Evjl's Rain

Level 45
Verified
Trusted
Content Creator
Malware Hunter
can u shared ur way to do that ? ty advanced
- first you MUST temporarily disable Avast's self-defense (I just realized avast can revert those hosts changes if we don't disable self-defense and don't lock the hosts file)
Settings -> troubleshooting -> uncheck "enable avast self-defense module"
- second: open C:\Windows\System32\drivers\etc\hosts (make sure it's not read-only so you can edit) -> add these following entries and save as hosts (without any extension)
0.0.0.0 a.fortumo.com
0.0.0.0 ad.flurry.com
0.0.0.0 adlog.flurry.com
0.0.0.0 ads.flurry.com
0.0.0.0 analytics.ff.avast.com
0.0.0.0 analytics.flurry-cdn.com
0.0.0.0 api.flurry.com
0.0.0.0 api.fortumo.com
0.0.0.0 app.igodigital.com
0.0.0.0 cdn.flurry.com
0.0.0.0 data.altbeacon.org
0.0.0.0 data.flurry.com
0.0.0.0 dev.flurry.com
0.0.0.0 e.crashlytics.com
0.0.0.0 get-avast.com
0.0.0.0 googleads.g.doubleclick.net
0.0.0.0 googletagmanager.com
0.0.0.0 pagead2.googlesyndication.com
0.0.0.0 pay.fortumo.com
0.0.0.0 proton.flurry.com
0.0.0.0 stage.app.igodigital.com
0.0.0.0 v7.stats.avast.com
0.0.0.0 v7event.stats.avast.com
0.0.0.0 wutlar.fortumo.com
0.0.0.0 mobile-campaigns.avast.com
0.0.0.0 ipm-provider.ff.avast.com
0.0.0.0 stats.avg.com
- set your hosts file as read-only (to prevent avast from modifying it) or more advanced, right-click on hosts ->security tab -> edit -> deny all write rule for all accounts
- enable avast's self-defense
- settings ->
+ disable cybercapture (not helpful, IMO if you have hardened mode)
+ scroll to bottom -> Privacy -> uncheck 2 boxes
- block AvastUI.exe (outbound connection) with your firewall (if your free license expires, unblock avastui -> register for a new free license -> block again)
 
Last edited:

Evjl's Rain

Level 45
Verified
Trusted
Content Creator
Malware Hunter
You don't truly believe that. :ROFLMAO: Data collection is the name of the game for these vendors, and where there's a will, there's a way.
I don't mind it :ROFLMAO: more importantly, avast is the most suitable AV for me and my family. Zero infection for many years with proper setup

most other AVs are not light or strong enough
 

dJim

Level 5
Verified
- first you MUST temporarily disable Avast's self-defense
Settings -> troubleshooting -> uncheck "enable avast self-defense module"
- second: open C:\Windows\System32\drivers\etc\hosts (make sure it's not read-only so you can edit) -> add these following entries and save as hosts (without any extension)
0.0.0.0 a.fortumo.com
0.0.0.0 ad.flurry.com
0.0.0.0 adlog.flurry.com
0.0.0.0 ads.flurry.com
0.0.0.0 analytics.ff.avast.com
0.0.0.0 analytics.flurry-cdn.com
0.0.0.0 api.flurry.com
0.0.0.0 api.fortumo.com
0.0.0.0 app.igodigital.com
0.0.0.0 cdn.flurry.com
0.0.0.0 data.altbeacon.org
0.0.0.0 data.flurry.com
0.0.0.0 dev.flurry.com
0.0.0.0 e.crashlytics.com
0.0.0.0 get-avast.com
0.0.0.0 googleads.g.doubleclick.net
0.0.0.0 googletagmanager.com
0.0.0.0 pagead2.googlesyndication.com
0.0.0.0 pay.fortumo.com
0.0.0.0 proton.flurry.com
0.0.0.0 stage.app.igodigital.com
0.0.0.0 v7.stats.avast.com
0.0.0.0 v7event.stats.avast.com
0.0.0.0 wutlar.fortumo.com
0.0.0.0 mobile-campaigns.avast.com
0.0.0.0 ipm-provider.ff.avast.com
0.0.0.0 stats.avg.com
- set your hosts file as read-only (to prevent avast from modifying it) or more advanced, right-click on hosts ->security tab -> edit -> deny all write rule for all accounts
- enable avast's self-defense
- settings ->
+ disable cybercapture (not helpful, IMO)
+ scroll to bottom -> Privacy -> uncheck 2 boxes


ty !! apreciate that list
 

Al-Faqir

Level 8
Verified
This is kinda offtopic, but if i would install antivirus to my parents / family member computer i would go with kaspersky.
- no pop-ups
- best web filtering
- system watcher

Or just bitdefender, anything that doesnt have ads/pop-ups is best imo

I don't think Kaspersky is the best choice. Bitdefender is the one and believe it or not, our ISP offers BIS 1 year for 3PCs for as low as $2/year. I thought of setting Avast on hardened mode.
 

