Summary
Summary
Action- More Information
| Affected operating systems | Windows |
|---|---|
| Detected by | Sophos Anti-Virus for Windows, version 9 |
Action
- Summary
- Action
- More Information
Your options.
If you've received an alert, then you have 2 options:
- authorize the file
- send the file to the lab for analysis
Authorize the file if it's from a trusted source.
Send it to the lab for analysis if you:
- do not trust the file
- or believe it to be compromised in some way
To reduce the chance of unwanted detections, Sophos HIPS should be set to 'Alert only' mode for the duration of any software installations. For more information, please read the knowledgebase article about deciding whether to allow or block a file.
Sending a file to the lab?
When you complete the sample submission form, please give a reason for your submission and mention this "HIPS/" detection.
More Information
Runtime behavior alerts of this type inform the user that an attempt has been made to modify the registry of the computer in a manner known to be used by rootkits. Any attempt at this behavior could indicate a malware infection.
HIPS/RegMod-022 will likely show alerts on known system components which will have been compromised. Users that receive HIPS/RegMod-022 alerts are advised to contact Sophos Technical Support for further help.
|
