This Critical Patch resolves the following issue(s):
When upgrading the Security Agent from OfficeScan XG Service Pack 1 to Apex One, a Windows event log is generated for the warning "Unable to update. The program version contains known vulnerabilities. Update aborted." This issue occurs when the Damage Cleanup Engine version in Apex One is older but the timestamp is later than the one in OfficeScan XG Service Pack 1.
Solution
This Critical Patch updates the Damage Cleanup Engine to resolve this issue.
After upgrading the Security Agent, the "Multi-Session Process Management Service stopped working" error message appears.
Solution
This Critical Patch updates the Apex One Security Agent program to resolve this issue.
On the Log Maintenance screen, the maximum number of days to delete logs is 31.
Solution
This Critical Patch updates the Apex One server program to increase the maximum to 90 days.
On endpoints running Windows 10 21H2 (build 19044), the system is unable to install the Endpoint Sensor module properly.
Solution
This Critical Patch resolves this issue.
On the Real-time Scan Settings screen in the Apex One web console, selecting the "Apply scan exclusion settings to all scan types" checkbox may result in clearing the "Exclude directories where Trend Micro products are installed" checkbox on the settings screen of other scan types.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
After upgrading Apex One to build 10064 or 10071, the status for off-premises agents connected through an Edge Relay server become offline and disconnected.
Solution
This Critical Patch updates the Apex One agent program to resolve this issue.
Note: If you have applied Critical Patch 10064 or 10071 on the Apex One server and off-premises agent endpoints and the agent connection status issue persists, set the off-premises agents to connect to the Apex One server without using an Edge Relay server to obtain the new agent modules and settings.
If Critical Patch 10064 or 10071 is not applied, you can apply Critical Patch 10101 to resolve the agent connection status issue without additional steps.
The following enhancements are included in this Critical Patch:
This Critical Patch enhances the message integrity checking process in Apex One to improve system protection.
This Critical Patch provides the setting to stop the system from creating the "Trend Micro Apex One Listener" inbound firewall rule in Windows when the Security Agent starts.
Procedure
To configure this setting, do the following:
This Critical Patch enhances the Permission Assignment component in the Apex One server program to improve product security.
A. Files for Current Issue(s) ------------------------------------------------------------------- Filename Build Number ------------------------------ ------------ Apex One\PCCSRV\Admin\Utility\EdgeServer\*.* Apex One\PCCSRV\Admin\Utility\SQL\*.* Apex One\PCCSRV\Pccnt\Disk1\*.* Apex One\PCCSRV ------------------------------------------------------------------- autopcc.exe 14.0.0.10101 autopcc.msg * autopccp.exe 14.0.0.10101 cgiresutf8.dll 14.0.0.10101 cgishare.dll 14.0.0.10101 cpprest142_2_10.dll * datfhs.dll 14.0.0.10101 dzip32.dll 3.0.0.15 flowcontrol.dll 14.0.0.10101 libcrypto-1_1.dll 1.1.1.12 libcurl.dll 7.78.0.0 libnetctrl.dll 14.0.0.10101 libssl-1_1.dll 1.1.1.12 loadhttp.dll 14.0.0.10101 microsoft.web.administration.dll 10.0.14393.0 ofcpfwcommon.dll 14.0.0.10101 ofcshare.dll 14.0.0.10101 ofcsvcconfig.exe 14.0.0.10101 ofcupd.exe 14.0.0.10101 ofc_loadhttp.dll 14.0.0.10101 osf_iproduct.xml * pccwfwmo.dll 14.0.0.10101 readme.htm * setcgitimeout.exe 14.0.0.10101 sqlite3.dll * svcmgr.dll 14.0.0.10101 svrsetupscloudtool.exe 14.0.0.10101 svrsvcsetup.exe 14.0.0.10101 svrsvcsetup_64x.exe 14.0.0.10101 svrunirc.dll 14.0.0.10101 timestring.dll 14.0.0.10101 timestring_64x.dll 14.0.0.10101 tmcfwapi.dll 5.83.0.1070 tmicfgapi.dll 1.11.0.1012 tmnotify.dll 1.5.0.2001 Apex One\PCCSRV\ ------------------------------------------------------------------- ofcpipc.dll 14.0.0.10101 zlibwapi.dll 1.2.11.1002 vsapi32.dll 12.500.0.1004 endpointbasecamp.exe 1.0.0.1129 agentsdk.dll 6.2.0.5101 Apex One\PCCSRV\Admin ------------------------------------------------------------------- vsapi32.dll 12.500.0.1004 vsapi64.dll 12.500.0.1004 Apex One\PCCSRV\Admin\ ------------------------------------------------------------------- tmgriffin.ptn * tmxfalcon.cat * tmxfalcon.cfg * tsc.exe 7.5.0.1178 tsc64.exe 7.5.0.1178 Apex One\PCCSRV\Admin\Utility\ClientPackager ------------------------------------------------------------------- vsapi32.dll 12.500.0.1004 Apex One\PCCSRV\Admin\Utility\EdgeServer ------------------------------------------------------------------- 0x0409.ini * data1.cab * data1.hdr * data2.cab * issetup.dll 22.0.0.330 layout.bin * setup.exe 14.0.10101.0 setup.ini * setup.inx * Apex One\PCCSRV\Admin\Utility\EdgeServer\issetupprerequisites ------------------------------------------------------------------- microsoft .net framework 4.6.1 full.prq * microsoft visual c++ 2019 redistributable package (x64).prq * microsoft visual c++ 2019 redistributable package (x86).prq * Apex One\PCCSRV\Admin\Utility\EdgeServer\issetupprerequisites\{506a420f-1f74-4371-9e84-eff365724daa} ------------------------------------------------------------------- ndp461-kb3102436-x86-x64-allos-enu.exe 4.6.1055.0 Apex One\PCCSRV\Admin\Utility\EdgeServer\issetupprerequisites\{a0e9e4ba-9e03-4aa5-a830-1afd6f6b3c5e} ------------------------------------------------------------------- vc_redist.x86.exe 14.27.29112.0 Apex One\PCCSRV\Admin\Utility\EdgeServer\issetupprerequisites\{cffa0b3e-6d78-4fb9-8564-ef72fe7c0c2c} ------------------------------------------------------------------- vc_redist.x64.exe 14.27.29112.0 Apex One\PCCSRV\Admin\Utility\PLM\ ------------------------------------------------------------------- plmsetup.exe 2.5.5120.0 Apex One\PCCSRV\Admin\Utility\SQL ------------------------------------------------------------------- dotnetfx461.exe 4.6.1055.0 installcfgfile.ini * libcrypto-1_1.dll 1.1.1.12 libsqldatabaseupgrade.dll 14.0.0.10101 libssl-1_1.dll 1.1.1.12 ofcsqlsetup.ini * oscedbt.exe 14.0.0.10101 setschemaver.bat * setupsqlexpress.bat * sqlschemaver.ini * sqlschemaver.ini.new * sqltxfr.chm * sqltxfr.exe 14.0.0.10101 timestring.dll 14.0.0.10101 tmnotify.dll 1.5.0.2001 uninstallcfgfile.ini * upgradesqlschema.bat * userauthchk.exe 14.0.0.10101 zlib.dll 1.31.0.1708 Apex One\PCCSRV\Admin\Utility\SQL\upgrade ------------------------------------------------------------------- libmssqldb.dacpac * libmssqldb.dll 13.0.0.0 libmssqldbazure.dacpac * libmssqldbazure.dll 13.0.0.0 placeholder.txt * Apex One\PCCSRV\Admin\Utility\SQL\upgrade\10.91.1619 ------------------------------------------------------------------- 10.91.1619-superlab-libmssqldb.dacpac * master.dacpac * placeholder.txt * preupdate.sql * Apex One\PCCSRV\Admin\Utility\SQL\upgrade\10.92.1038 ------------------------------------------------------------------- 10.92.1038-ib-libmssqldb.dacpac * master.dacpac * placeholder.txt * Apex One\PCCSRV\Admin\Utility\SQL\upgrade\10.93.1026 ------------------------------------------------------------------- 10.93.1026-eb-libmssqldb.dacpac * master.dacpac * placeholder.txt * preupdate.sql * Apex One\PCCSRV\Admin\Utility\SQL\upgrade\11.0.1028 ------------------------------------------------------------------- 11.0.1028-gm-libmssqldb.dacpac * master.dacpac * placeholder.txt * preupdate.sql * Apex One\PCCSRV\Admin\Utility\SQL\upgrade\11.0.2799 ------------------------------------------------------------------- 11.0.2799-ib-libmssqldb.dacpac * master.dacpac * placeholder.txt * Apex One\PCCSRV\Admin\Utility\SQL\upgrade\11.0.2849 ------------------------------------------------------------------- 11.0.2849-eb-libmssqldb.dacpac * master.dacpac * placeholder.txt * Apex One\PCCSRV\Admin\Utility\SQL\upgrade\11.0.2995 ------------------------------------------------------------------- 11.0.2995-gm-libmssqldb.dacpac * master.dacpac * placeholder.txt * Apex One\PCCSRV\Admin\Utility\SQL\upgrade\11.0.4150 ------------------------------------------------------------------- 11.0.4150-gm-libmssqldb.dacpac * master.dacpac * placeholder.txt * Apex One\PCCSRV\Admin\Utility\SQL\upgrade\11.95.1084 ------------------------------------------------------------------- 11.95.1084-superlab-libmssqldb.dacpac * placeholder.txt * Apex One\PCCSRV\Admin\Utility\SQL\upgrade\11.96.1004 ------------------------------------------------------------------- 11.96.1004-ib-libmssqldb.dacpac * placeholder.txt * Apex One\PCCSRV\Admin\Utility\SQL\upgrade\11.97.1033 ------------------------------------------------------------------- 11.97.1033-eb-libmssqldb.dacpac * placeholder.txt * Apex One\PCCSRV\Admin\Utility\SQL\upgrade\12.0.1222 ------------------------------------------------------------------- 12.0.1222-gm-libmssqldb.dacpac * placeholder.txt * Apex One\PCCSRV\Admin\Utility\SQL\upgrade\12.0.1406 ------------------------------------------------------------------- 12.0.1406-gm-libmssqldb.dacpac * placeholder.txt * Apex One\PCCSRV\Admin\Utility\VSEncrypt ------------------------------------------------------------------- vsapi32.dll 12.500.0.1004 Apex One\PCCSRV\Admin\Utility\iServicePackage\OSF_Extension\Client\x64\ ------------------------------------------------------------------- osfext_iacclient_x64.dll 3.0.0.3083 osfext_iatasclient_x64.dll 1.7.0.1064 osfext_iesclient_x64.dll 3.5.0.1215 osfext_ivpclient_x64.dll 3.0.0.2725 Apex One\PCCSRV\Admin\Utility\iServicePackage\OSF_Extension\Client\x86\ ------------------------------------------------------------------- osfext_iacclient.dll 3.0.0.3083 osfext_iatasclient.dll 1.7.0.1064 osfext_iesclient.dll 3.5.0.1215 osfext_ivpclient.dll 3.0.0.2725 Apex One\PCCSRV\Admin\Utility\iServicePackage\OSF_Extension\Server\iAC\ ------------------------------------------------------------------- osfext_iaccmagent.dll 3.0.0.3083 osfext_iacmasterservice.dll 3.0.0.3083 Apex One\PCCSRV\Admin\Utility\iServicePackage\OSF_Extension\Server\iAC\x64\ ------------------------------------------------------------------- osfext_iaccmagent.dll 3.0.0.3083 osfext_iacmasterservice.dll 3.0.0.3083 Apex One\PCCSRV\Admin\Utility\iServicePackage\OSF_Extension\Server\iATAS\ ------------------------------------------------------------------- osfext_iatascmagent.dll 1.7.0.1064 osfext_iatasmasterservice.dll 1.7.0.1064 Apex One\PCCSRV\Admin\Utility\iServicePackage\OSF_Extension\Server\iATAS\x64\ ------------------------------------------------------------------- osfext_iatascmagent.dll 1.7.0.1064 osfext_iatasmasterservice.dll 1.7.0.1064 Apex One\PCCSRV\Admin\Utility\iServicePackage\OSF_Extension\Server\iES\ ------------------------------------------------------------------- osfext_iescmagent.dll 3.0.0.1651 osfext_iesmasterservice.dll 3.0.0.1651 Apex One\PCCSRV\Admin\Utility\iServicePackage\OSF_Extension\Server\iES\x64\ ------------------------------------------------------------------- osfext_iescmagent.dll 3.0.0.1651 osfext_iesmasterservice.dll 3.0.0.1651 Apex One\PCCSRV\Admin\Utility\iServicePackage\OSF_Extension\Server\iVP\ ------------------------------------------------------------------- osfext_ivpcmagent.dll 3.0.0.2725 osfext_ivpmasterservice.dll 3.0.0.2725 Apex One\PCCSRV\Admin\Utility\iServicePackage\OSF_Extension\Server\iVP\x64\ ------------------------------------------------------------------- osfext_ivpcmagent.dll 3.0.0.2725 osfext_ivpmasterservice.dll 3.0.0.2725 Apex One\PCCSRV\CmAgent ------------------------------------------------------------------- productui.zip * Apex One\PCCSRV\Download\Engine ------------------------------------------------------------------- bmservice_x32.sig * bmservice_x32.zip * bmservice_x64.sig * bmservice_x64.zip * bmdriver_x32.sig * bmdriver_x32.zip * bmdriver_x64.sig * bmdriver_x64.zip * engv_amd64_ntkd_21570.sig * engv_amd64_ntkd_21570.zip * eng_ntkd_21570.sig * eng_ntkd_21570.zip * Apex One\PCCSRV\Download\Engine\ ------------------------------------------------------------------- falcon32.sig * falcon32.zip * falcon64.sig * falcon64.zip * xhldr_x64.sig * xhldr_x64.zip * xhldr_x86.sig * xhldr_x86.zip * atse32.sig * atse32.zip * atse64.sig * atse64.zip * tsc.sig * tsc.zip * tsc64.sig * tsc64.zip * tmebc32.sig * tmebc32.zip * tmebc64.sig * tmebc64.zip * Apex One\PCCSRV\Download\Pattern\ ------------------------------------------------------------------- tmumhv2.zip * falconcfg.sig * falconcfg.zip * tmgriffin.sig * tmgriffin.zip * tmgd.sig * tmgd.zip * tmgd64.sig * tmgd64.zip * tmbmlop.sig * tmbmlop.zip * tmbmlop64.sig * tmbmlop64.zip * trendxv.sig * trendxv.zip * Apex One\PCCSRV\Download\Product\ ------------------------------------------------------------------- dlplite.sig * dlplite.zip 6.2.5115 dlplite_3rdparty.sig * dlplite_3rdparty.zip * dlplite_3rdparty_x64.sig * dlplite_3rdparty_x64.zip * dlplite_common.sig * dlplite_common.zip 6.2.5115 dlplite_common_x64.sig * dlplite_common_x64.zip 6.2.5115 dlplite_x64.sig * dlplite_x64.zip 6.2.5115 libdlppatchagent.sig * libdlppatchagent.zip * libdlppatchagent_64x.sig * libdlppatchagent_64x.zip * Apex One\PCCSRV\Download\engine\ssapi32_v6\ ------------------------------------------------------------------- ssapi32.sig * ssapi32.zip * Apex One\PCCSRV\Download\engine\ssapi64_v6\ ------------------------------------------------------------------- ssapi64.sig * ssapi64.zip * ------------------------------------------------------------------- Apex One\PCCSRV\Engine vsapi32.dll 12.500.0.1004 tmamsiprovider.dll 8.53.0.1128 tmsysevt.dll 8.53.0.1128 Apex One\PCCSRV\Engine\ ------------------------------------------------------------------- saegiscounters.man * tmaegissysevt.dll 2.98.0.1768 tmbmcli.dll 2.98.0.1768 tmbmsrv.exe 2.98.0.1768 tmcomeng.dll 2.98.0.1768 tmengdrv.dll 2.98.0.1768 tmpem.dll 2.98.0.1768 tmwlutil.dll 2.98.0.1768 tmxfalcon.dll 2.2.0.1111 tmcfwapi.dll 5.83.0.1070 tmhash.dll 5.83.0.1070 tmpfw.exe 5.83.0.1070 tmpfwapi.dll 5.83.0.1070 tmpfwrul.dll 5.83.0.1070 atse32.dll 21.570.0.1004 ssapi32.dll 6.2.0.4056 Apex One\PCCSRV\Engine\CCSF\TrxHandler\ ------------------------------------------------------------------- trxhandler.dll 1.2.0.1001 Apex One\PCCSRV\Engine\X64\ ------------------------------------------------------------------- saegiscounters.man * tmaegissysevt.dll 2.98.0.1768 tmbmcli.dll 2.98.0.1768 tmbmsrv.exe 2.98.0.1768 tmcomeng.dll 2.98.0.1768 tmengdrv.dll 2.98.0.1768 tmpem.dll 2.98.0.1768 tmwlutil.dll 2.98.0.1768 tmxfalcon.dll 2.2.0.1111 tmcfwapi.dll 5.83.0.1070 tmhash.dll 5.83.0.1070 tmpfw.exe 5.83.0.1070 tmpfwapi.dll 5.83.0.1070 tmpfwrul.dll 5.83.0.1070 atse64.dll 21.570.0.1004 tsc64.exe 7.5.0.1178 ssapi64.dll 6.2.0.4056 Apex One\PCCSRV\Engine\X64\CCSF\TrxHandler\ ------------------------------------------------------------------- trxhandler.dll 1.2.0.1001 Apex One\PCCSRV\Engine\x64 ------------------------------------------------------------------- vsapi64.dll 12.500.0.1004 tmamsiprovider64.dll 8.53.0.1128 tmsysevt.dll 8.53.0.1128 Apex One\PCCSRV\LWCS ------------------------------------------------------------------- aucfg.ini * au_wrs.exe 3.1.0.2059 build.exe 2.86.0.4002 bwlistmgmt.exe 3.1.0.2059 bwlistsearch.exe 3.1.0.2059 cccaupdate.exe 3.1.0.2059 cert5.db * ciuas32.dll 1.0.0.2075 ciussi32.dll 2.0.0.2074 icrcauapi.dll 2.5.0.1115 libbwlistfilter.dll 3.1.0.2059 libcrypto-1_1.dll 1.1.1.12 libcurl.dll 7.79.1.0 liblwtpciu32.dll 1.0.0.1005 libssl-1_1.dll 1.1.1.12 lwcsctrl.exe 3.1.0.2059 lwcsservice.exe 3.1.0.2059 migratebwlist.exe 3.1.0.2059 patch.exe 2.86.0.4002 patchbld.dll 12.21.0.0 patchw32.dll 12.22.0.0 pcre.dll * perflwcsperfmonmgr.dll 3.1.0.2059 perflwcsperfmonmgr.ini * placeholder.txt * sym_perflwcsperfmonmgr.h * tmufeng.dll 5.0.0.1001 tmupdate.dll 2.86.0.4002 x500.db * zlib1.dll 1.2.4.0 Apex One\PCCSRV\PccNT\Drv ------------------------------------------------------------------- tmel.cat * tmel.inf * tmel.sys 1.6.0.1071 tmcomm.cat * tmcomm.inf * tmcomm.sys 8.20.0.1048 Apex One\PCCSRV\PccNT\Drv\ ------------------------------------------------------------------- tmebc.cat * tmebc.inf * tmebc32.sys 1.5.0.1045 Apex One\PCCSRV\PccNT\Drv\x64 ------------------------------------------------------------------- tmel.cat * tmel.inf * tmel.sys 1.6.0.1071 tmcomm.cat * tmcomm.inf * tmcomm.sys 8.20.0.1048 Apex One\PCCSRV\PccNT\Drv\x64\ ------------------------------------------------------------------- tmebc.cat * tmebc.inf * tmebc64.sys 1.5.0.1045 Apex One\PCCSRV\Pccnt\ ------------------------------------------------------------------- aoshtml.zip * aoshtml.zip.cat * Apex One\PCCSRV\Pccnt\Common ------------------------------------------------------------------- osfext_iacclient.dll 3.0.0.3083 osfext_iatasclient.dll 1.7.0.1064 osfext_iesclient.dll 3.5.0.1215 osfext_ivpclient.dll 3.0.0.2725 crc0filter.dll 2.83.0.1048 icrchdler.dll 2.83.0.1048 libcrypto-1_1.dll 1.1.1.12 libcurl.dll 7.79.1.0 libssl-1_1.dll 1.1.1.12 salperfcounters.man * tmopcfg.dll 5.1.0.1082 tmopcfscan.dll 5.1.0.1082 tmopctl.dll 5.1.0.1082 tmopdbg.dll 5.1.0.1082 tmoppecertpin.dll 5.1.0.1062 tmoppeevts.dll 5.1.0.1082 tmoppehosf.dll 5.1.0.1082 tmoppepdp.dll 5.1.0.1062 tmoppesal.dll 5.1.0.1082 tmoppessf.dll 5.1.0.1062 tmoppeurlf.dll 5.1.0.1082 tmoppevs.dll 5.1.0.1082 tmopphdns.dll 5.1.0.1062 tmopphhttp.dll 5.1.0.1082 tmopphhttp2.dll 5.1.0.1082 tmopphpop3.dll 5.1.0.1082 tmopphsmtp.dll 5.1.0.1082 tmopphsocks.dll 5.1.0.1082 tmopphsvrhello.dll 5.1.0.1062 tmopplgadp.dll 5.1.0.1082 tmopsent.dll 5.1.0.1082 tmopsmhttp.dll 5.1.0.1082 tmopsmmail.dll 5.1.0.1082 tmopsmproxy.dll 5.1.0.1082 tmopsmsvrhello.dll 5.1.0.1062 tmosprey.reg * urlfperfcounters.man * Apex One\PCCSRV\Pccnt\Common\ ------------------------------------------------------------------- tmcfwapi.dll 5.83.0.1070 tmfphcex.exe 5.83.0.1070 tmhash.dll 5.83.0.1070 tmpfw.exe 5.83.0.1070 tmpfwapi.dll 5.83.0.1070 tmpfwctl.dll 5.83.0.1070 tmpfwctl_xp.dll 5.83.0.1070 tmpfwrul.dll 5.83.0.1070 tmwfpapi.dll 5.83.0.1070 tmeectv.dll 3.5.0.1017 tmeesent.dll 3.5.0.1017 Apex One\PCCSRV\Pccnt\Disk1 ------------------------------------------------------------------- 0x0409.ini * data1.cab * data1.hdr * data2.cab * install.exe 6.70.0.0 issetup.dll 22.0.0.330 layout.bin * setup.ini * setup.inx * setup.iss * Apex One\PCCSRV\Pccnt\Drv ------------------------------------------------------------------- tmactmon.cat * tmactmon.inf * tmactmon.sys 2.98.0.1763 tmevtmgr.cat * tmevtmgr.inf * tmevtmgr.sys 2.98.0.1763 tmetw.man * tmfilter.cat * tmfilter.sys 12.500.0.1004 tmpcw.man * tmpreflt.inf * tmpreflt.sys 21.570.0.1004 tmxpflt.inf * tmxpflt.sys 21.570.0.1004 vsapint.inf * vsapint.sys 21.570.0.1004 tmusa.cat * tmusa.inf * tmusa.sys 5.1.0.1010 Apex One\PCCSRV\Pccnt\Drv\ ------------------------------------------------------------------- tmnciesc.cat * tmnciesc.inf * tmnciesc.sys 3.0.0.1074 tmlwf.cat * tmlwf.inf * tmlwf.sys 5.83.0.1066 tmwfp.cat * tmwfp.inf * tmwfp.sys 5.83.0.1079 tmlwfins.exe 5.83.0.1066 tmwfpins.exe 5.83.0.1079 tmeevw.cat * tmeevw.inf * tmeevw.sys 3.5.0.1017 Apex One\PCCSRV\Pccnt\Drv\X64 ------------------------------------------------------------------- tmactmon.cat * tmactmon.inf * tmactmon.sys 2.98.0.1763 tmevtmgr.cat * tmevtmgr.inf * tmevtmgr.sys 2.98.0.1763 tmetw.man * tmfilter.cat * tmpcw.man * tmpreflt.inf * tmpreflt.sys 21.570.0.1004 tmxpflt.inf * tmxpflt.sys 21.570.0.1004 vsapint.inf * vsapint.sys 21.570.0.1004 tmusa.cat * tmusa.inf * tmusa.sys 5.1.0.1010 Apex One\PCCSRV\Pccnt\Drv\X64\ ------------------------------------------------------------------- tmnciesc.cat * tmnciesc.inf * tmnciesc.sys 3.0.0.1074 tmlwf.cat * tmlwf.inf * tmlwf.sys 5.83.0.1066 tmwfp.cat * tmwfp.inf * tmwfp.sys 5.83.0.1079 tmlwfins.exe 5.83.0.1066 tmwfpins.exe 5.83.0.1079 tmeevw.cat * tmeevw.inf * tmeevw.sys 3.5.0.1017 Apex One\PCCSRV\Pccnt\Win64\X64 ------------------------------------------------------------------- osfext_iacclient_x64.dll 3.0.0.3083 osfext_iatasclient_x64.dll 1.7.0.1064 osfext_iesclient_x64.dll 3.5.0.1215 osfext_ivpclient_x64.dll 3.0.0.2725 crc0filter.dll 2.83.0.1048 icrchdler.dll 2.83.0.1048 libcrypto-1_1-x64.dll 1.1.1.12 libcurl.dll 7.79.1.0 libssl-1_1-x64.dll 1.1.1.12 salperfcounters.man * tmopcfg.dll 5.1.0.1082 tmopcfscan.dll 5.1.0.1082 tmopctl.dll 5.1.0.1082 tmopdbg.dll 5.1.0.1082 tmoppecertpin.dll 5.1.0.1062 tmoppeevts.dll 5.1.0.1082 tmoppehosf.dll 5.1.0.1082 tmoppepdp.dll 5.1.0.1062 tmoppesal.dll 5.1.0.1082 tmoppessf.dll 5.1.0.1062 tmoppeurlf.dll 5.1.0.1082 tmoppevs.dll 5.1.0.1082 tmopphdns.dll 5.1.0.1062 tmopphhttp.dll 5.1.0.1082 tmopphhttp2.dll 5.1.0.1082 tmopphpop3.dll 5.1.0.1082 tmopphsmtp.dll 5.1.0.1082 tmopphsocks.dll 5.1.0.1082 tmopphsvrhello.dll 5.1.0.1062 tmopplgadp.dll 5.1.0.1082 tmopsent.dll 5.1.0.1082 tmopsmhttp.dll 5.1.0.1082 tmopsmmail.dll 5.1.0.1082 tmopsmproxy.dll 5.1.0.1082 tmopsmsvrhello.dll 5.1.0.1062 urlfperfcounters.man * Apex One\PCCSRV\Pccnt\Win64\X64\ ------------------------------------------------------------------- tmcfwapi.dll 5.83.0.1070 tmfphcex.exe 5.83.0.1070 tmhash.dll 5.83.0.1070 tmpfw.exe 5.83.0.1070 tmpfwapi.dll 5.83.0.1070 tmpfwctl.dll 5.83.0.1070 tmpfwctl_xp.dll 5.83.0.1070 tmpfwrul.dll 5.83.0.1070 tmwfpapi.dll 5.83.0.1070 tmeectv.dll 3.5.0.1017 tmeesent.dll 3.5.0.1017 Apex One\PCCSRV\Private\AuthorStore ------------------------------------------------------------------- rbauserprofile.ini * trendauth.xml * trendauthdef.xml * trendclnpermissiondef.payload * Apex One\PCCSRV\SRS ------------------------------------------------------------------- libapricotlog.dll 3.1.0.2059 libcrypto-1_1.dll 1.1.1.12 libcurl.dll 7.79.1.0 libssl-1_1.dll 1.1.1.12 makecert.exe 10.0.17134.12 placeholder.txt * relayrulehandler.dll 3.1.0.2059 relayruleperfcounter.dll 3.1.0.2059 relayserviceperfcounter.dll 3.1.0.2059 srscli.exe 3.1.0.2059 srservice.exe 3.1.0.2059 zlib1.dll 1.2.4.0 Apex One\PCCSRV\WSS ------------------------------------------------------------------- aucfg.ini * au_frs.exe 3.1.0.2059 bsdiff.exe * build.exe 2.86.0.4002 cert5.db * ciuas32.dll 1.0.0.2075 ciussi32.dll 2.0.0.2074 cpuctrl.exe 3.1.0.2059 genbfdiff.exe 3.1.0.2059 gencrcdiff.exe 3.1.0.2059 icrcauapi.dll 2.5.0.1115 icrcservice.exe 3.1.0.2059 liblwtpciu32.dll 1.0.0.1005 makebf.exe 3.1.0.2059 makecert.exe 10.0.17134.12 patch.exe 2.86.0.4002 patchbld.dll 12.21.0.0 patchw32.dll 12.22.0.0 perfwssperfmonmgr.dll 3.1.0.2059 perfwssperfmonmgr.ini * placeholder.txt * spsc.dll 2.7.0.1098 spscserverapi.dll 2.7.0.1098 sym_perfwssperfmonmgr.h * tmupdate.dll 2.86.0.4002 unzip.exe * vsapi32.dll 9.800.0.1009 x500.db * Apex One\PCCSRV\WSS\spsc\bin ------------------------------------------------------------------- activeindex.exe 2.7.0.1098 attributetool.exe 2.7.0.1098 bfgen.exe 2.7.0.1098 bsdiffgen.exe 2.7.0.1098 cpuctrl.exe 2.7.0.1098 crcdiffgen.exe 2.7.0.1098 crczdiffgen.exe 2.7.0.1098 crczdiffgenfromcrcz.exe 2.7.0.1098 crczgen.exe 2.7.0.1098 crczmerge.exe 2.7.0.1098 dbintegrity.exe 2.7.0.1098 fullmarkhelper.exe 2.7.0.1098 icrcauapi.dll 2.7.0.1098 importmanager.exe 2.7.0.1098 loglevelsetter.exe 2.7.0.1098 ptncheck.exe 2.7.0.1098 ptnclean.exe 2.7.0.1098 rwconfig.py * spsc.dll 2.7.0.1098 spscserverapi.dll 2.7.0.1098 switchdb.exe 2.7.0.1098 tbldiffgen.exe 2.7.0.1098 tblmodifier.exe 2.7.0.1098 updatepattern.exe 