system
2
Ok, further investigation shows that it is not directly avast but microsoft’s dcom service (rpcss.exe) keeping these ports open. Disabling dcom renders avast unfunctional.
While I am not aware of any direct exploits of the remote procedure call services, I still think that it is not a good solution, to build security software on. But I would like to hear other opinions.
Thanks again.