Excluding Security Agent Services and Processes in Third-Party Applications

The following tables list the process names and full file locations of Security Agent processes that you may need to exclude from third-party applications.

Table 1. Default Processes

Process

Description

Location

TmListen.exe

Receives commands and notifications from the Apex One server and facilitates communication from the Security Agent to the server

<Agent installation folder>\tmlisten.exe

NTRtScan.exe

Performs Real-time, Scheduled, and Manual Scan on Security Agents

<Agent installation folder>\ntrtscan.exe

TmPfw.exe

Provides packet level firewall, network virus scanning, and intrusion detection capabilities

<Agent installation folder>\TmPfw.exe

TMBMSRV.exe

Regulates access to external storage devices and prevents unauthorized changes to registry keys and processes

Note:

If this option is enabled, the Security Agent may prevent third-party products from installing successfully on endpoints. If you encounter this issue, you can temporarily disable the option and then re-enable it after the installation of the third-party product.

<%Program Files (x86) folder%>\Trend Micro\BM\TMBMSRV.exe

TmCCSF.exe

Performs Browser Exploit Prevention and memory scanning

<Agent installation folder>\CCSF\TmCCSF.exe

TmWSCSvc.exe

Reports security status of Apex One Security Agents to Security Center

<Agent installation folder>\TmWSCSvc.exe

Table 2. Extended Feature Processes

Process

Description

Location

DSAgent.exe

Monitors the transmission of sensitive data and controls access to devices

<%Windows directory%>\system32\dgagent\DSAGENT.exe

ATASAgent.exe

Advanced Managed Detection and Response tasks and communication

<%Program Files (x86) folder%>\Trend Micro\iService\iATAS\ATASAgent.exe

TMiACAgentSvc.exe

Trend Micro Application Control Service (Agent)

<%Program Files (x86) folder%>\Trend Micro\iService\iAC\ac_bin\TMiACAgentSvc.exe

ESEServiceShell.exe

Trend Micro Endpoint Sensor Engine Wrapper

<%Program Files (x86) folder%>\Trend Micro\iService\iES\ESE\ESEServiceShell.exe

ESClient.exe

Trend Micro Endpoint Sensor Service (Agent)

C:\Program Files (x86)\Trend Micro\iService\iES\ESE\ESClient.exe

iVPAgent.exe

Trend Micro Vulnerability Protection Service (Agent)

<%Program Files (x86) folder%>\Trend Micro\iService\iVP\iVPAgent.exe

Table 3. Additional Protected Processes

Process

Location

ShowMsg.exe

<%Windows directory%>\System32\ShowMsg.exe

TmSSClient.exe

<Agent installation folder>\TmSSClient.exe

LogServer.exe

<Agent installation folder>\Temp\LogServer\LogServer.exe

TmsaInstance64.exe

<Agent installation folder>\CCSF\module\BES\TmsaInstance64.exe

CNTAoSMgr.exe

<Agent installation folder>\CNTAoSMgr.exe

ESEFrameworkHost.exe

<%Program Files (x86) folder%>\Trend Micro\iService\iES\ESE\ESEFrameworkHost.exe