I am attempting to use the doscan.exe utility to scan files via a batch file. Batch file is posted at the bottom.The batch file is designed to kick off the doscan /scanfile command and give me an output of 0 or greater to determine if the file is suspicious. Anything greater than 0 means suspicious. The error level is thrown into a work flow depending on the output. Currently, my issue is that doscan just deletes the test virus signatures (EICAR) I scan and always returns a value of 0. I was able to make this work with McAfee's CLI, but would like to get this to work here. Is there any switch or anything to get doscan.exe to "log only" and not automatically delete the file? Any advice is appreciated. Thanks.
The batch file looks like this:
C:\Program Files (x86)\Symantec\Symantec Endpoint Protection>type testscan.bat
@echo off
doscan /ScanFile test.txt
echo %ERRORLEVEL%
C:\Program Files (x86)\Symantec\Symantec Endpoint Protection>testscan.bat
0