When I run <b>powershell -ExecutionPolicy Bypass -EncodedCommand "RwBlAHQALQBEAGEAdABlAA=="</b> at the command prompt, I get IDP.HELU.PSE25.
But, it doesn't happen when I run <b>powershell -EncodedCommand "RwBlAHQALQBEAGEAdABlAA=="</b> or <b>powershell -ExecutionPolicy Bypass -Command "Get-Date"</b>.
These commands should have the same result.
Is this a bug in the product?
The version of AVG that I am using is as follows
Software version: 064d55fe7c10/211217.2031+0900
Virus definitions version: 211217-0
Number of definitions: 27,056,990
UI version: 1.0.643
The full text of the message displayed is as follows.
Threat secured
We've blocked powershell.exe because it was infected with IDP.HELU.PSE25 - Command line detection
Hi Taiki,
We're glad to look into this & help you.
For better clarity, please share us the screenshots of the threat notification after clicking on 'See details' in it & the version info (Open AVG - Menu - About).
Thank you for updating the staus, Taki.
We suggest you reinstall the AVG AntiVirus and check if the issue resolves.
Uninstallation link: https://www.avg.com/en-us/download-thank-you.php?product=REM
Installation link: https://www.avg.com/en-us/download-thank-you.php?product=FREEGSR
Keep us posted.
Hi Taiki,
We're glad to look into this & help you.
For better clarity, please share us the screenshots of the threat notification after clicking on 'See details' in it & the version info (Open AVG - Menu - About).
I did all steps 1 through 6 and tried again.
The result was the same as before, IDP.HELU.PSE25 was displayed.
Thank you.
Thank you for writing back to us, Taiki.
We apologize for the inconvenience caused to you.
Did you try to disable behavior shield in AVG Antivirus program and check if it resolves the issue?
If yes, we would request you to uninstall and reinstall AVG Antivirus free program on your computer.
Thank you and keep us informed.
You're welcome, Taiki.
Feel free to contact them at your convenient time. They're available 24/7.
Have a great day!
I will confirm it.
Thank you for your support.
When I disable the behavior shield in AVG Antivirus program, the problem no longer occurs.
I share screenshot.
We apologize for the inconvenience caused to you, Taiki.
We would request you to repair your AVG Internet Security and restart you PC.
You can repair your AVG Internet Security with the following steps:
1. Press your window key and R key together and then type "appwiz.cpl" and hit "Enter"
2. Here you can see the list of installed applications in your PC.
3. Uninstall the conflicting antivirus (If found).
4. Uninstall the AVG Internet Security and click "Uninstall".
5. Now select repair and continue.
6. Restart your PC.
Please try the above steps and let us know the status of the issue.
If the issue persists, then feel free to write back to this post.
Thank you.
Hello Taiki,
Thank you for the screenshot.
Could you please confirm how do you run powershell -ExecutionPolicy Bypass? Please explain in detail.
Have you tried to repair AVG Anti-virus program?
Do you have any other Anti-virus program installed in your device?
Please confirm the version of operating system installed.
Keep us updated. Thank you.
I've tried uninstalling and installing.
Uninstallation link: AVG | Thank you for downloading
Installation link: AVG | Thank you for downloading
Unfortunately, the result is the same as before.
Hello Taiki,
Since the issue appeared again, we request you to get connected with our additional support by following the same email steps.
Our technician can see what can be done and escalate to senior team, if necessary. Thank you.
Thank you for updating the staus, Taki.
We suggest you reinstall the AVG AntiVirus and check if the issue resolves.
Uninstallation link: https://www.avg.com/en-us/download-thank-you.php?product=REM
Installation link: https://www.avg.com/en-us/download-thank-you.php?product=FREEGSR
Keep us posted.
Thank you for elaborating the issue & sharing more details, Taiki.
To further investigate this issue, we've sent you an email with detailed instructions to contact our additional support.
Please check your inbox/spam folders to find the email and use it to contact them.