virus alert with Export Settings

While trying to Export Settings from 0xDBE I got this virus alert from Trend Micro Officescan Agent. The executable has been removed.
More info: http://www.trendmicro.com/vinfo/us/threat-encyclopedia/search/unauthorized%20file%20encryption

Any idea what causes this?

P.S. just tried again with 32-bit executable 0xdbe.exe and that worked.



Attachment(s):
0xdbe_virus_1.PNG
0xdbe_virus.PNG
2 comments

We utilize Trend Micro Officescan within our environment as well. Unfortunately from what I understand the full path to the executable needs to be added to the trusted program list in order to white list it.

Not so bad... except with each update of a Jetbrains product changes the installation path and according to our Windows/IT group Trend does not offer a way to wildcard paths as it increases the vulnerability.

So with each new update, I submit a request to have the new path added.

 

Application Name

Application Root

Relative path to binary (32bit)

Relative path to binary (64bit)

DataGrip

C:\Program Files (x86)\JetBrains\DataGrip 2016.1.1

\bin\datagrip.exe

\bin\datagrip64.exe

IntelliJ IDEA

C:\Program Files (x86)\JetBrains\IntelliJ IDEA 2016.1

\bin\idea.exe

\bin\idea64.exe

PhpStorm

C:\Program Files (x86)\JetBrains\PhpStorm 2016.1.1

\bin\PhpStorm.exe

\bin\PhpStorm64.exe

With the new Jetbrains Toolbox App, this is more of a pain as the applications are installed under the users appdata directory which would be unrealistic to maintain.

0

Hello Tim,

Unfortunately currently it is not possible to configure installation location for the tools in Toolbox app. Please vote for related request in our tracker: https://youtrack.jetbrains.com/issue/ALL-652 .

When using usual Windows .exe installer there is an option to choose installation location for the IDE.

0

Please sign in to leave a comment.