- Products
- Learn
- Local User Groups
- Partners
- More
CheckMates Fifth Birthday
Celebrate with Us!
days
hours
minutes
seconds
Join the CHECKMATES Everywhere Competition
Submit your picture to win!
Check Point Proactive support
Free trial available for 90 Days!
As YOU DESERVE THE BEST SECURITY
Upgrade to our latest GA Jumbo
The 2022 MITRE Engenuity ATT&CK®
Evaluations Results Are In!
Now Available: SmartAwareness Security Training
Training Built to Educate and Engage
MITRE ATT&CK
Inside Check Point products!
CheckFlix!
All Videos In One Space
Hey guys,
is it possible to get a file from Check Point Threat Cloud which has been prevented by TE?
Maybe something similar to the CLI command "scrub send_orig_file"?
Or is it only possible to create an exception and let the file be sent again?
Thanks and Kind Regards
I believe scrub send_orig_file will still work even when emulation is done in the cloud as the file should be stored on the gateway that preventing it.
Hi PhoneBoy,
thanks for your comment. I only have one log entry about the block event and it's the thread emulation blade. In the log I don't have a field with file-id...
Can you provide a log card?
Redact any sensitive details of course.
Sure - there you go
I wonder if you can see the fileid in /var/log/maillog
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY