Antivirus recommendations for inSync/Endpoint client
Overview
Antivirus or third party encryption programs may sometimes lock actively used files or folders of other applications. Specifically anti-virus programs are known to lock files while running a real time or on-access scan.
If any such third party application locks inSync application files or folders which contain configuration or logs, it may result in corruption or unexpected behavior. Hence, Druva highly recommends you to add exclusions for inSync application and configuration paths.
Click the following links to view the antivirus recommendations for the respective component:
FAQs
- Why inSync directories should be excluded from antivirus scans?
- My antivirus application is reporting a malware in the inSync folder. What is the cause?
Why inSync directories should be excluded from antivirus scans?
Ideally, paths related to inSync server must not be scanned. Most antivirus applications lock the frequently accessed files to scan them. This may cause database corruption. When data is uploaded to the data folder, references for actual data are stored under database files. If an antivirus application locks the database files, inSync server may not be able to update the database causing loss of references.
In some scenarios, antivirus application tends to delete/quarantine the database/data/the database log files that are frequently accessed and modified, assuming them as malware activities. This leads to storage corruption.
To address such a situation, inSync has an inbuilt mechanism that reports antivirus scans via an alert. inSync uses detectav.exe utility to detect whether an antivirus application is scanning inSync folders. Even though detectav.exe is not a malware, some applications may report it as one.
My antivirus application is reporting a malware in the inSync folder. What is the cause?
Check if your antivirus application is reporting detectav.exe placed by inSync on all the inSync Server folders as malware. This file checks if the inSync Server binaries, configuration database, Storage path are being scanned by an anti-virus.
Antivirus Recommendations for inSync Cloud
In case of Cloud, there are three identities from where you need to set the exclusions.
- AD Connector Server
- Cloud Cache Server
| Antivirus Recommendations for AD Connector Server | |
| Folders to be excluded | C:\inSyncADConnector C:\Program Files\Druva |
| Processes to be excluded | inSyncADConnector.exe inSyncADConnectorCfg.exe inSyncADConnectorSVC.exe |
| Antivirus Recommendations for CloudCache Server | |
| Folders to be excluded | C:\Program Files\Druva C:\inSyncCacheServer Data folder Path (Contains the Data component configured on CloudCache Server) |
| Processes to be excluded | inSyncCacheServer.exe inSyncCacheServerSVC.exe |
Antivirus Recommendations for inSync Client
For inSync Client version 7.1.0 and below, please use the following list of exclusions:
|
|
On Windows |
On Mac |
On Linux |
|
Folders to be excluded |
C:\ProgramData\Druva\inSync4
C:\Program Files (x86)\Druva\inSync |
/Users//Library/Application Support/inSync /Data/Application/druva/insync/contents/resources/insync/contents.MacOS /Data/Application/druva/insync/contents/resources/insync/contents.MacOS
*The above processes are hidden, however, you can run "ls -al" in the terminal and see the process. |
/opt/Druva /home/<user name>/.inSync /home/<user name>/inSync Share |
|
Processes to be excluded |
inSync.exe:- C:\Program Files (x86)\Druva\inSync inSyncAgent.exe:- C:\Program Files (x86)\Druva\inSync inSyncCPHwnet64.exe:- C:\Program Files (x86)\Druva\inSync\amd64 inSyncUSyncer.exe:- C:\Program Files (x86)\Druva\inSync\amd64 inSyncUpgrade.exe:- C:\Program Files (x86)\Druva\inSync |
inSyncDecommission:- /Data/Application/druva/insync/contents/resources/insync/contents.MacOS inSync:- /Data/Application/druva/insync/contents/resources/insync/contents.MacOS The above processes are hidden, however, you can run "ls -al" in the terminal and see the process. |
inSync |
For inSync Client version 7.2.X onwards, please use the following list of exclusions:
|
|
On Windows |
On Mac |
On Linux |
|
Folders to be excluded |
C:\ProgramData\Druva\inSync4
C:\Program Files (x86)\Druva\inSync |
/Users//Library/Application Support/inSync /Data/Application/druva/insync/contents/resources/insync/contents.MacOS /Data/Application/druva/insync/contents/resources/insync/contents.MacOS
*The above processes are hidden, however, you can run "ls -al" in the terminal and see the process. |
/opt/Druva /home/<user name>/.inSync /home/<user name>/inSync Share |
|
Processes to be excluded |
inSync.exe:- C:\Program Files (x86)\Druva\inSync\7.5.0\amd64 inSyncAgent.exe:- C:\Program Files (x86)\Druva\inSync\7.5.0\amd64 inSyncCPHwnet64.exe:- C:\Program Files (x86)\Druva\inSync\7.5.0\amd64 inSyncUSyncer.exe:- C:\Program Files (x86)\Druva\inSync\7.5.0\amd64 inSyncUpgrade.exe:- C:\Program Files (x86)\Druva\inSync\7.5.0\amd64 |
inSyncDecommission:- /Data/Application/druva/insync/contents/resources/insync/contents.MacOS inSync:- /Data/Application/druva/insync/contents/resources/insync/contents.MacOS The above processes are hidden, however, you can run "ls -al" in the terminal and see the process. |
inSync |
For inSync Client version 7.5.1 and above,please use the following list of exclusions:
Please note inSync client 7.5.1 is 64 bit client.
|
|
On Windows |
On Mac |
On Linux |
|
Folders to be excluded |
C:\ProgramData\Druva\inSync4
|
This client version for MacOS has not been released yet. |
/opt/Druva /home/<user name>/.inSync /home/<user name>/inSync Share |
|
Processes to be excluded |
inSync.exe:- C:\ProgramFiles\Druva\inSync\7.5.1\amd64 inSyncAgent.exe:- C:\ProgramFiles\Druva\inSync\7.5.1\amd64 inSyncCPHwnet64.exe:- C:\ProgramFiles\Druva\inSync\7.5.1\amd64 inSyncUSyncer.exe:- C:\ProgramFiles\Druva\inSync\7.5.1\amd64 inSyncUpgrade.exe:- C:\ProgramFiles\Druva\inSync\7.5.1\amd64 |
This client version for MacOS has not been released yet. |
inSync |
For any further queries, contact Druva technical support.