RE: Windows Defender Re-installation

Thanks, Richard. Sounds like a plan.

Thanks to everyone else as well.

"Mark" wrote:

> When upgrading Windows XP to Vista, I inadvertantly uninstalled the Vista
> version of Defender thinking it was the XP version (using Add/Remove
> Programs). I then went on to make a whole bunch of changes to the OS and
> installed and reconfigured a wide range of software applications. THEN I
> realized I uninstalled an OS component I needed and wanted.
>
> There was no (apparent) way to re-install Defender. It was not a component
> that I could enable nor did a system repair (from the install disk)
> re-install defender; the system repair utility (apparently) perceived the
> removal of Defender as a desired change and did not re-install it.
>
> Any suggestions?
>
> I have one for Microsoft: If you give people the ability to remove
> software, be sure to give them the ability to add it back later.
>
> ----------------
> This post is a suggestion for Microsoft, and Microsoft responds to the
> suggestions with the most votes. To vote for this suggestion, click the "I
> Agree" button in the message pane. If you do not see the button, follow this
> link to open the suggestion in the Microsoft Web-based Newsreader and then
> click "I Agree" in the message pane.
>
> http://windowshelp.microsoft.com/com...allation_setup

I did the same thing and I reinstalled defender by going to the restore
option in accessories then opening up system tools anbd then system restore.
I restored to a date before the uninstall and defender game back and is now
working great. I hope that this works

"Mark" wrote:

> Thanks, Richard. Sounds like a plan.
>
> Thanks to everyone else as well.
>
> "Mark" wrote:
>
> > When upgrading Windows XP to Vista, I inadvertantly uninstalled the Vista
> > version of Defender thinking it was the XP version (using Add/Remove
> > Programs). I then went on to make a whole bunch of changes to the OS and
> > installed and reconfigured a wide range of software applications. THEN I
> > realized I uninstalled an OS component I needed and wanted.
> >
> > There was no (apparent) way to re-install Defender. It was not a component
> > that I could enable nor did a system repair (from the install disk)
> > re-install defender; the system repair utility (apparently) perceived the
> > removal of Defender as a desired change and did not re-install it.
> >
> > Any suggestions?
> >
> > I have one for Microsoft: If you give people the ability to remove
> > software, be sure to give them the ability to add it back later.
> >
> > ----------------
> > This post is a suggestion for Microsoft, and Microsoft responds to the
> > suggestions with the most votes. To vote for this suggestion, click the "I
> > Agree" button in the message pane. If you do not see the button, follow this
> > link to open the suggestion in the Microsoft Web-based Newsreader and then
> > click "I Agree" in the message pane.
> >
> > http://windowshelp.microsoft.com/com...allation_setup

Hi,

I'm running Vista Business X86 32 bits. In my case Defender got broken when
I uninstalled Forefront Security Client. The above registry instructions wont
work for Vista. I fixed it doing the following:

Backup these registry keys from another vista with defender running:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\WinDefend

Also my setup had missing the folders in %programData%\microsoft\windows
defender

The error pops up because of the registry key missing values AND the
definitions files missing in the above directory. To fix it you will need to
restore the registry values and copy the %programData%\microsoft\windows
defender from another vista. I can't post them here as they are 34MB large.
I'm just dumping the registry keys backup here. Once you replace the registry
and copy the files it will work.

Also note that the version posted of the registry before is not for windows
vista and will cause another error if you use it. It addas a value for
windows 2000.

Good Luck to all, it take me a while to fix this one.

Mariano.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender
*****
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=dword:00000000
"ProductUpdateAvailable"=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender\Miscellaneous
Configuration]
"DeltaUpdateFailure"=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender\Quarantine]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender\Real-Time
Protection\Checkpoints]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender\Reporting]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender\Scan]
"CheckForSignaturesBeforeRunningScan"=dword:000000 01
"AutomaticallyCleanAfterScan"=dword:00000001
"LastScanType"=dword:00000001
"LastScanRun"=hex:b9,f5,4d,bc,f4,a2,c9,01

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender\Signature Updates]
"UpdateOnStartUp"=dword:00000000
"EngineVersion"="1.1.4405.0"
"ASSignatureVersion"="1.53.288.0"
"ASSignatureApplied"=hex:80,bc,4d,99,1a,a1,c9, 01
"SignatureLocation"="C:\\ProgramData\\Microsoft\\W indows
Defender\\Definition Updates\\{C3B4D08D-5C6D-414D-BA1B-77310BDCF54D}"
"LastFallbackTime"=hex:57,78,92,3f,dd,59,c9,01

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender\Software Explorers]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender\Spynet]
"SpyNetReporting"=dword:0000000
"SpyNetReportingLocation"=hex(7):68,00,74,00,74,00 ,70,00,73,00,3a,00,2f,00,2f,\
00,73,00,70,00,79,00,6e,00,65,00,74,00,32,00,2e,00 ,6d,00,69,00,63,00,72,00,\
6f,00,73,00,6f,00,66,00,74,00,2e,00,63,00,6f,00,6d ,00,2f,00,41,00,6e,00,74,\
00,69,00,4d,00,61,00,6c,00,77,00,61,00,72,00,65,00 ,53,00,65,00,72,00,76,00,\
69,00,63,00,65,00,73,00,2f,00,32,00,2f,00,53,00,70 ,00,79,00,6e,00,65,00,74,\
00,52,00,65,00,70,00,6f,00,72,00,74,00,53,00,72,00 ,76,00,63,00,2e,00,61,00,\
73,00,6d,00,78,00,00,00,00,00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender\Threats]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
Defender\Threats\ThreatIDDefaultAction]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
Defender\Threats\ThreatSeverityDefaultAction]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
Defender\Threats\ThreatTypeDefaultAction]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender\UX Configuration]

