Sunday, November 20, 2011

Safeboot recovery instructions for helpdesk engineers

Safeboot has been corrupted-92h error
IMPORTANTEnsure that your computer's main power supply is plugged in before continuing with this procedure. Do not attempt to perform on battery only.

PrerequisitesBefore proceeding you must have the following:
  • The BartPE Boot CD/DVD.
  • The floppy drive or USB containing the computer's configuration file (.SDB). This contains the computer's key that provides access to the problem computer.
    NOTE: Any USB sticks and drives required to access the computer must be plugged in before WinTech starts.
  • The daily access/authorization code. You can get this directly from McAfee Support, or from your internal Helpdesk:
    • To obtain the Endpoint Encryption (formerly SafeBoot) Code of the Day from the McAfee ServicePortal, see KB61073.
    • Availability from your Helpdesk is dependent on your contract with McAfee.

 Data Recovery Procedure

This procedure uses the Authenticate to SafeBoot Files System (SBFS) method.
  1. Start the computer with the BartPE CD/DVD (WinTech CD). This loads the Endpoint Encryption interface.
  2. Click Go, ProgramsEEPC WinTech or Safeboot WinTech
  3. When prompted, type the access code, and then click OK.
  4. From the main menu, click WinTech and select Authenticate from SBFS.
  5. Type the Safeboot username and password, and then click OK
  6. Click Go,Programs,A43 File Management Utility
  7. Click on C: and copy all the data to your external drive.


McAfee Download Site
To download McAfee products, updates, and documentation, visit the Downloads page at http://www.mcafee.com/us/downloads/downloads.aspx.

For instructions on downloading, see: KB56057.

And also see bellow details from MacAfee
How to use the WinTech CD to remove the encryption and boot sector from the hard disk


Environment
McAfee Endpoint Encryption for PC 5.x.x
McAfee WinTech CD

For details of all supported operating systems, see KB51109.


NOTE: Endpoint Encryption for PC was formerly known as SafeBoot Device Encryption. McAfee Endpoint Encryption for PC 5.1.7 (Build 5500) was the first release to be branded with the new McAfee product name.
Summary
This article provides two solutions to overcome the following types of situations:
  • Windows becomes corrupt.
  • You cannot access the data of an encrypted computer.
  • Encryption or decryption fails.
IMPORTANT: Only attempt the following procedures if you are a trained Helpdesk operator within your company, or call McAfee Technical Support.
Solution 1
IMPORTANTEnsure that your computer's main power supply is plugged in before continuing with this procedure. Do not attempt to perform on battery only.

Prerequisitesbefore proceeding you must have the following:
  • The BartPE Boot CD/DVD.
  • The floppy drive or USB containing the computer's configuration file (.SDB). This contains the computer's key that provides access to the problem computer.
    NOTE: Any USB sticks and drives required to access the computer must be plugged in before WinTech starts.
  • The daily access/authorization code. You can get this directly from McAfee Support, or from your internal Helpdesk:
    • To obtain the Endpoint Encryption (formerly SafeBoot) Code of the Day from the McAfee ServicePortal, see KB61073.
    • Availability from your Helpdesk is dependent on your contract with McAfee.

Recovery Procedure 1This procedure uses the Authenticate to SafeBoot Files System (SBFS) method.
  1. Start the computer with the BartPE CD/DVD (WinTech CD). This loads the Endpoint Encryption interface.
  2. Click Go, ProgramsEEPC WinTech.
  3. When prompted, type the access code, and then click OK.
  4. From the main menu, click EEPC and select Authenticate from SBFS.
  5. Type the computer username and password, and then click OK
  6. From the main menu click EEPC and select Remove EEPC. This decrypts the drive and removes the boot sector.
    NOTE: It might take a few hours, depending on the computer's performance and the storage capacity of the drive or partition. 
  7. When Endpoint Encryption has been removed, delete its record from the Endpoint Encryption Manager. (The central record will no longer have the correct parameters for this computer).
    See the Endpoint Encryption for PC Administration Guide for further information or contact your Endpoint Encryption Database Administrator.
CAUTION: The next time Windows is started, Endpoint Encryption automatically reactivates itself if the installed files are still intact. It also connects to the Endpoint Encryption Server. The computer might also encrypt at this point, depending on its database settings.
Required action to prevent this from happening:
  1. Disconnect from the network prior to starting the computer (or disable wireless networking).
    NOTE: Disconnecting from the network will prevent reactivation only if this computer was originally an Online install. If it was an Offline install, then start with Windows Safe Mode first. See the Endpoint Encryption for PC Administration Guide for further information regarding online and offline installation.
  2. Allow Windows to load.
  3. Click Start, Run, type cmd, then click OK.
  4. Change to the Endpoint Encryption folder on the client using DOS commands. Default location is: c:\Program Files\McAfee\Endpoint Encryption for PC. Type:

    CD "c:\Program Files\McAfee\Endpoint Encryption for PC"
  5. Type sbsetup –uninstall

  6. NOTE: The drive must be completely unencrypted for this command to work.
Solution 2
If Endpoint Encryption does not work and the Encryption and Boot Sector removal procedure in Solution 1 cannot be used, then follow this alternative procedure.
Prerequisites
Before proceeding you must have the following:
  • The BartPE Boot CD/DVD boot CD.
  • The floppy drive or USB containing the computers configuration file (.SDB) that has been exported from the Endpoint Encryption database. This contains the machine key that will provide access to the problem computer.

