保护历史记录^{(Protection History)}页面显示Windows Defender的检测，并提供有关威胁和可用操作的详细且易于理解的信息。从Build 18305开始，它包括受控文件夹访问块，以及通过攻击面减少规则的组织配置生成的任何块。在这篇文章中，我们将向您展示如何在Windows 10上的^{(Windows 10)}Windows Defender中手动清除保护历史记录。

如果您使用Windows Defender 离线扫描工具^{(Windows Defender Offline scanning tool)}，它所做的任何检测现在也将显示在此历史记录中。此外，您将在历史列表中看到任何待处理的建议（整个应用程序中的红色或黄色状态）。

删除 Windows Defender 保护历史记录^{(Delete Windows Defender Protection History)}

这指定了项目在扫描日志文件夹中存储的天数。在此时间之后，Windows Defender将删除这些项目。如果您指定空值，Windows Defender将不会删除项目。如果不指定值，Windows Defender将从默认扫描日志文件夹中删除项目，即 30 天。

但是，如果您想手动清除保护历史记录，您可以通过以下三种方式之一进行；

1. 使用Set-MpPreference PowerShell cmdlet
2. ^{(Delete Windows Defender Service)}从本地驱动器中删除 Windows Defender 服务文件夹
3. 使用事件查看器

让我们看一下与列出的每个方法相关的步骤。

1] 使用Set-MpPreference PowerShell cmdlet

Set-MpPreference cmdlet  为Windows Defender扫描和更新配置首选项。您可以修改排除文件扩展名、路径或进程，并为高、中和低威胁级别指定默认操作。

您可以通过在PowerShell 管理模式下^{(PowerShell admin mode)}运行以下 cmdlet 来指定不同的延迟期（以天为单位）（按Win+X，然后点击键盘上的A ）：

Set-MpPreference -ScanPurgeItemsAfterDelay 1

指定的数字1是清除保护历史日志和日志文件夹中的项目的天数。

2]从本地驱动器中删除Windows Defender Service文件夹^{(Delete Windows Defender Service)}

要手动清除保护历史记录，此方法需要您删除本地驱动器上Windows Defender文件夹下的Service文件夹。^(Service)

就是这样：

• 按Windows key + R调用“运行”对话框。
• 在“运行”^(Run)对话框中，复制并粘贴下面的路径，然后按Enter（如果出现提示，请单击“继续^(Continue)” ）。

C:\ProgramData\Microsoft\Windows Defender\Scans\History

• 现在，右键单击该位置的Service文件夹并选择Delete。

您可以退出文件资源管理器。

• 接下来，打开Windows 安全^{(Windows Security)}>病毒和威胁防护^{(Virus & threat protection)(Virus & threat protection)}>管理设置^{(Manage settings)}。
• 将按钮切换到关闭^(Off)，然后再次切换到开启，以获得^(On)实时保护^{(Real-Time protection)}和  云交付保护^{(Cloud-delivered protection)}。

3]使用事件查看器

要使用事件查看器^{(Event Viewer)}(eventvwr)手动清除Windows Defender保护历史记录，请执行以下操作：

• 按Windows key + R调用“运行”对话框。
• 在“运行”对话框中，键入eventvwr并按 Enter 以打开事件查看器。
• 在  窗格左侧 的事件查看器（本地）部分下，展开^{(Event Viewer (Local))}应用程序和服务日志^{(Applications and Services logs)}选项。
• 在此之下，展开 Microsoft选项。
• 单击Windows以在中间窗格中打开其所有文件的列表。
• 在中间窗格中，向下滚动以从文件列表中找到Windows Defender。
• 右键单击Windows Defender，然后单击打开^(Open)。
• 在中间窗格的两个选项中，右键单击Operational，然后单击Open以查看所有过去的日志。
• 现在，在左窗格的Windows Defender 文件夹下，右键单击 Operational。
• 单击  菜单上的清除日志...。^{(Clear Log…)}
• 根据您的要求选择 清除^(Clear) 或 保存并清除以清除保护历史记录。^{(Save and Clear)}

以上列出的是在Windows 10中手动清除^{(Windows 10)}Windows Defender保护历史记录的 3 种已知方法。

How to clear Windows Defender Protection History in Windows 10

The Protection History page shows detections by Windows Defender and provides detailed and easier to understand information about threats and available actions. Starting with Build 18305, it includes Controlled Folder Access blocks, along with any blocks which were made through the organizational configuration of Attack Surface Reduction Rules. In this post, we will show you how to manually clear protection history in Windows Defender on Windows 10.

