To use the TDSSKiller tool from the command line, use the parameters in the table below:

Parameter Description -accepteula Confirms your acceptance of the End User License Agreement. -accepteulaksn About participation in Kaspersky Security Network -l <file_name> Write the report to a file. -qpath <folder_name> Select the location of the quarantine folder. -qall Copy all objects to quarantine, including clean ones. -qsus Only copy suspicious files to quarantine. -qmbr Copy all master boot records (MBR) to quarantine. -qboot Copy all boot sectors to quarantine. -quefi Copy all UEFI extensions to quarantine. -dcexact Automatically disinfect or delete known threats.

Apply it with the key -silent to disinfect a large number of computers in a network. -qcsvc <service_name> Copy the specified service to quarantine. -dcsvc <service_name> Delete the specified service. -sigcheck Detect files that don’t have a digital signature, or have an invalid one. These files could be infected. If you suspect that it’s an infected file, scan it using OpenTip. -tdlfs Detect TDL-3/4 system files that are created by TDL-3/4 rootkits in the last hard drive sectors for storing files. All these files can be copied to quarantine. -silent Start a silent scan.

This can be applied in order to start the tool centrally across a network. -freboot Install the extended monitoring driver and reboot before scan. -fixmbr <drive_name> Restore the master boot record (MBR) on the specified disk drive. -fixboot <partition_name> Restore VBR and EIPL on the specified partition.

For example, to scan the computer and write a detailed report to the report.txt file, which will be created in the folder with the TDSSKiller tool, use the command:

TDSSKiller.exe -l report.txt

To view a list of the available command line parameters for the TDSSKiller tool, use the command:

tdsskiller -h