Yes, this has in the last two restarts on my XP Pro system started to get pinged by the anti-rootkit scan 8 minutes after boot. But it is the uphcleanerhlp.sys file that is being pinged for me. So this appears to be something in a recent VPS update.
Normally all you would be aware of is the uphclean.exe file in the task manager (as System user).
I have chosen to Ignore it (the recommended option in the alert), but don’t check the Do not tell me about these files in the future (see image example, is that the same/similar as/to yours ?), as I don’t know if there is a way of reversing that decision. So you wouldn’t know what is going on, e.g. if this is eventually corrected and reversed.
I would say that if you are using XP (check) and if you installed UHPclean (?) then it loads a hidden driver/s to do its work. Then I would say it is an FP as prior to yesterday this wasn’t pinged at all and I have had it on this system for over two years. So something in a recent VPS update.
Aiutoooo sono 2 giorni ormai che all’avvio AVAST continua a
Farmi apparire la schermata ROSSA che ha trovato 2 file
Sospetti uno sempre uphcleaner.sys che pero’ NON c’e !
E altro ieri mi diceva un file del programma Everest, oggi
Invece mi dava un file mbmswissarmy.sys …
Io gli dico sempre IGNORA. Ma cosa sta’ succedendo a
Avast ??? falsi positivi ?
Ho provato a fare una scansione con antimalwarebyte’s ma
Nulla, e anche una scansione con AVAST all’avvio del
Pc ma mi ha detto che non c’e nulla di infetto !
Eppure oggi ancora questa schermata rossa , che faccio ?
Yes once a day 8 minutes after boot, is that such a hassle, for me it isn’t until it is resolved, but that’s just me.
The problem being deleting the alert won’t give you any information on a) when this is resolved and b) might not display for information on a real alert.
It is possible to check the Advanced option and open it up and select ‘Do not tell me about these files in the future.’ I can’t suggest highly enough that you ‘do not’ do this.
The wording isn’t 100% clear if it only relates to the file/s in the alert (which should be correct) or all such alerts (which I doubt). Having made this decision I don’t know if it is possible to reverse it.
Well I got confirmation that they were working on a fix for the uhpcleanhlp.sys, but there were other files in other topics being picked up (I mentioned those too). So looks like that is resolved hopefully the others will follow.