Tranquil IT Forum

Good morning,

We have observed that the Antivirus solutions installed at our clients' sites tend to prevent the WAPT agent or WAPT Setup installer from functioning correctly.

We have listed some paths to include in the exclusion paths of your Antivirus management console:
We would also like you to contribute to this exclusion list via this topic.

If you have encountered the problem and have found working exclusion paths for the agent/agent installation, please feel free to reply to this message.

Sincerely,

Alexander

Hello,

Referring to the morning post titled "WAPT 1.5 vs Antivirus" viewtopic.php?f=10&t=1134, here are the elements we have integrated to unlock the situation on a Trend Micro Officescan XG.

# Detection 1: The detected malware is Mal_Mlwr-13 https://www.trendmicro.com/vinfo/us/thr ... al_Mlwr-13
Solution: https://success.trendmicro.com/solution/000019446 to be applied to all scans on Scan Exclusion List (Directories) c:\wapt


# Detection 2: Unauthorized file encryption C:\Windows\Temp\is-L7N1A.tmp\waptagent.tmp (triggered by "c:\windows\temp\waptagent.exe")
Solution: http://docs.trendmicro.com/en-us/enterp ... ing-1.aspx on c:\windows\temp\waptagent.exe

# Detection 3: waptconsole.exe
Solution: http://docs.trendmicro.com/all/ent/offi ... -List.html to be applied to all workstations on c:\wapt\waptconsole.exe

Hello,

on Node32, during agent installation via GPO:

Object URI: file:///C:/Program Files (x86)/wapt/waptservice/win32/is-2ISAL.tmp
Threat name: Win32/NSSM.D
Process name: C:\Windows\Temp\is-0INQQ.tmp\waptagent.tmp

Therefore, the threat was simply excluded.