Home Support

<  Back to Homepage

AVG Support Community

Share tips and solutions on AVG Products

Have a question?

Community topics

Browse by categories

AVG Gurus

These community experts are here to help

  • (AB) Alan Binch
  • (BA) Borislav Angelov
  • (VB) Vladimir Bartl
  • (SK) Subhadeep Kanungo
  • (MS) Miloslav Serba
ShowAll Questionssorted byRecent Activity
John GeidlJohn Geidl 

IDP.HELU.PSE25 Command line detection

Avg reports that it blocked PowerShell from infection in IDP.HELU.PSE25.  I get this message several times a day.  How do I fix Power Shell to stop it?
Veeramani SivakumarVeeramani Sivakumar (Sitel)
Hello John, 

We are sorry to know that. We will check and help you to resolve it. 
  1. Please confirm the version of operating system installed.
  2. Let us know the version of AVG Anti-virus installed.
  3. Please share us the screenshot (https://support.avg.com/SupportArticleView?urlname=AVG-Create-screenshot) of the threat detected message. 
  4. Do you get that alert randomly or accessing any specific program?
You can post the screenshot here in your topic. Click on Answer & then click on the Image [mountain symbol] & follow the instructions. Thanks in advance.
John GeidlJohn Geidl
MS Windows 10 Home, Version 10.0 19043 build 19043
  1. AVG Anti-virus installed.
Software version:                         21.9.3209 (build 21.9.6698.704)
Virus definitions version:            211207-2
Number of definitions:                27,608,925
UI version:                                      1.0.636  IDP.HELU.PSE25 SCREENSHOT

 
Dinesh KrishnanDinesh Krishnan (Foundever)
Appreciate your efforts in sharing us the screenshot, John.
Please click on 'See details' in the notification & then share us the screenshot for better clarity.
Meanwhile, please check if there are any program update awaiting (Open AVG program - Menu - Settings - General - Update - click on check for updates below 'your app' (2nd update option).
John GeidlJohn Geidl
  • Performed pending update.
  • Did restart. 
  • IDP.HELU.PSE25 SCREENSHOT 12-08
Nisha SivakumarNisha Sivakumar (Avast)
Thank you for the screenshot, John.
We'd suggest you upload the URL to our website for false-positive analysis. Click the below link to upload the URL to our website.
https://www.avg.com/en-us/false-positive-file-form
After analysis, our team will be able to confirm whether the website is safe or not.
If it is safe, it will be added to our virus definitions database.
The status will be informed to you via email.
Thank you. 
John GeidlJohn Geidl
Your message is not clear.  You suggest that I upload "the URL" to your website.  You do not specify what URL is to be uploaded.  Note: the Screenshot that I provided is a data file.  The URL of this Screenshot would be my computer.  The popup message from Power Shell is a Windows display, not a web page.  The link you provided requests a file, not a URL. The location of Windows PowerShell is a file on my hard drive, not a URL.

Please clarify exactly what you are requesting me to provide.
 
Dinesh KrishnanDinesh Krishnan (Foundever)
Please accept our apologies for the inconvenience caused, John.
Our colleague has meant to suggest you to submit the file (Power shell) to our threat labs. 
As it possibly seems to be a false positive, we'd suggest you to exclude the file from AVG scans
 
John GeidlJohn Geidl
Once again I must ask for your patience in responding.  You have asked me to submit the file (Power Shell) to your threat labs.  Power Shell is not just one file.  It is a complete Application with numerous folders containing many files. The link to your threat labs permits the submission of ONE file only. If you would provide a e-mail link to the threat labs, I could simply send the complete Power Shell Application as an attachment. I am surprised with all the error reports you have regarding Power Shell that you have not discovered this. 
Dinesh KrishnanDinesh Krishnan (Foundever)
Let us attempt to clarify this for you, John.
You can navigate to the path that is mentioned in the threat notification & submit that file alone. (C:\Windows\SysWOW64\Windows PowerShell\v1.0\powershell.exe.
However, before proceeding, we'd suggest you to try repairing AVG program once & then restart the computer to check if it helps.
John GeidlJohn Geidl
You suggest that I try repairing AVG program.  If I knew how to repair the AVG program, I would not be reporting this problem. Is this a failure to communicate?
Veeramani SivakumarVeeramani Sivakumar (Sitel)
Hello John, 

If you click on "Repairing AVG program" in our previous post, you can see the article to know how to repair AVG program. If you are unable to get it, kindly please refer the below link :

https://support.avg.com/SupportArticleView?urlname=Repair-AVG-Antivirus
Shaun WhitsonShaun Whitson
Disable Powershell script, and you will never see it again, it was bugging me for ages
Ron ThibaultRon Thibault
Shaun,
How do I disable Powershell script?  This "threat" message is bugging me too.  What a pain!
 
Delli GaneshDelli Ganesh (Foundever)
Hello Ron.
Thank you for contacting AVG Community Support.
We have already replied to your other post please check that for further help.
We'd recommend you keep the entire conversation in one threat to speed up the resolution.
Thanks for your understanding in advance.
Laurens De ClercqLaurens De Clercq
Can somebody please tell me how to fix this? its driving me insane and yes I whitelisted PowerShell. I just want to program.
Delli GaneshDelli Ganesh (Foundever)
Hello Laurens.
Thank you for contacting AVG Community Support.
We will certainly check and help you.
To proceed further, please create a separate AVG community post by clicking the link below and post your questions in your own post, so we will check with your AVG account and help you accordingly.
https://support.avg.com/support_ask
Thank you for your understanding.
Ask a question
Struggling with non-AVG technology? We can fix that, too!