Running WinPE with Malwarebytes

by admin on November 16, 2011

If you landed here it means that you have some computer problems you can download your Anti malware iso below and if you have some time maybe you want to check out a comprehensive tutorial on malware and Identity theft. In addition if you have Amazon Prime and any kind of kindle device you can borrow The Computer Manual for free from Amazon.

Below are the instructions on how to operate the most important features of this anti malware boot disc.

At the command prompt type the following commands and then press the Enter key:

Mbam for Malwarebytes

SAS for Superantispyware

Partwiz for partition wizard

vncserver to start vnc server. You can connect remotely and operate the Malware cd / winpe disc from another computer. You need to have DHCP enabled on the network (or have one of those home routers “linksys, netgear, belkin and so on” if your environment is at home).


winvnc to start the old version of the VNC server.

vncviewer or viewer to run the viewer and connect to other machines running VNC.

[June 18 2012 ISO Update] Malwarebytes database update to 2012 06 18 06. Added VNC server the new and the old version added also the VNC viewer just incase is needed. Run it with “vncviewer” old version and viewer for the new version Malwarebytes boot cd.

With Partition wizard bootable you can manage the partitions on the hard drive. Resize, delete, copy, make active and more. That’s what partition wizard can do for you. if your operating system is not starting properly.

The Windows PE Malware boot disc. Get your anti malware boot disc, malware iso from the computer manual!

[March 29 2012 ISO Update] Download Malwarebytes boot CD  WINPEComputerManualv31.iso – updated the rules.ref for malwarebytes iso and added PartitionWizard for editing partitions, just run “partwiz”

[December 28 2011 ISO Update] WinpeComputerManualv3.ISO 217 MB.  Updated Mlawarebytes boot CD and the database as well as SuperAntiSpyware iso.  If superantispyware is not running, then try to unplug your computer from the network, then run it again a few times.

[December 15 2011 ISO Update] PEPDFMBAMSAS.ISO Added SuperAntiSpyware boot disc to the image 219 MB. If superantispyware is not running, then try to unplug your computer from the network, then run it again.

Run to start SuperAntiSpyWare and Scan Your Computer for viruses.

Download The ISO:  WINPePDFmbam.iso file and then burn it on a CD. The Malware ISO has 200 MB. You can test this Malwarebytes cd file with VirtualBOX . This Malwarebytes ISO was published 20 November 2012


To boot from the Malwarebytes boot disc, have the computer shut down with the CD inserted in the CD-ROM drive. While the computer starts up press the F12 key to be presented with the boot options screen. Select the CD ROM or DVD ROM  drive and then press any key as the screen prompts you to boot from the CD-ROM.

This is an addition to the manual to help you scan your computer for viruses and adware.

Windows PE, WinPE

When you see the above screen then type in mbam and press ENTER to run MalwareBytes.

Select NO for the database update and decline the startup of the trial version.

Dialogbox malwarebytes

However if your computer is connected to the internet with a wire, and your network card has been detected, you can try to update the database file. If you are behind a proxy, usually at work, then you first have to change the proxy settings, before the update.

Decline the Trial.

Select the Perform full scan.

WinPE malwarebytes



And then click the Scan button. We clear the check mark on the X drive because we want to save time. The X: drive is the actual CD you have booted from.


{ 14 comments… read them below or add one }

Jack January 23, 2012 at 9:03 am

Very nice!! I was wondering if you could post just how you added MalwareBytes and other applications to WinPE.


admin January 23, 2012 at 9:33 am


It was pretty complicated. I tried it before but it did not work, eventually I played around with it and it did work. I wanted something like this for a while. I just wanted to have it as support for my manual.

Is too much work in describing how is done, and perhaps it can be done in many ways. Mine is not 100% full proof. Whats interesting about is that Malwarebytes sais that it doesn’t work as well, in WINPE. However I tested it. I specifically infected a Virtual Machine with Adware to test the Malwarebytes in WINPE and it did find the infected files. So if you have an infected computer just download the ISO burn it and scan and clean the computer. You can even update the definitions on WinPE if your networking card is detected.

It is not complicated for a person that is well versed in customizing WINPE.

I created the WINPE with Malwarebytes CD to add value to my Computer Manual, and generate traffic to this website.


Iqbal Malik March 18, 2012 at 12:52 am

I ried to download the two iso files (i.e. WINPePDFmbam.iso and WinpeComputerManualv3.iso) from your site but the download seems to be zero bytes. can you please update the link for download?

your hard work is much appreciated.


admin March 19, 2012 at 11:08 am

The latest file should be available trough DropBox.
WinpeComputerManualv31.ISO. sucks.


Iqbal Malik March 24, 2012 at 11:46 pm


can you email me the dropbox link to download? or update it on your post with the link on it. is good for filesharing.


admin March 26, 2012 at 5:57 am

I just tested the link for last update on win PE and it started the download. I’m not sure what is your issue. But the link works if you click on it. [December 28 2011 ISO Update] that is the working link


Iqbal Malik March 27, 2012 at 12:22 am

not sure what happened there, i tried it on three browsers wasn’t working earlier and now it works on all of them very surprising. as long as it works :)

Appreciate your assistance. you are a legend!



admin April 1, 2012 at 10:39 am

There is an update to Windows PE I have added Partition Wizard to it, if anyone might need to work with partition when they have already the windows & images to install with ImageX.


Iqbal Malik March 27, 2012 at 12:22 am

not sure what happened there, i tried it on three browsers wasn’t working earlier and now it works on all of them very surprising. as long as it works :)

Appreciate your assistance. you are a legend!



me June 28, 2012 at 10:00 am

this is great. i was able to import the wim file to WDS and now it’s available via pxe boot. excellent job man.


admin June 28, 2012 at 11:49 am

That is a clever move. I like it.


Douglas Brace July 24, 2012 at 5:26 pm

Thank you for this disc. I was wondering if would be possible to do this with MBAM. I work in I.T. for a relatively small organization and I have made my own WinPE disc. This disc includes the necessary network drivers from Dell (the only laptops and desktops that we purchase and I need the ability to upload and download WIM files to my server) and GIMAGEX so that I can capture and apply WIM files from a GUI rather then from CLI.

For those wondering, it isn’t that difficult to made your own WinPE disc (although adding programs like MBAM can be more difficult) but it does require a little bit of time, the ability to research basic problems, and enough hard drive space to expand WIM files, manipulate files/folders that have been expanded from a WIM file.

You get the WinPE environment from the Windows Automated Installation Kit (WAIK).

You’ll need to get network drivers from your vendor/network card manufacturer.

You can get GIMAGEX from AutoIT (a scripting utility).

I’m thinking about incorporating your MBAM disc into my tool belt because then all I have to do is include some additional drivers so I can update it’s database.



Douglas Brace July 24, 2012 at 5:26 pm

I forgot to mention, this video on YouTube that was put together by theurbanpenguin shows you how to add drivers to a WinPE disc.


admin July 25, 2012 at 4:16 pm

I am not sure what exactly are you referring to when you say MBAM, but if you run MBAM on this disc you will get Malwarebytes to run and you can scan your computer with it.


Leave a Comment

Previous post:

Next post: