Sus/JSRedir-KZ1 - Suspicious Behaviour and Files Network Threat Protection Persistent Threats | sophos.com

Sus/JSRedir-KZ1 - Suspicious Behaviour and Files Network Threat Protection Persistent Threats | sophos.com

Affected Operating Systems

Windows

Recovery Instructions:

Your options.

If you've received an alert, then you have 2 options:

  • authorize the file
  • send the file to the lab for analysis

Authorize the file[1] if it's from a trusted source.

Send it to the lab for analysis[2] if you:

  • do not trust the file
  • or believe it to be compromised in some way

To reduce the chance of unwanted detections, Sophos HIPS should be set to 'Alert only' mode for the duration of any software installations. For more information, please read the knowledgebase article about deciding whether to allow or block a file[3].

Sending a file to the lab?

When you complete the sample submission form[4], please give a reason for your submission and mention this "HIPS/" detection.

References

  1. ^ Authorize the file (www.sophos.com)
  2. ^ Send it to the lab for analysis (www.sophos.com)
  3. ^ deciding whether to allow or block a file (www.sophos.com)
  4. ^ complete the sample submission form (www.sophos.com)