easy, but can I get rid of the pest by running System Sweeper?

Will MSE or MSRT be updated to get rid of this guy?

My System SpecsSystem Spec
01 Jul 2011   #2
Microsoft MVP

Windows 7 Ultimate 32bit SP1

It's a nasty rootkit You can try it ... I don't know if it can get rid of that Trojan.

You could also try TDSSKiller How to remove malware belonging to the family Rootkit.Win32.TDSS (aka Tidserv, TDSServ, Alureon)?
My System SpecsSystem Spec
01 Jul 2011   #3
Borg 386

Win 7 32 Home Premium, Win 7 64 Pro, Win 8.1, Win 10

Right now there are 2 AV's (known) that will get rid of it Popureb.E

See this post, Norton and Hitman Pro 3.5.9 – build 126, say they can get rid of it

Rootkit Infection Requires Windows Reinstall, Says Microsoft

Quote   Quote: Originally Posted by malexous View Post
Hitman Pro removes Popureb.E
The latest release of Hitman Pro 3.5.9 – build 126 – will remove the infamous Trojan “Popureb” without the need to reinstall the operating system as previously advised by Microsoft.
YouTube - ‪Hitman Pro removes Popureb.E‬‏
Symantec's Vikram Thakur added, existing Symantec tools will fix the problem.

"We have found that it is not necessary to re image a machine in order to repair," Thakur wrote. "Symantec detects this threat and Norton customers can use Norton Bootable Recovery Tool (NBRT) to boot up and NBRT will clean their computers. The helps fix computers infected with threats that embed themselves deeply into the computer's operating system. It helps restore the computer to normal working order."

You can download NBRT here.
My System SpecsSystem Spec

01 Jul 2011   #4

MS Windows 7 Ultimate SP1 64-bit

I don't have it. I'm seeking knowledge to prepare myself in case I need to remove from another person's computer.

Also to know what MS's plans are regarding removal other than the draconian approach they currently recommend which is unacceptable to ask Joe EverydayUser to perform.

To boot from my System Repair Disc and run bootrec /fixboot followed by bootrec /fixmbr is not much of a challenge for us, but for John Garagemechanic that can be a little much.
My System SpecsSystem Spec
02 Jul 2011   #5
Borg 386

Win 7 32 Home Premium, Win 7 64 Pro, Win 8.1, Win 10

I took a look at a few articles this morn and from the looks of it, someone will probably come out with a removal tool specifically for this Virus.

Symantec offers users a tool to help fix the MBR. Named "Norton Bootable Discovery Tool," the free download creates a boot disc for starting up the PC without accessing the hard drive. The tool downloads malware signatures and cleans the MBR.
According to this, they're offering the tool for free.

If these 2 AV's already have the capability to remove it, then MS should follow up with a removal tool of their own (so I would think)

However, there seems to be an argument going on as to whether this will actually clean the system 100%, hence MS's position on doing a re-install.

Joe Stewart, director of malware research at Dell SecureWorks, says different. "Once you're infected, the best advice is to reinstall Windows and start over," said Stewart. "MBR rootkits download any number of other malware. How much of that are you going to catch? This puts the user in a tough position."
And then you have this lovely bit of info:

Marco Giuliani, the Webroot threat research analyst who published his own analysis of Popureb, cautioned that users may end up having to reinstall Windows after all.

"What is really a nightmare is that [Popureb] looks like it has bugs and sometimes it hangs the system during the reboot stage," Giuliani wrote on the Webroot blog. "This could become a problem that would require you to perform a full system reinstall."
Guess we'll just have to wait and see how the dice fall on this...
My System SpecsSystem Spec
02 Jul 2011   #6

MS Windows 7 Ultimate SP1 64-bit

'tis true that some malware installs some of their cousins, but I see that there is much ignorance and fear running around. Being an executive does not make you competent in the area you manage. Those of you who have worked in industry will understand that statement.

Now to get rid of it:
Boot from your System Repair Disc.
Go to a command prompt.
run following two commands:
Bootrec /fixboot
Bootrec /fixmbr
Shutdown your computer.
Run System Sweeper or Safety Scanner.

Your system is clean as a whistle.
My System SpecsSystem Spec

 Will System Sweeper also solve this problem?

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Similar help and support threads
Thread Forum
Solve a problem with your power management system - Leovo Laptop
So, before installing the driver that was recently uploaded on the Lenovo support site, I didn't have this error. (I own a IdeaPad Z50-70) I got the correct version for my Windows. I'm using Windows 7 on 64 bits. ...
MS Standalone System Sweeper
I booted with msss_media64.iso and the boot went fine. I ended up in Win 7 with no messages or screens in between. Is that because I had no problems in my OS?
System Security
System Sweeper Error 0x8004cc01
Anyone know what this error code represents? I have run the program successfully on a Windows 7 32-bit, an XP/SP3 with no problems. Unfortunately on one computer it does not load and errors out. Any ideas? :mad:
System Security
Microsoft Standalone System Sweeper
Is your computer infected and you can't even boot to run an antivirus? The Microsoft Standalone System Sweeper will allow you to produce a CD/DVD/USB stick from which you can boot and sweep the computer of bad guys. Available in 32-bit and 64-bit versions. I strongly recommend this...
General Discussion

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 11:21.

Twitter Facebook Google+

Windows 7 Forums

Seven Forums Android App Seven Forums IOS App