Antigen Engine Update

Antigen_Engine_Update.NoHost (WriteActionModuleType)

executes engine updates, triggered by Antigenstarter

Element properties:

Member Modules:

Overrideable Parameters:

Source Code:

<WriteActionModuleType ID="Antigen_Engine_Update.NoHost" Accessibility="Internal" Comment="{7A32B47F-AFD2-4184-B9B9-447F17801C78}">

  <Configuration>

    <IncludeSchemaTypes>

      <SchemaType>MomBackwardCompatibility!System.Mom.BackwardCompatibility.AlertGenerationSchema</SchemaType>

    </IncludeSchemaTypes>

    <xsd:element xmlns:xsd="http://www.w3.org/2001/XMLSchema" name="AlertGeneration" type="AlertGenerationType"/>

    <xsd:element xmlns:xsd="http://www.w3.org/2001/XMLSchema" name="InvokerType" type="xsd:integer"/>

    <xsd:element xmlns:xsd="http://www.w3.org/2001/XMLSchema" name="Parameters" minOccurs="0">

      <xsd:complexType>

        <xsd:sequence>

          <xsd:element name="Engine" type="xsd:string" minOccurs="0"/>

          <xsd:element name="TextLog" type="xsd:string" minOccurs="0"/>

          <xsd:element name="UpdatePath" type="xsd:string" minOccurs="0"/>

        </xsd:sequence>

      </xsd:complexType>

    </xsd:element>

  </Configuration>

  <OverrideableParameters>

    <OverrideableParameter ID="Engine" Selector="$Config/Parameters/Engine$" ParameterType="string"/>

    <OverrideableParameter ID="TextLog" Selector="$Config/Parameters/TextLog$" ParameterType="string"/>

    <OverrideableParameter ID="UpdatePath" Selector="$Config/Parameters/UpdatePath$" ParameterType="string"/>

  </OverrideableParameters>

  <ModuleImplementation>

    <Composite>

      <MemberModules>

        <WriteAction ID="RunScriptAction" TypeID="MomBackwardCompatibility!System.Mom.BackwardCompatibility.NoHost.ScriptResponse">

          <AlertGeneration>$Config/AlertGeneration$</AlertGeneration>

          <InvokerType>$Config/InvokerType$</InvokerType>

          <Body><Script>

' VBScript source code



'*******************************************************************************************

'*

'* File Name:   

'* ---------

'* AntigenEngineUpdate.vbs

'* $Revision: 6 $

'*

'* 

'* Purpose: 

'* --------	       

'* Makes a call to Antigenstarter.exe to trigger engine updates

'*

'*

'*

'* Parameters: 	

'* -----------

'*

'* Engine

'* UpdatePath

'* TextLog

'*

'*

'*

'* Parameter definitions: 

'* ----------------------

'*

'* 1. Engine =&gt; defines the engine that should be updated.

'* Possible values =&gt; norman ; microsoft; nai ; sophos ; cairis ; cavet ; sybari ; vbuster ; kaspersky ; spamcure ; command

'* 

'* 2. UpdatePath =&gt; Defines the source path to the engine update packages. This can be a UNC, FTP or HTTP path

'* 

'* eg. HTTP =&gt; http://www.sybari.com/scan_engine_updates/intel

'*     FTP =&gt; ftp://ftp.sybari.com/scan_engine_updates/intel

'*     UNC =&gt; \\serverName\Share

'*

'* 3. TextLog =&gt; defines whether this scripts logs entries to a text file under the local Antigen installation folder

'* Possible Values =&gt; true ; false

'*

'*

'********************************************************************************************



' Constant Declarations



Const FOR_READING = 1

Const HIVE = "HKEY_LOCAL_MACHINE\"

Const REG_KEY = "SOFTWARE\Sybari Software\"



' Error Constants

INSTALL_PATH_FAIL = 9501

ENGINE_PARAM_INVALID = 9502



' Retrieve Script Parameters



EngineParameter = ScriptContext.Parameters.Get("Engine")

UpdatePathParameter = ScriptContext.Parameters.Get("UpdatePath")

TextLogParameter = ScriptContext.Parameters.Get("TextLog")



' Retrieve the local installation path of Antigen



AntigenInstallPath = RetrieveRegValue (REG_KEY &amp; "Antigen For Exchange","InstalledPath", 1)



If IsNull(AntigenInstallPath) Then

	AntigenInstallPath = RetrieveRegValue (REG_KEY &amp; "Antigen For SMTP","InstalledPath", 1)

End If



If IsNull(AntigenInstallPath) Then

	WriteMOMEvent "TASK ERROR: Unable To Retrieve Antigen Installation Path", 1, INSTALL_PATH_FAIL

	ScriptContext.Quit

End If





' Create Log folder under Antigen installation folder



If TextLogParameter = "true" then

	CreateLogFolder()

End If



WriteLog "NULL"

WriteLog "Beginning Execution of EngineUpdate Script for " &amp; EngineParameter &amp; " engine."



