Quarantine allows you to isolate detected malicious or suspicious objects that cannot be cured from the rest of the system in case you need them. Curing algorithms are being constantly improved, therefore these objects may become curable after one of the updates.
You can view and manage the contents of Quarantine using the Quarantine section of the main window (see picture below).
The following types of files are stored in Quarantine:
1. | Temporary files, marked with icon. This is backup copies of infected and suspicious files, for which Cure action had been chosen. Also this type includes files deleted according to corresponding settings (Delete action) that alllows to restore file from it's copies if necessary; |
2. | Permanent files, marked with . This type include infected and suspicious files moved to Quarantine according to corresponding settings (Move action). As curing algorithms improve constantly, these files can be successfully cured later. |
Files of the first type are stored in Quarantine for a limited period of time (it is specified in settings). When storage period expires, they are removed from Quarantine and permanently deleted. Also they are deleted (overwritten with new files), if there is no more free space left in Quarantine. Files of the second type can be deleted only by user intervention (Delete action).
By default Quarantine is located at .drweb subdirectory of user home directory.
Viewing objects in Quarantine
To proceed to Quarantine window select Quarantine option in the menu bar of Control Desk.

Figure 8. Quarantine window.
At the top of the Quarantine window general statistics on objects stored in Quarantine and amount of disc space allocated to them is displayed.
In the middle of the Quarantine window the table with the list of objects in the Quarantine is displayed:
Column
|
Description
|
Quarantine
|
Contains the path and file name.
|
Status
|
Contains information about the threat (for example, name or type of the threat).
|
Original path
|
Contains path to the directory from which the certain file was moved to Quarantine
|
Date and Time
|
Contains the date and time when the object was moved to Quarantine.
|
Type
|
Specifies whether the object is stored in the system or user Quarantine (there is one common system Quarantine and separate ones for each user).
|
Processing objects in Quarantine
1. | To apply an action to one or several objects in Quarantine select them from the list (hold the SHIFT key to select several objects in a row, or the CTRL key to select a few scattered objects). |
2. | Perform one of the following actions: |
• | press Restore button to move the quarantined file back to the place in the file system where it was moved from; |
• | press an arrow near the Restore button and select Restore to action to move the file from Quarantine to the directory of your choice; |
• | press an arrow near the Restore button and select Remove action to delete the file from Quarantine. |

|
When you restore file from Quarantine, Dr.Web Anti-Virus for Linux writes recovery path into .exclude file. During the next scan, the file located at this path will be skipped.
|
Adjusting Quarantine parameters
1. | To open a settings section of Dr.Web Anti-Virus for Linux Control Desk select Setting item from the Tools menu. |

Figure 9. Quarantine settings.
3. | Select a Save copies of deleted files check box to enable preservation of deleted infected files in Quarantine. Deselect this check box to allow permanent deletion of infected objects and disable a possibility to restore them from Quarantine. Quarantined copies of deleted files have icon. |
4. | Specify limits for a storage period for objects in Quarantine and for a size of Quarantine itself. |

|
When you specify a size of the Quarantine, it does not reserve any disk space. So even if you allow Quarantine to use 100% of free space on the partition, current size of the Quarantine will be equal to the total size of quarantined files.
|
|