How to create a Windows XP boot CD including McAfee Command Line

Scanner

Step 1 - Obtain the necessary software

1. Download BartPE from http://www.nu2.nu/pebuilder/#download

2. Download the latest McAfee SuperDAT from
http://www.mcafee.com/apps/downloads/security_updates/dat.asp
3. Download the latest version of McAfee VirusScan Command Line Scanner.

NOTE: Scan.exe in the Daily SuperDAT has been replaced with stub file of the same
name and can no longer be used as an executable. You will need the executable from
Command Line Scanner.

To download McAfee products, updates, and documentation, visit the Downloads

page at http://www.mcafee.com/us/downloads/downloads.aspx.

For instructions on downloading, see: KB56057.

 

If you are not licensed to use Command Line Scanner, contact McAfee Technical
Support for assistance.

For contact details:

o Go to http://www.mcafee.com/us/about/contact/index.html
o Non-US customers - select your country from the list of Worldwide Offices

Alternatively:

Log in to the ServicePortal at https://mysupport.mcafee.com:

o If you are a registered user, type your User Id and Password and click OK.
o If you are not a registered user, click New User and complete the required
fields. Your password and login instructions will be emailed to you.

4. Obtain the relevant licensed Windows XP SP1 (or later) CD for the computer
affected.
 NOTE: If the disks of your compters are not local (examples: NAS, SAN or RAID
storage), you may need additional drivers. Some drivers can be obtained from:
http://www.nu2.nu/pebuilder/drivers/

Step 2 - Set up BartPE

 
BartPE allows you to read NTFS drives without having to start up the computer's operating
system. This means no files on the infected drive can be in use which makes spyware and
virus removal easier.

1. Create an installation folder called Barts PE.

2. Copy the downloaded the self-installing package or zip file to the new folder, run it
and set the installation directory for the same folder.
Alternatively, extract the ZIP file into the Barts PE folder.
 
3. Copy the entire contents of your XP CD to \Barts PE\XPCD
4. Copy the latest SuperDAT to \Barts PE\plugin\McAfee\files\

Step 3 - Extract the SuperDAT file

1. Click Start, Run and click Browse.

2. Navigate to the \Barts PE\plugin\McAfee\files\ folder and select the SuperDAT file.
3. Add  -e  to the end of existing name and click OK.
This will tell the SuperDAT file to extract to its current location, as opposed to
looking for a McAfee product to update. You can delete the SuperDAT file when
done.
 

Step 4 - Use the McAfee Command Line Scanner executable

1. Launch Windows Explorer.

2. Locate the downloaded Command Line Scanner package
3. From the downloaded Command Line Scanner package, copy scan.exe, config.dat,
license.dat, license.txt, mcscan32.dll and signlic.txt 
4. Navigate to the \Barts PE\plugin\McAfee\files\ folder and paste the copied files.

 
Step 5 -  Build the .ISO image

1. Launch pebuilder.exe to build the image.

2. In the welcome screen, click Next.
3. Select the directory you have copied the XP files to (\Barts PE\XPCD) and click
Next.
4. To add the plugin, highlight McAfee VirusScan for Win32 and click
Enable/Disable until Enabled option on the right side of the window is set to Yes.
5. Click Next.
 6. Type the name of the Output directory and the location where you want to store the
.ISO image, then click Next.
Creating the .ISO image may take some time.

Step 6 - Burn the .ISO image

Refer to your CD burning software documentation for instructions.

Step 7 - To use Bart PE boot disk

1. Start the computer from CD/DVD.

2. Open the menu from the bottom left side. From the menu, select McAfee VirusScan
GUI Wrapper.
3. Under What to scan, minimally select the following:
o Scan all local drives       
o Scan subdirectories
4. Under Action, select Clean viruses from infected items.
5. Under Report, select:
o Report to file
o Include corrupted files
o View report after scan
o Include errors
6. Set the report name and location.
7. Click Scan.