Trend Micro OfficeScan XG conflicts with Malwarebytes Endpoint Security

Document created by rsullinger Employee on Aug 15, 2017Last modified by jyamada on Jan 23, 2019
Version 14Show Document
  • View in full screen mode

We've identified incidents where Trend Micro OfficeScan XG conflicts with Malwarebytes Endpoint Security. In some incidents, Trend Micro OfficeScan XG blocks installations, updates, and other operations related to Malwarebytes. Malwarebytes and Trend Micro will work side by side with the correct exclusions in place. To help prevent conflicts between Trend Micro OfficeScan XG and your Malwarebytes software, add mutual exclusions to the settings in both security software using the instructions below.

 

Set exclusions in Trend Micro

Please use the content below to add your Malwarebytes software to Trend Micro's exclusions.

 

  1. Open Trend Micro Office Scan XG.

 

   2. You will need to exclude our programs in each of the next 3 layers. Refer to Malwarebytes Endpoint Security exclusions list for more information.

 

   3. In Trend, navigate to Trusted Program List Settings and add the exclusions for our programs.

 

   4. Go to Predictive Machine Learning Settings and do the same. These will require you to use the SHA1 hash of the executable for the exclusion. 

 

   5. Finally, go to Behavior Monitoring Settings, then add the Malwarebytes files to the list of Approved Programs.

 

Set exclusions in Malwarebytes

Add Trend Micro OfficeScan XG to your Malwarebytes software's exclusions.

 

Here is a list of Trend Micro OfficeScan XG file paths you should exclude in your Malwarebytes software:

C:\Program Files (x86)\Trend Micro\*
C:\Program Files (x86)\Trend Micro\BM\TMBMSRV.exe
C:\Program Files\Trend Micro\*
C:\Program Files\Trend Micro\BM\TMBMSRV.exe
C:\ProgramData\Trend Micro\*
C:\Windows\system32\drivers\tmactmon.sys
C:\Windows\system32\drivers\tmcomm.sys
C:\Windows\system32\drivers\TMEBC64.sys
C:\Windows\system32\drivers\tmeevw.sys
C:\Windows\system32\drivers\tmevtmgr.sys
C:\Windows\system32\drivers\tmlwf.sys
C:\Windows\system32\drivers\tmnciesc.sys
C:\Windows\system32\drivers\TMUMH.sys
C:\Windows\system32\drivers\tmusa.sys
C:\Windows\system32\drivers\tmwfp.sys
C:\Windows\system32\tmumh\*
C:\Windows\sysWOW64\tmumh\*
C:\Windows\system32\DriverStore\FileRepository\*
C:\Windows\appcompat\Programs\Install\*
C:\Windows\INF\Perf_iCrcPerfMonMgr\*
C:\Windows\system32\log\*

 

Malwarebytes Endpoint Security

  1. Open the Malwarebytes Management Console.

  2. Click Policy.

  3. Double-click any policy you want to configure.

  4. Check the box next to Startup Delay, then enter 60 seconds.

  5. In the Ignore List tab, add the Trend Micro OfficeScan XG file paths.

  6. To edit additional policies, repeat steps 3 - 5.

 

For more information on adding exclusions in the Malwarebytes Management Console, refer to the article Add exclusions to the Malwarebytes Management Console.

 

Additional information

Attachments

    Outcomes