UTM : Virus

https://docs.fortinet.com/document/fortigate/6.0.6/fortios-log-message-reference/524940/introduction

UTM : Virus

Base Rule

Critical

General Virus Filename Critical

Virus Infect Warning

Sub Rule

Critical

General Virus Filename Critical

Malware Traffic Allowed By AntiVirus

Sub Rule

Malware

Detected Malware Activity

Device Key in Log Message

LogRhythm Schema

Data Type

Schema Description

severity

<severity>

Text/String

severity

logid

<vmid>

<tag1>

Number

N/A

msg

<subject>

Text/String

N/A

action

<reason>

Text/String

N/A

sessionid

<session>

Number/Text/String

N/A

srcip

<sip>

IP Address

N/A

dstip

<dip>

IP Address

N/A

srcport

<sport>

Number

N/A

dstport

<dport>

Number

N/A

srcintf

<sinterface>

Text/String/Number

N/A

dstintf

<dinterface>

Text/String/Number

N/A

proto

<protnum>

Number

N/A

filename

<object>

Text/String

N/A

virus

<threatname>

Text/String

N/A

dtype

<objecttype>

Text/String

N/A

url

<url>

Text/String

N/A