Posted by: EricC | July 27, 2010

SecureIT Command Line Scanner

New to SecureIT 2010 is a command line scanner to help scan for the experienced user.  Command line scanning is useful if your computer is currently operational only in Safe Mode or if you are a network administrator and wish to initiate scanning from an external application.

The scanner (AVScan.exe) is located in c:\Program Files\SecureIT\SCMonitor.   To use it, open Command Prompt, and change your directory to the path mentioned above.

Below are the different parameters you can run AVScan.

Default Scanning of a directory:

Avscan.exe <switch> <folder scan=””>

Switch options include:

-sigs = path to locate the SecureIT signatures if not default (%program files%\secureit\scmonitor)

-report or –r = creates reports found in root of avscan.exe. The following options can be used with the report switch:

-r – creates a combined clean and found report

-r=found – only produces the found report

-r=clean – only produces the clean report

-logdir = directory path where to place the log files (must be used with the –report/-r switch and for Vista and Win 7 you must run the cmd prompt as an Administrator in order to be able to create a log file in protected directories such as the root of c:\ or in system32 directory, etc…)

Example:  avscan –r –logdir c:\ c:\test

The example will scan the folder c:\test and create a full log located in the root of c:\

-delete or –d = deletes any infected files found

-update or –u = forces SecureIT signature update to occur (only available with default sig location and when SecureIT is installed)

-silent or –s = run in silent mode with no screen progress display

-file or –f = scan only a single file

-list or –l = scan multiple folders or drives

Example usage:

Avscan.exe –f c:\temp\badfile.txt

The above will scan the badfile.txt file only

Avscan.exe –list c:\temp c:\windows\system32

The above will can c:\temp and c:\windows\system32 including all subdirectories within the root folders

Avscan.exe –report c:\test

The above will scan c:\test folder and create all log files

Avscan.exe –u –d c:\test

The above will run a full SecureIT definition update and then delete any infected files found within the c:\test folder

Avscan.exe –sigs c:\defs –silent c:\test

The above will use the signatures located in c:\defs and run a silent scan on c:\test


Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Categories

%d bloggers like this: