萬盛學電腦網

 萬盛學電腦網 >> 病毒防治 >> 命令行(CMD)下搞定卡巴斯基

命令行(CMD)下搞定卡巴斯基

最近無聊,隨便看看,滲透一個內網的服務器,裝的卡巴斯基,什麼東西都被殺了,上了個不被殺的端口轉發工具,估計是被攔截了,反彈不出來,於是在想怎麼搞定卡巴斯基!

突然想到看看卡巴斯基的能不能支持命令行,一看,果然:

===========================
D:Kaspersky Internet Security 6.0>avp /?
Kaspersky Anti-Virus (R) 6.0.0.299
Copyright (C) Kaspersky Lab 1996-2006. All rights reserved.

Usage: avp.com command [options]

command;;;;Specifies the command to be executed.
HELP Show help
SCAN Start new scan
UPDATE;;;;Update databases and optionally application modules
ROLLBACK;;Rollback previously updated databases
START;;;;;Start specified task
STOP Stop running task
PAUSE;;;;;Pause running task
RESUME;;;;Resume paused task
STATUS;;;;Show task status
STATISTICSShow task statistics
EXPORT;;;;Export settings
IMPORT;;;;Import settings
ADDKEY;;;;Add key file
ACTIVATE;;Perform online activation
EXIT Exit product

Examples:
avp.com [ /? | HELP ]
avp.com command /?
avp.com HELP command
avp.com HELP SCAN
avp.com UPDATE /?

D:Kaspersky Internet Security 6.0>avp status

Task;;;State;;;Completion Description
---------------------------------------------------
AntiPhishingService;;;;running
Anti_Hacker;;;;paused
Anti_Spam paused
Anti_Spy; paused
AVService running
Behavior_Blocking paused
File_Monitoringpaused
HTTP;;;running
IMAP;;;running
MailWasher;;;;;running
Mail_Monitoringpaused
NNTP;;;running
POP3;;;running
ProcMonrunning
Rollback; stopped
Scan_Critical_Areas;;;;stopped
Scan_My_Computer; stopped
Scan_Objects;;;completed
Scan_Quarantinestopped
Scan_Startup;;;running;23%;;;//這裡掃描開始了,下面我終止掉
SMTP;;;running
Spamtest; stopped
StartupService;stopped
TrafficMonitor;running
Updatercompleted
Web_Monitoring;paused

D:Kaspersky Internet Security 6.0>avp stop Scan_Startup /password=tlm//這裡我已經設置好了密碼了

D:Kaspersky Internet Security 6.0>avp status Scan_Startup
Scan_Startup;;;stopped;;//掃描已經重新終止!

============================

但是卡巴斯基是不能夠直接退出的,需要先設置密碼,沒有設置密碼不允許退出:

============================


D:Kaspersky Internet Security 6.0>avp exit
Error: Password required to exit

D:Kaspersky Internet Security 6.0>

============================

命令行中也沒看到如何設置密碼,但是可以導出和導入配置文件,那我們可以從這裡入手,先在本地裝上相同的卡巴斯基,設置好密碼和相關配置,然後導出,,把文件傳送到服務器上然後導入,命令是:

============================

D:Kaspersky Internet Security 6.0>avp export
Kaspersky Anti-Virus (R) 6.0.0.299
Copyright (C) Kaspersky Lab 1996-2006. All rights reserved.

Usage: EXPORT <Profile|taskid> <filename>
<filename[.<ext>|.txt]>;;File to save settings

Examples:
avp.com EXPORT rtp rtp_settings.dat - binary export
avp.com EXPORT fm fm_settings.txt- plain export

D:Kaspersky Internet Security 6.0>avp import
Kaspersky Anti-Virus (R) 6.0.0.299
Copyright (C) Kaspersky Lab 1996-2006. All rights reserved.

Usage: IMPORT <filename>
<filename>;;File to restore settings

Examples:
avp.com IMPORT settings.dat

D:Kaspersky Internet Security 6.0>

============================

此方法沒有測試,因為服務器是裝的服務器版本的,我裝的是6.0互聯網安全套裝,配置文件肯定是不一樣的,我這裡的服務器也裝的卡巴斯基,但是這幾天服務器在調試,等過幾天我再測試看看,先把這個思路放出來,如果有什麼不到之處,還請大家指正!

copyright © 萬盛學電腦網 all rights reserved