Endpoint Protection

I am trying to determine a way to programatically determine:

1. What the currently installed virus definitions are; My guess is:

Reg Key:" HKLM\Software\Symantec\Symantec Endpoint Protection\CurrentVersion\public-opstate

Name: LatestVirusDefsDate

2. What the current versions of the definitions are... no idea how to do this. This is probably less important, I just want to verify my definitions are less than X days old (which I haven't determined, perhaps 14 days to start).

3. How to trigger a silent live update programatically (no idea how to do this); Loose guess is:

C:\Program Files\Symantec\LiveUpdate\LUALL.EXE -s

... or some other command line switches.. but didn't seen anything.

Can someone provide some guidance?

First, what version? 11.x or 12.1? The location you referenced is fine other than it won't show the revision, just the date.

For #2, check here:  Virus Definitions & Security Updates

For #3, you can script sepliveupdate.exe, see here:

http://www.symantec.com/docs/TECH162235

1. As you said for example

2. you can check those here: http://www.symantec.com/security_response/definitions.jsp

3. for SEP 11.x clients: LUALL.exe; for SEP 12.1 clients: sepliveupdate.exe

Sorry, forgot to mention I was using SEP 12.1

#2

When I asked, "What the current versions of the definitions are"..

I meant for the environment.. I wanted to be able to query the local client or server to find out what it is for the environment so I can find it programatically.. not visit a website to find it manually and constanly.

#3

sepliveupdate.exe does the trick for updating.. so I am good for this item.

Thanks

query the Definfo.dat file located in 

C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Data\Definitions\VirusDefs\