In order to increase the level of support and monitoring of the defined level of software protection, the User agrees to provide the following information about the results of testing software operability after applying of updates: - Information about the set of all installed updates, and the set of most recently installed/removed updates; - The type of event that caused the update information to be sent; - Duration since the installation of last update; - Information about any currently installed anti-virus databases; - The number of active streams and streams in standby state; - Memory usage data (Private Bytes, Non-Paged Pool); - Number of software dumps and system dumps (BSOD) since the software was installed and since the time of the last update, including the identifier and version of the software module that crashed, the memory stack in the products process, and information about the anti-virus databases at the time of the crash; - The version of the installed software, including the version of the Nagent component; - The set of installed software components, including the version of the installed encryption module and the status of each component. Proteo completa para seus dispositivos, privacidade e identidade online. Optional setting. Powered by Invision Community. Protection premium. Kaspersky Lab has a strong commitment to providing superior service to all of our customers and particularly respecting your concerns about Data Processing. In order to identify new and challenging data security threats and their sources, as well as threats of intrusion, and to take prompt measures to increase the protection of the data stored and processed by the User with a computer, the User agrees to automatically provide the following information: - Date of software installation and activation; - Information about the software installed on the computer, including kernel objects, drivers, services, Microsoft Internet Explorer extensions, printing system extension, Windows Explorer extensions, downloaded objects, Active Setup elements, control panel applets, entries in the hosts file and system registry, versions of browsers and mail clients; - Information about the computers hardware, including a checksum of the HDDs serial number; - Data about software tools used to fix problems in software installed on the Users computer, or to change its functionality, and the return codes received after the installation of each piece of software; - Information about the state of the computers anti-virus protection, including the versions and release dates and times of the anti-virus databases being used, statistics about updates and connections with Kaspersky Lab services, job identifier and the identifier of the software component performing scanning; - Information about files being downloaded by the User, including the URL and IP addresses of the download and the download pages, download protocol identifier and connection port number, the status of the URLs as malicious or not, files attributes, size and checksums (MD5, SHA2-256, SHA1), information about the process that downloaded the file (checksums (MD5, SHA2-256, SHA1), creation/build date and time, autoplay status, attributes, names of packers, information about signatures, executable file flag, format identifier, and entropy), file name and its path, the files digital signature and timestamp of its generation, the URL where detection occurred, the scripts number on the page that appears to be suspicious or harmful, information about HTTP requests generated and the response to them; - Information about the running applications and their modules, including information about processes running on the system (process ID (PID), process name, information about the account the process was started from, the application and command that started the process, the sign of trusted program or process, the full path to the process's files, and the starting command line, a description of the product that the process belongs to (including the name of the product and information about the publisher), as well as digital certificates being used and information needed to verify their authenticity or information about the absence of a file's digital signature), and information about the modules loaded into the processes, including their names, sizes, types, creation dates, attributes, checksums (MD5, SHA2-256, SHA1), the paths to them, PE-file header information, names of packers (if the file was packed); - Information about all potentially malicious objects and actions, including the name of the detected object and the full path to the object on the computer, checksums (MD5, SHA2-256, SHA1) of the files being processed, detection date and time, names and size of downloaded files and paths to them, code of the path template, names of packers (if the file was packed), file type code, file format identifier, list of the activities of malicious applications and associated decisions made by the software and the User, identifiers for the anti-virus databases the software used to make a decision, name of the detected threat according to Kaspersky Labs classification, danger level and detection status, reason for including a file in the analyzed context and the files serial number in the context, checksums (MD5, SHA2-256, SHA1), name and attributes of the executable file for the application that passed the infected message, anonymized IP address (IPv4 and IPv6) of the blocked objects host, the files entropy, autoplay status, time of the files first detection in the system, number of times the file has been run since the last time statistics were sent, information about the name, checksums (MD5, SHA2-256, SHA1) and size of the mail client used to receive the malicious object, identifier of the entry in the anti-virus databases used to arrive at a decision, job identifier of the software that performed the scan, flag of the reputation verification or file signature verification, result of processing the file, checksum (MD5) of the pattern collected on the object and pattern size in bytes; - Information about scanned objects, including the assigned trust group to which and/or from which the file has been placed, the reason the file was placed in that category, category identifier, information about the source of the categories and the version of the category database, the files trusted certificate flag, name of the files vendor, file version, name and version of the software product which includes the file; - Information about vulnerabilities detected, including the vulnerability ID in the database of vulnerabilities, the vulnerability danger class, and the status of detection; - Information about emulation of the executable file, including file size and its checksums (MD5, SHA2-256, SHA1), the version of the emulation component, emulation depth, an array of properties of logical blocks and functions within logical blocks obtained during the emulation, data from the executable files PE headers; - Information about network attacks, including the IP addresses of the attacking computer (IPv4 and IPv6), the number of the port on the Users computer that the network attack is directed at, identifier of the protocol of the IP packet containing the attack, the attacks target (organization name, website), flag for the reaction to the attack, the attacks weight, trust level; - Information about attacks associated with spoofed network resources, including the DNS and IP addresses (IPv4 and IPv6) of visited websites, number of IP address assignments for the domain name; - Information about the rolling back of malwares activities, including data about the file whose activities are being rolled back (file name, full path to the file, its size and checksums (MD5, SHA2-256, SHA1)), data about successful and unsuccessful actions to delete, rename, and copy files and restore values in the registry (names of registry keys and their values), information about system files changed by malware, before and after the roll back, name of the detected threat according to Kaspersky Labs classification, identifiers for the anti-virus databases and the identifier of the record in the anti-virus database the software used to make a decision; - Information about the loaded software modules, including name, size and checksums (MD5, SHA2-256, SHA1) of the module file, its full path and template code of the file path, parameters of the module files digital signature, timestamp of the signature generation, names of the subject and the organization that signed the module file, identifier of the process, in which the module was loaded, name of the module vendor, index number of the module in the load queue; - Information to determine the reputation of files and URL-addresses, including checksums of the scanned file (MD5, SHA2-256, SHA1) and pattern (MD5) obtained during the emulation of the file, size of the pattern, emulation depth, the version of the emulation component, type of the detected threat and its name according to Kaspersky Labs classification, identifier for the anti-virus databases, URL address at which the reputation is being requested, as well as the referrer URL address, the connections protocol identifier and the number of the port being used; - Service information about the softwares operation, including the compiler version, flag for the potential maliciousness of the scanned object, version of the set of statistics being sent, information about the availability and validity of these statistics, identifier of the mode for generating the statistics being sent, flag indicating whether the software is operating in interactive mode; - If a potentially malicious object is detected, information is provided about data in the processes memory, elements of the system object hierarchy (ObjectManager), data in UEFI BIOS memory, names of registry keys and their values; - Information about events in the systems logs, including the events timestamp, the name of the log in which the event was found, type and category of the event, name of the events source and the events description; - Information about network connections, including version and checksums (MD5, SHA2-256, SHA1) of the file from which process was started that opened the port, the path to the processs file and its digital signature, local and remote IP-addresses, numbers of local and remote connection ports, connection state, timestamp of the ports opening. Si ya has esperado a que sincronicen con KSC, en uno de los host, comprueba localmente si tiene autorizado el uso de KSN. Contrle parental et traceur GPS pour garantir la scurit de vos enfants. User participation also helps other users of Kaspersky Security Network promptly receive information about threats to the IT infrastructure of their organizations. The Kaspersky Security Network (KSN) infrastructure is designed to receive and process complex global cyberthreat data, transforming it into the actionable threat intelligence that powers our products.
