Since Trend Micro Apex One™ Patch 3 and OfficeScan XG SP1 Patch 1, there exists an option to enable Enhanced Support Services, which enables Trend Micro to collect basic endpoint information that do not contain personally identifiable information (PII). With this service enabled, Trend Micro can provide advanced protection solutions rapidly via this service channel.
This article provides information on the data that is collected after customers agree to “Allow and continue installation”, as well as the mechanism to remove Enhanced Support Services.
During Trend Micro Apex One™ Patch 3 or OfficeScan XG SP1 Patch 4 installation, the following dialog appears, providing the customer with the option to enable Enhanced Support Services on Security Agents.
If enabled, Apex One/OfficeScan Security Agents start to regularly send the following data to Trend Micro servers:
| Category | Data Collected | Purpose |
|---|---|---|
| Operating system/ Security Agent data | Apex One/OfficeScan Security Agent GUID OS architecture OS version OS display name | For Security Agent management |
| Installed services | Is AD service installed? Is Database service installed? Is Web service installed? Is Mail service installed? The latest Microsoft KB/Hotfix version installed The latest Microsoft KB/Hotfix version install time | To identify the risk level of endpoint |
| Detection logs | Behavior Monitor log count Predictive Machine Learning log count Virus/Malware detection log count Suspicious Connection Service log count Web reputation log count Suspicious Object (file) log count |
Data is sent by Apex One/OfficeScan XG Endpoint Basecamp module and may require customers to configure their firewall settings.
- Installation path: C:\Program Files\Trend Micro\Endpoint Basecamp
- File name: EndpointBasecamp.exe
- URL accessed: https://success.trendmicro.com/solution/000260744
Customers may contact Trend Micro Technical Support to request the token file (XBCUninstallToken.txt) and uninstaller (XBCUninstaller.exe). Trend Micro will provide a step-by-step instruction on how to operate and delete the Trend Micro Endpoint Basecamp services in all endpoints from the server side.
