Signature Detection

You can configure default engines to scan restore points. To do this, perform the following steps:

  1. From the main menu, select Malware Detection > Signature Detection.
  2. Specify a detection engine:
  1. If you want to additionally scan restore points marked as Suspicious after guest indexing data scan or inline scan, select the Perform signature-based scan when malware event appears check box. In this case, a Scan Backup session will run automatically:
    • If malware activity is detected,  the Veeam Analyzer Service will create a new malware detection event and mark the restore point and the machine as Infected.
    • If malware activity is not detected, the Veeam Analyzer Service will create a new malware detection event with the Informative status. After that, you can mark a restore point and a machine as Clean. For more information, see Managing Malware Status.

To automatically mark a restore point and a machine as Clean, select the Mark backups as clean if no threats are detected by signature-based scan check box. In this case, a malware detection event with the Informative status will not be created.

Signature Detection 

Page updated 7/25/2025

Page content applies to build 13.0.0.4967