How to allow these traffic?

Avast Free Antivirus / Premium Security
1

123456

2

Is this question too diffcult for the experts of avast members?

3

You just show part of a log file.
What traffic are you talking about?
svchost is just a generic host controller.
It depends on what is using svchost if you should allow or block it.

So what is your question/problem ?

4

I don’t know what svchost is,but I am facing this.
http://forum.avast.com/index.php?topic=147864.0
I guess it could be fixed if I can find a way to allow the blocked svchost inbound traffic.

“Allow connection to all network” will surely unblock the traffic, but I don’t want this to happen.

5

This might help explain why you are having issues with port 3702 and the UDP connections
http://www.adminsub.net/tcp-udp-port-finder/3702
This concerns port 5355 http://www.speedguide.net/port.php?port=5355

But that still doesn’t answer what programs are using those ports?
Once we know what’s what then we can give you more and better direction.

6

It seems he is using Windows 7 so both links do not apply to him.
First thing to do is finding out what is using svchost.
The sysinternal tools can do so.

7

These ports are used in Vista and Win7. We need the OP to provide more info. OS?

8

Windows 7 SP1 64bit
Avast Internet Security 2014.9.0.2016
Windows Firewall on
Windows Defender off
no Microsoft Essential Security or other security software

The default rule for svchost from avast is too scary,
So I tried copying the active rules of svchost and system to Avast firewall, although I don’t understand why they are written as so.

Please help.

9

What happens if you turn the Windows Firewall off? ???

10

Turning off Windows Firewall has no change.

One more thing
Why is the remote address empty?
What does an address of 0.0.0.0 mean?

11
What does an address of 0.0.0.0 mean?

Place that query in Google .

0.0.0.0 is often used when there is no IP , or an invalid IP address, avast is probably blocking something you do not want touching your system. You do not want to allow something unknown and potentially dangerous .

Like Eddy said, get sysinternals running and find out what is using that address and those ports.