Skip to main content
Skip table of contents

V 2.0 : SEP General Suspicious Activity Detected 1

Vendor Documentation

https://knowledge.broadcom.com/external/article?legacyId=TECH171741#Agent_Risk

Classification

Rule Name

Rule Type

Common Event

Classification

V 2.0 : SEP Suspicious Activity : Allowed By UserSub RuleGeneral SecurityOther Security
V 2.0 : SEP Susp. Activity : All Actions FailedSub RuleGeneral Antivirus ErrorError
V 2.0 : SEP Suspicious Activity : QuarantinedSub RuleQuarantined MessageFailed Activity
V 2.0 : SEP Suspicious Activity : Access DeniedSub RuleAccess DeniedWarning
V 2.0 : SEP Malware Found : Partially RepairedSub RuleDetected Malware ActivityMalware
V 2.0 : SEP Malware Found : Details PendingSub RuleDetected Malware ActivityMalware
V 2.0 : SEP Malware Found : No Action TakenSub RuleDetected Malware ActivityMalware
V 2.0 : SEP Suspicious ActivitySub RuleSuspicious ActivitySuspicious
V 2.0 : SEP Suspicious Activity : Details PendingSub RuleSuspicious ActivitySuspicious
V 2.0 : SEP Suspicious Activity : No Action TakenSub RuleSuspicious ActivitySuspicious
V 2.0 : SEP General Suspicious Activity DetectedBase RuleSuspicious ActivitySuspicious
V 2.0 : SEP Malware Found : QuarantinedSub RuleFailed Malware ActivityFailed Malware
V 2.0 : SEP Threat Found : DeletedSub RuleThreat DeletedFailed Activity

Mapping with LogRhythm Schema  

Device Key in Log MessageLogRhythm SchemaData Type
N/A<dip>Number
N/A<dname>String/Number/Text
N/A<account>Text/String
N/A<domainorigin>Text/String
N/A<process>Text/String
N/A<object>Text/String
N/A<subject>Text/String
N/A<threatname>String/Number/Text
N/A<hash>String/Number/Text
N/A<url>String/Number/Text
N/A<action>Text/String
N/A<quantity>Number
N/A<size>Number
N/A<tag2>Text/String
N/A<tag1>Text/String
JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close