Author Topic: xAV.TEAM:[6.0.1091][SOLVED]-Repetitive scanning of trust program(in autosandbox) (Read 8179 times)

GaAs · « **on:** April 06, 2011, 12:28:22 PM »

Hi All.
Hi Avast Team.

Autosandbox asks me what to do to crtlvol.exe (acer hardware volume control).
I say: run normally and remember my answer.

Problem: Whenever I run the crtlvol.exe FileSystemShield scans the file for each call I make I (FN + key Up or Down [volume setting]). This slows down the system until the completion of all keyboard input produced by the volume keys.
(Transient cache is on).
Want to send the file?
Let me know, thanks.

Now with the 6.0.1086 is worse than before.
But at least you have heard me, Avast Software???
See png image.

Oooook! With 6.0.1091 the problem is solved.
Thanks all You.
Thanks PK.
Thanks Avast! Software.

Zyndstoff (aka Steven Gail) · « **Reply #1 on:** April 06, 2011, 12:32:55 PM »

Add the prog to the exlusion list in Filesystem Shield expert settings.

GaAs · « **Reply #2 on:** April 07, 2011, 02:45:49 PM »

Quote from: Zyndstoff on April 06, 2011, 12:32:55 PM

Add the prog to the exlusion list in Filesystem Shield expert settings.

Hi All.
Hi Zyndstoff.
With the inclusion in the exclusions file list is no longer scanned by the File System Shield.
However this is wrong. In fact, avast must scan this file as I have previously decided, namely:
1) no autosandbox (default: run: always normally);
2) transient cache = on, then scan the file and then re-scan after updating signatures.
Thanks.

doktornotor · « **Reply #3 on:** April 07, 2011, 02:52:57 PM »

Then I do not know what you are asking for. Either exclude it, or live with the normal behaviour. When a program is run, it is scanned.

Zyndstoff (aka Steven Gail) · « **Reply #4 on:** April 07, 2011, 03:10:13 PM »

I don't see the point.

However: add the prog to the exclusion list and have it excluded on "execute" and "read" operations only.
This way it will be scanned only when writing the file, making sure that no malicious file will be written (e.g. driver update).

Vladimyr · « **Reply #5 on:** April 07, 2011, 03:21:46 PM »

Hi GaAs
There have been a number of cases like this - files continually scanned by the File System Shield. I'll PM you with a contact to initially send the file name to.

GaAs · « **Reply #6 on:** April 07, 2011, 04:50:49 PM »

Quote from: Zyndstoff on April 07, 2011, 03:10:13 PM

I don't see the point.

However: add the prog to the exclusion list and have it excluded on "execute" and "read" operations only.
This way it will be scanned only when writing the file, making sure that no malicious file will be written (e.g. driver update).

Hi Zyndstoff.
I know exactly what you say.
But the point is: if avast is designed to make a single scan of that file (as I have said many times) and is designed to do another only if the signatures are updated, why I have to lose time in useless settings?
What I reported is an unequivocal sign that something in the code of avast is to be reviewed.
Thanks.

Zyndstoff (aka Steven Gail) · « **Reply #7 on:** April 07, 2011, 04:53:42 PM »

Quote from: GaAs on April 07, 2011, 04:50:49 PM

Quote from: Zyndstoff on April 07, 2011, 03:10:13 PM
I don't see the point.

However: add the prog to the exclusion list and have it excluded on "execute" and "read" operations only.
This way it will be scanned only when writing the file, making sure that no malicious file will be written (e.g. driver update).

Hi Zyndstoff.
I know exactly what you say.
But the point is: if avast is designed to make a single scan of that file (as I have said many times) and is designed to do another only if the signatures are updated, why I have to lose time in useless settings?
What I reported is an unequivocal sign that something in the code of avast is to be reviewed.
Thanks.

Yes, I understand that. I am sure, your message reaches Avast devs.
In the meantime, until the bug is straightened out, I tried to offer some kind of workaround.
Sorry if that wasn't wished for.

GaAs · « **Reply #8 on:** April 07, 2011, 04:57:51 PM »

Quote from: Vladimyr on April 07, 2011, 03:21:46 PM

Hi GaAs
There have been a number of cases like this - files continually scanned by the File System Shield. I'll PM you with a contact to initially send the file name to.

Thanks Vladimyr.
Sorry if I ask you: What do you mean by "PM"?. I'm not very good at speaking English. With the abbreviations .... even worse.
Sorry again.

Asyn · « **Reply #9 on:** April 07, 2011, 05:04:22 PM »

Quote from: GaAs on April 07, 2011, 04:57:51 PM

What do you mean by "PM"?.

PM = Personal Message
http://en.wikipedia.org/wiki/Personal_message

GaAs · « **Reply #10 on:** April 07, 2011, 05:04:52 PM »

Quote from: Zyndstoff on April 07, 2011, 04:53:42 PM

Quote from: GaAs on April 07, 2011, 04:50:49 PM
Quote from: Zyndstoff on April 07, 2011, 03:10:13 PM
I don't see the point.

