This file was created in one of the backup chunk folders of our deduplicated disk backups on a media server and was flagged by antivirus. The file no longer exists and I’m certain this was created (and subsequently deleted) by Commvault to script some sort of storage/disk operation but was curious if anyone could confirm. Thanks.
Hi Jeff,
As far as I know, these files are not being written by Commvault.
If they no longer exist it is likely because the jobs that wrote those chunks may have met retention and aged out and have been deleted (assuming it is within a Chunk folder).
I would highly recommend confirming you have enabled ransomware protection on the Media agents that access the disk library as per https://documentation.commvault.com/2023e/essential/enabling_ransomware_protection_on_mediaagent.html
And also confirming in Library properties for the disk library you have this option selected on the “Mount Paths” tab:
We also advise against scanning Disk library mount paths with any AV, but I would set up exclusions in AV only once you confirm the above settings are all enabled. https://documentation.commvault.com/2023e/essential/antivirus_exclusions_for_windows.html
Let me know what you see for the above settings or if you have further questions.
Regards,
Michael
Reply
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.