Author: Ivanti
Category: Information
Inputs: None
Minimum ITScripts engine version required: 8.0.0.0
Modifies the target machine: No
Name: Get Security Center Status
Outputs: A CSV file showing whether anti-virus and anti-spyware engines are registered, and whether they are providing real-time protection with up-to-date definitions.
Purpose: Get the status of the AntiVirus and AntiSpyware engines on target machine that are running Microsoft Security Center
Script Version: 1.0.0.41
Target Type: Any
Technical Description:
This script will return the status of Anti-Virus and Spyware protection in the Microsoft Security Center from Windows workstations. The script begins by connecting using WMI to determine OS. XP and newer workstation OSs include the Security Center feature. Servers would return the "Security Center is not installed" message. For a supported OS the script continues to query using WMI using the namespace rootSecurityCenter2 or rootSecurityCenter and checks the AntiVirusProduct and AntiSpywareProduct classes to determine if a product is running and if it is up to date.
Possible OpsMon results include:
"WMI connection to the target machine failed. The machine may be offline."
"Security Center is not supported on this OS"
"Security Center is not installed"
"Security Center is not running"
(If a product is present) "On"or "Off"
(Definitions) "Out of date" or "Up to date"