Exclude detections in Malwarebytes on Windows devices

Document created by dshull Employee on May 10, 2017Last modified by jgolomb on May 1, 2019
Version 15Show Document
  • View in full screen mode

Malwarebytes for Windows can block items, including websites, applications, and files, that are not inherently malicious. The most common non-malicious detections are Potentially Unwanted Programs (PUPs) and Potentially Unwanted Modifications (PUMs).


There may be occasions when Malwarebytes for Windows flags an item you trust as malicious. Add the item to your exclusions to stop Malwarebytes for Windows from blocking an item you know and trust.


Note that when you add a detected item to Malwarebytes Exclusions, it is omitted form future scans and protection events.


In Malwarebytes for Windows, there are four types of exclusions you can add:

  • Exclude a File or Folder
  • Exclude a Website
  • Exclude an Application that Connects to the Internet
  • Exclude a Previously Detected Exploit


For more information about the exclusion types listed above, refer to the Malwarebytes for Windows User Guide, Exclusions section.


Malwarebytes for Windows exclusions

  1. Open Malwarebytes for Windows.

  2. Click Settings, then click the Exclusions tab.
    Image of Settings of Exclusions tab in Malwarebytes on Windows device.

  3. To add an item to the exclusion list, click Add Exclusion.

  4. Select the type of exclusion you want to add.

  1. Click Next, then follow the next prompt to add your exclusion and confirm your changes.


Exclude a File or Folder

Excluding a file or folder instructs Malwarebytes for Windows to ignore the file's location.  If you exclude a folder, every file and folder inside is also excluded.

  1. Click Exclude a File or Folder, then click Next.

  2. Click Select Files or Select Folder.
  3. Choose the file or folder you wish to exclude, then click Open.

  4. Under How to Exclude, choose how you would like to exclude the file or folder.
    • Exclude from detection as malware, ransomware or potentially unwanted item
    • Exclude from detection as malware or potentially unwanted item only
    • Exclude from detection as ransomware only


  1. Click OK to confirm your changes.

Exclude a Website

Add a website or IP address to your exclusions.  When you are adding a website, add the website with and without the world wide web (www.) prefix.


  1. Click Exclude a Website, then click Next.

  2. Click Exclude a domain or Exclude an IP Address.

  3. Enter the URL or IP Address as shown in the example.

  4. Click OK to confirm your changes.

Exclude an Application that Connects to the Internet

To prevent Malwarebytes for Windows from blocking an application you trust, exclude the application executable.

  1. Click Exclude an Application that Connects to the Internet, then click Next.

  2. To find and exclude the application, click Browse....

  3. Choose the application executable you wish to exclude, then click Open.

  4. Click OK to confirm your changes.

Exclude a Previously Detected Exploit

When you are excluding an exploit, Malwarebytes for Windows uses a code called an MD5 hash.  An MD5 hash is unique and helps Malwarebytes for Windows identify the specific application that Exploit Protection blocked.

  1. Click Exclude a Previously Detected Exploit, then click Next.

  2. Click Select....
  3. Select an exploit to ignore, then click OK.

  1. Under Application, enter the name of the application you are excluding.

  2. Click OK to confirm your changes.


Once an exclusion is added to Malwarebytes for Windows, the exclusion begins to take effect immediately.


Watch this video to see How to Add Exclusions in Malwarebytes for Windows.


Additional information