0
()

Learn how to use the Trend Micro Anti-Threat Toolkit (ATTK) to perform system forensic scans and clean the following infections:

  • General malware infection
  • Master boot record Infection
  • CIDOX/ ROVNIX infection
  • Rootkit infection
  • Zbot infection
  • Cryptolocker infection

EXPAND ALL

How to use Anti-Threat Toolkit to collect suspicious files, Ransomware samples and System Information

To collect suspicious files, Ransomware samples and System Information, do the following:

  1. Download the Anti-Threat Toolkit by clicking your operating system version below:

    Anti-Threat Toolkit for 32-bit systems

    Anti-Threat Toolkit for 64-bit systems

  2. Read the Trend Micro License Agreement. Once you click I Accept, the download will start.
  3. Log on to the computer that is possibly infected by a malware. Copy the Anti-Threat Toolkit into the infected computer.
  4. After copying the Anti-Threat Toolkit, right-click on the tool, then click Run as administrator.ATTK Collector
  5. Click Yes when the User Account Control window appears.
    A Command Prompt window will appear to show the system forensic analysis progress.CMD screen

    A browser window will appear after the analysis finishes.

  6. Click Proceed to send the information the tool collected to Trend Micro Technical Support. You will receive a temporary ID number that you can use when you contact Trend Micro Technical Support.Smart Protection Network (SPN) ID

    The Trend Micro Anti-Threat Toolkit folder will appear on the same folder where you ran the tool.

  7. Go to Trend Micro Anti-Threat Toolkit folder > Output.
    You will find a .ZIP file with the filename containing the timestamp and GUID.Time stamp and GUID
  8. Do either of the following:
    • If you have an existing case, send a copy of the .ZIP file together with the temporary ID number to the engineer who is handling your case.
    • If you do not have an existing case, send the .ZIP file to our Technical Support for analysis.
How to use Anti-Threat Toolkit to clean infected computers

To clean infected computers, do the following:

  1. Download the Anti-Threat Toolkit:
    For computers with Internet connection

    Online Scan / Clean Tool (32-bit)

    Online Scan / Clean Tool (64-bit)

    For computers without Internet connection

    Offline Scan / Clean Tool (32-bit)

    Offline Scan / Clean Tool (64-bit)

  2. Read the Trend Micro License Agreement. Once you click I Accept, the download will start.
  3. Log on to the computer that is infected by a malware. Copy the Anti-Threat Toolkit into the infected computer.
  4. After copying the Anti-Threat Toolkit, right-click on the tool and then click Run as administrator.
  5. Click Yes when the User Account Control window appears.
  6. Click Scan Now when the Trend Micro Anti-Threat Toolkit window appears.Click Scan Now

    The scan may take some time. The tool will scan your computer and list the threats it finds.Fix Problems

  7. The tool will show a summary of the scan. Click Fix Now to clean your computer.
  8. Click Close to close the Anti-Threat Toolkit after your computer has been cleaned.
  9. Click Proceed to send the information the tool collected to Trend Micro Technical Support.Proceed

    You will receive a temporary ID number that you can use when you contact Trend Micro Technical Support and a Trend Micro Anti-Threat Toolkit folder will appear on the same folder where you ran the tool.

  10. Go to Trend Micro Anti-Threat Toolkit folder > Output.
    You will find a .ZIP file with the filename containing the timestamp and GUID.Time Stamp and GUID
  11. Do either of the following if you still need help after you cleaned your computer:
    • If you have an existing case, send the .ZIP file together with the temporary ID number to the engineer who is handling your case.
    • If you do not have an existing case, send the .ZIP file to our Technical Support for analysis.

Source : Official Trend Micro Brand
Editor by : BEST Antivirus KBS Team

How useful was this post?

Click on a star to rate it!

Average rating / 5. Vote count:

No votes so far! Be the first to rate this post.

(Visited 3 times, 1 visits today)
Discover More help  How to add email address in Blocked Senders List (Trend Micro)