How to whitelist a process/service that calls cscript and then a tmp file
I have a service m_agent_service.exe which frequently runs C:\Windows\SysWOW64\cscript.exe with arguments such as C:\Windows\TEMP\m_a3832.tmp. The execution of the tmp files is being blocked, logged and alerted at the console. Is there a way to whitelist this scenario? Thank you in advance.
Re: How to whitelist a process/service that calls cscript and then a tmp file
How are the *.tmp files created in the first place? Is it a process that belongs to the Meraki Systems Manager Agent product? If so can you not add the binary that creates these files as a Trusted Updater so the *.tmp file is added to the Whitelist and permitted to execute?
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.
Community Help Hub
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.