Author Topic: ZPHDial3 false positive ?  (Read 1955 times)

0 Members and 1 Guest are viewing this topic.

Offline chris...

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 2995
ZPHDial3 false positive ?
« on: December 21, 2016, 11:38:02 PM »
Hello,

Avast prevent me to use ZPHDial3 only on 1 of my 3 pcs , all of them use the recent 161221-2 VPS.
I don't know why avast warms on 1 of my pc as far as I reach the file by official site or by my local network (no warm by other pc).

However , it's not very clean on virus total
https://www.virustotal.com/fr/file/c20b5c46c9df299850f067dc481be5130875b3f72aa99d63a745d45cbfb50fa4/analysis/1482358750/

Offline Eddy

  • Avast Evangelist
  • Maybe Bot
  • ***
  • Posts: 31078
  • Watching (over?) you
    • Malware removal, Biljart and other things.
Re: ZPHDial3 false positive ?
« Reply #1 on: December 21, 2016, 11:52:13 PM »
What is the alert that avast is giving ?

And why are you showing the VT result for ZPHDiag3 and not ZPHDial3 ?

Offline polonus

  • Avast √úberevangelist
  • Probably Bot
  • *****
  • Posts: 33983
  • malware fighter
Re: ZPHDial3 false positive ?
« Reply #2 on: December 22, 2016, 12:08:06 AM »
Hi chris05,

On ZHPDiag3...until we get a scan for what you mentioned ZPHDial3 or was that a slip of the key-board?

The software has some very strong "Kung-Fu", and that is also why it has risks inbuilt for those that aren't fully aware.
Comes with some additional questionable heuristically and generically flagged goodies: https://www.reasoncoresecurity.com/zhpdiag3.exe-75d27514d8105530c34f706c5afd93bf7ee1dea7.aspx    and certainly has a high PUP risk.
See: http://www.freefixer.com/library/file/ZHPDiag3.exe-237749/

When you are francophone or master the French language (else use google translate), I would read here about the risks:
http://forums.cnetfrance.fr/topic/1283025-pc-infectee-suite-scan-zhp-diag-2015/

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline chris...

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 2995
Re: ZPHDial3 false positive ?
« Reply #3 on: December 22, 2016, 12:43:43 AM »
@Eddy and polonus

sorry it's a slip of the key-board
Like at the virustotal test , I mean ZHPDiag3.
In fact it also appear with ZHPCleaner too.
Malwarebytes , adwcleaner , JRT don't warm me anyway.

Edit:what I don't understand is why my other winxpsp3 pc with same VPS doesn't warm me anymore.
Edit2:I will try freefixer
Edit3:no more ZHP file with freefixer scan (see and search) , no more ZHP file found in my hard disk.

« Last Edit: December 22, 2016, 01:20:21 AM by chris05 »

Offline chris...

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 2995
Re: ZPHDial3 false positive ?
« Reply #4 on: December 22, 2016, 09:44:09 AM »
Hello,

on the other hand , I have something strange about VPS data see screen.
Also , sometime a popup avast say me my VPS is out to date (even with last v)
I just using avast repair .... without change
Maybe a clean install ?

Offline chris...

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 2995
Re: ZPHDial3 false positive ?
« Reply #5 on: December 22, 2016, 06:02:06 PM »
Well , clean install has solved the problem as much for the release date as for the alert about the ZHP programs. :D
However, the program version is still obsolete (2015.10.2.2218).It is and it was since august 2015
I try again and again with last one (12.3.3154) , but always the same big issue of web shield won't start
3 times avast support requested , Lukas never answer me , so back again to an old version  :-[
10.2.2218 ok , next 10.3.2223 ko , don't know what happen between theses versions....and avast no more know.

Edit:for those who can access support file , I sent zip file to avast support today when trying with 12.3.3154 : 20161222_1545_RXIXJ_988112629.zip
« Last Edit: December 22, 2016, 06:09:16 PM by chris05 »