2.7.0.1098 Apex One\PCCSRV\WSS\spsc\lib ------------------------------------------------------------------- placeholder.txt * Apex One\PCCSRV\Web\Service ------------------------------------------------------------------- vsapi32.dll 12.500.0.1004 vsapi64.dll 12.500.0.1004 Apex One\PCCSRV\Web_OSCE\Web\CGI ------------------------------------------------------------------- vsapi32.dll 12.500.0.1004 Apex One\PCCSRV\Web_OSCE\Web_Console\CGI ------------------------------------------------------------------- vsapi32.dll 12.500.0.1004 Apex One\PCCSRV\Web_OSCE\Web_Console\RemoteInstallCGI ------------------------------------------------------------------- vsapi32.dll 12.500.0.1004 vsapi64.dll 12.500.0.1004 Apex One\PCCSRV\Web_OSCE\osf\bin ------------------------------------------------------------------- cgiresutf8.dll 14.0.0.10101 liblogclient4net.dll 14.0.0.10101 libosfcmdhdlradapter64.dll 14.0.0.10101 libosfdata.dll 14.0.0.10101 libosfutilhelper.dll 14.0.0.10101 libosfverifylogincookie64.dll 14.0.0.10101 libosfwebconfighelper.dll 14.0.0.10101 libosfwebsvchandler.dll 14.0.0.10101 libutilcommon.dll 14.0.0.10101 microsoft.practices.enterpriselibrary.transientfaulthandling.dll6.0.1304.0 microsoft.web.administration.dll 6.1.7601.17514 newtonsoft.json.dll 10.0.2.20802 osfwebservices.dll 14.0.0.10101 osf_datalayer.dll 14.0.0.10101 system.net.http.formatting.dll 5.2.30128.0 system.web.http.dll 5.2.30128.0 system.web.http.webhost.dll 5.2.30128.0 timestring_64x.dll 14.0.0.10101 Apex One\PCCSRV\admin ------------------------------------------------------------------- build.exe 2.86.0.4017 build64.exe 2.86.0.4017 cert5.db * clientrollback.exe 14.0.0.10101 infocollector.exe 14.0.0.10101 installdownloader.exe 14.0.0.10101 instntres.dll 14.0.0.10101 instreg.exe 14.0.0.10101 loadhttp.dll 14.0.0.10101 ofc_loadhttp.dll 14.0.0.10101 oscetsclog.dll 14.0.0.10101 patch.exe 2.86.0.4017 patch64.exe 2.86.0.4017 patchw32.dll 12.22.0.0 rollbackagent.dll 14.0.0.10101 rollbackagent_64x.dll 14.0.0.10101 setupman.dll 14.0.0.10101 setupusr.dll 14.0.0.10101 setupusr.exe 14.0.0.10101 svcmgr.dll 14.0.0.10101 svcrunap.exe 14.0.0.10101 timestring.dll 14.0.0.10101 tmbmlop.ptn * tmbmlop64.ptn * tmdbg20.dll 14.0.0.10101 tmgd.ptn * tmgd64.ptn * tmuninst.dll 14.0.0.10101 tmuninst.exe 14.0.0.10101 tmupdate.dll 2.86.0.4017 tmupdate64.dll 2.86.0.4017 wizard.exe 14.0.0.10101 wizard_64x.exe 14.0.0.10101 Apex One\PCCSRV\admin\utility\certificatemanager ------------------------------------------------------------------- certificatemanager.exe 14.0.0.10101 timestring.dll 14.0.0.10101 Apex One\PCCSRV\admin\utility\clientpackager ------------------------------------------------------------------- clientmsisetup_msi * clnextor.exe 14.0.0.10101 clnpack.exe 14.0.0.10101 clnpack.ini * flowcontrol.dll 14.0.0.10101 ofcpfwcommon.dll 14.0.0.10101 suctool.exe 14.0.0.10101 timestring.dll 14.0.0.10101 tmcfwapi.dll 5.83.0.1070 Apex One\PCCSRV\admin\utility\domainscheduledupdate ------------------------------------------------------------------- dsu_convert.exe 14.0.0.10101 Apex One\PCCSRV\admin\utility\enableprogramupgrade ------------------------------------------------------------------- enableprogramupgrade.exe 14.0.0.10101 Apex One\PCCSRV\admin\utility\gatewaysettingsimporter ------------------------------------------------------------------- gsimporter.exe 14.0.0.10101 Apex One\PCCSRV\admin\utility\imgsetup ------------------------------------------------------------------- imgsetup.exe 14.0.0.10101 Apex One\PCCSRV\admin\utility\ipxfer ------------------------------------------------------------------- ipxfer.exe 14.0.0.10101 ipxfer_x64.exe 14.0.0.10101 Apex One\PCCSRV\admin\utility\ispsinstaller ------------------------------------------------------------------- ispsinstaller.exe * Apex One\PCCSRV\admin\utility\listdeviceinfo ------------------------------------------------------------------- listdeviceinfo.exe 6.2.0.5095 Apex One\PCCSRV\admin\utility\messagequeue ------------------------------------------------------------------- liboscemsmq.dll 14.0.0.10101 mqtool.exe 14.0.0.10101 Apex One\PCCSRV\admin\utility\osceresetpw ------------------------------------------------------------------- osceresetpw.exe 14.0.0.10101 Apex One\PCCSRV\admin\utility\policyexporttool ------------------------------------------------------------------- apexonesettingsexporttool.exe 14.0.0.10101 cgiresutf8.dll 14.0.0.10101 servermigrationtool.ex_ 14.0.0.10101 timestring.dll 14.0.0.10101 Apex One\PCCSRV\admin\utility\saasstoragemgr ------------------------------------------------------------------- edcryp.net4.dll 14.0.0.10101 liblogclient4net.dll 14.0.0.10101 microsoft.windowsazure.storage.dll 4.3.0.0 newtonsoft.json.dll 10.0.3.21018 newtonsoft.json.xml * ofcasmgr.exe 14.0.0.10101 ofcasmgr.exe.config * Apex One\PCCSRV\admin\utility\servermigrationtool ------------------------------------------------------------------- cgiocommon.dll 14.0.0.10101 cgiresutf8.dll 14.0.0.10101 ofcpfwcommon.dll 14.0.0.10101 servermigrationtool.exe 14.0.0.10101 srec.ex_ 14.0.0.10101 timestring.dll 14.0.0.10101 Apex One\PCCSRV\admin\utility\spnsxfr ------------------------------------------------------------------- spnsxfr.exe 14.0.0.10101 Apex One\PCCSRV\admin\utility\svrtune ------------------------------------------------------------------- svrtune.exe 14.0.0.10101 Apex One\PCCSRV\admin\utility\systemhealthvalidator ------------------------------------------------------------------- officescannapshv_x64.exe 4.1.100.1332 officescannapshv_x86.exe 4.1.100.1332 Apex One\PCCSRV\admin\utility\tcachegen ------------------------------------------------------------------- tcachegen.exe 14.0.0.10101 tcachegencli.exe 14.0.0.10101 tcachegencli_x64.exe 14.0.0.10101 tcachegen_x64.exe 14.0.0.10101 Apex One\PCCSRV\admin\utility\tmvs ------------------------------------------------------------------- datfhs.dll 14.0.0.10101 libcrypto-1_1.dll 1.1.1.12 libssl-1_1.dll 1.1.1.12 loadhttp.dll 14.0.0.10101 tmdbg20.dll 14.0.0.10101 tmnotify.dll 1.5.0.2001 tmvs.exe 14.0.0.10101 vulnerability_scanner.chm * Apex One\PCCSRV\admin\utility\touch ------------------------------------------------------------------- tmtouch.exe 14.0.0.10101 Apex One\PCCSRV\ccsf\module\atse ------------------------------------------------------------------- trendxl.115 * trendxv.123 * Apex One\PCCSRV\cmagent ------------------------------------------------------------------- cgiresutf8.dll 14.0.0.10101 datfhs.dll 14.0.0.10101 en_i18n.dll 5.0.0.2502 en_utility.dll 5.0.0.2502 libcrypto-1_1.dll 1.1.1.12 libcurl.dll 7.79.1.0 libosfextensionloader.dll 14.0.0.10101 libperfosceperfmonmgr.dll 14.0.0.10101 libperfosceperfmonmgr_x64.dll 14.0.0.10101 libssl-1_1.dll 1.1.1.12 ofccmagent.exe 14.0.0.10101 osfagent.dll 14.0.0.10101 productlibrary.dll 14.0.0.10101 timestring.dll 14.0.0.10101 tmufeng.dll 5.0.0.1020 trendaprwrapperdll.dll 5.0.0.2502 Apex One\PCCSRV\download ------------------------------------------------------------------- clnpack_files.xml * Apex One\PCCSRV\osf_extension\iac ------------------------------------------------------------------- osfext_iaccmagent.dll 3.0.0.3083 osfext_iacmasterservice.dll 3.0.0.3083 Apex One\PCCSRV\osf_extension\iac\x64 ------------------------------------------------------------------- osfext_iaccmagent.dll 3.0.0.3083 osfext_iacmasterservice.dll 3.0.0.3083 Apex One\PCCSRV\osf_extension\iatas ------------------------------------------------------------------- osfext_iatascmagent.dll 1.7.0.1064 osfext_iatasmasterservice.dll 1.7.0.1064 Apex One\PCCSRV\osf_extension\iatas\x64 ------------------------------------------------------------------- osfext_iatascmagent.dll 1.7.0.1064 osfext_iatasmasterservice.dll 1.7.0.1064 Apex One\PCCSRV\osf_extension\ies ------------------------------------------------------------------- osfext_iescmagent.dll 3.0.0.1651 osfext_iesmasterservice.dll 3.0.0.1651 Apex One\PCCSRV\osf_extension\ies\x64 ------------------------------------------------------------------- osfext_iescmagent.dll 3.0.0.1651 osfext_iesmasterservice.dll 3.0.0.1651 Apex One\PCCSRV\osf_extension\ivp ------------------------------------------------------------------- osfext_ivpcmagent.dll 3.0.0.2725 osfext_ivpmasterservice.dll 3.0.0.2725 Apex One\PCCSRV\osf_extension\ivp\x64 ------------------------------------------------------------------- osfext_ivpcmagent.dll 3.0.0.2725 osfext_ivpmasterservice.dll 3.0.0.2725 Apex One\PCCSRV\pccnt ------------------------------------------------------------------- clientconsole.zip * clientconsole.zip.cat * clienthelp.zip * clienthelp.zip.cat * libcntprodres.dll 14.0.0.10101 ntmonres.dll 14.0.0.10101 ntrmvrc.dll 14.0.0.10101 ntrtscan.exe 14.0.0.10101 ntrtscanperfcounters.man * ntsvcres.dll 14.0.0.10101 pccntres.dll 14.0.0.10101 readme.txt * svcmgr.dll 14.0.0.10101 tmnotify.dll 1.5.0.2001 Apex One\PCCSRV\pccnt\common ------------------------------------------------------------------- 7z.dll 18.5.0.0 7z.exe 18.5.0.0 apricotcbrulehandler.dll 2.0.0.1049 apricotmanagermodule.dll 2.0.0.1049 ccsf_ptn.zip * ccsf_ptn.zip.cat * ccsf_win32.zip * ccsf_win32.zip.cat * ciuas32.dll 1.0.0.2075 comprmv.exe 14.0.0.10101 datfhs.dll 14.0.0.10101 dcexif32.dll 14.0.0.10101 dwiotrapnt.dll 14.0.0.10101 expapply.dll 9.5.2.0 expbuild.dll 8.4.2.0 fcwofieui.dll 14.0.0.10101 filebrowsingrulehandler.dll 2.0.0.1049 flowcontrol.dll 14.0.0.10101 icrcauapi.dll 2.5.0.1115 lib7zwrapper.dll 14.0.0.10101 libapricotlog.dll 2.0.0.1049 libcnttmpollingmodule.dll 14.0.0.10101 liblwtpciu32.dll 1.0.0.1005 libnetctrl.dll 14.0.0.10101 libosf.dll 14.0.0.10101 libtmcav.dll 14.0.0.10101 libuaprefltr.dll 14.0.0.10101 libwfpnetworkisolation.dll 14.0.0.10101 libzipunzipdll.dll 14.0.0.10101 loadhttp.dll 14.0.0.10101 logserver.exe 14.0.0.10101 ntrmv.exe 14.0.0.10101 ofccccaupdate.exe 14.0.0.10101 ofcpfwcommon.dll 14.0.0.10101 ofcpfwsvc.dll 14.0.0.10101 ofcpfwsvc.exe 14.0.0.10101 ofcpipc.dll 14.0.0.10101 ofcpluginapi.dll 14.0.0.10101 ofcpluginmain.dll 14.0.0.10101 ofcplugintray.dll 14.0.0.10101 ofc_loadhttp.dll 14.0.0.10101 officescantouch.exe 14.0.0.10101 osceprot.dll 14.0.0.10101 osfagent.dll 14.0.0.10101 pccnt.exe 14.0.0.10101 pccntmon.exe 14.0.0.10101 pccntupd.exe 14.0.0.10101 pccwfwmo.dll 14.0.0.10101 psmc.dll 8.4.2.0 pwd.dll 14.0.0.10101 spywareresource.dll 14.0.0.10101 sqlite3.dll * supportconnector.exe 14.0.0.10101 surrogatetmlisten.exe 14.0.0.10101 tmdshell.dll 14.0.0.10101 tmfbeng.dll 2.59.0.1014 tmlisten.exe 14.0.0.10101 tmlistenshare.dll 14.0.0.10101 tmnapshainfo.dll 14.0.0.10101 tmntupgd.exe 14.0.0.10101 tmopp.dll 14.0.0.10101 tmpac.dll 14.0.0.10101 tmsock.dll 14.0.0.10101 tmssclient.exe 14.0.0.10101 tmufeng.dll 5.0.0.1020 tmwatchdog.dll 14.0.0.10101 tmwatchdog.exe 14.0.0.10101 tmwscsvc.exe 14.0.0.10101 ulicense.bin * updguide.exe 14.0.0.10101 upgrade.exe 14.0.0.10101 urlcateg.dat * urlgroup.dat * userver.bin * utiljsonhandle.dll 14.0.0.10101 utilpfwinstcondchecker.exe 14.0.0.10101 uvid.bin * vcredist_2019_x86.exe 14.27.29112.0 wofielauncher.exe 14.0.0.10101 xpupg.exe 14.0.0.10101 Apex One\PCCSRV\pccnt\win64\x64 ------------------------------------------------------------------- 7z.dll 18.5.0.0 7z.exe 18.5.0.0 apricotcbrulehandler.dll 2.0.0.1049 apricotmanagermodule.dll 2.0.0.1049 ccsf_x64.zip * ccsf_x64.zip.cat * ciuas64.dll 1.0.0.2075 comprmv.exe 14.0.0.10101 datfhs.dll 14.0.0.10101 dcexif64.dll 14.0.0.10101 expapply64.dll 9.5.2.0 expbuild64.dll 8.4.2.0 fcwofieui.dll 14.0.0.10101 filebrowsingrulehandler.dll 2.0.0.1049 flowcontrol_64x.dll 14.0.0.10101 icrcauapi.dll 2.5.0.1115 instreg.exe 14.0.0.10101 lib7zwrapper_64x.dll 14.0.0.10101 libapricotlog.dll 2.0.0.1049 libcntprodres_64x.dll 14.0.0.10101 libcnttmpollingmodule_64x.dll 14.0.0.10101 liblwtpciu64.dll 1.0.0.1005 libnetctrl_64x.dll 14.0.0.10101 libosf_64x.dll 14.0.0.10101 libtmcav_64x.dll 14.0.0.10101 libuaprefltr.dll 14.0.0.10101 libwfpnetworkisolation_x64.dll 14.0.0.10101 libzipunzipdll_64x.dll 14.0.0.10101 loadhttp_64x.dll 14.0.0.10101 ntrmv.exe 14.0.0.10101 ntrtscan.exe 14.0.0.10101 ntrtscanperfcounters.man * ofccccaupdate.exe 14.0.0.10101 ofcpfwcommon_64x.dll 14.0.0.10101 ofcpfwsvc.exe 14.0.0.10101 ofcpfwsvc_64x.dll 14.0.0.10101 ofcpipc_64x.dll 14.0.0.10101 ofcpluginapi_64x.dll 14.0.0.10101 ofcpluginmain_64x.dll 14.0.0.10101 ofcplugintray_64x.dll 14.0.0.10101 ofc_loadhttp_64x.dll 14.0.0.10101 osceprot_64x.dll 14.0.0.10101 oscetsclog_64x.dll 14.0.0.10101 osfagent_64x.dll 14.0.0.10101 pccnt.exe 14.0.0.10101 pccntmon.exe 14.0.0.10101 pccntupd.exe 14.0.0.10101 pccwfwmo_64x.dll 14.0.0.10101 psmc64.dll 8.4.2.0 pwd_64x.dll 14.0.0.10101 spywareresource_64x.dll 14.0.0.10101 sqlite3.dll * supportconnector.exe 14.0.0.10101 surrogatetmlisten.exe 14.0.0.10101 timestring_64x.dll 14.0.0.10101 tmdbg20_64x.dll 14.0.0.10101 tmdshell_64x.dll 14.0.0.10101 tmfbeng.dll 2.59.0.1014 tmlisten.exe 14.0.0.10101 tmlistenshare_64x.dll 14.0.0.10101 tmnapshainfo.dll 14.0.0.10101 tmnotify.dll 1.5.0.2001 tmopp_64x.dll 14.0.0.10101 tmpac_64x.dll 14.0.0.10101 tmsock_64x.dll 14.0.0.10101 tmssclient.exe 14.0.0.10101 tmufeng.dll 5.0.0.1020 tmwatchdog.dll 14.0.0.10101 tmwatchdog.exe 14.0.0.10101 tmwscsvc.exe 14.0.0.10101 updguide.exe 14.0.0.10101 upgrade.exe 14.0.0.10101 utiljsonhandle_64x.dll 14.0.0.10101 utilpfwinstcondchecker.exe 14.0.0.10101 vcredist_2019_x64.exe 14.27.29112.0 vcredist_2019_x86.exe 14.27.29112.0 wofielauncher.exe 14.0.0.10101 xpupg.exe 14.0.0.10101 zlibwapi.dll 1.2.11.1003 Apex One\PCCSRV\private ------------------------------------------------------------------- dlpclc.xml * Apex One\PCCSRV\private\certificate ------------------------------------------------------------------- certtool.exe 14.0.0.10101 edcryp.net4.dll 14.0.0.10101 libeay32.dll 1.0.2.20 openssl.exe * ssleay32.dll 1.0.2.20 Apex One\PCCSRV\private\logserver ------------------------------------------------------------------- 7z.dll 18.5.0.0 7z.exe 18.5.0.0 logserver.exe 14.0.0.10101 ofcpipc.dll 14.0.0.10101 tmdbg20.dll 14.0.0.10101 tmdbg20ex.dll 14.0.0.10101 Apex One\PCCSRV\web\service ------------------------------------------------------------------- 7z.dll 18.5.0.0 aosproxy.exe 14.0.0.10101 atse32.dll 21.570.0.1004 atse64.dll 21.570.0.1004 build.exe 2.86.0.4017 build64.exe 2.86.0.4017 cert5.db * cgiocommon.dll 14.0.0.10101 cgires.dll 14.0.0.10101 cgiresutf8.dll 14.0.0.10101 cgishare.dll 14.0.0.10101 ciuas64.dll 1.0.0.2075 ciussi64.dll 2.0.0.2074 cmdhlclient.dll 14.0.0.10101 cmdhoconsole.dll 14.0.0.10101 cme_dll.dll 6.2.0.5095 cme_vxe_dll_static.dll 6.2.0.5095 cpprest142_2_10.dll * datfhs.dll 14.0.0.10101 dbserver.exe 14.0.0.10101 edcryp.net4.dll 14.0.0.10101 expapply64.dll 9.5.2.0 expbuild64.dll 8.4.2.0 flowcontrol.dll 14.0.0.10101 flowcontrol_64x.dll 14.0.0.10101 icrcauapi.dll 2.5.0.1115 lib7zwrapper.dll 14.0.0.10101 lib7zwrapper_64x.dll 14.0.0.10101 libcmdapiddadll.dll 14.0.0.10101 libcmdhndlrclientv2.dll 14.0.0.10101 libcmdhndlrconsolev2.dll 14.0.0.10101 libcmdhndlrdda.dll 14.0.0.10101 libcmdhndlrsa.dll 14.0.0.10101 libcrypto-1_1-x64.dll 1.1.1.12 libcsocclient.dll 14.0.0.10101 libcurl.dll 7.78.0.0 libcurl_ofc.dll 7.78.0.0 libdlog.dll 14.0.0.10101 liblogclient4net.dll 14.0.0.10101 libloghandler.dll 14.0.0.10101 liblwtpciu64.dll 1.0.0.1005 libofcnotifysmtpclient.dll 14.0.0.10101 libofcnotifysmtpclientwrappercli.dll 14.0.0.10101 liboscemsmq.dll 14.0.0.10101 liboscemsmq64.dll 14.0.0.10101 libosfeventadapter.dll 14.0.0.10101 libosfextensionloader.dll 14.0.0.10101 libosfextensionloader64.dll 14.0.0.10101 libosfsvcclient.dll 14.0.0.10101 libperfodamperfmonmgr.dll 14.0.0.10101 libperfodamperfmonmgr_x64.dll 14.0.0.10101 libperfosceperfmonmgr.dll 14.0.0.10101 libperfosceperfmonmgr_x64.dll 14.0.0.10101 libssl-1_1-x64.dll 1.1.1.12 libutilcommon.dll 14.0.0.10101 loadhttp.dll 14.0.0.10101 loadhttp_64x.dll 14.0.0.10101 logaccessor.exe 14.0.0.10101 logagent.dll 14.0.0.10101 logcache.dll 14.0.0.10101 mqtool.exe 14.0.0.10101 ntsvcres.dll 14.0.0.10101 ofccccaupdate.exe 14.0.0.10101 ofcdbbackup.exe 14.0.0.10101 ofcddasvr.exe 14.0.0.10101 ofcdownload.dll 14.0.0.10101 ofchotfix.exe 14.0.0.10101 ofclogreceiversvc.exe 14.0.0.10101 ofcnotify.dll 14.0.0.10101 ofcnotifyqueue.dll 14.0.0.10101 ofcpfwcommon.dll 14.0.0.10101 ofcpfwcommon_64x.dll 14.0.0.10101 ofcpurgelog.dll 14.0.0.10101 ofcservice.exe 14.0.0.10101 ofcshare.dll 14.0.0.10101 ofcupdate.exe 14.0.0.10101 ofc_loadhttp.dll 14.0.0.10101 ofc_loadhttp_64x.dll 14.0.0.10101 osceintegrationservice.exe 14.0.0.10101 osfagent.dll 14.0.0.10101 osfagent_64x.dll 14.0.0.10101 patch.exe 2.86.0.4017 patch64.exe 2.86.0.4017 patchw32.dll 12.22.0.0 patchw64.dll 12.22.0.0 pbld64.dll 12.20.0.0 psmc64.dll 8.4.2.0 pwd.dll 14.0.0.10101 pwd_64x.dll 14.0.0.10101 spywareresource.dll 14.0.0.10101 spywareresource_64x.dll 14.0.0.10101 sqlite3.dll * svcmgr.dll 14.0.0.10101 timestring.dll 14.0.0.10101 timestring_64x.dll 14.0.0.10101 tmnotify.dll 1.5.0.2001 tmprapit.dll 1.2.0.2028 tmprapi_nsmb_mt.dll 1.0.0.1007 tmupdate.dll 2.86.0.4017 tmupdate64.dll 2.86.0.4017 vdiinfo.exe 14.0.0.10101 verconn.exe 14.0.0.10101 zlibwapi.dll 1.2.11.1003 Apex One\PCCSRV\web\service\netfx35 ------------------------------------------------------------------- edcryp.dll 14.0.0.10101 logaccessor.exe 14.0.0.10101 Apex One\PCCSRV\web\service\netfx4 ------------------------------------------------------------------- edcryp.net4.dll 14.0.0.10101 logaccessor.net4.exe 14.0.0.10101 Apex One\PCCSRV\web_console\cgi ------------------------------------------------------------------- cgiwebupdate.ini * Apex One\PCCSRV\web_osce\web\cgi ------------------------------------------------------------------- cgicheckip.exe 14.0.0.10101 cgiexportinfo.exe 14.0.0.10101 cgigetclient.exe 14.0.0.10101 cgiimportinfo.exe 14.0.0.10101 cgilog.exe 14.0.0.10101 cgiocommon.dll 14.0.0.10101 cgionclientcfg.exe 14.0.0.10101 cgionclose.exe 14.0.0.10101 cgionmscfg.exe 14.0.0.10101 cgionpscfg.exe 14.0.0.10101 cgionqueryclientbindport.exe 14.0.0.10101 cgionrtcfg.exe 14.0.0.10101 cgionscan.exe 14.0.0.10101 cgionspeciallog.exe 14.0.0.10101 cgionstart.exe 14.0.0.10101 cgionunst.exe 14.0.0.10101 cgirecvfile.exe 14.0.0.10101 cgires.dll 14.0.0.10101 cgiresutf8.dll 14.0.0.10101 cgirqalertmsg.exe 14.0.0.10101 cgirqhotfix.exe 14.0.0.10101 cgishare.dll 14.0.0.10101 fcgiofcdda.exe 14.0.0.10101 flowcontrol.dll 14.0.0.10101 flowcontrol_64x.dll 14.0.0.10101 isapiclient.dll 14.0.0.10101 isapiclientx64.dll 14.0.0.10101 isapiclientx86.dll 14.0.0.10101 jdknotify.exe 14.0.0.10101 libcrypto-1_1.dll 1.1.1.12 libcurl.dll 7.78.0.0 libssl-1_1.dll 1.1.1.12 loadhttp.dll 14.0.0.10101 ofcpfwcommon.dll 14.0.0.10101 ofcpfwcommon_64x.dll 14.0.0.10101 pwd.dll 14.0.0.10101 sso_pkihelper.dll 5.0.0.2502 timestring.dll 14.0.0.10101 timestring_64x.dll 14.0.0.10101 vsapi64.dll 12.500.0.1004 zlibwapi.dll 1.2.11.1003 Apex One\PCCSRV\web_osce\web\clientutility ------------------------------------------------------------------- ofcescvpack.exe 14.0.0.10101 Apex One\PCCSRV\web_osce\web_console\cgi ------------------------------------------------------------------- cgiauthmanagement.exe 14.0.0.10101 cgichkmasterpwd.exe 14.0.0.10101 cgicmdnotify.exe 5.0.0.2502 cgiocommon.dll 14.0.0.10101 cgires.dll 14.0.0.10101 cgiresutf8.dll 14.0.0.10101 cgishare.dll 14.0.0.10101 cgishowactivedirectory.exe 14.0.0.10101 cgishowclientadm.exe 14.0.0.10101 cgishowcompliancereport.exe 14.0.0.10101 cgishowdlp.exe 14.0.0.10101 cgishowlogs.exe 14.0.0.10101 cgishownotify.exe 14.0.0.10101 cgishowopp.exe 14.0.0.10101 cgishowpfw.exe 14.0.0.10101 cgishowserveradm.exe 14.0.0.10101 cgishowsummary.exe 14.0.0.10101 cgishowupdate.exe 14.0.0.10101 cgishowvdi.exe 14.0.0.10101 cgishowwssadmin.exe 14.0.0.10101 cgiturnlog.exe 14.0.0.10101 cgiwebupdate.exe 14.0.0.10101 ddaisapifilter.dll 14.0.0.10101 ddaisapifilter64.dll 14.0.0.10101 fcgiofcdda.exe 14.0.0.10101 flowcontrol.dll 14.0.0.10101 libcrypto-1_1.dll 1.1.1.12 libcurl.dll 7.78.0.0 libssl-1_1.dll 1.1.1.12 loadhttp.dll 14.0.0.10101 ofcpfwcommon.dll 14.0.0.10101 patchw32.dll 12.22.0.0 pwd.dll 14.0.0.10101 sso_pkihelper.dll 5.0.0.2502 timestring.dll 14.0.0.10101 tmcfwapi.dll 5.83.0.1070 tmnotify.dll 1.5.0.2001 tmupdate.dll 2.86.0.4017 trendaprwrapperdll.dll 5.0.0.2502 Apex One\PCCSRV\web_osce\web_console\html\ad_integration ------------------------------------------------------------------- ad_integration.htm * client_grouping.htm * edit_sorting_rules.htm * Apex One\PCCSRV\web_osce\web_console\html\aegis ------------------------------------------------------------------- data_protection.htm * device_control.htm * Apex One\PCCSRV\web_osce\web_console\html\auth ------------------------------------------------------------------- admin_account_domain.htm * admin_account_info.htm * admin_account_menu.htm * admin_roles_list.htm * admin_role_add.htm * Apex One\PCCSRV\web_osce\web_console\html\behavior_monitoring ------------------------------------------------------------------- bm_settings.htm * Apex One\PCCSRV\web_osce\web_console\html\clientmag ------------------------------------------------------------------- client_cfg_privileage.htm * client_cfg_wtp.htm * client_globalsetting.htm * client_list_2.htm * client_list_2_task.htm * client_move.htm * client_ofsc_services.htm * client_policy_import_preview.htm * client_searchwindow.htm * Apex One\PCCSRV\web_osce\web_console\html\cloud_service ------------------------------------------------------------------- scan_ip_range_edit.htm * scan_source.htm * Apex One\PCCSRV\web_osce\web_console\html\common ------------------------------------------------------------------- ajax.js * authorize.js * js-common.js * ln_clientmag.js * ln_common.js * ln_logs.js * ln_pfw.js * menu_common.js * page_init.js * scripts.js * setting.summary.js * setting.vdi.js * settings.logs.js * trend-ui-opt_list.js * trend-ui.domaintree.js * x_localization.xml * x_view_status.xsl * Apex One\PCCSRV\web_osce\web_console\html\common\css ------------------------------------------------------------------- index.css * l10n-style.css * Apex One\PCCSRV\web_osce\web_console\html\common\images ------------------------------------------------------------------- ico_warning.svg * Apex One\PCCSRV\web_osce\web_console\html\common\l10n ------------------------------------------------------------------- l10n.aegis.js * l10n.behavior_monitoring.js * l10n.clientmag.js * l10n.cloud_service.js * l10n.dlp.js * l10n.global.js * l10n.logs.js * l10n.outbreak.js * l10n.pfw.js * l10n.root.js * l10n.update.js * l10n.vdi.js * Apex One\PCCSRV\web_osce\web_console\html\common\settings ------------------------------------------------------------------- setting.addon.js * setting.ad_integration.js * setting.aegis.js * setting.behavior_monitoring.js * setting.clientmag.js * setting.cloud_service.js * setting.compliance_report.js * setting.dlp.js * setting.logon.js * setting.logs.js * setting.menu.js * setting.notify.js * setting.outbreak.js * setting.pfw.js * setting.rba.js * setting.root.js * setting.serveradm.js * setting.update.js * setting.vdi.js * Apex One\PCCSRV\web_osce\web_console\html\common\tmicon ------------------------------------------------------------------- icon-font-demo.html * icon-font.css * icon-svg-demo.html * symbol-defs.svg * Apex One\PCCSRV\web_osce\web_console\html\common\tmicon\fonts ------------------------------------------------------------------- tmicon.svg * Apex One\PCCSRV\web_osce\web_console\html\common\tmicon\svg ------------------------------------------------------------------- blacklist.svg * Apex One\PCCSRV\web_osce\web_console\html\common\util ------------------------------------------------------------------- common.js * json2.min.js * osce.menubar.js * Apex One\PCCSRV\web_osce\web_console\html\common\yui\build\json ------------------------------------------------------------------- json-debug.js * json.js * Apex One\PCCSRV\web_osce\web_console\html\compliance_report ------------------------------------------------------------------- compliance_report.htm * installing_computers.htm * scheduled_compliance_report.htm * Apex One\PCCSRV\web_osce\web_console\html\dlp ------------------------------------------------------------------- dlp_compliance_tpl_addedit_v2.htm * dlp_digitalaccess.htm * dlp_display_ac.htm * dlp_entities_addedit.htm * dlp_fileattr_addedit.htm * dlp_listentities.htm * dlp_listfileattr.htm * dlp_listkeywords.htm * dlp_listtemplates.htm * dlp_settings.htm * Apex One\PCCSRV\web_osce\web_console\html\help\loginscript ------------------------------------------------------------------- login_olh.chm * Apex One\PCCSRV\web_osce\web_console\html\help\webhelp ------------------------------------------------------------------- -outbreaks-widget.html * -trend-client-progra.html * about-company-name-s.html * about-plug-in-manage.html * about-the-product-sh.html * about-web-threats.html * activating-or-renewi.html * activating-the-plug-.html * active-directory-int.html * active-directory-log.html * activeupdate-server-.html * activeupdate.html * adding-a-custom-acco.html * adding-a-custom-role.html * adding-a-firewall-po.html * adding-a-firewall-po_001.html * adding-a-firewall-pr.html * adding-additional-se.html * adding-already-detec.html * adding-and-editing-a.html * adding-autopcc-exe-t.html * adding-programs-to-t.html * adding-server-connec.html * administrator-notifi_003.html * advanced-search-opti.html * agent-connected-to-t.html * agent-connection-sta.html * agent-mover.html * agent-packager-logs.html * agents-on-the-comput.html * allowing-wmi-communi.html * an-error-in-the-syst.html * anti-exploit-protect.html * anti-spyware-compone.html * antivirus-components.html * antivirusclientconne.html * appendices.html * application-filterin.html * apply-scan-exclusion.html * audience.html * authentication-of-se.html * automatically-removi_001.html * automatically-stop-s.html * back-up-files-before.html * backup-files.html * behav-monit-event-mo.html * behavior-monitoring-_001.html * behavior-monitoring-_002.html * behavior-monitoring-_003.html * behavior-monitoring-_004.html * behavior-monitoring-_005.html * behavior-monitoring-_006.html * behavior-monitoring-_007.html * behavior-monitoring.html * bind-customer-specif.html * binding-customer-spe.html * blocking-access-to-c.html * blocking-vulnerable-.html * browser-based-instal.html * browser-exploit-solu.html * built-in-user-roles.html * c-s-connect-icons.html * cache-settings-for-s.html * case-diagnostic-tool.html * cc-callback-notifica.html * cc-callback-outbreak.html * cc-contact-alert-not.html * ccc-sus-conn-cfg.html * ccca-events-widget.html * certified-safe-softw_001.html * changing-the-scan-me.html * changing-the-vdi-sca.html * cl-tr-tsk-sp.html * clean-delete-infecte.html * client-computer-sing.html * client-computer-sing_001.html * client-computer-sing_002.html * client-computer-sing_003.html * client-computer-sing_004.html * client-computer-sing_005.html * client-computer-sing_006.html * client-computer-sing_007.html * client-management-sc.html * client-priv-sett-all.html * client-settings-item.html * client-sm-scan-switc.html * clientserverconnecti.html * clientupdates-widget.html * cloud-storage.html * company-name-network.html * company-name-virtual.html * component-duplicatio.html * component-update-for.html * component-update-log.html * component-update-sum.html * component-updates.html * components.html * components_001.html * compressed-file.html * condition-statements.html * configure-scan-setti.html * configuring-a-schedu.html * configuring-agent-la.html * configuring-cache-se.html * configuring-cc-callb.html * configuring-connecti.html * configuring-custom-l.html * configuring-customiz.html * configuring-data-los.html * configuring-data-los_001.html * configuring-general-.html * configuring-global-b.html * configuring-global-f.html * configuring-global-s.html * configuring-global-s_001.html * configuring-global-u_001.html * configuring-integrat.html * configuring-internal.html * configuring-ipv6-add.html * configuring-location.html * configuring-malware-.html * configuring-notifica.html * configuring-ping-set.html * configuring-predicti.html * configuring-product-.html * configuring-product-_001.html * configuring-proxy-se_001.html * configuring-proxy-se_002.html * configuring-quaranti.html * configuring-reserved.html * configuring-retrieva.html * configuring-sample-s.html * configuring-scan-res.html * configuring-scan-set.html * configuring-schedule.html * configuring-security.html * configuring-security_001.html * configuring-service-.html * configuring-settings.html * configuring-spywareg.html * configuring-suspicio_001.html * configuring-the-beha.html * configuring-the-cc-c.html * configuring-the-fire.html * configuring-the-fire_001.html * configuring-the-hear.html * configuring-the-ip-a.html * configuring-the-sche.html * configuring-the-secu.html * configuring-the-serv.html * configuring-the-stan.html * configuring-the-stan_001.html * configuring-the-trus_001.html * configuring-the-upda.html * configuring-trend-cl.html * configuring-trend-cl_001.html * configuring-virusmal.html * configuring-web-cons.html * connection-verificat.html * considerations-when-.html * contacting-trend-mic.html * control-manager-cert.html * control-manager-prod.html * control-manager-prod_001.html * conventional-scan-ic.html * cookie.html * cpu-usage.html * creating-a-backup-of.html * creating-a-disk-imag.html * creating-a-pre-scan-.html * creating-a-pre-scan-_001.html * creating-an-installa.html * creating-mutual-excl.html * criteria-for-customi.html * customizable-profile.html * customized-dlp-templ.html * customized-keyword-l.html * customized-keyword-l_001.html * customized-update-so_001.html * customized-update-so_002.html * customizing-ptngrowt.html * customizing-ptngrowt_001.html * dac-actions-decompre.html * dac-actions.html * dac-channels-network.html * dac-channels-network_001.html * dac-channels-network_002.html * dac-channels-ntwk-sc.html * dac-channels-ntwk-sc_001.html * dac-channels-ntwk-ta.html * dac-channels-system-.html * dac-channels-system.html * dac-expressions-cust.html * dac-expressions-cust_001.html * dac-expressions-cust_002.html * dac-expressions.html * dac-file-attributes-.html * dac-file-attributes-_001.html * dac-keywords-customi.html * dac-keywords-customi_001.html * dac-templates-custom.html * dac-templates-custom_001.html * damage-cleanup-servi_001.html * damage-cleanup-servi_002.html * data-loss-prevention.html * data-loss-prevention_002.html * data-loss-prevention_003.html * data-loss-prevention_004.html * data-loss-prevention_005.html * data-loss-prevention_006.html * data-loss-prevention_007.html * data-loss-prevention_008.html * data-protection-debu.html * data-protection-inst.html * data-protection-lice.html * data-protection-widg.html * data-recorders-cddvd.html * datalosspreventionin.html * dc-manage-access-adv.html * dc-manage-access-usb.html * dc-perm-adv-ppn.html * dc-perm-adv.html * dc-permissions.html * decrypting-and-resto.html * default-firewall-pol.html * default-scan-method.html * defining-permissions.html * defining-the-active-.html * delete-all-iis-rules.html * deleting-a-connectio.html * deleting-logs-based-.html * denial-of-service-at.html * denying-access-to-ex.html * denying-write-access.html * deploying-the-data-p.html * deployment-considera.html * deployment-of-data-p.html * determining-the-trus.html * device-control-excep.html * device-control-excep_001.html * device-control-logs.html * device-control.html * device-list-tool-run_001.html * device-list-tool.html * dhcp.html * digital-asset-contro.html * digital-signature-ca.html * disabling-automatic-.html * disabling-debug-logg.html * disabling-debug-logg_001.html * disabling-debug-logg_002.html * disabling-debug-logg_003.html * disabling-logging-fo.html * disabling-outbreak-p.html * distance-condition.html * distributing-the-pac.html * dlp-channels.html * dlp-policy-create.html * dlp-rule-create.html * dns.html * docs-terminology.html * document-conventions.html * document-modificatio.html * documentation-feedba.html * domain-name.html * domain-structure.html * download-center.html * dynamic-ip-address.html * edge-relay-server-re.html * edge-relay-server-sy.html * edge-relay-server.html * editing-the-firewall.html * email-reputation-ser.html * enable-assessment-mo.html * enable-deferred-scan.html * enable-elam.html * enabling-debug-loggi.html * enabling-debug-loggi_001.html * enabling-debug-loggi_002.html * enabling-debug-loggi_003.html * enabling-debug-loggi_004.html * enabling-debug-loggi_005.html * enabling-debug-loggi_006.html * enabling-logging-for.html * enabling-or-disablin.html * enabling-the-cc-call.html * enabling-the-integra.html * enabling-the-sending.html * enabling-the-web-thr.html * encrypting-server-ag.html * end-user-license-agr.html * endpoint-location-se.html * endpoint-location.html * endpoint-status-widg_001.html * enforcement-of-trend.html * enhanced-product-int.html * esmtp.html * event-triggered-upda.html * events-that-trigger-.html * exception-list-wildc.html * exclude-microsoft-ex_001.html * excluding-security-a.html * exporting-client-com.html * false-positive.html * file-attributes.html * file-reputation-serv_001.html * files-infected-with-.html * files-infected-with-_001.html * firewall-components.html * firewall-policies-an.html * firewall-policies.html * firewall-profiles.html * firewall-violation-n.html * firewall-violation-o.html * firewall-violation-o_001.html * forensic-folder-and-.html * fresh-installation-l.html * ftp.html * ftp_001.html * fw-privileges.html * gateway-settings-imp.html * gdpr-a-kb-link-olh.html * generating-an-on-dem.html * genericlean.html * getting-detailed-ser.html * getting-detailed-tre.html * getting-help.html * getting-started-with.html * getting-started-with_001.html * global-firewall-sett.html * global-scan-settings.html * glossary.html * granting-behavior-mo.html * granting-firewall-pr.html * granting-proxy-confi.html * granting-scan-type-p.html * granting-the-client-.html * granting-trusted-pro.html * granting-users-the-p.html * heartbeat.html * hot-fix-and-patch-hi.html * how-keyword-lists-wo.html * how-spywaregrayware-.html * http-and-https.html * http.html * https-url-scan-suppo.html * https.html * icmp.html * im-applications.html * importing-and-export.html * importing-client-com.html * importing-exporting-.html * importing-or-exporti.html * inactive-trend-clien.html * index.html * indexlist.html * initiating-a-browser.html * initiating-scan-now.html * ins-mth-msi-sms-loco.html * ins-mth-msi-sms.html * ins-mth-msi.html * install-consider.html * installation-logs.html * installation-methods.html * installation-methods_001.html * installations-using-.html * installing-data-prot.html * installing-from-the-.html * installing-remotely-.html * installing-the-edge-.html * installing-the-trend.html * installing-the-trend_001.html * installing-the-trend_002.html * installing-the-trend_003.html * installing-virtual-d.html * installing-with-agen.html * installing-with-logi.html * installing-with-secu.html * integrated-servers-a.html * integrated-smart-pro.html * integrated-smart-pro_001.html * integrated-smart-pro_002.html * integrated-smart-pro_003.html * integrating-active-d.html * integration-with-com.html * intelliscan.html * intellitrap.html * introducing-product-.html * introduction-and-get.html * intrusion-detection-.html * ip.html * ipv6-client-limits.html * ipv6-support-for-pro.html * ipv6-support-for-pro_001.html * ipv6-support-for-sma.html * ipv6-support-for-tre.html * ipv6-support-for-upd.html * ipv6-support-in-prod.html * isolated-product-sho.html * java-file.html * keeping-protection-u.html * keywords.html * ldap.html * licenses.html * limiting-downloads-f.html * limitingdenying-acce.html * listening-port.html * location-criteria.html * log-maintenance.html * log-management.html * logon-account.html * mail-scan-logs.html * malware-behavior-blo_002.html * management-widget.html * managing-access-to-e.html * managing-access-to-e_001.html * managing-edge-relay-.html * managing-the-edge-re.html * managing-the-product.html * managing-the-product_001.html * managing-the-referen.html * managing-the-trend-c.html * manual-scan.html * manually-deleting-lo_001.html * manually-updating-th.html * mcp-agent.html * menu-items-for-manag.html * menu-items-for-serve.html * method-for-retrievin.html * migrating-from-other.html * migrating-from-serve.html * migrating-to-the-tre.html * mixed-threat-attack.html * modifying-a-firewall.html * modifying-a-firewall_001.html * modifying-an-existin.html * modifying-device-con.html * modifying-the-cc-cal.html * modifying-the-conten.html * modifying-the-conten_001.html * modifying-the-forens.html * modifying-the-web-th.html * nat.html * native-plug-in-prog-.html * netbios.html * network-administrati.html * network-size.html * network-topology-and.html * network-traffic.html * newly-encountered-pr.html * notifications.html * notifying-client-com.html * notifying-users-of-v.html * number-of-keywords-c.html * obtaining-the-packag.html * officescan-agent-lan.html * officescan-widgets.html * on-demand-compliance.html * on-demand-scan-cache.html * one-way-communicatio.html * opening-port-communi.html * osce-about-product-s.html * osce-about-security-.html * osce-adding-a-domain.html * osce-automatic-clien.html * osce-checking-the-pr.html * osce-client-computer.html * osce-company-name-co.html * osce-configuring-aut.html * osce-configuring-man.html * osce-defining-client.html * osce-defining-client_001.html * osce-deleting-a-doma.html * osce-exclude-the-pro.html * osce-firewall-logs.html * osce-gls-hotfix-osce.html * osce-manual-client-c.html * osce-moving-trend-cl.html * osce-officescanandpl.html * osce-osce-ccc-servic.html * osce-osce-digital-as.html * osce-osce-dlp-policy.html * osce-osce-feat-ben.html * osce-osce-file-reput.html * osce-osce-sm-prot-se.html * osce-osce-sm-prot-so.html * osce-osce-web-reputa.html * osce-plugin-install-.html * osce-plugin-license-.html * osce-plugin-uninstal.html * osce-registering-pro.html * osce-renaming-a-doma.html * osce-running-the-tou.html * osce-scan-type-privi.html * osce-standard-update.html * osce-the-product-sho.html * osce-the-trend-clien.html * other-resources.html * outbreak-logs.html * outbreak-prevention-.html * outbreak-prevention-_001.html * outbreak-prevention-_002.html * outbreak-prevention-_003.html * outside-server-manag.html * overall-threat-detec.html * package-deployment-g.html * participating-in-the.html * password-protected-f.html * patch.html * peer-to-peer-applica.html * performing-a-test-sc.html * performing-a-unc-bas.html * performing-post-inst.html * permissions-for-non-.html * pgp-encryption.html * phish-attack.html * ping-settings.html * ping.html * plug-in-agent-instal.html * plug-in-manager-inst.html * plug-in-prog-prod-na.html * plug-in-prog-prod-na_001.html * plug-in-program-agen.html * plug-in-program-does.html * plug-in-programmanag.html * plugin-manage-about.html * plugin-program-manag.html * plugin-program-upgra.html * policy-configuration.html * pop3.html * post-installation.html * postpone-scheduled-s_001.html * postponingskipping-a.html * potential-risks-and-.html * predefined-dlp-templ.html * predefined-expressio.html * predefined-file-attr.html * predefined-keyword-l.html * predictive-machine-l_004.html * predictive-machine-l_007.html * preface.html * printer.html * prmt-client-service-.html * prmt-self-prot-cnsol.html * prmt-self-prot-roam.html * prmt-self-prot-unloa.html * processes-by-channel.html * product-information-.html * product-license-stat.html * product-query.html * product-short-name-c.html * product-short-name-d.html * product-short-name-d_001.html * product-short-name-f.html * product-short-name-r.html * product-short-name-s.html * product-short-name-s_001.html * product-short-name-s_002.html * product-short-name-s_003.html * product-short-name-s_004.html * product-short-name-s_005.html * product-short-name-s_006.html * product-short-name-s_007.html * product-short-name-w.html * program-and-componen.html * programs-list.html * programs.html * protecting-against-u.html * protecting-computers.html * protecting-off-premi.html * protecting-trend-cli.html * providing-additional.html * proxy-for-product-sh.html * proxy-for-trend-clie.html * proxy-server.html * pure-ipv6-server-lim.html * quarantine-manager.html * ransomware-summary-w.html * real-time-scan.html * recommended-post-ins.html * recording-the-integr.html * reference-servers.html * register-to-an-apex-.html * remind-users-of-the-.html * removing-guids-from-.html * renew-a-self-signed-.html * requirements-for-ope.html * resolving-conflicts.html * restoring-quarantine_001.html * restoring-spywaregra.html * restoring-the-previo.html * restricting-access-t.html * resume-scheduled-sca.html * revoking-the-schedul.html * role-based-administr.html * role-based-administr_001.html * rollback-proc-client.html * rollback-screen-scre.html * rolling-back-compone.html * rolling-back-the-pro.html * rpc.html * rule-1-maximum-size-.html * rule-2-maximum-compr.html * rule-3-maximum-numbe.html * running-agent-mover.html * running-server-tuner.html * running-the-trend-cl.html * sample-submission.html * saving-the-policy-ex.html * sc-pv-mail-grant.html * sc-pv-mail.html * sc-pv-sch-grant.html * sc-pv-sch-postpone.html * scan-actions.html * scan-compliance.html * scan-criteria.html * scan-exclusion-list-_001.html * scan-exclusion-list-_002.html * scan-exclusions.html * scan-for-cookies.html * scan-logs.html * scan-method-guidelin.html * scan-method-types.html * scan-methods-compare.html * scan-now.html * scan-privileges-and-.html * scan-process-exclusi.html * scan-set-cmn-act-dcs.html * scan-set-cmn-act-not.html * scan-set-cmn-act-not_001.html * scan-set-cmn-act-qua.html * scan-set-cmn-act-res.html * scan-set-cmn-act-vir.html * scan-set-cmn-cri-fil.html * scan-set-cmn-cri-sca.html * scan-set-cmn-exc-lis.html * scan-set-spy-list-ma.html * scan-set-spy-notify.html * scan-set-spy.html * scan-settings-sectio.html * scan-types-manual-cn.html * scan-types-real-cnfg.html * scan-types-scannow-c.html * scan-types-sched-cnf.html * scan-types.html * scanning-for-network.html * scanning-for-securit.html * schedule-based-updat_001.html * schedule.html * scheduled-compliance.html * scheduled-scan-privi.html * scheduled-scan-privi_001.html * scheduled-scan-setti.html * scheduled-scan.html * scheduling-updates-f.html * screens-that-display.html * security-compliance-.html * security-compliance-_001.html * security-compliance-_002.html * security-compliance.html * security-patch.html * security-risk-detect_001.html * security-risk-logs.html * security-risk-notifi_001.html * security-risk-notifi_002.html * security-risk-outbre.html * security-risk-outbre_001.html * security-threats-ran.html * securityriskdetectio.html * securityrisklogsscre.html * sending-suspicious-c.html * server-agent-communi.html * server-debug-logs-us.html * server-polling.html * server-tuner.html * serverprotect-normal.html * service-pack.html * services.html * setting-up-smart-pro.html * settings-common-to-a.html * settings.html * skip-and-stop-schedu.html * skip-scheduled-scan-.html * smart-feedback-about.html * smart-feedback.html * smart-protection-net.html * smart-protection-pat.html * smart-protection-pat_001.html * smart-protection-ser_001.html * smart-protection-ser_002.html * smart-protection-ser_003.html * smart-protection-sou.html * smart-protection-sou_002.html * smart-protection-sou_003.html * smart-protection-sou_004.html * smart-scan-agent-pat.html * smart-scan-icons.html * smart-scan-pattern.html * smtp.html * snmp-trap.html * snmp.html * softwarehardware-spe.html * solutions-to-issues-.html * specifying-a-digital.html * specifying-the-trend.html * speeding-up-the-supp.html * spyware-and-grayware.html * spyware-grayware-gua.html * spywaregrayware-appr.html * spywaregrayware-scan_002.html * sql-server-migration_001.html * sql-tool-alert.html * sql-tool-use.html * srs-not-cl.html * ssl-certificate.html * ssl.html * standalone-smart-pro.html * standard-update-sour.html * stateful-inspection.html * stopping-the-collect.html * summary-tab-widgets.html * support-intelligence.html * supported-control-ma.html * supported-system-var_001.html * supported-virtualiza.html * suspicious-connectio_001.html * suspicious-connectio_002.html * suspicious-objects-c.html * switching-from-conve.html * synchronization-soft.html * synchronizing-data-w.html * system-event-logs.html * tabs-and-widgets.html * tcp.html * technical-support.html * telnet.html * test-scan-using-the-.html * testing-the-product-.html * the-need-for-a-new-s.html * the-plug-in-prog-par.html * the-server-migration.html * the-summary.html * the-trend-client-pro.html * the-web-console-bann.html * the-web-console.html * the-windows-server-2.html * threat-encyclopedia.html * top-ransomware-detec.html * topdatalosprevention.html * traffic-filtering.html * transmission-scope-a_001.html * transport-driver-int.html * trend-client-program.html * trend-client-program_001.html * trend-client-program_002.html * trend-client-program_003.html * trend-client-program_004.html * trend-client-program_005.html * trend-client-program_006.html * trend-client-program_007.html * trend-client-program_008.html * trend-client-program_009.html * trend-client-program_010.html * trend-client-program_011.html * trend-client-program_012.html * trend-client-program_013.html * trend-client-program_014.html * trend-client-program_015.html * trend-client-program_016.html * trend-client-program_017.html * trend-client-program_018.html * trend-client-program_019.html * trend-client-program_020.html * trend-client-program_021.html * trend-client-program_022.html * trend-client-program_023.html * trend-client-program_024.html * trend-client-program_025.html * trend-micro-performa.html * trojan-port.html * troubleshooting-micr.html * troubleshooting-plug.html * troubleshooting-reso.html * troubleshooting-reso_001.html * trusted-port.html * trusted-programs-pri.html * two-way-communicatio.html * udp.html * uncleanable-files.html * uninstall-program-gr.html * uninstalling-data-pr.html * uninstalling-data-pr_001.html * uninstalling-plug-in.html * uninstalling-plug-in_001.html * uninstalling-the-tre.html * unknown-threat-logs.html * unreachable-client-c.html * unregister-from-an-a.html * update-agent-analyti.html * update-agent-compone.html * update-agent-configu.html * update-agent-process.html * update-agent-system-.html * update-agents.html * update-methods-for-u.html * update-overview.html * update-priv-sttng-cf.html * update-sources-for-u.html * update-status-for-tr.html * updating-an-isolated.html * updating-the-integra.html * updating-the-scan-en.html * updating-trend-clien.html * upgradehot-fix-logs.html * upgrading-the-edge-r.html * usage-of-smart-prote.html * use-a-specific-actio.html * use-activeaction.html * use-the-same-action-.html * user-accounts.html * user-activity-on-fil.html * user-roles.html * using-authentication.html * using-behavior-monit.html * using-company-name-s.html * using-data-loss-prev.html * using-device-control.html * using-gateway-settin.html * using-plug-in-manage.html * using-smart-protecti.html * using-the-company-na.html * using-the-domains-sc.html * using-the-edge-serve.html * using-the-product-sh.html * using-the-scheduled-.html * using-the-server-mig_001.html * using-the-serverprot.html * using-the-support-po.html * vdi-pre-scan-templat_001.html * verifying-client-com.html * viewing-behavior-mon.html * viewing-campampc-cal.html * viewing-central-quar_001.html * viewing-connection-v.html * viewing-data-loss-pr.html * viewing-device-contr.html * viewing-dlp-license.html * viewing-firewall-log.html * viewing-license-info.html * viewing-predictive-m.html * viewing-product-lice.html * viewing-sample-submi.html * viewing-settings-for.html * viewing-spywaregrayw.html * viewing-spywaregrayw_001.html * viewing-suspicious-c.html * viewing-suspicious-f.html * viewing-system-event_001.html * viewing-the-query-re.html * viewing-the-update-l.html * viewing-trend-client.html * viewing-trend-client_001.html * viewing-virusmalware.html * viewing-web-reputati.html * virtual-desktop-supp.html * virtual-desktop-supp_001.html * virtual-desktop-supp_002.html * virtual-server-conne.html * virus-scan-engine-lo.html * viruses-and-malware.html * virusmalware-scan-re.html * vsencrypt-logs.html * vul-stg-srvr.html * vulner-scan-guide.html * vulner-scan-meth-man.html * vulnerability-scan-m.html * vulnerability-scan-r.html * vulnerability-scan-s.html * vulnerability-scanne.html * web-blocking-list.html * web-console-password.html * web-reputation-and-p.html * web-reputation-compo.html * web-reputation-logs.html * web-reputation-polic_001.html * web-reputation-servi.html * web-reputation.html * web-threat-logs.html * web-threat-notificat.html * webmail.html * whats-new.html * widgets.html * wildcard-exceptions.html * windows-clipboard.html * windows-event-logs.html * windows-server-core-.html * windows-server-core-_001.html * windows-server-core-_002.html * working-with-tabs.html * working-with-widgets.html * write-protected-infe.html * wrs-policy-config.html * __activating-the-plug--2.html * Apex One\PCCSRV\web_osce\web_console\html\help\webhelp\_wh ------------------------------------------------------------------- index.js * jquery.browser.js * search.js * toc.js * Apex One\PCCSRV\web_osce\web_console\html\help\webhelp\_wh\user ------------------------------------------------------------------- tm.css * Apex One\PCCSRV\web_osce\web_console\html\help\webhelp\_wh\user\resources ------------------------------------------------------------------- jquery.min.back.js * jquery.min.js * Apex One\PCCSRV\web_osce\web_console\html\help\webhelp\images ------------------------------------------------------------------- dashboard-delete.jpg * ds-sum-wid-tasks-edi.jpg * edge-certificate-pas.jpg * edge-destination.jpg * edge-install-complet.jpg * edge-ready-install.jpg * edge-sa-connection.jpg * edge-welcome.jpg * icon-browse.jpg * icon-client.jpg * icon-domain.jpg * icon-minus.jpg * icon-new-domain.jpg * icon-normal.jpg * icon-normaldc.jpg * icon-normaldcnowr.jpg * icon-normaldcold.jpg * icon-normaldcwr.jpg * icon-normalnowr.jpg * icon-normalold.jpg * icon-normalrtscandcn.jpg * icon-normalrtscandcw.jpg * icon-normalrtscanoff.jpg * icon-normalrtscanoff_001.jpg * icon-normalrtscanoff_002.jpg * icon-normalrtscanoff_003.jpg * icon-normalrtscanoff_004.jpg * icon-normalrtscanoff_005.jpg * icon-normalrtscanser.jpg * icon-normalrtscanser_001.jpg * icon-normalrtscanser_002.jpg * icon-normalrtscanser_003.jpg * icon-normalrtscanser_004.jpg * icon-normalrtscanser_005.jpg * icon-normalrtscanser_006.jpg * icon-normalrtscanser_007.jpg * icon-normalwr.jpg * icon-offline-avail-n.jpg * icon-offline-avail-r.jpg * icon-offline-avail.jpg * icon-offline-notavai.jpg * icon-offline-notavai_001.jpg * icon-offline-notavai_002.jpg * icon-offline-rtsdisa.jpg * icon-offline-rtsdisa_001.jpg * icon-offline-rtsdown.jpg * icon-offline-rtsdown_001.jpg * icon-offline-rtsenab.jpg * icon-offline-rtsenab_001.jpg * icon-offline.jpg * icon-online-avail-no.jpg * icon-online-avail-rt.jpg * icon-online-avail.jpg * icon-online-notavail.jpg * icon-online-notavail_001.jpg * icon-online-notavail_002.jpg * icon-online-rtsdisab.jpg * icon-online-rtsdisab_001.jpg * icon-online-rtsdown-.jpg * icon-online-rtsdown-_001.jpg * icon-online-rtsenabl.jpg * icon-online-rtsenabl_001.jpg * icon-online.jpg * icon-patternno.jpg * icon-plus.jpg * icon-roaming-avail-n.jpg * icon-roaming-avail-r.jpg * icon-roaming-avail.jpg * icon-roaming-notavai.jpg * icon-roaming-notavai_001.jpg * icon-roaming-notavai_002.jpg * icon-roaming-rtsdisa.jpg * icon-roaming-rtsdisa_001.jpg * icon-roaming-rtsdown.jpg * icon-roaming-rtsdown_001.jpg * icon-roaming-rtsenab.jpg * icon-roaming-rtsenab_001.jpg * icon-roaming.jpg * icon-roaming2.jpg * icon-roamingnowr.jpg * icon-roamingoff.jpg * icon-roamingoffnowr.jpg * icon-roamingoffold.jpg * icon-roamingoffwr.jpg * icon-roamingold.jpg * icon-roamingoldoff.jpg * icon-roamingrtoff.jpg * icon-roamingrtoffnow.jpg * icon-roamingrtoffwr.jpg * icon-roamingwr.jpg * icon-root.jpg * icon-rtsno.jpg * icon-rtss.jpg * icon-rtss2.jpg * icon-rtssno.jpg * icon-rtssno2.jpg * icon-smart-scan-avai.jpg * icon-smart-scan-unav.jpg * icon-spsconnect.jpg * icon-spsconnectno.jpg * icon-trash-bin.jpg * icon-trash.jpg * icon-update-agent-sm.jpg * icon-update-agent-sm_001.jpg * icon-update-agent.jpg * icon-widget-display.jpg * osce-osce-server.jpg * pattern-update.jpg * query-process.jpg * user-accounts-def-pe.jpg * Apex One\PCCSRV\web_osce\web_console\html\logs ------------------------------------------------------------------- logs_ccca.htm * logs_delete.htm * logs_fa_file_view.htm * logs_pfw.htm * logs_pfw_view.htm * logs_spyware.htm * logs_spyware_apply.htm * logs_spyware_detail.htm * logs_websecurity.htm * logs_widget_dlp_top_violation.htm * log_maintenance.htm * Apex One\PCCSRV\web_osce\web_console\html\notify ------------------------------------------------------------------- notify_common.htm * notify_standardalert.htm * Apex One\PCCSRV\web_osce\web_console\html\outbreak ------------------------------------------------------------------- opp_deny_write.htm * opp_port_blocking.htm * opp_port_blocking_add.htm * opp_port_blocking_edit.htm * opp_restore.htm * opp_shared_folder.htm * Apex One\PCCSRV\web_osce\web_console\html\pfw ------------------------------------------------------------------- policy_edit.htm * policy_exception_edit.htm * policy_list.htm * profile_edit.htm * profile_list.htm * Apex One\PCCSRV\web_osce\web_console\html\root ------------------------------------------------------------------- about.htm * atxenc.cab * help_start.htm * index.htm * license_attributions.htm * logon.htm * menu.html * ssofail.htm * top.htm * turn_debug_onoff.htm * Apex One\PCCSRV\web_osce\web_console\html\serveradm ------------------------------------------------------------------- server_cmagent_saas.htm * server_console_settings.htm * server_migration.htm * server_proxy.htm * server_spn_setting.htm * Apex One\PCCSRV\web_osce\web_console\html\summary ------------------------------------------------------------------- summary_top10_osce.htm * Apex One\PCCSRV\web_osce\web_console\html\tools ------------------------------------------------------------------- tools_admin_clients.htm * Apex One\PCCSRV\web_osce\web_console\html\update ------------------------------------------------------------------- client_deployment_automatic.htm * client_deployment_manual.htm * update_rollback.htm * Apex One\PCCSRV\web_osce\web_console\html\vdi ------------------------------------------------------------------- vdi_display_ac.htm * Apex One\PCCSRV\web_osce\web_console\remoteinstallcgi ------------------------------------------------------------------- cgigetntclient.exe 14.0.0.10101 cgigetntdomain.exe 14.0.0.10101 cgiocommon.dll 14.0.0.10101 cgiremoteinstall.exe 14.0.0.10101 cgires.dll 14.0.0.10101 cgiresutf8.dll 14.0.0.10101 cgishare.dll 14.0.0.10101 libcrypto-1_1.dll 1.1.1.12 libcurl.dll 7.78.0.0 loadhttp.dll 14.0.0.10101 setupman.dll 14.0.0.10101 sso_pkihelper.dll 5.0.0.2502 svcmgr.dll 14.0.0.10101 svcrunap.exe 14.0.0.10101 timestring.dll 14.0.0.10101 tmdbg20.dll 14.0.0.10101 wizard.exe 14.0.0.10101 wizard_64x.exe 14.0.0.10101 Apex One\PCCSRV\web_osce\web_console\sso\html\common\images ------------------------------------------------------------------- ico_warning.svg * Apex One\PCCSRV\web_osce\web_console\sso\html\common\l10n ------------------------------------------------------------------- l10n.root.js * Apex One\PCCSRV\web_osce\web_console\sso\html\root ------------------------------------------------------------------- ssofail.htm * bin ------------------------------------------------------------------- backupenhance.ini * cgiresutf8.dll 14.0.0.10101 cgishare.dll 14.0.0.10101 check_mmc.bat * check_msxml6.bat * check_php.bat * cmagentctrl.dll 2.53.0.1015 commandline.dll 2.7.82.0 convert_ver2dec.bat * cvefixer.exe * dacframework_x64.msi * data1.cab * data1.hdr * databasemigrate.dll 14.0.0.10101 delete_chart_files.bat * dzip32.dll 3.0.0.15 hfsetuppsscript.bat * hfsetuppsscript.ps1 * hotfixdetectiontool.exe 14.0.0.10101 hotfixtool.exe 14.0.0.10101 installmsxml6.bat * libcrypto-1_1.dll 1.1.1.12 libnetctrl.dll 14.0.0.10101 loadhttp.dll 14.0.0.10101 msxml6.msi * msxml6_x64.msi * ofcshare.dll 14.0.0.10101 pccwfwmo.dll 1.0.0.1002 posttmpatch.exe * replacewidgetxml.bat * setratingserver.exe * setup.inx * starttmsm.bat * stopprocess.bat * stopprocess.ps1 * stoptmsm.bat * svrsetup.dll 14.0.0.10101 svrsvcsetup.exe 14.0.0.10101 svrsvcsetup_64x.exe 14.0.0.10101 tmicfgapi.dll 1.11.0.1012 tmtouch.exe 14.0.0.10101 turn_logsvr.bat * update_jdk.bat * update_jdk.ps1 * vcredist_2019_x64.exe 14.27.29112.0 vcredist_2019_x86.exe 14.27.29112.0 vsapi32.dll 12.500.0.1004 web_setting.bat * zlib.dll 1.31.0.1708 zlibwapi.dll 1.2.11.1002 bin\logserver ------------------------------------------------------------------- ofcdebug.ini * ofcdebugex.ini * iac ------------------------------------------------------------------- placeholder.txt * run.bat * iac\iachotfix\agentpackage ------------------------------------------------------------------- hfx_iac.zip * hfx_iac.zip.cat * hfx_iac_x64.zip * hfx_iac_x64.zip.cat * instupg_iac.zip * instupg_iac.zip.cat * instupg_iac_x64.zip * instupg_iac_x64.zip.cat * iserviceinst.ini * iserviceupd.ini * iac\iachotfix\serverpackage ------------------------------------------------------------------- config.xml * databaseonpremises.dacpac * databasesaas.dacpac * icsharpcode.sharpziplib.dll 0.86.0.518 microsoft.web.administration.dll 6.1.7601.17514 newtonsoft.json.dll 9.0.1.19813 tmaccore.dll 3.0.0.3068 tmacosce.dll 3.0.0.3068 tmacpersistence.dll 3.0.0.3068 tmacutility.dll 3.0.0.3068 tmiacsetup.exe 3.0.0.3068 tmiacsvc.exe 3.0.0.3068 version.ini * iac\iachotfix\serverpackage\script ------------------------------------------------------------------- uploadlog.ps1 * iac\iachotfix\serverpackage\web\acserverwebapp ------------------------------------------------------------------- global.asax * iacwebapp.dll.config * web.config * iac\iachotfix\serverpackage\web\acserverwebapp\bin ------------------------------------------------------------------- acserverwebapp.dll 3.0.0.3068 icsharpcode.sharpziplib.dll 0.86.0.518 newtonsoft.json.dll 9.0.1.19813 system.net.http.formatting.dll 5.2.30128.0 system.web.http.dll 5.2.30128.0 system.web.http.webhost.dll 5.2.30128.0 tmacutility.dll 3.0.0.3068 iac\iachotfix\serverpackage\web\osfchannel ------------------------------------------------------------------- global.asax * iacwebapp.dll.config * web.config * iac\iachotfix\serverpackage\web\osfchannel\bin ------------------------------------------------------------------- icsharpcode.sharpziplib.dll 0.86.0.518 newtonsoft.json.dll 9.0.1.19813 osfchannel.dll 3.0.0.3068 system.net.http.formatting.dll 5.2.30128.0 system.web.http.dll 5.2.30128.0 system.web.http.webhost.dll 5.2.30128.0 tmacutility.dll 3.0.0.3068 iatas ------------------------------------------------------------------- placeholder.txt * run.bat * iatas\iatashotfix\agentpackage ------------------------------------------------------------------- dlliataspatchagent.zip * dlliataspatchagent_x64.zip * iatas\iatashotfix\agentpackage\atas_agent_hotfix_x64 ------------------------------------------------------------------- atasagent.exe 1.7.0.1064 datfhs.dll 14.0.0.10153 hc_help.dll 1.64.0.1067 libeay32.dll 1.0.2.16 libexpatw.dll * ofcpipc_64x.dll 14.0.0.10153 osfagent_64x.dll 14.0.0.10153 iatas\iatashotfix\agentpackage\atas_agent_hotfix_x86 ------------------------------------------------------------------- atasagent.exe 1.7.0.1064 datfhs.dll 14.0.0.10153 hc_help.dll 1.64.0.1067 libeay32.dll 1.0.2.16 libexpatw.dll * ofcpipc.dll 14.0.0.10153 osfagent.dll 14.0.0.10153 iatas\iatashotfix\agentpackage\atas_agent_x64 ------------------------------------------------------------------- atasagent.exe 1.7.0.1064 datfhs.dll 14.0.0.10153 hc_help.dll 1.64.0.1067 libeay32.dll 1.0.2.16 libexpatw.dll * ofcpipc_64x.dll 14.0.0.10153 osfagent_64x.dll 14.0.0.10153 iatas\iatashotfix\agentpackage\atas_agent_x64\apthealthcheckup ------------------------------------------------------------------- aptcheck64.exe 1.64.0.1067 aptptn_10002500.zip * iatas\iatashotfix\agentpackage\atas_agent_x64\newcomponent ------------------------------------------------------------------- aptptn_10002500.zip * iatas\iatashotfix\agentpackage\atas_agent_x86 ------------------------------------------------------------------- atasagent.exe 1.7.0.1064 datfhs.dll 14.0.0.10153 hc_help.dll 1.64.0.1067 libeay32.dll 1.0.2.16 libexpatw.dll * ofcpipc.dll 14.0.0.10153 osfagent.dll 14.0.0.10153 iatas\iatashotfix\agentpackage\atas_agent_x86\apthealthcheckup ------------------------------------------------------------------- aptcheck32.exe 1.64.0.1067 aptptn_10002500.zip * iatas\iatashotfix\agentpackage\atas_agent_x86\newcomponent ------------------------------------------------------------------- aptptn_10002500.zip * iatas\iatashotfix\bin ------------------------------------------------------------------- atas_forensicmanager.exe 1.7.0.1064 atas_messagereceiver.exe 1.7.0.1064 atas_service.exe 1.7.0.1064 libcurl.dll 7.78.0.0 sisv3.dll 1.7.0.1064 trend.ddak.pr.dll 1.7.0.1064 trend.sis.utility.dll 1.7.0.1064 trendosf.dll 1.7.0.1064 iatas\iatashotfix\setup ------------------------------------------------------------------- curlsharp.dll 1.0.6737.23568 endector.dll 1.7.0.1064 iatassetup.exe 1.7.0.1064 iatassetup.exe.config * ionic.zip.dll 1.9.1.8 log4net.dll 1.2.11.0 microsoft.web.administration.dll 10.0.14393.0 newtonsoft.json.dll 5.0.6.16206 trend.sis.utility.dll 1.7.0.1064 trendatasactiveupdate.dll 1.7.0.1064 ies ------------------------------------------------------------------- placeholder.txt * run.bat * ies\ieshotfix ------------------------------------------------------------------- commondefinition.dll 3.0.0.1651 config.dll 3.0.0.1651 config.xml * cryptography.dll 3.0.0.1651 debugmsg.dll 3.0.0.1651 excp4rcc.xml * google.protocolbuffers.dll 2.4.1.555 google.protocolbuffers.serialization.dll 2.4.1.555 icsharpcode.sharpziplib.dll 0.86.0.518 log4net.config * log4net.dll 2.0.13.0 mefplugininterfaces.dll 3.0.0.1651 mefpluginmgr.dll 3.0.0.1651 newtonsoft.json.dll 8.0.2.19309 pattern_info.txt * pipelines.sockets.unofficial.dll 1.0.7.56431 protobuflist.dll 3.0.0.1651 remoteobject.dll 3.0.0.1651 stackexchange.redis.dll 2.0.519.65453 svg.dll 2.2.1.39233 system.buffers.dll 4.6.25519.3 system.diagnostics.performancecounter.dll 4.6.26515.6 system.io.pipelines.dll 4.6.26814.2 system.memory.dll 4.6.26606.5 system.numerics.vectors.dll 4.6.25519.3 system.runtime.compilerservices.unsafe.dll * system.threading.channels.dll 4.6.26515.6 system.threading.tasks.extensions.dll 4.6.26606.5 tmslcore.dll 3.0.0.1651 tmufeclient.dll 3.0.0.1651 tmufeng.dll 3.91.0.1006 trendmicroendpointsensorservice.exe 3.0.0.1651 trendmicroendpointsensorservice.exe.config * utility.dll 3.0.0.1651 webcommunication.dll 3.0.0.1651 ies\ieshotfix\agentpackage ------------------------------------------------------------------- instupg_ies.zip * instupg_ies.zip.cat * instupg_ies_x64.zip * instupg_ies_x64.zip.cat * iserviceinst.ini * iserviceupd.ini * osfext_iesclient.dll 3.5.0.1215 osfext_iesclient_x64.dll 3.5.0.1215 ies\ieshotfix\cmdtool\ioctool ------------------------------------------------------------------- ioctool.exe 3.0.0.1651 mandiantioc.xsd * openioc.xsd * ies\ieshotfix\cmdtool\yara ------------------------------------------------------------------- yara.exe * ies\ieshotfix\plugins ------------------------------------------------------------------- agentstorage.dll 3.0.0.1651 attackdiscoverymanager.dll 3.0.0.1651 bifmanager.dll 3.0.0.1651 commandmanager.dll 3.0.0.1651 filemanager.dll 3.0.0.1651 pluginutil.dll 3.0.0.1651 policymanager.dll 3.0.0.1651 scanmanager.dll 3.0.0.1651 servermanager.dll 3.0.0.1651 servermetaquery.dll 3.0.0.1651 servermetastorage.dll 3.0.0.1651 taskmanager.dll 3.0.0.1651 tmufemanager.dll 3.0.0.1651 wineventlogmanager.dll 3.0.0.1651 ies\ieshotfix\plugins\dbschema\onpremise ------------------------------------------------------------------- agentstorage.dacpac * bifmanager.dacpac * commandmanager.dacpac * filemanager.dacpac * policymanager.dacpac * scanmanager.dacpac * servermanager.dacpac * servermetastorage.dacpac * taskmanager.dacpac * ies\ieshotfix\plugins\dbschema\saas ------------------------------------------------------------------- agentstorage.dacpac * bifmanager.dacpac * commandmanager.dacpac * filemanager.dacpac * policymanager.dacpac * scanmanager.dacpac * servermanager.dacpac * servermetastorage.dacpac * taskmanager.dacpac * ies\ieshotfix\pr\x64 ------------------------------------------------------------------- libcurl.dll 7.66.0.0 libeay32.dll 1.0.2.20 ssleay32.dll 1.0.2.20 tmprapi.dll 1.2.0.1158 zlibwapi.dll 1.2.11.0 ies\ieshotfix\pr\x86 ------------------------------------------------------------------- libcurl.dll 7.66.0.0 libeay32.dll 1.0.2.20 ssleay32.dll 1.0.2.20 tmprapi.dll 1.2.0.1162 zlibwapi.dll 1.2.11.0 ies\ieshotfix\setup ------------------------------------------------------------------- config.dll 3.0.0.1651 cryptography.dll 3.0.0.1651 debugmsg.dll 3.0.0.1651 google.protocolbuffers.dll 2.4.1.555 google.protocolbuffers.serialization.dll 2.4.1.555 log4net.config * log4net.dll 2.0.13.0 newtonsoft.json.dll 8.0.2.19309 redis-x64-3.0.504.msi * setup.exe 3.0.0.1651 setup.exe.config * utility.dll 3.0.0.1651 ies\ieshotfix\tool ------------------------------------------------------------------- config.xml * debugmsg.dll 3.0.0.1651 log4net.config * log4net.dll 2.0.13.0 trendmicroendpointsensorhelper.exe 3.0.0.1651 ies\ieshotfix\web\consolechannel ------------------------------------------------------------------- config.xml * log4net.config * web.config * ies\ieshotfix\web\consolechannel\bin ------------------------------------------------------------------- apihelper.dll 3.0.0.1651 apirouting.dll 3.0.0.1651 commondefinition.dll 3.0.0.1651 config.dll 3.0.0.1651 consolechannel.dll 3.0.0.1651 debugmsg.dll 3.0.0.1651 google.protocolbuffers.dll 2.4.1.555 google.protocolbuffers.serialization.dll 2.4.1.555 icsharpcode.sharpziplib.dll 0.86.0.518 log4net.dll 2.0.13.0 newtonsoft.json.dll 8.0.2.19309 newtonsoft.json.schema.dll 2.0.2.19309 protobuflist.dll 3.0.0.1651 remoteobject.dll 3.0.0.1651 svg.dll 2.2.1.39233 utility.dll 3.0.0.1651 ies\ieshotfix\web\fastlanechannel ------------------------------------------------------------------- config.xml * log4net.config * web.config * ies\ieshotfix\web\fastlanechannel\bin ------------------------------------------------------------------- apihelper.dll 3.0.0.1651 apirouting.dll 3.0.0.1651 commondefinition.dll 3.0.0.1651 debugmsg.dll 3.0.0.1651 fastlanechannel.dll 3.0.0.1651 google.protocolbuffers.dll 2.4.1.555 google.protocolbuffers.serialization.dll 2.4.1.555 icsharpcode.sharpziplib.dll 0.86.0.518 log4net.dll 2.0.13.0 newtonsoft.json.dll 8.0.2.19309 newtonsoft.json.schema.dll 2.0.2.19309 protobuflist.dll 3.0.0.1651 remoteobject.dll 3.0.0.1651 svg.dll 2.2.1.39233 utility.dll 3.0.0.1651 ies\ieshotfix\web\osfchannel ------------------------------------------------------------------- config.xml * log4net.config * web.config * ies\ieshotfix\web\osfchannel\bin ------------------------------------------------------------------- apihelper.dll 3.0.0.1651 apirouting.dll 3.0.0.1651 commondefinition.dll 3.0.0.1651 config.dll 3.0.0.1651 debugmsg.dll 3.0.0.1651 google.protocolbuffers.dll 2.4.1.555 google.protocolbuffers.serialization.dll 2.4.1.555 icsharpcode.sharpziplib.dll 0.86.0.518 log4net.dll 2.0.13.0 newtonsoft.json.dll 8.0.2.19309 newtonsoft.json.schema.dll 2.0.2.19309 osfchannel.dll 3.0.0.1651 protobuflist.dll 3.0.0.1651 remoteobject.dll 3.0.0.1651 svg.dll 2.2.1.39233 utility.dll 3.0.0.1651 ies\ieshotfix\xslt ------------------------------------------------------------------- diskioc-filter.xslt * invscan-to-table.xslt * invscan-transform-specified.xslt * invscan-transform.xslt * ioc-filter.xslt * native-ioc-filter.xslt * quickinvioc-filter.xslt * sweepioc-filter.xslt * xml-to-detaillist.xslt * xml2json.xsl * ivp ------------------------------------------------------------------- placeholder.txt * run.bat * ivp\ivphotfix ------------------------------------------------------------------- ivpserverinstaller.exe 3.0.0.2782 ivp\ivphotfix\agentpackage ------------------------------------------------------------------- hfx_ivp.zip * hfx_ivp.zip.cat * hfx_ivp_x64.zip * hfx_ivp_x64.zip.cat * instupg_ivp.zip * instupg_ivp.zip.cat * instupg_ivp_x64.zip * instupg_ivp_x64.zip.cat * iserviceinst.ini * iserviceupd.ini * ivp\ivphotfix\script ------------------------------------------------------------------- uploadlog.ps1 * openjdk ------------------------------------------------------------------- bundledjava.zip * B. Network Traffic Required in Deployment ------------------------------------------------------------------- Estimated size (in terms of bandwidth) of deployed agent files in this Critical Patch. - 32-bit agent total = 312 MB - 64-bit agent total = 403 MB
To download or view electronic versions of the documentation set for this product, go to http://docs.trendmicro.com
To access the Online Help, go to http://docs.trendmicro.com
1. Trend Micro Apex One Build 1062 - English - Windows - x32-x64
To install:
This Critical Patch installation package automatically rolls back the Apex One server to its previous configuration if there are problems during installation. If you encounter problems after installation, do a manual rollback.
