Tag: Computer Configuration

This policy setting customize which remediation action will be taken for each listed Threat ID when it is detected during a scan. Threats should be added under the Options for this setting. Each entry must be listed as a name value pair. The name defines a valid Threat ID while the value contains the action ID for the remediation action that should be taken. Valid remediation action values are:2 = Quarantine3 = Remove6 = Ignore

This policy setting allows you to enable real-time definition updates in response to reports sent to Microsoft MAPS. If the service reports a file as an unknown and Microsoft MAPS finds that the latest definition update has definitions for a threat involving that file the service will receive all of the latest definitions for that threat immediately. You must have configured your computer to join Microsoft MAPS for this functionality to work. If you enable or do not configure this setting real-time definition updates will be enabled. If you disable this setting real-time definition updates will disabled.

This policy setting allows you to specify the day of the week on which to check for definition updates. The check can also be configured to run every day or to never run at all. This setting can be configured with the following ordinal number values:(0x0) Every Day (default)(0x1) Sunday (0x2) Monday(0x3) Tuesday(0x4) Wednesday(0x5) Thursday(0x6) Friday(0x7) Saturday(0x8) NeverIf you enable this setting the check for definition updates will occur at the frequency specified. If you disable or do not configure this setting the check for definition updates will occur at a default frequency.

This policy setting allows you to specify the time of day at which to check for definition updates. The time value is represented as the number of minutes past midnight (00:00). For example 120 (0x78) is equivalent to 02:00 AM. By default this setting is configured to check for definition updates 15 minutes before the scheduled scan time. The schedule is based on local time on the computer where the check is occurring. If you enable this setting the check for definition updates will occur at the time of day specified. If you disable or do not configure this setting the check for definition updates will occur at the default time.

This policy setting allows you to configure the antimalware service to receive notifications to disable individual definitions in response to reports it sends to Microsoft MAPS. Microsoft MAPS uses these notifications to disable definitions that are causing false positive reports. You must have configured your computer to join Microsoft MAPS for this functionality to work. If you enable this setting or do not configure the antimalware service will receive notifications to disable definitions. If you disable this setting the antimalware service will not receive notifications to disable definitions.

This policy setting allows you to define the number of days after which a catch-up definition update will be required. By default the value of this setting is 1 day. If you enable this setting a catch-up definition update will occur after the specified number of days. If you disable or do not configure this setting a catch-up definition update will be required after the default number of days.

This policy setting allows you to specify an interval at which to check for definition updates. The time value is represented as the number of hours between update checks. Valid values range from 1 (every hour) to 24 (once per day). If you enable this setting checks for definition updates will occur at the interval specified. If you disable or do not configure this setting checks for definition updates will occur at the default interval.

This policy setting allows you to manage whether a check for new virus and spyware definitions will occur immediately after service startup. If you enable this setting a check for new definitions will occur after service startup. If you disable this setting or do not configure this setting a check for new definitions will not occur after service startup.

This policy setting allows you to specify the time of day at which to perform a scheduled scan. The time value is represented as the number of minutes past midnight (00:00). For example 120 (0x78) is equivalent to 02:00 AM. By default this setting is set to a time value of 2:00 AM. The schedule is based on local time on the computer where the scan is executing. If you enable this setting a scheduled scan will run at the time of day specified. If you disable or do not configure this setting a scheduled scan will run at a default time.