How can I recover quarantined items from quarantine manually?
This article applies to the following F-Secure products: Client Security, Email and Server Security, Server Security, PSB Email and Server Security, PSB Server Security and Computer Protection.
If you need to recover an item, such as a false positive, from the quarantine, use the fsdumpqrt tool for this. It helps you to get sample files from the quarantine.
The tool reads all the files in the AV quarantine, unpacks them from the quarantine and dumps them into an encrypted ZIP file named "malware_samples.zip". The default password for the encrypted zip file is "infected", and you can change it if you want to.