SONAR.SuspCHM!gen1 is a heuristic detection that is designed to detect suspicious modifications to system settings caused by malicious CHM files. SUBMITTING A SAMPLE TO SYMANTEC SECURITY RESPONSE
Please submit files that are detected as SONAR.SuspCHM!gen1 to Symantec Security Response so that these new risks or variants can be identified and assigned specific names. To learn how to submit a file, read the document for the type of Symantec antivirus product that you are using:
REMOVING A FILE FROM QUARANTINE
It is possible to restore a file from quarantine to its previous location on your computer. This should only be done if you are certain that the file is not malicious. Symantec strongly recommends that you submit the file that was detected as SONAR.SuspCHM!gen1 even if you choose to restore the file from quarantine.
Symantec Security Response encourages all users and administrators to adhere to the following basic security "best practices":