New user, new to Avast. Just installed Avast! FREE ANTIVIRUS ver 5 for a test drive.
Everything has been working fine with the exception of Boot-time results not showing up in the aswBoot.log. When I ran the Boot-time scan Avast found a few Win32:PUP-gen and a few corrupted files. I documented a few, but after walking away from a very long scan realized that a few results had scrolled off the screen. When I looked at the aswBoot.log, it contained much of what looked like the session information, but none of the scan results.
Do the results exist in another file, or have they not been recorded?
Here is the aswBoot.log from the Boot-time scan:
CmdLine - quick
aswBoot.exe /A:"C:" /A:"*" /A:"C:" /L:"1033" /heur:80 /pup /archives /IA:0 /KBD:2 /dir:"C:\Program Files\Alwil Software\Avast5"
CmdLine end
SafeBoot: 0
CreateKbThread
new CKbBuffer
CKbBuffer::Init
CKbBuffer::Init end
NtCreateEvent(g_hStopEvent)
dep_osBeginThread - KbThread
CreateKbThread end
NtInitializeRegistry
KbThread start
ReadRegistry
DATA=C:\Documents and Settings\All Users\Application Data\Alwil Software\Avast5
PROG=C:\Program Files\Alwil Software\Avast5
BUILD=462
Microsoft Windows XP Service Pack 3
SystemRoot=C:\WINDOWS
TEMP=C:\WINDOWS\TEMP
TMP=C:\WINDOWS\TEMP
ReadRegistry end
CreateTemp
CreateTemp end
aswcmnbDllMain
cmnbInit
aswEnginDllMain(DLL_PROCESS_ATTACH)
InitLog
InitLog end
CmdLine - full
aswBoot.exe /A:"C:" /A:"*" /A:"C:" /L:"1033" /heur:80 /pup /archives /IA:0 /KBD:2 /dir:"C:\Program Files\Alwil Software\Avast5"
CmdLine end
Program folder: C:\Program Files\Alwil Software\Avast5
Engine folder: C:\Program Files\Alwil Software\Avast5\defs\10032700
TimeStamp: 4ba04092
Unschedule
61,00,75,00,74,00,6F,00,63,00,68,00,65,00,63,00,
6B,00,20,00,61,00,75,00,74,00,6F,00,63,00,68,00,
6B,00,20,00,2A,00,00,00,61,00,73,00,77,00,42,00,
6F,00,6F,00,74,00,2E,00,65,00,78,00,65,00,20,00,
2F,00,41,00,3A,00,22,00,43,00,3A,00,22,00,20,00,
2F,00,41,00,3A,00,22,00,2A,00,22,00,20,00,2F,00,
41,00,3A,00,22,00,43,00,3A,00,22,00,20,00,2F,00,
4C,00,3A,00,22,00,31,00,30,00,33,00,33,00,22,00,
20,00,2F,00,68,00,65,00,75,00,72,00,3A,00,38,00,
30,00,20,00,2F,00,70,00,75,00,70,00,20,00,2F,00,
61,00,72,00,63,00,68,00,69,00,76,00,65,00,73,00,
20,00,2F,00,49,00,41,00,3A,00,30,00,20,00,2F,00,
4B,00,42,00,44,00,3A,00,32,00,20,00,2F,00,64,00,
69,00,72,00,3A,00,22,00,43,00,3A,00,5C,00,50,00,
72,00,6F,00,67,00,72,00,61,00,6D,00,20,00,46,00,
69,00,6C,00,65,00,73,00,5C,00,41,00,6C,00,77,00,
69,00,6C,00,20,00,53,00,6F,00,66,00,74,00,77,00,
61,00,72,00,65,00,5C,00,41,00,76,00,61,00,73,00,
74,00,35,00,22,00,00,00,00,00,
Unschedule end
LoadResources
LoadResources end
InitReport
InitReport end
NtSetEvent(g_hInitEvent) - 1
InitKeyboardCPU: Phys(2), Log(2), Aff(2), Feat(0000001f)
g_dwKbdNum: 2FreeMemory: 1907662848
\Device\KeyboardClass0 failed: 0xC0000034avworkInitialize
FreeMemory: 1907130368
\Device\KeyboardClass0 failed: 0xC0000034
\Device\KeyboardClass0 failed: 0xC0000034
\Device\KeyboardClass0 failed: 0xC0000043
s_dwKbdClassCnt: 2
InitKeyboard end
NtSetEvent(g_hInitEvent) - 2
GetKey
CKbBuffer::Wait
CKbBuffer::Get
CKbBuffer::Get end
CKbBuffer::Wait end
ProcessArea
avfilesScanAdd *MBR0
avfilesScanAdd *BOOTC:
Loading raw access support
avfilesScanAdd *RAW:C:\ [Fs: 000700ff, NTFS; Dev: 07, 00000020]
avfilesScanRealMulti begin
CKbBuffer::Get
1, 4, 0, 0, 0
GetKey end (3/33)
CKbBuffer::Put
CKbBuffer::Put end
CKbBuffer::Get endGetKey
WaitForKeys (9): 3
1, 4, 1, 0, 0
CKbBuffer::Get
1, 3, 0, 0, 0
GetKey end (2/32)
CKbBuffer::Put
CKbBuffer::Put end
CKbBuffer::Get endGetKey
WaitForKeys (9): 2
1, 3, 1, 0, 0
GetErrorText
GetErrorText
GetErrorText
avfilesScanRealMulti finished
avworkClose
Unloading raw access support
Loading raw access support
Checking deleted files:
MarkFileRemoval
MarkFileRemoval end
TerminateKbThread
GetKey end (?/00)
CloseKeyboard
CloseKeyboard end
KbThread stop
CKbBuffer::~CKbBuffer
CKbBuffer::~CKbBuffer end
aswEnginDllMain(DLL_PROCESS_DETACH)
cmnbFree
FreeResources
CloseReport
CloseLog
