Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  3. NetBackup™ Web UI Administrator's Guide
  5. Section X. Detection and reporting
  7. Malware scanning
  9. Perform a malware scan
  11. Assets by policy type
NetBackup™ Web UI Administrator's Guide

Assets by policy type

This procedure is not applicable for YARA scanning.

This topic describes the procedure for scanning NAS-Data-Protection backup images for malware. NetBackup supports the policy types for malware scanning: Standard, MS-Windows, NAS-Data-Protection, Nutanix-AHV, Hypervisor (Nutanix AHV), Hyper-V, Universal-Share, Cloud object store, VMware or Cloud.

To scan the supported assets by policy type, perform the following:

  1. On the left, click Detection and reporting > Malware detection.
  2. On the Malware detection page, click Scan for malware.
  3. In the Search by option, select Assets by policy type.
  4. From the Client/Asset table, select a Client/Asset to scan.
  5. Click Next.

    If the selected client in the previous step supports multiple policy types, you can select a single policy type for scanning.

  6. For the Start date/time and End date/time verify the date and the time range or update it.

    The scan is initiated for a maximum of 100 images.

  7. In the Scanner host pool, select the appropriate host pool name.
  8. In the Volume field, Select volume backed up for NAS devices.

    Note:

    Volume level filtering only fetches the top-level directories of the NAS-Data-Protection volume backup. Volume level filtering is applicable only if the top-level directory is a volume. In this case you have the option to select the individual backup images by using the Backup images option in the Search by option.

  9. From the Current infection status list select one of the following:

    • Not scanned

    • Not infected

    • Infection detected by malware scan

    • Infection detected by file hash search

    • All

    Note:

    For NAS-Data-Protection, any backup images that were created on the media server of earlier versions of NetBackup 10.4, select the All option for Current status of malware scan.

  10. Click Scan for malware.

    Warning:

    Scan is limited to only 100 images. Adjust the date range and try again.

  11. After the scan is initiated, the Scan status is displayed. The following are the status fields:

    • Not scanned

    • Not infected

    • Infected

    • Failed

      Note:

      Hover over the status to view the reason for the failed scan.

      Any backup images that fail validation are ignored. Malware scanning is supported for the backup images that are stored on storage with instant access capability and for the supported policy types only.

    • Pending

    • In progress

    • Aborted on detection of malware

More information is available on the malware scan status.

See View the malware scan status.

Feedback

Was this page helpful?
Previous

Scanning backup images

Next

Assets by workload type

Feedback

Was this page helpful?