Windows Defender Explained

Hi, I’m Mike Chan, a product manager for Windows Vista. I wanted to let everyone know about a great feature that is included in Windows Vista. The threat of malicious software is still a problem that many customers face today and Microsoft has been making progress against these threats over the past few years with a combination of guidance, industry partnership and security technologies. One of our latest technologies to combat malicious and unwanted software is with Windows Defender (WD), which helps prevent poor performance and unwanted pop-up ads that can be caused by spyware. Windows Defender also helps keep private information out of the hands of spyware and other potentially unwanted software. Using Windows Defender is easy with single click access to features such as a quick scan. Windows Defender also works in the background to protect you against software that attempts to install onto your machine without proper consent or notification. One of the little known facts about Windows Defender is that it is now implemented as a system service so it provides protection for all users and utilizes User Account Control (UAC) (http://www.microsoft.com/windowsvista/uac) to take any actions that need administrator privileges. The UI runs under the user context, but all scanning and cleaning activities are accomplished by the service. Furthermore, there is integration with IE (http://www.microsoft.com/windows/ie/ie7/default.mspx) so that downloads are scanned when they are downloaded to help ensure that you do not accidentally download malicious software. This is accomplished using the IOfficeAntiVirus API (http://windowssdk.msdn.microsoft.com/library/default.asp?url=/workshop/security/antivirus/reference/ifaces/iofficeantivirus/scan.asp). Note, the API is used for any file scanning, not just for Office or AntiVirus. Also, Windows Defender is not a replacement for AntiVirus and Microsoft always recommends that customers deploy a full AV product. Also, Microsoft is committed to providing our customers with free on-going definition updates so you don’t ever have to worry about your protection expiring. The added security that Windows Defender provides lets you get back to using your computer without unneeded interruptions. For more information, visit http://www.microsoft.com/windowsdefender and remember to check out the Microsoft anti-malware blog (http://blogs.technet.com/antimalware).

 

Comments

  1. Winblog
    Posted on: June 03, 2006 at 5:05AM  
    You are correct – Windows Defender does not monitor code injection.  The way Windows Vista protects against code "injection" such as buffer overflows is through enabling the DEP (data execution prevention) that prevents code from being executed if it is "injected" into a buffer which is marked as "data only."
  2. Winblog
    Posted on: June 07, 2006 at 5:44PM  
    Hi Eric S:  IE7 is the answer – the reason why Windows Defender no longer includes "Tracks Eraser" is because much of its functionality will be duplicated with IE7, so download and use the IE7 beta and you will see the privacy "eraser" buttons there.

  3. Eric S
    Posted on: June 08, 2006 at 8:21AM  
    Thank you much for that comment.  I also found a site that offered much insight into my problem.  And after researching further myself, there is a lot of truth to the information and my issue has been resolved with their product.

    http://www.purgeie.com/errcache.htm

    Thanks again!
  4. Peter K
    Posted on: June 14, 2006 at 7:59AM  

    I am also disappointed with the omission of "tracks eraser" from the Beta 2 of Windows Defender, and I do not agree with Winblog that IE7 is the answer.

    Tracks eraser went further than only cleaning out IE. With one click of the button, recent file lists and temp files of windows, office, WMP, etc. were also cleaned (I remember I checked 17 items to be cleaned). This was very useful to keep a computer free from garbage, and to protect privacy on shared computers.

    Can you explain why it was removed, and what you propose as alternative?

    Thanx.
  5. Jon Acord
    Posted on: July 04, 2006 at 12:47AM  
    Mike, Windows defender is all very nice and all. But I need to please know what AntiVirus program I can run with Vista build 5456. Norton will not install. I had to turn off UAC because its annoying. The pop ups were driving me bannanas. No one, and I mean no one will want UAC active after spending an hour with it. I guarantee it. Again, if anyone has a clue which antivirus, if any will work smoothly, please let me know.
  6. Winblog
    Posted on: July 05, 2006 at 1:10PM  
    Hi Jon – We are working with our AV partners to ensure that customers have the best protection available to them on the Windows Vista platform.  This page http://www.microsoft.com/athome/security/viruses/wsc/en-us/windowsvistabeta2.mspx will be updated as more partners support the Windows Vista platform.  Currently, Trend Micro has a trial subscription that will work on Windows Vista Beta 2.

    Thanks,

    Mike Chan
    Windows Vista Security
  7. dlevine@colby-sawyer...
    Posted on: December 20, 2006 at 4:03PM  

    NOD32 Antivirus System v. 2.7 (published by ESET) runs in the Vista environment too. I have it installed on Vista Business (NOT beta) and have seen no issues.

  8. Michael_Moor
    Posted on: January 31, 2007 at 11:37AM  

    Hey "Winblog",thx for share

    ---------

    http://www.dl4all.com

  9. cjncowgurl
    Posted on: March 19, 2007 at 1:10AM  

    Hi. My Windows Defender will not update. I keep getting "The program can't check for definition updates. Error found: Code 0x80240029". I have tried to look this up but can find this error no where. Any suggestions and I really would like it to work.

  10. Bikeboy99
    Posted on: April 04, 2007 at 8:57PM  
  • Page:
  • 1
  • 2
  • 3

Recent Posts

Tags

View more
© Copyright 2009 Microsoft Corporation. All Rights Reserved.   |   Privacy Statement