Sus/Behav-231

Category	Suspicious behavior and files
Type	Suspicious behavior
What's been detected	Sus/Behav-231 exhibits characteristics commonly, but not exclusively, found in malware.
What to do	If you've received an alert, then the detected file is likely to be malicious, but it's up to you to choose whether to trust the file or take other action.

Summary

Summary
Action


Affected operating systems	Windows
Included in our products from	October 2008 (4.34)
Protection available since	9 May 2008 19:36:26 (GMT)
Last updated	21 August 2008 18:44:08 (GMT)
Detected by	Sophos Anti-Virus for Windows, version 7

Action

Summary
Action

Your options

If you've received an alert, then you have 2 options:

authorize the file
send the file to the lab for analysis

Authorize the file if it's from a trusted source.

Send it to the lab for analysis if you:

do not trust the file
or believe it to be compromised in some way

To reduce the chance of unwanted detections, Sophos HIPS should be set to 'Alert only' mode for the duration of any software installations. For more information, please read the knowledgebase article about deciding whether to allow or block a file.

Sending a file to the lab?

When you complete the sample submission form, please give a reason for your submission and mention this "HIPS/" detection.

Get reports about the latest suspicious behavior and file detections delivered to your computer

In this section

Sus/Behav-231

Summary

Action

Your options

Sending a file to the lab?