Okay, Gary.
Please share the screenshot
http://support.avg.com/SupportArticleView?urlname=How-to-create-a-screenshot of allowed apps list and warning message you received to check with it.
What is going on at AVG. No reply to my previous comment/request. And now I see someone else is reporting the same problem. HAS ANYONE AT AVG ACTUALLY TRIED TO UNPACK A .RAR FILE USING WINRAR INTO A PROTECTED FOLDER… IT WOULD APPEAR NOT!!!
Hello Gary,
Sorry for the delay in responding. Our senior team has checked the case and suggested you to open AVG > Hacker Attacks > Open Ransomware protection > Protected Folders> and remove Agent Temp folder from protected folders.
What a ridiculous suggestion. There is another thread regarding this WinRar issue, which has been referred back to the team, & the originasl poster of that thread & myself are waiting for a response from the team.
The problem is a AVG BUG from 2 updates ago … please refer to the other thread & get back to me
Hello Gary,
Let's have a look at it together. Open AVG Internet Security -> Hacker attacks -> Ransomware Protection -> Blocked / allowed apps -> Blocked apps -> remove if WinRar file is added there and add it to allowed files.
Share the screenshot http://support.avg.com/SupportArticleView?urlname=How-to-create-a-screenshot of error message if the issue persists.
If I have a file "mymovie.part01.rar" (which is the first of many, but haven't downloaded the others yet), and I run WinRar to extract what is there so far, AVG gives a warning:
We've just protected your file. mymovie.part01.rar is trying to change or delete the file mymovie.mp4 in your protected MyMovies folder.
I then have to click "allow app" & run the extract again.
This only has started to happen recently, after a s/ware update.
Hello Gary,
We appreciate your patience.
We've tested WinRar and AVG without changing any settings and it works fine. Changes in settings may affect the behavior of the ransomware component. We can test it again but we need to know what exactly is set in the settings of ransomware component
Please go to General -> Protected Folders ->Blocked / Allowed apps and provide us the screenshot
Awaiting your response.
Your suggestion in the previous reply was to remove the folder from being a protected one. Well, of course this would overcome the problem, but if there were a "real" ransomware finding it's way into that folder ( a folder I use all the time) it would not be detected!!! Therefore, no I did not do as you suggested in the previous reply.
Please also refer to the thread titled "How to stop AVG INternet Security from blocking WinRAR from working" started by Ian White on November 22, 2018.
There is a BUG!!!
Gary, it is more likely a false detection but not a bug. If you would like, please submit a sample of the file to our developers for analysis. You can submit it from this website: https://www.avg.com/en-us/false-positive-file-form
What a ridiculous suggestion. There is another thread regarding this WinRar issue, which has been referred back to the team, & the originasl poster of that thread & myself are waiting for a response from the team.
The problem is a AVG BUG from 2 updates ago … please refer to the other thread & get back to me
I believe this to be a bug. It only started happening after a recent AVG app update.
Hi Santhosh
Can you refer to the post by Ian White on Nov 22, 2018 where I have made a reply on Jan 22.
In that post I believe I have found the cause of the problem. i.e. A setting in WinRar to use the protected folder as a WinRar temp area. This was not a problem until an AVG app update, 2 updates ago.
Cheers
Gary
Hello Gary,
Sorry for the delay in responding. Our senior team has checked the case and suggested you to open AVG > Hacker Attacks > Open Ransomware protection > Protected Folders> and remove Agent Temp folder from protected folders.
Hello Gary,
Let's have a look at it together. Open AVG Internet Security -> Hacker attacks -> Ransomware Protection -> Blocked / allowed apps -> Blocked apps -> remove if WinRar file is added there and add it to allowed files.
Share the screenshot http://support.avg.com/SupportArticleView?urlname=How-to-create-a-screenshot of error message if the issue persists.
Gary, our level 3 technical team has not found this as a bug. Did you attempt the settings suggested in our previous reply?
Hello Gary,
We appreciate your patience.
We've tested WinRar and AVG without changing any settings and it works fine. Changes in settings may affect the behavior of the ransomware component. We can test it again but we need to know what exactly is set in the settings of ransomware component
Please go to General -> Protected Folders ->Blocked / Allowed apps and provide us the screenshot
Awaiting your response.
and here is the warning I get when extracting a part file using WinRar
I don't think it's a false positive either, because it's happening on every part01.rar file that I've tried. I think you need to refer this to the programmers.