Powertech Antivirus (formerly Stand Guard Anti-Virus) currently uses an FTP connection to download the most up-to-date virus definitions from McAfee, maker of the Antivirus scan engine. On May 31, 2019, McAfee is shutting down their FTP site and virus definition files (DATs) will only be available from their HTTP server.

Powertech Antivirus 8.0 addresses these changes with recently-released PTF updates that allow Powertech Antivirus to update virus definitions using McAfee's HTTP server with no further action required on your part. These product PTF updates require Powertech Antivirus 8.0, as well as PTF updates from IBM.

If you are unable to upgrade to Powertech Antivirus 8.0 and acquire the required IBM i and product PTFs, you will need to manually acquire the virus definitions from McAfee after May 31, 2019. For manual instructions, See Acquiring Virus Definitions Using a Local Repository below. 

To identify the version of Powertech Antivirus that is currently installed on your system:

Versions 7.4 and above:
DSPDTAARA STANDGUARD/AVRELMOD
 

Versions 7.3 and earlier:
GO LICPGM ,Option 10F11 to see Installed Release of Licensed Program 0AV2000

Acquiring the latest Powertech Antivirus 8.0 with HTTP support for downloading virus definition updates

Follow the instructions below to acquire the required IBM i RPM or PTF files, download Powertech Antivirus 8.0 (if you have not already), and download and install the Powertech Antivirus 8.0 PTF updates.

  1. Download the following:
    • IBM i 5733SC1 option *BASE, IBM Portable Utilities for IBM i
    • IBM i 5733SC1 option 1, IBM Portable Utilities for IBM i
    • Acquire WGET using one of the following methods:
        1. Mount the system CD:
          • IBM i 7.2: F_MULTI_NLV (LCD8-2252-0x F_MULTI_NLV_110_IBM_i_Open_Source_Solutions)
          • IBM i 7.3: B_GROUPx_04 (LCD8-2291-0x B_GROUP1_04) (LCD8-2297-0x B_GROUP2_04) (LCD8-2302-0x B_GROUP3_04) 
        2. Run the following commands:

          RSTLICPGM LICPGM(5733OPS) DEV(device) OPTION(*BASE)
          where device is the name of the optical drive to which the CD has been mounted
          RSTLICPGM LICPGM(5733OPS) DEV(device) OPTION(7)

        3. Install the group PTF IBM Open Source Solutions for i Level 6.
          • IBM i 7.2: SF99223
          • IBM i 7.3: SF99225
        4. You can check the status using command WRKPTFGRP. The PTF status should be level 6 Installed.

      If you do not know if these have been installed, you can check by doing the following:

      1. GO LICPGM
      2. Choose option 10, 'Display Installed Licensed Programs'
      3. Look for licensed program 5733OPS with description "Tools" (the description may be localized to the system language)
      4. Look for licensed program 5733SC1
  2. Download and install Powertech Antivirus version 8.0 from the Powertech Antivirus for IBM i download page.

    You may need a portal login if you don’t already have one. You can request an invite from community.helpsystems.com if you need it.

    Note: Versions of Powertech Antivirus prior to 8.0 do not support the ability to acquire virus definitions via HTTP.

  3. Install the latest Powertech Antivirus PTFs  by running the following command:
    STANDGUARD/AVRUNUPG

  4. Configure Powertech Antivirus to use HTTP using the DAT setup options:
      1. Go to the main menu AVMENU, then choose option 50, then option 2.
      2. Change the Transfer Method to *WGET.
      3. Press Enter and then change the WGET string to *DFT and save.

    Note: If you do not make a manual switch, Antivirus will revert to the McAfee HTTP server automatically for virus updates after May 31, 2019.

Once the above PTFs have been acquired, if no further action is taken, Powertech Antivirus will revert to the McAfee HTTP server automatically for virus updates after May 31, 2019. See the Powertech Antivirus for IBM i User Guide for more information regarding PTF and DAT file updates.

Acquiring Virus Definitions Using a Local Repository

Note: If you have acquired the above PTF updates for IBM i and Powertech Antivirus, the following steps are not required.

The following procedure describes one way to download the required files from McAfee's HTTP server, then make them available to Powertech Antivirus using an FTP server, a local path, or a network path. (This example uses a Windows server, but an AIX or Linux server could be used instead.)

