Screenshots of related event logs or the active processes list: see above
A CIS config report or file: N/A
Crash or freeze dump file: N/A
CIS version, AV database version & configuration used: CIS 5 + Avast v5 Home Edition (free)
Whether you imported a configuration, if so from what version: nope, clean install of CIS v5
Defense+ and Sandbox OR Firewall security level: Defense+ at Clean PC + Firewall at Custom Mode
OS version, service pack, no of bits, UAC setting, & account type: Win7 Ultimate 64bit, logged on as standard user. UAC set to Always notify me (and do not dim my desktop) when:
Programs try to install software or make changes to my computer
I make changes to Windows settings
Other security and utility software running: nothing, other than Avast Anti-Virus
Virtual machine used (Please do NOT use Virtual box): No
Please try these solutions here and report back on the results.
BTW you say other security software running = ‘nothing’, but I guess avast is - so please edit Also please give your UAC setting account type details. (Just follow the red links in the format post if unsure what these are).
Well yes ofcourse Avast, thought that was clear ;D I thought you meant any other security software besides Avast. I have editted it now.
Also I have stated my UAC settings now. My total Windows configuration/settings have NOT altered in any way after I updated from v4 to v5.
ust as a thought, what happens if you exempt the CIS logging directory from real time AV monitoring in a) CIS, b) avast?
I actually never tried this and I am back to running v4 for the moment as v5 gave too much problems.
Maybe other users that are affected and still run v5 could respond to this and try it out. I will quote you on this in the other topic with the request to post their findings in this topic.
I followed the topic “App. is not working correctly, […]” and point 5:
The program may require greater permissions that those held by trusted files, but be unable to ask for them. To get round this apply the installer updater predefined policy to all executable files in the program's directory, and any other executable files you know it uses, using Computer Security Policy ~ Defense Plus Rules ~Add. Remove the same files from trusted files, and any other entries for these files in the computer security policy ~ Defense plus rules. Then reboot. For security reasons do not do this for applications that you will use to run other unknown files.
did the trick for me. Redefining the policy for "C:\Program Files\Alwil Software\Avast5\AvastSvc.exe" is all it needs.
Unfortunately I have exactly the same problem on my side. I am using Avast Internet Security Pro but without the use of their Firewall. Actually I can not confirm that this “high cpu problem” is linked in any way with avast because on my notebook I have also installed both and there it works fine. The only difference between my desktop and my notebook is that I am using Windows XP Pro 32 bit on the Notebook and Win7 Pro 64bit on my desktop. Indeed this problem occurs first after the update to version 5. By the way in my case even disabling the logging of firewall or / and defense plus does not stop the cfp.exe process to use sometimes more than 60% of my two cpu cores so I also cannot confirm that the logging is the root cause to this problem. I am currently also thinking about downgrading to version 4 although I love this new design
Sorry but I posted my last reply nearly at exact the same time as Birliban did and therefore I could not test his solution before posting
I did the same now as Birliban and changed AvastSvc.exe’s policy to “Installer or Updater” in the Defense+ settings and now the issue seems to be gone… @Birliban : Thanks a lot for this information.
We appear to have a solution to this but not one that makes a lot of sense (ie that is easily explicable) so I’m forwarding this as a verified issue.
If any of you manage to work out what is happening in detail, maybe by trying excluding logging directories etc please do say. (Please describe any experiment carefully).There is some evidence from other sources that enabling/disabling logging in CIS makes more difference than it should.
Re edits - know its a pain, but devs need a stable core bug report, and not all forum user can be relied on to keep the core subject stable, if allowed to edit. Soyou can edit in bugs board but not in verified issues.
If ever you really really need it to prevent miscomprehension just PM me or another mod, and we will edit.
Problem seems to have fresolved for me. I upgraded from v4 to v5 by saying yes to “there are updates available. Would you like to install them”
My firewall logging is normal now, also under the advanced logging I actually get to see the logs now, whereas before I didn’t.
CPU is normal. I excluded the Comodo log files in Avast real-time module.
I’ll still monitor it for a few days after which I will confirm if it’s really gone or not.
So far it looks promising though.
I can confirm that the problem is gone. The only thing I changed (before upgrading) in my v4 configuration (I still had a backup of v4 when I did my first clean install of v5 when the problem occured) is that I excluded the comodo log file dir and after that I upgraded, which was possible now. When v5 was just released v4 didn’t say there was an upgrade available. So I removed v4, did a clean install of v5 and then I had the logging problems. Now, after deïnstalling v5 and reverting back to v4 I imported my config back and had no problems. So I decided to upgrade, but before that I made sure the logging was disabled from the Avast real-time scanner as a safety precaution becuz it was suggested here. So I cannot tell for sure if that was the culprit. Maybe it was the clean install of v5 that caused problems, even after I made sure I removed all registry entries with the .bat file after uninstalling v4. Too bad I cannot say with utmost certainty what it was that caused the problem. I am just glad everything is back to normal again now when running v5.