However: add the prog to the exclusion list and have it excluded on "execute" and "read" operations only.
This way it will be scanned only when writing the file, making sure that no malicious file will be written (e.g. driver update).

Hi Zyndstoff.
I know exactly what you say.
But the point is: if avast is designed to make a single scan of that file (as I have said many times) and is designed to do another only if the signatures are updated, why I have to lose time in useless settings?
What I reported is an unequivocal sign that something in the code of avast is to be reviewed.
Thanks.

Yes, I understand that. I am sure, your message reaches Avast devs.
In the meantime, until the bug is straightened out, I tried to offer some kind of workaround.
Sorry if that wasn't wished for.

No, you're wrong. Your solution I have appreciated very much.
I meant only that the Avast team in my opinion must correct this problem.
Sorry if I made them understand each other.
Unfortunately, to write in a different language and have no direct contact with the other party sometimes it is difficult to express what they really think.
Thanks again, my Friend.

GaAs · « **Reply #11 on:** April 07, 2011, 05:07:02 PM »

Quote from: Asyn on April 07, 2011, 05:04:22 PM

Quote from: GaAs on April 07, 2011, 04:57:51 PM
What do you mean by "PM"?.

PM = Personal Message
http://en.wikipedia.org/wiki/Personal_message

Thank you very much to you Asyn.

Asyn · « **Reply #12 on:** April 07, 2011, 05:11:06 PM »

Quote from: GaAs on April 07, 2011, 05:07:02 PM

Thank you very much to you Asyn.

You're welcome..!

Zyndstoff (aka Steven Gail) · « **Reply #13 on:** April 07, 2011, 05:22:59 PM »

Quote from: GaAs on April 07, 2011, 05:04:52 PM

No, you're wrong. Your solution I have appreciated very much.
I meant only that the Avast team in my opinion must correct this problem.
Sorry if I made them understand each other.
Unfortunately, to write in a different language and have no direct contact with the other party sometimes it is difficult to express what they really think.
Thanks again, my Friend.

Oh, okay. Misunderstandings...

GaAs · « **Reply #14 on:** April 17, 2011, 12:30:39 PM »

Quote from: GaAs on April 06, 2011, 12:28:22 PM

Hi All.
Hi Avast Team.

Autosandbox asks me what to do to crtlvol.exe (acer hardware volume control).
I say: run normally and remember my answer.

Problem: Whenever I run the crtlvol.exe FileSystemShield scans the file for each call I make I (FN + key Up or Down [volume setting]). This slows down the system until the completion of all keyboard input produced by the volume keys.
(Transient cache is on).
Want to send the file?
Let me know, thanks.

Now with the 6.0.1086 is worse than before.
But at least you have heard me, Avast Software?

??

Author Topic: xAV.TEAM:[6.0.1091][SOLVED]-Repetitive scanning of trust program(in autosandbox) (Read 8179 times)

GaAs

xAV.TEAM:[6.0.1091][SOLVED]-Repetitive scanning of trust program(in autosandbox)

Zyndstoff (aka Steven Gail)

Re: to AV.TEAM: [6.0.1044_B] Repetitive scanning of trust program (in autosandbox)

GaAs

Re: to AV.TEAM: [6.0.1044_B] Repetitive scanning of trust program (in autosandbox)

doktornotor

Re: to AV.TEAM: [6.0.1044_B] Repetitive scanning of trust program (in autosandbox)

Zyndstoff (aka Steven Gail)

Re: to AV.TEAM: [6.0.1044_B] Repetitive scanning of trust program (in autosandbox)

Vladimyr

Re: to AV.TEAM: [6.0.1044_B] Repetitive scanning of trust program (in autosandbox)

GaAs

Re: to AV.TEAM: [6.0.1044_B] Repetitive scanning of trust program (in autosandbox)

Zyndstoff (aka Steven Gail)

Re: to AV.TEAM: [6.0.1044_B] Repetitive scanning of trust program (in autosandbox)

GaAs

Re: to AV.TEAM: [6.0.1044_B] Repetitive scanning of trust program (in autosandbox)

Asyn

Re: to AV.TEAM: [6.0.1044_B] Repetitive scanning of trust program (in autosandbox)

GaAs

Re: to AV.TEAM: [6.0.1044_B] Repetitive scanning of trust program (in autosandbox)

GaAs

Re: to AV.TEAM: [6.0.1044_B] Repetitive scanning of trust program (in autosandbox)

Asyn

Re: to AV.TEAM: [6.0.1044_B] Repetitive scanning of trust program (in autosandbox)

Zyndstoff (aka Steven Gail)

Re: to AV.TEAM: [6.0.1044_B] Repetitive scanning of trust program (in autosandbox)

GaAs

Re: to AV.TEAM: [6.0.1044_B] Repetitive scanning of trust program (in autosandbox)