Scripting antispyware

[Guest]

Hi,

I would like to add antispyware in my security policy.. in
fact, the one I use when user VPN the company
(Quarantine/ISA 2004).

I need to script and automate a few things. Can you advise
me ?

Here is the list of the things I have to do :

* Detect if application is in memory : OK
* Detect the version of the spyware definition file : can
you advise me ?
* Detect the last full scan : can you advise me ?

Also if one of this parameters is not ok, I would like to
force a few command lines :

* Force a definition update in command line
* Force a full scan

Do you know if there is a COM object or if the application
supports parmeters such as /ForceUpdate /FullScan ..

Thanks for your help

(e-mail address removed)

 

[Bill Sanderson]

I'll post my collection of "enterprise-related wisdom"---but my general
advice is to forget this until Microsoft comes out with an app which is
designed for your environment. The current beta emphatically is not.

In addition to the bits below, there are command-line options for
scanning--see the faq referenced in my signature.

[Managed environments, scripting, turning off real-time protection]

http://support.microsoft.com/kb/892375 End users may be prompted to allow or
block administrative actions that originate from a central management tool
after they install Windows AntiSpyware (Beta) on a computer that is managed
by Systems Management Server 2003

Scripting issues:

http://www.microsoft.com/technet/scriptcenter/resources/articles/antispy.mspx

Unattended uninstall:

MsiExec.exe /X {536F7C74-844B-4683-B0C5-EA39E19A6FE3} /L *vx /Log
c:\msas.log /quiet

Unattended Install:

http://www.overdose.net/docs/msas_silent_remote_install.txt