Errors When Using the FEP 2010 Definition Update Automation Tool

by Michael Cureton We’ve become aware of two issues when using the Definition Update Automation Tool. This blog article presents workarounds for the issues. Definition Update Automation Tool fails to add new definition updates to the deployment package   Symptoms The FEP 2010 Definition Update Automation Tool may fail to add new definition updates to…


Definition updates: scan on update and update on startup

Hi folks, There have been some questions about these two areas of definition updates, so I wanted to clarify this a bit. Whenever FEP does a definition update, a silent rescan of all running processes and loaded modules is performed. If there is malware running that is now detected by the new definitions, that malware…


Forefront Endpoint Protection 2010 Update Rollup 1

 By Adwait Joshi Hello, An Update Rollup for Forefront Endpoint Protection 2010 is now available here: http://go.microsoft.com/fwlink/?LinkId=223229 .  In addition to hotfixes, this Update also includes some important changes to note: Support for Windows Embedded 7 platforms:  With this update, the FEP client software is supported on certain Windows Embedded 7 platforms (including Windows Thin…


FCS v1 March 2011 update

Update 10 March 2011 We have received reports of an installation issue with our March update of Forefront Client Security when the option of “install updates and shutdown” is used.  We wanted to be clear on the issue and exactly what steps we are taking to rectify it. Symptom:  A computer attempts to use the install…


QFE9 KB2394433 introduces RTP error 0x8007007f on Windows 2000

There is an issue with the changes made in QFE9 (KB2394433) that prevents the Antimalware minifilter mpfilter.sys from loading properly on Windows 2000. This causes a failure to provide On Access Real-Time Protection. If you do not have any Windows 2000 computers in your organization, this issue does not apply to you. UPDATE: This morning…


FCS v1 Update

Hello all, A short note, but on October 12th, we released an update to FCSv1.   This update contains: This update is supported on Windows 7 SP1 RC or greater.  Windows 7 Service Pack 1 will check for the presence of this update or a superseding update before installing. This update contains changes to the Forefront…


Using a script to automate UNC definition updates

The FEP 2010 client has the ability to use a UNC share to host updates for the antimalware definitions. A common question from our TAP community is how to setup the UNC share, and how do I keep the share updated – this article focuses on one method for keeping the UNC share up-to-date. Microsoft…


Update packaging changes…

Hey folks, Just a heads up that the way in which the FCS definition updates are packaged is being revised. We wanted to announce that the antimalware definitions team has released a set of improvements that will drastically reduce both the size of the definition downloads for: Microsoft Update to WSUS WSUS Upstream Server to…


Keeping FCS up to date

FCS antimalware updates are classified in WSUS as critical updates. Therefore, if you want to automatically approve these updates you must create a rule for the Forefront Client Security product and the Critical Updates category in WSUS. There are two items to note: Antimalware client updates (not definition updates, but the program updates published periodically)…


New updates coming!

Greetings blog readers! I’m happy to announce that we will release a new antimalware engine update for FCS. Full information on the updates included with the release will be published in a KB article once the update is released. The KB article is Microsoft Knowledge Base article 979536 (http://support.microsoft.com/kb/979536). Currently, we are slated to release…