Check antivirus status in C #

Question

Check antivirus status in C #

I need to check the server group to see if the antivirus is updated and if it works. It’s hard to say that they are distributed on the Windows 2003 and 2008 servers, and I need to check them.

Is there a way to do this using C # or VB.NET?

I briefly reviewed WMI, but it appeared on 2008 / win7 computers. Microsoft has changed the information that they provided to you.

In general, I need the following:

AV name
AV version
AV updated
AV Enabled / Run

Can anyone help?

+3

c # windows-server-2008 windows-server-2003 antivirus

Stuart blackler Jan 20 '11 at 17:34

source share

2 answers

. , (, McAfee) WMI.

WMI :

string computer = Environment.MachineName;  
string wmipath = @"\\" + computer + @"\root\SecurityCenter";  
string query = @"SELECT * FROM AntivirusProduct";

ManagementObjectSearcher searcher = new ManagementObjectSearcher(wmipath, query);  
ManagementObjectCollection results = searcher.Get();

foreach (ManagementObject result in results)  
{  
    // do something with `result[value]`);
}

+3

Greg Buehler 20 . '11 17:46

Aaron McIver · Accepted Answer · 2011-01-20T17:40:28+0000

WMI, . , Win 7; ...

ConnectionOptions _connectionOptions = new ConnectionOptions();
//Not required while checking it in local machine.
//For remote machines you need to provide the credentials
//options.Username = "";
//options.Password = "";
_connectionOptions.EnablePrivileges = true;
_connectionOptions.Impersonation = ImpersonationLevel.Impersonate;
//Connecting to SecurityCenter2 node for querying security details
ManagementScope _managementScope = new ManagementScope(string.Format("\\\\{0}\\root\\SecurityCenter2", ipAddress), _connectionOptions);
_managementScope.Connect();
//Querying
ObjectQuery _objectQuery = new ObjectQuery("SELECT * FROM AntivirusProduct");
ManagementObjectSearcher _managementObjectSearcher =
    new ManagementObjectSearcher(_managementScope, _objectQuery);
ManagementObjectCollection _managementObjectCollection = _managementObjectSearcher.Get();
if (_managementObjectCollection.Count > 0)
{
    foreach (ManagementObject item in _managementObjectCollection)
    {
        Console.WriteLine(item["displayName"]);
        //For Kaspersky AntiVirus, I am getting a null reference here.
        //Console.WriteLine(item["productUptoDate"]);

        //If the value of ProductState is 266240 or 262144, its an updated one.
        Console.WriteLine(item["productState"]);
    }
}

Check antivirus status in C #

More articles: