Cisco Cisco Web Security Appliance S170 사용자 가이드
20-24
AsyncOS 8.1 for Cisco Web Security User Guide
Chapter 20 Monitor System Activity Through Logs
Access Log Field Descriptions and Identifiers
Malware Scanning Verdict Values
A malware scanning verdict is a value assigned to a URL request or server response that indicates the
probability that it contains malware. The Webroot, McAfee, and Sophos scanning engines return the
malware scanning verdict to the DVS engine so the DVS engine can determine whether to monitor or
block the scanned object. Each malware scanning verdict corresponds to a malware category listed on
the Access Policies > Reputation and Anti-Malware Settings page when you edit the anti-malware
settings for a particular Access Policy.
probability that it contains malware. The Webroot, McAfee, and Sophos scanning engines return the
malware scanning verdict to the DVS engine so the DVS engine can determine whether to monitor or
block the scanned object. Each malware scanning verdict corresponds to a malware category listed on
the Access Policies > Reputation and Anti-Malware Settings page when you edit the anti-malware
settings for a particular Access Policy.
The following lists the different Malware Scanning Verdict Values and each malware category with
which they correspond:
which they correspond:
UDP_MISS
The object was fetched from the origin server.
NONE
There was an error in the transaction. For example, a DNS failure or
gateway timeout.
gateway timeout.
Result Code
Description
Malware Scanning Verdict Value
Malware Category
-
Not Set
0 Unknown
1 Not
Scanned
2 Timeout
3 Error
4 Unscannable
10 Generic
Spyware
12
Browser Helper Object
13 Adware
14 System
Monitor
18 Commercial
System
Monitor
19 Dialer
20 Hijacker
21 Phishing
URL
22 Trojan
Downloader
23 Trojan
Horse
24 Trojan
Phisher
25 Worm
26 Encrypted
File
27 Virus
33 Other
Malware
34 PUA