09-01-2017 , 06:13 AM
https://success.trendmicro.com/solution/1059565 Using the Trend Micro Anti-Threat Toolkit to analyze malware issues and clean infections
Updated: 10 Aug 2017 Product/Version: Core Protection Module 10.5 Platform: Windows 2003 Datacenter 64-bit
SUMMARY
Use the Trend Micro Anti-Threat Toolkit (ATTK) to analyze malware issues and clean infected computers.
DETAILS
EXPAND ALL
Clean infected computers
If Trend Micro product, ATTK scan and other Trend Micro anti-malware tools did not find or detect any malwares, do the procedure below.
Collect suspicious files and system information
Collect ransomware samples and system information on infected machine DETAILS
EXPAND ALL
Clean infected computers
Download the Anti-Threat Toolkit by clicking whether the infected computer has a connection to the Internet or not:
For computers with internet connection
Online Scan / Clean Tool (32-bit)
Online Scan / Clean Tool (64-bit)
For computers without internet connection
Offline Scan / Clean Tool (32-bit)
Offline Scan / Clean Tool (64-bit)
Read the Trend Micro License Agreement, then click I Accept and download the tool.
Click Save when the File Download window appears.
Select Desktop as the location of your download, then click Save .
Double-click the downloaded file to run it.
Click Scan Now when the Trend Micro Anti-Threat Toolkit window appears. : https://www.virustotal.com/#/file-analys...NDI0MjIwNg== No engines detected this file
SHA-256 386e8f786d34bec499ae3b3e371ef690a801e3805c0b8c7869bfc15927de9120
File name attk_ScanCleanOnline_gui_x64.exe
File size 26.9 MB 0 / 63
Last analysis 2017-09-01 05:03:26 UTC File Names
attk_ScanCleanOnline_gui_x64.exe
SupportWrapper
SupportWrapper.exe
Packers
F-PROT eval, maxorder, appended, UTF-8, Unicode, 7Z
Signature Info
Signature Verification
Signed file, valid signature
File Version Information
Copyright Copyright © 2017 Trend Micro Incorporated. All rights reserved.
Product Trend Micro HouseCall
Description Trend Micro Anti-Threat Toolkit
Original Name SupportWrapper.exe
Internal Name SupportWrapper
File Version 1.62.0.1175
Date Signed 5:55 AM 9/1/2017
Signers
Trend Micro, Inc.
VeriSign Class 3 Code Signing 2010 CA
VeriSign
Counter Signers
Symantec Time Stamping Services Signer - G4
Symantec Time Stamping Services CA - G2
Thawte Timestamping CA
Updated: 10 Aug 2017 Product/Version: Core Protection Module 10.5 Platform: Windows 2003 Datacenter 64-bit
SUMMARY
Use the Trend Micro Anti-Threat Toolkit (ATTK) to analyze malware issues and clean infected computers.
DETAILS
EXPAND ALL
Clean infected computers
If Trend Micro product, ATTK scan and other Trend Micro anti-malware tools did not find or detect any malwares, do the procedure below.
Collect suspicious files and system information
Collect ransomware samples and system information on infected machine DETAILS
EXPAND ALL
Clean infected computers
Download the Anti-Threat Toolkit by clicking whether the infected computer has a connection to the Internet or not:
For computers with internet connection
Online Scan / Clean Tool (32-bit)
Online Scan / Clean Tool (64-bit)
For computers without internet connection
Offline Scan / Clean Tool (32-bit)
Offline Scan / Clean Tool (64-bit)
Read the Trend Micro License Agreement, then click I Accept and download the tool.
Click Save when the File Download window appears.
Select Desktop as the location of your download, then click Save .
Double-click the downloaded file to run it.
Click Scan Now when the Trend Micro Anti-Threat Toolkit window appears. : https://www.virustotal.com/#/file-analys...NDI0MjIwNg== No engines detected this file
SHA-256 386e8f786d34bec499ae3b3e371ef690a801e3805c0b8c7869bfc15927de9120
File name attk_ScanCleanOnline_gui_x64.exe
File size 26.9 MB 0 / 63
Last analysis 2017-09-01 05:03:26 UTC File Names
attk_ScanCleanOnline_gui_x64.exe
SupportWrapper
SupportWrapper.exe
Packers
F-PROT eval, maxorder, appended, UTF-8, Unicode, 7Z
Signature Info
Signature Verification
Signed file, valid signature
File Version Information
Copyright Copyright © 2017 Trend Micro Incorporated. All rights reserved.
Product Trend Micro HouseCall
Description Trend Micro Anti-Threat Toolkit
Original Name SupportWrapper.exe
Internal Name SupportWrapper
File Version 1.62.0.1175
Date Signed 5:55 AM 9/1/2017
Signers
Trend Micro, Inc.
VeriSign Class 3 Code Signing 2010 CA
VeriSign
Counter Signers
Symantec Time Stamping Services Signer - G4
Symantec Time Stamping Services CA - G2
Thawte Timestamping CA