Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. NetBackup™ Security and Encryption Guide
  3. Malware detection
  4. Actions for malware scanned images
NetBackup™ Security and Encryption Guide

Actions for malware scanned images

Once you scan the backup images for malware detection, a tabular data is available on the Malware detection home page. See View the malware scan status.

For each backup image, the following quick configuration are available:

Expire all copies

  1. On the left, select Detection and reporting > Malware detection
  2. For the desired scan result, from the right, select Expire all copies
  3. Confirm to expire all the copies of the selected backup image.

View infected files

  1. On the left, select Detection and reporting > Malware detection
  2. For the desired scan result, select View infected files

    Note:

    This option is available only for infected files.

  3. In the Infected files table, search or the desired file, if needed.
  4. If needed, click Export list.

    Note:

    A list of infected files from the selected malware scanning result is exported in .csv format. The file name is of following format: backupid_infected_files_timestamp.csv

Export infected files list

  1. On the left, select Detection and reporting > Malware detection
  2. For the desired malware affected , from the right, select Export Infected files list

    Note:

    .csv file contains backup time and names of the infected files.

Cancel malware scan

  1. On the left, select Detection and reporting > Malware detection
  2. For desired client, from actions menu, click Cancel malware scan.

    Note:

    You can cancel the malware scan only from in progress and pending states.

  3. Click Cancel scan to confirm.

    Note:

    The status changes to Cancellation in progress.

Rescan image

  1. On the left, select Detection and reporting > Malware detection
  2. For desired client, from actions menu, click Rescan image .
  3. Click Rescan to confirm.
  4. In case of bulk rescan, when you select one or more image with different or empty scanner host pool, you need to select a new scanner host pool.
    • Click Rescan image

    • From the Select a malware scanner host pool pop-up select a new scan host.

      Note:

      New scan host pool is applicable for all the selected images for this rescan.

    • Click Rescan to confirm.

Feedback

Was this page helpful?
Previous

View the malware scan status

Next

Recover from malware-affected images (clients protected by policies)

Feedback

Was this page helpful?