OK, I don't use Defender, I use another program. But, here are all available options:
c:\Program Files\Windows Defender>MpCmdRun.exe /?
Microsoft Antimalware Service Command Line Utility ©2006-2012 Microsoft Corp
Use this tool to automate and troubleshoot Microsoft Antimalware Service
MpCmdRun.exe [command] [-options]
-? / -h Displays all available options
for this tool
-Scan [-ScanType #] [-File <path> [-DisableRemediation]] Scans for malicious
-Trace [-Grouping #] [-Level #] Starts diagnostic tracing
-GetFiles Collects support information
-RemoveDefinitions [-All] Restores the installed
to a previous backup copy or to
the original default set of
[-DynamicSignatures] Removes only the dynamically
-SignatureUpdate [-UNC | -MMPC] Checks for new definition updates
-Restore [-ListAll | [-Name <name>] [-All] [-Path <path>]] Restore or list
-AddDynamicSignature [-Path] Loads a dynamic signature
-ListAllDynamicSignatures List the loaded dynamic signatures
-RemoveDynamicSignature [-SignatureSetID] Removes a dynamic signature
-EnableIntegrityServices Enables integrity services
-SubmitSamples Submit all sample requests
Support information will be in the following directory:
-Scan [-ScanType value]
0 Default, according to your configuration
1 Quick scan
2 Full system scan
3 File and directory custom scan
Indicates the file or directory to be scanned, only valid for c
This option is valid only for custom scan.
- File exclusions are ignored.
- Archive files are scanned.
- Actions are not applied after detection.
- Event log entries are not written after detection.
- Detections from the custom scan are not displayed in the use
Return code is
0 if no malware is found or malware is successfully remediated and no a
dditional user action is required
2 if malware is found and not remediated or additional user action is r
equired to complete remediation or there is error in scanning. Please check His
tory for more information.
-Trace [-Grouping value] [-Level value]
Begins tracing Microsoft Antimalware Service's actions.
You can specify the components for which tracing is enabled and
how much information is recorded.
If no component is specified, all the components will be logged.
If no level is specified, the Error, Warning and Informational levels
will be logged. The data will be stored in the support directory
as a file having the current timestamp in its name and bearing
the extension BIN.
0x2 Malware Protection Engine
0x4 User Interface
0x8 Real-Time Protection
0x10 Scheduled actions
0x4 Informational messages
0x8 Function calls
Gathers the following log files and packages them together in a
compressed file in the support directory
- Any trace files from Microsoft Antimalware Service
- The Windows Update history log
- All Microsoft Antimalware Service events from the System event log
- All relevant Microsoft Antimalware Service registry locations
- The log file of this tool
- The log file of the signature update helper tool
Scans for unusual files. The files and results of the scan
will be packaged in the compressed file.
Restores the last set of signature definitions
Removes any installed signature and engine files. Use this
option if you have difficulties trying to update signatures.
Removes all Dynamic Signatures.
Checks for new definition updates
[-UNC [-Path <path>]]
Performs update directly from UNC file share specified in <path>
If -Path is not specified, update will be performed directly from the
preconfigured UNC location
Performs update directly from Microsoft Malware Protection Center
List all items that were quarantined
Restores the most recently quarantined item based on threat name
One Threat can map to more than one file
Restores all the quarantined items based on name
Specify the path where the quarantined items will be restored.
If not specified, the item will be restored to the original path.
-AddDynamicSignature -Path <path>
Adds a Dynamic Signature specified by <path>
Lists SignatureSet ID's of all Dynamic Signatures added to the client
via MAPS and MPCMDRUN -AddDynamicSignature
-RemoveDynamicSignature -SignatureSetID <SignatureSetID>
Removes a Dynamic Signature specified by <SignatureSetID>
Another option might be to try piping to NUL (or NULL, don't remember which it is):
MpCmdRun.exe -SignatureUpdate -MMPC > NUL
MpCmdRun.exe -SignatureUpdate -MMPC > NULL
But like I said, I don't use Defender, so this is a "best guess".
Best of luck.
Edited by scotty_ncc1701, 20 June 2014 - 06:18 AM.