Secure Restore

Secure restore allows you to check restore points for malware activity before restoring the machine to the production environment. To scan restore points, Veeam Backup & Replication uses the following engines:

• Veeam Threat Hunter — a signature-based scan engine. For more information, see Veeam Threat Hunter for Secure Restore.
• Third-party antivirus software. For more information, see Antivirus Scan for Secure Restore.
• YARA — a rule-based scan engine. For more information, see YARA Scan for Secure Restore.

Supported Scenarios

Secure restore is available for the following operations:

• Instant Recovery
• Entire VM Restore
• Restore to Microsoft Azure
• Restore to Amazon EC2
• Restore to Google Compute Engine
• Disk Export

Consider the following:

• You can perform secure restore only for Microsoft Windows machines.

• Veeam Backup & Replication does not perform malware scan for disks or volumes that cannot be mounted to the mount server. For example, Storage Spaces disks or ReFS volumes (if ReFS is not supported by the mount server OS) are skipped from the scan and restored in a regular way.

In This Section

• How Secure Restore Works
• Veeam Threat Hunter for Secure Restore
• Antivirus Scan for Secure Restore
• YARA Scan for Secure Restore