Knowledge Center

How to check the status of the VirusScan Enterprise On-Access Scanner
Technical Articles ID:   KB77262
Last Modified:  11/10/2016


McAfee VirusScan Enterprise 8.8


VSE provides information to the ePolicy Orchestrator (ePO) database that represents the status of the On-Access Scanner (OAS). This information is considered near live, which means it depends on how long it has been since the data was collected from the client. This could be "very recent" if a property collection was just forced to occur on the system.

VSE 8.8 Patch 4 (and later) reports the status of the OAS in the ePO console. Alternatively, you can run the following query to list the systems that have the OAS enabled:
  1. Ensure that Hotfix 820636 (or later) has been deployed to the environment. See KB77043 for details on Hotfix 820636.
    NOTE: This hotfix improves the reliability of the information being returned by client systems to ePO.
  2. Use the following SQL query:
    NOTE: When you enter the database name for the USE command, do not include the < > signs. Example: USE [ePO_ePOtestserver].

    USE [<database name>]

       [EPOLeafNode].[NodeName] AS ServerName, 
       CASE WHEN rsOASEnabled.value IS NOT NULL THEN rsOASEnabled.value ELSE 'Unknown' END AS OASEnabled
       INNER JOIN [EPOProductProperties] ON [EPOLeafNode].[AutoID] = [EPOProductProperties].[ParentID]
       LEFT JOIN [dbo].EPOProductSettings AS rsOASEnabled ON (EPOProductProperties.AutoID = rsOASEnabled.ParentID AND
                                                                                                                      rsOASEnabled.SectionName = N'On-Access General' AND
                                                                                                                      rsOASEnabled.SettingName = N'bEnabled')
       EPOProductProperties.ProductCode LIKE 'VIRUSCAN%'

Output from the query above will look similar to the following:
NOTE: The 1 entry in the OASEnabled column means the OAS is enabled for that system.
  ServerName OASEnabled
1 SystemName1 1
2 SystemName2 1
3 SystemName3 1


The content of this article originated in English. If there are differences between the English content and its translation, the English content is always the most accurate. Some of this content has been provided using Machine Translation translated by Microsoft.

Rate this document

Did this article resolve your issue?

Please provide any comments below

Affected Products

VirusScan Enterprise 8.8

Beta Translate with

Select a desired language below to translate this page.

Glossary of Technical Terms

 Highlight Glossary Terms

Please take a moment to browse our Glossary of Technical Terms.