Configuring Avast under Kerio Personal Firewall + Registration & Privacy Policy

New Avast user, and so far I like what I see… However, I do have a couple of questions, and would appreciate response from anyone.

All of the scanning options (except local on-access) tend to slow down my already slow dialup connection. Part of the problem is that I use Sunbelt’s Kerio Personal Firewall, so there is already one layer of packet filtering. Also, Kerio uses the localhost (127.0.0.0), as does my Modem on Hold feature.

So, I end up pausing or disabling a number of the scanning options. E-mail scanning is particularly slow.

Also, I’d like to register my copy of Avast, but can find no statement of Alwil’s privacy policy anywhere on the Avast site. ???

Thanks in advance for any assistance. ;D

Do you have an internal “software” modem?

Re: Avast! Home Registration? http://www.avast.com/eng/home-registration.php
I’ve never read their privacy policy but all they got from me back in 2002 was my email address and I’m still not getting much junk in that Inbox. ;D

Well, it is internal - 56K, V.92. And, it uses software. So I suppose it is an internal software modem…

Good to hear about your lack of spam from registration… encouraging…

Thank you for your response. ;D

Re the modem question.

If by this you mean the speed of data from the 'net to your PC is actually retarded, the only way that having the other Avast! scanners/providers running could do this is if they were taking CPU and RAM resources that would otherwise be used for signal and data processing by your modem. A software modem being just another program with a virtual comm. port on one side and a phone line on the other.

If instead you meant that the connection speed is the same but the speed of displaying web pages is slower with the Web Shield provider (the other providers should be idle and so not make any difference), what are your PC’s specs?

Thank you, yes the connection rate is the same, but the the data transfer rate is slower.

Specs, as in:

OS INFORMATION


OS Name Microsoft Windows 2000 Professional
Version 5.0 Service Pack 4
Build 2195
OS Language English(United States)

PROCESSOR INFORMATION


Processor Name Intel Pentium III
Number of Processors 1
Processor Revision 803
Minimum Application Address 10000
Maximum Application Address 7ffeffff
Processor Speed 698.0 MHz

Total Physical Memory 127 MB
Available Physical Memory 35 MB
Total Pagefile Size 311 MB
Available Pagefile Size 170 MB
Total Virtual Memory 2047 MB
Available Virtual Memory 2014 MB
Extended Virtual Memory 0 MB

CACHE INFORMATION


Cache Size 26296 KB
Cache Peak Size 36368 KB

Actually, the Kerio seems to have disabled the Web Scanner. There is one ‘scanner’ showing on the tray icon as a ‘provider’, but it never seems to show up on the tray icon as running.

So, it is primarly the Internet Mail scanner that is the most slow…

List of ‘Avast! Home’ Providers: (from my XP SP2)

Internet Mail:

  • Scan outbound mail [SMTP]
  • Scan inbound mail [POP3]
  • Scan inbound mail [IMAP]
  • Scan inbound news [NNTP]
  • Scan outbound news [NNTP]
  • Heuristic sensitivity: medium

Instant Messengers:

  • MSN Messenger
  • ICQ
  • Trillian Messenger

Network Shield:

  • Show messages

Outlook:

  • Scan inbound and outbound mail
  • Scan unread messages on open
  • Heuristic sensitivity: medium

P2P Shield:

  • Kazaa & KazaaLite
  • Direct Connect
  • Direct Connect++

Filesystem:

  • Scan selected files on write
  • Scan selected files on open

Web Shield:

  • Scan HTTP traffic

The Avast! Internet Mail scanner does have a noticeable impact on systems with low physical RAM - and 128MB is really marginal for Windows 2000!
From the 127MB indicated I’d guess that you have an Intel chipset m/board with integrated video which grabs a nominal 1MB for the GPU but ‘dynamically assigns’ more of the system RAM to the video buffer as the need arises
Assuming everything is working properly, another 256MB would do wonders for the system as a whole, but even another 128 would be worth it if that’s all you can get.

cluelessuser, are you using the free or the paid version of Kerio.
If you disable just WebShield, will the browsing speed increase?

Thank you, for your replies!

Paid.

Yes, transfer rate is good with WebShield disabled.

Perhaps you use the Professional version of Avast? I’m using the Home edition.

Don’t use UUU News, so don’t have that…

Don’t see any settings for heuristics…

Don’t use any IM products…

Don’t use Outlook or Exchange products…

Don’t use any P2P products…

Filesystem is, I suppose, the ‘Standard Sheild’ on-access scanner - that works great and I like it!

Your guess is right on target, quite correct. If I could afford more RAM, I’d get it. Not to mention that I’ve never had keys to the access door, which somehow magically locked itself about a year ago, and I can no longer get to the ‘insides’…

So, the outcome seems to be that the only useful functions of Avast under my current circumstances are the Standard Shield and, of course, the usual configurable disk scanning functions…

Thank you both, again, for your replies! May the computing gods always bless you!

So, the privacy features of Kerio could be lowering the browser speed… You can test disable only this part of the firewall.

So, you can add the sites you’re sure that they’re clean, the ones you browse most to the WebShield exception (although, of course, this lower your security level).

Which is your Standard Shield sensitivity level? High or Normal?

