Skip to main content
Skip table of contents

Catch All : ESENT Messages

Classification

Rule Name

Rule Type

Common Event

Classification

Catch All : ESENT MessagesBase RuleDatabase InformationInformation
VMID 102 : Database Engine Starting New InstanceSub RuleGeneral ESENT InformationInformation
VMID 103 : Database Engine Stopped An InstanceSub RuleGeneral ESENT InformationInformation
VMID 104 : Application Log ClearedSub RuleLog ClearedAccess Success
VMID 105 : Database Engine Started New InstanceSub RuleGeneral ESENT InformationInformation
VMID 326 : Database Engine Attached A DatabaseSub RuleGeneral ESENT InformationInformation
VMID 327 : Database Engine Attached A DatabaseSub RuleGeneral ESENT InformationInformation
VMID 412 : DNS Bound High Number of IPsSub RuleGeneral DNS ErrorError
VMID 413 : Cannot Create New Log FileSub RuleFailed Audit Log WriteOther Audit Failure
VMID 428 : Failed To Update DatabaseSub RuleUpdate FailedError
VMID 454 : Multiple Mac Addresses DetectedSub RuleMAC Address Addition FailedError
VMID 455 : Failed To Open FileSub RuleFailed To Open FileError
VMID 471 : Unable To Execute Rollback OperationSub RuleFailed Rollback CommandError
VMID 482 : Failed To Write Into FileSub RuleFile Write FailureError
VMID 486 : File Move FailureSub RuleMove Object FailureAccess Failure
VMID 492 : Logging StoppedSub RuleFailed Audit Log WriteOther Audit Failure
VMID 507 : Abnormally Long Access Time - HW ErrorSub RuleHardware ProblemWarning
VMID 508 : Abnormally Long Access Time - HW ErrorSub RuleHardware ProblemWarning

Mapping with LogRhythm Schema  

Device Key in log message

LogRhythm Schema

Data Type

Provider Name<vendorinfo>Text/String
EventID Qualifiers<vmid>Number
Level<severity>Text/String
N/A<process>Text/String
Computer<dname>Text/String
N/A<processid>Number/Text/String
JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close