firewall problem and avast

Avast seems to spam up my firewalls and imho that just network hammering and its really starting to get on my nerves. :-\

latest version installed .

The following shields are installed and no others.
File system ~ script ~ behavior shield

cloud services are off , auto update off ,auto sand box on.

thing hitting the firewall logs like 10000 times per 10 hours.

so what am i doing wrong or is avast just a network spammer.

tnx in advance for your time and help.

Iv no idea what you mean by network spammer ??? but without the network shield and web shield you shouldn’t even be browsing the web :o

Some examples of the so called spamming of your firewall wouldn’t go amiss as without it no one can hazard a guess as to what you mean or what is actually going on.

hammering

The act of trying repeatedly to connect to an unavailable FTP server with little or no time between connection attempts. It can be compared to repeatedly hitting the “redial” button on a telephone when dialing a phone number that is busy until the other phone is no longer busy.

Trading servers have a limit on the number of active connections that may be present at one time. A server cannot process an unlimited number of requests, so when servers are occupied to full capacity they will deny further access until they have free space. Hammering consumes bandwidth, slowing down the server. In addition to already working at capacity, the server has to then send a busy response to the device that was unable to connect every time that device attempts a connection, which further depletes the server’s resources and slows the system down in its connections with other devices.

Most FTP sites have policies against hammering and require FTP clients to set retry times at specific intervals, commonly at least 120 seconds between each attempt to connect. Most FTP sites can also monitor for devices that hammer, and once detected the server will ban access to the offending IP address either permanently or for a limited amount of time.

all so known as a internal DOS attack.

http://oi50.tinypic.com/1t7h2s.jpg

edit: added pic

+1 I guess not ??? ???!

For the record i can surf the net just fine on that computer … :stuck_out_tongue:

And the pic was just from one hour of time , i purged the firewall logs not long ago . i should have kept em but just looking at the number of hits just image what would happen if i was dealing with 20 computers in a computer lab and the network computer~ admin had to look at that firewall log spam all day long

That’s right 500hitsx20 per hour {10000 hits per hour} that’s getting close to a internal broadcast storm attack. lame.

broadcast storm:
A state in which a message that has been broadcast across a network results in even more responses, and each response results in still more responses in a snowball effect. A severe broadcast storm can block all other network traffic, resulting in a network meltdown. Broadcast storms can usually be prevented by carefully configuring a network to block illegal broadcast messages.

network meltdown:
A state in which a network grinds to a halt due to excessive traffic. A network meltdown generally starts as a broadcast storm that gets out of control, but even legitimate network messages can cause a meltdown if the network hasn’t been designed to accommodate that level of traffic.

edit: added extra info

No one said you couldn’t surf the net, i said you shouldn’t.

No one said you couldn't surf the net, i said you shouldn't.

lolz that’s really helpful :wink:

yawnnn, but then how can i watch teletubbies if i cant surf the net !

k well after watching avast spam up a total of 5 firewall …its clear what this app is , nothing you do stops it from spamming and phoning home

avast is ultra aggressive spyware and more or less a Trojan, il be uninstalling it now.

tnx for all the help from the community of post counting farming ~ spam nubs 8)

Bye ::slight_smile:

K later and for anyone that reads this remember !
By installing avast and why its so good at detecting everything is, and you guess it because they have a full remote access to your computer.

by installing avast free you agree to the following:

By downloading the free version of avast you agree that, while scanning your computer, avast will be sending the scanning statistics and your system information to the master server, This information will help analyze in-depth the global anti-virus security situation and perfect the detecting and curing routines incorporated into our products and is personally identifiable.

http://oi47.tinypic.com/2nu6q7d.jpg

  • CPU parameters (name, technical description, current and maximum speed, number of cores and logical processors full hardware stats.
  • RAM parameters (total and available at the time of scanning physical and virtual memory).
  • Operating system configuration (name, version, build, installed service packs, boot mode, current account privileges—user or administrator—, regional settings).
  • Information about the installed anti-virus, anti-spyware and firewall and all installed programs.
  • Information about threats found by avast (type and name, type and name of infected objects, actions applied to the objects and, if necessary, their file hash).
    *at avast discretion an avast moderator can log in to your computer and see the following from the master computer.

http://www.teacherclick.com/winxp/graficos/ventana_explorador.gif

  • Overall avast scanner statistics (scanning end time, total files and objects scanned, number of suspicious objects, number of detected malicious programs of each type).
  • Overall statistics about actions applied by the avast scanner (number of objects to which no action was applied and the number of cured, deleted, moved, renamed and ignored objects and full behavioral statics about every option you click on in the app.
  • Your full surfing habits on the net.

do you agree to the following AVAST Privacy and Information Security Policy and wish to join the avast Cloud Botnet
http://www.avast.com/privacy-policy

By installing avast and why its so good at detecting everything is, and you guess it because they have a full remote access to your computer.
[b]So does any other program that monitors your system in order to attempt to keep your system safe.[/b] [b]That is it's job.[/b]

Nice imagination, but that’s a nonsense of course.
Yes, there are some statistics begin submitted - but certainly no “remote login by avast! moderators” (whatever avast! moderators should be).

