hello!
Just a simple question.
Do all Avast proccesses and services use DEP/ASLR at the current (latest) version?
Thank you.

This brings Microsoft’s brilliant Enhanced Mitigation Experience Toolkit (EMET) to mind. EMET would be the only means by which a user can hobble Avast with the useless baggage of DEP amd ASLR. Avast has self-defence and is presumed trustworthy so I would have thought that DEP/ASLR would at best be a waste of time and at worst would kill Avast and so kill its protection capabilities.

EMET version 5 (production release) is here and it works great.

Just FYI: On XP, AvastUI and AvastSvc do NOT have DEP enabled. Only a bunch of M$ services/processes use DEP and Opera browser and SeaMonkey use DEP.
ASLR doesn’t exist on XP.
I suspect both of you aren’t talking about XP

Yes, I actually mean Windows 7/8.
DEP/ASLR is not considered useless for applications, most AV’s use such mitigations. Avast UI proccess uses both DEP and ASLR, I checked it, but I cannot see what’s going on with other avast services and files.
EMET forces a bunch of mitigations to apps, but I guess it’s not a good way of adding mitigations to Avast proccesses 'cause of problems that will occur if do it.