    NOTE: Any USB sticks and drives required to access the computer must be plugged in before WinTech starts.
     
  • The daily access/authorization code. This can be obtained either directly from McAfee Support or from your internal Help Desk.
    To obtain the Endpoint Encryption (formerly SafeBoot) Code of the Day from the McAfee ServicePortal, see KB61073.

    NOTE: Availability from your Helpdesk is dependent on your contract with McAfee.
     
Recovery Procedure 2This procedure uses the authentication method: Authenticate to Database
  1. Create a SafeTech Boot Disk.
    First create a SafeTech recovery disk at the McAfee Endpoint Encryption Manager and export the User/Computer configuration to the floppy disk/USB device.
This procedure is documented in:
·         The WinTech and SafeTech Administration Guide. These guides are available from either:
·         How to create a SafeTech boot disk for Endpoint Encryption, see KB53257.
The WinTech and SafeTech Administration Guide is available at:
McAfee ServicePortalFor a full list of product documents, go to the McAfee ServicePortal (http://mysupport.mcafee.com/Eservice/Default.aspx), and click Product Documentation.


McAfee Download Site
To download McAfee products, updates, and documentation, visit the Downloads page at http://www.mcafee.com/us/downloads/downloads.aspx.

For instructions on downloading, see: KB56057.
 
  1. Use the WinTech CD and SafeTech Recovery disk.
    1. Start your computer with the BartPE CD/DVD. This loads the Endpoint Encryption interface.
    2. Click Go, Programs, EEPC WinTech.
    3. When prompted, type in the access code, then clicks OK.
    4. From the main menu click EEPC, then select Authenticate from Database.
    5. Select the computer's SDB file, then click OK.
    6. From Select Machine, select the correct computer name. 
    7. From the main menu click Workspace and select Open Workspace.
    8. From the menu Workspace select Load From Sectors.
    9. In the Load sector window enter the start sector to use for decryption in the workspace (memory), this  can verify if the key is correct. Usually sector 63 after decryption would show readable content.
    10. In the sector count section, type in the number of sectors that need to be read after the start sector. This is usually 1.
    11. Select from the Workspace menu the option Decrypt Workspace to decrypt the read sectors in the memory.
      NOTE: If there is readable data showing the key loaded is correct, then you can proceed to the next step; otherwise the read SDB file may contain the incorrect key and decrypting/removing the encryption may damage the data on the hard disk.
    12. From the main menu, click EEPC, and then select Remove EEPC. This decrypts the drive and removes the boot sector.
      NOTE: It might take some hours depending on the computer performance and the storage capacity of the drive or partition.
    13. When Endpoint Encryption has been removed, delete its record from the Endpoint Encryption Manager. (The central record will no longer have the correct parameters for this computer.)
      See the Endpoint Encryption for PC Administration Guide for further information, or, contact your Endpoint Encryption Database Administrator.
NOTE:  If you had a problem with Windows and the operating system is repaired, Endpoint Encryption will automatically reactivate itself if the installed files are still intact. It also connects to the Endpoint Encryption Server. The computer might also encrypt at this point, depending on its settings in the database.

Required action to prevent this from happening:
a.       Disconnect from the network prior to starting your computer (or disable wireless networking).
b.      Allow Windows to load.
c.       Click Start, Run, type cmd, then click OK.
d.      Change to the Endpoint Encryption folder on the client using DOS commands (default location is: c:\Program Files\McAfee\Endpoint Encryption for PC). Type:

CD "c:\Program Files\McAfee\Endpoint Encryption for PC"
e.       Type sbsetup –uninstall
NOTE: The drive must be completely unencrypted for this command to work.
WARNING: Disconnecting from the network will prevent reactivation only if this computer was originally an online install of Endpoint Encryption for PC. If it was an offline install start with Windows Safe Mode first.  See the Endpoint Encryption for PC Administration Guide PDF document for further information regarding online and offline installation.