If you use the Windows Defender Offline scanning tool, any detections it makes will now also show in this history.  Additionally, you will see any pending recommendations (red or yellow states from throughout the app) in the history list.

Delete Windows Defender Protection History

This specifies the number of days for which items are stored in the scan log folder. After this time, Windows Defender deletes the items. If you specify a null value, Windows Defender will not remove items. If you do not specify a value, Windows Defender will remove items from the default scan log folder, that is, 30 days.

However, if you want to clear the protection history manually, you can do so in any of the three following ways;

1. Using Set-MpPreference PowerShell cmdlet
2. Delete Windows Defender Service folder from the local drive
3. Using Event Viewer

Let’s take a look at the steps involved in relation to each of the listed methods.

1] Using Set-MpPreference PowerShell cmdlet

The Set-MpPreference cmdlet configures preferences for Windows Defender scans and updates. You can modify exclusion file name extensions, paths, or processes, and specify the default action for high, moderate, and low threat levels.

You can specify a different delay period (in days) by running the cmdlet below in PowerShell admin mode (press Win+X and then tap A on the keyboard):

Set-MpPreference -ScanPurgeItemsAfterDelay 1

The specified number 1 is the number of days after which the protection history log and items in the log folder will be cleared.

2] Delete Windows Defender Service folder from the local drive

To manually clear the protection history, this method requires you to delete the Service folder under the Windows Defender folder on the local drive.

Here’s how:

• Press Windows key + R to invoke the Run dialog.
• In the Run dialog, copy and paste the path below and hit Enter (if prompted, click Continue).

C:\ProgramData\Microsoft\Windows Defender\Scans\History

• Now, right-click the Service folder in that location and select Delete.

You can exit File Explorer.

• Next, open Windows Security > Virus & threat protection > Manage settings.
• Toggle the button to Off then to On again for Real-Time protection and  Cloud-delivered protection.

3] Using Event Viewer

To manually clear the Windows Defender protection history using the Event Viewer (eventvwr), do the following:

• Press Windows key + R to invoke the Run dialog.
• In the Run dialog, type eventvwr and hit Enter to open Event Viewer.
• Under the Event Viewer (Local) section on the left-hand side of the pane, expand the Applications and Services logs option.
• Under this, expand the Microsoft option.
• Click on Windows to open the list of all its files on the middle pane.
• On the middle pane, scroll down to find Windows Defender from the list of files.
• Right-click Windows Defender, and click on Open.
• From the two options in the middle pane, right-click on Operational, and click Open to view all the past logs.
• Now, under Windows Defender folder on the left pane, right-click on Operational.
• Click on Clear Log… on the menu.
• Select Clear or Save and Clear based on your requirement to clear the protection history.

And the above listed are the 3 known ways to manually clear Windows Defender protection history in Windows 10.

Related posts

• 如何在Windows 10的Exploit Protection中添加或排除应用程序

• 什么是Windows 10中的Firewall and Network Protection以及如何隐藏此部分

• 什么是Windows 10中的Control Flow Guard - 如何打开或关闭它

• 如何在Windows 10手动更新Windows Defender

• Windows 10中的Remove Windows Defender Notification Icon

• 如何在Windows 10上启用或禁用USB Write Protection

• Windows 10中的启用包是什么

• 如何为 Windows Defender 防病毒设置自己的扫描计划

• 4 Ways在Windows 10中清除Clipboard History

• 在 Windows 10 中启用或禁用文件资源管理器搜索历史记录

• 如何禁用可移动存储类和Windows 10访问

• 如何在 Windows 10 上检查您的打印文档历史记录

• Windows Defender vs. Security Essentials vs Safety Scanner

• 当您拥有 Windows Defender 时，Windows 10 是否需要防病毒软件？

• Windows Information Protection（WIP）自动保护分类文件

• 如何在Windows 10使用Network Sniffer Tool PktMon.exe

• 如何在Windows 10中生成WiFi History or WLAN Report

• Windows 10 创意者更新中 Windows Defender 的新功能

• 如何在Windows 10计算机上打开.aspx文件

• Picsart在Windows 10上提供Custom Stickers & Exclusive 3D Editing