Widows Defender Update problems

[Guest]

After Installing Widows Defender on client win XP pro SP2 computers the
program starts, checks for updates and reports it has the latest definitions.
The client computers are running off a single win 2003 domain controller. If
i go to windows update the latest definition file is there ready to download
and install.
The problem i have is that we recieve all our windows security updates via a
3rd party secure server after they have been tested. This means i will have
to manually update Defender on all my client computers at least once a month.
Q:
Is there a fix to allow the software to auto update?
Q:
Will this be fixed in the future?

Andy

 

[Bill Sanderson]

Microsoft distributes these updates via WSUS--but I don't know how the third
party patching solution you are working with gets its updates from
Microsoft. I think you'll need to talk to them.

Microsoft also advises against deploying the beta on production equipment.

 

[Guest]

Hi Bill, thanks for your answer.
My point is this: if the definitions are only going to be available via wus,
why is there a button "check for updates" on the dropdown menu under the
"About Windows Defender" tag, which does not find the updated files?
All my client computers only recieve the security updates from our 3rd party
secure server, not additional updates, like office updates and such.

Thanks
Andy

 

[Bill Sanderson]

The button is there, I think, purely to provide a user-trigger so that the
automatic update process can be tested.

That, I believe, is part of why it is so "concealed"--it shouldn't be part
of anyone's routine to use it.

I'd recommend speaking to the third-party supplier about whether it will be
possible for them to provide the Windows Defender signature updates. I'm
unclear on the mechanics of providing these updates, which require that the
system have passed WGA checking, in an enterprise situation.

Updating within Windows Defender is done by the command-line program
mpcmdrun.exe

(\program files\windows defender\mpcmdrun.exe SignatureUpdate)

This program also does does scanning, in tandem with the Windows Defender
Service.

I think that the button just creates an easy way for the user to call that
command-line program, as a test mechanism. Normally, the checkbox to "check
for updated definitions before scanning" is what takes care of the updating
process--invisibly to the user.



--

 

[Guest]

Thanks for your input Bill, but!
Defender will not auto update definitions through the software.
I install defender, it auto checks for updates(none found) then runs a scan.
I click the button to check for updates (none found)
I check for updates from cmd prompt (none found)
I go to windows update, it find only windows genuine advantage tool and
installs
I check again for updates by clicking the button & from cmd prompt (none
found)
I go to windows update again, it then finds latest definitions and installs.

This is happening on all the computers and laptops in our company, all on XP
pro SP2, fully updated.

 

[Guest]

Windows Defender Live (Beta), help needed from Microsoft.
Except for the new download Signature Version 1.14.1314.1, all previous
versions have fallen into a loop to High Priority Definition Update
1.14.1314.1 for Beta Windows Defender (KB915597). The users of the Windows
OneCare Live (Beta) have downloaded automatically the file in excess of 54
times, as per the Update History, with no positive results. Previous results
of the Windows Defender (Beta) Definition Updates that worked are:
1.13.1276.3, 1.13.1272.4, 1.13.1276.16, 1.13.1282.6 and 1.13.1386.1 with KB
892519, 892519, 892519, 915597 and 915597 respectively. The loop failure
started when trying to update to 1.13.1288.5 and 1.13.1314.1 both with
KB915597, from older Signature Versions. Worst of all, no removal of the
Defender beta is possible nor installation of the newer 1314 version ontop of
the other.
Microsoft, please read also the many complains in the Discussion Groups Home

 

[Guest]

Click on the link below:

http://support.microsoft.com/kb/915105

I was able to get out of loop by doing this on my W2K system

PJ

 

[Bill Sanderson]

I think this is the expected behavior in your environment. You've locked
auto-update to your third-party patching solution. All updates within the
program use Auto-Update. So they all say no definitions are available
because your server does not have these updates available.

Windows Update does.

The WGA control is required for Windows Defender. I've asked about how it
is expected that this will be handled in an enterprise environment, and the
response I've received is that users should pay attention to the admonition
that this beta not be installed on production equipment.

I've no idea whether it will be possible for third-party suppliers of
patching solutions to provide these definition updates or not. This
question was asked of Eric Schultze in Shavlik's HFNETCHK support forums, on
February 21st, and he answered that this would not happen until Windows
Defender was a released product, and that it would depend "on how their data
is written."

So--he didn't give a clear reading about whether this will really be
possible or not.

I have seen statements from Microsoft staff that they are looking into other
alternative methods for updates, but at the moment, automatic update via the
server to which autoupdate is connected on a given network, and Windows
Update or Microsoft Update, are the only methods supported.



--

 

[Troy III]

... The loop failure
started when trying to update to 1.13.1288.5 and 1.13.1314.1 both with
KB915597, from older Signature Versions.

.... Actualy, I think your update failure might have started after installing
a certain AV software that is blocking the update instalations.

...Worst of all, no removal of the Defender beta is possible ...

I'm sure you've never checked Add/Remove Programs of currently installed
programs, You should find your Windows Live OneCare and/or Windows Defender
there alphabetically listed towards the end of the list, Select it and click
Change/Remove or similar.

nor installation of the newer 1314 version ontop of the other.

I've never tried it, so I'm not at knowlledge if this is true or false.

SOLUTION:
If your signiture update fails with Microsoft Update website also;
You should check your: (use the "Start \Run..." command with this)
%windir%\SoftwareDistribution\download
folder to see if there are files with no extension outside some folders. If
yes, - you should add the missing ".exe" part of the extension. Run them
manually. -You will have your definitions installed. (You are free delete
them after instalation).

Regards.

 

[berstch]

i am using windows vista, problems with defender and internet???

 

[Bill Sanderson]

I think you are replying to what may well be a very old post. These days,
the managers of such update servers have the ability to add Windows Defender
definitions to the updates they distribute.

If such definitions are not distributed by this internal update server, I
would wonder whether it is corporate or institutional policy not to use
Windows Defender, and suggest that this be explored--perhaps the definitions
could be added.

Indeed, Windows Defender in its default settings does require access to the
Internet, and to Microsofts update servers, in particular, to receive new
definitions.

--