Updated Avast (free) program, why is it now trying to contact non-Avast site?

http://whois.domaintools.com/68.142.123.254
http://whois.domaintools.com/llnw.net
http://www.limelightnetworks.com/

United States Tempe Limelight Networks Inc

Ah - advertising. I’d never have known except for my firewall. I’m not crazy about what looks like maybe being tracked, even for free. I wouldn’t[ mind knowing exactly what the deal is here.

How did you detect that avastUI.exe (if it is it) is trying to contact that sites?
Which is your firewall?

Well how do you know it was avast that tried to connect ?

The web shield (under avastSvc.exe) redirects port 80 connections to port 12080 so that incoming port 80 http traffic can be filtered through the localhost proxy. So if a web page you happen to be visiting has something from another site, ad, etc. then that too would be redirected and go through the proxy. Not sure if this is the connection you are seeing.

I can’t see anything in my firewall logs to limelight.

Me neither.

Limelight is a CDN provider, similar to Amazon’s S3, Akamai and other such services. We use them for updates distribution, combined with our huge network of standalone servers and in the future there will be probably more of such services used to distribute the content from geographically close locations.

So please

@ kubecj,

To clarify, users may see Limelight as part of Avast servers showing up. So perhaps the OP tried to look up the IP of Limelight in his/her original post in trying to figure out who Limelight was.

Without knowing, without knowledge, every troubleshoot is paranoia ;D

Really. Why should not my initial reaction be paranoia, when it never tried to contact anything but Avast before the update? Thanks for your understanding! :slight_smile:

In answer to question re what firewall, Kerio 2.1.5. In answer to when did I notice it, when the computer started up and Avast checked for updates. I had not visited any websites at all at the time.

Re the information as to why it does that, thank you.

vncoffman,

Well I guess we were all paranoid since we did not know and learned something new.

If you feel that your issue is now resolved/fixed, please go back to the first open post in this topic, click the modify button in that Post and change the title/subject, add [Resolved] to the beginning of the title so this thread can be closed.

Feel free to come back any time you need help, to learn something new, or just to ask questions. We are here 24/7 for your convenience. Thank you. :slight_smile:

Dear Avast Evangelist

I’m assuming you are an employee?

No, I do not wish to modify my topic. Why should I?

When my computer started up this session, I got a lot of firewall notifications re Avast. I denied them all. I am considering changing, since this started when I unfortunately updated the program.

I appreciate free, but will not put up with just anything on that account.

I was actually considering the paid program, but am currently reconsidering, especially in light of your (to me) ill-considered suggestion.

PS - I don’t actually expect you to be “here 24/7” for my “convenience.” I just expect/hope for you to tell me the truth.

If you are an employee, it just increases my aversion to Avast. A shame, since I was considering the paid version…

It’s all about whom you trust, and I am reconsidering that.

BTW, your “Talk Like a Pirate” promo is stupid and (it appears to me) desperate. I am sorry if you are in financial straits, but it still doesn’t excuse not being honest, at least to me.

Yes, that is exactly what I was trying to do.

@ vncoffman,

No, I am not an employee. I am an Avast volunteer. I am an Avast user like you and I do not get paid just like you.

There was an issue with the AIS (Internet Security) around the time you made this post, which has since been fixed with Avast updates. So your issues should be fixed. If not, please let us know so we can help you.

I think you misunderstood me. I stated that “we” are here…" The forum is here 24/7. Most of the Evangelists are here many hours within a 24 hour time period as well (in/out of the forum). I actually come in/out of the forum many hours within a 24 hour period. And I always tell the truth. I was trying to be nice, and I’m sorry you took it the wrong way. When I respond to someone in a forum, I try to put myself in their situation and respond in a friendly and respectful manner while helping them with their situation.

Please let us know if you have any other concerns or questions that we can help you with. Thank you.

We are volunteers and asisst where possible.

You need to learn patience. :wink:

SafeSurf’s advice is good. 8)

@vncoffman:

I don’t understand why you’re so upset about this.
kubecj already told you that “Limelight is a CDN provider, similar to Amazon’s S3, Akamai and other such services. We use them for updates distribution, combined with our huge network of standalone servers and in the future there will be probably more of such services used to distribute the content from geographically close locations.”

They are using a third party to deliver updates to you. They are not using it to spy on you or to advertise (other that the banner every avast! free user sees on the GUI so why so mad at this? It is an honest service from an honest AV that comes to you for free and it is not like they denied it or something. If you could see it through Kerio that means the connection was transparent enough for you to see, which also means they are confident enough to show it to you and to explain it here on the forum.

As far as modifying your first post to include the [resolved] at the beginning of it I think it is also fair since what you asked has been answered and you could consider the issue resolved. I mean you asked “I wouldn’t[ mind knowing exactly what the deal is here.” and they told you, so… what more is there to say?.

Martin.-

Thank you everyone for your assistance in this thread. :slight_smile:

@ vncoffman, Please modify the title of the first post of this thread by adding “Resolved” or “Fixed” to close it. Thank you.

Just to add: You can see that it is updates that are being provided by looking in the servers.def, and when you update.

Notice the server name in the image: