Trend Micro antivirus modified Windows registry by blunder — How to correct
Craze Micro antivirus has fastened a untrue optimistic affecting its Apex Just one endpoint protection remedy that caused Microsoft Edge updates to be tagged as malware and the Home windows registry to be improperly modified.
According to hundreds of consumer experiences that started off streaming in previously this week on the firm’s forum and on social networks, the wrong constructive affected update packages saved in the Microsoft Edge set up folder.
As people further more revealed, the Trend Micro Apex One particular flagged the browser updates as Virus/Malware: TROJ_FRS.VSNTE222 and Virus/Malware: TSC_GENCLEAN.
Take care of and workaround offered
The cybersecurity software package maker resolved the challenge and published an advisory urging clients to update their items and ensure that the Sensible Scan Agent Sample and Wise Scan Pattern are current to the hottest version.
“Craze Micro is aware of a detection issue that was documented before currently about a prospective bogus good with Microsoft Edge and a Pattern Micro Intelligent Scan sample,” the business stated.
“The pattern has been current to get rid of the detection in issue and we are carrying out an investigation on the root lead to of the problem. Far more information can be presented following the investigation is total.
“Remember to validate that both of those the Good Scan Agent Pattern is 17.541.00 or later AND Good Scan Pattern is 21474.139.09 or later which resolves the situation.”
Trend Micro also shared a temporary workaround if the pattern update failed to fix the difficulty which needs introducing multiple Microsoft Edge folders to Apex One’s exclusion checklist.
Restoring registry alterations
While the correct furnished by Pattern Micro for the bogus positive can simply be applied by updating Apex One, some consumers also described that this issue also led to Home windows registry entries being altered after the agent’s Destruction Cleanup tool was executed.
“It was claimed that some buyers noticed some registry modifications as a consequence of the detection dependent on their endpoint cleansing configuration settings,” Development Micro added.
This involves influenced end users to restore backups manufactured by the Apex One agent via a course of action that will help revert the improvements built by Damage Cleanup.
The enterprise also shared a script that would assistance system admins to automate the registry restoration method with the assistance of group procedures or other enterprise scripting resources.
However, you ought to initially take a look at this automation resource before jogging it throughout the full ecosystem.
“Remember to be aware that directors seeking to use this script as a batch file or via other strategy should really very first cautiously evaluate the script and take a look at in their natural environment before any common advancement,” Pattern Micro stated.
“Consumers who are continuing to have difficulties are encouraged to call their approved Pattern Micro agent for more help.”