To manually roll back to the previous build:
No post-installation steps are required.
NOTE: Trend Micro recommends that you update your scan engine and virus pattern files immediately after installing the product.
Known issues in this release:
The user or account name in Attack Discovery logs may be empty.
The signer info in the Attack Discovery logs may be empty.
Apex One Patch 4 only supports importing user role files (DAT extension) from other Apex One Patch 4 servers. You cannot import user roles from older server versions.
Data Loss Prevention (DLP) may block file transfers to a CompactFlash card unexpectedly even if users already added the external memory card reader to the USB exception list.
Solution
This Hotfix updates the DLP module to resolve this issue.
The Apex One agent program may allocate additional virtual memory space without releasing previous memory allocations.
Solution
This Hotfix update Apex One agent program to resolve this issue.
An issue occurs wherein the installation of the Apex One Agent VCRuntime component aborts when integrity checking fails on the "CCSF_PTN.zip" file.
Solution
This Hotfix updates the Apex One agent program to resolve this issue.
An issue occurs wherein the virus log of the Virtual Desktop Infrastructure (VDI) agent maps to an incorrect agent.
Solution
This Hotfix updates the Apex One agent program to resolve this issue.
The Apex One web console may display inaccurate agent count information on the Endpoint Status widget (Managed Agents) and the Update Summary screen (Total number of agents).
Solution
This Hotfix updates the Apex One server program to resolve the issue.
A defect exists wherein the "Update Now" function of the Apex One agents does not complete the update and eventually times out.
Solution
This Hotfix updates the Apex One agent program to resolve the issue.
The Apex Central console may display this predefined DLP data identifier as a false positive: Serbia: JMBG - Јединствени матични број грађана (Unique Master Citizen Number).
Solution
This Hotfix updates the Apex Central program to resolve this issue.
DLP may cause false positive alerts when browsing some websites.
Solution
This Hotfix updates the DLP module to resolve this issue.
DLP may not detect Taiwan addresses if there is a space in between the characters.
Solution
This Hotfix updates the DLP module to resolve this issue.
DLP may unexpectedly block file transfers to a USB device even if users already added the USB device to the exception list.
Solution
This Hotfix updates the DLP module to resolve this issue.
The Apexone agent console displays a "Protection Enabled" message even though the agent computer requires a restart.
Solution
This Hotfix updates the Apex One agent program to resolve this issue.
Users cannot adjust the settings when an "HTTP 502.2 – Bad Gateway" error appears if the ESMTP user name contains a percentage sign (%).
Solution
This Hotfix updates the Apex One server program to resolve this issue.
The Apex One management console does not display the firewall pattern and driver version information.
Solution
This Hotfix updates the Apex One agent program to resolve this issue.
The system does not delete database files during the Apex One server uninstallation process.
Solution
This Hotfix updates the Apex One server program to resolve this issue.
The Apex One does not send out email notifications if the NT LAN Manager (NTLM) ESMTP setting is turned on.
Solution
This Hotfix updates the Apex One server program to resolve this issue.
An issue related to the Behavior Monitoring feature causes protected computer systems to stop responding. This problem occurs because the system did not release the allocated memory properly.
Solution
This Hotfix updates the Behavior Monitoring module to resolve this issue.
An issue related to Behavior Monitoring may cause the operating system to stop responding.
Solution
This Hotfix updates the Behavior Monitoring module to resolve this issue.
The Real-time Scan service may stop unexpectedly after starting.
Solution
This Hotfix updates the related module to resolve this issue.
This Hotfix prevents users from applying the release if its version is older than the version they currently use.
When an agent is moved to another server and then moved to another server again without restarting, the corresponding balloon notification may not display after the second move.
Solution
This Critical Patch updates the Apex One agent program to resolve this issue.
An issue may cause the operating systems of agent computers to stop unexpectedly.
Solution
This Critical Patch updates the Apex One agent program to resolve this issue.
Apex One agent processes may fill up the RAM/Swap memory of FTP Servers.
Solution
This Critical Patch updates the Apex One agent program to resolve this issue.
The Apex One NT RealTime Scan service may stop responding because an agent update does not complete properly.
Solution
This Critical Patch updates the Apex One server and agent programs to resolve this issue.
The Server Migration Tool (ServerMigrationTool.exe) may import unknown URLs into the Web Reputation Service (WRS) approved/blocked list of new Apex One servers.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
An internal Apex One agent may recognize itself as an external agent when the agent endpoint is using Team Network Adapter.
Solution
This Critical Patch updates the Apex One agent program to resolve this issue.
This Critical Patch enables Apex One to display the firewall policy name in Firewall Violation logs on the Apex Central console.
NOTE: This feature requires the installation of a corresponding Apex Central hotfix to enable Apex Central to support this feature.
This Critical Patch resolves a CVE-2018-1285 Apache™ Log4net XXE vulnerability by updating log4net from version 1.2.15.0 to the latest version, 2.0.13.0.
This Critical Patch updates the module related to the Smart Protection Server to resolve an Out-Of-Bounds Read security issue.
This Critical Patch enhances the security check mechanism of Apex One agent services.
This Critical Patch improves the message integrity checking process of the Apex One server program to enhance security.
This Critical Patch updates the Apex One OpenSSL to version 1.1.1l and the cURL binary to version 7.78.0 to prevent a potential vulnerability issue.
The Application Control agent sends inaccurate managed server name information for detection logs which prevents users from identifying which server is being referred to.
Solution
This Patch updates the Application Control agent files to resolve this issue.
When "EnableCentralWhitelist=0" and Apex One detects a compressed file, the corresponding detection log will not be recorded in the virus log.
Solution
This Patch updates the Apex One agent program to resolve this issue.
During a Manual Scan, system area scans take a long time to complete.
Solution
This Patch updates the Apex One agent program to resolve this issue.
Procedure
To disable shortcut scanner:
[Global Setting] DisableShortcutScannerInMS=1
Path: 32bit: HKEY_LOCAL_MACHINE\SOFTWARE\TrendMicro\PC-cillinNTCorp\CurrentVersion\Misc. 64bit: \HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\TrendMicro\PC-cillinNTCorp\CurrentVersion\Misc. Key: DisableShortcutScannerInMS Type: DWORD Value: 1
An issue prevents the server migration tool from handling the Unload/Uninstall password settings.
Solution
This Patch updates the server migration tool program to resolve this issue.
When users install the Security Agent using an installation package created by running the clnpack command with the "/ua" variable, the new Security Agent does not act as an update agent.
Solution
This Patch updates the Agent Packager to resolve this issue.
The Apex One Common Client Solution Framework may stop unexpectedly.
Solution
This Patch updates Trend Micro Feedback Engine (TMFBE) to resolve this issue.
Inaccurate Data Loss Prevention™ (DLP) log size information display on the Apex Central console when the actual DLP log is larger than 2 GB.
Solution
This Patch updates the Apex One server program to resolve this issue.
An issue prevents the Apex One Personal Firewall from working normally on endpoints where Checkpoint Endpoint Security VPN is also installed.
Solution
This Patch updates the Apex One agent program to resolve this issue.
The Apex One NT WSC service persists after users uninstall Trend Micro Apex One Security Agent through the control panel of an agent computer.
Solution
This Patch updates the Apex One agent program to resolve this issue.
The DLP module may block USB storage devices that are already in the exception list.
Solution
This Patch updates the DLP module to resolve this issue.
An issue prevents the DLP module from blocking 7-zip files with the "Encrypt file name" function enabled.
Solution
This Patch updates the DLP module to resolve this issue.
The On-Premise self-protection feature is enabled by default since Patch 5. Some users may not be aware that this feature affects certain settings.
Solution
This Patch updates the self-protection feature information on the Apex One server console.
After Apex One Critical Patch 9233 is applied, newly-installed security agents may unload and reload repeatedly before restarting agent computers.
Solution
This Patch updates the Apex One agent program to resolve this issue.
The Apex One Apex Central Agent service may stop unexpectedly.
Solution
This Patch updates the Apex One Server program to resolve this issue.
The self-protection feature triggers Apex One agents to delete temp files for the Advance Threat Scan Engine (ATSE) which generates alerts in Windows Event Logs.
Solution
This Patch updates Apex One agent components to ensure that agents do not delete temp files for ATSE.
When multiple agents use the same IP to report to the Apex One server, multiple certificate mismatch alerts appear in the system event logs.
Solution
This Patch updates the Apex One Server program to resolve this issue.
When the Apex One Server application pool is configured to use the Application Pool Identity Model, users encounter "ACCESS DENIED failure accessing the pipes" and "503 HTTP error code" warnings.
Solution
This Patch updates the Apex One server program to resolve this issue.
OfficeScan XG Service Pack 1 agents that are managed by an Apex One server may update the Behavior Monitoring module repeatedly.
Solution
This Patch resolves this issue.
When users change the action of the Device Control rule for USB storage drives from "Block" to any other action, the Device Control feature of the Data Protection service may still incorrectly block allowed USB storage devices.
Solution
This Patch updates the Data Protection module to resolve this issue.
An issue related to process termination may prevent users from upgrading Security Agents from Trend Micro OfficeScan™ XG or XG Service Pack 1 to Apex One.
Solution
This Patch updates the Apex One Security Agent program to resolve this issue.
Blue screen of death (BSOD) may occur on Apex One Security Agent computers when the Apex One Firewall Service is enabled.
Solution
This Patch updates the Apex One Firewall components to resolve this issue.
An issue prevents the Application Control server from reporting the correct policy status to Trend Micro Apex Central™ when the policy contains a large number of Application Control rules.
Solution
This Patch updates the Application Control server files to resolve this issue.
The Update Agent downloads same components repeatedly which adds to and slows down network traffic.
Solution
This Patch updates the Apex One server program to resolve this issue.
Some registry keys and driver files remain on an agent computer after Application Control has been uninstalled.
Solution
This Patch updates the Application Control agent files to resolve this issue.
This Patch enables the Apex One Security Agent program to support Microsoft Windows™ 10 (version 21H2) November 2021 Update, Windows 11, and Windows Server 2022.
This Patch resolves an Authentication Privilege Escalation security issue.
This Patch updates the Apex One Agent program to enhance security against resource exhaustion attacks.
This Patch enables a newly-created domain to inherit the firewall profile of its parent domain by selecting the parent domain in the "Domain" attribute of the firewall profile settings.
This Patch updates the server program to enable it to support wildcard characters in the first part of URLs on the web reputation approved/blocked list, for example "http*://". This allows the server to specify HTTP and HTTPS URLs in a single entry.
This Patch updates the privilege escalation feature of the Apex One agent program to enhance security.
This Patch updates the Trend Micro Control Manager™ MCP AgentSDK to prevent a potential vulnerability issue.
The expiration date for the existing self-signed digital signature files is 2022/01/17. This Patch includes the renewed self-signed digital signature files to prevent Security Agents from performing repeated component downloads that may result in high bandwidth usage.
Apex One security agent computers may restart unexpectedly or experience blue screen of death (BSOD).
Solution
This Critical Patch updates the Apex One agent program to resolve this issue.
The Application Control feature can apply specific Application Control criteria for different Active Directory (AD) users or groups, however, the Application Control agent may not be able to perform the correct action if the endpoint login user belongs to different trusted domain.
Solution
This Critical Patch updates the Application Control agent files to resolve this issue.
After a protected computer restarts and the Apex One agent reloads, the Application Control feature may not be able to perform the correct action because the Active Directory (AD) was not initialized on time.
Solution
This Critical Patch updates the Application Control agent files to resolve this issue.
When configuring firewall policies exclusions, a warning message incorrectly warns users that they can specify up to 32 ports when the actual limit is 16 ports only.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
When users configure a new user account, the options selected in the "Edit user role" screen are not applied.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
In Spyware/Grayware logs, the Security Threat URL is invalid and redirects to the wrong web page.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
When users remove the "SupportConnector" folder and program, both are recreated after agent services restart.
Solution
This Critical Patch updates the Apex One agent program to resolve this issue.
The ADOException error from the Apex One Database Server may appear in the Windows event log.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
The Microsoft™ System Center Operations Manager (SCOM) agent may not work on Apex One security agent computers after Apex One Critical Patch 9601 is applied.
Solution
This Critical Patch updates the related module to resolve this issue.
The Data Loss Prevention™ (DLP) module may trigger duplicate violation notification windows when the User Justification feature is enabled in the policy.
Solution
This Critical Patch updates the DLP module to resolve this issue.
The Apex One server does not purge logs of unregistered Apex One agents from the Apex One SQL database.
Solution
This Critical Patch updates the Apex One server program to ensure that it promptly removes logs of unregistered agents from the SQL database.
When enabled, DLP may block users from saving information onto a mounted network drive unexpectedly.
Solution
This Critical Patch updates the DLP module to resolve this issue.
An issue related to the Unauthorized Change Prevention Service causes a slow system response while users save a file to network drive.
Solution
This Critical Patch updates the Apex One Security Server program and enables users to configure Apex One to skip certain events to help prevent the issue.
Procedure
To apply and deploy the solution globally:
After applying Apex One Critical Patch 9645 on the Apex One server with an Apex One security agent installed, the "Uninstalling..." button may appear on the "Plug-ins" page of web console.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
The Apex One Agent display name in the "Programs and Features" page remains as "OfficeScan XG" if it does not restart after upgrading from OfficeScan XG.
Solution
This Critical Patch ensures that the display name is updated promptly after the update without requiring a restart.
An issue related to the Apex One Security Agent purge function may cause a large number of VS* files to accumulate under the "temp" folder on the Security Agent.
Solution
This Critical Patch updates the Apex One Security Agent program to resolve this issue.
Security Agents may not properly detect and block uploads to Web Mail when Data Loss Prevention™ (DLP) is enabled.
Solution
This Critical Patch updates the Data Protection module to resolve this issue.
This Critical Patch resolves a Link Following Denial-of-Service security issue.
This Critical Patch resolves a Link Following Privilege Escalation security issue.
This Critical Patch updates the security of the Apex One server program.
This Critical Patch updates the permission control mechanism of the Apex One server program to enhance security.
This Critical Patch improves the permission control mechanism of the Apex One Server Service for enhanced security.
Both the Gray Detection Pattern and Threat Tracing Pattern may appear in the "Component Versions" page of the agent console.
Solution
This Critical Patch updates the Apex One agent program to ensure that the Gray Detection Pattern and Threat Tracing Pattern does not appear on the "Component Versions" page of the agent console.
The Application Control feature can apply specific Application Control criteria for different Active Directory (AD) users or groups, however, the Application Control agent may not be able to perform the correct action if the endpoint login user belongs to different trusted domain.
Solution
This Critical Patch updates the Application Control agent files to resolve this issue.
An issue prevents the Security Agent from uploading quarantined files with filenames encoded in UTF-8.
Solution
This Critical Patch updates the Apex One Server program to resolve this issue.
An issue prevents Data Loss Prevention™ (DLP) from detecting the transfer of information in Microsoft™ Outlook™ Web Access.
Solution
This Critical Patch updates the DLP module to resolve this issue.
DLP may trigger false alarms when data is transferred through certain websites.
Solution
This Critical Patch updates the DLP module to resolve this issue.
When enabled, Device Control may block users from saving information onto certain SD cards unexpectedly.
Solution
This Critical Patch updates the DLP module to resolve this issue.
Clicking on the "Restart Required" column on the agent tree does not sort the agents accordingly.
Solution
This Critical Patch updates the Apex One server program to ensure that the "Restart Required" filter works on Advance Search results.
A large number of firewall logs causes performance issues.
Solution
This Critical Patch updates the Apex One agent program to resolve this issue.
The "Agent Packaging Tool" option appears on the Apex One server's User Role permission settings.
Solution
This Critical Patch updates the Apex One Server program to remove this option from the User Role permission settings.
Administrators may not be able to enable XDR on the Apex One Server.
Solution
This Critical Patch resolves the issue by updating the Apex One Server Programs.
When an agent is upgraded to Apex One without connecting to the Apex One Server, the agent display name is not updated.
Solution
This Critical Patch ensures that the agent display name is updated under the scenario described above.
The "ofcservice.exe" process may stop responding under certain conditions.
Solution
This Critical Patch resolves this issue.
Users might not be able to download the Data Loss Prevention forensic data from the Apex Central console after applying Apex One Critical Patch 9629. The "Unable to download. The file has been removed by the managed product" message appears.
Solution
This Critical Patch updates Apex One server program to ensure users can download the Data Loss Prevention forensic data from the Apex Central console.
A system error prevents users from deploying a Vulnerability Protection Policy from Trend Micro Apex Central™ to Apex One agents.
Solution
This Critical Patch updates the Apex One Vulnerability Protection component to resolve this issue.
This Critical Patch enables users to export the Security Agent's component version to a file by running the following command:
Pccntmon.exe -v > C:\outputfile.txt
Where "outputfile.txt" is a user-specified file name of the output file.
This Critical Patch fixes a Null Pointer security issue in the Apex One program.
This Critical Patch fixes an Arbitrary File Creation by Privilege Escalation security issue in Apex One.
This Critical Patch fixes a Stack-based Buffer Overflow Privilege Escalation security issue in Apex One.
This Critical Patch improves the command authorization feature of the Apex One Server Program.
This Critical Patch enhances security by improving the permission assignment feature of Apex One.
When Behavior Monitoring detects ransomware in a file on a shared folder, the file may not be quarantined.
Solution
This Critical Patch updates the Apex One agent program to resolve this issue.
Multiple endpoints may use the same Data Loss Prevention™ (DLP) violation ID in violation logs.
Solution
This Critical Patch updates the DLP module to resolve this issue.
The DLP module may falsely detect invalid Indian Aadhaar numbers.
Solution
This Critical Patch updates the DLP module to resolve this issue.
An issue related to the DLP module may cause Apex One to block certain USB network adaptors unexpectedly.
Solution
This Critical Patch updates the DLP module to resolve this issue.
An issue prevents users from configuring the value of the "BypassTrustProgramListVerification" key normally on an agent computer.
Solution
This Critical Patch updates the Apex One Security agent program to fix the issue.
The Apex One Master Service may unexpectedly consume a high amount of CPU resources causing the web console to not load properly.
Solution
This Critical Patch updates the Apex One server program to fix the issue.
The Application Control Server may not be able to handle criteria that has been exported and imported again.
Solution
This Critical Patch updates the Application Control Server files to resolve this issue.
The Application Control agent may not be able to start successfully if there is an incomplete agent registry key.
Solution
This Critical Patch updates the Application Control agent files to resolve this issue.
After a Trend Micro OfficeScan™ XG Service Pack 1 server which uses conventional scan as scan method is migrated to an Apex One GM build server and Apex One Patch Build 8378 or any higher build is applied, an HTTP 404 error occurs when users download the Security Agent MSI installation package from the web console.
Solution
This Critical Patch updates the Apex One server program so users can download the Security Agent MSI installation package from the web console under the scenario described above.
An issue may prevent Apex One security agents from detecting an lsass credential dump through the Task Manager. This issue has been resolved in Patch 9565 but reappears after users apply Critical Patch 9601.
Solution
This Critical Patch updates the Behavior Monitoring module to fix this issue.
The "DLPForensicDataDelayUploadTracker.db" file is generated in the "C:\" drive of agent computers.
Solution
This Critical Patch updates the Apex One Security agent program to ensure that the "DLPForensicDataDelayUploadTracker.db" file is generated in the Apex One security agent installation folder.
Sometimes, the "User Name" field in Data Loss Prevention™ (DLP) violation logs is empty.
Solution
This Critical Patch updates the Data Protection module to resolve this issue.
This Critical Patch updates the permission assignment process of the Apex One Server program to enhance security.
This Critical Patch updates the permission control feature of the Apex One agent program to enhance security.
This Critical Patch updates the command authentication mechanism of the Apex One Server to enhance security.
This Critical Patch updates the command authentication mechanism of the Apex One agent to enhance security.
This Critical Patch updates the agent program to improve agent security.
This Critical Patch updates the Damage Cleanup Engine to resolve a Local Privilege Escalation security issue.
This Critical Patch updates the module related to the Smart Protection Server to resolve a Local Privilege Escalation security issue.
Policies on Apex Central may not be deployed successfully during automatic deployment.
Solution
This Critical Patch updates the Apex One Server program to resolve this issue.
When the "Hide these specified drives in My Computer" policy is enabled with the "Restrict all drives" option, local drives may not display preventing users from running system scans.
Solution
This Critical Patch updates the Apex One agent program to resolve this issue.
Procedure
To disable hidden drive in manual scan:
3rd-party application installation does not complete when Advanced Protection Service is enabled.
Solution
This Critical Patch updates the user mode hook event module to resolve this issue.
An issue related to the Data Loss Prevention™ (DLP) feature may prevent Apex One from blocking File Transfers during a Zoom Meeting.
Solution
This Critical Patch updates the DLP module to resolve this issue.
An issue related to the DLP Device Control can prevent Apex One from blocking USB network adapters.
Solution
This Critical Patch updates the DLP module to support Thinkpad USB 3.0 Ethernet Adapter.
An error message displays while a 3rd-party application is running on a protected computer.
Solution
This Critical Patch updates the Behavior Monitoring module to fix this issue.
Apex One does not send email notifications to administrators after detecting a security risk. Restarting the Apex One Master Service may solve the issue for a short period of time after which the issue recurs.
Solution
This Critical Patch helps prevent this issue by enabling users to configure the memory usage limit.
Procedure
To set the memory usage limit:
The metadata storage value of the Endpoint Sensor rolls back to default when the Trend Micro Smart Feedback is enabled.
Solution
This Critical Patch ensures that the metadata storage value of Endpoint Sensor does not change when the Trend Micro Smart Feedback is enabled.
The Apex One NT WSC Service may not be deleted when the Apex One Agent program is uninstalled.
Solution
This Critical Patch updates the Apex One agent program to resolve this issue.
An issue on the Apex One web console may prevent users from configuring the Apex One server external proxy.
Solution
This Critical Patch updates the server program to resolve the issue.
An issue prevents the Apex One Master Service from starting after a manual roll back from Patch 5 to the previous build.
Solution
This Critical Patch resolves the issue to ensure that the manual rollback proceeds normally.
Apex One servers that use a Microsoft™ SQL Server database may receive an installation error preventing them from installing the Patch 5 upgrade.
Solution
This Critical Patch updates the upgrade process to resolve this issue.
Blue Screen of Death (BSOD) may occur when users delete files from connected USB storage devices.
Solution
This Critical Patch updates the Behavior Monitoring module and enables users to configure Apex One to skip certain events to help prevent the issue.
Procedure
To apply and deploy the solution globally:
The Web Reputation Violation blocking page does not display when "AsyncServerLookup" is set to "0" on the agent computer.
Solution
This Critical Patch resolves this issue by updating the module related to the Web Reputation function.
An issue prevents Apex One from concurrently deploying multiple Vulnerability Protection (VP) policies successfully.
Solution
This Critical Patch updates the Apex One VP server program to resolve this issue.
The size of the Data Loss Prevention™ (DLP) log always appears as 2147483647 on the Apex One server web console when the triggering file on the endpoint is larger than 2GB.
Solution
This Critical Patch updates the Apex One server and agent programs to resolve this issue.
This Critical Patch resolves an Authentication Bypass security issue.
This Critical Patch enables the DLP module to support the identifier for Taiwan Business Administration Numbers.
This Critical Patch enhances the security of the agent process during start up.
This Critical Patch updates the Data Loss Prevention™ (DLP) module to extend the upload file size limit in "File Attributes" of Data Identifiers to 1024 GB.
An issue related to the Behavior Monitoring (BM) feature prevents users from creating a shared folder.
Solution
This Patch updates the BM module to fix the issue.
The Data Loss Prevention™ (DLP) device control feature blocks devices that are in the approved list.
Solution
This Patch updates the DLP module to resolve this issue.
An issue prevents the Apex One Security agent from scanning a newly-connected USB storage device.
Solution
This Patch updates the Apex One Security agent program to fix the issue.
The Apex One installation path cannot be obtained from the registry.
Solution
This Patch updates the Apex One server program to resolve this issue.
An issue related to the Behavior Monitoring feature may prevent Apex One from detecting an lsaas credential dump through the Task Manager.
