|
|
|
You can use the System Information Collector (SIC) tool to generate files to further help Trend Micro Consumer support in analyzing malware problems. Click below for instructions on how to:
|
| |
|
•
|
Generate System Logs
|
|
•
|
Collect Malware Samples
|
| |
|
Generate System Logs
|
| |
|
|
1.
|
Download the SIC Tool.
|
| |
|
|
2.
|
On the File Download window, click Save. The Save As window appears.
|
| |
|
|
3.
|
Click Desktop as the location and click Save.
|
| |
|
|
4.
|
Double-click the file to extract the tool.
Note: For help with extracting ZIP files, refer to Compressing and extracting a file using WinZip.
|
| |
|
|
5.
|
On your desktop, double-click SICWin.exe to run the SIC tool.
|
| |
|
| |
|
| |
|
|
6.
|
When the License Agreement window appears, click I Accept and then click Next.
|
| |
|
| |
|
| |
|
|
7.
|
When the Trend Micro SIC window appears, click Analyze. This will take a while.
|
| |
|
| |
|
| |
|
|
8.
|
When asked if you want to view the log file, click No and then click Exit.
|
| |
|
| |
|
| |
|
| |
A folder named SICLOG will be created on your desktop.
|
| |
|
| |
|
| |
|
|
9..
|
Double-click the SICLOG folder and look for the file SICLOGXXXXX.txt, where "X" represents numbers.
|
| |
|
| |
|
| |
|
|
10.
|
Send the file to Trend Micro Consumer Support for analysis.
|
| |
|
|
back to top
|
| |
|
|
Collect Malware Samples
|
| |
|
|
1.
|
Download the SIC Tool.
|
| |
|
|
2.
|
On the File Download window, click Save. The Save As window appears.
|
| |
|
|
3.
|
Click Desktop as the location and click Save.
|
| |
|
|
4.
|
Double-click the file to extract the tool.
Note: For help with extracting ZIP files, refer to Compressing and extracting a file using WinZip.
|
| |
|
|
5.
|
On your desktop, double-click SICWin.exe to run the SIC tool.
|
| |
|
| |
|
| |
|
|
6.
|
When the License Agreement window appears, click I Accept and then click Next.
|
| |
|
| |
|
| |
|
|
7.
|
When the Trend Micro SIC window appears, click Analyze. This will take a while.
|
| |
|
| |
|
| |
|
|
8.
|
Click Retrieve Files to start the collection of samples of uncleaned or suspected files.
|
| |
|
| |
|
| |
|
| |
The files will be listed in the right panel of the Select Files For Analysis window.
|
| |
|
| |
|
| |
|
|
9.
|
Click Compress and Retrieve files to zip all the listed files. This will take a while.
|
| |
|
| |
|
| |
|
|
10.
|
Click Done and a copy of the zip file named SUSPECT.ZIP will be saved on your desktop.
|
| |
|
| |
|
| |
|
|
11.
|
Send the zip file together with the SIC log to Trend Micro Consumer Support for further analysis.
|
| |
|
| |
|
| |
|
|
back to top
|
| |
|
After the procedure, the SIC tool logs the following information from the target machine:
|
| |
|
|
System Information (Operating system, Windows folder, Systems folder, etc.)
|
|
|
Network Connections (TCP/UDP connections and related programs)
|
|
|
Shared Folders (This feature is disabled by default)
|
|
|
Disk Drive(s); Master Boot Record(s) (MBR)
|
|
|
Programs that automatically run when the machine starts
|
|
|
Services (WinNT-based platforms only)
|
|
|
Active or running processes
|
|
|
Modules or libraries being used by the active processes
|
|
|
Installed AV products (OfficeScan, PC-cillin, and ServerProtect)
|
|
|
List of services found in the Registry
|
|
|
List of files found in the shared folders
|
|
|
List AUTORUN.INF files found in root drives
|
|
|
Retrieve ARP (Address Resolution Protocol) Table information
|
| |
|
|
Note: This solution entry also applies to the following products:
|
|
|
PC-cillin Internet Security - 2007
|
|
|
Trend Micro Internet Security for Dell - 16.6
|
|
|
PC-cillin Internet Security - 14.7 Dell
|