Application data storage

After you quit the application, the KVRT2024_Data directory remains on your computer. By default, the application saves files in the following directory:

• /var/opt/KVRT2024_Data if the application was run by the superuser (root).
• /home/<user_name>/KVRT2024_Data if the application was run by an ordinary user.

The user is responsible for ensuring the security and controlling and restricting access to the information that is stored on the computer.

The KVRT2024_Data directory contains the following:

• The Quarantine directory contains quarantined files.

  Files can contain the following user data:

  • Object name
  • File location
  • Name of the user that ran the application

  Files are stored in an encrypted form. File names have the kvrt*.klq format. Only the user that ran the application can access the files.

• The Report directory contains application performance report files.

  Files can contain the following user data:

  • Locations of scanned files
  • Web page addresses that were found in scanned objects
  • Name of the user that ran the application

  Files are stored in an encrypted form. Standard report file names have the report_<date>_*.klr.enc1 format. Detailed report file names have the details_<date>_*.klr.enc1 format. Only the user that ran the application can access the files.

• The Traces directory contains trace and dump files.

  Trace files can contain the following general data:

  • Event time
  • Number of the execution thread
  • Application component that caused the event
  • Event severity (information, warning, critical, error)
  • A description of the application component command execution event and the result of the command

  In addition to general data, trace files may contain user data:

  • Personal information including the full name of the individual if such information is part of a path to a file on the computer
  • User account name if the user account name is part of a file name
  • Email address or web address containing a user account name and password if these are part of the name of a detected object
  • Remote IP addresses with which the computer established connections
  • Web addresses that are part of names of scanned objects

  If the application uses a proxy server, the trace files may contain the following data:

  • Proxy server address
  • Computer name
  • IP address and port of the computer
  • User name used to authorize at the proxy server

  Dumps store information about the working memory of processes at the moment the process crashes, and they may also contain personal information.

  Files are stored in an encrypted form. Trace file names have the KVRT.<application_version>_<date>_<time>_*.log.enc1 format. Dump file names have the *.dmp.enc1 format. Only the user that ran the application can access the files.