Jump to content

Best Practices for Quarantine Files


Recommended Posts

Hello everyone,

I am pretty new to Malwarebytes Nebula. At the moment we have the Incident Response subscription with around 2460 devices. I am still learning the tool so I was wondering what do you guys normally do with quarantine files found in hosts. Assuming that the files are indeed PUPs or Malwares do you delete them or just leave it quarantine? 

Deleting quarantine files from each hosts seems like a challenging tasks due to the size of how many devices we have. Thank you!

Link to post
Share on other sites

I would highly suggest that you open a support ticket with Business Support to work with them directly.

Submit  Business Support Ticket  

It can take a few days for a response as ticket volume is high at this time.

As a business customer, if you're having issues affecting your business then I would  highly suggest you create a Business Support Ticket

Link to post
Share on other sites

This is a general statement...

A Fortnight period is long enough to determine the justification of quarantined items.  Usually False Positives are identified and corrected within a couple of days.  Thus a Fortnight is more than enough to vet the justification and subsequently the quarantined items can be deleted.

Edited by David H. Lipman
Edited for content, clarity, spelling and/or grammar
Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.