@tweetbrowser,

Avast access to your computer’s OS is to ensure the system security and privacy invasion are totally unrelated.
On the contrary ensuring your system security is just a way to keep serious privacy invasion issues at bay,
which come via cybercriminal activities being performed via an infested system
(like scam, spam, click & other frauds, malcious bot activity etc. etc.)
as malcode can seriously damage your privacy integrity.

Privacy issues come with your user agent, because it is you that initiate all that is going on under the hood of your browser via requests.
You could install a couple of extensions to thward off privacy invasion like script blocking, check java to run or not,
a cookie manager, adware blocking extension with specific blocklists. Extensions to prevent tracking by trackers,
web rep evaluation, extensions to make 1x1 pixel web beacons visible. Etc. etc…
So from the above if your questions are about privacy invasion then I think you are totally barking up the wrong tree
and I think you are actually addressing the wrong forum also. More answers can be found at forums like
NoScript’s and/or ABP+

Keep your real privacy issues offline, that is the best way to go for everyone.
Do not share online what you won’t share with others offline.,
For wasn’t it a Google spokesman that remarked: “Internet privacy is not our first concern,
as real privacy does no longer really exists on the Internet”.

polonus

Cool,looks like a woke up some real players in this forum.
The spamming post count farmers where starting to bore me.
Now were getting somewhere ^^ wasn’t shore if i was going to eat a ban button their with my last post grins

bob3160: So does any other program that monitors your system in order to attempt to keep your system safe. That is it's job.
Wrong! Theirs no need for a anti virus or any app installed on your system to phone home and all updates can be done offline though you can still record my ip when i download the needed update.
igor: Nice imagination, but that's a nonsense of course. Yes, there are some statistics begin submitted - but certainly no "remote login by avast! moderators" (whatever avast! moderators should be).

Well ill agree to that if you’ll agree to the fact that most user end legal agreements are nonsense as well.
The truth is somewhere in the middle vs my last post.

polonus:

Avast access to your computer’s OS is to ensure the system security and privacy invasion are totally unrelated.
On the contrary ensuring your system security is just a way to keep serious privacy invasion issues at bay,
which come via cybercriminal activities being performed via an infested system
(like scam, spam, click & other frauds, malcious bot activity etc. etc.)
as malcode can seriously damage your privacy integrity.

Your anti virus needs no access to my computer & all updates can be done off line.
I disabled all settings in avast that had anything to do with anything online and still it spams connection attempts to the max as well if i haven’t missed my guess it all so resets some settings when disabled on the topic of joining the botcloud and phoning home to the command and control server at avast HQ though id have to check that once more to be shore.

That make a really nasty youtube if i was right on that topic or re-spawing settings because i remember turning everything off and 24 hours later on my test computer some options had re-spawned,that or i just missed the options in question the first 3 times i went over all the program settings options on the test computer I use for that kind of thing.

You know theirs no need for the avast to hammer the firewall in question like that trying to get out.it wont so all its doing is being a bitch vs my firewall logs and as the backtrack 5 slogan gos, the quieter your internal network is the better you can hear.

When you system gets hacked its like a storm of crap that starts hitting the internal network firewalls all over the place as carp-ware starts probing for ways out of your network to the out side WAN port scan stile.

You know funny thing is I found this other program of late that I tested that’s freeware that like your antivirus promises to protect you from black hats and privacy invasion on the net but at the same time dousen’t

My self in testing i only left port 53,80,443 open on the 2nd firewall .
Funny that other users that saw the same problem reported that they spotted uncommon network traffic on other ports from the “spywall” in question.

The spywall in question douse a full port scan of your internal network looking for pin holes in the firewall if any after the fact if any.

Funny Thing is that it’s a freeware firewall and unless you firewall the firewall you never see that its doing that.

polonus: Privacy issues come with your user agent, because it is you that initiate all that is going on under the hood of your browser via requests. You could install a couple of extensions to thward off privacy invasion like script blocking, check java to run or not, a cookie manager, adware blocking extension with specific blocklists. Extensions to prevent tracking by trackers, web rep evaluation, extensions to make 1x1 pixel web beacons visible. Etc. etc.... So from the above if your questions are about privacy invasion then I think you are totally barking up the wrong tree and I think you are actually addressing the wrong forum also. More answers can be found at forums like NoScript's and/or ABP+

btw my user:agent is bogus :wink:

Well as for my network setup i don’t want to make a road map for hackers to get past my net defenses but ill tell you this much,more often then not i only have 3 ports open and 7x firewalls back to back +1 internal honeynet and more then one network defense lair as well as a ip black list + dedicated network dmz server corp firewall box hardware firewalls etc etc.
Once you get hacked hard you never forget that fact that as a network admin theirs no room for 2nd place,if you fail to protect your network , its so over.

