What is a "Manually Generated Anomaly"?

book

Article ID: 157850

calendar_today

Updated On:

Products

Endpoint Protection Endpoint Detection and Response Advanced Threat Protection Platform

Issue/Introduction

In a report, the Symantec Endpoint Protection Manager (SEPM) lists "Manually Generated Anomaly" for a detection's Risk Name.  What exactly does that mean?

 

Resolution

In an environment where the Symantec Endpoint Protection (SEP) version is 12.1 RU6 (or higher) and integrated with Advanced Threat Protection (ATP) 2.x, a "Manually Generated Anomaly" Risk Detection is assigned to those files that were selected to be deleted from within ATP.
 
For information about ATP and "Delete File From Endpoints, see "http://www.symantec.com/docs/TECH233992