Hi. I’m running Avast Home 4.7. I’m thinking of increasing its resident protection, but when I go to configuration the only module that shows is the mail scan. I’ve looked under (WinXP) services and don’t see any unstarted ash modules there. I don’t see ashwebsv.exe in the avast4 folder.
I’m not sure how this happened; it may have been me some time ago paring things down.
Is there any way to gain access to the other modules?
Thanks,
Paul
Click the ‘Details’ button to expand the options for the providers.
I already run it in Details mode and only one module, Internet Mail, shows in the left column.
p.
At the very minimum I would expect to see the Standard Shield, a screenshot might be helpful ?
What avast processes are running in Task Manager, they begin with ash or asw, see image ?
http://img.photobucket.com/albums/v325/for-dwr/ashresources.gif
Can you try to repair your installation?
Go to Control Panel > Add/Remove programs > avast! antivirus > Remove.
Then choose the ‘Change’ function in the popup window.
Check all the modules.
If this does not help, can you uninstall / boot / install / boot again?
David, none of those modules showed in task manager.
Tech, you’re suspicion was right on. I must have uninstalled the modules at some point. But since I just had an attack, at least for a while I want to turn a few things back on. I’ve got all the modules back under Settings now, so I can do so. Success!
Thanks much, all, for your input.
Paul
Then effectively avast wasn’t providing any protection as the ashServ.exe is the main scanning engine, Standard Shield.
Unless you were trying to have avast only scan email ???
But, without the ashServ.exe I’m not sure if that would work.
Hopefully you now have the necessary avast processes that you require.
I’m sure that one was present, with the mail server. Just the other ones were missing. Sorry that my reply was not very precise.
p.
No problem, the main issue now is that you have the processes that you want after the avast repair/change.
Try to scan your PC with antirootkit products like AVG or Panda.
i use avg anti-rootkit, and SysInternal’s. Just tried Panda and found it a mess. Kept popping up an ad at me. the program was waiting for me to do something with it, but when i nuked it the program reinitialized; when i clicked it i went nowhere. so nix on panda.
p.
What about? Are you clean?
everything seems to be in order, thanks. there were a couple of strange occurrences that set me off, but i’m not sure anything was ever attempted. Trend’s online scanner said it picked up a keylogger, but Spybot S&D, AVG anti-spyware and rootkit, and avast antivirus missed it.
So I have no idea if there was an breakin attempt, but I think there was. IAC, apparently i’m clean now, though i can’t be totally sure of that either.
p.
The important thing is if say Trend says it found a keylogger (?), you record the file name and location and then you go researching.
First there are some legit programs that monitor keystrokes which aren’t keyloggers, there are parental control style keyloggers and if you had one is it pointing to that. Then there is googling the file name to see if there is any information about it. Then there is uploading the suspect file to VirusTotal - Multi engine on-line virus scanner and check the results.
good idea, but since i can’t find a log for Housecall, I guess I’ll have to save it for next time. None of these circumstances would bother me too much, except that around the same time I got a spam mail at one address which listed a defunct address from years ago. I can only conclude that somehow someone had read some of my data to make that connection.
p.
I used to get spam mail on addresses that were ancient, the problem with email addresses are they are out there forever if you have ever used them on-line.
Even if you only used them to friends, they sit in address books and if one of those friends gets infected all the email addresses are up for grabs.
So I doubt it was obtained from your system.
Now THAT is an interesting thought - that the association of two of my addresses occurred when someone else’s address book was compromised. that hadn’t occurred to me at all. hmmm. bad as that is, from my point of view it would be better than my own system being compromised. in the two or so weeks since it happened, there’s been no reoccurrence.
Thanks,
p.
Your welcome.