Author Topic: Where to find files erroneously marked as a false positive  (Read 1327 times)

0 Members and 1 Guest are viewing this topic.

REDACTED

  • Guest
Where to find files erroneously marked as a false positive
« on: June 03, 2017, 04:54:31 PM »
Hi all. Sorry if this has been asked before, but I couldn't get thru all the links in my search.

I recently had a file reported as suspicious by my PC's Avast Free Antivirus and normally, I trust the antivirus but I was sure this was a false positive. So I allowed the file to proceed and added an exception/exclusion for it. That forever turned out to be a wrong move as my browsers have now been hijacked and they sometimes re-direct me to other web pages when I click my mouse, like what typical PUPs/malwares etc would do. It's frustrating. I can probably solve this by completely un-installing my browsers and re-installing them, but I'm thinking with that exception/exclusion in place, the same thing would happen with the new installations.

So the question is, where do I find this exclusion instruction in Avast and remove it so that Avast would stop the file from running again? Sorry if I sound ignorant. I know a bit more about IT stuff than the regular folks but nowhere near those of you who talk about dll, scripts, Java etc.

Thanks for any help.

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37181
« Last Edit: June 03, 2017, 05:14:35 PM by Pondus »

Offline Asyn

  • Avast √úberevangelist
  • Certainly Bot
  • *****
  • Posts: 76162
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Where to find files erroneously marked as a false positive
« Reply #2 on: June 03, 2017, 05:01:54 PM »
Check where you added the exclusion(s) and remove it/them.
-> https://www.avast.com/faq.php?article=AVKB168#artTitle (Excluding files/websites)
W8.1 [x64] - Avast PremSec 22.6.7355.BC [UI.713] - Firefox ESR 91.10 [NS/uBO/PB] - Thunderbird 91.10
Avast-Tools: Secure Browser 102.1 - Cleanup 22.2 - SecureLine 5.18 - DriverUpdater 22.2 - CCleaner 6.01
Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline mchain

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 5421
  • Spartan Warrior
Re: Where to find files erroneously marked as a false positive
« Reply #3 on: June 03, 2017, 05:05:20 PM »
Hi manutd1972,

Welcome to the forums. 

Really sorry this happened to you.  Point of having an antivirus running is to protect you when the threat happens, and as you found out, avast tried to do so. 

Real-time protection trumps manual scanning every time as when the malware gets in running a manual scan will not completely remove a threat once it gets in.  Too many things get hidden and too many variables are at play.

So, the best thing to do is to follow instructions here, and attach the logs requested:  https://forum.avast.com/index.php?topic=194892.0

Please read Pondus' reply and consider whether you need the services of a certified malware expert.

Windows 10 Home 64-bit 21H2 Avast Premier Security version 22.3.6008 (build 21.3.7108.721) UI version 1.0.702.