Know Current Definition date from Registry
Created: 28 Oct 2009 | 1 comment
Registry Location
For SEP
HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\Symantec Endpoint Protection\AV
For SEP
HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\Symantec Endpoint Protection\AV
For SAV
HKEY_LOCAL_MACHINE\SOFTWARE\INTEL\LANDesk\VirusProtect6\CurrentVersion
HKEY_LOCAL_MACHINE\SOFTWARE\INTEL\LANDesk\VirusProtect6\CurrentVersion
On the Key you can find two Values
PatternFileDate : Current Definition date
PatternFileRevision : Revision
PatternFileDate : Current Definition date
PatternFileRevision : Revision
These are Hexadecimal values
Example:
PatternFileDate : 27090e - 2009 Oct 14
27090e - YYMMDD Format
27 - 2009
27 Hex is 39 Decimal, this value is since 1970. So 1970+39 = 2009
PatternFileDate : 27090e - 2009 Oct 14
27090e - YYMMDD Format
27 - 2009
27 Hex is 39 Decimal, this value is since 1970. So 1970+39 = 2009
09 is October (00- Jan, 0B - Dec)
0e Hex - 14 in decimal
PatternFileRevision : 16Hex - 22
16 HEX is 22 in Decimal
Hope this helps :)
About Security Community Blog
The Security Community Blog is the perfect place to share short, timely insights including product tips, news and other information relevant to the Security community. Any authenticated Connect member can contribute to this blog. Filter by:
Blog Tags
Endpoint Protection (AntiVirus) 11.x Data Loss Prevention (Vontu) Tip/How to Endpoint Protection Small Business Best Practice Messaging Gateway 10.x Installing Basics Reporting Configuring Symantec Information Manager General Symantec Mobile Security 9.x and Earlier Features Security Risks Network Access Control Critical System Protection Upgrade Symantec Protection Suites (SPS) Control Compliance Suite Endpoint Encryption 12.x
Comments
good information
good information
Would you like to reply?
Login or Register to post your comment.