How to manage Kaspersky Endpoint Security 10 for Windows via the command prompt
This article concerns Kaspersky Endpoint Security 10 for Windows:
- Service Pack 2 Maintenance Release 4 (version 10.3.3.304)
- Service Pack 2 Maintenance Release 3 (version 10.3.3.275)
- Service Pack 2 Maintenance Release 2 (version 10.3.0.6294)
- Service Pack 2 Maintenance Release 1 (version 10.3.0.6294)
- Service Pack 2 (version 10.3.0.6294)
- Service Pack 1 Maintenance Release 4 (version 10.2.6.3733)
You can operate Kaspersky Endpoint Security 10 for Windows from the command line.
Command prompt syntax: avp.com <command> [parameters]
If you have not added the path to the %PATH% variable, instead of avp.com you must specify the full path to avp.com:
- For 32-bit operating systems: С:\Program Files\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows\avp.com.
- For 64-bit operating systems: С:\Program Files (x86)\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows\avp.com.
You can use commands for Kaspersky Endpoint Security 10 for Windows:
- SP2 and later:
- HELP — syntax help, display the list of commands.
- SCAN — scan objects for malicious code.
- UPDATE — run a databases update task.
- ROLLBACK — rollback of the latest product update.
- TRACES — enable or disable traces.
- START — run a task or a component.
- STOP — stop a task or a component.
- STATUS — display the current status of a component or a task.
- STATISTICS — show the statistics for the component or the task.
- RESTORE — restore a file from Quarantine.
- EXPORT — export the protection settings of the application.
- IMPORT — import the protection settings of the application.
- ADDKEY — add the key file to the product.
- LICENSE — add or remove the key file.
- PBATESTRESET — remove data on incompatibility of the system hard drive and the authentication agent.
- PATCHCOMPATIBILITYRESET —delete patches with the specified GUID from the list of incompatibilities
- EXIT - close the application. Exiting the application must be password-protected.
- EXITPOLICY — disabling a policy.
- STARTPOLICY — enabling a policy.
- SP1MR4 and earlier:
- HELP — syntax help, display the list of commands.
- SCAN — scan objects for malicious code.
- UPDATE — run a database update task.
- ROLLBACK — rollback of the latest product update.
- TRACES — enable or disable traces.
- START — run a task or a component.
- STOP — stop a task or a component.
- STATUS — display the current status of a component or a task.
- STATISTICS — show the statistics for the component or the task.
- RESTORE — restore a file from Quarantine.
- EXPORT — export the protection settings of the application.
- IMPORT — import the protection settings of the application.
- ADDKEY — add the key file to the product.
- LICENSE — add or remove the key file.
- PBATESTRESET — remove data on incompatibility of the system hard drive and the authentication agent.
- PATCHCOMPATIBILITYRESET —delete patches witht the specified GUID from the list of incompatibilities
- EXIT — close the application. Exiting the application must be password-protected.
Commands description
SCAN
The full list of the command parameters:
Example:
A scan of memory and mailboxes is performed. A malicious object will be disinfected or skipped if disinfection is impossible. Critical events from the task report are saved to the report.txt file.
UPDATE
The full list of the command parameters:
Example:
The command starts the update task. All events are saved to the report.txt file.
ROLLBACK
The full list of the command parameters:
Example:
The latest databases update will be rolled back. Password protection must be enabled in the application. The /login and /password parameters are required for rolling back updates via command prompt.
TRACES
The full list of the command parameters:
Example:
Tracing will be enabled with level 500
START / STOP
The full list of the command parameters:
Example:
Running the Web Control component.
STATUS
The full list of the command parameters:
Example:
The command will return the running status if the component is enabled and the disabled status if the component is disabled.
STATISTICS
The full list of the command parameters:
Example:
The command shows the Firewall performance statistics: start time, number of denied connection attempts, total incoming and outgoing traffic processed by the component (in bytes).
RESTORE
The full list of the command parameters:
Example:
The command restores the test virus file eicar.com.
EXPORT
The full list of the command parameters:
Example:
The command saves the parameters of the Device Control component to the dc.dat file. If you do not specify the path, the file is saved to the folder of the user account under which cmd is running.
The command saves all settings of Kaspersky Endpoint Security 10 for Windows to the result.cfg file located on disk C.
IMPORT
The full list of the command parameters:
Example:
The command applies the parameters from thedc.dat file. If the path to the file has not been specified, the application searches for it in the folder of the user account under which cmd is started. The key cannot be used without the /login and /password parameter. The application settings must be password-protected.
ADDKEY
The full list of the command parameters:
Example:
The command adds the key file stored on disk C. Cannot be used without the /login and /password parameter. For performing this operation, the application settings must be password-protected.
LICENSE
The full list of the command parameters:
Example:
The command removes the current license. The /DEL key cannot be used without the /login and /password parameter. You can execute this command only if the application is password-protected.
PBATESTRESET
The full list of the command parameters:
For more information about the pbatestreset command, see the Online Help.
PATCHCOMPATIBILITYRESET
The full list of the command parameters:
Example:
EXITPOLICY
The full list of the command parameters:
Example:
STARTPOLICY
The full list of the command parameters:
Example:
