This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 1%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJD%3C/text%3E%3C/svg%3E)
We have all our devices enrolled in MEM, and are using Defender for endpoint. On 2 devices we see reoccurring malware files. Security Center shows the files as blocked / prevented. But Defender does not seem to be able to quarantine the files. Nor remove them;
A full system scan does not clean up the files either.
How can we clean these files, without manually deleting them from the pc?
You may consider walking the user through an offline scan: https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/microsoft-defender-offline
Many organizations also reimage systems with persistent issues.