Skip to content
AIR Knowledge Base

Trend Micro Logs

Overview

Section titled “Overview”

Evidence: Trend Micro Logs
Description: Collect Trend Micro Logs
Category: Applications
Platform: windows
Short Name: trmcrls
Is Parsed: No
Sent to Investigation Hub: No
Collect File(s): Yes

Background

Section titled “Background”

Trend Micro is an enterprise security solution including OfficeScan, Worry-Free Business Security, and Apex One. It maintains detailed logs across multiple components including security agent reports, connection logs, and personal firewall logs.

Data Collected

Section titled “Data Collected”

This collector gathers structured data about trend micro logs.

Collection Method

Section titled “Collection Method”

This collector gathers Trend Micro logs from ProgramData and Program Files including Security Agent reports, connection logs, and Personal Firewall (PFW) logs across different product versions.

Forensic Value

Section titled “Forensic Value”

Trend Micro logs are essential for enterprise security investigations, providing malware detections, agent communications, firewall blocks, and threat intelligence. They help reconstruct attack timelines and analyze endpoint security posture.