Before you begin, reconfigure the firewall of the system receiving the virus definitions from McAfee to allow HTTP downloads from http://update.nai.com. On that system, if FTP was previously open solely for the virus definitions download, close it.

Download the DAT Files Using a Windows PC

You can use a PowerShell script to download the DAT files (PowerShell is built into Windows 10). 

  1. Copy the following text into Notepad and save the file as “getdats.ps1” into an empty directory:
    $url = 'http://update.nai.com/products/commonupdater/'
    Invoke-WebRequest $url'oem.ini' -OutFile 'oem.ini'
    Invoke-WebRequest $url'gdeltaavv.ini' -OutFile 'gdeltaavv.ini'
    $site = Invoke-WebRequest -UseBasicParsing -Uri $url
    $table = $site.links | ?{ $_.href.ToLower().Contains('avvdat-') } | sort href -desc | select href -first 1
    $filename = $table.href.ToString()
    Invoke-WebRequest $url$filename -OutFile $filename
    Expand-Archive -Force $filename .
    Get-ChildItem $Path -Recurse | Where-Object {($_.Name -like '*-*') -and ($_.LastWriteTime -lt (Get-Date).AddDays(-2))} | Remove-Item -Recurse
  2. Copy the following text into Notepad and save the file as “getdats.bat”:
    @ECHO OFF
    PowerShell.exe -NoProfile -ExecutionPolicy Bypass -Command "& './getdats.ps1'"
  3. Open a command window and execute the batch file getdats.bat. This will execute the PowerShell script to download and extract the appropriate .zip file from McAfee’s HTTP server into the current directory. Once completed the directory will be as follows:
    06/19/2019  08:25 AM    <DIR>          .
    06/19/2019  08:25 AM    <DIR>          ..
    06/19/2019  07:00 AM           833,041 avvclean.dat
    06/19/2019  08:24 AM       121,669,129 avvdat-9292.zip
    06/19/2019 08:24 AM 730,425 avvnames.dat 06/19/2019 07:00 AM 102,055,422 avvscan.dat 06/19/2019 08:23 AM 2,151 gdeltaavv.ini 04/29/2019 12:22 PM 89 getdats.bat
    06/19/2019 08:40 AM 606 getdats.ps1 06/19/2019 07:00 AM 8,170 legal.txt 06/19/2019 08:23 AM 2,034 oem.ini 7 File(s) 243,301,067 bytes
  4. Schedule the batch file to be executed once a day, every day. You can use any scheduler to do this, including the Windows Task Scheduler included with Windows.

    Ensure the working directory of the action is set to the directory of the getdats.bat file. For example, if the getdats.bat file's full path is C:\HelpSystems\PTAV-i\getdats.bat, specify C:\HelpSystems\PTAV-i as the working directory.

    If you use Windows Task Scheduler, you can configure the working directory as follows:

    1. Double-click the task to display its Properties.
    2. Choose the Actions tab.
    3. Select the 'Start a program' action and click Edit.
    4. Enter the working directory in the field 'Start in (optional)'. (Note: Do not put the value in quotation marks.)
    5. Click OK, then OK again.

Note: A method of monitoring the above process to ensure it is continuously running is recommended.

Make the DAT Files Available to Powertech Antivirus

Now that the virus definition files are in a directory on your network, instruct Powertech Antivirus to retrieve the files from this source. Powertech Antivirus can retrieve files from an FTP server, a web server, or a network share.

Retrieving the DAT Files Using an FTP Server

If the files are on another (internal) FTP server, use the AVCHGUPDA command to retrieve the DAT files from your server. Specify the server name and path, and a user ID and password that has been provided by your administrator.

AVCHGUPDA FROM(*FTP) FTP(IP-address/directory) FTPUSER(user) FTPPWD(password)

Be sure to add the path to the end of the server's address. If the DAT files are located in the user's home or root directory, specify / after the address.

Retrieving the DAT Files Using a Network Share

If the files are on a Windows network share, use an IBM i NetClient (QNTC) file system path name.

AVCHGUPDA FROM(*PATH) PATH(/QNTC/server-name/share-name)

The QNTC file system is a method to make files that reside on Windows systems accessible from IBM i systems. To learn more about configuring the QNTC file system, see How to access file shares from IBM i using QNTC on the IBM Web site.


Still have questions? We can help. Submit a case to Technical Support.

Last Modified On: July 06, 2019