Solution
This Patch updates the Behavior Monitoring module to fix this issue.
An issue related to the Behavior Monitoring (BM) feature causes agent computers to freeze.
Solution
This Patch updates the BM module and Apex One Security agent program to prevent this performance issue.
Procedure
To enable the new settings:
An issue prevents the Apex One server from deploying the iProduct policy from Trend Micro Apex Central™ successfully.
Solution
This Patch updates the Apex One server program to resolve this issue.
When users click the Security Threat link in Virus/Malware logs, they are redirected to an invalid page instead of to the Trend Micro Threat Encyclopedia.
Solution
This Patch updates the Apex One program to ensure that the Security Threat link redirects to the Trend Micro Threat Encyclopedia website.
An interoperability issue occurs between "LogServer.exe" and a third-party application on Apex One Security agents.
Solution
This Patch resolves this issue by adding a hidden key in the Apex One Security agent program.
Procedure
To enable the solution on Apex One Security agents:
Clicking on the "Restart Required" column on the agent tree does not sort the agents according to which needs to restart or not.
Solution
This Patch updates the Apex One server program to resolve this issue.
An issue related to the DLP device control feature causes blue screen of death (BSoD) on agents running on Microsoft™ Windows™ 10 after a Windows update.
Solution
This Patch updates the DLP module program to resolve this issue.
When a scan engine is rolled back on the Apex One server, the scan engine is not automatically rolled back on Apex One security agents.
Solution
This Patch updates the Apex One server program to ensure that the scan engine is automatically rolled back on Apex One Security agent once it is rolled back on the server.
When the Apex One server is installed on Windows 2012 or 2012 R2, the TLS handshake fails and a Schannel error is generated in the Windows event log.
Solution
This Patch updates the Apex One server program to resolve this issue.
A signature verification issue may prevent the Apex One server from properly accepting an Apex One Security Agent heartbeat notification.
Solution
This Patch updates the Apex One Security Agent program to resolve this issue.
The iES License deactivates unexpectedly on the Apex Central console.
Solution
This Patch updates the Apex One server program to resolve this issue.
A "Warning" message appears in the Windows Application Event Log when there are wildcard characters in the Scan Exclusion list.
Solution
This Patch updates the Apex One agent program to ensure that wildcard characters in the Scan Exclusion list does not trigger the warning.
When the Apex One agent is configured to use the Smart Protection Server Relay to query predictive machine learning, it uses the default port instead of the configured FRS port.
Solution
This Patch ensures that the Apex One agent uses the FRS port for machine learning SPS relay queries.
Domains and agents do not appear on the "Agent Management" page when users log on to the web console using an account under a sub-Active Directory (AD) user group that also belongs to the main AD group.
Solution
This Patch updates the Apex One server program to resolve this issue.
An issue prevents users from sending an email message with a particular file attachment.
Solution
This Patch updates the DLP templates to resolve this issue.
Under certain scenarios, the wrong NFC server fully-qualified domain name (FQDN) may be saved in the Japanese version of Apex One.
Solution
This Patch corrects the NFC server FQDN.
The Device Control feature reads different Device IDs for USB Storage Devices on different Security Agent computers.
Solution
This Patch updates the Data Protection module to resolve this issue.
The 3rd-party Eclipse program cannot be launched on when the Apex One Security Agent has Predictive Machine Learning enabled for process detections.
Solution
This Patch updates the Contextual Intelligence Engine to resolve the issue.
Security Agents that enabled the Apex One Predictive Machine Learning (for Process detections) feature may experience high CPU usage issues on the Trend Micro Unauthorized Change Prevention Service.
Solution
This Patch updates the Contextual Intelligence Engine to resolve the issue.
An issue prevents the Security Agent installation package (MSI) from being upgraded agents from OfficeScan XG / XG SP1.
Solution
This Patch updates the Apex One server program to resolve this issue.
Apex One Security Agents may appear "Offline" after the security agent is connected to the network through VPN.
Solution
This Patch updates the Apex One Security Agent program to resolve this issue.
A signature checking issue related to the Trusted Programs List may cause the Apex One NT RealTime Scan ("Ntrtscan.exe") service to stop unexpectedly.
Solution
This Patch updates the Apex One Security Agent program to resolve this issue.
An issue related to the Data Loss Prevention™ (DLP) exclusion settings may cause the Apex One NT RealTime Scan ("Ntrtscan.exe") service to stop unexpectedly.
Solution
This Patch updates the Data Protection module to resolve this issue.
A buffer overrun issue may cause the Apex One NT Listener service ("TmListen.exe") to stop unexpectedly. When this happens, the Apex One Security Agent is not able to update pattern files successfully.
Solution
This Patch updates the Apex One Security Agent program to resolve this issue.
A Digital Signature checking issue related to the Data Protection module may prevent Apex One Security Agents from updating the Apex One Security Agent program properly.
Solution
This Patch updates the Data Protection module to resolve this issue.
This Patch updates the Apex One Security Agent program to prevent a potential security issue.
This Patch updates the Apex One server program to prevent a potential security issue.
This Patch updates the permission control feature of Apex One agents to improve security.
This Patch updates the Apex One program to prevent a potential security issue.
This Patch enables the Apex One Security Agent program to support Microsoft Windows™ 10 (version 21H1) May 2021 Update.
This Patch enables the Apex One Vulnerability Protection module to support user-defined mode changes for each Intrusion Prevention rule.
NOTE: This feature requires the installation of Apex Central hotfix 5708 or above.
Procedure
To configure the user-defined mode:
This Patch removes a potential DLL Side-Loading Vulnerability in Apex One.
This Patch enables the Apex One server to use NTLM authentication for ESMTP.
This Patch changes the delimiter in C&C callback logs to prevent the conflict issues that may happen while processing the path.
NOTE: This enhancement requires you to update both the server and agent programs to ensure all functions work normally.
"Trend Micro Apex One Security Services Support Connector" can be removed from the task schedule by setting and deploying "EnableRP=0" in the server settings.
After Critical Patch 9204 is applied, Apex One may not be able to import the Web Reputation Settings (WRS) Approved/Blocked URL List.
Solution
This Critical Patch updates the Apex One Server program to ensure that the WRS Approved/Blocked URL list can be imported normally.
After upgrading from Trend Micro OfficeScan™ XG to Apex One, the agent program becomes corrupted because of incomplete file decompression during the upgrade process.
Solution
This Critical Patch updates the Apex One agent program to resolve this issue.
An issue related to the Behavior Monitoring (BM) feature causes the Horizon VMWARE CDR and RDSH applications to stop responding.
Solution
This Critical Patch updates the BM module program to ensure that both applications work normally on protected computers.
Procedure
To enable the new settings:
An issue related to the Unauthorized Change Prevention Service causes a slow system response while users browse the Internet.
Solution
This Critical Patch updates the Apex One Security Agent program to resolve this issue.
Procedure
To enable the new settings:
Inaccurate information appear in the "Spyware\Grayware Restore" page of the Apex One web console.
Solution
This Critical Patch updates the Apex One server program to ensure that the page displays complete and accurate information.
Users encounter an error while editing the firewall exception template on the Apex One web console.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
The Apex One Administrator Notification email messages do not contain Scan type information because the related function cannot retrieve the information.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
An issue related to the Apex One BM module causes the Vembu BDR Virtual Drive application to stop responding.
Solution
This Critical Patch updates the Apex One BM module to resolve this issue.
The Apex One server stops unexpectedly when it encounters an empty tmp file while serializing deployment contents.
Solution
This Critical Patch updates the Apex One Server program to resolve this issue.
The Apex One agent Realtime Scan service cannot start after the login user name is replaced with a customized user account.
Solution
This Critical Patch enables the Apex One agent program to always replace the name with "Localsystem".
A large number of "root" log-in logs are generated in the Apex One system event log because Apex Central periodically sends policies and commands to Apex One.
Solution
This Critical Patch provides a way to minimize the number of "root" log-in logs in the system event log.
Procedure
To reduce the number of "root" login logs in the System Event log:
An issue prevents the Apex One Security Agent program from resolving the server DNS name while processing census queries. As a result, ransomware sample detection fails.
Solution
This Critical Patch updates the Apex One Security Agent program to resolve this issue.
To avoid this problem:
The "Duplicate Active Directory structure into the agent tree" Apex One server setting is disabled unexpectedly.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
A log synchronization issue between Apex One and Apex Central sometimes causes the virus log data that appears as "Access Denied" on Apex One console to display as "File Passed" on the Apex Central console.
Solution
This Critical Patch fixes the synchronization issue of the virus detection logs.
When the Edge Relay Server registers to or unregisters from Apex One, the register/unregister task times out which can cause performance issues on the Edge Relay Server.
Solution
This Critical Patch extends the timeout setting of the register/unregister task to prevent the timeout issue.
An issue prevents users from enabling or disabling the Firewall through the global settings.
Solution
This Critical Patch resolves the issue so users with the correct privileges can enable or disable the Firewall through the global settings.
A Svrsvcsetup.exe exception occurs when users on Windows accounts attempt to connect to the SQL express database for Apex One.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
An issue prevents off premise agents from sending back detection logs through the Edge Relay Server.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
The Application Control criteria behaves abnormally after a switch in user accounts on a protected computer.
Solution
This Hotfix updates the Application Control Agent files to resolve this issue.
The Application Control agent cannot correctly allow or block applications launched by the operating system.
Solution
This Hotfix updates the Application Control Agent files to resolve this issue.
This Critical Patch updates permissions in the Apex One Agent program to enhance security.
This Critical Patch enhances the restoration of quarantined Spyware/Grayware files.
This Critical Patch updates the Apex One agent program to restrict the switch to MSI repair mode only to users with administrator privileges.
This Critical Patch updates the Data Loss Prevention™ (DLP) module to enhance security.
Remote Desktop Services may not be able to start on endpoints where Behavior Monitoring is enabled.
Solution
This Hotfix updates the Behavior Monitoring module to resolve this issue.
An issue related to the Spyware/Grayware Scan Engine causes the system performance to slow down.
Solution
This Hotfix updates the Spyware/Grayware Scan Engine to resolve this issue.
Users cannot add a RAM disk to the approved device lists because Data Loss Prevention™ (DLP) does not support this device.
Solution
This Hotfix updates the Data Protection module and Device List Tool (listDeviceInfo.exe) to resolve this issue.
After OfficeScan XG agents are migrated from an OfficeScan XG server to an Apex One server, the Network Adapter is automatically enabled on agents where DLP is enabled.
Solution
This Hotfix updates the Data Protection module to resolve this issue.
An ADO Recordset error causes some agents to disappear after users click the "Domain Hierarchy" button to sort agents in agent tree view.
Solution
This Hotfix updates the Apex One server program to resolve the error.
A delimiter issue in the target server IP address list prevents the Apex Central Automation API from moving Apex One Agents.
Solution
This Hotfix enables the Apex One server to recognize the comma "," as a valid delimiter for target server IP addresses. This helps ensure that the Apex Central Automation API can move Apex One Agents normally.
The Apex One Firewall may be unable to correctly identify the internal or external network status of an endpoint and therefore applies incorrect profile settings. This may prevent the endpoint from correctly accessing intranet locations.
Solution
This Hotfix updates the Apex One agent program to resolve this issue.
If users attempt to log on to the Apex One console using an Active Directory user account that contains a space character, the log on is unsuccessful.
Solution
This Hotfix updates the Apex One server program to resolve this issue.
The Device Control feature disables USB storage devices even when the security agent has been unloaded.
Solution
This Hotfix updates the Data Protection module to resolve this issue.
The USB device exception list in the DLP module supports serial IDs up to 32 digits only.
Solution
This Hotfix updates the Data Protection module and Apex One Server program to enable the USB device exception list to support longer serial IDs.
An Apex One Security Agent encounters a high CPU usage issue while installing updates.
Solution
This Hotfix updates the Active Update Module to resolve the issue.
A Microsoft™ Windows™ 10 upgrade fails during VBScript execution on protected computers.
Solution
This Hotfix updates the Apex One agent program to resolve this issue.
The Application Control agent cannot correctly allow or block applications launched by the operating system.
Solution
This Hotfix updates the Application Control Agent files to resolve this issue.
This Hotfix enables the Apex One Vulnerability Protection module to support the approved IP list.
NOTE: This feature requires the installation of Apex Central hotfix 5639 or above.
Procedure
To configure the approved IP list:
An issue prevents the Device List Tool (listDeviceInfo.exe) from retrieving certain SCSI disk device information.
Solution
This Critical Patch updates the Device List Tool (listDeviceInfo.exe) to resolve this issue.
Users encounter the following Microsoft™ Windows™ system event error message after disabling the "Global Agent Settings > Enable Early Launch Anti-Malware protection" feature on an endpoint.
"The Apex One NT WSC service failed to start due to the following error:
Windows cannot verify the digital signature for this file. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source."
Solution
This Critical Patch updates the Apex One Security Agent program to resolve this issue.
The Data Loss Prevention™ (DLP) feature cannot block Adobe™ Acrobat™ Reader DC from saving files into a connected USB storage device.
Solution
This Critical Patch updates the Data Protection module to resolve this issue.
When "bypass_itunes_nonstor_usb_dc=true", users can access an iOS phone from a protected computer even when the Device Control feature is configured to "Block" mobile devices.
Solution
This Critical Patch updates the Data Protection module to ensure that users will only be able to charge an iOS phone and not access it under the scenario described above.
An issue related to the DLP module causes certain developer tools to start slowly.
Solution
This Critical Patch updates the Data Protection module to resolve this issue.
An issue related to the DLP module causes a third-party application (Teleopti WFM) to stop responding unexpectedly.
Solution
This Critical Patch updates the Data Protection module to resolve this issue.
Certain Huawei webcam devices are recognized as "Modems".
Solution
This Critical Patch updates the Data Protection module to ensure such devices are correctly recognized as "Imaging Devices".
The Apex One Firewall also blocks network packets based on the connection status, as a result, some network packets may appear to be both blocked and accepted by the same rule in the corresponding Apex One Firewall logs.
Solution
This Critical Patch resolves this issue by updating the Apex One Security Agent program to allow users to disable the Firewall log for certain events.
Procedure
To configure Apex One to disable the Firewall logs certain events to help prevent the issue and deploy the solution globally:
The Apex One SQL program returns a data error after users upgrade to Build 9120.
Solution
This Critical Patch updates the Apex One SQL program to resolve this issue.
An issue triggers the Apex One Behavior Monitoring feature to close the Microsoft Office application unexpectedly.
Solution
This Critical Patch updates the Apex One Security Agent program to resolve this issue.
An issue causes the "Spyware/Grayware Outbreaks Alert" widget to return query results from the wrong time range.
Solution
This Critical Patch updates the Apex One server program to ensure that the widget returns logs generated within the specified time range.
The Active Directory (AD) displays abnormally after AD synchronization when the Organizational Unit (OU) name contains a "TAB" character.
Solution
This Critical Patch enables users to configure Apex One to handle OU names that contain a "TAB" character.
Procedure
To configure Apex One to handle OU names that contain a "TAB" character:
NOTE:
0: If the OU name does not contain a "TAB" (default)
1: If the OU name contains a "TAB"
An "osp_cb_dbGetClientsByCompName" stored procedure leakage issue prevents the "EnableCheckClientComputerName" hidden key from working normally. When this happens, duplicate hostnames are not purged automatically even when the key is enabled.
Solution
This Critical Patch resolves the memory leak issue to ensure that the "EnableCheckClientComputerName" hidden key works normally.
The following message displays on the "Result" field of Virus/Malware logs on the web console when the filename of an infected file contains certain special characters.
"Quarantine is successful at agent, but unable to send the quarantined file to the designated quarantine folder. Refer to the online help for solutions."
Solution
This Critical Patch updates the Apex One Security Agent program to resolve this issue.
An issue prevents the Web Reputation Service (WRS) from blocking access to HTTPS URLs on Microsoft™ Edge (Chromium) even when configured to block these websites.
Solution
This Critical Patch updates the Apex One Security Agent program to resolve this issue and ensure that WRS can correctly detect HTTPS URLs on the Edge web browser.
After applying Apex One Critical Patch 9167, when users generate a setup package while "ForceRefresh=1" in "ofcscan.ini" and use it to install an agent, the Apex One NT Listener service may remain busy and the newly-installed agent cannot be moved to another server using the IpXfer tool.
Solution
This Critical Patch updates the Apex One Security Agent program to resolve this issue.
The "Current Version" information for the Common Firewall Driver on the Agent Updates widget is not accurate.
Solution
This Critical Patch ensures that the correct "Current Version" information displays for the Common Firewall Driver on the Agent Updates widget.
The Real-time Scan feature may use up too much memory which can cause an Apex One agent computer to stop responding.
Solution
This Critical Patch updates the Apex One agent program to resolve the issue.
This Critical Patch updates the file privileges for the database log file in the server installation folder for enhanced security.
This Critical Patch helps prevent false Trend Micro process alerts during Yara investigations.
This Critical Patch fixes the Improper Access Control Privilege Escalation security issue.
This Critical Patch ensures that when an administrator grants users privileges to configure Manual Scan settings, Real-time Scan settings, Scheduled Scan settings and Mail Scan through the Security Agent console, these settings will not be overwritten by changes made through the Apex One console or Apex Central console.
After configuring Data Protection keys that monitor file uploads to websites, Security Agents may still randomly block file uploads to approved sites.
Solution
This Hotfix updates the Data Protection module to resolve this issue.
When users run a third-party inventory scanning software on a security agent computer, the Apex One Security Agent does not report the correct product version properly.
Solution
This Hotfix updates the Apex One Security Agent program to resolve this issue.
The Microsoft Windows login screen may stop unexpectedly after migrating an OfficeScan XG Security Agent to Trend Micro Apex One.
Solution
This Hotfix updates the Apex One Security Agent program to resolve this issue.
An Update Agent running on a 64-bit operating system and which updates agent programs from itself may not be able to upgrade from OfficeScan XG Service Pack 1 to Trend Micro Apex One successfully.
Solution
This Hotfix updates the Security Agent program to resolve this issue.
This Hotfix resolves a payload execution security issue.
This Hotfix helps ensure that Apex One Security agents do not send duplicate virus logs to the server.
An issue causes Apex One Security Agents to appear offline after an agent upgrade.
Solution
This Critical Patch updates the Apex One Security Agent program to resolve this issue.
Procedure
To apply the solution:
An issue prevents Apex One Security Agents from applying hotfixes successfully from the Apex One server.
Solution
This Critical Patch updates the Firewall module in Security Agents to resolve this issue.
Microsoft™ Word stops unexpectedly on Apex One Security Agent computers.
Solution
This Critical Patch resolves this issue.
Pop-up windows from internal websites do not display when Web Reputation is enabled on Security Agents.
Solution
This Critical Patch updates the Apex One Security Agent program and allows users to configure Apex One to skip certain events that cause the issue.
Procedure
To configure Apex One to skip certain events that cause pop-up windows to be blocked, deploy the following solution globally:
An issue related to the "cgiChkMasterPwd.exe" process may cause the Apex One server to stop unexpectedly.
Solution
This Critical Patch updates the Apex One server program to resolve the issue.
"Svrsvcsetup.exe" may stop unexpectedly during installation of Apex One Patch 3 and any later build.
Solution
This Critical Patch updates the Apex One server program to resolve the issue.
An Apex One server with Security Agent installed uses the agent proxy settings automatically which prevents Apex One from subscribing to the Suspicious Object lists on the registered Apex Central server.
Solution
This Critical Patch updates the Apex One program to resolve the issue.
When connecting to the census server, Security Agents do not bypass the proxy server even when configured to do so through the proxy auto-configuration (PAC) script file.
Solution
This Critical Patch updates the Apex One Security Agent program to resolve this issue.
An issue related to the VSAPI decompress function may cause a vulnerability in the Apex One program.
Solution
This Critical Patch resolves the issue to remove the vulnerability.
The Apex One server uses SSL port "4343" for server-agent communication, but the "TmCCSF.exe" agent process connects to the Apex One server port "443" in certain scenarios.
Solution
This Critical Patch updates the Apex One Security Agent program to resolve this issue.
The spyware scan feature of Manual Scan in Apex One Security Agents is affected by an Improper Access Control Privilege Escalation vulnerability.
Solution
This Critical Patch updates the Apex One Security Agent program to remove the vulnerability.
This Critical Patch enables Apex One to support the application filter hash matching feature for the Firewall Policy Exception so that users are able to specify applications to use the file hash value on.
Procedure
To enable the new settings:
This Critical Patch resolves an Out-Of-Bounds Write security issue in Apex One.
This Critical Patch resolves a Server-Side Request Forgery Information Disclosure security issue in Apex One.
This Critical Patch fixes the exposure of sensitive information to an unauthorized actor security issue.
This Critical Patch resolves an Out-Of-Bounds Read security issue in Apex One.
The Active Directory (AD) structure cannot be synchronized successfully with the Apex One server when the AD forest is large.
Solution
This Hotfix updates the Apex One server program to resolve this issue.
Apex One Off-premise Security Agents may still appear "Offline" on the Apex One web console even when these agents are already connected to the Edge Relay Server and are able to successfully receive the enhanced security policies across the network.
Solution
This Hotfix updates the Apex One SQL package to resolve the issue.
The domain users and groups used in User-Defined Rules for Application Control criteria can't take correct action based on criteria settings.
Solution
This Hotfix updates the Application Control files to resolve this issue.
Certain applications may take a long time to launch while the Device Control feature is enabled on a protected computer.
Solution
This Hotfix updates the Behavior Monitoring module to resolve this issue.
Procedure
To apply and deploy the solution globally:
The "Summary/Dashboard" screen of the Apex One web console displays as a blank page. This happens because the specified Microsoft™ Windows™ account does not have sufficient web service framework access permissions.
Solution
This Hotfix updates the Apex One server program to resolve the issue.
After applying Trend Micro Apex One Patch 3, the Security Agent status may not display accurately on the Apex One web console. This occurs if the existing Apex One SQL database was not migrated correctly which may corrupt the database.
Solution
This Hotfix updates the Apex One server program to resolve this issue.
Users cannot install the Security Agent remotely from the Apex One Web Console and get the "An error occurred. Make sure your network connection is active and that the Apex One service is running. If you encounter this error again, contact your support provider for troubleshooting assistance." message appearance.
Solution
This Hotfix updates the Apex One server program to resolve this issue.
This Hotfix enables users to configure the Apex One console to only display the Summary/Dashboard screen to users who log on using the "root" account. Enabling this feature will prevent all other accounts from viewing any dashboard widgets/data after logging on to the Apex One console.
Procedure
To configure Apex One to restrict access to the Dashboard to "root" account users:
Users may not be able to view Predictive Machine Learning Log Details on the Apex One web console when the file name or the file path contains Japanese characters.
Solution
This Patch updates the Apex One server program and SQL package to resolve the issue.
Users will not be able to uninstall a security agent using the "PccNTMon.exe -m <uninstallation password>" command if the agent uninstallation password contains "-c".
Solution
This Patch updates the Apex One Security Agent program to resolve this issue.
The following error occurs when users run the "autopcc.exe -f -u" command on an agent computer.
"Unable to upgrade/update the Apex One Security Agent. At least one file cannot be replaced. Unload the Apex One Security Agent and try again."
Solution
This Patch updates the Apex One server program to resolve this issue.
When an incorrectly formatted Device Control settings file is loaded, Apex One Real-time Scan does not start as expected.
Solution
This Patch updates the Apex One Security Agent program to resolve this issue.
Apex One cannot retrieve the correct domain information for agents that are in the Read-Only Domain Controller (RODC).
Solution
This Patch updates the Apex One agent program to resolve this issue.
The Apex One Master Service stops responding repeatedly after Apex One Patch 3 Build 8378 is applied.
Solution
This Patch updates the Apex One server program to resolve this issue.
Sometimes, an issue related to the "tmescore.sys" and "tmesutil.sys" drivers of the Apex One Endpoint sensor may trigger blue screen of death (BSOD) on Dell laptops.
Solution
This Patch updates the Apex One security agent program to resolve this issue.
The Apex One server may not display Security Agent logs on the web console.
Solution
This Patch updates the Apex One server program to prevent this issue.
The Apex One Common Client Solution Framework service may stop unexpectedly and create multiple dump files due to a threading issue.
Solution
This Patch updates the Apex One Security Agent program to resolve the issue.
The Apex One Common Client Solution Framework may stop unexpectedly on the Security Agents.
Solution
This Patch updates the Apex One Security Agent program to resolve this issue.
Apex One uses a version of PHP that may cause vulnerabilities.
Solution
This Patch upgrades PHP to version 7.4.9 to prevent these vulnerabilities.
Policy deployment failure issue when upgrade from Apex One B2xxx or earlier build.
Solution
This Patch updates the Apex One server program to resolve this issue.
An issue prevents External Agents from querying the Global Web Rating server using HTTPS.
Solution
This Patch resolves the issue so External Agents can query the Global Web Rating server using HTTPS normally.
When Apex One Security Agents are installed in Virtual Desktop Infrastructure (VDI) environment, virtual desktops are created and abandoned quickly which leaves a large number of duplicate machine name entries on the Apex One server web console. The entries will not have the same IP Address and MAC Address. This makes the total security agent count inaccurate. This Patch enables Apex One to delete duplicate machine name entries.
Procedure
To configure Apex One to delete the duplicate machine name entries:
This Patch updates the Server Migration tool program to prevent binary version mismatch issues.
Security Agent installation support for the Windows 10 October 2020 Update (20H2).
Installing Trend Micro Apex One Patch 3 also installs the Support Connector tool by default. This tool creates a scheduled task "Trend Micro Apex One Security Services Support Connector" and runs an hourly poll on the backend. This Patch allows users to disable the polling behavior. Refer to "https://success.trendmicro.com/solution/000232603" for details.
This Patch adds the SQL Transfer Tool to provide support to move the Endpoint Sensor database (if installed on the same SQL Server as the Apex One database).
This Patch improves the Data Loss Prevention forensic data upload to increase the maximum uploaded file size to 100MB. To better facilitate the import of larger files, the queue mechanism has been enhanced to minimize the risk of upload timeouts. In order to enable the larger file size upload, some manual configuration steps are required on the Apex One and Apex Central servers. For the detailed steps, see https://success.trendmicro.com/solution/000282727.
This Patch updates the Apex One information in the server and changes the default installation folder name to "Security Agent" for freshly installed agents.
This Patch adds Enhanced Support Services for Apex One server. This is part of a future update channel that will be used for rapid deployment of solution patches. Refer to the following website for more details. https://success.trendmicro.com/solution/000283789
An issue prevents the Trend Micro Apex One Data Protection Service from starting after Apex One Critical Patch 8417 is applied on a computer running on the Microsoft™ Windows™ 7 platform.
Solution
This Critical Patch updates the Data Protection module to resolve this issue.
When the Apex One Data Protection Service is enabled on the Apex One Security Agent, sharing files over a network may be delayed or blocked.
Solution
This Critical Patch updates the Data Protection module to resolve this issue.
DLP Violation Detection alerts may be generated through the HTTP/HTTPS channels when users drag files onto web browsers and the action is not for file upload.
Solution
This Critical Patch updates the Data Protection module to resolve this issue.
