Exclude Malwarebytes and Trend Micro OfficeScan XG

Document created by rsullinger Employee on Aug 15, 2017Last modified by rsullinger Employee on Jul 13, 2018
Version 11Show Document
  • View in full screen mode

We've identified incidents where Trend Micro OfficeScan XG conflicts with Malwarebytes Endpoint Security and the Malwarebytes cloud platform.  In some incidents, Trend Micro OfficeScan XG blocks installations, updates, and other operations related to Malwarebytes. Malwarebytes and Trend Micro will work side by side with the correct exclusions in place. To help prevent conflicts between Trend Micro OfficeScan XG and your Malwarebytes software, add mutual exclusions to the settings in both security software using the instructions below.

 

Set exclusions in Trend Micro

Please use the content below to add your Malwarebytes software to Trend Micro's exclusions.

 

  1. Open Trend Micro Office Scan XG.

 

   2. You will need to exclude our programs in each of the next 3 layers. You can use these exclusions for the product you purchased:

 

   3. In Trend, navigate to Trusted Program List Settings and add the exclusions for our  programs.

 

   4. Go to Predictive Machine Learning Settings and do the same. These will require you to use the SHA1 hash of the executable for the exclusion. 

 

   5. Finally, go to Behavior Monitoring Settings, then add the Malwarebytes files to the list of Approved Programs.

 

 

Set exclusions in Malwarebytes

Add Trend Micro OfficeScan XG to your Malwarebytes software's exclusions.  This section has instructions for both Malwarebytes Endpoint Security and the cloud console.

 

Here is a list of Trend Micro OfficeScan XG file paths you should exclude in your Malwarebytes software:

C:\Program Files (x86)\Trend Micro\*
C:\Program Files (x86)\Trend Micro\BM\TMBMSRV.exe
C:\Program Files\Trend Micro\*
C:\Program Files\Trend Micro\BM\TMBMSRV.exe
C:\ProgramData\Trend Micro\*
C:\Windows\system32\drivers\tmactmon.sys
C:\Windows\system32\drivers\tmcomm.sys
C:\Windows\system32\drivers\TMEBC64.sys
C:\Windows\system32\drivers\tmeevw.sys
C:\Windows\system32\drivers\tmevtmgr.sys
C:\Windows\system32\drivers\tmlwf.sys
C:\Windows\system32\drivers\tmnciesc.sys
C:\Windows\system32\drivers\TMUMH.sys
C:\Windows\system32\drivers\tmusa.sys
C:\Windows\system32\drivers\tmwfp.sys
C:\Windows\system32\tmumh\*
C:\Windows\sysWOW64\tmumh\*
C:\Windows\system32\DriverStore\FileRepository\*
C:\Windows\appcompat\Programs\Install\*
C:\Windows\INF\Perf_iCrcPerfMonMgr\*
C:\Windows\system32\log\*

 

Malwarebytes Endpoint Security

  1. Open the Malwarebytes Management Console.

  2. Click Policy.

  3. Double-click any policy you want to configure.

  4. Check the box next to Startup Delay, then enter 60 seconds.

  5. In the Ignore List tab, add the Trend Micro OfficeScan XG file paths.

  6. To edit additional policies, repeat steps 3 - 5.

 

For more information on adding exclusions in the Malwarebytes Management Console, refer to the article Add exclusions to the Malwarebytes Management Console.

 

Malwarebytes cloud console

  1. Log in to the Malwarebytes cloud console.

  2. Click Settings > Exclusions.

  3. Click New, then add the Trend Micro OfficeScan XG file paths.

 

To see more detailed instructions for exclusions in the Malwarebytes cloud console, refer to the article Add exclusions to the Malwarebytes cloud console.

 

With mutual exclusions in place, your Malwarebytes software and Trend Micro OfficeScan XG should work alongside each other without conflicts.

 

Additional information

Attachments

    Outcomes