Cisco Cisco Email Security Appliance C690 Guia Do Utilizador
39-34
User Guide for AsyncOS 10.0 for Cisco Email Security Appliances
Chapter 39 Logging
Log Types
File Upload Skipped for File Analysis due to File Analysis Server Error
Sat Feb 6 13:22:56 2016 Info:SHA256:
69e17e213732da0d0cbc48ae7030a4a18e0c1289f510e8b139945787f67692a5,Timestamp[1454959409]
details[Server Response HTTP code:[502]]
File Retrospective Verdict Received
Fri Oct 7 07:39:13 2016 Info: Retrospective verdict received. SHA256:
16454aff5082c2e9df43f3e3b9cdba3c6ae1766416e548c30a971786db570bfc, Timestamp: 1475832815.7,
Verdict: MALICIOUS, Reputation Score: 0, Spyname: W32.16454AFF50-100.SBX.
Upload priority
Upload priority values are:
•
High
- For all selected file types, except PDF file type.
•
Low
- For only PDF file types
Re-tries
The number of upload attempts performed on a given file.
Note
A maximum of three upload attempts can be performed on a given
file.
file.
Backoff (x)
The number of (x) seconds before the appliance needs to wait before it makes
an attempt to upload the file to the file analysis server. This occurs when the
appliance reaches the daily upload limit.
an attempt to upload the file to the file analysis server. This occurs when the
appliance reaches the daily upload limit.
Statistic
Description
Statistic
Description
SHA256
The SHA-256 hash identifier for the corresponding file.
Timestamp
The date and time at which an attempt is made to upload the file to the file
analysis server.
analysis server.
Details
Information about the File Analysis server error.
Statistic
Description
SHA256
The SHA-256 hash identifier for the corresponding file.
Timestamp
The date and time at which a file retrospective verdict is received from the
file analysis server.
file analysis server.
Verdict
The file retrospective verdict value is
malicious
or
clean
.
Reputation Score
The reputation score assigned to the file by the file reputation server.
Spyname
The name of the threat, if a malware is found in the file during file analysis.