I have been looking at the infamous “red ball” on the avast icon at startup. Even in the current version of avast the “red ball” is evident for some time on the system of one of the folks I support and also on one of the systems I run (these are all Win XP SP2 fully updated systems).
I am fairly certain I have got an understanding of why the “red ball” appears on these systems but the whole review of avast starting up prompts once again the more fundamental question that I cannot find an answer to … it is this:
In starting a Windows XP system is avast basic file scanning (ie the function known as the Standard Shield) functioning before any other system component or startup program can perform network accesses?
While, of course, anyone can comment I am looking for an answer from a member of the Alwil team.
If anyone has any interest in my “red ball” findings I can post that in another thread.
Sorry, I’m not an Alwil team member as you know… but, as far I know, the system is protected by the low level driver since from it’s loaded, before, the logon process is taking place.
many thanks for the input. I suspect and would like to believe this is the case but I hope you will understand that I would like to see a confirmation by the team.
Generally, the answer is NO. While the avast drivers load quite early in the boot process, the avast user-mode service (which hosts the scanner) loads as a Windows service. Starting with v4.7.942, this service loads as one of the first user-mode services in the system, but still, it is possible e.g. for a malware service to start earlier.
Also, avast 4.x doesn’t do anything to prevent programs from registering themselves as auto-start (i.e. doesn’t protect, in any way, the system “auto-start entries” [registry keys etc.]). This will change in v5.x, together with a number of other ‘tightenings’.
I’m not sure if that answers your question - if not, please dont hesitate to get in touch with me.
I’ve never understood why the red circle shows on the avast icon in the taskbar for a bit of time after loading. I’ve read some of the explanations for it. Nice to hear the information coming from the avast! team.
Also, avast 4.x doesn't do anything to prevent programs from registering themselves as auto-start (i.e. doesn't protect, in any way, the system "auto-start entries" [registry keys etc.]). This will change in v5.x, together with a number of other 'tightenings'.
I try to keep my eyes on things in auto-start just in case something scary tries to creep in. :o
Keep up the good work…I’ll do my job on my end to try and keep my pc secure.
Am I the only person who’s never experienced a “red ball”? My icon has always been blue straight away. I have quite a few programs loading at startup, and so one could argue that by the time Avast loads, all scanners are enabled and so the red ball is ‘by-passed’, but even when I reformat, and install Avast as one of the first programs, I still don’t see the “red ball”. Am I being deprived of a special feature?? ;D
You are not alone
I have avast on three computers for different family members, with three different systems, and no “red ball” on any of them at startup, although I have seen it in the past on one of them.
the red ball is a notice that the ‘on-access scanner’ is not running. Left click icon opens an interactive window but the choices are not available. I was able to activate it the last time this happened, having done something before hand but, I have forgotten what it was that I did. sure could use that advice right now. I can see that these programs are loaded at startup and are active ashWebSv.exe, ashMaiSv.exe, ashServ.exe but, the on-access scanner window I would like to activate so that I can control the sensitivity. been guessing at it for the last day or so. What is it that has to be done to activate this feature? thanks
well right, i count 6 installed providers, standard shield being one of them. The trouble is, for me, that in these providers, the sensitivity choices, are all unavailable, until something happens beforehand that activates these choice options, what might that be? Its something simple, thats all I remember about the issue from the past. thanks again
If you see a Details… >> Button, click it and that expands the view so that individual Providers can be selected and sensitivity settings changed, etc.
thats exactly where I am. My window looks a little different then the one in your post but, thats because I am using win98se, not ntfs. But, like I have said, my choices are unavailable until some option beforehand is chosen. Its something simple, I’ve corrected this in the past once or twice before, trouble is I dont remember what the f— it was that I had done. thanks again
If your image is basically the same have you clicked the Details button ?
It may be better to take this out to a new topic (if it isn’t now resolved) as it is totally unrelated to the original topic and it will just confuse the topic.
sure enough, i think the issue was described clearly enough and i think this is not an unusual situation. what is surprising is that none who have responded is familiar with this issue. its something simple, now, i really wish i had documented my activity, sayonara
Since nobody has an interest in my findings on “the red ball at startup” I will not bother posting … but it does happen and nothing posted here comes close to my observations.
I’ve never experienced this on my win98se machine, but I have seen it on the 2 xp machines that I sometimes babysit. Less than 5 seconds if I recall. I’ve follow the threads in the past to see if there was a reason/solution.