An issue related to the Apex One Data Protection Service can disable the Wireless NIC interface unexpectedly when users start the Mozilla(R) Firefox(R) web browser on protected computers.
Solution
This Critical Patch updates the Data Protection module to resolve this issue.
It may take a long time to share files between protected computers over a network when the Apex One Data Protection Service is enabled on the Apex One security agent.
Solution
This Critical Patch updates the Data Protection module to resolve this issue.
Sometimes, the Dashboard page of the Apex One web console appears as a blank page.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
After applying Apex One Patch 3, users may not receive email notifications for security risk detections.
Solution
This Critical Patch updates the TMNotify module to resolve this issue.
An ADOexception error on the Apex One Database Service may cause inaccurate agent count information to display on the "Managed Agents" group of the Endpoint Status Widget and on the "Total number of agents" field on the "Update Summary" page of the Apex One web console.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
Garbled characters may appear under the "Infected File/Object" column in Virus/Malware Logs on the Apex One web console.
Solution
This Critical Patch updates the Apex One Security Agent program to resolve this issue.
"Google Drive" displays in the "Channel" field in Trend Micro Data Loss Prevention™ (DLP) logs when it should be "OneDrive".
Solution
This Critical Patch updates the Data Protection module to resolve this issue.
On the "Agents > Agent Management > Status" page of the Apex One web console, the platform information of agents installed on the Microsoft™ Windows™ Server 2019 platform appear as Windows Server 2016.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
After applying Apex One Critical Patch 8400, users cannot save changes to the Web Reputation Settings on the web console.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
After applying Apex One Critical Patch 8400, the confirmation message does not display after users click "Save" on the "Spyware/Grayware Approved List" page.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
After applying Apex One Patch 3, the "Logs > System Events" page of the Apex One web console displays a blank page.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
Sometimes, an issue related to the Apex One Data Protection feature prevents users from opening an encrypted file through a third-party software.
Solution
This Critical Patch updates the Data Protection module to resolve the issue.
The Trend Micro Data Loss Prevention™ (DLP) module cannot block webmail in "Outlook.com" on any web browser.
Solution
This Critical Patch updates the DLP module to resolve this issue.
After an Apex One agent switches scan methods from smart scan to conventional scan, it becomes a conventional scan agent but its information still appear in the update logs of the Smart Scan Agent Pattern.
Solution
This Critical Patch resolves this issue by enabling Apex One to check the scan method of agents before writing agent component update logs.
After applying Apex One Patch 2, you may not be able to save new custom Security Agent domain names or group names on the "Add IP Address Grouping" screen if the name contains certain characters. Existing domains containing the characters may also appear garbled on the "Add IP Address Grouping" screen.
Solution
This Critical Patch updates the Apex One server program to prevent this issue.
The Apex One Behavior Monitoring feature may cause high CPU usage issues in protected computers.
Solution
This Critical Patch updates the Behavior Monitoring module to resolve the issue.
An issue prevents the Server Migration tool from importing the Trend Micro OfficeScan™ 11.0 Service Pack 1 server settings to Apex One.
Solution
This Critical Patch updates the Server Migration tool program to resolve this issue.
An issue prevents users from relocating Apex One agents to another server or another directory on the same server using the Apex Central Automation API.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
After applying Apex One Patch 3, users cannot move Security Agents to another server using the EnableMoveNATClient feature. This happens due to an enhanced security check mechanism for moving Security Agents in Patch 3.
Solution
This Critical Patch updates the security check mechanism to ensure that you can move Security Agents using the EnableMoveNATClient feature.
Users may receive false positive C&C callback alerts on Apex One security agents. This happens because the Network Content Inspection Engine (NCIE) reloads every few seconds.
Solution
This Critical Patch resolves the issue by updating the Apex One agent program.
The memory usage of the Apex One Security Agent console process "PccNt.exe" increases unexpectedly when it runs for a long time.
Solution
This Critical Patch updates the Apex One Security Agent program to resolve this issue.
The Trend Micro Unauthorized Change Prevention Service may slow down the performance of Microsoft™ Word applications when the officeatwork Add-In is enabled.
Solution
This Critical Patch updates the Behavior Monitoring module and enables users to configure Apex One to skip certain events to help prevent the issue.
Procedure
To configure Apex One to skip certain events to help prevent the issue and deploy the solution globally:
Users may not be able to send enhanced security policies to Security Agents across the network successfully when managing the Apex One server from the Apex Central web console. This happens because the specified Microsoft Windows account that manages the existing Apex One SQL database does not have sufficient web service framework access permissions when writing the related debug logs.
Solution
This Critical Patch updates the Apex One server program to prevent this issue from occurring.
Sometimes, users may not be able to run a security assessment on Security Compliance for Unmanaged Endpoints successfully.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
Certain third-party web applications may not work properly on endpoints with the Apex One Firewall enabled.
Solution
This Critical Patch resolves the issue by updating the Apex One Security Agent program and adjusting the service flow of the Trend Micro NDIS 6.0 Filter Driver (TmLWF.sys) in the Apex One Firewall.
There is a typographical error in the "Initiate Unloading" button on the "Agent Uninstallation" page of the Apex One French web console.
Solution
This Critical Patch updates the Apex One server files to correct the error.
NOTE: Please refer to the following link for the steps to show how an Administrator can unload single or multiple Apex One agents simultaneously from the Apex One web console if customer need: https://success.trendmicro.com/intkb/solution/1117401
On the Windows 10 platform, the SYSTEM process reports a commit size while the DLP service is running on agent computers.
Solution
This Critical Patch updates the DLP module to resolve this issue.
The DLP feature may block the USB Scanner application unexpectedly.
Solution
This Critical Patch updates the DLP module to resolve this issue.
An issue prevents users from enabling the DLP addin for Microsoft Outlook.
Solution
This Critical Patch updates the DLP module to resolve this issue.
A security agent's status may remain "Offline" and its location indicated as "external" even when it is already connected to the Apex One server.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
Sometimes, Apex One security agents cannot download pattern files from the Apex One server normally because the Apex One Real-time Scan ("Ntrtscan.exe") service runs into a deadlock situation.
Solution
This Critical Patch updates the Apex One security agent program to resolve the issue.
Users that do not have the required permissions may be able to access the Apex One (Mac) plugin console.
Solution
This Critical Patch updates the permission checkpoint logic to resolve the issue.
The Apex One Security Agent cannot retrieve the latest Application Control criteria because the Application Control policy content is incomplete.
Solution
This Critical Patch updates the Application Control policy files to resolve this issue.
An issue prevents users from selecting or deselecting applications in the Application Reputation List of the Application Control Criteria.
Solution
This Critical Patch updates the Application Control files to resolve this issue.
The Application Control certificate criteria does not work normally when matching by certificate types.
Solution
This Critical Patch updates the Application Control files to resolve this issue.
Users cannot move agents to a specific domain on the target server using the EnableMoveNATClient feature in the following command format:
This happens because the backslash "\" prevents the feature from retrieving the full domain name from the SQL database.
Solution
This Critical Patch updates the Apex One agent program to resolve this issue.
After applying Apex One Patch 3, the major version of the Virus Scan Engine should be "12", but appears as "10" on the "Update Summary" page.
Solution
This Critical Patch ensures that the correct major version information for the Virus Scan Engine appears on the "Update Summary" page.
After a Security Agent unsuccessfully attempts an upgrade, the error log incorrectly displays the Apex One server hostname, not the endpoint hostname.
Solution
This Critical Patch updates the Apex One Security Agent to properly record the endpoint hostname in the error logs.
Customized DLP templates disappear after applying Apex One Patch 3, because Patch 3 does not migrate these templates.
Solution
This Critical Patch adds the DLP templates migration process to prevent this issue.
On the Apex One web console, firewall logs do not display any process name information for incoming traffic detected.
Solution
This Critical Patch updates the Apex One server program to prevent this issue.
Procedure
To configure Apex One to skip certain events to help prevent the issue and deploy the solution globally:
After applying Apex One Patch 3, Apex One agents cannot update the Contextual Intelligence Query Handler component to version 1.100.1073.
Solution
This Critical Patch updates the install process to prevent this issue.
Outdated Apex One agents do not appear on the dashboard after users click the outdated link.
Solution
This Critical Patch updates the Apex One Server program to prevent this issue.
The Apex One scan exclusion setting does not work properly when there are no exclusions at the root level.
Solution
This Critical Patch updates certain SQL stored procedures to solve this issue.
Sample files are not sent to the Trend Micro Deep Discovery Analyzer server because the Apex One Deep Discovery service has stopped unexpectedly.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
False DLP alerts may be generated when users run "WinScp.exe".
Solution
This Critical Patch updates the DLP module to resolve this issue.
An issue related to the Trend Micro Browser Exploit Prevention module may cause an Out-of-bounds Read vulnerability.
Solution
This Critical Patch updates the Trend Micro Browser Exploit Prevention module to resolve the vulnerability.
Apex One is affected by an Improper Access Control Information Disclosure vulnerability.
Solution
This Critical Patch updates the Apex One server program to remove the vulnerability.
The Suspicious Connection Service stops after Apex One Patch 3 is installed on an external agent that does not directly connect to the Apex One server.
Solution
This Critical Patch updates the Apex One Security Agent program to resolve the issue.
After applying Apex One Patch 3, Trend Micro Apex One Antivirus appears multiple times in the query results when users check for antivirus software on a system using the following command:
wmic /namespace:\\root\securitycenter2 path antivirusProduct get /format:list
Solution
This Critical Patch updates the Apex One agent program to resolve this issue.
Third-party FTP applications may experience slow file transfer when the Apex One Data Protection Service is enabled on the Security Agent.
Solution
This Critical Patch updates the Data Protection module to resolve this issue.
After configuring the Data Protection keys that monitor file uploads to websites, Data Protection appears to randomly block uploads to any website.
Solution
This Critical Patch updates the Data Protection module to resolve this issue.
The Apex One Master Service stops unexpectedly after users upgrade an OfficeScan XG server to Apex One Patch 3.
Solution
This Critical Patch updates the Apex One server program to resolve this issue.
An issue prevents users from migrating an Apex One SQL server using SQL 2008 R2.
Solution
This Critical Patch updates the Apex One SQL program to prevent this issue.
Users may still be able to access USB storage devices even after setting the Device Control permissions for USB Storage Devices to "Block".
Solution
This Critical Patch updates DLP Endpoint SDK 6.2 to add a switch that responds when a device status changes to help prevent the issue from occurring.
Procedure
To enable the switch to respond when the device status changes:
Security Agent computers running on Microsoft™ Windows™ 10 May 2020 Update (20H1) may experience blue screen of death (BSOD) after waking up from sleep mode.
Solution
This Critical Patch updates the Behavior Monitoring module to resolve the issue.
This Critical Patch allows administrators to move agents to a specific domain on the target server using the EnableMoveNATClient feature by creating domain hierarchy under the "#moveto_<target Server IP or hostname>:HTTP port|HTTPS port" domain on the source server.
Procedure
To move agents to a specific domain on the target server using the EnableMoveNATClient feature:
This Critical Patch enables the Behavior Monitoring feature to handle "svchost.exe" events and adds the following registry entry on all Security Agent computers.
The Apex One Web Reputation feature cannot block websites in the Microsoft™ Edge™ Chromium web browser.
Solution
This Patch resolves the issue by enabling Apex One to support the Edge Chromium web browser.
The Trend Micro Data Loss Prevention™ (DLP) module generates two violation logs for a single Webmail action.
Solution
This Patch updates the DLP module to resolve this issue.
Procedure
To configure the Sync mode cache (for blocking action) setting:
The Apex One firewall service may block the connection to version 2.4.8 of OpenVPN.
Solution
This Patch updates the Apex One Security Agent program to resolve this issue.
Installation of Trend Micro Apex One Patch 3 may be unsuccessful due to required files being locked by unknown processes.
Solution
This patch resolves the issue by ensuring that the necessary files can be released and updated.
After installing Trend Micro Apex One Patch 3, Apex One (Mac) users were unable to log on to the console if the latest version of Apex One (Mac) was not installed.
Solution
This patch resolves the issue and ensures users can continue to access the Apex One (Mac) console.
During installation of Trend Micro Apex One Patch 3, an error may occur that prevented the necessary upgrade of Application Control files.
Solution
This patch resolves the Application Control issue.
A possible vulnerability existed that could allow an attacker to inject arbitrary files into an update file path if the Apex One server updated from a local directory.
Solution
This patch fixes the vulnerability.
Trend Micro Apex One was found to have the Improper Access Control Privilege Escalation Vulnerability.
Solution
This patch fixes the vulnerability.
vcruntime140.dll missing error when upgrading agents from OfficeScan XG / XG SP1
Solution
This patch resolves the agent upgrade issue.
If the following two keys have been added to an agent, the "PccNTMon.exe -n <password>" command will not work to unload the agent.
Solution
This Patch updates the Behavior Monitoring Module to resolve this issue.
In non-English Apex One versions, garbled characters appear in the exported CSV file of certain logs.
Solution
This Patch updates the Apex One server program to resolve this issue.
Security Agents can prevent ransomware attacks that leverage a vulnerability in the Encrypting File System (EFS) for Windows.
This Patch removes the "Exclude the Apex One server database folder from Real-time Scan" option from the "Security Settings" tab on the "Global Agent Settings" page of the Apex One web console since Apex One no longer uses Codebase database.
Apex One supports Security Agent installation on the Windows 10 May 2020 Update (20H1).
The Apex One server and Security Agents collect Windows event logs related to critical system events (move Security Agent, uninstall Security Agent, reset password) and sends the logs to Apex Central Product Auditing Event logs.
The Unload and Uninstall Security Agent feature includes enhanced password complexity requirements for better security.
Support Connector Tool can assist in deploying a dedicated Support Connector Package for performing further troubleshooting steps upon the customers authorization.
Please refer to https://success.trendmicro.com/solution/000232603
Except for the administrator account created during installation, user account passwords for the web console can be updated even when users have provided the wrong current password.
Solution
This hotfix updates the Apex One server program to remove the vulnerability.
When users set "bypass_itunes_nonstor_usb_dc=true" in the "dlp.ini" file of the Apex One server, they should be able to charge an iPhone on a Microsoft Windows™ 10 computer even when the device is set to "Block" Mobile Devices under the Device Control settings but users should not be able to access the iPhone. However, users can still access the iPhone under this configuration.
Solution
This hotfix updates the Data Protection module to ensure that when "bypass_itunes_nonstor_usb_dc=true", users may be able to charge an iPhone but not access it.
When the DLP service is enabled on Apex One security agent computers, Google Chrome 80 and higher versions may stop unexpectedly while users upload file attachments in Webmail.
Solution
This hotfix updates the DLP module to resolve this issue and enable it to block the upload of file attachments in Webmail on Google Chrome.
This hotfix updates the Apex One Security Agent program to allow users to disable the system balloon notification.
Procedure
To disable the system balloon notification:
NOTE: Specify the balloon IDs of each notification to be disabled.
For example, to disable the following three notifications, set:
This hotfix updates the Apex One Master Service to change the callback address token in C&C callback alert email notifications from "http/https" to "hxxp/hxxps".
Procedure
To apply the solution:
This hotfix adds the "UK: RD&E Hospital Number" field to the DLP module rule template.
After upgrading to Apex One Patch 2 Build 2146 and any higher version, users cannot register Apex One successfully to Trend Micro Apex Central™ using certificates.
Solution
After applying the hotfix, users can successfully register Apex One to Apex Central using certificates.
Endpoints with "VMware Airwatch Tunnel" connected may experience a performance issue with web browsers due to a signature issue with the Windows Antimalware Scan Interface (AMSI) integration feature.
Solution
This hotfix updates the signature on the AMSI provider to resolve this issue.
An issue prevents the Security Risk Detections Over Time Widget from working normally.
Solution
This hotfix updates the Upgrade SQL Schema to resolve the issue so the Security Risk Detections Over Time Widget works normally.
A manual update may take an unusually long time to complete when launched by right-clicking the Security Agent icon in the Windows Task Bar and then selecting "Update Now".
Solution
This hotfix updates the Apex One server program to resolve this issue.
The following message appears on the notification panel of the Apex One Dashboard even when the Apex One server has already registered to an Apex Central server.
"Apex Central recommended. Your product license includes additional security features managed directly from the Apex Central console. Integrate with Apex Central to start using Vulnerability Protection and Application Control."
Solution
This hotfix updates the Apex One server program to resolve this issue.
The Apex One Predictive Machine Learning (PML) feature may prevent users from running scripts to write files normally.
Solution
This hotfix resolves the issue by allowing PML to follow the Real-time Scan Exclusion settings to bypass certain file I/O events that are hooked by the Behavior Monitoring module.
Sometimes, enhanced security policies cannot be sent to Security Agents across the network successfully when the Apex One server is managed from the Apex Central web console. This may happen when some settings on the Microsoft Internet Information Service (IIS) Application Server Manager have not been set properly. However, there are no relevant debug logs for tracing this issue.
Solution
This hotfix updates the Apex One server program to enhance debug log visibility for this issue.
If the "Enable CVE exploit scanning for files downloaded through web and email channels" option of the Real-time Scan Settings is enabled, users may experience high CPU usage issues on protected computers when an on-demand Manual Scan, Scan Now, or Scheduled Scan starts.
Solution
This hotfix updates the Apex One security agent program to resolve the issue.
A restart is required to complete updates for certain drivers. This hotfix enables administrators to configure how frequent the "Restart Computer" notification pops up on the agent console.
Procedure
To set the interval and number of times of "Restart Computer" notification which is popped up from agent console.
For example, to set the "Restart Computer" notification to popup every 30 minutes up to three times when ignored by the user, set:
Under certain extreme conditions, the CRC full pattern update process goes into an endless loop and causes a high CPU usage issue.
Solution
This hotfix adds a new iCRC engine in Apex One to resolve this issue.
When disabling Windows Defender, the Apex One agent program always checks whether it is still running or has stopped. If it is still running, the Apex One agent calls the API to disable it and displays a "Restart Required" message on the Apex One agent console.
Solution
This hotfix updates the Apex One agent program to remove this checking mechanism so it does not trigger the "Restart Required" message on the Apex One agent console.
This hotfix provides a way to prevent Apex One from applying the settings of a new domain on automatically grouped agents. This means that when a group of agents are transferred to a new domain, the agents will retain the existing policy settings instead of following the settings of the new domain.
Procedure
To prevent Apex One from applying the settings of a new domain on automatically grouped agents:
NOTE: After applying this key, security agents that were automatically moved to new domains will not apply the settings of the new domain and will retain the existing policy settings.
Microsoft™ Windows™ updates take longer to complete and use up more CPU resources on computers where the Apex One on-prem agent program is installed.
Solution
This hotfix updates the Apex One security agent program to resolve this issue.
A buffer overrun issue prevents users from uninstalling the German version of the Apex One Security Agent successfully.
Solution
This hotfix resolves the buffer overrun issue.
When OfficeScan XG agents are migrated from an OfficeScan XG server to an Apex One server, the agent upgrade process may encounter a looping issue which prevents the agent program from upgrading to Apex One.
Solution
This hotfix resolves the issue by ensuring that the Apex One server program handles legacy files properly.
When users upgrade OfficeScan 11 agents to Apex One agents using an upgrade package generated by the Agent Packager tool, some files under the agent installation folder are not updated.
Solution
This hotfix updates the Apex One server program to ensure that the Agent Packager includes all the necessary binaries in the Apex One security agent "Setup" installer package.
The update source for the Integrated Smart Protection Server is automatically set to "Trend Micro Apex Central" in the "Apex Central" settings page.
Solution
This hotfix updates the Apex One server program to resolve this issue.
An exception error triggers the Apex One Master Service to stop unexpectedly while extracting a pattern file from a compressed file.
Solution
This hotfix updates the Apex One server program to enable it to handle the exception.
The Vulnerability Protection (VP) policy cannot be deployed because the Apex One VP agent program does not support customized installation paths (C:).
Solution
This hotfix updates the Apex One VP agent program to support customized installation paths.
It may take a long time to log on to Apex One security agent computers after start up.
Solution
This hotfix allows users to set the following three drivers that are related to the Virus Scan Engine to "on-demand start" on the Apex One security agent:
Procedure
To set the three drivers related to Virus Scan Engine to "on-demand start" on Apex One security agents:
Third-party applications may experience a performance issue when Behavior Monitoring is enabled on the Security Agent.
Solution
This hotfix updates the Behavior Monitoring module to resolve this issue.
After synchronizing Active Directory domains, some selected groups on the "Unmanaged Endpoints > Active Directory / IP Address Scope" screen are no longer selected.
Solution
This hotfix updates the Apex One server program to resolve this issue.
The attack discovery rule for "Winlogon execute sethc" triggers too many alerts.
Solution
This hotfix updates the rule to minimize alerts.
Endpoint Sensor returns an "upload file format incorrect" error if the YARA rule uses the hash module.
Solution
This hotfix updates the YARA library in both the server and agent program to resolve this issue.
Users may encounter a "Windows upgrade failed" error on an Apex One agent computer running on the Microsoft™ Windows™ 10 platform. This happens when the Apex One agent ever acted as an Update Agent (UA) and some existing files match the blocking software range in Microsoft Windows.
Solution
This hotfix updates the Apex One agent program and adds a folder checking mechanism to resolve the issue.
The Behavior Monitoring program inspection feature still blocks certain applications on Apex One security agent computers even after users have added these applications into the Trusted Programs List or the approved list of the Behavior Monitoring Exceptions on security agents.
Solution
This hotfix updates the Apex One security agent program to resolve this issue.
The "The To field must be between 1 to 256 characters." error message displays on the "Administration > Notifications > Administrator > Email" tab when users click on the "Save" button after ticking the following options in the Virus/Malware Detections, Spyware/Grayware Detections, or C&C Callbacks section.
Solution
This hotfix updates the Apex One server program to prevent the error and ensure that users can update and save the notification settings normally.
Apex One may not be able to download the Web Blocking List component from smart protection sources because the Trend Micro Local Web Classification Server service stops unexpectedly.
Solution
This hotfix updates the Apex One server program to resolve this issue.
The Trend Micro Data Loss Prevention™ (DLP) service does not work normally in Google Chrome and Microsoft Internet Explorer™ with HTTPS.
Solution
This hotfix updates the DLP module to resolve this issue.
In the Traditional Chinese version, garbled characters appear in the exported CSV file of DLP logs.
Solution
This hotfix updates the Apex One server program to resolve this issue.
The Apex One Master Service may stop unexpectedly because the allocated memory was not released properly.
Solution
This hotfix updates the Apex One server program to resolve this issue.
After Patch 2146 is applied, users encounter an error while manually deleting logs from the "Log Criteria" on the "Agents > Agent Management > Logs > Delete Logs" and "Logs > Agents > Security Risks > Delete Logs" pages.
Solution
This hotfix updates the Apex One server program to resolve this issue.
This hotfix allows the Apex One agent to bypass the proxy settings when connecting to the Apex One server if it detects a proxy exception. This hotfix also improves the duration of manual updates on Apex One agents.
This hotfix provides a way to configure Apex One to keep track of when USB storage devices are plugged into Apex One security agent computers. The logs can be queried in the Device Control violations on the Apex Central web console. These events are also recorded in the "UsbInsert_yyyymmdd.log" file on the Apex One server "\PCCSRV\Log" folder.
NOTES:
Procedure
To configure Apex One to keep track of when USB storage devices are plugged into Apex One security agent computers:
NOTE: To disable the setting, set this key to "0".
The Apex One Behavior Monitoring feature may use up a huge amount of memory on certain protected computers.
Solution
This patch updates the Behavior Monitoring module to resolve this issue.
The following two issues related to the Apex One Data Protection Service may occur on protected computers:
Solution
This patch updates the Data Loss Prevention™ (DLP) module to resolve this issue.
The DLP module cannot properly block users from uploading file attachments on endpoints running Microsoft™ Windows™ 10 Redstone 5 (version 1809).
Solution
This patch updates the DLP module to resolve this issue.
This patch applies updates to improve the security of Apex One server operations.
This patch enables users to configure Apex One to use a customized OfcOSFWebApp certificate.
Procedure
To configure Apex One to use a customized OfcOSFWebApp certificate:
NOTE: Please contact Trend Micro Support for the procedures to adding a customized OfcOSFWebApp certificate.
An issue prevents the Application Control agent service from initializing the Digital Signature Pattern (tmwlchk.ptn) in lockdown mode. Application Control needs this pattern to determine which applications are from trusted Trend Micro vendors to be able to allow these applications to run from a protected computer.
Solution
This hotfix updates the Application Control files to resolve this issue.
Executable files take a long time to launch on network drives when the Behavior Monitoring service is enabled.
Solution
This hotfix updates the Behavior Monitoring module to resolve this interoperability issue.
Procedure
To apply and deploy the solution globally:
The Apex One firewall service may block the connection to version 12.1.51.19 of the Citrix Gateway.
Solution
This hotfix updates the Apex One security agent program to ensure that the firewall policy exception list works normally.
The exceed unmanaged agents IP ranges logs cannot be displayed when there are more than 201 sets of IP ranges.
Solution
This hotfix updates the Apex One server program to resolve this issue.
An issue prevents Apex One security agents from updating the Data Loss Prevention™ (DLP) policy successfully.
Solution
This hotfix updates the DLP module to resolve this issue.
The DLP service triggers an alert on a single instance of Movement Reference Number (MRN) when sending as an email.
Solution
This hotfix updates the DLP module to resolve this issue.
The link on the Apex One server dashboard notification redirects to an unavailable website.
Solution
This hotfix updates the Apex One server HTML files to ensure that the link redirects to the correct website.
Security Agents should use the configured Smart Protection Service Proxy settings when querying Smart Protection sources for the Predictive Machine Learning and the Behavior Monitoring features. However, Security Agents still use the proxy settings configured in Microsoft™ Internet Explorer™ to access the network even when the Smart Protection Service Proxy is enabled.
Solution
This hotfix updates the Apex One agent program to resolve this issue.
An Apex One agent installed on Microsoft Windows™ Server 2016 may appear "Offline" on the Apex One web console. This happens because the HTTPS communication port of the agent cannot be successfully initialized for listening while the protected computer starts.
Solution
This hotfix updates the Apex One agent program to prevent this issue from occurring.
An ADOexception error appears in Apex One server's Event Viewer logs when the Apex One Database Service encounters an exception because an invalid GUID was sent to the SQL server.
Solution
This hotfix updates the Apex One server program to resolve this issue.
If OfficeScan 11.0 or OfficeScan XG Agent (before Service Pack 1) is upgraded to Apex One Agent, clients will not be able to establish a connection to the server because the agent now uses HTTP communication but the server incorrectly recognizes it as HTTPS. As a result, the client appears offline on the web console.
Solution
This hotfix updates the Apex One program to resolve this issue.
The ASE setting on the agent side switches to "0" unexpectedly.
Solution
This hotfix updates the Apex One security agent program to prevent this issue.
This hotfix extends the validity of Microsoft certificates for some expired DLP drivers.
Apex One security agents may encounter a blue screen of death (BSOD) when the Osprey kernel file (tmusa.sys) is unloaded unexpectedly.
Solution
This critical patch updates the Trend Micro EagleEye Driver to resolve this issue.
A high CPU usage issue occurs on the Apex One server computer.
