I have 2911 router with 15.0 IOS + security + data. The problem is in ACL hit logging. Even if i applied statement "permit ip any any log" on the interface, counters would not match anything.
Did you search for the possibiltiy of a bug?
I have involved to a problem with an Access-list that denied all and was solved with a new IOS
Hope that helps,