High

High 指定对警报级别 较高 的检测到的威胁执行的自动修正操作。High specifies the automatic remediation action taken for detected threats with a High alert level.

Values

11

清理检测到的威胁。Clean the detected threat.

22

隔离检测到的威胁。Quarantine the detected threat.

33

删除检测到的威胁。Remove the detected threat.

66

允许检测到的威胁。Allow the detected threat.

88

允许用户确定要对检测到的威胁采取的操作。Allow the user to determine the action to take with the detected threat.

99

不要执行任何操作。Do not take any action.

1010

阻止检测到的威胁。Block the detected threat.

NULLNULL

基于更新定义应用操作。Apply action based on the update definition. 这是默认值。This is the default value.

有效的配置阶段Valid Configuration Passes

oobeSystemoobeSystem

offlineServicingofflineServicing

specializespecialize

父层次结构Parent Hierarchy

安全性-恶意软件-Windows-Defender | ThreatSeverityDefaultAction | Security-Malware-Windows-Defender | ThreatSeverityDefaultAction | High

适用于Applies To

对于 Windows Windows Server 2016 版,Microsoft Defender 随操作系统一起安装。For Windows Windows Server 2016 editions, Microsoft Defender is installed with the operating system.

对于 Windows Server 2012、Windows Server 2008 R2 和 Windows Server 2008,Microsoft Defender 随桌面体验包一起安装。For Windows Server 2012, Windows Server 2008 R2 and Windows Server 2008, Microsoft Defender is installed with the Desktop Experience Pack.

有关此组件支持的 Windows 版本和体系结构的完整列表,请参阅 安全-恶意软件-Windows DefenderFor a full list of the Windows editions and architectures that this component supports, see Security-Malware-Windows-Defender.

XML 示例XML Example

以下 XML 输出显示了如何指定 Microsoft Defender 将自动隔离使用 警报级别标识的检测到的威胁。The following XML output shows how to specify that Microsoft Defender will automatically quarantine a detected threat identified with a High alert level.

<High>2</High>

Security-Malware-Windows-DefenderSecurity-Malware-Windows-Defender