Suspicious Files; Statistics - ESET SMART SECURITY 4 - FOR MICROSOFT WINDOWS 7-VISTA-XP-2000-2003-2008 User Manual

submit anonymous information about new threats and where the
new threatening code is contained. This file can be sent to ESET for
detailed analysis. Studying these threats will help ESET update its
threat detection capabilities.
The ThreatSense.Net Early Warning System will collect information
about your computer related to newly‑detected threats. This
information may include a sample or copy of the file in which the
threat appeared, the path to that file, the filename, the date and
time, the process by which the threat appeared on your computer and
information about your computer's operating system.
While there is a chance that this may occasionally disclose some
information about you or your computer (usernames in a directory
path, etc.) to ESET's Threat Lab, this information will not be used
for ANY purpose other than to help us respond immediately to new
threats.
By default, ESET Smart Security is configured to ask before submitting
suspicious files for detailed analysis to ESET's Threat Lab. Files with
certain extensions such as .doc or .xls are always excluded. You can
also add other extensions if there are particular files that you or your
organization wants to avoid sending.
The ThreatSense.Net setup is accessible from the Advanced Setup
tree, under Tools > ThreatSense.Net. Select the Enable ThreatSense.
Net Early Warning System option to activate and then click the
Advanced setup... button.
4.9.1

Suspicious files

The Suspicious files tab allows you to configure the manner in which
threats are submitted to ESET's Threat Lab for analysis.
If you find a suspicious file, you can submit it for analysis to our Threat
Labs. If it is a malicious application, its detection will be added to the
next virus signature update.
File submission can be set to occur automatically, or select the Ask
before submitting option if you wish to know which files have been
sent for analysis and confirm the submission.
If you do not want any files to be submitted, select the Do not submit
for analysis option. Selecting not to submit files for analysis does not
affect submission of statistical information which is configured in its
own setup (see section 4.9.2, "Statistics").
When to submit – By default, the As soon as possible option is
selected for suspicious files to be sent to ESET's Threat Lab. This is
recommended if a permanent Internet connection is available and
suspicious files can be delivered without delay. Select the During
update option for suspicious files to uploaded to ThreatSense.Net
during the next update.
Exclusion filter – The Exclusion filter allows you to exclude certain
files/folders from submission. For example, it may be useful to exclude
files which may carry confidential information, such as documents
or spreadsheets. The most common file types are excluded by default
(.doc, etc.). You can add to the list of excluded files if desired.
Contact email – Your Contact email [optional] can sent with any
suspicious files and may be used to contact you if further information
is required for analysis. Please note that you will not receive a
response from ESET unless more information is needed.
4.9.2

Statistics

The ThreatSense.Net Early Warning System collects anonymous
information about your computer related to newly detected threats.
This information may include the name of the infiltration, the date
and time it was detected, the ESET security product version, your
operating system version and the location setting. The statistics are
typically delivered to ESET's servers once or twice a day.
Below is an example of a statistical package submitted:
# utc_time=2005‑04‑14 07:21:28
# country="Slovakia"
# language="ENGLISH"
# osver=5.1.2600 NT
# engine=5417
# components=2.50.2
# moduleid=0x4e4f4d41
# filesize=28368
# filename=C:\Documents and Settings\Administrator\
Local Settings\Temporary Internet Files\Content.IE5\
C14J8NS7\rdgFR1463[1].exe
When to submit – You can define when the statistical information
will be submitted. If you choose to submit As soon as possible
statistical information will be sent immediately after it is created. This
setting is suitable if a permanent Internet connection is available. If
33