|
Concerning to:
- Kaspersky Anti-Virus 5.0 MP4 for Windows Workstations
- Kaspersky Anti-Virus 5.0 MP4 Personal
- Kaspersky Anti-Virus 5.0 MP4 Personal Pro
KAVSHELL [ HELP | SCAN | FULLSCAN | UPDATE | ROLLBACK | RTP | START | STOP | TASK | IMPORT| EXPORT | ADDKEY ]
The commands perform the following operations:
SCAN – scan of the specified storages, detection and disinfection/deletion of infected objects
FULLSCAN – performs full computer scan, detects and disinfects/deletes infected objects (the Scan My Computer task)
UPDATE – updates antivirus databases and application modules (if additional parameters are defined)
ROLLBACK – makes rollback from the current installed set of antivirus database to the previous one RTP – performs real-time protection
START – launches Kaspersky Anti-Virus (starts the Kaspersky Anti-Virus Service)
STOP – stops Kaspersky Anti-Virus (stops the Kaspersky Anti-Virus Service)
TASK – manages the application tasks
IMPORT – imports the Anti-Virus settings from the file
EXPORT – exports all Anti-Virus settings to the file
ADDKEY – adds a new license key
To view the syntax of the command and query, use:
KAVSHELL HELP command
KAVSHELL command /?
KAVSHELL [ /? | HELP ]
scan of the specified objects
full computer scan
anti-virus database update
rollback of the latest anti-virus database update
manage real-time protection
start/stop of the application
managing tasks
export settings
import settings
add a key file
NOTE!!! To avoid not approved stop of work/ changes in the settings of the Anti-Virus and to perform some tasks the password of the Anti-Virus administrator is required. If the password is not defined these tasks cannot be started and performed. In the commands given below the syntax contains the /PWD:password parameter, if the password is a mandatory parameter.
NOTE!!! An absolute or relative path to the file can be specified if as a parameter to start the task a path to the file with the objects is specified or cleaning of the results of the task work to the file is required. The “gap” symbol in the syntax should be taken in inverted commas.
Scan of the specified objects
KAVSHELL SCAN [objects] [/L[!]:objects_file] [/F(A|E|C)] [/ASK | /DISINFECT | /DELETE] [/W[A][!]:report_file]
objects – are objects under scan. Either paths to the files and/or directories or preinstalled keys can be specified:
The preinstalled keys given below perform the following actions:
- [/MEMORY]: scans memory
- [/STARTUP]: scans START-UP objects
- [/MAIL]: scans mail boxes MS OUTLOOK/MS OUTLOOK Express
- [/REMDRIVES]: scans removable drives
- [/FIXDRIVES]: scans fixed/local drives
- [/NETDRIVES]: scans network discs
L[!]:objects_file: specifies the file name that contains the list of objects to be scanned (preinstalled keys can be used). The object name should be in a separate line. When using the “!” sign the file with the objects list will be deleted after the scan.
Notes:
- if the name of the file/folder contains a gap, then gap should be taken into inverted commas
- a mask can be used to scan objects
- if a directory is a scanned object, all the files in the folder will be scanned
/ASK | /DISINFECT | /DELETE – actions with infected objects:
- /ASK: ask user for action upon a detection an infected object
- /DISINFECT: disinfect infected objects and delete if disinfection is impossible
- /DELETE: delete all detected infected objects
Notes:
- if the parameter of the action upon detection an infected object is missing, in this case diagnosis of the infection is carried out only.
- compound objects (archives, mail database) are not deleted, but attached infected objects can be deleted
/NP – do not ask for password for the password-protected object (unless if the ASK action is chosen)
/F(A|E|C) - Specification of scanned files type:
- /FA: all files
- /FC: all possibly infected files (by format)
- /FE: all possibly infected files (by extension)
/W[A][!]:report_file - conducting report files:
- /W[!]:report_file: log only important information into the file with the name [report_file]. If the “!” sign is used and the report file with such name already exists, then the old file will be overwritten.
- /WA[!]:report_file: log all information into the file with the name [report_file]. If the “!” sign is used and the report file with such name already exists, then the old file will be overwritten.