Thank you again for your response. Yes, the privacy feature do slow down a bit, but not enough to make effective difference.

So, you can add the sites you’re sure that they’re clean, the ones you browse most to the WebShield exception (although, of course, this lower your security level).
[/quote]
Yes, I will look for that feature - thank you.

Set to quite Normal…

I truly am most interested in doing something (if possible), to add a bit of transfer rate to the email Scanner.

Guessing further, “keys to the access door”. Are we talking HP E-PC or equivalent by any chance? This would fit with the specs you provided.
If so, there’s only one memory slot, so adding RAM means replacing the existing module. Also Pentium III 700mhz (100x7) are rare. If it’s actually a Celeron 700 (66x10.5) this would also restrict performance.

I understand that there are problems for you ‘simply’ adding more RAM but I’m persisting 'cause I still think increasing it will outdo any small gains you may achieve by tweaking the OS, Avast! or other software.

I don’t see a way to do so in Home version. Professional version will allow more configurations on packers.
Other option is to reduce the Heuristic analysis.

No, it’s an old IBM machine with a P3-700. There is still an open slot.

Thank you for your persistence - I will avail myself of your advice should the opportunity arise.

Have yet to see this ‘heuristic’ device - unless this is the ‘Sensitivity’ settings on the on-access scanner ‘providers’? I’ll take a look at that.

Thank you both again for your time and expertise!

Left click the ‘a’ blue icon.
Click Details buttom (if needed).
Choose Internet Mail provider at left and click Customize button.

I looked at all the ‘sensitivity’ settings. Indeed there is a ‘heuristics’ tab in the Internet Mail scan. Now, I am more clueless than before…

Starting with the Web Shield:

  1. What is 'transparent scanning"?

  2. Why would one ‘redirect’?

  3. How does one know which ports to ‘redirect’?

On to the Internet Mail Shield:

Again,

  1. What is 'transparent scanning"?

  2. Why would one ‘redirect’?

  3. How does one know which ports to ‘redirect’?

and, on the heuristics tab:

  1. What is outbound messages - time period check?

  2. What is outbound messages - mass messages?

  3. What is whitespace sequence check in the name of attachment?

8 ) How does one determine maximum admissible length of sequence?

  1. HTML part check - How does one determine if one needs local iframe tag and/or remote iframe tag?

  2. What is subject structure check?

  3. How does one determine, for the attachment check, if one needs according to name or according to name and content-type?

???

Thanks in advance for any assistance.

The one that is done automatic, without passing the traffic to a proxy (a server that bypass the traffic). The scanning that you don’t have to do anything to have it working.

The traffic to some port is scanned by default (port 80 for http). If you don’t redirect the traffic of other ports they won’t be scanned. Generally, this is not a problem as only port 80 is used. Advanced configuration requires redirection.

Generally, no one. If you have an application that requires a proxy (like an annonimizer, maybe a spam killer tool that uses http protocol, etc.) you must set that port to be scanned.

The same for email scanning.

Some spam applications redirect the traffic to analyze it and check if the message is a spam or not.

Help files of the programs that you use 8)

See avast help file and then, if you have doubts, ask again 8)

Tech - You have been most patient and helpful, thank you!

After reading the Help file more carefully, I still have a couple of questions. ::slight_smile:

My ISP does use a proxy server and slipstream - I’ve never quite been able to figure out what the settings are. Right now, I’ve set in Avast to ‘autodetect’, but autodetect never works in Firefox and I try not to use IE if I can help it… But, I do know that IE does pick-up the proxy, so perhaps the ‘autodetect’ is best.

The mail scanner tray icon gives the IP for that service, which is good as I was able to set my firewall to allow ashmaisv.exe to communicate with that IP.

However, I found these additional IPs in the help file:

URL: http://www.asw.cz/iavs4pro
IP: 195.70.130.34

URL: http://www.avast.com/iavs4pro
IP: 64.246.6.135

URL: http://www.iavs.net/iavs4pro
IP: 207.44.156.15

URL: http://www.iavs.cz/iavs4pro
IP: 62.168.45.69

I need to know which Avast executable uses which of the above IPs so I can set the firewall to allow communication between the executable and the IP. I’m too paranoid (since I am so clueless) to allow those IPs to communicate with just ANY executable. :-\

Thanks again for all your help, Tech. May your children be many and beautiful! ;D

I’m not sure but I think you need to configure if you use a LOCAL proxy or the network passes the traffic to a proxy.

avast can communicate to a lot of servers to update. They’re used to balance the traffic and you’ll have a lot of work to manually configure almost 100 servers. I won’t do that. Just allow full access to avast.setup and you’ll be happy.

That’s me at four years old 8)

So far, the autoconfig seems to work… 8)

I will try this suggestion, thank you!

Thanks to everyone’s help, I now have 3 out of 5 provider shields up and running! Web, Internet Mail, and Standard. I have no need of the Outlook shield, but may take a shot at the Network shield before too long. If I can get it to work well, perhaps I will let my Kerio subscription expire in August… :smiley:

At four years old, everyone is many beautiful children! :wink:

Thanks again! Beware, however, I may return with Network shield questions… ::slight_smile: