If Kaspersky Security detects malicious code in a file while scanning a protected virtual machine, the application blocks the file, assigns the Infected status to it, places a copy of it in Backup, and attempts to disinfect the file.
Backup storage is a list of backup copies of files that have been deleted or modified by the program during the disinfection process. Backup copy is a file copy created by the application before disinfection or deletion of this file. Backup copies of files are stored in a special format and do not pose a threat.
On detecting malicious code in a file that is part of the Windows Store application, Kaspersky Security immediately deletes the file without copying it to Backup. You can restore the integrity of the Windows Store application using tools of the Microsoft Windows operating system.
If file disinfection succeeds, the status of the backup copy of the file changes to Disinfected. You can restore the file from its disinfected backup copy to its original folder.
In Kaspersky Security Center, in Backup there is a consolidated list of files that were placed in Backup by Kaspersky Lab applications on devices. You can view the properties of files that are in Backups on protected virtual machines, run a virus scan of files in Backup, and delete files from Backup through the Administration Console. Kaspersky Security Center does not copy files from Backups to the Administration Server. Instead, all the files reside in Backups on protected virtual machines. Files are restored on the protected virtual machine.
When the application is removed, Backup files are removed from the protected virtual machine.
You can also manually delete the backup copy of either a restored or unrestored file.