Esempi di evento CEF

Oct 10 20:14:15 WIN-R1OR1V5M79O siem_log_forwarder[8088]: CEF:0|Acronis|DemoCustomer2|1.0|cti.a.p.em.event.v1.0~a.p.agent.re_registered.v1.0|cti.a.p.em.event.v1.0~a.p.agent.re_registered.v1.0|1|cs1={"id":"380b8b6f-e4cb-4d36-84a2-2894a7e298b3","type":"cti.a.p.em.event.v1.0~a.p.agent.re_registered.v1.0","time":"2025-10-10T17:01:32.232185894Z","ingest_time":"2025-10-10T17:01:32.266874496Z","source":"agent-manager","subject":"c8d66ac4-0d5b-4ecb-b1b0-c3649df91231","tenant_id":"ba959847-ca47-4a48-90a5-cb42789d5b34"} cs1Label=eventdetails Oct 10 20:14:15 WIN-R1OR1V5M79O siem_log_forwarder[8088]: CEF:0|Acronis|DemoCustomer2|1.0|cti.a.p.em.event.v1.0~a.active_protection.agent.disabling_uninstall_protection_requested.v1.0|cti.a.p.em.event.v1.0~a.active_protection.agent.disabling_uninstall_protection_requested.v1.0|1|cs1={"id":"4b6b4e57-a679-0d94-2175-2a015cdfa9f6","type":"cti.a.p.em.event.v1.0~a.active_protection.agent.disabling_uninstall_protection_requested.v1.0","time":"2025-10-10T17:00:51Z","ingest_time":"2025-10-10T17:00:51.247926345Z","source":"active-protection-service","tenant_id":"ba959847-ca47-4a48-90a5-cb42789d5b34","client_id":"c8d66ac4-0d5b-4ecb-b1b0-c3649df91231"} cs1Label=eventdetails Oct 24 09:00:03 DESKTOP-VBTMUIG siem_log_forwarder[776]: CEF:0|Acronis|DemoCustomer|1.0|cti.a.p.em.event.v1.0~a.edr.incident.created.v1.0|cti.a.p.em.event.v1.0~a.edr.incident.created.v1.0|1|cs1={"id":"dd71a7b9-3319-4007-a9b3-0760bed289c6","type":"cti.a.p.em.event.v1.0~a.edr.incident.created.v1.0","time":"2025-10-24T15:50:54.353938775Z","ingest_time":"2025-10-24T15:50:54.361561996Z","source":"edr-etlsvc/2509.1.0-394","subject":"a999c62b-9b1e-4d3a-85d9-d54743107b22","tenant_id":"38c8ff04-99fb-446a-967d-461a5e299814"} cs1Label=eventdetails