I setup File Policy by just watching a video on how to do so. I am not sure how the policy actually works. Looking at the below are these files actually all being scanned for maleware in the cloud??? How do I know I am setting things up properly and or the need of tweaking the polcy

Would it be Cisco Talos that does this? That brings me to another question also. Is IPS rules Cisco Talos as well?
Is there other subscription based threat scanner for URL's? Where does the URL definitions come from?