Jump to content

What does "Preserve last acces timestamp" do?

ahthnew

By ahthnew
in ESET NOD32 Antivirus

 Share
Go to solution Solved by Marcos,

Recommended Posts

  • Administrators
  • Solution
Marcos

Marcos 5,074

Posted
  • Administrators
  • Solution
Posted

It does what it says. If enabled, the timestamp of files won't be modified due to being accessed and scanned by ESET.

Link to comment
Share on other sites
Sam93

Sam93 0

Posted
Posted (edited)

Moderator,

 

3 questions related to this:

1) the threat settings available to setup/change depend on what specific part of the settings one is looking at, right?  The time stamp preservation setting seems to appear at least under "Om Demand computer scan".  Dos it appear any where else? 

 

2) Does settings for Threat sense keep totally different settings for each category where it appears under the advanced settings various sections?

 

3) Why would one want the AV to change anything about a file that is not a bad actor?  And while that item is not checked on at least one of my machines, I have not noticed that Eset AV was changing any file time stamps.  If it were that would certainly affect a lot of things with unintended consequences.  Not the least would be that it could alter what gets backed up, since some backups can be based on file dates.

 

thanks,

Sam

Edited by Sam93
Link to comment
Share on other sites
  • 4 weeks later...
  • ESET Moderators
Aryeh Goretsky

Aryeh Goretsky 378

Posted
  • ESET Moderators
Posted

Hello,

The option is specific to on-demand scans. In particular, it is of most use during scheduled scans, as files scanned during these will no longer have their last-access time stamp modified.  This option is primarily used in conjunction with backup software that uses the last-access time stamp to determine whether or not a file should be backed up or not.

 

The option is not really applicable in the case of on-access "realtime" scans, since those are triggered when a file is accessed by something other than ESET's software (another program, the operating system, etc.).

 

Settings are changeable across different categories because users may want to adjust them to be more sensitive (or less sensitive) for various kinds of operations.

 

The NTFS file system has a few date fields which are not shown by default in Windows Explorer beyond the default Date Modified attribute.  In addition, there are values stored for Date Accessed, Date Created and Date Last Saved.  See the attached screenshot for an example.

 

As mentioned above, these can be looked at for various reasons (backups, archiving, forensics, etc.) to determine what subsequent actions to perform.

 

Regards,

 

Aryeh Goretsky

post-9-0-31977500-1386383168_thumb.png

Link to comment
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...