Avast blocking most internet traffic when Web Shield is enabled

Avast Free Antivirus / Premium Security
41

Thanks, bob3160. That’s fine, and understandable.

If he/they(/you?) can please let us know when the email issue is resolved (and if, say, there’s a different address we should use…and, if so, what it would be), that would be great, too!

Thanks,
Bram Weiser

42

It is fair to say that disabling functionality of a product is a bandaid solution to a coding bug. Here’s hoping it will be fixed in the next version but until then, I have reverted back to an earlier version without the bug. MartinZ did say a fix was in the works but I have not seen him back in this thread yet and I would like to believe turning off HTTPS is not the fix he meant considering the number of pages that are S these days. I am really not keen on turning off SSL on pages like my banking and any other where sensitive information is shared so will it work, probably and possibly since I will not do that but is it a good idea? Easy to figure out.

Cheers

43

Once I know, you’ll know unless someone from Avast post a reply directly.

44

The reason earlier versions didn’t have this bug, was previously XP and Vista didn’t have the infrastructure to enable avast to scan HTTPS pages. HTTPS scanning on XP and Vista was only introduced from 10.3.2223 when avast made changes to enable XP and Vista to scan HTTPS pages.

I think you are confused by what was suggested disabling HTTPS scanning is in the Web Shield settings - not trying to turn off SSL on your banking pages (which I don’t think you can do for sites that are specifically HTTPS). They would remain using SSL/TLS just that avast web shield wouldn’t scan those pages.

45

Hi DavidR,

No I am aware and just posted out wrong in haste. I understand that those sites will only use browsers that support it, I really meant to say, disabling that in the web shield was not a great idea considering the number of pages these days that are HTTPS. We could not even get to the Avast site due to that. I still maintain, turning off the Enable HTTPS scanning is not what most people would want in a Virus program based on that. I do realize the option is not available on the earlier version although it is available in 10.2.2218 as I am running that right here and now, hence “The bug” Fingers crossed it might be fixed because reality is there is still a huge XP user base out there and of course we want all the pages scanned since I am very confident in my banking site, the others? Not so much.

Cheers.

46

Well it isn’t a fix but a work around, which was suggested to save going back to an earlier version that has the same impact in XP and Vista, they can’t scan HTTPS pages. Not to mention you would lose out on any other benefits that were included and working in 10.3.2223.

The weird thing is that it isn’t consistent across all XP systems (mine is fine), which can only make it harder to pin down the exact cause.

EDIT: It seems this may have been pinned down as in another post they believe it is for those still using XP SP2 - my guess it seems that the mod to be able to scan HTTPS doesn’t work in XP SP2 - we will have to wait and see. But what it means those still using XP SP2 won’t have the HTTPS scanning function or those with SP2 will have to get SP3. Not sure how that would work with XP Pro SP2 64bit as there is no SP3 for that OS version.

See: https://forum.avast.com/index.php?topic=174079.msg1237172#msg1237172, last paragraph.

47

hi all,

just to note. https scanning all fine here on win vista home premium.

skinnypops

48

This has been an intermittent issue with not all XP and Vista users effected, but some certainly are, all of which makes it harder to find and fix the fault.

49

Hi,

the hotfix is live now, so users who have version 2223 and problems with browsing should just restart computer.
Users who will update to 2223 now will already have the fix applied and HTTPS scanning will be disabled for them by default.
(applies only for XP SP2)

50

This is a still a problem with Windows 8.1.

We are now using free version .2225 , early versions also blocked traffic (2 weeks or so). But only on my children’s (3) PCs are blocked ( they are running windows Family Safety ). My computer, not running the Family Safety, has worked well throughout these last few avast program updates.

If I turn off the Https scanning , as suggested in the post regarding xp issues, their PCs can once again connect to the sites (namely youtube.com).

Thanks for any updates in this regard. I hope this post isn’t buried in this thread.

51

Strange, I run Windows 8.1 and the latest version of Avast free. I have no problem accessing Youtube. I view videos, upload and download video’s without problems.
Is Avast allowed access through your firewall ???

52

I don’t have trouble either, but the kid’s PCs do. The only difference is that they are protected from inappropriate sites by windows “Family Protection” settings. Once the https shield is turned off on avast they can once again have access to the sites that I have unblocked.

53

What O[erating System does that computer run ???

54

Hi Guys.

I’ve found that last update turn off scan of SSL connections in mail shield settings too (on
my computer with XP SP2).

In my case, it caused the problem with e-mail send and receive inside TheBat mail program (my mailbox is set to TLS connection).

Everything work fine after I “checked back” SLL connection option.

Maybe this option shouldn’t be automatically unchecked by the update ?
Computer work fine if only HTTPS scan is turn off.

55

@ mariusz30
Read Reply #20 and Reply #48 by MartinZ avast team member.

Ideally you should update your XP SP2 to SP3, that way HTTPS scanning won’t be disabled.

56

I’ve already HTTPS scan disabled. Scan of SSL connection is a different thing (in mail shield setting). I mean when you made update which turn off HTTPS scan in XP SP2, scan of e-mail SLL connections was also disabled.

Just indicate that others which use XP SP2 and e-mail programs can have problem with e-mail send/receive after last update. They must turn back on SSL scan for mail shield, but keep HTTPS scan disabled for the websites and everything will be fine.

57

There is no need to disable HTTPS as the latest avast version 10.3.2225 will detect that you have XP SP2 and disable that functionality. Even if you stuck with 2223 there was a hotfix (probably delivered during a VPS and engine update to disable that function in XP SP2.

58

Ref: Avast blocking most internet traffic when Web Shield is enabled - well it’s worse than this with my XP PC.

I’ve been using Avast successfully for many years. Normally it’s excellent! But I installed vers. 10.3.2225 yesterday and it has corrupted my old XP workhorse. The symptoms are: (1) Avast states some shields are inactive; (2) the webshield is inactive but cannot be acivated as setting it ON is ignored; (3) eventually (and usually when starting a browser - say chrome) the PC hard stops (mouse & keyboard don’t work) leaving only power off as a procedure.

I have no ideas of a workaround for this except removing Avast clears this bug (as proven three times).

I am having no trouble with my Windows 7 PC and this version of AVAST.

Just to confirm that I too, amongst the many it seems, have to keep XP running for legacy systems that do not work correctly in Windows 7. Whether they work in W8/8.1 or 10 is immaterial. So I hope Avast will find a solution and continue to support us XP users into the future.