I'm not sure what "avast! behavior blocker event" is, but it certainly showed up, and after my restart I didn't change any settings, I didn't really have a chance to.
I'm using windows xp sp2 (slow connect would take forever), pent. 4, 256m ram, adaware, spybot search and destroy, spywareblaster, belarc, zonealarm, and right now I don't have an anti-virus which I will rectify shortly. I downloaded hijack this a long time ago before I switched from winme to winxp and if needed I will find it and use it.
At the last update (1290) avast worked fine in an admin account but in user accounts on-access protection went down and would not start due to what it said was a rpc error. After a bit I deleted, used a previous download (from around the 1st of the year, thereabouts), and downloaded all of the updates up to 1290 and the update for that day.
Everything went smoothly until restart, avast detected a possible malware infection by heuristics (mrtrate.sys or something like that I have bad crs {can't remember s**t} and I didn't write it down) and asked me to ignore and send to avast without explaining how to send to avast. I clicked ignore and yes to sending, avast said it needed to restart my system and I let it. After restart something called "avast! Behavior Blocker event" (I wrote this down and you guys say there isn't a "behavior blocker", but that's the way it was written in the pop-up window, also in more information it gave a partial address of the file or a whole one depending on length, the folder, and "allow", "allow all" and "deny") popped up and wanted me to open files for writing and if I allowed and whether I allowed or denied, another instance popped up for deleting the file. Some of the files were in system restore and Temp and an old version of norton systemworks (nprotect, protected deleted files) that I still use. I thought this was strange, but maybe something new that avast was trying.
The pop-up window gave no indication of why I was to open the file (except for writing) or why I was to delete. I denied some and allowed some, except for what I percieved to be system files (system32, etc.) or which I took the time to check out over the internet.
When I uploaded some programs from disks, the window popped up fast, quick, and many times. I'm really feeling funny about this so I checked in the forum and I was told that avast doesn't have a "behavior blocker"
Warning! Warning! Danger Will Robinson! The bells went off!
I had already downloaded that file aswClear.exe, but while I was downloading it B Blocker popped up again with internet files it wanted to "open for writing" and then delete, also it wanted to open aswclear for writing.
After I read what one of the forum guys said about avast not having a b blocker, I was about to close my connection, when the b blocker as if -emphasis added- IT DETECTED WHAT I WAS ABOUT TO DO AND NOW WANTED TO OPEN AVAST.COM FOR WRITING AND OPEN ASWCLEAR FOR WRITING. I denied and now the window for mrtrate.sys (whatever) popped and wanted again for me to ignore and send to avast when I denied, again avast wanted to restart my system and run a scan.
I COULDN'T GET THIS THING OFF MY SYSTEM FAST ENOUGH!
I erased avast in safe mode and re downloaded aswClear, went back into safe mode, used aswClear and defragged my C drive.
I've used avast since the last/first of 2006/2007 and I remembered later having this problem before (sort of, my crs is always acting up and I could be having false deja vu) and my fears being calmed by the forum. Now I'm wondering if my system has been compromised in some way and I'm worried.
Any thoughts, questions, answers, would be greatly appreciated and the answers already given are appreciated, but please don't tell me I didn't read "avast! Behavior Blocker Event" because I wrote it down.
Thank you.