****
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\WinDefend
****
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\WinDefend]
"DisplayName"="Windows Defender"
"ErrorControl"=dword:00000001
"Group"="COM Infrastructure
"ImagePath"=hex(2):25,00,53,00,79,00,73,00,74,00,6 5,00,6d,00,52,00,6f,00,6f,00,\
74,00,25,00,5c,00,53,00,79,00,73,00,74,00,65,00,6d ,00,33,00,32,00,5c,00,73,\
00,76,00,63,00,68,00,6f,00,73,00,74,00,2e,00,65,00 ,78,00,65,00,20,00,2d,00,\
6b,00,20,00,73,00,65,00,63,00,73,00,76,00,63,00,73 ,00,00,00
"Start"=dword:00000002
"Type"=dword:00000020
"Description"="@%ProgramFiles%\\Windows Defender\\MsMpRes.dll,-3068"
"DependOnService"=hex(7):52,00,70,00,63,00,53,00,7 3,00,00,00,00,00
"ObjectName"="LocalSystem"
"ServiceSidType"=dword:00000001
"RequiredPrivileges"=hex(7):53,00,65,00,49,00,6d,0 0,70,00,65,00,72,00,73,00,6f,\
00,6e,00,61,00,74,00,65,00,50,00,72,00,69,00,76,00 ,69,00,6c,00,65,00,67,00,\
65,00,00,00,53,00,65,00,42,00,61,00,63,00,6b,00,75 ,00,70,00,50,00,72,00,69,\
00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00 ,65,00,52,00,65,00,73,00,\
74,00,6f,00,72,00,65,00,50,00,72,00,69,00,76,00,69 ,00,6c,00,65,00,67,00,65,\
00,00,00,53,00,65,00,44,00,65,00,62,00,75,00,67,00 ,50,00,72,00,69,00,76,00,\
69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,00,43 ,00,68,00,61,00,6e,00,67,\
00,65,00,4e,00,6f,00,74,00,69,00,66,00,79,00,50,00 ,72,00,69,00,76,00,69,00,\
6c,00,65,00,67,00,65,00,00,00,53,00,65,00,53,00,65 ,00,63,00,75,00,72,00,69,\
00,74,00,79,00,50,00,72,00,69,00,76,00,69,00,6c,00 ,65,00,67,00,65,00,00,00,\
00,00
"FailureActions"=hex:80,51,01,00,00,00,00,00,00,00 ,00,00,03,00,00,00,14,00,00,\
00,01,00,00,00,60,ea,00,00,01,00,00,00,60,ea,00,00 ,00,00,00,00,00,00,00,00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\WinDefend\Parameters]
"ServiceDllUnloadOnStop"=dword:00000001
"ServiceDll"=hex(2):25,00,50,00,72,00,6f,00,67,00, 72,00,61,00,6d,00,46,00,69,\
00,6c,00,65,00,73,00,25,00,5c,00,57,00,69,00,6e,00 ,64,00,6f,00,77,00,73,00,\
20,00,44,00,65,00,66,00,65,00,6e,00,64,00,65,00,72 ,00,5c,00,6d,00,70,00,73,\
00,76,00,63,00,2e,00,64,00,6c,00,6c,00,00,00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\WinDefend\Security]
"Security"=hex:01,00,14,80,04,01,00,00,10,01,00,00 ,14,00,00,00,30,00,00,00,02,\
00,1c,00,01,00,00,00,02,80,14,00,ff,01,0f,00,01,01 ,00,00,00,00,00,01,00,00,\
00,00,02,00,d4,00,07,00,00,00,00,00,28,00,ff,01,0f ,00,01,06,00,00,00,00,00,\
05,50,00,00,00,b5,89,fb,38,19,84,c2,cb,5c,6c,23,6d ,57,00,77,6e,c0,02,64,87,\
00,0b,28,00,00,00,00,10,01,06,00,00,00,00,00,05,50 ,00,00,00,b5,89,fb,38,19,\
84,c2,cb,5c,6c,23,6d,57,00,77,6e,c0,02,64,87,00,00 ,14,00,fd,01,02,00,01,01,\
00,00,00,00,00,05,12,00,00,00,00,00,18,00,ff,01,0f ,00,01,02,00,00,00,00,00,\
05,20,00,00,00,20,02,00,00,00,00,14,00,9d,01,02,00 ,01,01,00,00,00,00,00,05,\
04,00,00,00,00,00,14,00,8d,01,02,00,01,01,00,00,00 ,00,00,05,06,00,00,00,00,\
00,28,00,15,00,00,00,01,06,00,00,00,00,00,05,50,00 ,00,00,49,59,9d,77,91,56,\
e5,55,dc,f4,e2,0e,a7,8b,eb,ca,7b,42,13,56,01,01,00 ,00,00,00,00,05,12,00,00,\
00,01,01,00,00,00,00,00,05,12,00,00,00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\WinDefend\Enum]
"0"="Root\\LEGACY_WINDEFEND\\0000"
"Count"=dword:00000001
"NextInstance"=dword:00000001