Mcafee Official website
Posted by at

15 comments:

  1. UnknownOctober 14, 2014 at 2:45 AM

    Great blog! Very informative with helpful tips.

    recovery

    ReplyDelete
  2. UnknownSeptember 10, 2018 at 4:27 AM


    We provide complete support for Norton Setup installation support for the customers. The customers need to connect with the antivirus setup support. The experienced technician in the technical team will take the computer of the customer on remote access and provide support to the customer in getting the issue resolved.
    norton customer service
    norton customer service phone number
    norton antivirus customer service
    norton customer support
    Norton support
    norton support phone number
    norton technical support
    Norton Antivirus Setup
    Norton Antivirus Download
    Norton Antivirus Setup Support Number
    Norton Antivirus Installation Support
    Norton Antivirus Setup Support
    mcafee customer service
    mcafee customer support
    mcafee phone number
    Mcafee Support
    McAfee Antivirus Setup
    McAfee Antivirus Download
    McAfee Setup with Product Key

    ReplyDelete
  3. Email SupportApril 20, 2019 at 11:56 AM

    I found very interesting and helpful facts thank you so much!!!! Call Our Toll Free McAfee Support Number |+1-646-968-0680
    McAfee Support
    McAfee Support Phone Number
    McAfee Support Number
    McAfee Tech Support Number
    McAfee Tech Support
    McAfee Tech Support Phone Number

    ReplyDelete
  4. McAfee Antivirus- mcafee.com/activateMay 2, 2019 at 1:52 AM

    Thanks a lot for sharing this here, I was stuck badly but now I know what is to be done.
    WOW! The content is written so perfect, for any help with regard to the McAfee software visit at…… McAfee UK | McAfee Support Number

    ReplyDelete
  5. ElieuseMay 2, 2019 at 2:49 AM

    I am glad to see such talented writers sharing their write ups here keep writing keep sharing.
    The writer won my heart the person has given great efforts in this blog, for any query related to Brother Printer visit….. Brother Printer UK | Brother Printer Support Number

    ReplyDelete
  6. Daisy JonesOctober 30, 2019 at 4:50 AM

    Thanks for sharing this information here I was fed up with my antivirus as it wasn’t performing up to the mark from last few days, but after reading this as I applied it on my software it is now back to normal. Keep posting such content on a regular basis it helps a lot. If you are facing problem with netgear Router can go with this link. Netgear Support UK

    ReplyDelete
  7. Daisy JonesNovember 21, 2019 at 3:22 AM

    Nice blog. If you are Looking for Looking for Contact Wordpress, visit on Contact Wordpress

    ReplyDelete
  8. Daisy JonesNovember 21, 2019 at 3:26 AM

    This is my first time i visit here,I found so many interesting stuff in your blog especially its discussion,thanks for sharing. i really appreciate it that you shared with us such a informative post. hp customer support

    ReplyDelete
  9. linksys extender setupDecember 5, 2019 at 4:19 AM

    Thanks for sharing. We provide full support for all your Linksys devices, including guidance for your arlo support .So if you are having issues with connecting to the Wifi or configure settings on the Linksys app, then contact us using our live chat services or our email.You can also call us using our customer support phone number.
    Call at +1-844-456-4180 Toll Free Phone Number

    ReplyDelete
  10. Harry LeoJanuary 21, 2020 at 10:15 PM

    For an easy configuration of Norton password manager it is advisable to open the browser then there the user should click the option “Norton password manager” given at the right corner of the browser further on the Norton password manager sign-in screen there click “sign in.”If you are still looking for more information or help then you should get connected with the team of trained and certified experts. Lines are open for help and Norton Helpline as and when needed.

    ReplyDelete
  11. Netgear supportJanuary 30, 2020 at 4:26 AM

    linksyssmartwifi.com is the offical website used to access the Linksys admin panel. If you did not get access the Linksys router using linksyssmartwifi.com.
    you can try accessing the Linksys router using 192.168.1.1.or contact Linksys Support at +1-844-456-4180 Toll Free Phone Number.

    ReplyDelete
  12. Farhan.JeeFebruary 19, 2020 at 1:19 PM

    Typically, the cost is a combo of service fees, parts and labor. Top Rated Range Hood Repair in Riverside

    ReplyDelete
  13. bill.woodJuly 14, 2020 at 2:33 PM

    In most cases but not all, a simple medium to soft spray from a garden hose and a house broom can be all that is needed to maintain the new rich luster that your bricks had when they were first laid. asphalt companles

    ReplyDelete
  14. Benna AdamsJuly 23, 2020 at 3:40 AM

    Nice post, For any assistance regarding McAfee Safe boot Encryption please contact McAfee support phone number 8000487408.

    ReplyDelete
  15. Tim PegiosSeptember 22, 2020 at 4:17 AM

    If you don’t know how to fix the Netgear Orbi Certificate Error, then don’t worry; we are here to help you. You can just dial our toll-free Orbi Helpline numbers at USA/CA: +1-855-869-7373 and UK/London: +44-800-041-8324. With the help of our experts, you can learn how to fix it.

    ReplyDelete

Subscribe to: Post Comments (Atom)