Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Deep Discovery Inspector 5.1 Data Collection Notice

    • Updated:
    • 27 Jun 2018
    • Product/Version:
    • Deep Discovery Inspector 5.1
    • Platform:
    • N/A N/A
Summary

The following sections outline the features that collect data, the data transmitted, and the locations on the product console where you can disable the features.

Details
Public

Smart Feedback

Smart Feedback enables you to participate, share and leverage Trend Micro’s global database of threat related intelligence to rapidly identify and defend against potential threats within your unique network environment.

Data collected
  • IP address
  • URL
  • Filename/path
  • Hostname
  • Suspicious executables and partial file content
  • User domain
  • User account
Console locationAdministration > Monitoring / Scanning > Threat Detections
Console settings
  • Enable Smart Feedback
  • Submit suspicious files to Trend Micro

smart feedback

Back to top

Virtual Analyzer

Disabling Virtual Analyzer prevents the mentioned data being sent to Trend Micro, but will severely impact DDI’s ability to detect advanced malware.

Data collected
  • IP address
  • URL
  • Hostname
  • Filename/path
Console locationAdministration > Virtual Analyzer > Setup
Console settings
  • Submit files to Virtual Analyzer
  • Virtual Analyzer: Internal

virtual analyzer

Back to top

Web Reputation

Disabling Web Reputation prevents the mentioned data being sent to Trend Micro, but will greatly impact DDI’s ability to detect C&C and malicious activities.

Data collectedURL
Console locationAdministration > Monitoring / Scanning > Web Reputation
Console settings

Enable Web Reputation

Enable Web Reputation

Back to top

Community File Reputation

Disabling Community File Reputation related rules prevents the mentioned data being sent to Trend Micro, but will impact DDI’s ability to detect advanced malware.

Data collectedURL
Console locationAdministration > Monitoring / Scanning > Detection Rules
Console settings

Enable/Disable rule 719, 733, 734, 1701, 1702

Detection Rules

Back to top

URL Retro Scan

Disabling URL Retro Scan prevents the mentioned data being sent to Trend Micro, but will impact DDI’s ability to detect C&C and malicious activities that occurred in the past but were just known to Trend Micro.

Data collectedEndpoint IP addresses
Console locationAdministration > Monitoring / Scanning > Web Reputation
Console settings

Enable Retro Scan

Enable Retro Scan

Back to top

Threat Connect

Threat Connect allows admin to view related threat information from the global intelligence database.

Data is only sent out when an admin manually clicks the “View Threat Connect” button in Log detail view.

Data collected
  • IP address
  • URL
  • Hostname
Console locationDetection Details > Connection Details
Console settings

View in Threat Connect

view in threat connect

Back to top

Cloud Sandbox for Mac

Disabling Cloud Sandbox for Mac prevents the mentioned data being sent to Trend Micro, but will severely impact DDI’s ability to detect advance malware affecting the MacOS platform.

Data collected
  • Suspicious files (only Java and MacOS files)
  • Filename (only Java and MacOS files)
Console locationAdministration > Virtual Analyzer > Internal Virtual Analyzer > Sandbox Management > Sandbox for macOS
Console settings

Send possible threats for macOS to Trend Micro Deep Discovery Analyzer as a Service for analysis

Sandbox for macOS

Back to top

Cloud Sandbox for Windows

Disabling Cloud Sandbox for Windows prevents the mentioned data being sent to Trend Micro, but will severely impact DDI’s ability to detect advance malware affecting the Windows platform.

Data collected
  • Suspicious files
  • Filename
Console locationAdministration > Virtual Analyzer > Setup
Console settings
  • Submit files to Virtual Analyzer
  • Virtual Analyzer: Analyzer as a Service

Setup

Back to top

Threat Investigation Center

When disabled, all data indicated for this row will not be sent out to the Threat Investigation Center.

Data collected
  • IP address
  • MAC address
  • Hostname
  • Filename/path
  • Email address
  • Email subject
  • Username
  • Domain name
  • URL
  • Network group name
  • Retro Scan Report
  • All System Event Logs
Console locationAdministration > Integrated Products/Services > Threat Investigation Center
Console settings

Threat Investigation Center

Threat Investigation Center

Back to top

Premium
Internal
Rating:
Category:
Configure
Solution Id:
1120003
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.