Question & Answer
Question
After installing the Storage Insights Data Collector, Antivirus Software reported several executable (.exe) files as potential viruses.
The flagged executables are located under the Data Collector installation directory:
<data_collector_install_dir>\bin\
The affected files include:
• vmware.exe
• netapp_cdot.exe
• hp_3par.exe
• hitachi_vsp.exe
• hitachi_ops.exe
• emc_unity.exe
• pure_mx.exe
Why are these files being flagged?
Answer
The listed executable files are not malicious or vulnerable. However, they are currently unsigned binaries, which can cause certain antivirus and security scanning tools to flag them as suspicious or potentially vulnerable.
These executables are used by the Data Collector to communicate with and monitor third-party systems such as VMware and external storage platforms.
An APAR was opened to record the issue and the workaround. A permanent fix may be provided in the future.
IT47808: THIRD PARTY BINARIES ARE GETTING FLAGGED DURING SECURITY SCAN
https://www.ibm.com/support/pages/apar/IT47808
Workaround :
Until an official fix is released, you may use one of the following workarounds based on your environment:
1. If you do not plan to monitor third-party systems (such as NetApp, Hitachi, EMC, or VMware):
- You may safely remove the corresponding executable files from the Data Collector installation directory.
2. If you plan to monitor the respective third-party storage or VMware systems:
- Add the relevant executable files to the allow list / exception list of your antivirus or endpoint security software.
[{"Type":"MASTER","Line of Business":{"code":"LOB69","label":"Storage TPS"},"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SSQRB8","label":"IBM Storage Insights"},"ARM Category":[{"code":"a8m3p000000hBNVAA2","label":"Data Collector"}],"ARM Case Number":"","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":""}]
Was this topic helpful?
Document Information
Modified date:
13 January 2026
UID
ibm17256424