Jump to content


Recommended Posts

15 hours ago, Zamzamalakazam said:

Quarantine is actually a 'container' where MWB place any suspicious/false positive files from being used until the administrator/user released it. The basic understanding is something like that.

Owh ge Thanks! I try to search on it but I don't get the idea. Thanks again.

Link to post
Share on other sites

Hi @Zamzamalakazam, @Porthos is correct. Items stay in quarantine until you remove them. Quarantine items are stripped of their extension and encrypted. They pose no danger to the machine or your environment. Whether the detection is deleted or quarantined is decided by our Malware Research team and written into the signature itself. We recommend leaving them there just in case of a false positive from which you may need to restore the items, but if you wish to delete the items, you may. For MBES, this needs to be done from the endpoint itself, which you can script using GPO or similar. For MBEP, it can be done via the cloud console in the Quarantine section, check the box for one or more items in quarantine and then click delete.

Quarantine folder locations:
MBES with Anti-Malware through, quarantine is located in C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine
MBEP with Malwarebytes 3.1.8 is located in C:\ProgramData\Malwarebytes\MBAMService\Quarantine


Edited by djacobson
Clarification between MBES and MBEP
Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.