book
Article ID: KB0077204
calendar_today
Updated On:
Description
On Microsoft Windows, Symantec Antivirus quarantines the sbd.exe and sb-config.exe applications during application launch for testing and debugging when run from a StreamBase Plugin installation into an existing Eclipse IDE as described in the Help documentation page:
TIBCO StreamBase Documentation > Installation Guide > StreamBase Studio Eclipse Update Site
Symantec "Risk Details" describe it as SONAR.SuspScript!g3 in the category Application Heuristic.
Resolution
When we run Symantec's on-demand scanner it does not flag any StreamBase executable as problematic. This is a false match and neither the StreamBase Plugin nor the StreamBase utilities carry the
SONAR.SuspScript!g3 risk.
The full
StreamBase Studio install does not have this conflict with Symantec Antivirus so you may use that instead. Using the full StreamBase Studio and not the plugin is the preferred solution.
If you must run the StreamBase Studio Eclipse Plugin and not StreamBase Studio and see this behavior from Symantec, the options are:
A. Follow the "REMOVING A FILE FROM QUARANTINE" steps from here:
https://www.symantec.com/security-center/writeup/2017-032722-1016-99B. Make sure the StreamBase Server is installed into the default location at
C:\tibco\sb-cep\ and not elsewhere on your system.
C. Disable Symantec Antivirus while running StreamBase applications from Eclipse.
Issue/Introduction
How to prevent Symantec from blocking StreamBase features