Thanks for the information.
On a couple of systems it is the same file that is detected. When it is detected SEP deletes the file. I am not sure what to upload since the file is being deleted. The files have the names of mian.class, a.class and h6l4.class.
I am just going to keep an eye on the client machines for any further similar alerts. Maybe it is a real threat and SEP is just doing its job. Thanks!