You are using an ad blocker that is interfering with our web typography and internal javascript. Please whitelist our domain to live in a more beautiful world. No ads here, just really great software!

Windows Defender Management

Manage Windows Defender and retrieve information about component versions and status, as well as trigger a virus definition update if needed.

Script Get Windows Defender Information

  • Version 1.0.0.0 – Initial release

Script Description

Provides a set of fields with information about engine, product version, full and quick scans age, definition files (last update) and status of several components.

Execution context and suggested scheduling

Run the script as local system. The script should be executed every 1 day.

A timeout of 120 seconds is recommended.

Parameters

None.

Outputs

ID Label Type Description
1 Engine Version String Version of the Windows Defender Engine component
2 Product Version String Version of the Windows Defender Product
3 Full Scan Age Int Number of days since that the last full scan was performed
4 Quick Scan Age Int Number of days since that the last quick scan was performed
5 Anti Spyware Signature Age Int Number of days since the last anti spyware definition update
6 Antivirus Signature Age Int Number of days since the last anti virus definition update
7 NIS Signature Age Int Number of days since the last network inspection system definition update
8 Anti Spyware Enabled Bool If anti spyware protection is enabled or not
9 Antivirus Enabled Bool If anti virus protection is enabled or not
10 Behavior Monitor Enabled Bool If behavior monitor component is enabled or not
11 Ioav Protection Enabled Bool If Internet downloads, Outlook and attachments protection is enabled or not
12 NIS Enabled Bool If network inspection system is enabled or not
13 On Access Protection Enabled Bool If on access protection is enabled or not

Restrictions

  • Should be used only on devices without any 3rd party security software which replaced Windows Defender, otherwise information is unreliable.

Script Update Windows Defender Definition

  • Version 1.0.0.0 – Initial release

Script Description

If the device has an out dated version of the Windows Defender malware or spyware definition, it will force an update.

Execution context and suggested scheduling

Run the script as local system. The script should be executed every 1 hour.

A timeout of 840 seconds is recommended.

Parameters

ID Label Description
1 Maximum Delay In Seconds Maximum random delay set to avoid overloading the network. Provide number of seconds less than 600

Outputs

None.

Restrictions

  • This script is only compatible with Windows 10
  • Should be used only on devices without any 3rd party security software which replaces Windows Defender, otherwise update process is unavailable

Content

Remote Actions

Required Modules

Nexthink Act

Platforms

Windows

Compatibility

V6.14 and later
Thank you!