Like many organizations we have a mixed environment and we have to live with the decisions from the past. One of those was the choice of Forefront for our antivirus/antimalware solution. Until today we've been restricted in forcing scans from the Forefront console. Thanks to Deployment Server our helpdesk staff now have the ability to force those scans themselves. By creating a simple Run script job with the following command lines you can force either a full or Quick scan on your workstations. Full Scan - "C:\Program Files\Microsoft Forefront\Client Security\Client\Antimalware\MpCmdRun.exe" Scan -RestrictPrivileges -ScanType 2 Quick Scan - "C:\Program Files\Microsoft Forefront\Client Security\Client\Antimalware\MpCmdRun.exe" Scan -RestrictPrivileges -ScanType 1