Hello Mohammed,
We will look into it.
Please share the screenshot of that threat detection message with full path to check and assist you further.
Click on "See details" at the bottom right corner of that detection message to view its full path.
Methods I've tried
Chrome, Edge, Firefox, Opera, Incognito/Private Browsing = unsuccessful
Ipad using both 4G mobile and home internet = Unsuccessful
My HTC10 Phone on 4G = Unsuccessful
Different DNS = Unsuccessful
VPN: Netherlands, USA = Unsuccessful
The only thing that comes to mind now is me being in the UK with UK ip adress is the cause.
I can say for sure, VPN was not active at the time
As requested here's a screenshot
and the threat appears after I exit
We're sorry to know that, Mohammed. As this isn't the usual behavior, we need to forward this to the next level of support.
In order to forward, we need few log files from your computer. An email which has the steps to collect those logs & upload it to our server has been sent to you. Please follow those steps to upload the logs.
Hi
AVG Internet Security 19.4.3089 (build 19.4.4318.451)
Virus Definition 190417-4
Recently I've been getting IDP.ALEXA.51 behaviour threat from the following files
cmd.exe & csrss.exe
with a a request to quarantine them, which after a little research bought up the possibility that it's a false positive.
Can you me determine what it actually is?
Thanks
I should also point out I already had cmd.exe in my exceptions list and it still popped up with a behaviour threat detection.
not wve an incognito/private browsing session works
Methods I've tried
Chrome, Edge, Firefox, Opera, Incognito/Private Browsing = unsuccessful
Ipad using both 4G mobile and home internet = Unsuccessful
My HTC10 Phone on 4G = Unsuccessful
Different DNS = Unsuccessful
VPN: Netherlands, USA = Unsuccessful
The only thing that comes to mind now is me being in the UK with UK ip adress is the cause.
Appreciate the confirmation.
We regret for the inconvenience caused. Please visit https://www.avg.com/en-us/false-positive-file-form to submit this false detection to our concerned team. They will analyze the file and add it to our white list if it is a false detection.
Appreciate you for confirming it.
We'd request to load https://www.avg.com/en-us/false-positive-file-form in incognito/private browsing session.
I've tried 4 different browsers each one gave me the same error
Access Denied
You don't have permission to access "http://www.avg.com/en-us/false-positive-file-form" on this server.
Reference #18.e367a5c.1555557925.6c018428
Reference # might be different each time
Just retried it
No VPN was active and I still get the same result
I decided to try to submit the form through a VPN to see what happens
and while it was unsuccessful, I got a different result
This site can’t be reached
The web page at False Positive File Form might be temporarily down or it may have moved permanently to a new web address.
ERR_CONNECTION_ABORTED
Thank you Mohammed.
This looks like a false positive. Please check if you have any conflicting anti virus software installed on your PC and uninstall it.
I also cleared my browser data including cookies, but that didn't help either
We're sorry to know that, Mohammed. This isn't the usual behavior of the website. Here is the link (https://www.avg.com/en-gb/false-positive-file-form)for your region (UK). Please try to submit your request by visiting the above provided link & let us know the outcome.
We appreciate your technical knowledge, Mohammed. However, upon checking the link in our end, we see that it works fine.
Would you be so kind to try submitting a false positive request through a different browser or device (if possible)?
I can say for sure, VPN was not active at the time
Sorry to report
Same result
Access Denied
You don't have permission to access "http://www.avg.com/en-gb/false-positive-file-form" on this server.
Reference #18.7988655f.1556111341.2a50587