https://community.cisco.com/t5/network-security/asa-csc-problems-with-exe-files/m-p/633420#M1030574 <P>Hi,</P><P></P><P>I have problems with EXE Files, when I have enabled the "WEB Scanning". I have disabled the option "File Blocking".</P><P></P><P>When I try to download a EXE File, I get "error by timeout". </P><P></P><P>Can Anybody help me?.</P><P></P><P>Thank you very much.</P><P></P><P>Best Regards.</P><P></P><P>Nuria</P> Mon, 11 Mar 2019 09:11:54 GMT nuria.andres 2019-03-11T09:11:54Z https://community.cisco.com/t5/network-security/asa-csc-problems-with-exe-files/m-p/633420#M1030574 <P>Hi,</P><P></P><P>I have problems with EXE Files, when I have enabled the "WEB Scanning". I have disabled the option "File Blocking".</P><P></P><P>When I try to download a EXE File, I get "error by timeout". </P><P></P><P>Can Anybody help me?.</P><P></P><P>Thank you very much.</P><P></P><P>Best Regards.</P><P></P><P>Nuria</P> Mon, 11 Mar 2019 09:11:54 GMT https://community.cisco.com/t5/network-security/asa-csc-problems-with-exe-files/m-p/633420#M1030574 nuria.andres 2019-03-11T09:11:54Z https://community.cisco.com/t5/network-security/asa-csc-problems-with-exe-files/m-p/633421#M1030576 <HTML><HEAD></HEAD><BODY><P>Nuria,</P><P>How large are the files you are attempting to download? Have you enabled the large file scanning option under HTTP Scanning?</P><P></P><P>This allows the CSC card to send small amounts of data to the endpoint, while it downloads the file to be scanned and will prevent client timeout errors.</P><P></P></BODY></HTML> Fri, 22 Dec 2006 23:00:53 GMT https://community.cisco.com/t5/network-security/asa-csc-problems-with-exe-files/m-p/633421#M1030576 ryan_holland 2006-12-22T23:00:53Z https://community.cisco.com/t5/network-security/asa-csc-problems-with-exe-files/m-p/633422#M1030578 <HTML><HEAD></HEAD><BODY><P>Ok, I have enabled the option "Enable deferred scanning for files larger than 2 MB", and now, it seems, that I can download EXE files.</P><P></P><P>On the other hand, I have another two problems, with the CSC:</P><P></P><P>- I get nothing when I select Logs-&gt;Query. I mean, the CSC is stopping virus and spyware, but the reports generated when it selected the option Logs-&gt;Query, it doesn?t show anything.</P><P></P><P>- When I execute th EICAR TEST (www.eicar.org), the CSC doesn?t stop all files. is this normal?.</P><P></P><P>Thank you very much</P><P></P><P>Best Regards</P><P></P><P>Nuria</P><P></P><P></P><P></P></BODY></HTML> Tue, 26 Dec 2006 07:48:45 GMT https://community.cisco.com/t5/network-security/asa-csc-problems-with-exe-files/m-p/633422#M1030578 nuria.andres 2006-12-26T07:48:45Z https://community.cisco.com/t5/network-security/asa-csc-problems-with-exe-files/m-p/633423#M1030581 <HTML><HEAD></HEAD><BODY><P>The Logs-&gt;Query should show event, make sure you have selected the correct protocol to show logs for. If you require more detailed reporting the Trend Micro Control Manager can provide more detailed centralized reporting for the CSC and other Trend products.</P><P></P><P>As for the EICAR test file, which ones were not blocked? Anything that was downloaded unencrypted will be blocked. Its possible you were downloading the file via HTTPS or an encrypted ZIP file.</P><P></P><P>Thanks</P><P>Ryan</P></BODY></HTML> Wed, 27 Dec 2006 19:39:57 GMT https://community.cisco.com/t5/network-security/asa-csc-problems-with-exe-files/m-p/633423#M1030581 ryan_holland 2006-12-27T19:39:57Z https://community.cisco.com/t5/network-security/asa-csc-problems-with-exe-files/m-p/633424#M1030582 <HTML><HEAD></HEAD><BODY><P>It doesn?t block the two first tests (eicar.com y eicar.com.txt). The another 2 tests (eicar_com.zip and eicarcom2.zip) are Ok. The CSC stop them.</P><P></P><P>And I have execute these tests, via HTTP.</P><P></P><P>Thank you very much.</P><P></P><P>Best Regards.</P><P></P><P>Nuria</P></BODY></HTML> Thu, 28 Dec 2006 13:56:50 GMT https://community.cisco.com/t5/network-security/asa-csc-problems-with-exe-files/m-p/633424#M1030582 nuria.andres 2006-12-28T13:56:50Z https://community.cisco.com/t5/network-security/asa-csc-problems-with-exe-files/m-p/633425#M1030584 <HTML><HEAD></HEAD><BODY><P>I've not been able to duplicate this, what are your scan settings?</P><P>thanks</P><P>Ryan</P></BODY></HTML> Fri, 29 Dec 2006 09:13:41 GMT https://community.cisco.com/t5/network-security/asa-csc-problems-with-exe-files/m-p/633425#M1030584 ryan_holland 2006-12-29T09:13:41Z https://community.cisco.com/t5/network-security/asa-csc-problems-with-exe-files/m-p/633426#M1030586 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>In the attachment, you can see the CSC version and the web scanning properties.</P><P></P><P>do I have to activate anything else?.</P><P></P><P>Happy New Year.</P><P></P><P>Thank you very much</P><P></P><P>Best Regards</P><P></P><P>Nuria</P><P></P><P> </P><P></P></BODY></HTML> Mon, 01 Jan 2007 22:12:33 GMT https://community.cisco.com/t5/network-security/asa-csc-problems-with-exe-files/m-p/633426#M1030586 nuria.andres 2007-01-01T22:12:33Z https://community.cisco.com/t5/network-security/asa-csc-problems-with-exe-files/m-p/633427#M1030588 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>I have exactly the same problem. The SCS-SSM detects the EICAR-Testvirus when being zipped, but lets it through when it is unzipped.</P><P></P><P>I'm sure that the configuration on the ASA is correct, HTTP is generally allowed and forwarded to the module.</P><P></P><P>Does anybody have an idea?</P><P>Thanks,</P><P>Florian</P></BODY></HTML> Mon, 20 Sep 2010 12:37:38 GMT https://community.cisco.com/t5/network-security/asa-csc-problems-with-exe-files/m-p/633427#M1030588 Florian Pressler 2010-09-20T12:37:38Z