General recommendations for virus scanner exclusions working with NetBackup


Processes locked, or poor performance during backups/restores/duplications.


Antivirus or soft firewall programs which may interfere with NetBackup function(s) by blocking process interactions and preventing components to execute correctly.


While this cannot be a definitive list due to the different methods of antivirus products available; please add exclusions in your antivirus product for the following commonly blocked items:

[ I ] Exclude on the NetBackup client:

  1. bpbkar32.exe
  2. bpfis.exe
  3. SSM.exe (on NetBackup 6.x and earlier clients)
  4. _vxfivspcachefile_*.* or*.vsp (on NetBackup 6.x and earlier clients)
  5. C:\ProgramFiles\VERITAS\<Netbackup>\online_util\fi_cntl (This directory is empty when no snapshot exists but gets populated when a cache file is created)
  6. Directory called NBU_VSP_Cache (on NetBackup 6.x and earlier clients)
  7. Check with antivirus that the archive bit is not changed after a scan as this will effect the incremental backup based on archive bit
  8. For performance, do not scan files during backup as this would slow the backup.
  9. When using the Accelerator feature, exclude the following files on the root of each drive:
    1. *:\VxCJInfo.dat
    2. *:\VxCJDelete.dat
    3. *:\VxCJMon.dat
  10. Exclude the NetBackup Accelerator track journals located in the subdirectories of VERITAS\NetBackup\track\*


[ II ] Exclude on the NetBackup Master/Media servers:

  1. Same as client above (remember they are also netbackup clients)
  2. Exclude the Netbackup and Volmgr directories.
  3. If possible, set the scanner to scan inbound traffic only, this will help to avoid any performance/degradation for the backup when it takes place. The virus scanner will see files as being opened when NetBackup accesses them during a job. By setting the scanner to scan inbound traffic the scan will not take place during a backup.

However, the performance hit is usually negligible when scanning inbound and outbound traffic. A lot of this depends on the specification of the client.


[ III ] The Antivirus software should have the following directories and processes excluded from scanning:

A. Directories to Exclude:

For a 32-bit machine:

  1. ...\VERITAS\NetBackup (and all subdirectories)
  2. ...\VERITAS\Volmgr (and all subdirectories)
  3. ...\VERITAS\NetBackupDB\WIN32
  4. C:\Program Files\VERITAS\VxPBX

For a 64-bit machine:

  1. ...\VERITAS\NetBackup (and all subdirectories)
  2. ...\VERITAS\Volmgr (and all subdirectories)
  3. ...\VERITAS\NetBackupDB\WIN64
  4. C:\Program Files (x86)\VERITAS\VxPBX

B. Processes to Exclude (Windows notation):

  1. dbsrv11.exe - Adaptive Server Anywhere - VERITAS_NB Service (on NetBackup 7.0, 7.1, 7.5 ,  dbsrv9.exe on 6.x,  dbsrv12.exe on 7.6 )
  2. nbemm.exe - NetBackup Enterprise Media Manager Service
  3. nbjm.exe - NetBackup Job Manager Service
  4. nbnos.exe - NetBackup Notification Service (on NetBackup 6.x and earlier)
  5. nbpem.exe - NetBackup Policy Execution Manager Service
  6. nbrb.exe - NetBackup Resource Broker Service
  7. nbsl.exe - NetBackup Service Layer Service
  8. nbsvcmon.exe - NetBackup Service Monitor Service
  9. nbvault.exe - NetBackup Vault Manager Service
  10. vmd.exe - NetBackup Volume Manager Service
  11. bpcompatd.exe - NetBackup Compatibility Service
  12. bpinetd.exe - NetBackup Client Service
  13. bpdbm.exe - NetBackup Database Manager Service
  14. ltid.exe - NetBackup Device Manager Service
  15. bprd.exe - NetBackup Request Manager Service
  16. bpjobd.exe - NetBackup Job Daemon
  17. bpbkar32.exe - NetBackup Backup Engine
  18. bpbrm.exe - NetBackup Backup and Restore Manager
  19. bpcd.exe - NetBackup Connection Daemon
  20. bptm.exe - NetBackup Tape Manager
  21. bpdm.exe - NetBackup Disk Manager
  22. pbx_exchange.exe - Veritas (Symantec) Private Branch Exchange Service

C. Antivirus Exclusions for Unix:

Veritas has some general recommendations for Antivirus exclusions on a Master and Media servers. For specific exclusion details, please contact the Antivirus Software vendor.

On a Master or Media server, it is recommended that you exclude the following directories from scans:

( Essentially, everything under <install>/openv )

<DSU storage path>
<DSSU storage path>
<Other storage LUNS>

Terms of use for this information are found in Legal Notices.



Did this article answer your question or resolve your issue?


Did this article save you the trouble of contacting technical support?


How can we make this article more helpful?

Email Address (Optional)