I'd like to hear myself. I've got a few dozen machines on SBS-2000
networks, using ISA-2000 firewalls.
I found that on a few machines it was necessary to change the "automatically
detect" setting for proxy server detection--the oddity was that on one
machine I turned it off, whereas on two others, I turned it on--all on the
same network behind the same transparent proxy setup.
An SBS customer might also be running WSUS, and if they are, Windows
Defender will be looking for the signature updates from WSUS--and they are a
new class of update that the admin must enable.
--