I’m running Kerio personal firewall with avast (on win2k), and every now and then the avast e-mail scanner attempts to make an outgoing connection to a seemingly random IP on port 110. I don’t use any e-mail programs, and this will happen even when I’m not doing anything with regards to e-mail. The only programs I’m running that might have any reason to do anything with this port are Trillian and Azureus, but it seems like a bizarre port for them to be trying to do anything at all with, and I know I haven’t personally set up either to have anything to do with any port even remotely close to the 110 part of the spectrum.
Here are the details from the alert that just popped up:
[3/22/2005 1:42:26 AM]
Direction: outgoing
Local Point: 0.0.0.0, port 1364
Adapter: NDIS 5.0 driver
Remote Point: 0x3e42bc20.adsl.cybercity.dk [62.66.188.32], port pop3 [110]
Protocol: TCP
Application path: \Avast4\ashMaiSv.exe
Description: avast! e-Mail Scanner Service
File version: 4, 6, 602, 0
Created: 2005/3/18, 10:53:58
Modified: 2005/3/12, 09:13:59
Accessed: 2005/3/19, 14:55:28
Any idea what’s going on here? Should I just let the scanner always make outgoing (internet) connections, permanently block it from doing so, or what?
Also, why I’m here, I’ll note that I’ve been having the problems with the avast webscanner, and even after that little patch I can still only set it on Normal scanning to be able to browse and even then it makes it pretty much impossible to deal with secure http browsing. This is true whether I’m using IE or firefox (most people seem to only be stating it as a firefox issue). Also, this is my 8th attempt to get this message to post to no avail. I’m extremely luck if I can even preview before I have to try and make a post all over again. Here’s hoping…