Decopi

Level 3
Here is my logic on Avast Free:

There is no 100% perfect security software.
Therefore, if users want strong protection, then always will need more than one software.

So, if we need a combo, then we must look for:
1) Strong protection
2) Low system impact

As @Evjl's Rain perfectly wrote: "other AVs are not light or strong enough".
Avast is one of the lightest antivirus, with strong protection.
Avast is even lightweight than WD.
And Avast is free.

We don't need the perfect protection, because as stated above, perfection doesn't exist.
So, a strong protection... is enough.

But the the "pièce de résistance" here will be the second security protection: An anti-executable.
My choice is Comodo Firewall + CS' settings because is one of the lightest on system resources + strong protection + free.
Honestly? CF + CS' settings is enough, but Avast is so lightweight, that it doesn't hurt in case CF fails.

I know dozens of other excellent security combos. But I never found best combo than Avast Free + CF/CS Free in terms of protection & system impact. Every week I follow this and other security forums trying to discover a better combo... but nothing appeared in years.
 

Evjl's Rain

Level 45
Verified
Trusted
Content Creator
Malware Hunter
Yes, you're right, but CCleaner is an example that CF (even with CS's settings) can fail.
A wrong categorization (File Rating or wrong Trusted Vendor) can happens, and CF can fail.
There is no perfect software.
exactly, there is no perfect software
however, during the ccleaner hack, I did install the infected version on my system and used it for quite a long period. I noticed comodo firewall blocking some random inbound connections, which looked very suspicious

comodo firewall with proper settings might prevent the attack from my side although ccleaner itself might have done something bad, but there might be something else CF can miss

comodo cloud AV, I have seen and bypassed it by myself because of wrong file classification of valkyrie
 
Last edited:

Decopi

Level 3
exactly, there is no perfect software
however, during the ccleaner hack, I did in... valkyrie

My personal opinion is that CF+CS' settings + back up... is enough.
I have 2 separate back ups, one for few files daily updated, and another one for the rest of my files (very unused files).
I honestly don't see the need for more. CF even imperfect/failing, with daily backup is enough.

Avast as I said, it is just for the remote case of CF failing + I fail.
But I confess, every day I am more convinced that CF/CS + backup... is all what I need.
 

Evjl's Rain

Level 45
Verified
Trusted
Content Creator
Malware Hunter
i wont sleep tonight
it only happens with CCAV but doesn't happen or rarely, almost never happen with CF

you can find a way to disable valyrie but unfortutunately, I don't know how to, besides disabling the cloud analysis, you will get tons of FPs if you do so

the best solution now is CF, because its cloud analysis does not fully rely on the weak link valkyrie
 

Moonhorse

Level 29
Verified
Content Creator
it only happens with CCAV but doesn't happen or rarely, almost never happen with CF

you can find a way to disable valyrie but unfortutunately, I don't know how to, besides disabling the cloud analysis, you will get tons of FPs if you do so

the best solution now is CF, because its cloud analysis does not fully rely on the weak link valkyrie
Well my current setup is CCAV + SysHardener, everything runs in auto-sandbox by default deny, as long im sure myself the file i mess with is safe i have nothing to worry about?

But how i can make sure the file isnt malware signed as trusted? Virustotal every exe.?
Or would i benefit anything of voodooshield along with this setup, as it will regocnize the signature of file along with valkyrie?
 

Evjl's Rain

Level 45
Verified
Trusted
Content Creator
Malware Hunter
Well my current setup is CCAV + SysHardener, everything runs in auto-sandbox by default deny, as long im sure myself the file i mess with is safe i have nothing to worry about?

But how i can make sure the file isnt malware signed as trusted? Virustotal every exe.?
Or would i benefit anything of voodooshield along with this setup, as it will regocnize the signature of file along with valkyrie?
if you install VS, it's overkill + it's a waste of comodo sandbox
instead, you should install CF and disable the firewall component => similar to CCAV without the snake-oil valkyrie

VT all files is another way but if you have CF, it's not really needed
CCAV, maybe

still, valkyrie bypass is not very common. It's very rare
 

Moonhorse

Level 29
Verified
Content Creator
if you install VS, it's overkill + it's a waste of comodo sandbox
instead, you should install CF and disable the firewall component => similar to CCAV without the snake-oil valkyrie

VT all files is another way but if you have CF, it's not really needed
CCAV, maybe

still, valkyrie bypass is not very common. It's very rare
Wish i could think that far myself, thats some next level stuff
i rather just get rid of CCAV and go with cf+cs instead, i dont just trust enough myself, so i woulda need to find lightest possible antivirus. I wanted to run kaspersky cloud, but they dont let eu users install it yet, thats why i went for CCAV