Solution
This critical patch updates the Attack Discovery pattern to help prevent the high CPU usage issue on the Apex One server computer.
The PowerShell command line sometimes automatically converts uppercase characters to lowercase.
Solution
This critical patch ensures that the PowerShell command line does not automatically convert uppercase characters to lowercase.
A potential process communication risk in the security agent exists in the Apex One server.
Solution
This critical patch updates the Apex One server program to remove this vulnerability.
A potential file deletion issue with system privileges exists via a Directory Traversal vulnerability in security agents.
Solution
This critical patch updates the Apex One server program to remove this vulnerability.
A potential issue with file uploads exists via a Directory Traversal vulnerability in security agents.
Solution
This critical patch updates the Apex One server program to remove this vulnerability.
The "Plug-ins" page does not display normally when users Single Sign-On (SSO) to the Apex One web console from the Apex Central web console.
Solution
This critical patch updates the Apex One server files to resolve this issue.
This critical patch integrates Windows Antimalware Scan Interface (AMSI) with Apex One to improve protection against malicious scripts.
Procedure
To enable the new settings:
This critical patch enhances the security of the Server Migration Tool.
This critical patch updates the program update checking logic on Apex One security agents to help ensure that only authentic program updates are applied.
This critical patch adds Endpoint Sensor features by enabling the use of on-premises Apex Central to manage on-premises Apex One servers. This enhancement requires users to upgrade on-premises Apex One servers to Build 2117 and on-premises Apex Central servers to Build 4363 or any higher build.
The Application Control agent service is dependent on some Microsoft™ Windows™ services. If some Windows services are not running, the system does not start the Application Control agent service.
Solution
This hotfix resolves the Application Control agent service dependency issue. After applying this hotfix, the Application Control agent service starts some Windows services automatically as it is starts up.
The system cannot successfully install the Application Control server if the SQL server contains a semi-colon (";") in its password.
Solution
This hotfix resolves this issue so that the system can install the Application Control server successfully.
Data Loss Prevention™ (DLP) feature may slow down the performance of certain web applications on the Apex One Security agent.
Solution
This hotfix updates the DLP module to resolve this issue.
NOTE: Please refer to the following link for the steps to manually set the monitored websites if customer need: https://success.trendmicro.com/intkb/solution/1120248
The 3rd-party ICE WebStart program cannot be launched while the Apex One Firewall service is running.
Solution
This hotfix updates the Trend Micro Apex One Firewall components and provides a way to prevent this issue from occurring.
Procedure
To enable the new settings:
The Apex One Behavior Monitoring feature may prevent users from opening Microsoft Office applications normally and may cause high CPU usage issues on protected computers.
Solution
This hotfix updates the Apex One agent program to resolve this issue.
Procedure
To apply and deploy the solution globally:
This hotfix enables the Apex One server to download the list of approved mobile devices and USB storage devices from the Device Control settings in the Apex Central server and to deploy the list to Apex One security agents.
Procedure
To configure Apex One server to download and deploy the Device Control approved list of mobile devices and USB storage devices from the Apex Central server to all Apex One security agents:
For example:
NOTE: The "Device" field is optional, if there is no device type listed in the CSV file, it will be treated as "USB Storage Devices".
NOTE: Users can import the Device Control approved list from the "Policies > Policy Resources > Device Control Allowed Devices" page of the Apex Central console.
NOTE: On the Apex One server, users can check the "DC_GLOBAL_DEV_EXCEPTION" section in "dlp.ini" file under the "\PCCSRV\Private" folder.
For example:
On the Apex One security agent, users can check the "dc_in.xml" and "dc_out.xml" file under the "\Security Agent\dlplite" folder.
For example:
This hotfix removes the "Enable debug log" check box from the "Debug Log Setting" window in the Apex One console.
When administrators set the Internet proxy settings from the browser, the Apex One Security proxy always applies the Internet proxy settings to update components from the Trend Micro Global ActiveUpdate server instead of the Apex One server.
Solution
This hotfix enables the Security Agent console to allow administrators the option to choose and apply "Use Windows Internet Options Settings" when updating components.
By default, the system does not apply and update components from the Apex One server.
On computers with low specifications, the Application Control agent may run into performance issues when several applications installed on the computer match the Application Control criteria.
Solution
This hotfix helps prevent the performance issues by enabling the Application Control agent to store matched applications in the criteria cache after these applications run for the first time.
A "Failed to get server certificate." error appears on the installation log during Advanced Threat Assessment Service installation.
Solution
This hotfix resolves the error so the Advanced Threat Assessment Service can be installed successfully.
The real-time scan exception settings from the Apex One security agent are restored unexpectedly after an Apex One security agent update.
Solution
This hotfix updates the Apex One security agent program to preserve the current real-time scan exception settings after an Apex One security agent update.
The Apex One agent keeps track of un-scanned files but does not send the information to the server, so users do not see the information on the Apex One server.
This hotfix enables Apex One agents to upload un-scanned file logs to the "C:\Program Files (x86)\Trend Micro\Apex One\PCCSRV\Log\UnScanFile" folder on the server.
The Apex One Vulnerability Protection service cannot start successfully on the Turkish version of the Microsoft™ Windows™ server platform because it uses the all caps version of the database column name, "SYSTEMVERSIONID".
Solution
This patch updates the database column name in the Apex One Vulnerability Protection server to "SystemVersionID" to resolve this issue.
A program on an endpoint triggers the Behavior Monitoring module.
Solution
This patch adds a command related to the program to the exception list to solve this issue.
Procedure
To apply and deploy the solution globally:
This patch enables the Apex One security agent program to support Microsoft Windows™ 10 (version 1909) November 2019 Update.
This patch adds a mechanism that can help reduce the probability of errors during Apex One server and Apex One security agent updates.
The maximum supported character length of the following registry key on Apex One security agents may be insufficient to save the proxy exceptions list.
Solution
This hotfix extends the registry key's maximum supported character length to resolve this issue.
A performance issue occurs on Apex One agent computers because a module generates a large number of logs.
Solution
This hotfix updates the user mode event related module to version 8.5.2065 to solve the issue.
The Apex One Predictive Machine Learning feature may prevent users from running scripts through a third-party application normally.
Solution
This hotfix provides a way for users to make and edit a list of approved programs to run with deferred scanning by Predictive Machine Learning to prevent these issues.
Procedure
To create and edit the list of approved programs to run with deferred scanning by Predictive Machine Learning:
For example:
The Trend Micro Vulnerability Scanner (TMVS) cannot perform remote installation when the logon account password includes special characters.
Solution
This hotfix updates TMVS to resolve this issue.
On the Apex One web console, users may be able to view the user account that have just been logged out by pressing the back button of the web browser.
Solution
This hotfix updates the Apex One server program to prevent this issue from occurring.
On the Apex One web console, the "PHPSESSID" and "wf_CSRF_token" cookies are the same for every logon session.
Solution
This hotfix ensures that the widget framework generates new "PHPSESSID" and "wf_CSRF_token" cookies for each new logon session.
An issue prevents the Apex One server from deploying the following settings to Apex One security agents properly.
Under the "Privileges and Other Settings > Other Settings".
Solution
This hotfix updates the Apex One server program to resolve the issue.
The Apex One security agent does not send the "Logon User" information to the Apex One server when the Apex One server restricts the user's access to the security agent console only from the system tray or from the Microsoft™ Windows™ "Start" menu.
Solution
This hotfix updates the Apex One security agent program to ensure that Apex One security agents send the "Logon User" information to the Apex One server under the scenario described above.
The Apex One Endpoint Sensor receives several user mode events that can prevent Microsoft™ RemoteApp from updating the event source.
Solution
The Apex One Endpoint Sensor changes the event source from User mode to kernel mode to resolve this issue.
The Export Info Tool stops unexpectedly when querying virus logs.
Solution
This hotfix updates the Apex One server program to resolve the issue.
Users may not be able to activate managed product licenses (Application Control, Endpoint Sensor, Vulnerability Protection) across the network successfully when managing the Apex One server from the Apex Central web console. This happens because the Apex One server does not handle the license key string properly.
Solution
This hotfix updates the Apex One server program to resolve this issue.
The Apex One NT Listener service (TmListen.exe) may cause a high CPU usage issue on security agents.
Procedure
To apply and deploy the solution globally:
A directory traversal vulnerability may allow an attacker to log on to the Apex One Management Console as a root user.
Solution
This critical patch updates the Apex One server program to remove the vulnerability.
A command injection vulnerability may allow an attacker to extract files from an arbitrary zip file to the specific folder in Apex One server.
Solution
This critical patch updates the Apex One server program to remove the vulnerability.
This hotfix provides a way to delay Application Control hooking events while an endpoint computer starts up.
Procedure
To apply this solution:
In certain environments, the Behavior Monitoring feature may add the "csrss.exe" file to the kernel exception later than expected which can then cause an interoperability issue that can trigger security agent computers to stop unexpectedly.
Solution
This hotfix updates the Behavior Monitoring module and enables users to configure the Behavior Monitoring feature to add "csrss.exe" to the kernel exception earlier to prevent the interoperability issue.
Procedure
To apply and deploy the solution globally:
Enhanced security policies may not be sent to Security Agents across the network successfully when users manage the Apex One server from the Apex Central web console. This happens when the Apex One SQL database is installed on a Microsoft™ SQL Server that users a collation method other than the default "SQL_Latin1_General_CP1_CI_AS".
Solution
This hotfix updates the Apex One server program to resolve this issue.
This hotfix enables users to query the OSFWebApp web service status through the "svrsvcsetup.exe" tool using the following command on the Apex One server command prompt.
svrsvcsetup.exe -testosfwebapp
This hotfix enables users to search for multiple agents on the "Agent Management" page by specifying multiple agent names in the "Search for endpoints" text box.
NOTES:
After a built-in Active Directory (AD) user group, for example "Administrators", is added in the "User Accounts" settings, and users login to Apex One using an AD account in this group, the Apex One console will not display any user or domain in "Agent Management" view.
Solution
This hotfix updates Apex One server program to resolve the issue.
This hotfix enables Apex One to support Microsoft Windows 8.0.
NOTE: If the security agent has been installed on Windows 8.0, it will be registered to the Apex One server after it restarts.
This hotfix updates the Trend Micro Data Loss Prevention™ (DLP) module to ensure that it can block drag-and-drop file operations in Google Chrome 76 and 77.
The Apex One Security Agent service stops responding while starting after Apex One Hotfix 1141 is applied.
Solution
This hotfix updates the Apex One security agent program to resolve this issue.
An issue prevents users from successfully installing the Application Control agent on endpoints with Chinese computer names.
Solution
This hotfix resolves the issue so the Application Control can be installed successfully on affected endpoints.
The information in the "action" column on Data Loss Prevention™ (DLP) logs in Apex One server is not consistent with the corresponding information in the DLP logs on Apex Central server.
Solution
This hotfix resolves the issue by modifying the wording in the "action" column in DLP logs on both the Apex One server and agents.
An issue prevents the Trend Micro Advanced Threat Assessment Service from starting successfully.
Solution
This hotfix resolves the issue.
Garbled characters may appear in syslog if the language setting of the operating system contains Big-5 characters.
Solution
This hotfix resolves the issue.
The Apex One Endpoint Sensor cannot detect the dump of lsass.exe (Local Security Authority Process).
Solution
This hotfix resolves this issue by adding hooking points for event correlation to detect the suspicious attack behavior.
Advanced Threat Assessment has a new process that collects additional information.
The device control function does not work if the policy is deployed for a specific user and the username contains Hebrew characters.
Solution
This hotfix updates Apex One security agent program to resolve the issue.
The Smart Scan Service may behave abnormally on Apex One Security Agents when multiple proxy servers have been configured for each protocol (HTTP, Secure, FTP, Socks) in the Microsoft™ Internet Explorer™.
Solution
This hotfix updates the Apex One Security Agent program to ensure that the Smart Scan Service works normally when multiple proxy servers are configured for Internet Explorer.
Users may not be able to activate managed product licenses (Application Control, Endpoint Sensor, Vulnerability Protection) or may not be able to send the enhanced security policies to Security Agents across the network successfully when managing the Apex One server from the Apex Central web console. This happens because the specified Microsoft Windows™ account that manages the existing Apex One SQL database does not have sufficient web service framework access permissions.
Solution
This hotfix resolves the issue by updating the SQL Server Database Configuration Tool to add the Windows account to the IIS_IUSRS group to obtain the correct permissions.
Procedure
To add the Windows account to the IIS_IUSRS group to obtain the correct permissions:
Users may not be able to activate managed product licenses (Application Control, Endpoint Sensor, Vulnerability Protection) or may not be able to send the enhanced security policies to Security Agents across the network successfully when managing the Apex One server from the Apex Central web console. This happens because:
Solution
This hotfix updates the SQL Server Database Configuration Tool to ensure that the Apex One server uses the correct authentication credentials for the SQL Server database.
Procedure
To ensure that the Apex One server uses the correct authentication credentials for the SQL Server database:
This hotfix improves the accuracy of the Apex One Application Control version reporting to Apex Central.
The "Active Directory Integration" page may expose the credential key when the page is opened with developer tools on a web browser.
Solution
This hotfix updates the Apex One server program to remove the vulnerability.
When the Trend Micro Data Loss Prevention™ (DLP) service is enabled on Apex One security agent computers, Google Chrome version 75 and higher versions may stop unexpectedly while accessing certain URLs.
Solution
This hotfix updates the DLP module to resolve this issue.
On the web console, "Advanced Search" from "Agents > Agent Management" page yields inaccurate results when the "Restart Required" is enabled and both "Update" and "Cleanup" options are selected.
Solution
This hotfix updates the Apex One server program to resolve the problem.
In Microsoft™ Windows™ 10, the new system process "MemCompression" may incorrectly trigger a false detection for violating the Device Access Control (DAC) policies.
Solution
This hotfix updates the DAC policies to prevent the false alarms.
Users are able to change to a password that contains German Umlaut characters but will not be allowed to log in to the web console after the change. The pop-up error message is not triggered that prevents from saving invalid password.
Solution
This hotfix updates the server program to ensure that the corresponding pop-up error message that prevents users from saving invalid passwords is triggered correctly.
When users deploy an agent policy to enable or disable the Endpoint Sensor feature while registering or unregistering from the TIC at the same time, the policy deployment will fail.
Solution
This hotfix updates the policy deployment mechanism to solve the policy conflict issue.
After a hotfix is applied, the pattern version and last update time of "Certified Safe Software pattern" are reset to "0", and as a result, the wrong pattern information appears on the Apex Central dashboard.
Solution
This hotfix updates the Apex One server files to resolve this issue.
This hotfix integrates an Antimalware Scan Interface (AMSI) for suspicious PowerShell detection to the Endpoint Sensor.
During license key deployment, Endpoint Sensor may not be able to receive the product key and storage key properties.
Solution
This hotfix improves the Apex One server's key deployment mechanism to solve this issue.
Some Security Agents may be unable to retrieve new policy settings from the Apex Central server.
Solution
This hotfix purges old policy records from the policy tracking table to fix this issue.
The Endpoint Sensor on Apex One agents may not be able to calculate the hash value of a specific process which can prevent the terminate process function from terminating the process.
Solution
This hotfix updates the Endpoint Sensor hash calculation mechanism to resolve this issue.
The Endpoint Sensor feature has been enhanced to only monitor and record memory "Read" events for the lsaas.exe process. All other "Read" events are ignored. In addition, a cache has been implemented for processes that open the memory "Write" event to avoid recording duplicated events that may cause a resource issue on the endpoint.
TmListen stops unexpectedly when the Apex One agent queries Suspicious Object (SO) information that contains a null notify setting.
Solution
This critical patch updates Apex One agent program to resolve the issue.
On the 64-bit Microsoft ™ Windows ™ 10 platform, an error occurs while running a 64-bit debug script in Microsoft Visual Studio 2017.
Solution
This critical patch updates the Behavior Monitoring Module to prevent the error.
The Apex One server may not be able to register to the Apex Central server if the TLS 1.2 protocol is enabled on Apex One servers only.
Solution
This critical patch updates the Apex One server program to resolve this issue.
Procedure
To apply the solution:
The Apex One server tool "IpXfer.exe" cannot run properly when the Apex One Security Agent is offline.
Solution
This critical patch updates Apex One server tools to resolve this issue.
The Apex One server updates the timestamp of the Last Spyware Scan (Manual) according to the last connection establishment time.
Solution
This critical patch updates the Apex One server program to ensure that the last Spyware Scan (Manual) time is updated accurately.
When users create a "Setup" installer package for the Apex One security agent using Agent Packager, the Vulnerability Protection and Application Control agent installers are not included by default.
Solution
This critical patch updates the Apex One server program to ensure that the Agent Packager includes both installers in the Apex One security agent "Setup" installer package.
The digital signature of some DLP files are expired.
Solution
This critical patch updates the DLP module to update the digital signatures.
The DLP module does not work on the Microsoft Edge web browser.
Solution
This critical patch updates the DLP module to resolve this issue.
Procedure
To enable Apex One security agents to block sensitive information on the Edge web browser.
Users cannot expand the domains or add spyware/greyware detections into the approve list on the Apex One server web console.
Solution
This critical patch updates the Apex One server files to resolve this issue.
Duplicate Apex One agents appear in the Microsoft Windows Startup console.
Solution
This critical patch updates the Apex One server programs to resolve this issue.
When the trust permission of the Application Control Criteria is set to "Inheritable execution rights", the criteria information remains on the Apex One Security Agent database after users remove the criteria from the policy setting.
Solution
This critical patch ensures that the criteria information can be removed normally from Apex One Security Agents.
In rare situations, the Apex One Vulnerability Protection program uses up a huge amount of memory when processing a large number of Intrusion Prevention logs.
Solution
This critical patch prevents the high memory usage issue when the Apex One Vulnerability Protection program processes a large number of Intrusion Prevention logs.
The Apex One server does not send the policy information to Apex Central after deploying a policy.
Solution
This issue updates the Apex One server program to resolve this issue.
An access denied error related to a certain component prevents the Trend Micro Advanced Threat Assessment Service (ATAS) from starting successfully.
Solution
This critical patch resolves the error so ATAS can start normally.
An issue related to the Microsoft™ Monitoring Agent may cause the Apex One Endpoint Sensor Advanced Threat Assessment Service application pool to stop unexpectedly after installing the Apex One server.
Solution
This critical patch prevents the Apex One Endpoint Sensor Advanced Threat Assessment Service compatibility issue with the Microsoft Monitoring Agent.
An "Error ID: 420" occurs while the Apex One Endpoint Sensor policy is deployed and the "Unable to get the registered server list. There are no registered servers." error appears on the Apex Central "Preliminary Investigation" page.
Solution
This critical patch helps prevent the Apex One Endpoint Sensor Advanced Threat Assessment Service from being corrupted when Endpoint Sensor is installed using Trend Micro Apex One Installer Maintenance Mode.
The Trend Micro Vulnerability Protection Service cannot start while processing a specific certificate.
Solution
This critical patch updates the Apex One Vulnerability Protection server to prevent the certificate processing error.
This critical patch updates some Apex One files to detect inconsistent certifications from the Microsoft Management Console certificate store. If it detects an inconsistency, Apex One will automatically recover the authentication file (OfcIPCer.dat) from the Microsoft Management Console certificate store on the Apex One server.
An Apex One agent that runs on Windows 7 and automatically detects proxy settings will not be able to connect to the Apex One server.
Solution
This hotfix resolves the issue by updating the Apex One agent program to ensure that it can retrieve the correct proxy configuration.
When the agents call "cgiOnScan.exe" and fails, the system keeps resending the request without waiting. This issue generates lots of records in the IIS log.
Solution
This hotfix updates the Apex One agent program to wait for few seconds before retrying.
This hotfix enables Apex One to send "Dropped" and "Accepted" action results in firewall violation logs to Apex Central. This ensures that both action results display normally on Apex Central instead of being displayed as "unknown".
An issue prevents the Data Loss Prevention™ (DLP) license from being deployed from Apex Central to Apex One.
Solution
This hotfix adds support for the DLP AC key type to solve this issue.
An access denied error related to a certain component prevents the Trend Micro Advanced Threat Assessment Service (ATAS) from starting successfully.
Solution
This hotfix resolves the error so ATAS can start normally.
The operating system may stop responding when users switch both the Scan Engine (VSAPI) and the Endpoint Sensor to debug mode at the same time using the Case Diagnostic Tool (CDT).
Solution
This hotfix resolves the issue by ensuring that CDT works normally when both VSAPI and Endpoint Sensor are enabled.
There is a typographical error in the "Type the full program path" hint on the "Behavior Monitoring Settings" page of the Apex One web console.
Solution
This hotfix updates the Apex One server files to correct the error.
An issue causes Apex One security agent remote installation to fail.
Solution
This hotfix updates the Apex One server program to resolve this issue.
Security Agents with the Behavior Monitoring program inspection feature enabled may cause Adobe Acrobat/Reader to stop unexpectedly.
Solution
This hotfix updates the program inspection feature to resolve this issue.
When users attempt to configure the Device Control settings on an Apex One Security Agent by deploying a policy from the Apex Central web console, the Device Control settings cannot be applied on the agent if Data Loss Prevention™ (DLP) is not enabled on the agent.
Solution
This hotfix updates the Apex One server program to resolve this issue.
If the activation (AC) key is deployed after its expiration date has been extended, the ES service will still receive the original expiration date.
Solution
This hotfix ensures that the ES service will receive the AC key's new expiration date.
The Endpoint Sensor may purge the Root Cause Analysis results by mistake when Apex Central is managing more than one Apex One server.
Solution
This hotfix resolves the issue.
In rare instances, the Endpoint Sensor may receive the investigation results from an agent at the same time that the same agent is being uninstalled. When this happens, the Endpoint Sensor may not be able to send all the results back to TIC.
Solution
This hotfix prevents this issue.
An issue related to the Microsoft™ Monitoring Agent may cause the Apex One Endpoint Sensor Advanced Threat Assessment Service application pool to stop unexpectedly after installing the Apex One server.
Solution
This hotfix prevents the Apex One Endpoint Sensor Advanced Threat Assessment Service compatibility issue with the Microsoft Monitoring Agent.
An unquoted service path enumeration vulnerability may allow an attacker administrator privileges to the Apex One security agent service.
Solution
This hotfix updates the Apex One security agent program to remove the vulnerability.
Coexisting Apex One security agents cannot set the server information of the Smart Protection Service Proxy correctly. When this happens, the coexisting agents do not send query requests through the Smart Protection Service proxy but directly to the Trend Micro Smart Protection Network instead. This may cause a connection issue if the agents cannot connect to the Internet.
Solution
This hotfix updates the Apex One security agent program to resolve the issue.
The installation status on the "Agent Installation Progress" page of the Apex One web console is inaccurate.
Solution
This hotfix updates the Apex One server program to resolve this issue.
A specific keyword triggers the DLP template that does not have any criteria specified.
Solution
This hotfix updates the DLP template to resolve this issue.
The Connection Status (Online/Offline) of an agent on the web console changes each time a user logs on or off from the client computer.
Solution
This hotfix updates the Apex One agent program to resolve the issue.
Attempting to restart or stop the WMI service (winmgmt) is unsuccessful on endpoints with the Security Agent installed. The tmlisten service of the Security Agent has a dependency with the WMI service.
Solution
This hotfix updates the Security Agent program to remove the WMI service dependency.
When the Apex One server registers to the Apex Central server, the Apex One Master Service may stop unexpectedly because of an empty private key.
Solution
This hotfix updates the Apex One server program to ensure that it can handle an empty public/private key.
An "Error ID: 420" occurs while the Apex One Endpoint Sensor policy is deployed and the "Unable to get the registered server list. There are no registered servers." error appears on the Apex Central "Preliminary Investigation" page.
Solution
This hotfix helps prevent the Apex One Endpoint Sensor Advanced Threat Assessment Service from being corrupted when Endpoint Sensor is installed using Trend Micro Apex One Installer Maintenance Mode.
Users cannot export the Application Control criteria in Microsoft™ Internet Explorer™ or the Edge web browser.
Solution
This hotfix updates the Apex Central files to resolve this issue.
When the "Do not allow users to access the Security Agent console from the system tray or Windows Start menu setting" option is enabled on the Apex One web console, the Apex One Security Agent console cannot be accessed while "PccNT.exe" is running.
Solution
This hotfix updates a parameter in "wofielauncher.exe" to resolve the issue.
The Vulnerability Protection server service start up fails on platforms that disable Transport Layer Security (TLS) 1.0.
Solution
This hotfix updates the Vulnerability Protection server to prevent the TLS version issue.
Vulnerability Protection causes unusual CPU usage on some workstations and servers.
Solution
This hotfix modifies the Vulnerability Protection service to prevent unusual CPU usage.
This hotfix adds a dynamic share key for Apex One security agents in the encryption and decryption algorithm.
This hotfix adds new Regular Expressions to the Trend Micro Data Loss Prevention™ (DLP) Data Identifiers.
This hotfix updates the Apex Central files to display more information about the Application Control violation log entries.
NOTE: This feature requires the installation of Apex Central hotfix 3919 or above.
The Security Agent program may become corrupted when users install it from the MSI installation package (Windows Installer) using the wrong command in the command line.
Solution
This critical patch enables the Apex One security agent installation to abort the MSI installation process if it encounters an unexpected command.
An issue related to the Microsoft™ Excel™ files with macro content cannot be saved to a network shared folder from an endpoint, some Microsoft Excel temp files cannot be deleted after trying to save the files.
Solution
This critical patch updates the Apex One security agent program to resolve this issue.
This critical patch enables the Apex One security agent program to support Microsoft Windows™ 10 (version 1903) May 2019 Update.
Changes in the Google API prevents Data Loss Prevention™ (DLP) from detecting sensitive information sent through Gmail in Google Chrome 73.
Solution
This hotfix resolves the issue by enabling the DLP module to support the "Http/Https" and "Open file dialog" functionality in Google Chrome 73.
The tmlisten service stops unexpectedly when users add an NIC description in the Personal Firewall (PFW) profile and deploy the profile to agents.
Solution
This hotfix updates the Apex One Security Agent program to resolve the issue.
The Smart Scan Pattern of File Reputation Services occupies a large amount of disk space on the Apex One server.
Solution
This hotfix updates the Apex One server program to resolve this issue.
When users install Apex One and use a domain account to connect to the database, the installation will not be able to create a database and iES will not be installed successfully.
Solution
This hotfix updates the impersonate method to solve this issue.
When the Apex One environment runs an sqlpackage older that 2016 or one that contains both x86 and x64 versions of version 2016, iES will not be able to create the database because of an incompatible sqlpackage version.
Solution
This hotfix resolves the issue by enabling the installer to prioritize the x64 version of the sqlpackage during installation.
When a user starts a Security Agent outside the corporate network, the Security Agent does not communicate on Online status to the Edge Relay Server.
Solution
This hotfix updates Security Agent program to send an Online status to the Edge Relay Server as soon as the Security Agent program starts.
The Apex One Application Control lockdown feature does not work after users switch to a different user account.
Solution
This hotfix ensures that the feature works normally.
This hotfix updates the DLP template to reduce the performance impact of Apex One.
A directory traversal vulnerability may allow an attacker to modify arbitrary files on the product's management console.
Solution
This critical patch updates the Apex One server program to remove the vulnerability.