'Set parameter to flag valid parameter assignment



Dim boolValid

boolValid = True



Select Case EngineParameter

	Case "norman"

		EngineNumber = "u0"

	Case "microsoft"

		EngineNumber = "u1"

	Case "nai"

		EngineNumber = "u2"

	Case "sophos"

		EngineNumber = "u3"

	Case "cairis"

		EngineNumber = "u4"

	Case "cavet"

		EngineNumber = "u5"

	Case "command"

		EngineNumber = "u6"

	Case "ahnlab"

		EngineNumber = "u7"

	Case "sybari"

		EngineNumber = "u8"

	Case "vbuster"

		EngineNumber = "u9"

	Case "kaspersky"

		EngineNumber = "u11"

	Case "spamcure"

		EngineNumber = "u12"

	Case "sybarivcl"

		EngineNumber = "u13"

	Case "commtouch"

		EngineNumber = "u14"

	Case Else	

		boolValid = False

		WriteLog "WARNING: Invalid engine parameter passed - No update triggered"

		WriteMOMEvent "Invalid engine parameter passed - No update triggered", 2, ENGINE_PARAM_INVALID

End Select



If boolValid Then 

	strParam = " " &amp; EngineNumber &amp; " " &amp; UpdatePathParameter

	strCommand = """" &amp; AntigenInstallPath &amp; "\AntigenStarter.exe" &amp; """"



	intResult = ShellExecute(strCommand,strParam)



	WriteLog "Initiating engine update for " &amp; EngineParameter &amp; " engine"

	WriteLog "Using update path: " &amp; UpdatePathParameter



End If







'********************************************************************

'*

'* Function:           RetrieveRegValue

'* 

'* Purpose: Retrieves String Value from Registry

'*

'********************************************************************



Function RetrieveRegValue (Key, strValueName, intValueType)



' intValueType 	-&gt; 1 = String Value

'		-&gt; 2 = DWORD Value

 

const HKEY_LOCAL_MACHINE = &amp;H80000002

Dim strServerName

Dim objReg

Dim strRegValue





On Error Resume Next

Err.Clear

Set objReg=GetObject("winmgmts:\root\default:StdRegProv") 

If Err.Number &lt;&gt; 0 Then

  	Err.Clear

  	strRegValue = NULL

Else



	Select Case intValueType

		Case 1

			strErr = objReg.GetStringValue (HKEY_LOCAL_MACHINE,Key,strValueName,strRegValue)

				

		Case 2

			strErr = objReg.GetDWORDValue (HKEY_LOCAL_MACHINE,Key,strValueName,strRegValue)

		

	End Select



	' if reading the registry failes via wmi return error

	If strErr &lt;&gt; 0 then

		strRegValue = NULL

	End If

End If



Set objReg = Nothing



RetrieveRegValue = strRegValue



End Function







'***********************************************************************

'*

'* Function:          ShellExecute()

'* 

'* Purpose: Sets up call to ANTUTIL for switching hooking mode

'*

'***********************************************************************



Function ShellExecute (Command, Parameter)



set wshShell = CreateObject ("wscript.shell")	

	

wshShell.run Command &amp; Parameter,,false



Set wshShell = Nothing



End Function





'***********************************************************************

'*

'* Function:           CreateLogFolder()

'* 

'* Purpose: Creates Log subfolder under Antigen

'*

'***********************************************************************



Function CreateLogFolder ()



Dim objFSO

set objFSO = CreateObject ("Scripting.FileSystemObject")



If objFSO.FolderExists(AntigenInstallPath &amp; "\MOMLogs") = 0 then

	objFSO.CreateFolder(AntigenInstallPath &amp; "\MOMLogs")

End If



Set objFSO = Nothing



End Function





'***********************************************************************

'*

'* Function:           WriteLog()

'* 

'* Purpose: Writes script activity and errors to a log file

'*

'***********************************************************************





Function WriteLog (strLogText)



If TextLogParameter = "true" Then



	Dim objfs

	Dim objf



	Dim strTimeStamp

	On Error Resume Next

	Err.Clear



	Set objfs = CreateObject("Scripting.FileSystemObject")

	Set objf = objfs.OpentextFile(AntigenInstallPath &amp; "\MOMLogs\" &amp; "Tasks.log", 8, False)





	' If log file doesn't exist - create it

	If Err.Number &lt;&gt; 0 Then

  		Set objf = objfs.CreatetextFile(AntigenInstallPath &amp; "\MOMLogs\" &amp; "Tasks.log", False)

  		Err.Clear

	End If



	If strLogText = "NULL" then

		objf.WriteLine("")

	Else

		strTimeStamp = Date &amp; " " &amp; Time &amp; " "

		objf.WriteLine(strTimeStamp &amp; strLogText)

	End If

End If



Set objfs = Nothing

Set objf = Nothing



End Function



'***********************************************************************

'*

'* Function:           WriteMOMEvent()

'* 

'* Purpose: Writes events to MOM EventLog

'*

'***********************************************************************



Function WriteMOMEvent(EventMessage, EventType, EventNumber)



Dim objEvt

Set objEvt = ScriptContext.CreateEvent



objEvt.Message = EventMessage

objEvt.EventType = EventType

objEvt.EventNumber = EventNumber

ScriptContext.Submit(objEvt)



set objEvt = Nothing



End Function

</Script></Body>

          <Language>VBScript</Language>

          <Name>Antigen Engine Update</Name>

          <Parameters>

            <Parameter>

              <Name>Engine</Name>

              <Value>$Config/Parameters/Engine$</Value>

            </Parameter>

            <Parameter>

              <Name>TextLog</Name>

              <Value>$Config/Parameters/TextLog$</Value>

            </Parameter>

            <Parameter>

              <Name>UpdatePath</Name>

              <Value>$Config/Parameters/UpdatePath$</Value>

            </Parameter>

          </Parameters>

          <ManagementPackId>[Microsoft.Antigen.v9,,1.0.0.1]</ManagementPackId>

        </WriteAction>

      </MemberModules>

      <Composition>

        <Node ID="RunScriptAction"/>

      </Composition>

    </Composite>

  </ModuleImplementation>

  <InputType>SystemLibrary!System.BaseData</InputType>

</WriteActionModuleType>