Antimalware scan of backups

To prevent the recovery of infected files, configure a backup scanning plan and ensure that the backups do not contain malware.

Antimalware scan of backups is available if the Scan Service component is installed with the Cyber Protect Management Server. For more information, see Scan Service.

Backup scanning plans are supported for Entire machine and Disk/volume backups of Windows machines. Only volumes with the NTFS file system and GPT or MBR partitioning are scanned.

The following backup storages are supported:

Cloud storage
Network folder
Local folder

Only agents installed on the same workload can access backups in a local folder.

For security and performance reasons, we recommend that you use a dedicated machine for scanning purposes. This machine must have access to all scanned backups.

The backups that you select for scanning can be in one of the following states:

Not scanned
No malware
Malware detected

To check the status, in the Cyber Protect web console, go to Backup storage > Locations, and then check the Status column. The Backup scanning details widget on the Dashboard > Overview tab also provides information about this status.

Limitations

Recovery points with Continuous data protection (CDP) backups are not scanned. Only non-CDP recovery points of the selected backup set are scanned. For more information about Continuous data protection, see Continuous data protection (CDP).
When you perform safe recovery of an Entire machine backup, the data in the CDP recovery point is not automatically recovered. To recover this data, run a Files/folders recovery.