99% of all the problems people have on the net with drive by downloads and browser hacking is all java and flash player and lack of browser updates,disable both + cookies and your more or less bulletproof.
After that what you have to watch out for is social engendering attacks aka avast and the like imho.
But you know their a difference from just recording ips and browser agent info and having a program installed on your computer that pugs you in to a botcloud…

The hole idea of a botcloud is privacy invasion city and im not the only one atm that thinking it.

And make no mistake a cloud setup is a botnet , some are starting to call them white clouds “forces of good~white hat” vs black clouds “forces of evil~black hats” or just simply botclouds, but their all bot nets in my mind

the hole botcloud idea comes from botnets as im shore you know.

And no i don’t feel im barking up the wrong tree seeing as were still talking about botnets, its just that avast “and other free to use apps “make promises to block others that might do to me what i feel up to a point avast douse to others but wont allow others to do to their protected users :wink:

And of cores down the road after the fact you can then use that statical information to sell to others for profit or for personal gain on other levels.

avast is a aggressive data miner imho but I guess that’s what you get with free corporate grade software.
Its a different story when dealing with opensorce software.

polonus: Keep your real privacy issues offline, that is the best way to go for everyone. Do not share online what you won't share with others offline., For wasn't it a Google spokesman that remarked: "Internet privacy is not our first concern, as real privacy does no longer really exists on the Internet".

well i have no problems with sharing virus profiles with the online communality for the anti virus program i use after the fact when something is detected. It just means its less effective vs zero day exploits but if that means no privacy invasion from the installed anti virus then so be it.
I have no problems with that topic.

My problem is with data sucking vampire apps that use choke and dagger half truths to suck in user base.

One things for shore i won’t let some one turn my computer in to their private botcloud server that they can use as they see fit and invade my privacy and scan all my hard drive for *.exes and and god knows what then upload all that info to the avast commend and control server limited only by whatever the company in question thinks it can get away with by law, with social engineering tactics and the limits of what it thinks it can get way with.

As for the Google quote, good point corporations care only about profit margin and all other concerns are secondary.

Btw if you want some real nasty user end legal agreements look up the one for punk buster or Ea games battlefield3, different corporations out their atm are really pushing hard on the privacy invasion topic to see if anyone will fight back.

My self this topic sadden me seeing as if people at large don’t wake up to what coming they might wake up one day to find out they no longer have any privacy left vs the people at the top 1% of the population food chain.
It end up being a world ware a computer AI knows everything you do in life in real time 24\7 on the skynet defense system and your just a dot on a lcd screen waiting for the global moderators to take a disliking to you and press the del key next to you name.

here some examples of the future
http://dear-al.blogspot.ca/2012/03/avira-free-antivirus-installed-askcom.html
http://www.wpcentral.com/windows-phone-avg-antivirus-app-may-be-more-dangerous-we-thought
http://www.tomshardware.com/news/Origin-EULA-PC-Gaming-Glorified-Spyware-DRM,13285.html
http://www.google.ca/search?ie=ISO-8859-1&hl=en-CA&source=hp&q=punkbuster+spyware+&meta=&oq=punkbuster+spyware+&gs_l=firefox-hp.3..0j0i30j0i8i30.1157.4338.0.4457.19.15.0.4.4.0.164.1414.3j11.14.0...0.0...1ac.1.VOb0p1V8kfo
https://www.freedrweb.com/download+cureit+free/?lng=en
http://processes.glarysoft.com/PMB.exe/4966/

Nice start to a book… is this chapter One ???
Seems like you have a lot of extra time on your hand. Wish you would use it constructively.
I’ve seen enough in here to know that the sooner we stop feeding your ego the sooner this will come to an end.

lol na not a book, im just fast on a keyboard,and just wanted to point out im not a total noobcake on the topic of network security.

And were all getting off topic in here i find,and my original “on topic” question has not bin answered or people post off topic comments aka spam posts ~ post count farmers etc etc :wink:

But whatever all iv seen so far in here is spammers and off topic posts,keep using your anti virus thinking your protected when in fact your not seeing as the people doing the protecting as sucking your computer dry of data each day you use it.
You didn’t really think it was “free” did you :wink:

Ill take this topic up in a different IT security forum and consider avast response to the question
why do you spam the firewall trying to connect to the net every 0.3s when asked not to and 3x check to see if avast douse indeed re-spawn opt out options.

And remember i came to avast forum first looking for a answer befog i go talk about it somewhere different, an official avast team mod showed up and commended on this topic and the response was “who cares” lets just leave it at that.

Im good, peace =)

Hi tweetbrowser,

I cannot grasp why you sought out this platform to vent your assumptions/accusations. Maybe just because you found a platform here to post them. If you really want to make a difference and you care about the issues you come up with, why not become a member of an official privacy watchdog platform. Maybe they may have some views and policy for example where cloud data grabbing is concerned and what parties have access to these data. We have not, because as I said the issue of an av solution protecting your machine and these alleged and irrelevant issues are totally unrelated,

polonus