Access this page from the Monitor menu.
A record is kept of all file metadata sent to the cloud for inspection. These are files downloaded by hosts and found to be suspicious based on known signatures or URLs. From the Malware page, click the file’s signature to view more information, such as file details, what other malware scanners say about this file, and a complete list of hosts that downloaded this file.
Note: When managing Sky ATP with Security Director, you must select a Sky ATP realm from the available pulldown.
Export Data—Click the Export button to download file scanning data to a CSV file. You are prompted to narrow the data download to a selected time-frame.
The following information is available on this page.
Table 27: File Scanning Data Fields
Field | Definition |
|---|---|
File Signature | A unique identifier located at the beginning of a file that provides information on the contents of the file. The file signature can also contain information that ensures the original data stored in the file remains intact and has not been modified. |
Threat Level | The threat score. |
Filename | The name of the file, including the extension. |
Last Submitted | The time and date of the most recent scan of this file. |
URL | The URL from which the file originated. |
Verdict | The name of file and the type of threat if the verdict is positive for malware. Examples: Trojan, Application, Adware. If the file is not malware, the verdict is "clean." |
Category | The type of file. Examples: PDF, executable, document. |
© 2017 Juniper Networks, Inc. All rights reserved