我有一个通过调用批处理程序中的 avp.com 进行扫描的 Kaspersky 输出。我将这个输出保存在一个名为 RES 的变量中,该变量的内容如下:
我需要解析此字符串以获取上述示例中 Total detected 值,该值为 0 。我尝试使用批处理中的 for 语句,但没有得到预期的结果。
注意:带有 @mbroshi 答案的编辑。
执行avp.com程序的输出文本为:
我需要解析此字符串以获取上述示例中 Total detected 值,该值为 0 。我尝试使用批处理中的 for 语句,但没有得到预期的结果。
注意:带有 @mbroshi 答案的编辑。
set KAVDir="C:\Program Files (x86)\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows\avp.com"
for /f "tokens=3 delims= " %%i in ('%KAVDir% /i0 %1 ^| FINDSTR "Total detected"')
do
(
SET RES=%%i
ECHO %RES%
)
执行avp.com程序的输出文本为:
2014-02-26 15:01:58 Scan_Objects$0697 starting 1%
; --- Settings ---
; Action on detect: Ask user
; Scan objects: All objects
; Use iChecker: Yes
; Use iSwift: Yes
; Try disinfect: Yes
; Try delete: Yes
; Try delete container: No
; Exclude by mask: No
; Include by mask: No
; Objects to scan:
; "D:\Codigo\Git_Segmail\mail_filters\segmail20\server\service_node_helpers\antivirusscripts\eicar.com.txt" Enable=Yes Recursive=No
; ------------------
2014-02-26 15:01:58 D:\Codigo\Git_Segmail\mail_filters\segmail20\server\service_node_helpers\antivirusscripts\eicar.com.txt:Zone.Identifier ok
Progress 50%...
2014-02-26 15:01:58 D:\Codigo\Git_Segmail\mail_filters\segmail20\server\service_node_helpers\antivirusscripts\eicar.com.txt detected EICAR-Test-File
Progress 50%...
2014-02-26 15:01:58 Scan_Objects$0697 running 50%
2014-02-26 15:02:00 D:\Codigo\Git_Segmail\mail_filters\segmail20\server\service_node_helpers\antivirusscripts\eicar.com.txt was deleted
2014-02-26 15:02:00 Scan_Objects$0697 completed
; --- Statistics ---
; Current time: 2014-02-26 15:02:00
; Time Start: 2014-02-26 15:01:58
; Time Finish: 2014-02-26 15:02:00
; Completion: 100%
; Processed objects: 2
; Total detected: 1
; Detected exact: 1
; Suspicions: 0
; Treats detected: 1
; Untreated: 0
; Disinfected: 0
; Quarantined: 0
; Deleted: 1
; Skipped: 0
; Archived: 0
; Packed: 0
; Password protected: 0
; Corrupted: 0
; Errors: 0
; Last object:
; ------------------
/c
。更重要的是,我忘记了默认的行尾符是;
! - mbroshi