Summary
Summary
Action- More Information
| Affected operating systems | Windows |
|---|---|
| Protection available since | 22 October 2007 14:42:42 (GMT) |
| Last updated | 5 June 2009 18:41:26 (GMT) |
| Cleanup available since | October 2007 |
| Detected by | Sophos Anti-Virus for Windows, version 7 |
Action
- Summary
- Action
- More Information
Your options.
If you've received an alert, then you have 2 options:
- authorize the file
- send the file to the lab for analysis
Authorize the file if it's from a trusted source.
Send it to the lab for analysis if you:
- do not trust the file
- or believe it to be compromised in some way
To reduce the chance of unwanted detections, Sophos HIPS should be set to 'Alert only' mode for the duration of any software installations. For more information, please read the knowledgebase article about deciding whether to allow or block a file.
Sending a file to the lab?
When you complete the sample submission form, please give a reason for your submission and mention this "HIPS/" detection.
More Information
Sus/Madcode-A is a family of programmes for the Windows platform. Members of Sus/Madcode-A contain functionality to intercept system calls of various processes.
The code used for this functionality is derrived from "MadCodeHook", which is a legitmate remote process hooking utility. However, it may be used by malicious programs wishing to inject code into other processes.
|