Top of page
Full computer scan:
KAVSHELL FULLSCAN [/W[A][!]:report_file] [/D]
Action which is defined in the program for this type of objects “by default” (recommended action) will be applied to the infected/ suspicious objects.
/W[A][!]:report_file - conducting report files:
- /W[!]:report_file: log only important information into the file with the name [report_file]. If the “!” sign is used and the report file with such name already exists, then the old file will be overwritten.
- /WA[!]:report_file: log all information into the file with the name [report_file]. If the “!” sign is used and the report file with such name already exists, then the old file will be overwritten.
/D: this key does not start the full scan task if it has already been performed and successfully finished today
Top of page
Anti-Virus database and application modules update:
KAVSHELL UPDATE [update_source] [ [/W[A][!]:report_file] [/APP]
update_source - FTP, HTTP server or any other available folder. If the parameter is missing then the settings of the update task are used.
/W[A][!]:report_file - conducting report files:
- /W[!]:report_file: log only important information into the file with the name [report_file]. If the “!” sign is used and the report file with such name already exists, then the old file will be overwritten.
- /WA[!]:report_file: log all information into the file with the name [report_file]. If the “!” sign is used and the report file with such name already exists, then the old file will be overwritten.
/APP: download and install application modules updates;
Top of page
rollback of the latest antivirus database update:
KAVSHELL ROLLBACK [/W[A][!]:report_file] /PWD:password
/W[A][!]:report_file - conducting report files:
- /W[!]:report_file: log only important information into the file with the name [report_file]. If the “!” sign is used and the report file with such name already exists, then the old file will be overwritten.
- /WA[!]:report_file: log all information into the file with the name [report_file]. If the “!” sign is used and the report file with such name already exists, then the old file will be overwritten.
Top of page
managing real-time protection:
KAVSHELL RTP [taskid] { /START | /STOP /PWD:password }
taskid – identifier of the task of real-time protection/ scan
The keys below perform the following actions:
- on-access: real-time file protection
- mail-checker: real-time mail protection
- ids- real-time protection against network attacks
- script-checker: real-time script protection office-guard: real-time MS Office protection
Note: if the taskid parameter is not specified, then the commands are used to all components of real-time protection
/START: enables real-time protection or its defined component
/STOP: stops real-time protection or its defined component
Top of page
Application start:
KAVSHELL START
Application stop:
KAVSHELL STOP /PWD:password
By the command only the application service is stopped. Once installed, the application interface iremains.
Top of page
Managing tasks:
KAVSHELL TASK [ taskid { /START | /STOP /PWD:password | /PAUSE | /RESUME | /DELETE } ]
Starting without parameters: the list of all available task, their states and unique identifiers of each task is entered.
taskid – task identifier:
-
scan-computer: full computer scan
-
scan-on-startup: scan the crtical components: files of Kaspersky Anti-Virus, disc boot sectors , system memory and start-up objects
-
scan-critical: the same as scan-on-startup, and additionally the files with the masks like C:\Windows\*.* and C:\Windows\System32\*.*
-
scan-quarantine:scan the quarantined files
-
scan-removable: scan removable drives
-
update-bases: update the anti-virus databases
-
update-app: update the application modules
-
rollback: rollback of the latest anti-virus database update
-
on-access: real-time file protection
-
script-checker: real-time script protection
-
mail-checker: real-time mail protection
-
office-guard: real-time MS Office protection
-
ids: real-time protection against network attacks
/START: starts the specific task
/STOP: stops work of the task (the password of the administrator is only required to stop the task of real-time protection)
/PAUSE: pauses work of the task (the command cannot be performed for the real-time protection task)
/RESUME: resumes work of the task
/DELETE: deletes the defined task which is not in the process (remember, predefined system tasks cannot be deleted)
Top of page
Export settings
KAVSHELL EXPORT file_name [/PWD:password]
Once defined, the password of the application administrator must be specified.
Top of page
Import settings
KAVSHELL IMPORT file_name /PWD:password
Top of page
Add a license key file
KAVSHELL ADDKEY full_path_to_the_license_key_file [/R] /PWD:password
/R: change the current license key file
Top of page
| 
Knowledge base
Product Info
System requirements
98 
2009 Jun 02 18:18
