Below you will find the download for a whitepaper which explains how Microsoft
deals with Spam and malicious code in the email systems at Redmond.

Here is the link to the Whitepaper:
http://www.microsoft.com/downloads/details.aspx?familyid=17dc35ad-8ba1-48b1-91f3-563313ee878a&displaylang=en

You will find on page 21 that, at least at client level, Microsoft uses eTrust AntiVirus.

Thanks to Spy at http://www.Bink.nu

Enjoy,

Happy Holidays~

-{ Quote: "..., Microsoft uses eTrust AntiVirus." }-
And Microsoft Campus used NOD32 right? Didn't expect Microsoft to use eTrust though. Maybe eTrust should be tested really good, so we all know it's capabilities :)

Microsoft uses different AV's not just one product.

It uses/has used McAfee, NOD, eTrust and Norman and others in its release labs.

As per page 21:
-{ Quote: "
Antivirus Measures at the Client Layer
Microsoft IT’s multilayered defensive approach calls for virus scanning at the client layer, whether at the desktop in the office or on laptops that are used remotely. In addition to running Outlook 2003, all client systems run antivirus software for virus protection.

eTrust Antivirus Software
Microsoft IT maintains strict policies for client-layer antivirus software. To gain access to the corporate network, all Microsoft employees are required to have Computer Associates eTrust Antivirus installed, configured, and up-to-date on client computers such as desktop computers and laptops. The eTrust software scans all files in real time if the user has it actively running on the system. It is completely transparent to the user, scanning continuously and retrieving updates when available.

Microsoft IT uses the logon script framework to ensure that all employees have eTrust installed and running on client computers. When a user attempts to log on to the corporate network, the logon script runs security checks on the system, including the checks that verify the state of the client-layer antivirus service. Microsoft IT also continually monitors the corporate network by using internally developed tools and processes. At regular intervals throughout the day, every computer that is attached to the network is scanned to check for patch-level compliance and the presence of eTrust antivirus software. If a client system is not running eTrust, the user receives a notification with instructions to install the latest antivirus software. If the user does not install the software within a given time window, Microsoft IT will deny the user’s access to the network until his or her system is compliant.
" }-

I do not know nor do I claim to know the insides of Redmond, but I can only assume BC is right that in different areas of the campus you may find different AV's. I found it funny they weren't running OneCare, :)

-{ Quote: "And Microsoft Campus used NOD32 right? " }-
Welcome back Sputnik, i really like your new name!;)

Best regards,

Smokey

-{ Quote: "And Microsoft Campus used NOD32 right? Didn't expect Microsoft to use eTrust though. Maybe eTrust should be tested really good, so we all know it's capabilities :)" }-

As far as I know, eTrust is the main antivirus solution for Microsoft, they use eTrust Antivirus solution (not eTrust EZ Antivirus) for protect their entire network and use other scanners in its release labs or for other purposes.

http://www.tigerdirect.com/applications/SearchTools/item-details.asp?EdpNo=1230144

The company I work used to have eTrust Solution from CA and I know how good is eTrust solution when managing large heterogenous networks compared to other scanner solutions.

Even though eTrust Antivirus itself has a quite low overall detection rates (zoo malware), it is not better than AVG but I'd say detection rates are not the ony factor to consider when choosing the "right" antivirus solution.

I would like to know what they use for the gateway.

O/T:
I can vouch for CA having the enterprise managability down.

Does anyone know the source of the other engine they use. One engine is the Vet engine for Etrust but I know they use another scan engine as well (Not sure if its an in house scanner)

I have noticed that when scanning files by VirusTotal quite often you see a file detected by one scanner and not the other.

Cheers

Jlo

-{ Quote: "Welcome back Sputnik, i really like your new name!;) " }-
Thanks you :) it's good to be back ;) :P

-{ Quote: "Does anyone know the source of the other engine they use. One engine is the Vet engine for Etrust but I know they use another scan engine as well (Not sure if its an in house scanner)

I have noticed that when scanning files by VirusTotal quite often you see a file detected by one scanner and not the other.

Cheers

Jlo" }-


The second engine is Inoculateit