View Issue Details
|ID||Project||Category||View Status||Date Submitted||Last Update|
|0002705||5 - Closed w/o Action||General||public||2018-05-06 16:54||2018-07-23 22:56|
|Priority||normal||Severity||minor||Reproducibility||have not tried|
|Status||closed||Resolution||unable to reproduce|
|Platform||Intel i7-5960X||OS||Windows 10 Professional x64||OS Version||16299|
|Summary||0002705: Logbook: Acronis TrueImage accuses Logbook.EXE of being Ransomware|
I was debugging an issue in the Logbook, and running the Logbook under the Visual Studio debugger. I use Acronis True Image for backups, and Acronis has added Acronis Active Protection to the backup program as a suite.
Today, Acronis Active Protection opened up and alerted me thta it thought HRDLogbook.EXE was ransomware. It enumerated the files in the settings area as a set of files that the program was suspiciously accessing. I've attached a screenshot of tihs UI.
It's pretty clear that AAP is over-sensitive; it listed several well-known applications as suspect ransomware, including WinDBG and Windows own command-line shell (CMD.EXE).
It seems like we'll need to pursue white-listing with Acronis.
|Tags||No tags attached.|
|2018-05-06 16:54||K7ZCZ||New Issue|
|2018-05-06 16:54||K7ZCZ||File Added: Screenshot 2018-05-06 14.37.40.png|
|2018-05-08 13:54||K7ZCZ||Relationship added||related to 0002666|
|2018-06-28 09:39||K7ZCZ||Assigned To||=> K7ZCZ|
|2018-06-28 09:39||K7ZCZ||Status||new => resolved|
|2018-06-28 09:39||K7ZCZ||Resolution||open => unable to reproduce|
|2018-06-28 09:39||K7ZCZ||Module||(select) => Logbook|
|2018-06-28 09:39||K7ZCZ||Sub-Module||(select) => General|
|2018-06-28 09:39||K7ZCZ||Note Added: 0005516|
|2018-07-12 14:37||K7ZCZ||Status||resolved => closed|
|2018-07-12 14:37||K7ZCZ||Resolution||unable to reproduce => fixed|
|2018-07-23 22:56||WA9PIE||Resolution||fixed => unable to reproduce|
|2018-07-23 22:56||WA9PIE||Description Updated||View Revisions|
|2018-07-23 22:56||WA9PIE||Project||3 - Current Dev List => 5 - Closed w/o Action|