Can't sign into TCFbank.com

[REDACTED]

Yes, sorry. That's what I tried. Thanks.

[Eddy]

It would not surprise me if the culprit is the behavior shield.
Disable it and see if the page loads or not.

[bob3160]

It would not surprise me if the culprit is the behavior shield. Eddy

Makes no difference. Why didn't you try it Eddy

[DavidR]

It would not surprise me if the culprit is the behavior shield.
Disable it and see if the page loads or not.

I find that hard to believe, given that it is looking for suspicious activity on the system unlike the web shield and or AOS. Also we know AOS & IE11 with SmartScreen conflict to the point I think avast don't try to install AOS on IE11.

If it were the behaviour shield I would also expect it to impact all browsers.

[NON]

I'm using IE11 not firefox.  Click on the link I provided above and I get "page cannot be displayed"
https://onlinebanking.tcfbank.com/fitcf/retail/logon/portal?isIndividual=true&isPortal=true

Confirmed with IE11. Not happening when HTTPS scan is disabled.

[bob3160]

I'm using IE11 not firefox.  Click on the link I provided above and I get "page cannot be displayed"
https://onlinebanking.tcfbank.com/fitcf/retail/logon/portal?isIndividual=true&isPortal=true

Confirmed with IE11. Not happening when HTTPS scan is disabled.

I can confirm that:

This holds true in IE and Microsoft Edge, Not recommended.
A much better choice is to use one of the other browsers.
Since this involves a bank, the best choice is SafeZone Browser in Banking Mode.

[REDACTED]

I see its related to the HTTPS scanning per Bob - As I mentioned turning off the web shield does resolve it, now I know where in the web shield the problem lies.  Hopefully they can fix on their next update - most customers are not going to go through this troubleshooting and get very frustrated trying to access their bank account. One of my customers was frantic because she thought she had a virus and somehow affected her bank account.

[stibi]

Hi,

the original web shield problem is one problem. Another thing is the "maximum number of attempts" which John reported:

A few days ago someone from Avast wrote to me via Avast email system:
"Hi there,  I cannot simulate the problem with tcfbank.com since i don't have any real username, can you help me with this?
I wrote back and gave my user name to try.  Later I found a direct link to the sign in page that causes the problem and told them to use that instead. 

But tonight I just tried to log in to my TCF Bank (of course I turned off the Avast shields to sign in due to the problem)  and I get a message stating "You have exceeded the maximum number of attempts to answer your security questions, please call Customer Service for assistance."

This should confuse us much more ...

[Filip Braun]

Hello,

We were able to reproduce the issue and are working on a fix.

Sorry for the inconvenience,
Filip

[bob3160]

Hello,

We were able to reproduce the issue and are working on a fix.

Sorry for the inconvenience,
Filip

The question here is who tried logging in to the users account

[Alikhan]

Hello,

We were able to reproduce the issue and are working on a fix.

Sorry for the inconvenience,
Filip

The question here is who tried logging in to the users account

Exactly.

It's unacceptable for that to happen.

[stibi]

For me the most important and very confusing question is - did this information

Avast WEBforum <forumaster@avast.com> 
Mar 8 (3 days ago)
to me
You have just been sent a personal message by Endt on Avast WEBforum.
 IMPORTANT: Remember, this is just a notification. Please do not reply to this email.
 The message they sent you was:
 Hi there,
 I cannot simulate the problem with tcfbank.com since i don't have any real username, can you help me with this?
 Thanks,
 B.

really came from an Avast guy?

[DavidR]

For me the most important and very confusing question is - did this information
<snip quote>
really came from an Avast guy?

Endt is a member of the avast team.

I think the idea of a PM is it is personal message between the recipient and sender.

The email address is that used to send notifications of PMs and or notifications of activity in topics that you follow (asked to notify) or you have contributed to.

[stibi]

David - that means a member of the avast team asks not only for a URL to check it, but asks also for login information to a bank site? Never ...

You may say the user was careless, but such a question should never be asked from serious people.
Or do I misundestand something?

[Alikhan]

David - that means a member of the avast team asks not only for a URL to check it, but asks also for login information to a bank site? Never ...

You may say the user was careless, but such a question should never be asked from serious people.
Or do I misundestand something?

They asked for a link to the site and the Username to test the problem... NOT the password.

Attempting security questions is the problem here.